Yeah a zero day exploit was discovered by Boltz Exchange so I borked the code til I fix it, which will hopefully be a matter of minutes (it's a very small bug, I neglected to validate the size of the lightning preimage, which means you can submit an invalid one and the service provider will treat it as valid -- but checking the size should be a very simple code change)