Retool not impacted by recently disclosed React vulnerabilities
A number of security vulnerabilities in the React framework and related frameworks, like next.js, were recently disclosed. These vulnerabilities did not impact Retool.
These vulnerabilities were related to React's server-side rendering systems which are not used by Retool. As such, there is no action for cloud- or self-hosted customers to take.
Retool's website was also not impacted. We confirmed with our vendor that these vulnerabilities were already mitigated before being publicly disclosed. After the patches were released they applied the patches the same day.