atlassian-connect-express security advisory - please update to the latest version

[James Hazelwood]

Hi all,

A security vulnerability was recently found and fixed in the atlassian-connect-express framework. The Spring Boot framework is unaffected. If you have a vulnerable publicly-listed add-on, you should already have received an email with instructions on how to fix. Please update to the latest version of atlassian-connect-express (1.0.14 or 2.0.3) if you have not done so already. See this issue for more information.

Regards,

James Hazelwood [Atlassian]