forked-synapse/changelog.d/5133.bugfix
2019-05-03 13:02:55 +01:00

2 lines
213 B
Plaintext

Switch to using a cryptographically-secure random number generator for token strings, ensuring they cannot be predicted by an attacker. Thanks to @opnsec for for identifying and responsibly disclosing this issue!