Caddy's vars_regexp double-expands user input, leaking env vars and files

Moderate severity GitHub Reviewed Published Mar 6, 2026 in caddyserver/caddy • Updated Mar 9, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts