0.7.1
This patch release fixes a timing vulnerability in the basicauth middleware, so any users who rely on it should upgrade. Version 0.7.1 also introduces upgrades to the tls and proxy directives. Full change list:
- basicauth: Patched timing vulnerability
- proxy: Support for WebSocket backends
- tls: Client authentication
We would like to thank Jonathan Hanks for reporting the vulnerability in basicauth.