Skip to content

v1.25.22 — CI Hardening & Dependency Security

Choose a tag to compare

View all tags
@SunDevil311 SunDevil311 released this 01 Jan 23:00
· 22 commits to master since this release
v1.25.22
ce08e5d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

This release focuses on improving CI security, reliability, and maintenance hygiene.

  • Hardened the Gitleaks workflow to safely handle forked PRs and exclude Dependabot, preventing secret-related failures.
  • Added guarded, redacted secret scan summaries and restricted artifacts, issues, and notifications to trusted contexts only.
  • Stopped tracking generated .svelte-kit files to reduce noise and accidental commits.
  • Addressed CVE-2025-15284 by enforcing a transitive dependency override for qs (^6.14.1).
  • Updated several dependencies and removed a non-functional Mastodon verification.

Overall, this release improves supply-chain security, CI robustness, and developer experience with no functional breaking changes.

Full Changelog: v1.25.21...v1.25.22

Assets 2
Loading