Posts tagged security
Post Quantum JWTs
JWTKit now supports post-quantum JWTs, built on the quantum-secure APIs from Swift Crypto, providing future-proof security for the Swift ecosystem
Securing Vapor for the Future - Our Experience in GitHub's Secure Open Source Fund
Vapor was selected for the 3rd session of the GitHub Secure Open Source Fund
LeafKit Lack of HTML Escaping Vulnerability
LeafKit 1.14.2 fixes a vulnerability where HTML escaping wasn't applied to Leaf variable substitutions, allowing XSS. Upgrade as soon as possible.
LeafKit HTML Escaping Vulnerability
LeafKit 1.14.1 fixes an XSS vulnerability where extended Unicode characters could inject malicious HTML attributes. Upgrade as soon as you can.
JWTKit is no longer Boring!
JWTKit is the first Vapor package rebuilt around Swift's structured concurrency ahead of Swift 6. Here's what's new in this major release.