Security Patch 1.22.1 Deployed: Critical Vulnerability Remediation for CVE-2025-30144, CVE-2026-34950, and Others

A targeted security patch, version 1.22.1, has been deployed with the explicit purpose of remediating multiple critical vulnerabilities. The release contains no new user-facing features, focusing solely on vulnerability fixes and essential release metadata. This narrow scope underscores the urgency and severity of the addressed security flaws, which include CVE-2025-30144, CVE-2026-34950, CVE-2026-35039, CVE-2026-33532, and CVE-2026-25223.

The release process was tightly controlled, with validation confirming that the release branch contains only version updates in the backend and frontend package.json files. The entire scope of the patch is based on the state of the main codebase after the merged security hotfix, ensuring no extraneous changes were introduced. This disciplined approach minimizes the risk of new bugs or regressions while addressing the core security threats.

The deployment of this patch signals active and ongoing security maintenance, directly responding to identified Common Vulnerabilities and Exposures (CVEs). Organizations and users relying on this software must prioritize applying this update to mitigate the risks associated with these specific vulnerabilities. The focused nature of the release highlights a critical phase in the software's lifecycle where security remediation takes precedence over feature development.