diff --git a/CHANGELOG.md b/CHANGELOG.md index 551ea19772..157b2bd0b3 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,7 +1,12 @@ ## Parse Server Changelog ### master -[Full Changelog](https://github.com/parse-community/parse-server/compare/4.0.2...master) +[Full Changelog](https://github.com/parse-community/parse-server/compare/4.1.0...master) + +### 4.1.0 +[Full Changelog](https://github.com/parse-community/parse-server/compare/4.0.2...4.1.0) +_SECURITY RELEASE_: see [advisory](https://github.com/parse-community/parse-server/security/advisories/GHSA-h4mf-75hf-67w4) for details +- SECURITY FIX: Patch Regex vulnerabilities. See [3a3a5ee](https://github.com/parse-community/parse-server/commit/3a3a5eee5ffa48da1352423312cb767de14de269). Special thanks to [W0lfw00d](https://github.com/W0lfw00d) for identifying and [responsibly reporting](https://github.com/parse-community/parse-server/blob/master/SECURITY.md) the vulnerability. Thanks to [Antonio Davi Macedo Coelho de Castro](https://github.com/davimacedo) for the speedy fix. ### 4.0.2 [Full Changelog](https://github.com/parse-community/parse-server/compare/4.0.1...4.0.2) diff --git a/package-lock.json b/package-lock.json index 25a51c57cf..10e584cb66 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,6 +1,6 @@ { "name": "parse-server", - "version": "4.0.2", + "version": "4.1.0", "lockfileVersion": 1, "requires": true, "dependencies": { diff --git a/package.json b/package.json index c2d4e04f82..57d530cac8 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "parse-server", - "version": "4.0.2", + "version": "4.1.0", "description": "An express module providing a Parse-compatible API server", "main": "lib/index.js", "repository": {