Skip to content

Security: fix session leaks, OAuth redirect validation, host header injection #29

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
thekevinm merged 4 commits into from
Apr 22, 2026

Revert CORS to permissive — MCP clients are inherently external

9569b7e
Select commit
Loading
Failed to load commit list.
Merged

Security: fix session leaks, OAuth redirect validation, host header injection #29

Revert CORS to permissive — MCP clients are inherently external
9569b7e
Select commit
Loading
Failed to load commit list.

There are no checks for this commit