#Support on previous releases

2 messages · Page 1 of 1 (latest)

gray forum Apr 2, 2025, 9:33 AM

Hi guys,

We are currently still running a few projects on Nest10 and discovered this security issue on @nestjs/common related to the Content-type header

Do you still apply security fixes to previous Nest releases?

Couldn’t find anything about releases support in the doc.

Thanks

outer island Apr 2, 2025, 9:51 AM

I don't think there's any official support for past versions. If the security vulnerability is directly in Nest, I would advice that you open an issue on GitHub. But usually, security vulnerabilities are found in libraries that Nest depends on, like Express or Fastify, which do provide patches for past versions, so it should be enough to upgrade those.