This is a security fix release. Please consider upgrading it.

🎄 Enhancement

  • Fixed a bunch of security issues found by huntr.dev
  1. Reject the current user operation if the user has just been de-activated.
  2. Secure the access token to prevent CSRF attack.
  3. Disallow Bytebase to be loaded in an iframe.

🎠 Community

⚙️ Install and Upgrade

Warning 1): Bytebase does not support in-place downgrade. Make sure to back up your metadata before upgrading. 2) Never run multiple containers on the same data directory. Stop and remove the old one first to avoid corruption.