What's Changed

  • Bundle native-deps v0.14 which include measures to reduce our possible exposure to CVE-2024-3094
  • While we believe the previous versions of native-deps were not compromised due to the specific way we were building liblzma, as a precaution, we downgraded xz-utils to v5.4.5 and are now pulling the source code from Debian repositories. It is recommended that all users update as soon as possible.
  • Revert "remove fixed filters" by @utkubakir in
  • Don't fail CI job if dorny/paths-filter step fails by @HeavenVolkoff in
  • [ENG-1699] Pin Job manager by @ameer2468 in

Full Changelog: