a30f71a3282d47840ba6546d8936fcdebaa0e790
57049 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
|
|
a30f71a328 | chore(webtop): update webtop (#49197) | ||
|
|
6dd8f2eb28 |
chore(filestash): update image docker.io/machines/filestash digest to 66349d5 (#49190)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/machines/filestash | digest | `b6a9052` → `66349d5` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9maWxlc3Rhc2giLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
264e016722 |
chore(nextcloud): update image docker.io/clamav/clamav digest to 8df57e5 (#49179)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/clamav/clamav](https://redirect.github.com/Cisco-Talos/clamav.git) ([source](https://redirect.github.com/Cisco-Talos/clamav)) | digest | `652990c` → `8df57e5` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9uZXh0Y2xvdWQiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
f6d05c01c8 |
chore(drawio): update image docker.io/jgraph/drawio digest to 9485da8 (#49177)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/jgraph/drawio](https://www.drawio.com) ([source](https://redirect.github.com/jgraph/docker-drawio)) | digest | `209f3d1` → `9485da8` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9kcmF3aW8iLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
d4c150fc1f | chore(librespeed): update image ghcr.io/linuxserver/librespeed digest to 4972660 (#49178) | ||
|
|
7f5ff5034e | feat(blocky): update image ghcr.io/0xerr0r/blocky v0.31.0 → v0.32.0 (#49184) | ||
|
|
d58eaf2e78 | feat(avm-exporter): update image docker.io/pdreker/fritz_exporter 3.1.2 → 3.2.0 (#49183) | ||
|
|
452053283e | chore(webtop): update webtop (#49181) | ||
|
|
2f27a026a4 |
feat(n8n): update image ghcr.io/n8n-io/n8n 2.26.4 → 2.27.0 (#49185)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/n8n-io/n8n](https://n8n.io) ([source](https://redirect.github.com/n8n-io/n8n)) | minor | `ddb5204` → `a5b4217` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>n8n-io/n8n (ghcr.io/n8n-io/n8n)</summary> ### [`v2.27.0`](https://redirect.github.com/n8n-io/n8n/blob/HEAD/CHANGELOG.md#2270-2026-06-16) ##### Bug Fixes - **API:** Make conditional credential fields optional instead of forbidden ([#​32010](https://redirect.github.com/n8n-io/n8n/issues/32010)) ([0ab043c](https://redirect.github.com/n8n-io/n8n/commit/0ab043c8bb3c0ccdb21c57a885d454eabaacbb35)) - Bump task-runner-launcher to 1.4.7 to clear stdlib CVEs ([#​32095](https://redirect.github.com/n8n-io/n8n/issues/32095)) ([4d974e3](https://redirect.github.com/n8n-io/n8n/commit/4d974e38efaed7e3e7d869fd3490b5cfa2465b51)) - Computer use disconnect status on client stop ([#​32059](https://redirect.github.com/n8n-io/n8n/issues/32059)) ([5c61d0e](https://redirect.github.com/n8n-io/n8n/commit/5c61d0e65795d3bb92aaac1f3528c2dec873bd8f)) - **core:** Add RFC 8707 resource parameter to client-side OAuth flow ([#​30924](https://redirect.github.com/n8n-io/n8n/issues/30924)) ([04b4a79](https://redirect.github.com/n8n-io/n8n/commit/04b4a793cca1a99de5a8fc7bd5c3f6b6efb4b0d4)) - **core:** Allow publishing workflows that use private credentials ([#​32306](https://redirect.github.com/n8n-io/n8n/issues/32306)) ([27d8426](https://redirect.github.com/n8n-io/n8n/commit/27d84260c66479b8b040cea922ed7d6a6261864f)) - **core:** Enforce API key scope/endpoint parity in public API ([#​32231](https://redirect.github.com/n8n-io/n8n/issues/32231)) ([58999f0](https://redirect.github.com/n8n-io/n8n/commit/58999f030fa08e640ad56a38fd05b7e3b52589c0)) - **core:** Ensure workflows that fail to activate are removed from active, preventing unintended executions ([#​31767](https://redirect.github.com/n8n-io/n8n/issues/31767)) ([79d1695](https://redirect.github.com/n8n-io/n8n/commit/79d1695c42668a1ddd503e7f6fb73ce417d63400)) - **core:** Fix workers processing queued jobs before module initialization completes ([#​32145](https://redirect.github.com/n8n-io/n8n/issues/32145)) ([506461f](https://redirect.github.com/n8n-io/n8n/commit/506461ff7ae44915b1937f212a8e04ea7add5ffb)) - **core:** Hide resource URL for synthetic OAuth2 credentials for MCP registry tools ([#​32351](https://redirect.github.com/n8n-io/n8n/issues/32351)) ([51fe9ff](https://redirect.github.com/n8n-io/n8n/commit/51fe9ff8554220d70d648553413d8c47f98eef30)) - **core:** Include indexes and TOAST in Postgres data table size ([#​31606](https://redirect.github.com/n8n-io/n8n/issues/31606)) ([c9f4aa8](https://redirect.github.com/n8n-io/n8n/commit/c9f4aa83c4048a717833fbd65ce60ac9a1f621ab)) - **core:** Preserve trailing letter-less text in toSentenceCase() exp… ([#​32242](https://redirect.github.com/n8n-io/n8n/issues/32242)) ([7a77898](https://redirect.github.com/n8n-io/n8n/commit/7a778985c153b16b244c7adef0d8f989b1a70a86)) - **core:** Prevent nodes from throwing `context.getNodeParameter is not a function` when n8n is installed via npm ([#​32123](https://redirect.github.com/n8n-io/n8n/issues/32123)) ([a254a89](https://redirect.github.com/n8n-io/n8n/commit/a254a89d498ccf345b9067ef515b2123ff9e08a2)) - **core:** Prevent pollers from starting executions for old workflow versions when registered while in-flight ([#​32006](https://redirect.github.com/n8n-io/n8n/issues/32006)) ([21c786c](https://redirect.github.com/n8n-io/n8n/commit/21c786c8a1ed54f6690b213aa35bcb74cf13b99e)) - **core:** Prevent post-execution writes against closed pool on worker shutdown ([#​31915](https://redirect.github.com/n8n-io/n8n/issues/31915)) ([3059088](https://redirect.github.com/n8n-io/n8n/commit/3059088ab65248c2a708bb899872c33aacca40de)) - **core:** Prevent queue recovery from marking waiting executions as crashed ([#​32316](https://redirect.github.com/n8n-io/n8n/issues/32316)) ([c4c0e91](https://redirect.github.com/n8n-io/n8n/commit/c4c0e91807549793fab1f4cb339641d9c832dd8d)) - **core:** Propagate sub-workflow errors to parent after wait resume ([#​31927](https://redirect.github.com/n8n-io/n8n/issues/31927)) ([6afba57](https://redirect.github.com/n8n-io/n8n/commit/6afba57091dd1cbdc4dccf0a8fdd5f86508c555d)) - **core:** Remove user:enforceMfa from public API key scopes ([#​32223](https://redirect.github.com/n8n-io/n8n/issues/32223)) ([3c39a0e](https://redirect.github.com/n8n-io/n8n/commit/3c39a0e336e9ebbeb10b2c4398e4924c2acb1ae6)) - **core:** Retry role mapping create order conflicts ([#​30687](https://redirect.github.com/n8n-io/n8n/issues/30687)) ([448c114](https://redirect.github.com/n8n-io/n8n/commit/448c114127aa6fdec5e72e5042cdadb07c0324dc)) - **core:** Surface a final response when a builder follow-up completes silently ([#​31986](https://redirect.github.com/n8n-io/n8n/issues/31986)) ([29abe78](https://redirect.github.com/n8n-io/n8n/commit/29abe781d53475f92b6edde7e786a666d67ee22b)) - **core:** Throw a clear error for $evaluateExpression in the Code node under secure mode ([#​31721](https://redirect.github.com/n8n-io/n8n/issues/31721)) ([fbad049](https://redirect.github.com/n8n-io/n8n/commit/fbad049db972d850e09154ee18f2ada8f00a38ad)) - **core:** Upgrade nodemailer to 8.0.10 (DEVP-401) ([#​31998](https://redirect.github.com/n8n-io/n8n/issues/31998)) ([c339095](https://redirect.github.com/n8n-io/n8n/commit/c339095c47247f2e38c054fa9f835206a95d2aa4)) - **core:** Use npm's bundled node-gyp for isolated-vm Docker rebuild ([#​32158](https://redirect.github.com/n8n-io/n8n/issues/32158)) ([67cdf44](https://redirect.github.com/n8n-io/n8n/commit/67cdf44fe71134ba6b549e663f11d192e627e310)) - Correct Form URL Encoded label in HTTP Request node ([#​31852](https://redirect.github.com/n8n-io/n8n/issues/31852)) ([ff7f35e](https://redirect.github.com/n8n-io/n8n/commit/ff7f35eefcd3bce9728b1312d39ec0b1b0acbeb0)) - **editor:** Agent builder progress log lines visual glitches ([#​32077](https://redirect.github.com/n8n-io/n8n/issues/32077)) ([f9496c2](https://redirect.github.com/n8n-io/n8n/commit/f9496c2397f9e7a52f8b5abef77ea320f47e1b20)) - **editor:** Auto-reload editor on stale Vite chunk preload error ([#​31747](https://redirect.github.com/n8n-io/n8n/issues/31747)) ([2f3ebb6](https://redirect.github.com/n8n-io/n8n/commit/2f3ebb620cf7cd16fcedaa94a1be6ec61f66626b)) - **editor:** Close credential modal after successful setup ([#​31925](https://redirect.github.com/n8n-io/n8n/issues/31925)) ([7b2c722](https://redirect.github.com/n8n-io/n8n/commit/7b2c722182d741bb455db22b46eacfea6390a2c9)) - **editor:** Harden credential modal against async hangs ([#​31292](https://redirect.github.com/n8n-io/n8n/issues/31292)) ([037bdb2](https://redirect.github.com/n8n-io/n8n/commit/037bdb216f2c942e049e1fcca61b22ee8cc2b2b0)) - **editor:** Hide template setup button once setup is complete ([#​31912](https://redirect.github.com/n8n-io/n8n/issues/31912)) ([af9caff](https://redirect.github.com/n8n-io/n8n/commit/af9caffc7e1fd81aa6e3c41b5231f4d56cfa3bf6)) - **editor:** Insert instance ai prompt suggestions instead of submit ([#​32008](https://redirect.github.com/n8n-io/n8n/issues/32008)) ([3386aa8](https://redirect.github.com/n8n-io/n8n/commit/3386aa81ccbfa2ed21ff7ac2b00369fb5a1376c7)) - **editor:** Make workflow settings and actions menu work in the AI artifact view ([#​32082](https://redirect.github.com/n8n-io/n8n/issues/32082)) ([5a28683](https://redirect.github.com/n8n-io/n8n/commit/5a28683c7811530a7bbcfcfa4aebc0223efe5f47)) - **editor:** Mute Never expiration in API keys table ([#​32224](https://redirect.github.com/n8n-io/n8n/issues/32224)) ([115d9c7](https://redirect.github.com/n8n-io/n8n/commit/115d9c7597c1d7c376046df1963f0eb1e66450b7)) - **editor:** Open sticky note color picker from context menu ([#​31917](https://redirect.github.com/n8n-io/n8n/issues/31917)) ([0685db8](https://redirect.github.com/n8n-io/n8n/commit/0685db8ff6dabd5121a6b0adcec9a53fb58b8b75)) - **editor:** Preserve loaded options value when navigating between nodes ([#​31946](https://redirect.github.com/n8n-io/n8n/issues/31946)) ([f6e5705](https://redirect.github.com/n8n-io/n8n/commit/f6e57059caf420a03bc638bdcf94a8085c9ff94f)) - **editor:** Refresh Instance AI workflow preview on update and restore-version ([#​31904](https://redirect.github.com/n8n-io/n8n/issues/31904)) ([f2c764a](https://redirect.github.com/n8n-io/n8n/commit/f2c764a804f1efb458363bcc2b6f30d4cb1b0b67)) - **editor:** Remove 'Building your agent' loading state and go straight to full-page builder ([#​32120](https://redirect.github.com/n8n-io/n8n/issues/32120)) ([d553602](https://redirect.github.com/n8n-io/n8n/commit/d55360245a0cc5091b964f6cdffcc8bf9084f0cc)) - **editor:** Restore cross-origin notification after OAuth popup completes ([#​32087](https://redirect.github.com/n8n-io/n8n/issues/32087)) ([090fa9e](https://redirect.github.com/n8n-io/n8n/commit/090fa9e84b8fe8b0dc5d714c65835b0ee4689e0e)) - **editor:** Scope publish history scrollbar to timeline sidebar ([#​31661](https://redirect.github.com/n8n-io/n8n/issues/31661)) ([497226e](https://redirect.github.com/n8n-io/n8n/commit/497226e8945d780262af409565ef546b29b89299)) - **editor:** Send only credential id when authorizing OAuth credentials ([#​31926](https://redirect.github.com/n8n-io/n8n/issues/31926)) ([4f10853](https://redirect.github.com/n8n-io/n8n/commit/4f10853a1585663dbc76ce97a3b3bb53361b1301)) - **editor:** Show AI assistant error when stream ends with unparseable content ([#​32068](https://redirect.github.com/n8n-io/n8n/issues/32068)) ([a7b910f](https://redirect.github.com/n8n-io/n8n/commit/a7b910f3653093d9550234d48085afe6012bd325)) - **editor:** Show an error when imported JSON is not a valid workflow ([#​31782](https://redirect.github.com/n8n-io/n8n/issues/31782)) ([0731871](https://redirect.github.com/n8n-io/n8n/commit/073187137ac5aced3cc7514526c968d742696def)) - **editor:** Show correct project in workflow breadcrumb for projectId links ([#​32103](https://redirect.github.com/n8n-io/n8n/issues/32103)) ([fd23d4d](https://redirect.github.com/n8n-io/n8n/commit/fd23d4da56ed35bc1fceb5503011ff899d7a4578)) - **editor:** Show run data of stopped executions in scaling mode ([#​32142](https://redirect.github.com/n8n-io/n8n/issues/32142)) ([889769a](https://redirect.github.com/n8n-io/n8n/commit/889769a34dc5f652e8fa05c15e1a33719ee05081)) - **editor:** Skip external-secrets fetch on Community Edition ([#​31906](https://redirect.github.com/n8n-io/n8n/issues/31906)) ([f6518a5](https://redirect.github.com/n8n-io/n8n/commit/f6518a5780ea6610dd98de38d83a773db5caadfc)) - **editor:** Stop showing deleted resources in dependency pill ([#​32106](https://redirect.github.com/n8n-io/n8n/issues/32106)) ([4e10568](https://redirect.github.com/n8n-io/n8n/commit/4e105682ac5b92ab4ec7c81a71e087a6c227aea1)) - **editor:** Truncate long API key labels in settings table ([#​32232](https://redirect.github.com/n8n-io/n8n/issues/32232)) ([607634a](https://redirect.github.com/n8n-io/n8n/commit/607634ad274b956e413850bf7ba93b80ed1d039d)) - **editor:** Use workflow-scoped credential fetch in node credential picker ([#​31938](https://redirect.github.com/n8n-io/n8n/issues/31938)) ([8cd67d3](https://redirect.github.com/n8n-io/n8n/commit/8cd67d300d57563da9f1cc867c688db44d3b31e2)) - Fix 4 security issues in [@​grpc/grpc-js](https://redirect.github.com/grpc/grpc-js), hono ([#​32281](https://redirect.github.com/n8n-io/n8n/issues/32281)) ([e292779](https://redirect.github.com/n8n-io/n8n/commit/e292779f1a739b6188efac25f171a8da913ce16b)) - Fix security issue in shell-quote via minor version upgrade from 1.8.3 to 1.8.4 (SEC-809) ([#​32107](https://redirect.github.com/n8n-io/n8n/issues/32107)) ([131e4ea](https://redirect.github.com/n8n-io/n8n/commit/131e4ea9d6a7046b36f64a483ea4fa39f83fa845)) - **Http Request Node:** Preserve multipart filenames for binary uploads ([#​29022](https://redirect.github.com/n8n-io/n8n/issues/29022)) ([f412820](https://redirect.github.com/n8n-io/n8n/commit/f412820f522ab8cc3aa42097b618b046cb000288)) - **Kafka Node:** Distinguish the Schema Registry credential from the Kafka credential ([#​32335](https://redirect.github.com/n8n-io/n8n/issues/32335)) ([41ee940](https://redirect.github.com/n8n-io/n8n/commit/41ee9408813ba061546ebe59671fe99257558ea1)) - Move unstable PURL-pinned overrides to version-agnostic byName ([#​31985](https://redirect.github.com/n8n-io/n8n/issues/31985)) ([e77dd74](https://redirect.github.com/n8n-io/n8n/commit/e77dd74a70e105f6099a001eeefed5df3023ab0f)) - **Oracle Database Node:** Support OUT bind parameters ([#​30083](https://redirect.github.com/n8n-io/n8n/issues/30083)) ([d3406dd](https://redirect.github.com/n8n-io/n8n/commit/d3406dd75f222d4e2bae46dc7906cb14f6fc6f76)) - Require justified mutants in mutation-health gate ([#​32340](https://redirect.github.com/n8n-io/n8n/issues/32340)) ([b3a34fc](https://redirect.github.com/n8n-io/n8n/commit/b3a34fcd81659f6e33b5857a8c68816f7e105320)) - Set task status to 'cancelled' in BackgroundTaskManager.cancelAll() ([#​31764](https://redirect.github.com/n8n-io/n8n/issues/31764)) ([5733fb7](https://redirect.github.com/n8n-io/n8n/commit/5733fb794b3de6bb048ef48f91747075a6c0a896)) - Store messages even if stream is undrained ([#​32119](https://redirect.github.com/n8n-io/n8n/issues/32119)) ([f2da1d1](https://redirect.github.com/n8n-io/n8n/commit/f2da1d14bbd8b210e0d2f9f95387372c1e00bece)) ##### Features - **Calendly Trigger Node:** Deprecate API key auth and default to OAuth2 ([#​28367](https://redirect.github.com/n8n-io/n8n/issues/28367)) ([3f88c6e](https://redirect.github.com/n8n-io/n8n/commit/3f88c6e61f948e19f4175521619cab8db2d899af)) - Computer use supports reading local pdf and image files ([#​30704](https://redirect.github.com/n8n-io/n8n/issues/30704)) ([b810bfd](https://redirect.github.com/n8n-io/n8n/commit/b810bfde435036d93f640f2a2025b5c95a521bc9)) - **core:** Add cred-filename-against-convention community node lint rule ([#​32356](https://redirect.github.com/n8n-io/n8n/issues/32356)) ([e436e1a](https://redirect.github.com/n8n-io/n8n/commit/e436e1a6c9f7577095605b506dfada7ee0bfda0f)) - **core:** Add explore\_node\_resources MCP tool ([#​31018](https://redirect.github.com/n8n-io/n8n/issues/31018)) ([9373433](https://redirect.github.com/n8n-io/n8n/commit/9373433aae472444314334bafd963274fcbae3aa)) - **core:** Add Instance AI builder planning guardrails ([#​31984](https://redirect.github.com/n8n-io/n8n/issues/31984)) ([63cdd9f](https://redirect.github.com/n8n-io/n8n/commit/63cdd9f777b859e4c6d0e835f2b13014d2e39976)) - **core:** Add instance settings env telemetry ([#​31949](https://redirect.github.com/n8n-io/n8n/issues/31949)) ([3753c34](https://redirect.github.com/n8n-io/n8n/commit/3753c34e0adebdefc24c6b43dc4c3d6a5b88ebac)) - **core:** Add OpenTelemetry test trace endpoint and settings button ([#​32333](https://redirect.github.com/n8n-io/n8n/issues/32333)) ([4fde44b](https://redirect.github.com/n8n-io/n8n/commit/4fde44bdaf06727eae8cb85db727cece376ebae6)) - **core:** Add output redactor guardrail for instance AI use ([#​31929](https://redirect.github.com/n8n-io/n8n/issues/31929)) ([06df815](https://redirect.github.com/n8n-io/n8n/commit/06df815c4b74a0860d31653e162ba60b178f3996)) - **core:** Add S3 storage mode for execution data ([#​32226](https://redirect.github.com/n8n-io/n8n/issues/32226)) ([2a6acf3](https://redirect.github.com/n8n-io/n8n/commit/2a6acf3cd602e6d414f92ecf3e021d87a1149f1e)) - **core:** Add tags support to MCP server ([#​31446](https://redirect.github.com/n8n-io/n8n/issues/31446)) ([1640a69](https://redirect.github.com/n8n-io/n8n/commit/1640a69ea66baa68cfcdb04be71818560a78a48d)) - **core:** Add telemetry for import/export on server CLI ([#​32297](https://redirect.github.com/n8n-io/n8n/issues/32297)) ([2ac0660](https://redirect.github.com/n8n-io/n8n/commit/2ac06605522ec0b63f6d5e0c0ceb9a7ef057af98)) - **core:** Add valid-author community node lint rule ([#​32357](https://redirect.github.com/n8n-io/n8n/issues/32357)) ([029cf72](https://redirect.github.com/n8n-io/n8n/commit/029cf72b97c6cf64b7fe38fb7a8e0af22ca6ba7a)) - **core:** Add validation and size limits to package archive reading ([#​31812](https://redirect.github.com/n8n-io/n8n/issues/31812)) ([e0cb99e](https://redirect.github.com/n8n-io/n8n/commit/e0cb99eb84d70ce3e15b4ad466aa7b0f28c45952)) - **core:** Add workflowPublishingPolicy to package import ([#​31961](https://redirect.github.com/n8n-io/n8n/issues/31961)) ([140a319](https://redirect.github.com/n8n-io/n8n/commit/140a319ccd2284817026a63cc3fa7014725ed585)) - **core:** Configure OpenTelemetry settings via UI ([#​31781](https://redirect.github.com/n8n-io/n8n/issues/31781)) ([e2dd95d](https://redirect.github.com/n8n-io/n8n/commit/e2dd95d15a115559c216b1d0bc6964fd2b8624d0)) - **core:** Email public API key owners when their key is revoked by an admin ([#​32086](https://redirect.github.com/n8n-io/n8n/issues/32086)) ([ac19787](https://redirect.github.com/n8n-io/n8n/commit/ac197878d95a15ce30e1201a544cd79fa02efa0c)) - **core:** Expose DNS cache metrics via PrometheusMetricsService ([#​32013](https://redirect.github.com/n8n-io/n8n/issues/32013)) ([5ab381c](https://redirect.github.com/n8n-io/n8n/commit/5ab381c8bc2ea9f924e66ed46b5456086706e7e0)) - **core:** Expose SSRF protection check outcomes as Prometheus metrics ([#​32004](https://redirect.github.com/n8n-io/n8n/issues/32004)) ([58c4cd1](https://redirect.github.com/n8n-io/n8n/commit/58c4cd1d87a61bbd25c3fc5fb0a563d6cc6188e6)) - **core:** Introduce credentialBindings for package import ([#​32228](https://redirect.github.com/n8n-io/n8n/issues/32228)) ([f161bf0](https://redirect.github.com/n8n-io/n8n/commit/f161bf07861674643e7547174e4d07345d737205)) - **core:** Make data redaction enforcement generally available ([#​31966](https://redirect.github.com/n8n-io/n8n/issues/31966)) ([2afc32a](https://redirect.github.com/n8n-io/n8n/commit/2afc32a3ec5a7f6279f2ddd13b5522a51c74c210)) - **core:** Remove n8n packages license check ([#​32317](https://redirect.github.com/n8n-io/n8n/issues/32317)) ([93e2f86](https://redirect.github.com/n8n-io/n8n/commit/93e2f8629eef8ac5877950d688a11458a780464e)) - **core:** Workflow import workflowIdPolicy ([#​32075](https://redirect.github.com/n8n-io/n8n/issues/32075)) ([24c264c](https://redirect.github.com/n8n-io/n8n/commit/24c264ca288ebf0af9d958dca7323437fe97b25f)) - **editor:** Add docs links for data redaction ([#​32220](https://redirect.github.com/n8n-io/n8n/issues/32220)) ([bc90a4b](https://redirect.github.com/n8n-io/n8n/commit/bc90a4b8f2bbb746baf6523f1115d123b6be1ee0)) - **editor:** Allow creating variables and data tables from the universal add menu ([#​32079](https://redirect.github.com/n8n-io/n8n/issues/32079)) ([3cff611](https://redirect.github.com/n8n-io/n8n/commit/3cff611c6e8c568b0de0888de2ab4208e126b403)) - **editor:** Open API key modal in read-only mode for non-owners ([#​32254](https://redirect.github.com/n8n-io/n8n/issues/32254)) ([9496996](https://redirect.github.com/n8n-io/n8n/commit/94969962cf994ecf090101a946d2b5ffa4843b8e)) - **editor:** Redesign API key created modal ([#​32256](https://redirect.github.com/n8n-io/n8n/issues/32256)) ([e6bc501](https://redirect.github.com/n8n-io/n8n/commit/e6bc5012bacd037c9dc60e0b81312559c61765ee)) - **editor:** Reposition nodes on group collapse/expand ([#​32128](https://redirect.github.com/n8n-io/n8n/issues/32128)) ([053126f](https://redirect.github.com/n8n-io/n8n/commit/053126fc7c62df8f033f89cf4150f5117f48c953)) - **editor:** Rewrite icon picker with search, full Lucide set, emoji sections, and color/skin tone pickers ([#​25649](https://redirect.github.com/n8n-io/n8n/issues/25649)) ([12ba0d0](https://redirect.github.com/n8n-io/n8n/commit/12ba0d00803222495693de89eb3d1e919d4a663f)) - **editor:** Use an action menu for API key row actions ([#​32339](https://redirect.github.com/n8n-io/n8n/issues/32339)) ([f80fca2](https://redirect.github.com/n8n-io/n8n/commit/f80fca2617e8e6d57f497502bd26e1717673dee0)) - Force Microsoft account selection on OAuth for all Microsoft credentials ([#​32015](https://redirect.github.com/n8n-io/n8n/issues/32015)) ([939307a](https://redirect.github.com/n8n-io/n8n/commit/939307a4d5fc4179d7e0a7233ec31b23ad698df2)) - **GitHub Node:** Introduce get members operation on organization resource ([#​23822](https://redirect.github.com/n8n-io/n8n/issues/23822)) ([05d44e4](https://redirect.github.com/n8n-io/n8n/commit/05d44e45b2a166823ae23a1b68ff211e0bb9b922)) - **JWT Node:** Support custom header claims for the Sign operation ([#​31918](https://redirect.github.com/n8n-io/n8n/issues/31918)) ([160cb09](https://redirect.github.com/n8n-io/n8n/commit/160cb095c819f15e55ccf55ad4f7458500fdca65)) - **Kafka Node:** Add Schema Registry credential type ([#​32026](https://redirect.github.com/n8n-io/n8n/issues/32026)) ([93d9387](https://redirect.github.com/n8n-io/n8n/commit/93d9387f3eaa33c19099b2b6a5db4f270c455f35)) - **LmChatAnthropic Node:** Add streaming option ([#​30991](https://redirect.github.com/n8n-io/n8n/issues/30991)) ([cf223af](https://redirect.github.com/n8n-io/n8n/commit/cf223af11cd310d75fb8149dc27214071423fa97)) - **MCP Server Trigger Node:** Add n8n OAuth2 authentication option ([#​32326](https://redirect.github.com/n8n-io/n8n/issues/32326)) ([e7b1c1c](https://redirect.github.com/n8n-io/n8n/commit/e7b1c1c2ef60abb65bf7502c0df5d777276f6ac1)) - **Microsoft OneDrive Node:** Support the generic Microsoft OAuth2 credential ([#​32295](https://redirect.github.com/n8n-io/n8n/issues/32295)) ([30b5451](https://redirect.github.com/n8n-io/n8n/commit/30b54515d6bd6728c1961ec37d3b6cc8e2340a23)) - **Pipedrive Trigger Node:** Allow lead entities to be triggered upon ([#​23977](https://redirect.github.com/n8n-io/n8n/issues/23977)) ([da8b7c7](https://redirect.github.com/n8n-io/n8n/commit/da8b7c7317c538f3340b5b1d4212251abbda7f54)) - Reduces delay in displaying AI Assistant workflow preview examples ([#​32194](https://redirect.github.com/n8n-io/n8n/issues/32194)) ([2e9946c](https://redirect.github.com/n8n-io/n8n/commit/2e9946c458d6c91552b0f8de5b75547cd6b2c079)) - Show the workflow name on the OAuth consent screen ([#​32362](https://redirect.github.com/n8n-io/n8n/issues/32362)) ([7a5c208](https://redirect.github.com/n8n-io/n8n/commit/7a5c2087f7e3c42c373ef397cb83df14d66a28a6)) ##### Performance Improvements - **core:** Add partial index on execution\_entity to fix executions list CPU spike ([#​32116](https://redirect.github.com/n8n-io/n8n/issues/32116)) ([3b53949](https://redirect.github.com/n8n-io/n8n/commit/3b539497928f8cb9f50621f683061dc7631adbfc)) - **core:** Optimize workflow lookups ([#​24690](https://redirect.github.com/n8n-io/n8n/issues/24690)) ([c3b35c1](https://redirect.github.com/n8n-io/n8n/commit/c3b35c1a60fb32dcff2f0ef2338dc7330e4d80bd)) - **core:** Ungate minimize execution data fetching ([#​30969](https://redirect.github.com/n8n-io/n8n/issues/30969)) ([4b4a76a](https://redirect.github.com/n8n-io/n8n/commit/4b4a76a375d550679bc0312561a6b71f189bee84)) </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9uOG4iLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL21pbm9yIl19--> |
||
|
|
e67ea1cdbb |
feat(syslog-ng): update image docker.io/balabit/syslog-ng 4.11.0 → 4.12.0 (#49186)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/balabit/syslog-ng](https://redirect.github.com/syslog-ng/syslog-ng) | minor | `c652345` → `235a229` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9zeXNsb2ctbmciLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL21pbm9yIl19--> |
||
|
|
291f3c1d2a |
chore(projectsend): update image ghcr.io/linuxserver/projectsend digest to 7051aab (#49180)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | ghcr.io/linuxserver/projectsend | digest | `e5c0a85` → `7051aab` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9wcm9qZWN0c2VuZCIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvZGlnZXN0Il19--> |
||
|
|
c28081c9ee |
chore(digikam): update image ghcr.io/linuxserver/digikam digest to 86cb8fc (#49176)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/linuxserver/digikam](https://redirect.github.com/linuxserver/docker-digikam/packages) ([source](https://redirect.github.com/linuxserver/docker-digikam)) | digest | `9503e00` → `86cb8fc` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9kaWdpa2FtIiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
2b20408dbf |
fix(tautulli): update image ghcr.io/tautulli/tautulli v2.17.1 → v2.17.2 (#49182)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/tautulli/tautulli](https://redirect.github.com/Tautulli/Tautulli) | patch | `112abf6` → `864245f` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>Tautulli/Tautulli (ghcr.io/tautulli/tautulli)</summary> ### [`v2.17.2`](https://redirect.github.com/Tautulli/Tautulli/blob/HEAD/CHANGELOG.md#v2172-2026-06-16) [Compare Source](https://redirect.github.com/Tautulli/Tautulli/compare/v2.17.1...v2.17.2) - Notifications: - Fix: Line breaks in Gotify notification body text. ([#​2702](https://redirect.github.com/Tautulli/Tautulli/issues/2702)) - Newsletters: - Fix: XSS in newsletter cron value. (CVE-2026-49995) (Thanks [@​elvinsuleymanov](https://redirect.github.com/elvinsuleymanov)) - UI: - Fix: Reflected XSS in search query string. (CVE-2026-45381) (Thanks [@​JakePeralta7](https://redirect.github.com/JakePeralta7), [@​sondt99](https://redirect.github.com/sondt99), [@​kah-ja](https://redirect.github.com/kah-ja)) - Fix: Duplicated activity card progress timers. ([#​2716](https://redirect.github.com/Tautulli/Tautulli/issues/2716)) (Thanks [@​omglazrgunpewpew](https://redirect.github.com/omglazrgunpewpew)) - Other: - Fix: Fix X-Api-Key header check crashing server. ([#​2711](https://redirect.github.com/Tautulli/Tautulli/issues/2711)) - Fix: Path traversal in uploaded database and config file names. (CVE-2026-52835) (Thanks [@​tonghuaroot](https://redirect.github.com/tonghuaroot)) - Fix: Empty host fallback in URL when launching browser. ([#​2722](https://redirect.github.com/Tautulli/Tautulli/issues/2722)) (Thanks [@​upmcplanetracker](https://redirect.github.com/upmcplanetracker)) - Fix: Open redirect via whitespace bypass in /auth/redirect (CVE-2026-54915) (Thanks [@​sondt99](https://redirect.github.com/sondt99)) </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC90YXV0dWxsaSIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvcGF0Y2giXX0=--> |
||
|
|
64f42f42a5 |
fix(shlink): update image docker.io/shlinkio/shlink 5.1.2 → 5.1.3 (#49175)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/shlinkio/shlink](https://redirect.github.com/shlinkio/shlink) | patch | `8096fac` → `c1e2b7e` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>shlinkio/shlink (docker.io/shlinkio/shlink)</summary> ### [`v5.1.3`](https://redirect.github.com/shlinkio/shlink/blob/HEAD/CHANGELOG.md#513---2026-06-16) [Compare Source](https://redirect.github.com/shlinkio/shlink/compare/v5.1.2...v5.1.3) ##### Added - *Nothing* ##### Changed - *Nothing* ##### Deprecated - *Nothing* ##### Removed - *Nothing* ##### Fixed - [#​2625](https://redirect.github.com/shlinkio/shlink/issues/2625) Fix `PDO::connect(): Unable to set local cert chain file 1` error when setting `DB_USE_ENCRYPTION=true` with MySQL and PHP 8.5. </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9zaGxpbmsiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL3BhdGNoIl19--> |
||
|
|
0a498d2720 |
chore(nextpvr): update image docker.io/nextpvr/nextpvr_amd64 digest to 79841be (#49174)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/nextpvr/nextpvr_amd64 | digest | `5d72062` → `79841be` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9uZXh0cHZyIiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
1676dc4cc0 |
fix(romm): correct tag for release (#49173)
**Description** <!-- Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change. --> Added patch release version to the tag. ⚒️ Fixes # <!--(issue)--> **⚙️ Type of change** - [ ] ⚙️ Feature/App addition - [x] 🪛 Bugfix - [ ] ⚠️ Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] 🔃 Refactor of current code - [ ] 📜 Documentation Changes **🧪 How Has This Been Tested?** <!-- Please describe the tests that you ran to verify your changes. Provide instructions so we can reproduce. Please also list any relevant details for your test configuration --> **📃 Notes:** <!-- Please enter any other relevant information here --> **✔️ Checklist:** - [ ] ⚖️ My code follows the style guidelines of this project - [ ] 👀 I have performed a self-review of my own code - [ ] #️⃣ I have commented my code, particularly in hard-to-understand areas - [ ] 📄 I have made changes to the documentation - [ ] 🧪 I have added tests to this description that prove my fix is effective or that my feature works - [ ] ⬆️ I increased versions for any altered app according to semantic versioning - [x] I made sure the title starts with `feat(chart-name):`, `fix(chart-name):`, `chore(chart-name):`, `docs(chart-name):` or `fix(docs):` **➕ App addition** If this PR is an app addition please make sure you have done the following. - [ ] 🖼️ I have added an icon in the Chart's root directory called `icon.png` --- _Please don't blindly check all the boxes. Read them and only check those that apply. Those checkboxes are there for the reviewer to see what is this all about and the status of this PR with a quick glance._ --------- Signed-off-by: Boemeltrein <130394941+Boemeltrein@users.noreply.github.com> |
||
|
|
e4666cbd75 | chore(xen-orchestra): update image docker.io/ronivay/xen-orchestra digest to 63a113c (#49172) | ||
|
|
5cef77110a | chore(romm): update image ghcr.io/rommapp/romm digest to 447850c (#49171) | ||
|
|
dc9a176662 |
chore(ombi): update image ghcr.io/linuxserver/ombi digest to 8b4b1e9 (#49170)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/linuxserver/ombi](https://redirect.github.com/linuxserver/docker-ombi/packages) ([source](https://redirect.github.com/linuxserver/docker-ombi)) | digest | `db3642d` → `8b4b1e9` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9vbWJpIiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
f31d3e2cfc | feat(wyoming-whisper): update image docker.io/rhasspy/wyoming-whisper 3.1.0 → 3.2.0 (#49169) | ||
|
|
42b043d4e9 | chore(monica): update image monica digest to 77542f7 (#49165) | ||
|
|
8ae21327b5 | chore(filezilla): update image ghcr.io/linuxserver/filezilla digest to 50b432f (#49163) | ||
|
|
0e379e82b3 | fix(gatus): update image ghcr.io/home-operations/gatus-sidecar 0.3.1 → 0.3.2 (#49168) | ||
|
|
15e677a96d |
fix(crafty-4): update image registry.gitlab.com/crafty-controller/crafty-4 4.10.5 → 4.10.6 (#49167)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [registry.gitlab.com/crafty-controller/crafty-4](https://craftycontrol.com/) ([source](https://gitlab.com/crafty-controller/crafty-4)) | patch | `6dca9a8` → `2189f47` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>crafty-controller/crafty-4 (registry.gitlab.com/crafty-controller/crafty-4)</summary> ### [`v4.10.6`](https://gitlab.com/crafty-controller/crafty-4/blob/HEAD/CHANGELOG.md#----4106---20260615) [Compare Source](https://gitlab.com/crafty-controller/crafty-4/compare/v4.10.5...v4.10.6) ##### Bug fixes - Readd packaging to requirements ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1042)) <br><br> </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9jcmFmdHktNCIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvcGF0Y2giXX0=--> |
||
|
|
02d66e107d |
chore(yourls): update image yourls digest to 4aabdf1 (#49166)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | yourls | digest | `0472fea` → `4aabdf1` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC95b3VybHMiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
f4d6728d88 |
chore(friendica): update image friendica digest to 6f5d1d6 (#49164)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | friendica | digest | `e0d6103` → `6f5d1d6` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9mcmllbmRpY2EiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
f4901e2e92 |
chore(thelounge): update image docker.io/thelounge/thelounge digest to b3c6432 (#49147)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/thelounge/thelounge](https://redirect.github.com/thelounge/thelounge-docker) | digest | `7f2fff6` → `b3c6432` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC90aGVsb3VuZ2UiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
e0d027f491 |
feat(helm-deps): update chart kong 3.2.0 → 3.3.0 (#49159)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [kong](https://konghq.com/) ([source](https://redirect.github.com/Kong/charts)) | minor | `3.2.0` → `3.3.0` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. --- ### Release Notes <details> <summary>Kong/charts (kong)</summary> ### [`v3.3.0`](https://redirect.github.com/Kong/charts/releases/tag/kong-3.3.0) [Compare Source](https://redirect.github.com/Kong/charts/compare/kong-3.2.0...kong-3.3.0) The Cloud-Native Ingress and API-management </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9rdWJlcm5ldGVzLWRhc2hib2FyZCIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvbWlub3IiXX0=--> |
||
|
|
d52e6a752c |
feat(wekan): update image docker.io/wekanteam/wekan v9.45 → v9.46 (#49161)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/wekanteam/wekan](https://redirect.github.com/wekan/wekan) | minor | `fdb0a99` → `2c4f3ec` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>wekan/wekan (docker.io/wekanteam/wekan)</summary> ### [`v9.46`](https://redirect.github.com/wekan/wekan/blob/HEAD/CHANGELOG.md#v946-2026-06-15-WeKan--release) [Compare Source](https://redirect.github.com/wekan/wekan/compare/v9.45...v9.46) This release fixes the following CRITICAL SECURITY ISSUES of [ProxyBleed](https://wekan.fi/hall-of-fame/proxybleed/): - [Fixed ProxyBleed: Header-login IP allowlist bypass via X-Forwarded-For spoofing allows unauthenticated full account takeover (incl. admin)](https://redirect.github.com/wekan/wekan/commit/b181889a565254bc9bf79379a34fc7f617ccda28) ([GHSA-jggc-qvfc-jr6x](https://redirect.github.com/wekan/wekan/security/advisories/GHSA-jggc-qvfc-jr6x), CWE-290 Authentication Bypass by Spoofing, CWE-348 Use of Less Trusted Source). WeKan's header-login (reverse-proxy SSO) feature gates passwordless login on a source-IP allowlist (`HEADER_LOGIN_TRUSTED_IPS`), but `getRequestIp()` in `server/lib/headerLoginAuth.js` derived the source IP from the client-supplied `X-Forwarded-For` request header (its left-most hop), falling back to the real TCP socket peer only when that header was absent. Because `X-Forwarded-For` is fully attacker-controlled, an unauthenticated attacker who can reach the app port directly (a second ingress, a published container port, a k8s NodePort, SSRF — i.e. any path that does not traverse the trusted reverse proxy) could send a single GET request with `X-Forwarded-For: <an-allowlisted-ip>` plus the username header (e.g. `X-Auth-User: admin`) and be minted a full passwordless login session (`meteor_login_token`) for any existing user, including `admin` — complete account takeover and admin impersonation, with no password, token or shared secret. An empty or unset allowlist additionally failed OPEN (it trusted every source). The minted session is a real, persisted resume token that also authenticates the REST API as the spoofed user. Fixed by deriving the source IP from the real TCP socket peer (`req.socket.remoteAddress`/`req.connection.remoteAddress`, normalizing IPv4-mapped IPv6) and never from `X-Forwarded-For`, and by making an empty/unset `HEADER_LOGIN_TRUSTED_IPS` fail CLOSED so header-login authenticates no one until the trusted reverse-proxy IP(s) are configured (a startup warning is logged in that case). The same `findOrCreateHeaderLoginUser` / `isTrustedHeaderLoginSource` helpers back the attachment API, so that path is fixed by the same change. OPERATOR ACTION REQUIRED: if you use header-login you must set `HEADER_LOGIN_TRUSTED_IPS` to your reverse proxy's IP address(es) — after this change an unset allowlist disables header-login instead of trusting everyone, and the source IP compared against the allowlist is now the real proxy connection, not a forgeable header. For multi-hop proxy deployments an OPT-IN `HEADER_LOGIN_TRUSTED_PROXIES` list was added: `X-Forwarded-For` is honored only when the immediate TCP peer is one of those explicitly trusted proxies, and then only the right-most hop that is not itself a trusted proxy (the real client) is matched against `HEADER_LOGIN_TRUSTED_IPS` — a direct attacker's forged header is still ignored. Covered by regression tests (`server/lib/tests/proxybleed.security.tests.js` and `server/lib/tests/headerLoginAuth.tests.js`), documented in [Header-Login](https://redirect.github.com/wekan/wekan/blob/main/docs/Login/Header-Login.md), and the new env vars were added to `docker-compose.yml`, `start-wekan.sh`, `start-wekan.bat`, `Dockerfile`, `.devcontainer/Dockerfile`, `releases/virtualbox/start-wekan.sh` and the Snap config. Affected Wekan v9.44 and earlier. Thanks to rz1027, xet7 and Claude. and adds the following updates: - [Improved accessibility across all pages following WCAG 2.1 AA guidelines](https://redirect.github.com/wekan/wekan/commit/255de2062ff9b54393fd603bfc6cabddb8ede66a): - Added a visible keyboard focus indicator (`:focus-visible` outline) for links, buttons and form controls. The global CSS reset previously stripped all focus outlines, leaving keyboard users with no indication of focus (WCAG 2.4.7). - Added a "Skip to main content" link that lets keyboard and screen-reader users bypass the header chrome (WCAG 2.4.1 Bypass Blocks). - Added landmark roles so assistive technology can navigate page regions: `role="main"` on the content area, `role="navigation"` on the header quick-access bar, and `role="search"` on the global search form (WCAG 1.3.1). - Marked modals and popups as `role="dialog"` with accessible names, set `aria-modal="true"` on modals, and moved keyboard focus into a modal when it opens and back to the triggering element when it closes (WCAG 2.4.3 Focus Order). - Added accessible names (`aria-label`) to icon-only controls that previously had none: modal/popup close and back buttons, the announcement close button, the sidebar close/back buttons and the global search input and clear button (WCAG 4.1.2 Name, Role, Value). - Marked decorative Font Awesome icons inside labelled controls as `aria-hidden="true"` so they are not announced redundantly. - Added a screen-reader-only `.sr-only` helper class. - [Reorganized and updated the documentation](https://redirect.github.com/wekan/wekan/commit/83a0dd2565cd723da18da13f9a24ac09c75eb0a0): - Fixed 14 broken relative links in `docs/README.md` (verified with a link check). - Split the monolithic `docs/Features/Features.md` into focused topic pages under `docs/Features/` subdirectories: Boards, Lists, Cards, Members, Keyboard Shortcuts, Admin Panel, WIP Limits, Cleanup and Stats; `Features.md` is now an index linking to them, and `docs/README.md` links the new pages. - Added documentation for previously-undocumented features: Right-to-Left (RTL) UI, Stickers, Card Locations, Board Background Images, Attachments and File Storage, the card "complete" checkbox, and a new Accessibility feature page (covering both the Admin Panel / Settings / Accessibility info page and the built-in accessibility features above). - Updated outdated information based on the CHANGELOG: the Meteor/Node versions (now Meteor 3.x / Node.js 24.x) and the obsolete feature wishlist (Custom Fields, Subtasks, Swimlanes, Gantt, WIP limits, voting and templates are now implemented). and adds the following new features: - [Added an accessibility end-to-end test suite](https://redirect.github.com/wekan/wekan/commit/9c39226a59f8fc156559315b85a1769e109c43e8) that checks the page language, skip link, landmark roles, visible focus, dialog roles, accessible names on icon controls, and the absence of duplicate element ids. - [Greatly expanded board automation **Rules**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f): - The Rules page is now a **fullscreen page** below the top bar (board sidebar → Rules), instead of a cramped popup. It has its own route `/b/:id/:slug/rules`. - **Scheduled rules**: run rules on a schedule (once on a date, or every day / weekday / week / month at a chosen time), on **due dates** (set / approaching / overdue), or by **card aging** ("a card has been in a list for N days"). A SyncedCron job evaluates these every minute. This makes processes such as "archive cards that have been in the Completed column for 90 days" work out of the box. - These long-standing automation feature requests are implemented by the above rules work and can be closed: Fixes [#​1160](https://redirect.github.com/wekan/wekan/issues/1160), Fixes [#​2476](https://redirect.github.com/wekan/wekan/issues/2476), Fixes [#​4372](https://redirect.github.com/wekan/wekan/issues/4372), Fixes [#​5775](https://redirect.github.com/wekan/wekan/issues/5775), Fixes [#​5825](https://redirect.github.com/wekan/wekan/issues/5825) — IFTTT-style rules including recurring cards ([#​1160](https://redirect.github.com/wekan/wekan/issues/1160)), Trello-Butler- like Scheduled Rules ([#​2476](https://redirect.github.com/wekan/wekan/issues/2476)), rules that set a due date 1 day/week/month ahead via the "set a date relative to now (+N days)" action ([#​4372](https://redirect.github.com/wekan/wekan/issues/4372)), and automated recurring cards/tasks on a daily/weekday/weekly/monthly schedule from the GUI ([#​5775](https://redirect.github.com/wekan/wekan/issues/5775), [#​5825](https://redirect.github.com/wekan/wekan/issues/5825)). - **More Trello-Butler-style automations**: card **buttons** (shown on the card) and board **buttons** (shown in the board header) that run an action on demand, and new actions — sort a list (by due/name/created/modified), move all cards in a list, mark card complete/incomplete, and set a date relative to now. - **Manage rules**: select all / unselect all, delete selected, edit (rename), and a **drag-and-drop visual Workflow editor** (Jira-like): drag a trigger and an action into a `When … → Then …` builder to create a rule, drag an action onto an existing rule to change it, and delete rules from the graph. - **Import / Export rules** to JSON (lossless) and CSV (round-trippable); export only the selected rules; a **best-effort importer for Trello Butler** commands (Trello board exports do not contain Butler rules, so they are pasted in and the supported subset is mapped, with unmapped lines reported). - **Import visual workflows from n8n and Node-RED** (best-effort: the workflow graph's trigger→action edges are mapped to WeKan rules, unmapped nodes reported), with an **Import target** selector to choose which personal **workspace** and **board** the imported rules go into (applies to all importers in the dialog). - [Added a **whole-board import REST API**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) (`POST /api/boards/import`) that recreates a board — including its **rules/triggers/actions (workflows)** and other data — from a WeKan board export. With the existing export endpoint this enables **migrating all boards + workflows + rules from another WeKan over the API**; `api.py` adds `importboard` and `migratefromwekan REMOTE_URL REMOTE_USER REMOTE_PASS`. The remote fetch is done client-side, so the server never fetches arbitrary URLs. Covered by an e2e test (export a board with a rule → import it → assert the rule, trigger and action are recreated on the new board) in `tests/playwright/specs/23-rest-api-more.e2e.js`. - **Rules REST API** to add/edit/remove/list rules (`/api/boards/:boardId/rules`), documented in the OpenAPI docs and `api.py` (`addrule` / `editrule` / `removerule` / `listrules` / `getrule`). - Added a Rules e2e test suite (`tests/playwright/specs/20-rules.e2e.js`, covering the fullscreen page, creating event rules, import/export, selecting rules, the workflow view and board buttons) and docs ([Features/Rules](https://redirect.github.com/wekan/wekan/blob/main/docs/Features/Rules/Rules.md), updated IFTTT page). - [Added **Jira import**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) ("All Boards → New → Import → From Jira"): import boards from a Jira Cloud REST issue-search JSON, similar to the Trello importer. Jira statuses become lists, issues become cards (with labels, due dates and assignees mapped), and an optional `automationRules` array is imported as WeKan rules. - [Import from WeKan, Trello and Jira](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) can now be done **with or without mapping members**: an "Import without mapping members (map later)" button skips the member mapping step and imports immediately, so members can be mapped afterwards. Covered by `tests/playwright/specs/21-import-without-mapping.e2e.js`. - [Rounded out board import/export menus](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f): - **Excel (.xlsx) board import** ("All Boards → New → Import → From Excel"): the spreadsheet is parsed on the server (exceljs) into rows and imported through the CSV creator, so boards can round-trip through `.xlsx` (the matching Excel *export* already existed). - **Board PDF export** ("Board Settings → Export → Export board to PDF", and `GET /api/boards/:boardId/exportPDF`): exports the board title, lists and cards to a PDF (reusing the card PDF builder). Added `api.py exportboardpdf`. - **Kanboard import and export**: "From Kanboard" in the import menu (columns → lists, tasks → cards, tags → labels) and "Export board to Kanboard JSON" in the export menu (`GET /api/boards/:boardId/export/kanboard`), which round-trips with the importer. - **Import and export to/from NextCloud Deck, OpenProject, GitHub, GitLab, Gitea and Forgejo.** Implemented generically: each tool has a small parser that normalizes its export/API JSON to a common shape (reusing one import engine) and a formatter that emits the tool's JSON (reusing one export collector). Added to the import and export menus, with a generalized REST API (`POST /api/boards/import/:source`, `GET /api/boards/:boardId/export/:format`) and `api.py` helpers (`importboardfrom`, `exportboardformat`) so all boards can be migrated in bulk. Issue trackers (GitHub/GitLab/Gitea/Forgejo) map issues to cards grouped into Open/Closed lists; Deck stacks and OpenProject statuses become lists. Documented in [External-Tools](https://redirect.github.com/wekan/wekan/blob/main/docs/ImportExport/External-Tools.md). - **Asana** and **ZenKit** are now fully built-in (import + export menus, REST API and `api.py` — no external script needed). - Together with the existing CSV/Excel import+export and the card PDF export, this completes CSV / Excel / PDF import & export. Fixes [#​395](https://redirect.github.com/wekan/wekan/issues/395). - Covered by `tests/playwright/specs/25-excel-pdf.e2e.js` (Excel import + board PDF export). Documented in [Excel-and-VBA](https://redirect.github.com/wekan/wekan/blob/main/docs/ImportExport/Excel-and-VBA.md) and [Kanboard](https://redirect.github.com/wekan/wekan/blob/main/docs/ImportExport/Kanboard.md). - [Extended the **REST API**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) so the newer card features are scriptable: the card edit endpoint (`PUT /api/boards/:boardId/lists/:listId/cards/:cardId`) now accepts `stickers`, `locations` and `dueComplete` (the complete checkbox), documented with `api.py` examples (`setcardstickers` / `setcardlocations` / `setcardcomplete`). - [Added e2e tests for previously-untested documented features](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) (`tests/playwright/specs/22-card-features.e2e.js`): stickers, card locations, the complete checkbox and WIP limits. - [Expanded REST API test coverage](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) (`tests/playwright/specs/23-rest-api-more.e2e.js`): the Rules API (create/list/get/edit/delete), the new card `stickers` / `locations` / `dueComplete` fields, and core CRUD for swimlanes, lists, custom fields, checklists + items and comments. - [Added a **board background image upload/download API**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) (the background counterpart of the card-attachment upload API): `POST /api/attachment/upload-background` and `GET /api/attachment/download-background/:boardId` (plus the DDP methods `api.board.uploadBackground` / `api.board.downloadBackground`). Uploads use the current **Admin Panel / Attachments / Default Storage** backend and set the image as the board's active background (board-admin gated). Documented in the OpenAPI docs and `api.py` (`uploadbackground` / `downloadbackground`). - [Added **Trello-Butler-style rule variables**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) — `{cardname}`, `{cardnumber}`, `{listname}`, `{boardname}`, `{duedate}`, `{username}`, `{date}` / `{time}` / `{datetime}`, etc. — substituted in rule action text (email subject/body, created card/checklist/swimlane names). Fixes [#​2475](https://redirect.github.com/wekan/wekan/issues/2475). - [Added **visual card aging**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f): when enabled per board (board settings → "Card aging"), cards that have not been touched for a while are progressively faded based on their last activity, Trello-style. The three fade-tier **day thresholds are board-configurable** (default 7 / 14 / 28 days). Toggleable and configurable in the board settings and over the card-settings REST API (`cardAging`, `cardAgingDays1/2/3`). Fixes [#​3984](https://redirect.github.com/wekan/wekan/issues/3984). - [Added **accessible reordering**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) without drag-and-drop: visually hidden, keyboard-focusable "Move card up/down" buttons on minicards and "Move list left/right" buttons on list headers, for screen-reader and keyboard users. Fixes [#​459](https://redirect.github.com/wekan/wekan/issues/459). - [The board's background image is now also shown as the board tile background](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) on the **All Boards** list page (reusing the existing board background, with a dark overlay for readability). Fixes [#​5157](https://redirect.github.com/wekan/wekan/issues/5157). and fixes the following bugs: - [Fixed rules that send an email crashing with `TAPi18n is not defined`](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) (`TAPi18n` was not imported in `server/rulesHelper.js`). Fixes [#​5822](https://redirect.github.com/wekan/wekan/issues/5822). - [Fixed the **WIP limit** counting](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) only the currently visible cards when a filter is active, which let lists exceed their hard WIP limit; it now counts all cards in the list. Fixes [#​2095](https://redirect.github.com/wekan/wekan/issues/2095). - [Fixed deleting a board leaving orphaned rule **Actions**](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) in the database (Rules and Triggers were removed but Actions were not). Fixes [#​4266](https://redirect.github.com/wekan/wekan/issues/4266). - [Fixed the "check all / uncheck all / (un)check item" rule actions crashing](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) with "Cannot read property 'uncheckAllItems' of undefined" when the named checklist or item does not exist on the card; they now no-op safely. Fixes [#​5283](https://redirect.github.com/wekan/wekan/issues/5283). - [Added e2e tests for the above features and fixes](https://redirect.github.com/wekan/wekan/commit/f0bce67a3bf301c21ded3eb97e84a3be0010290f) in `tests/playwright/specs/24-feature-issues.e2e.js` (accessible card/list reordering, visual card aging with default and configurable thresholds, board-delete rule cleanup, and the board background on the All Boards tile). - [Fixed duplicate `id="header"` attributes rendered inside loops on the My Cards page](https://redirect.github.com/wekan/wekan/commit/c8c0438d662426aaf246a6164d3c3b18bd3462f6), which produced invalid HTML and broke assistive-technology navigation (WCAG 4.1.1). - [Fixed the My Cards table markup](https://redirect.github.com/wekan/wekan/commit/255de2062ff9b54393fd603bfc6cabddb8ede66a): header cells (`<th>`) are now wrapped in a `<tr>` with `scope="col"`, and a caption was added, so the table is announced correctly. - [Added missing `alt` text to the user avatar image](https://redirect.github.com/wekan/wekan/commit/255de2062ff9b54393fd603bfc6cabddb8ede66a) (the surrounding link already carries the accessible name). - [Fixed several bugs in the new features above](https://redirect.github.com/wekan/wekan/commit/073842b3c54f07205c5b0a9c519a665f920c768e) that were surfaced by running the full test suite (`./rebuild-wekan.sh` → "Run ALL tests"), so the Playwright suite is green again: - **Board JSON export returned empty lists, swimlanes and rules.** A previous fix that made attachment export use `meta.boardId` accidentally applied the same selector to lists/swimlanes/rules, which store a flat `boardId`, so those came back empty — and the whole-board import API then had nothing to recreate. Attachments now use their own selector. (`models/exporter.js`) - **Export, PDF export and board-delete REST endpoints required a global site admin** (`Authentication.checkUserId`) instead of board-level access, so a board owner using their own API token got `403`/empty responses and board deletion silently did nothing (its rule/trigger/action cleanup never ran). They now require only a logged-in user and rely on the existing per-board `canExport` / board-admin checks. (`models/export.js`, `models/exportPDF.js`, `server/models/boards.js`) - **Rules did not appear on the fullscreen Rules page.** The `boardRules` publication passed the user id string to `Board.isVisibleBy()`, which expects a user object, so a board's rules/triggers/actions were never published. (`server/publications/rules.js`) - **Card edit and checklist REST endpoints returned `500`.** `PUT /api/boards/:boardId/lists/:listId/cards/:cardId` with `locations` stored entries without the schema-required `_id` (and without numeric coordinates), and the checklist `POST` referenced a permission helper it never imported. (`server/models/cards.js`, `server/models/checklists.js`) - **Excel/CSV import crashed on spreadsheets without date columns** (it read `.length` of a missing cell); date columns are now treated as optional. (`models/csvCreator.js`) - **Importing a board whose export carried a non-WeKan board color aborted with a `400`.** A WeKan/Trello export can contain `color: "bgnone"`, which is not an allowed board color, so collection2 rejected the board insert and the import never navigated to the new board. The imported color now falls back to the default when it is not a recognized WeKan color. The post-import username bookkeeping was also hardened to only record usernames on users that actually exist. (`models/wekanCreator.js`) - **Accessible "move card up/down" and "move list left/right" buttons did nothing.** The buttons are visually hidden with an `.sr-only` container that clips them to a 1px box (`clip: rect(0,0,0,0)`), so a click resolved (via hit-testing) to the element behind them and the Blaze handler never fired. They are now kept in normal flow and hit-testable while still visually hidden (a transparent, focusable control), so the reorder handlers actually run. (`client/components/main/layouts.css`) - **Board/card automation buttons never rendered.** The board-button/card-button helpers joined a published rule to its `triggers` document to read the button type/label, but the schemaless `triggers` collection's documents do not reach the client over the board subscription in this Meteor 3 setup, so the lookup found nothing. The button type/label are now denormalised onto the (schema-backed, reliably-published) rule document by a new board-admin-gated `rules.createRule` server method, and the header/card read them straight from the rule. (`server/rulesButton.js`, `models/rules.js`, `client/components/rules/actions/boardActions.js`, `client/components/rules/boardButtons.js`, `client/components/rules/cardButtons.js`) - Hardened several tests that were checking the wrong state rather than a real product bug: the accessibility test now polls for the `<html lang>` attribute (set by client JS on startup) instead of reading it once before the page settles; the board-background tile test selects the "Remaining" boards menu where the unstarred seeded board appears; and the list-menu helper and a few card/list reads now poll/retry through a transient, pre-existing "Board not found" re-render that can briefly tear down the board view while its subscription settles. Thanks to xet7 and Claude. Known issues / possible later fixes (not addressed in this release): - **Transient "Board not found" flicker on an open board.** While a board's subscription re-settles, the reactive board read (`Utils.getCurrentBoard()` → `ReactiveCache.getBoard` → the memoizing `DataCache`) can momentarily return `undefined` while the subscription is still `ready()`, so `client/components/ boards/boardBody.jade` briefly shows `board-not-found` and tears down the lists/ cards before the board re-renders. Real users on slow/reconnecting links can see a flash and lose scroll/popup state. The test suite was made resilient to it, but the underlying flicker is unfixed. A safe fix needs care because the obvious options have trade-offs: a "was-ever-present" latch in the board template would replace the flash with a spinner but still unmount the lists; making `getCurrentBoard()` sticky would keep the board mounted but return a stale board after a genuine delete/archive (global behavior change); and hardening `DataCache` (not storing a transient `undefined` over a present value) risks masking legitimate removals across every reactive read. Same root cause as the board/card automation-button flicker fixed above (worked around there by reading Minimongo directly). (The `DataCache` 60s-teardown contributor to this flicker has since been hardened — see the Upcoming release fixes above.) Thanks to above GitHub users for their contributions and translators for their translations. </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC93ZWthbiIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvbWlub3IiXX0=--> |
||
|
|
8558a50ba6 |
fix(crafty-4): update image registry.gitlab.com/crafty-controller/crafty-4 4.10.4 → 4.10.5 (#49151)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [registry.gitlab.com/crafty-controller/crafty-4](https://craftycontrol.com/) ([source](https://gitlab.com/crafty-controller/crafty-4)) | patch | `d2f61fc` → `6dca9a8` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>crafty-controller/crafty-4 (registry.gitlab.com/crafty-controller/crafty-4)</summary> ### [`v4.10.5`](https://gitlab.com/crafty-controller/crafty-4/blob/HEAD/CHANGELOG.md#----4105---20260615) ##### Refactor - Sonar refactor: server.py ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1003) | [Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1024)) - Sonar refactor: File Helpers ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1015)) - Refactor repeated broadcast logic into new Websocket Manager function ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1032)) ##### New features - Add API method to list backup files ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1014)) - Add "Stop All Servers" button ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1001)) ##### Bug fixes - Fix general users not being able to edit themselves ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1016)) - Improve upload progress bar consistency ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1023)) - Improve terminal performance for noizy servers ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1022)) - Allow users to access terminal buffer without log perms ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/869)) - Fix headers for remote requests agents ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1019)) - Fix command watcher thread crash when sending command to offline server ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1026)) - Fix permission checkbox behavior during horizontal scroll ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1030)) - Fix server control nav not collapsing to dropdown on small screens ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1031)) - Rework Validate Read Perms to Fail-Shut by Default ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1040)) ##### Tweaks - Bump cryptography for CVE-2026-26007 ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1017)) - Fallback code block to automatically parse Java Versions on Arch Linux ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/845)) - Show total system RAM in dashboard memory tooltip ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1034)) - Add busy timeout to sqlite connections ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1028)) - Use exception instead of error in exception handlers ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/1038)) <br><br> </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9jcmFmdHktNCIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvcGF0Y2giXX0=--> |
||
|
|
fcbbe4e82e | fix(kromgo): update image ghcr.io/home-operations/kromgo 0.14.7 → 0.14.8 (#49155) | ||
|
|
21b3dd3b26 |
feat(redisinsight): update image docker.io/redislabs/redisinsight 3.4.2 → 3.6.0 (#49160)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/redislabs/redisinsight | minor | `85562d6` → `aa21bbd` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9yZWRpc2luc2lnaHQiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL21pbm9yIl19--> |
||
|
|
9e873c47c3 | fix(qbitrr): update image docker.io/feramance/qbitrr v5.12.5 → v5.12.6 (#49157) | ||
|
|
b821d8d305 |
feat(docuseal): update image docker.io/docuseal/docuseal 3.0.3 → 3.1.0 (#49158)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/docuseal/docuseal | minor | `4d029dd` → `cd61aa2` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9kb2N1c2VhbCIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvbWlub3IiXX0=--> |
||
|
|
0b6928be32 | fix(n8n): update image ghcr.io/n8n-io/n8n 2.26.3 → 2.26.4 (#49156) | ||
|
|
60b6bdd198 |
fix(healthchecks): update image ghcr.io/linuxserver/healthchecks 4.2.20260608 → 4.2.20260615 (#49153)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/linuxserver/healthchecks](https://redirect.github.com/linuxserver/docker-healthchecks/packages) ([source](https://redirect.github.com/linuxserver/docker-healthchecks)) | patch | `2faf46b` → `b99ed55` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9oZWFsdGhjaGVja3MiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL3BhdGNoIl19--> |
||
|
|
32633592ac |
fix(helm-deps): update chart memcached 17.4.0 → 17.4.1 (#49154)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [memcached](https://truecharts.org/charts/stable/memcached) ([source](https://redirect.github.com/bitnami/bitnami-docker-memcached)) | patch | `17.4.0` → `17.4.1` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9naXRlYSIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvcGF0Y2giXX0=--> |
||
|
|
7050363c6d |
fix(gatus): update image ghcr.io/home-operations/gatus-sidecar 0.3.0 → 0.3.1 (#49152)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | ghcr.io/home-operations/gatus-sidecar | patch | `979619e` → `6ebb396` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9nYXR1cyIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvcGF0Y2giXX0=--> |
||
|
|
b6aa9f986e |
chore(rflood): update image ghcr.io/hotio/rflood digest to 99691b3 (#49149)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | ghcr.io/hotio/rflood | digest | `8ffe142` → `99691b3` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9yZmxvb2QiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
4a6dd725a1 |
fix(cloudcommander): update image ghcr.io/coderaiser/cloudcmd 19.19.0 → 19.19.1 (#49150)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/coderaiser/cloudcmd](https://redirect.github.com/coderaiser/cloudcmd) | patch | `116e64b` → `04f909f` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>coderaiser/cloudcmd (ghcr.io/coderaiser/cloudcmd)</summary> ### [`v19.19.1`](https://redirect.github.com/coderaiser/cloudcmd/releases/tag/v19.19.1): cloudcmd v19.19.1 [Compare Source](https://redirect.github.com/coderaiser/cloudcmd/compare/v19.19.0...v19.19.1) #### 🔥 feature - [`78b206e`](https://redirect.github.com/coderaiser/cloudcmd/commit/78b206e0) client: key: Ctrl + L -> Ctrl + Shift + L: Log out ([#​466](https://redirect.github.com/coderaiser/cloudcmd/issues/466)) - [`b149288`](https://redirect.github.com/coderaiser/cloudcmd/commit/b1492885) docker: io: NPM\_CONFIG\_PACKAGE\_LOCK=false - [`76d7bf4`](https://redirect.github.com/coderaiser/cloudcmd/commit/76d7bf4d) docker: typos, shellcheck: add </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9jbG91ZGNvbW1hbmRlciIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvcGF0Y2giXX0=--> |
||
|
|
d739b29763 |
chore(tt-rss): update image ghcr.io/tt-rss/tt-rss-web-nginx digest to cfd187c (#49148)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | ghcr.io/tt-rss/tt-rss-web-nginx | digest | `7b0efde` → `cfd187c` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC90dC1yc3MiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
646426fff9 | chore(minecraft-gate): update image ghcr.io/minekube/gate digest to e914059 (#49144) | ||
|
|
660ab52a0b | chore(rflood): update image ghcr.io/hotio/rflood digest to 8ffe142 (#49145) | ||
|
|
269cff3ff0 |
chore(flexget): update image docker.io/wiserain/flexget digest to 968c69f (#49142)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/wiserain/flexget](https://redirect.github.com/linuxserver/docker-baseimage-alpine/packages) ([source](https://redirect.github.com/wiserain/docker-flexget)) | digest | `c2f0138` → `968c69f` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9mbGV4Z2V0IiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
24b24928b3 |
chore(searxng): update image docker.io/searxng/searxng digest to 37a8cc7 (#49146)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/searxng/searxng | digest | `8f1e32b` → `37a8cc7` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9zZWFyeG5nIiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
c151683933 |
chore(memcached): update image docker.io/bitnamisecure/memcached digest to a1c2579 (#49143)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/bitnamisecure/memcached | digest | `0d0725f` → `a1c2579` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9tZW1jYWNoZWQiLCJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL2RpZ2VzdCJdfQ==--> |
||
|
|
3d62a7a679 |
feat(wekan): update image docker.io/wekanteam/wekan v9.43 → v9.45 (#49126)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/wekanteam/wekan](https://redirect.github.com/wekan/wekan) | minor | `1cb700c` → `fdb0a99` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>wekan/wekan (docker.io/wekanteam/wekan)</summary> ### [`v9.45`](https://redirect.github.com/wekan/wekan/blob/HEAD/CHANGELOG.md#v945-2026-06-14-WeKan--release) [Compare Source](https://redirect.github.com/wekan/wekan/compare/v9.44...v9.45) This release adds the following updates: - [Made the "Release All Platforms" snap build resilient to transient Launchpad failures](https://redirect.github.com/wekan/wekan/commit/4a1eff22831b18bbf1a6b0defb4e8e9c6bacee1b). `snapcraft remote-build` intermittently dies with a transient TLS drop (`SSLEOFError: EOF occurred in violation of protocol`, exit 70) while talking to Launchpad after pushing the repo — unrelated to the build itself — which failed the whole release. The step now retries the remote build up to three times before giving up. Thanks to xet7 and Claude. Thanks to above GitHub users for their contributions and translators for their translations. ### [`v9.44`](https://redirect.github.com/wekan/wekan/blob/HEAD/CHANGELOG.md#v944-2026-06-14-WeKan--release) [Compare Source](https://redirect.github.com/wekan/wekan/compare/v9.43...v9.44) This release adds the following new features: - [Full right-to-left (RTL) UI for every page when an RTL language is selected](https://redirect.github.com/wekan/wekan/commit/3fa75de5df46b60615ca71721f4ac534a416cc1f) (Arabic and its variants, Persian/Farsi, Hebrew, Uyghur, Uzbek-Arabic and Yiddish — the languages flagged `rtl: true` in `imports/i18n/languages.js`). Previously only some pages flipped. The root `<html>` element now gets a reactive `dir="rtl"`/`dir="ltr"` attribute that follows the chosen language, so the whole UI mirrors at once. To make this work on every page rather than a handful, all directional component CSS was converted to CSS logical properties (`margin-left`→`margin-inline-start`, `left:`→`inset-inline-start:`, `text-align: left`→`text-align: start`, `float: left`→`float: inline-start`, and the mirror-image right/end variants) across 48 stylesheets, which flip automatically with `dir`. Horizontal-centering rules using `left: 50%` + `transform: translate(-50%, …)` were intentionally kept physical, since those already center correctly in both directions. The calendar view also renders RTL. Thanks to xet7 and Claude. - Tests for the RTL UI. A fast, server-less `tests/rtl.test.js` (run with `node tests/rtl.test.js`) checks that exactly the expected languages are flagged `rtl: true`, that the direction helper maps each language to the right `dir` value, that the root `<html>` and the client keep `dir` in sync, and — as a regression guard — that component CSS keeps using logical properties (no physical `margin-left`/`float: left`/bare `left:` offsets sneak back in). A Playwright browser spec `tests/playwright/specs/18-rtl-layout.e2e.js` drives the app in both English (LTR) and Arabic (RTL) and asserts, on the boards list, board view, card details, my-cards / due-cards / global-search, the admin settings page and the login page, that the direction is correct, the translated text is visible, and leading-edge content (the boards menu, the first board list) sits on the correct side. Thanks to xet7 and Claude. - Fixed the "Meteor unit tests" CI job hanging until its 45-minute timeout. The workflow set `TEST_WATCH: '0'`, but meteortesting:mocha computes `testWatch: TEST_WATCH || …` and the string `'0'` is truthy in JavaScript, so it turned on watch mode and the process never exited. Removing the env var lets `meteor test --once` finish and exit with the correct status. Thanks to xet7 and Claude. - Fixed the GitHub Pages (docs) build failing with a Liquid syntax error. The webhook reference page `docs/Webhooks/Webhook-data.md` documents payloads full of `{{placeholder}}` tokens, and two had a typo (`{{swimlane-id}` with one closing brace) that aborted Jekyll's Liquid parser. The placeholder-heavy doc pages (Webhook-data, Translations, Troubleshooting-Mail, Original-Positions) are now wrapped in `{% raw %}`/`{% endraw %}` so Jekyll emits the template tokens literally instead of trying to evaluate them — fixing the build and making the placeholders render correctly. Thanks to xet7 and Claude. Thanks to above GitHub users for their contributions and translators for their translations. </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC93ZWthbiIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvbWlub3IiXX0=--> |
||
|
|
7f6936b708 |
chore(automatic-ripping-machine): update image docker.io/automaticrippingmachine/automatic-ripping-machine digest to 3fe3a10 (#49139)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/automaticrippingmachine/automatic-ripping-machine](https://redirect.github.com/automatic-ripping-machine/automatic-ripping-machine) | digest | `a72ddfa` → `3fe3a10` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9hdXRvbWF0aWMtcmlwcGluZy1tYWNoaW5lIiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
8b1fed04d1 |
chore(searxng): update image docker.io/searxng/searxng digest to 8f1e32b (#49141)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.io/searxng/searxng | digest | `2008614` → `8f1e32b` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9zZWFyeG5nIiwiYXV0b21lcmdlIiwicmVub3ZhdGUvY29udGFpbmVyIiwidHlwZS9kaWdlc3QiXX0=--> |
||
|
|
ce6e3de905 |
chore(minecraft-gate): update image ghcr.io/minekube/gate digest to 6939856 (#49140)
This PR contains the following updates: | Package | Update | Change | |---|---|---| | ghcr.io/minekube/gate | digest | `73bea31` → `6939856` | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/18710) for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMzAuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEzMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFzdGVyIiwibGFiZWxzIjpbImFwcC9taW5lY3JhZnQtZ2F0ZSIsImF1dG9tZXJnZSIsInJlbm92YXRlL2NvbnRhaW5lciIsInR5cGUvZGlnZXN0Il19--> |