1. GitHub Security Fix: Removes Broad Coach Permissions That Allowed Any Coach to Create Players on Any Team
A critical security vulnerability, designated SEC-48, has been patched in a codebase after a review confirmed the completion of a necessary data backfill. The flaw resided in a legacy 'safety-net' fallback within player creation rules, which granted any coach the system-wide permission to create players on any team, re...