CVE-2026-41322 @astrojs/node: Cache Poisoning due to incorrect error handling when if-match header is malformed
@astrojs/node allows Astro to deploy your SSR site to Node targets. Prior to 10.0.5, requesting a static js/css resources from astro path with an incorrect/malformed if-match header returns a 500 error with a one year cache lifetime instead of 412 in some cases. This has the effect that all...