All authors
Gwynne
@gwynne
Official Goddess of Swift on Server.
LeafKit Lack of HTML Escaping Vulnerability
LeafKit 1.14.2 fixes a vulnerability where HTML escaping wasn't applied to Leaf variable substitutions, allowing XSS. Upgrade as soon as possible.
On Fluent Models and Sendable warnings
Since FluentKit 1.48.0, every Fluent Model triggers a Sendable warning. Here's the Swift property-wrapper corner case behind it, and how to handle it.
PostgresNIO Security Vulnerability
PostgresNIO 1.14.2 fixes CVE-2023-31136, a TLS flaw letting a man-in-the-middle inject responses to a client's first queries. Upgrade as soon as possible.
Updating Vapor's Templates for Swift 5.8
You may notice some changes in Vapor's templates - we've updated then for Swift 5.8, with a unified target and using the latest `@main` syntax.
What We're Working On: March 2023
Learn about what we're working on this month for Vapor and what our goals are for the next 6 months.