Liquibase Releases Free CVE Library for Enhanced Security Visibility

On June 11, 2026, Liquibase launched the open-source Liquibase CVE Library, providing users with detailed security visibility into known vulnerabilities across releases, Docker images, binaries, and dependencies. This resource is designed for Liquibase Community users, especially those using older versions, to identify vulnerabilities and assess their security posture. The library allows users to view a high-level security grade, CVE counts, and compare vulnerabilities between different releases. Automated security scanning tools analyze each new release and previously published images for known vulnerabilities, maintaining an up-to-date view of the threat landscape. The Liquibase Community project has been downloaded over 100 million times, highlighting its widespread use. This initiative is part of Liquibase's broader commitment to transparency and security within the community.

Key Points: • Liquibase launched a free CVE Library on June 11, 2026, for community users. • The library provides visibility into known vulnerabilities for older Liquibase versions. • Automated scanning tools ensure continuous updates and security assessments.