Deploying to main from @ 845bb9e9d2b4522fdb15a4445d460c1b7d6a8e46 🚀

Author: ahus1

2023/11/keycloak-2300-released.html

@@ -255,9 +255,10 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Removed features</h3>
 <ul>
-<li><a href="https://github.com/keycloak/keycloak/issues/23348">#23348</a> Remove `P3P` header from authentication flow  <code>oidc</code></li>
+<li><a href="https://github.com/keycloak/keycloak/issues/23348">#23348</a> Remove `P3P` header from authentication flow  <span class="badge bg-secondary">oidc</span></li>
 </ul>
 
 <h3>New features</h3>

2023/11/keycloak-2301-released.html

@@ -89,6 +89,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Bugs</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/23841">#23841</a> Users page with LDAP User Storage Provider Cannot read properties of undefined  <span class="badge bg-secondary">admin/ui</span></li>

2023/12/keycloak-2302-released.html

@@ -102,6 +102,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Enhancements</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/25113">#25113</a> Add a test for the LoadBalancerCheck </li>

2023/12/keycloak-2303-released.html

@@ -85,6 +85,11 @@ <h2>Upgrading</h2>
 <h2>All resolved issues</h2>
 
 
+<h3>Weaknesses</h3>
+<ul>
+<li><a href="https://github.com/keycloak/keycloak/issues/25220">#25220</a> Authenticated users should not be able to delete their passwords via a DELETE request </li>
+</ul>
+
 
 
 

2024/01/keycloak-2304-released.html

@@ -89,6 +89,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Bugs</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/9693">#9693</a> PubKeySignRegisterTest failures in WebAuthn tests <span class="badge bg-secondary">testsuite</span></li>

2024/01/keycloak-2305-released.html

@@ -87,6 +87,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>New features</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/25733">#25733</a> Update Route53 HA guide to be compatible with ROSA and Openshift 4.14.x </li>

2024/02/keycloak-2306-released.html

@@ -89,6 +89,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Bugs</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/26427">#26427</a> Operator CSV uses wrong format for `createdAt` field <span class="badge bg-secondary">operator</span></li>

2024/02/keycloak-2307-released.html

@@ -88,6 +88,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Enhancements</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/26810">#26810</a> Shorter lifespan for offline session cache entries in memory <span class="badge bg-secondary">storage</span></li>

2024/03/keycloak-2400-released.html

@@ -713,19 +713,25 @@ <h2>All resolved issues</h2>
 
 <h3>Security fixes</h3>
 <ul>
-<li><a href="https://github.com/keycloak/keycloak/issues/21258">#21258</a> CVE-2022-1471- SnakeYaml remote code execution by sending malicious YAML content <code>dependencies</code></li>
+<li><a href="https://github.com/keycloak/keycloak/issues/21258">#21258</a> CVE-2022-1471- SnakeYaml remote code execution by sending malicious YAML content <span class="badge bg-secondary">dependencies</span></li>
 <li><a href="https://github.com/keycloak/keycloak/issues/26923">#26923</a> CVE-2023-35116 - jackson-databind - 2.15.2 </li>
 <li><a href="https://github.com/keycloak/keycloak/issues/27204">#27204</a>  CVE-2024-1597 - SQL Injection vulnerability in org.postgresql:postgresql </li>
 </ul>
 
+<h3>Weaknesses</h3>
+<ul>
+<li><a href="https://github.com/keycloak/keycloak/issues/25220">#25220</a> Authenticated users should not be able to delete their passwords via a DELETE request </li>
+<li><a href="https://github.com/keycloak/keycloak/issues/26411">#26411</a> Enable PKCE by default in Keycloak JS <span class="badge bg-secondary">adapter/javascript</span></li>
+</ul>
+
 
 <h3>Removed features</h3>
 <ul>
-<li><a href="https://github.com/keycloak/keycloak/issues/15472">#15472</a> Remove session revocation by 'not before' date <code>admin/api</code></li>
-<li><a href="https://github.com/keycloak/keycloak/issues/17734">#17734</a> Remove session revocation by 'not before' date <code>admin/ui</code></li>
-<li><a href="https://github.com/keycloak/keycloak/issues/19660">#19660</a> Deprecate Account Console v2 <code>account/ui</code></li>
+<li><a href="https://github.com/keycloak/keycloak/issues/15472">#15472</a> Remove session revocation by 'not before' date <span class="badge bg-secondary">admin/api</span></li>
+<li><a href="https://github.com/keycloak/keycloak/issues/17734">#17734</a> Remove session revocation by 'not before' date <span class="badge bg-secondary">admin/ui</span></li>
+<li><a href="https://github.com/keycloak/keycloak/issues/19660">#19660</a> Deprecate Account Console v2 <span class="badge bg-secondary">account/ui</span></li>
 <li><a href="https://github.com/keycloak/keycloak/issues/26255">#26255</a> Remove Jetty 9.4 adapters </li>
-<li><a href="https://github.com/keycloak/keycloak/issues/27364">#27364</a> Deprecate GELF <code>dist/quarkus</code></li>
+<li><a href="https://github.com/keycloak/keycloak/issues/27364">#27364</a> Deprecate GELF <span class="badge bg-secondary">dist/quarkus</span></li>
 </ul>
 
 <h3>New features</h3>

2024/03/keycloak-2402-released.html

@@ -88,6 +88,7 @@ <h2>All resolved issues</h2>
 
 
 
+
 <h3>Enhancements</h3>
 <ul>
 <li><a href="https://github.com/keycloak/keycloak/issues/25057">#25057</a> Inconsistent behaviour on getting user permissions using authorization <span class="badge bg-secondary">authorization-services</span></li>