Skip to content

Version 1.3.0 Release
Compare
Choose a tag to compare
@justinhartman justinhartman released this 07 Jul 16:39
· 26 commits to master since this release
1.3.0
708018d
This commit was signed with the committer’s verified signature. The key has expired.
justinhartman Justin Hartman
GPG key ID: EAC204ED4A98108E
Expired
Verified
Learn about vigilant mode.

Version 1.3.0 (07/07/2020)

This is the final release for the Jekyll 3 series. Later releases will all only work with Jekyll 4. If you are using a theme that only supports Jekyll 3 then use this release instead. You can download this release or pull directly from the Jekyll 3 branch. Please note there will be no further updates to this version 3 branch and is merely an archive.

  • #bugfix
    • Fixed OS Command Injection in Rake CVE-2020-8130.
    • Fixed Directory traversal in Rack::Directory app bundled with Rack CVE-2020-8161.
    • Fixed Percent-encoded cookies can be used to overwrite existing prefixed cookie names CVE-2020-8184.
  • #enhancement
    • Updated jekyll to 3.7.8.
    • Updated bundler to 1.17.2.
    • Updated ruby to 2.6.3.
    • Updated README.md and index.md.
Assets 2
Loading