The idea that Keycloak solves security issues makes me giggle. It's CVE's should... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		seanieb on Feb 11, 2024 \| parent \| context \| favorite \| on: Keycloak SSO with Docker Compose and Nginx The idea that Keycloak solves security issues makes me giggle. It's CVE's should shed some light on what I mean. - https://www.cvedetails.com/vulnerability-list/vendor_id-25/p...

bjconlan on Feb 12, 2024 [–]

It's a double edged sword. A closed source non-transparent solution without a reported cve is also laughable as "secure".

Also the most recent release 22.0.2 only has 3 (known) vulnerabilities. https://www.cvedetails.com/vulnerability-list/vendor_id-25/p...

epylar on Feb 12, 2024 | [–]

most recent release is 23.0.6

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact