CDN Updates for May 2026
CDN Updates
New library versions were added to the Kintone CDN .
New library versions
axios
- versions: 1.15.2
Versions before 1.15.2 contain vulnerabilities that can be read in the
GitHub release note
.
The vulnerability has been fixed in 1.15.2.
DOMPurify
- versions: 3.4.0
Versions before and including 3.3.3 contain vulnerabilities that can be read in the following links:
-
ADD_TAGS function form bypasses FORBID_TAGS due to short-circuit evaluation
-
Prototype Pollution to XSS Bypass via CUSTOM_ELEMENT_HANDLING Fallback
The vulnerability has been fixed in 3.4.0.
kintone REST API Client
- versions: 6.1.6
Versions before 6.1.6 contain vulnerabilities that can be read in the
GitHub release note
.
The vulnerability has been fixed in 6.1.6.
OpenLayers
- versions: 10.9.0
Vue.js
- versions: 3.5.33
The full list of libraries on the Kintone CDN can be found on the Kintone CDN page.