Skip to main content
This is a security fix release. Please consider upgrading it.

🎄 Enhancement

  • Fixed a bunch of security issues found by huntr.dev
  1. Reject the current user operation if the user has just been de-activated.
  2. Secure the access token to prevent CSRF attack.
  3. Disallow Bytebase to be loaded in an iframe.

🎠 Community

⚙️ Install and Upgrade

Before upgrading: 1) Back up the metadata — in-place downgrade is not supported. 2) Do not run multiple containers on the same data directory. 3) Terraform users: upgrade Bytebase server first, then apply the new Terraform config.