July 31th, 2020

Changelog

Change

• API: To prevent graphql nested attacks, we set up a complexity threshold to requests. You can split your requests if they are above the limit.

Fix

• APP: For security reasons, we enforce assets to be served over HTTPS (except if it comes from localhost). From now on, we warn you with an explicit message, whenever your assets come from unsecured HTTP.