Jetpack 7.0.1: Security and Maintenance release

Jetpack 7.0.1 is now available for download. It addresses a security issue reported to us via HackerOne, and updates the Publicize feature in anticipation of changes to the LinkedIn API in the near future.

Jetpack Search Security Changes

Keeping your sites safe is always our priority, and this update improves the security of the Search feature. We fixed a vulnerability that impacted administrators using the Debug Bar plugin on their site alongside Jetpack’s Search feature.

Thanks to Jon Morgan for their prompt disclosure of this issue.

LinkedIn changes

In anticipation of some changes in LinkedIn’s API on March 1st, we have updated the Publicize feature LinkedIn connections to use a newer API. In practice, that means that if you currently use our Publicize feature to link your site to your LinkedIn account, you will need to head over to this page and reconnect your site to your LinkedIn account.

As always, the full changelog offers more details on this update. We recommend that you update your sites to the latest version as soon as possible, particularly if you use Jetpack’s Search Feature on your sites.