I came across an interesting security article by penetration tester Daniel Thatcher discussing a proposed attack against older versions of UUIDs. I describe some of the design decisions which went into designing the identifier systems used in Skyve.
Read MoreSkyve 8.1.5 introduces some small quality of life improvements in the admin module, and resolves defects around customer overriding as well various other minor fixes and improvements.
Read MoreSkyve 8.1.3 provides some fixes for multi-tenant applications and resolves some security defects introduced in a previous release. It is a recommended upgrade for all previous versions of Skyve.
Read MoreSkyve 8.1.2 rolls up dozens of fixes and enhancements to the platform. It also introduces the ability to use expressions for dynamic evaluation.
Read MoreThis release updates the version of Spring Framework used by Skyve to remove the Spring4Shell vulnerability. This is a recommended release for all Skyve applications prior to 8.0.1.
Read MoreA new Remote Code Execution vulnerability has been discovered in the Spring framework. We have determined that Skyve is not vulnerable to this attack as currently described.
Read MoreThis release provides some minor reporting fixes, but primarily removes log4j version 1 to address any concerns about the Log4Shell vulnerability.
Read MoreWith a CVSS score of 10, CVE-2021-44228 is a critical zero-day vulnerability in the Apache Log4j logging library. The vulnerability affects Apache Log4j versions 2.0-beta9 to 2.14.1, and affected versions can allow a remote attacker to send malicious payloads to execute arbitrary code on a server via a JNDI lookup.
Read MoreSkyve 8 is a major release and introduces a new reporting option to Skyve, Freemarker reports. A new UI widget has been added to assist in navigation between associated entities, improvements to SAIL to assist in automated UI testing as well as many other enhancements and fixes.
Read MoreThis release provides some minor security and signature enhancements, but primarily fixes an issue with mobile rendering. This is a recommended release for any applications running 7.1.2.
Read More