GH · GITHUB// 1d agoOPENSOURCE RELEASE

jq 1.8.1 patches security bugs

jq is the longtime command-line JSON processor in C, used for slicing, filtering, and transforming structured data from scripts and shells. The latest 1.8.1 release is a patch update focused on security fixes, performance cleanup, and build portability.

// ANALYSIS

jq still earns its status as the default JSON scalpel for developers, and this release is the kind you want from mature infrastructure: narrow, serious fixes rather than feature churn.

–Fixes two security issues, including a heap use-after-free and an oniguruma stack overflow
–Reverts a `reduce`/`foreach` state change that caused a performance regression in 1.8.0
–Improves CLI and parser behavior around syntax errors and portability, including Windows
–Reinforces jq’s appeal as a zero-dependency C tool that stays reliable across shells, CI, and ops workflows

// TAGS

jqcliopen-sourcedata-toolsdevtool

DISCOVERED

1d ago

2026-04-10

PUBLISHED

1d ago

2026-04-10

RELEVANCE

5/ 10