From 1479494dfb957fe54cf434fa12d2af3c94da49d8 Mon Sep 17 00:00:00 2001 From: Lea Anthony Date: Sat, 7 Feb 2026 18:49:54 +1100 Subject: [PATCH] Update v3/UNRELEASED_CHANGELOG.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- v3/UNRELEASED_CHANGELOG.md | 1 + 1 file changed, 1 insertion(+) diff --git a/v3/UNRELEASED_CHANGELOG.md b/v3/UNRELEASED_CHANGELOG.md index 917edf206..92ef10a2e 100644 --- a/v3/UNRELEASED_CHANGELOG.md +++ b/v3/UNRELEASED_CHANGELOG.md @@ -47,6 +47,7 @@ After processing, the content will be moved to the main changelog and this file - Restrict GITHUB_TOKEN permissions in workflow files to follow principle of least privilege - Fix path traversal vulnerability in screen example asset middleware - Fix command injection vulnerability in setup wizard dependency installation endpoint +- Fix command injection vulnerability in setup wizard dependency installation endpoint - Update rollup to 3.29.5 to fix XSS vulnerability (CVE-2024-47068) ---