security: CVE-2026-25227 (2026.2)

[authentik-automation]

See GHSA-qvxx-mfm6-626f

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 93.30%. Comparing base (fdbf9ff) to head (66e6303).
⚠️ Report is 3 commits behind head on version-2026.2.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@                Coverage Diff                 @@
##           version-2026.2   #20236      +/-   ##
==================================================
- Coverage           93.32%   93.30%   -0.03%     
==================================================
  Files                 978      978              
  Lines               54544    54551       +7     
==================================================
- Hits                50905    50897       -8     
- Misses               3639     3654      +15     

Flag	Coverage Δ
conformance	37.74% <22.22%> (-0.01%)	⬇️
e2e	43.62% <22.22%> (-0.01%)	⬇️
integration	22.57% <0.00%> (-0.01%)	⬇️
unit	91.51% <100.00%> (+<0.01%)	⬆️
unit-migrate	91.52% <100.00%> (-0.02%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[netlify]

✅ Deploy Preview for authentik-integrations ready!

Name	Link
🔨 Latest commit	66e6303
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-integrations/deploys/698dde3e39f7ec0008642947
😎 Deploy Preview	https://deploy-preview-20236--authentik-integrations.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[netlify]

✅ Deploy Preview for authentik-docs ready!

Name	Link
🔨 Latest commit	66e6303
🔍 Latest deploy log	https://app.netlify.com/projects/authentik-docs/deploys/698dde3e83a2460008817cbf
😎 Deploy Preview	https://deploy-preview-20236--authentik-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[github-actions]

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-66e6303f4413bf12a5f6dbd7ba69c59a2bf1760e
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
    image:
        repository: ghcr.io/goauthentik/dev-server
        tag: gh-66e6303f4413bf12a5f6dbd7ba69c59a2bf1760e

Afterwards, run the upgrade commands from the latest release notes.