1.35.3 Release

[CameronMunroe]

1.35.3 is a security release, we should get this out asap.

1.35.3

Repository: dani-garcia/vaultwarden · Tag: 1.35.3 · Commit: 36f0620 · Released by: dani-garcia

Security Fixes

This release contains security fixes for the following advisory. We strongly advice to update as soon as possible if you believe it could affect you.

GHSA-h265-g7rm-h337 (Publication in process)
This vulnerability would allow an authenticated attacker that is part of an organization to access items from collections to which the attacker does not belong.
What's Changed

Fix User API Key login by @BlackDex in dani-garcia/vaultwarden#6712
use email instead of empty name for webauhn by @stefan0xC in dani-garcia/vaultwarden#6733
hide password hints via CSS by @stefan0xC in dani-garcia/vaultwarden#6726
fix email as 2fa with auth requests by @stefan0xC in dani-garcia/vaultwarden#6736
Update crates, web-vault, js, workflows by @BlackDex in dani-garcia/vaultwarden#6749
refactor: improve tooltips in diagnostics page by @tessus in dani-garcia/vaultwarden#6765
Empty AccountKeys when no private key by @Timshel in dani-garcia/vaultwarden#6761
fix error message for purging auth requests by @stefan0xC in dani-garcia/vaultwarden#6776
Misc updates, crates, rust, js, gha, vault by @BlackDex in dani-garcia/vaultwarden#6799
Update crates and web-vault by @BlackDex in dani-garcia/vaultwarden#6810
Fix org-details issue by @BlackDex in dani-garcia/vaultwarden#6811
Full Changelog: dani-garcia/vaultwarden@1.35.2...1.35.3

—
This release has 2 assets:

Source code (zip)
Source code (tar.gz)
Visit the release page to download them.