If you discover a security vulnerability within AdonisJS, please send an email to Harminder Virk at virk@adonisjs.com. All security vulnerabilities will be promptly addressed.
Security: adonisjs/lucid
Security
docs/SECURITY.md
-
Mass Assignment in AdonisJS Lucid Allows Overwriting Internal ORM StateGHSA-g5gc-h5hp-555f published
Jan 13, 2026 by RomainLanzHigh
Learn more about advisories related to adonisjs/lucid in the GitHub Advisory Database