Sha256: 285ab7b2910ec0edf7bf607613f8440c8272948c72072442ce88bc913fe45738

Contents?: true

Size: 926 Bytes

Versions: 9

Compression:

Stored size: 926 Bytes

Contents

---
layout: news_item
title: "Jekyll 1.0.4 Released"
date: "2013-07-25 09:08:38 +0200"
author: mattr-
version: 1.0.4
categories: [release]
---

Version 1.0.4 fixes a minor, but nonetheless important security vulnerability affecting several third-party Jekyll plugins. If your Jekyll site does not use plugins, you may, but are not required to upgrade at this time.

Community and custom plugins extending the `Liquid::Drop` class may inadvertently disclose some system information such as directory structure or software configuration to users with access to the Liquid templating system.

We recommend you upgrade to Jekyll v1.0.4 immediately if you use `Liquid::Drop` plugins on your Jekyll site.

Many thanks for [Ben Balter](https://github.com/benbalter) for alerting us to the problem
and [submitting a patch][1349] so quickly.

[230]: https://github.com/Shopify/liquid/pull/230
[1349]: {{ site.repository }}/issues/1349

Version data entries

9 entries across 9 versions & 2 rubygems

Version Path
jekyll-docs-3.1.6 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-docs-3.1.5 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-docs-3.1.4 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-docs-3.1.3 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-docs-3.1.2 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-docs-3.0.3 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-2.2.0 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-2.1.1 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown
jekyll-2.1.0 site/_posts/2013-07-25-jekyll-1-0-4-released.markdown