Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content

Apps

5.9k Topics 56.1k Posts

Questions about apps in the App Store

Subcategories


  • 9 74
    9 Topics
    74 Posts
    Package UpdatesP
    [1.20.1] Update 2FAuth to 8.0.1 Full Changelog issue #558 docker container crashes while startup issue #561 Container fails to start when fixing Passport key permissions in rootless Docker
  • 10 85
    10 Topics
    85 Posts
    J
    @oneinterweb you have to change the credentials in /app/data/env ACKEE_USERNAME=admin ACKEE_PASSWORD=supersecret This works fine.
  • 7 59
    7 Topics
    59 Posts
    Package UpdatesP
    [1.27.0] Update actual to 26.7.0 Full Changelog View release notes
  • 41 435
    41 Topics
    435 Posts
    Package UpdatesP
    [1.14.17] Update AdGuardHome to 0.107.77 Full Changelog Authorization in GLiNET mode is no longer vulnerable to path traversal attacks. NOTE: This is CVE-2026-41448. We thank @djnnvx for reporting this security issue. New reason query parameter in GET /control/querylog. See openapi/openapi.yaml for the full description. Query parameter response_status in GET /control/querylog is now deprecated. Use new reason query parameter instead.
  • 12 115
    12 Topics
    115 Posts
    S
    This look like a good replacement for Alltube (which we were using) https://github.com/alexta69/metube
  • 16 187
    16 Topics
    187 Posts
    Package UpdatesP
    [1.25.8] Update ampache to 7.9.8 Full Changelog
  • 7 Topics
    67 Posts
    Package UpdatesP
    [1.7.1] Update answer to 2.0.1 Full Changelog New: Support semantic search in AI chat and embedding ability (@hgaol #1510) New: Add vector search plugin and vector sync service for question and answer embeddings (@hgaol) Improve: Enhance local plugin path resolution and module replacement handling for local plugins (@hgaol #1520) Fixed: Attachment upload broken after upgrading to v2.0.0 (@robinv8 #1527) Fixed: Keep Helm install port aligned with service port (@Herrtian #1522) Fixed: Change avatar column type to TEXT to support long URLs (@maishivamhoo123 #1499) Fixed: Update bubble user background color for dark mode (@MakiWinster72 #1505) Fixed: Implement HTML rendering for AI chat display content (@LinkinStars) Fixed: Add admin moderator visibility checks for timeline objects, answers, and comments (@LinkinStars) Fixed: Escape HTML characters in dynamic email template content (@LinkinStars)
  • 6 28
    6 Topics
    28 Posts
    K
    @girish I understand. Thanks!
  • 4 25
    4 Topics
    25 Posts
    jamesJ
    Hello @andreasdueren Thanks for the report. Fixing it right now.
  • 8 Topics
    120 Posts
    Package UpdatesP
    [1.99.1] Update audiobookshelf to 2.35.1 Full Changelog Duplicate refresh tokens across sessions can cause unexpected logout #5253 by @nichwall in #5255 Server crash when renaming an author to another author when they are both on the same book #5247 by @nichwall in #5256 Server crash when invalid metadata.json is scanned in #5268 Sequelize user queries to use direct case-insensitive username/email matching
  • 10 35
    10 Topics
    35 Posts
    girishG
    Thanks for reporting here @gardinermichael . We have in fact hidden the app package because there were many issues with it and we couldn't manage to get it to be stable . Maybe we should revisit this.
  • 40 399
    40 Topics
    399 Posts
    S
    Hi, since updating to package 1.33.x (Baserow 2.3.1) my instance restarts several times a day due to OOM, even after raising the memory limit from 4 GB to 6 GB. Diagnosis ps aux --sort=-rss inside the container shows 29 celery processes: three queue masters (celery, export, and the new automation_workflow queue introduced with 2.3) each forking ~8 children (= CPU core count) at ~225 MB RSS each: cloudron 32 ... celery -A baserow worker -l INFO -Q automation_workflow cloudron 36 ... celery -A baserow worker -l INFO -Q export cloudron 39 ... celery -A baserow worker -l INFO -Q celery (+ ~8 forked children per queue) Note the workers are started without any --concurrency parameter, so celery defaults to one fork per CPU core, per queue. I have export BASEROW_AMOUNT_OF_WORKERS=1 set in /app/data/env.sh (sourced correctly at line 15 of start.sh), but it has no effect: grep -rn "AMOUNT_OF_WORKERS\|concurrency" /app/pkg/start.sh # (no output) This variable is only consumed by the upstream Baserow image's entrypoint (which translates it into --concurrency). The Cloudron package's start.sh launches the workers directly via supervisord without that translation, so the variable is silently ignored. With three full fork pools this makes 4 GB (previously fine) insufficient, and the new third queue explains why it surfaced with the 2.3 update. Suggested fix Pass --concurrency ${BASEROW_AMOUNT_OF_WORKERS:-1} (or a sensible default) to the celery worker commands in the supervisor config / start.sh, like the upstream image does. Workaround for anyone affected Since celery reads its config from Django settings (namespace="CELERY"), you can force the concurrency via a sitecustomize.py. Create /app/data/sitecustomize.py: import os os.environ["DJANGO_SETTINGS_MODULE"] = "sitecustomize" from baserow.config.settings.base import * # noqa CELERY_WORKER_CONCURRENCY = 1 and add to /app/data/env.sh: export PYTHONPATH="/app/data:$PYTHONPATH" After a restart the process count drops from 29 to 8 and memory usage is back to normal. (Remember to remove this again once the package is fixed.) Happy to provide more logs if needed. Thanks!
  • 5 64
    5 Topics
    64 Posts
    Package UpdatesP
    [1.6.6] Update beszel to 0.18.7 Full Changelog Add more disk I/O metrics (utilization, read/write time, await, queue depth) (#​1866) Add ability to copy alerts between systems by @​svenvg93 (#​1853) Add SENSORS_TIMEOUT environment variable (#​1871) Replace distatus/battery with an internal implementation by @​svenvg93 (#​1872) Restrict universal token API to non-superuser accounts (#​1870) Fix macOS ARM64 crashes by upgrading gopsutil to v4.26.3 (#​1881, #​796) Fix text size for system names in grid view by @​Malith-Rukshan (#​1860) Fix NVMe capacity reporting for Apple SSDs by @​svenvg93 (#​1873) Fix Windows root disk detection when the executable is not on the root disk (#​1863) Fix nested virtual filesystem inclusion in Docker when mounting host root by @​svenvg93 (#​1859)
  • 13 257
    13 Topics
    257 Posts
    Package UpdatesP
    [2.1.2] Update BookStack to 26.05.2 Full Changelog Added Serbian language to language_select array. Thanks to @PolarniMeda. (#6153) Updated PHP package versions. Updated translations with the latest crowdin changes. Updated content allow-filtering to consider protocols used in srcset attributes. Updated URL filtering with a more thorough centralized utility class. Updated comment delete action to also check comment visibility permissions. Updated referring URL use with stronger source validation. Updated translations with latest crowdin changes. (#6166)
  • 1 6
    1 Topics
    6 Posts
    Package UpdatesP
    [0.5.0] Fix documentation link
  • 11 130
    11 Topics
    130 Posts
    Package UpdatesP
    [2.10.3] fix: update doc links from /apps/ to /packages/
  • 56 712
    56 Topics
    712 Posts
    jdaviescoatesJ
    @Mathieu I don't think going to an old version would be wise - very likely to have security flaws (it was AI based attacks which led them to close their code). I've not tried it at all yet (I'm just using the free hosted version of Cal.com as I don't need teams etc), but perhaps see if @ekevu123 could (or already has) add team functions to Tymeslot?
  • 13 54
    13 Topics
    54 Posts
    timconsidineT
    Calendar and especially the bookings functionality seems great. I know it's a slippery slope, but it would be nice to have some basic minimal page branding. a domain name (because the calendar URL may not be the same as the website where the booking page link is hosted) if not the above, a simple text field in H1 or H2 format for the business/person name As the suggestion is focussed on 'minimal', I think that's enough. Optional other possibilities : link to a logo file set the background colour of the booking page Just thoughts ... (assuming I haven't missed something in Settings)
  • 35 330
    35 Topics
    330 Posts
    Package UpdatesP
    [1.38.0] Update calibre to 9.11.0 Full Changelog
  • 18 157
    18 Topics
    157 Posts
    jamesJ
    Hello @luckow This is not documented very well. Had to look into the Castopod code to find the URL path to the API. https://github.com/ad-aures/castopod/blob/bc041702dd8058ae8e1831b9609827c911a5a626/modules/Api/Rest/V1/Config/RestApi.php#L35 public string $gateway = 'api/rest/v1/'; So the full URL would be https://castopod.cloudron.dev/api/rest/v1/podcasts curl https://castopod.cloudron.dev/api/rest/v1/podcasts [] After creating one: curl https://castopod.cloudron.dev/api/rest/v1/podcasts [{"id":1,"guid":"2bdee7b8-8131-5888-b4da-713d7b3a124a","actor_id":1,"handle":"demopadcast","title":"Demo Podcast","description_markdown":"DESC","description_html":"<p>DESC</p>\n","cover_id":3,"banner_id":null,"language_code":"en","category_id":1,"parental_advisory":null,"owner_name":"james","owner_email":"james@cloudron.example","is_owner_email_removed_from_feed":true,"publisher":"","type":"episodic","medium":"podcast","copyright":"","episode_description_footer_markdown":null,"episode_description_footer_html":null,"is_blocked":false,"is_completed":false,"is_locked":true,"imported_feed_url":null,"new_feed_url":null,"payment_pointer":null,"location_name":null,"location_geo":null,"location_osm":null,"verify_txt":"","custom_rss":null,"is_published_on_hubs":false,"partner_id":null,"partner_link_url":null,"partner_image_url":null,"is_premium_by_default":false,"created_by":1,"updated_by":1,"published_at":null,"created_at":{"date":"2026-03-03 11:06:44.000000","timezone_type":3,"timezone":"UTC"},"updated_at":{"date":"2026-03-03 11:06:44.000000","timezone_type":3,"timezone":"UTC"},"feed_url":"https://castopod.cloudron.dev/@demopadcast/feed.xml","actor_display_name":"Demo Podcast","cover_url":"https://castopod.cloudron.dev/media/podcasts/demopadcast/cover.jpg","categories":[{"id":1,"parent_id":null,"code":"arts","apple_category":"Arts","google_category":"Arts","translated":"Arts"}]}]
  • 28 Topics
    378 Posts
    Package UpdatesP
    [1.30.4] Update changedetection.io to 0.55.7 Full Changelog Security - SSRF in ChangeDetection.io via urlparse/urllib3 Parser Differential UI - LLM - Fix for settings (wtforms vs pydantic) by @dgtlmoon in #4184 UI - Preview problem fix for extract_text/ignore_text #4138 by @dgtlmoon in #4169 UI - LLM - Flag LLM_FEATURES_DISABLED to disable all LLM from the UI/system by @dgtlmoon in #4171 Notifications - raw_diff token was missing by @dgtlmoon in #4177 LLM UI - Blueprint/code also disabled when env flag LLM_FEATURES_DISABLED is enabled by @dgtlmoon in #4180 Llm settings pydantic refactor by @dgtlmoon in #4181
  • 61 442
    61 Topics
    442 Posts
    Package UpdatesP
    [1.53.1] Update chatwoot to 4.15.1 Full Changelog Reverted a the unread counts for mentions, participating and folders due to performance relates issues.
  • 40 Topics
    513 Posts
    Package UpdatesP
    [1.53.0] Update code to 26.04.2.1.1
  • 3 30
    3 Topics
    30 Posts
    Package UpdatesP
    [1.8.0] Update comentario to 3.17.0 Full Changelog Add custom moderator name feature (#​222) - 66d2bcc, 753451c, 61cc240, ff9e89f, 400f7e5, 8425ce6, 4bab9e2, c1a4ec3, 467bcc0 Add support for PostgreSQL 18 (#​224) - 84c93da Backend: fix resource leak in DecompressGzip() - 58cfbe7 Backend: fix Postgres restart loop with a non-public schema (#​225, !24) - 9137e53, 4476b1b I18n: add Portuguese messages (pt) by @​pt.cesar.monteiro - bbc7303 I18n: add Ukrainian translation (uk) by @​kleindberg - 3e7ca17 Go 1.26, update dependencies, modernise code - 33d3044, a4232a7, 4605e5c, cab77fb, 3b97e19, 58a1146, 53e905a, 8464344, 1e193e3, 0c1de70, 8c7cc53 Demo website: add predefined comments to Ukrainian page (also !30) - 724a0ad Demo website: fix comment and config statements - 2a3516d, 25e7a30
  • 12 81
    12 Topics
    81 Posts
    girishG
    @gh0stface yup, they made a release yesterday it seems and it should have the PRs we made upstream. @vladimir-d is checking the package again.
  • 20 127
    20 Topics
    127 Posts
    U
    @girish Yep, exactly that. AnyType and Appflowy are growing in popularity. Would be nice to see them
  • 5 29
    5 Topics
    29 Posts
    Package UpdatesP
    [1.0.1] Update contacts to 1.0.1 Fix description
  • 1 Topics
    4 Posts
    Package UpdatesP
    [0.2.1] Update docker-registry to 0.2.1 List all images for all users
  • 4 Topics
    25 Posts
    girishG
    @atridad Thanks for the heads up, the app is gone from our library as well.
  • 16 108
    16 Topics
    108 Posts
    Package UpdatesP
    [1.16.0] Update sso to 0.6.0 Full Changelog This release requires CryptPad 2026.5.1 SSO default config changed (only affects new installs)
  • 6 96
    6 Topics
    96 Posts
    Package UpdatesP
    [1.29.0] Update ctfreak to 1.39.0 Full Changelog
  • 48 389
    48 Topics
    389 Posts
    Package UpdatesP
    [2.15.1] Update cubby to 2.15.1 Implement user deletion feature group folders: use multi-select for user selection Unify empty view layouts Do not show group folder folderPath
  • 12 96
    12 Topics
    96 Posts
    Package UpdatesP
    [1.14.2] Update dawarich to 1.9.2 Full Changelog A Flights toggle on the Map v2 trip view shows your AirTrail flights alongside the route and photo overlays, and hides the day-route segments that fall inside a flight so the two don't overlap. The button only appears when an AirTrail URL is configured. Photoprism photo imports with an end date no longer fail with an HTTP 400: the before filter is now sent as a full ISO8601 timestamp instead of a bare date (#1608). Re-running visit detection no longer raises ActiveModel::MissingAttributeError when a cluster contains points already attached to a confirmed visit.
  • 65 644
    65 Topics
    644 Posts
    Package UpdatesP
    [3.1.0] Update directus to 12.1.1 Full Changelog Updated vite dependency to 8.1.2 (#27826 by @ComfortablyCoding) Limited sensitive system mutations defined by GRAPHQL_SINGLE_USE_MUTATIONS to single use (#27801 by @br41nslug) Removed /utils/hash/generate and /utils/hash/verify endpoints (#27774 by @br41nslug) Fixed failed TUS file replacements leaving orphaned file records. Hardened upload path validation to prevent writes to extension and temporary storage directories (#27803 by @br41nslug) Added CORS_ORIGIN checks for websocket connections (#27812 by @br41nslug) Added PROJECT_OWNER_ENABLED env var to allow disabling owner info collection and sync (#27802 by @ComfortablyCoding) Restored pre-v12 back button behavior: returns to the previously visited item/page when navigating via a relation, and to the collection listing when landing on an item directly (#27799 by @robluton) Fixed a stored XSS vulnerability where the project color could break out of the generated favicon's SVG markup and inject arbitrary HTML (#27810 by @br41nslug) Fixed a Local File Inclusion vulnerability in MailService.renderTemplate (#27811 by @br41nslug) Fixed array indexing (e.g. field[0] or field.0) in display and preview URL templates, so a template like {{ categories[0].name }} now resolves to the indexed value instead of rendering empty (#27773 by @dstockton)
  • 91 778
    91 Topics
    778 Posts
    jamesJ
    Hello @mononym I did not yet look into this myself.
  • 24 Topics
    266 Posts
    Package UpdatesP
    [2.7.2] Add timestamp argumens to registry-client script
  • 5 45
    5 Topics
    45 Posts
    J
    @teiluj yeah often there is a lag between the company publishing the source and the images and the release notes etc. But usually they all settle down in 1-2 weeks.
  • 13 117
    13 Topics
    117 Posts
    Package UpdatesP
    [1.24.0] Update documenso to 2.14.0 Full Changelog fix: improve team member removal ux by @dguyen in #3001 fix: only send S3 checksums when required to support S3-compatible storage by @yashs33244 in #2984 fix: render unicode characters in typed signatures by @AbdelrhmanAbdelhamed in #2728 fix: signing request email renders blank when organisation/team branding is enabled by @NandiniDhanrale in #2968 feat: add custom brand colours to emails by @Mythie in #3005 feat: allow additional envelope duplicate settings by @dguyen in #3008 feat: add API endpoint to reject documents on behalf of recipients by @Mythie in #3007 feat: cap automated reminders before resend by @Mythie in #3016 feat: add API endpoints for downloading certificate and audit log PDFs by @Mythie in #3025 fix: resolve permission issues by @dguyen in #3029
  • 12 63
    12 Topics
    63 Posts
    Package UpdatesP
    [1.12.0] Update community to 5.14.0 Full Changelog Added Spanish language support
  • 17 266
    17 Topics
    266 Posts
    Package UpdatesP
    [1.17.3] Update docuseal to 3.1.3 Full Changelog It is now possible to unarchive completed submissions via the submission page dropdown menu. Font settings have been added to the radio group field type. Various performance optimizations. This release contains a database schema migration that runs automatically on app boot. It might take 1-2 minutes to complete on a database with 1M submissions. For a 10-50k submissions table, the migration takes a few seconds.
  • 17 131
    17 Topics
    131 Posts
    Package UpdatesP
    [1.26.1] Update dokuwiki-plugin-smtp to 2026-06-28
  • 40 351
    40 Topics
    351 Posts
    jamesJ
    Hello @oskarardolo It is possible what with extra effort. Similar to https://forum.cloudron.io/post/126448
  • 13 Topics
    89 Posts
    Package UpdatesP
    [1.8.0] Update easyappointments to 1.6.0 Full Changelog Added request method check on each request so that only allowed methods are accepted Add Jitsi integration and link generation for appointments made via the public page ALTCHA integration added as an alternative CAPTCHA step (#1155) When someone clicks on password reset, implement a link delivery and not just change the password directly Implementation of additional GDPR features in Easy!Appointments (#535) Add CAPTCHA support for all the public forms in order to block abusive requests (#1754) Replace the availabilities type with the new slot interval field Fixed a security issue where an administrator could inject scripts into the "booking disabled" message that would then run for every visitor of the public booking page Fixed a security issue where a provider could create or modify appointments under another provider's account Webhooks are now triggered only for the exact actions they are subscribed to, instead of matching similarly named actions by substring
  • 12 99
    12 Topics
    99 Posts
    Package UpdatesP
    [1.18.3] Update Emby.Releases to 4.9.5.0 Full Changelog Fix sporadic cases of wrong subtitle encoding Fix sporadic cases of subtitles not showing Fix strm files containing youtbue urls Add additional Estonian language codes Fix realtime monitor ignoring folders with a dot in the name Add new spotlight home screen section option (requires Emby Server 4.10+)
  • 52 513
    52 Topics
    513 Posts
    Package UpdatesP
    [3.0.2] Update espocrm to 10.0.2 Full Changelog Lead conversion error when attachment fields present on both sides #3718 Drag and drop emails not working #3721 PDF Template: Selecting Placeholder does nothing #3725
  • 31 286
    31 Topics
    286 Posts
    Package UpdatesP
    [4.10.2] Update etherpad-lite to 3.3.2 Full Changelog Force @opentelemetry/core 2.8.0 (GHSA-8988-4f7v-96qf / CVE-2026-54285, #7975). The transitive dep (pulled in via @elastic/elasticsearch @elastic/transport) had a W3CBaggagePropagator.extract() that did not enforce W3C size limits on inbound baggage headers, allowing unbounded memory allocation. Pinned via a pnpm-workspace.yaml override; satisfies the existing 2.x range with no parent bump. Resolve open Dependabot security alerts (#7967). Refreshes stale override floors and adds new ones via pnpm-workspace overrides: form-data 4.0.6, ws 8.21.0, esbuild 0.28.1, basic-ftp 5.3.1 (capped <6.0.0 to avoid a surprise major on the plugin-install path), tar 7.5.16, js-yaml 4.2.0, qs 6.15.2, ip-address 10.1.1, and @babel/core 7.29.6. Reject read-only deletion via token-less paths (part of #7959 / #7960). Under allowPadDeletionByAllUsers a read-only viewer was granted canDeletePad=true, and the server's flagOk/creatorOk branches never checked session.readonly so a read-only link holder could delete a pad without a token. Read-only sessions are now excluded from both the client var and the server's token-less authorization paths; a valid recovery token stays sufficient regardless of session mode. Pad deletion suppress the recovery token for durable identities and relabel the action (#7926 / #7930). Building on the allowPadDeletionByAllUsers suppression, a creator's deletion token is now also withheld when they have a durable identity authenticated (req.session.user with a username) and the deployment pins that identity to a stable authorID via a getAuthorId hook since only then does the creator survive a cookie clear or a different device, making the token redundant. Offline/air-gapped installs env-var overrides for the update check, plugin catalog, and updater (#7917, addresses #7911). Firewalled deployments could not disable Etherpad's outbound calls without editing settings.json inside the image. Pad keep the token-less Delete button reachable without pad-wide settings (#7959 / #7960). The token-less #delete-pad button was nested inside the enablePadWideSettings-gated section, so disabling pad-wide settings removed the only no-token deletion path. History mode restore the saved-revision markers (#7946 / #7948). When #7659 moved the timeslider into the pad as an embedded iframe, the user-facing control became the outer #history-slider-input, but the saved-revision stars were still drawn into the now-hidden iframe #ui-slider-bar, so "Save Revision" appeared to do nothing in in-pad history mode (a 3.3.x regression). Import dialog correct the outdated "no converter" help message (#7988 / #7989). The notice claimed only plain text and HTML could be imported and linked to the legacy AbiWord wiki, prompting LibreOffice installs for formats that already work natively. PadManager reject unreachable . and .. pad ids (#7962). isValidPadId accepted ids consisting only of URL dot-segments, but per the WHATWG URL standard a browser normalises /p/. to /p/ and /p/.. to /, so such a pad could be created in the database yet never opened or exported. CLI fix the database migration/import scripts against the ueberdb2 promise API (#7982 / #7983). migrateDB.ts opened source and target databases, copied all keys, then resolved without closing either so under ueberdb2 6.1.x the keep-alive timer kept the process hanging after "Done syncing dbs", and buffered target writes were only guaranteed flushed on close().
  • 2 114
    2 Topics
    114 Posts
    Package UpdatesP
    [1.27.0] Update evcc to 0.311.0 Full Changelog EEBus: add heating brands (BC) (#31344) EEBus: error on missing productionNominalMax (BC) (#31483) Add AMTRON Professional Twincharge with infotext for modbus port 502/503 (#31361) Add BKW feed-in tariff (#31424) Add IBC Solar HomeOne hybrid inverter (#31425) Vehicle: add wakeupdisabled feature to suppress wake-up calls (#31461) EntsoE: fix dropped price series and UTC request offset (#31396) Sessy: fix sensor scaling (#31436) Versicharge: fix power reading (#31359) (#31363) fix: swap charging/discharging label on battery status card (#31405)
  • 6 42
    6 Topics
    42 Posts
    Package UpdatesP
    [3.2.1] Update fider to 0.36.1 Full Changelog feat(webhooks): ALLOW_PRIVATE_NETWORK_TARGETS env to allow internal targets by @hodyhq in #1579 Fix missing email strings by @mattwoberts in #1598 Respond copy by @mattwoberts in #1601
  • 5 36
    5 Topics
    36 Posts
    robiR
    Yes please, who is doing the community app?
  • 2 Topics
    15 Posts
    Package UpdatesP
    [1.3.0] Update fmd-server to 0.16.0 Full Changelog Ability to listen on a specific IP address, instead of 0.0.0.0 (#153) Collapsible groups in web UI sidebar (!235) New languages: cs, hu, it, pt. Thank you translators! Bug fixes
  • 22 276
    22 Topics
    276 Posts
    Package UpdatesP
    [3.12.4] Update firefly-iii to 6.6.6 Full Changelog Issue 12426 (Important: The latest version removed all references to foreign currency in income) reported by @jgmm81
  • 6 118
    6 Topics
    118 Posts
    Package UpdatesP
    [2.9.13] Update formbricks to 5.1.4 Full Changelog
  • 6 28
    6 Topics
    28 Posts
    Package UpdatesP
    [1.2.4] Update forgejo to 15.0.4 Full Changelog
  • 72 815
    72 Topics
    815 Posts
    Package UpdatesP
    [1.16.18] Update freescout to 1.8.229 Full Changelog Fixed "Undefined variable $addressString" (#5487) Fixed "Undefined array key 10004" on outbound Guzzle request without a proxy (#5486) Fixed "Undefined variable $ensureAddressesAreSafe" (#5487) Fixed permissions check when merging conversations (Security: GHSA-v8vc-cmf9-gg2c) Patched security issues in dependency libraries: GHSA-vm85-hxw5-5432, GHSA-hq7v-mx3g-29hw, GHSA-34xg-wgjx-8xph, GHSA-cwxw-98qj-8qjx, GHSA-wpwq-4j6v-78m3, GHSA-h5x3-xfc9-m39h, GHSA-5vg9-5847-vvmq
  • 20 158
    20 Topics
    158 Posts
    nebulonN
    ah good! glad it worked out in the end then
  • 2 15
    2 Topics
    15 Posts
    Package UpdatesP
    [1.0.1] The app package is now stable
  • 83 1k
    83 Topics
    1k Posts
    Package UpdatesP
    [4.183.1] Update ghost to 6.52.1 Full Changelog Fixed link selection in automations email editor (#29176) - Troy Ciesco
  • 50 440
    50 Topics
    440 Posts
    Package UpdatesP
    [1.38.4] Update gitea to 1.26.4 Full Changelog fix(auth): do not auto-reactivate disabled users on OAuth2 callback (#38009) (#38183) fix: walk git log context error handling (#38182) (#38185)
  • 20 149
    20 Topics
    149 Posts
    J
    Yes, it's only jekyll. Not an expert on next.js but I think it also needs a backend right ? If so, you have to create a custom package - https://docs.cloudron.io/packaging/tutorial/
  • 65 666
    65 Topics
    666 Posts
    Package UpdatesP
    [1.117.5] Update gitlab-foss to 19.1.2 Full Changelog Fix approval rule override regression for Developer MR authors GitLab Enterprise Edition Remove ActiveUserCountThresholdWorker cron schedule GitLab Enterprise Edition Backfill NULL organization_id on oauth_applications Make ci_finished_builds engine swap work on ClickHouse 23.x Clear stored password when pull mirror destination changes (merge request) Address private project cross-references visibility issue (merge request) Treat failing markup renders as plain text (merge request) Sanitize vulnerability detail keys to prevent XSS via thAttr injection (merge request) Fix tag/branch ambiguity in blob view (merge request) Fix WorkItems auth bypass for Minimal Access users (merge request)
  • 2 13
    2 Topics
    13 Posts
    Package UpdatesP
    [1.1.5] Update glpi to 11.0.8 Full Changelog
  • 7 60
    7 Topics
    60 Posts
    Package UpdatesP
    [1.23.2] Update gogs to 0.14.3 Full Changelog Security: Reverse proxy authentication header was honored from any remote address, allowing user impersonation when Gogs was reachable directly. The header is now only trusted from addresses listed in [auth] TRUSTED_PROXY_IPS. #8264 - GHSA-w6j9-vw59-27wv Security: Server-side request forgery in webhook deliveries via HTTP redirects to local network addresses. #8263 - GHSA-c4v7-xg93-qf8g Security: Denial of service when rendering issue references against a malformed external issue tracker URL format. #8312 - GHSA-4j89-2c4f-44c6 Security: Stored XSS in Jupyter notebook (.ipynb) preview through Markdown links with javascript: URLs. #8319 - GHSA-jq8v-rmf6-65jw Security: Missing authorization check on the attachment download endpoint allowed anyone who knew (or guessed) an attachment UUID to download files belonging to private repositories. #8320 - GHSA-p9f5-h3rx-j5qw Security: Remote command execution via pull request rebase merges with crafted branch names. #8301 - GHSA-qf6p-p7ww-cwr9 Security: Arbitrary file write outside the repository working tree via crafted upload filename routed through a committed directory symlink. #8332 - GHSA-89mr-xqfv-758m Security: Remote code execution via path traversal in organization names accepted through the API. #8334 - GHSA-c39w-43gm-34h5 Security: Stalled SSH handshakes pinned a file descriptor and goroutine indefinitely. The built-in SSH server now drops connections that do not complete the handshake within 15 seconds. #8335 - GHSA-xp79-5mx3-jx52 Security: Organization metadata and team list endpoints were reachable without authentication. #8336 - GHSA-744x-3838-5r56
  • 22 251
    22 Topics
    251 Posts
    Package UpdatesP
    [2.6.0] Update grafana to 13.1.0 Full Changelog
  • 15 161
    15 Topics
    161 Posts
    S
    @james Here are the two test sites: Grav in Docker Grav on LAMP (PM me for password.)
  • 19 166
    19 Topics
    166 Posts
    Package UpdatesP
    [1.11.2] Update greenlight to 3.8.2.3 Full Changelog Multiple gem updates Language Updates
  • 7 44
    7 Topics
    44 Posts
    jamesJ
    Tracking this issue in this topic with a maintainer of Grist https://forum.cloudron.io/post/126499 Current solution, restore to Cloudron app version 1.2.3 which packages Grist version 1.7.15. This version does not have the issue.
  • 55 318
    55 Topics
    318 Posts
    jamesJ
    Hello @albertbeaufrand and welcome to the Cloudron Forum This topic is a duplication of https://forum.cloudron.io/post/97415 and will be merged into it. Please read the responses above to get the full answer to your question.
  • 4 23
    4 Topics
    23 Posts
    girishG
    App discontinued due to no upstream updates.
  • 18 145
    18 Topics
    145 Posts
    Package UpdatesP
    [1.22.0] Update hedgedoc to 1.11.0 Full Changelog GHSA-6c2w-8w96-3pcv reports a possible HTML injection via the localpart of an email address. GHSA-qj78-mjch-wwrv reports a possible Denial-of-Service attack using the YAML frontmatter parsing. GHSA-8v9p-5j95-826j reports a possible CSRF attack vector in the GitHub Gist export. GHSA-2f9f-w8xq-276v reports a rate-limiting bypass by abusing the CF-Connecting-IP header. When using Cloudflare in front of HedgeDoc, you should set rateLimitUsingCloudflare in the config.json or CMD_RATE_LIMIT_USING_CLOUDFLARE as environment variable to true. Added a warning page when clicking external links Improve the config.json.example file, which is used by bin/setup Allow configuration of login / signup rate-limits Allow configuration of Cloudflare usage in regards of rate-limits Several improvements in the documentation at https://docs.hedgedoc.org
  • 11 Topics
    150 Posts
    Package UpdatesP
    [1.21.1] Update core to 2026.7.1 Full Changelog Proximity: Fix/improve matching against trackers with in_zones attributes (@kbuck1 - #172602) (proximity docs) Fix HomeKit Controller doorbell event entity to use ring event type (@frenck - #173621) (homekit_controller docs) Retry ecobee setup on transient refresh failure (@frenck - #173720) (ecobee docs) Handle cname records in dnsip (@gjohansson-ST - #175313) (dnsip docs) Fix airOS advanced settings migration (@CoMPaTech - #175319) (airos docs) Fix SolarEdge energy sensors losing unit of measurement (@frenck - #175335) (solaredge docs) Homee: fix unavailable entities (@Taraman17 - #175367) (homee docs) catch SMTPException and TimeoutError in SMTP config flow (@tr4nt0r - #175369) (smtp docs) Fix KNX telegram history migration for data of 2026.3 and earlier (@martinhoefling - #175396) (knx docs) Fix Overkiz Rexel gateway setup failing with Local API (@iMicknl - #175409) (overkiz docs)
  • 27 251
    27 Topics
    251 Posts
    Package UpdatesP
    [1.9.3] Update humhub to 1.18.3 Full Changelog Fix #8079: Hide wall entry topics container when no topics Fix #8075: Filtering by Global Topic in Dashboard Fix #8086: Fix Daylight Saving Time issue in DbDateValidator Fix #8090: Show only visible groups on the profile field "Group memberships" Enh #8095: Improve authorization checks Enh #8088: Improve people/space filters Fix #8133: Rebuild search index after file updating Fix #8144: Restrict file view action Enh #8156: Enhance behavior for vertical videos and multiple video attachments Fix #8164: Fix space members list visibility
  • 76 709
    76 Topics
    709 Posts
    Package UpdatesP
    [1.100.1] Update immich to 3.0.2 Full Changelog fix(web): add ARIA label to ServerStatisticsCard by @tjhorner in #29497 feat(server): hls variant configuration by @mertalev in #29613 feat: user agnostic database restore by @danieldietzler in #29512 feat(server): date workflow filter by @benbeckford in #29040 fix: re-add gCastEnabled negation by @bo0tzz in #29499 fix: downmix audio to stereo to fix broken channel layout by @lukasdotcom in #29485 fix: live transcoding when viewing from a link share by @lukasdotcom in #29471 fix: web search timeline visibility by @danieldietzler in #29518 fix(web): missing i18n strings by @wonsukchoi in #29612 fix: chinese browser locales recognition by @danieldietzler in #29622
  • 6 Topics
    47 Posts
    Package UpdatesP
    [1.3.1] Update ip2location to 1.4.0 Fix width and height of the map
  • 5 69
    5 Topics
    69 Posts
    nebulonN
    Alright so after some debugging we found the root cause. The cookie was exceeding the max cookie size. We have reworked the logic now to not store as much info in the jwt cookie: https://git.cloudron.io/platform/box/-/commit/0cddd129e64ec062f13618bc9938c194023aeedf
  • 2 4
    2 Topics
    4 Posts
    E
    Is someone here using Infisical? I am looking into it now as a potential secrets manager and was wondering if things are going well with it. I was also wondering whether it provides any additional benefits over using Cloudron environment variables.
  • 18 195
    18 Topics
    195 Posts
    nebulonN
    Oh that slipped through, we made yet another package release which at least has fixed this on my test instance. Sadly it is hard to test the app in an automated way since one needs residential IPs to do any useful testing.
  • 70 Topics
    1k Posts
    A
    Update: I restarted the updates as I had noted there were some more, and after catching up the app works fine.
  • 43 346
    43 Topics
    346 Posts
    Package UpdatesP
    [1.13.8] Update jellyfin to 10.11.11 Full Changelog Add lockhelper for UserManager MR #16944, by @JPVenson
  • 4 18
    4 Topics
    18 Posts
    girishG
    App discontinued due to no upstream updates.
  • 13 107
    13 Topics
    107 Posts
    Package UpdatesP
    [1.12.3] Update Jirafeau to 4.7.2 Full Changelog Added a button for showing the download password before uploading the file Favicon was missing in the modern theme Download passwords are now stored as SHA256 hashes Downloading encrypted files uploaded using "classic upload" (using just plain HTTP POST without the HTML5 file API) could not be downloaded. This was caused by not correctly marking the files as encrypted. Few more little fixes
  • 34 375
    34 Topics
    375 Posts
    jamesJ
    Hello @stoccafisso Not by default, no. You could build the jitsi app yourself and install it or maybe someone will make it a community app.
  • 12 116
    12 Topics
    116 Posts
    Package UpdatesP
    [2.6.0] Update joplin to 3.7.1 Full Changelog New: Add support for post-quantum cryptography (PQS) TLS (#15055 by Alex Martens) New: Add support for whiteboards (#15305) (#15193) Improved: Add settings search to config screen (#14820) (#14763 by @slimuCS) Improved: Add table editing commands (add/delete rows and columns) (#14519) (#12372 by @kanishka0411) Improved: Do not load plugin if it is disabled (#15083) Improved: Speed up app startup by skipping unnecessary plugin file processing (#15085) (#15081) Fixed: Add the ability to delete the default profile (#15153) (#14506 by @mrjo118) Fixed: Avoid OOM when printing notes with large attachment links (#15026) (#13903 by @Rygaa) Fixed: Fix silent sync failure which prevents new changes being synced, when a single server object has an updated_time in the future (#15262 by @mrjo118) Fixed: Preserve timestamps when converting HTML notes (#15275) (#15263 by @izumedonabe)
  • 12 141
    12 Topics
    141 Posts
    Package UpdatesP
    [1.61.0] Update docker to 7.2.0 Full Changelog docker.from_env() now honors the active Docker CLI context when DOCKER_HOST is not set. This means the client may connect to the daemon selected by DOCKER_CONTEXT or the current context in ~/.docker/config.json, matching Docker CLI behavior more closely. If your application relied on the previous default connection behavior, set DOCKER_HOST explicitly, set DOCKER_CONTEXT=default, or pass use_context=False to DockerClient.from_env(). Added docker.from_context() / DockerClient.from_context() for explicitly creating a client from a Docker CLI context. Added support for Docker contexts when creating the default client Added subpath support for volumes Fixed exec_run documentation for the stream parameter Fixed image loading to avoid depending on the deprecated JSONMessage.error field Preserved the rotated unlock key in swarm integration tests Fixed IPv6 integration tests by explicitly enabling IPv6 where required
  • 8 73
    8 Topics
    73 Posts
    Package UpdatesP
    [1.17.8] Update kanboard to 1.2.52 Full Changelog fix: revoke public tokens for inactive users fix: use timing-safe comparison for token validation fix: validate task ownership before applying property changes fix: enforce visibility controls for public and unprivileged access fix: use parameterized queries in task finder and iCal
  • 8 56
    8 Topics
    56 Posts
    nebulonN
    Since this is likely an upstream issue, it is maybe worth if you create an issue at https://github.com/Kareadita/Kavita/issues I wasn't able to find an existing issue after a quick search.
  • 8 108
    8 Topics
    108 Posts
    Package UpdatesP
    [1.7.0] Update keycloak to 26.7.0 Full Changelog #49427 [CVE-2026-9796] Admin role rename TOCTOU bypasses checkAdminRoles realm-wide escalation from manage-clients admin/rbac #49430 [CVE-2026-9689] HTTP Parameter Pollution in OIDC redirect URI allows response parameter duplication oidc #49432 [CVE-2026-9798] CIBA authentication flow bypasses brute-force account lockout oidc #49766 [CVE-2026-11986] FGAP v1 allows unassigning any role admin/fine-grained-permissions #44013 Deprecate the Twitter IDP implementation due to old twitter4j library identity-brokering #48104 Remove support for token-exchange-external-internal:v2 token-exchange/federated #49270 Remove the batching option for the persistent sessions #46543 Step-up authentication for SAML - supported authentication #35650 Compatibility profiles #20128 Add support for reencrypt OpenShift Routes to the Operator operator
  • 5 32
    5 Topics
    32 Posts
    N
    My keila does not start because of a File Write error. From the Logs: [info] Tz is fetching the latest IANA time zone data version at https://data.iana.org/time-zones/tzdb/version [info] RateLimiter: restored 0 bucket(s) from database [info] New IANA time zone data version 2026c available; currently using 2026b. [info] Tz is downloading the IANA time zone data version 2026c at https://data.iana.org/time-zones/releases/tzdata2026c.tar.gz [info] Tz download done [error] GenServer #PID<0.3572.0> terminating ** (File.Error) could not write to file "/app/code/lib/tz-0.28.2/priv/tzdata2026c.tar.gz": read-only file system (elixir 1.19.5) lib/file.ex:1407: File.write!/3 (tz 0.28.2) lib/tz/iana_data_dir.ex:112: Tz.IanaDataDir.extract_tzdata_into_dir/3 (tz 0.28.2) lib/tz/updater.ex:92: Tz.Updater.update_tz_database/2 (tz 0.28.2) lib/tz/updater.ex:49: Tz.Updater.maybe_update_tz_database_to_latest_version/0 (tz 0.28.2) lib/tz/updater.ex:14: Tz.Updater.maybe_recompile/0 (tz 0.28.2) lib/tz/update_periodically.ex:36: Tz.UpdatePeriodically.handle_continue/2 (stdlib 6.2.2) gen_server.erl:2335: :gen_server.try_handle_continue/3 (stdlib 6.2.2) gen_server.erl:2244: :gen_server.loop/7 Last message: {:continue, :work} Any idea?
  • 16 257
    16 Topics
    257 Posts
    Package UpdatesP
    [2.56.0] Update kimai to 2.62.0 Full Changelog Allow to extend menu before and after via event (#6012) Allow to fetch more fields in the customer collection API call Allow searching for optgroup titles in dropdowns (e.g. projects by their customer name) (#6033) Improved handling of dropdown data fetched via API (#6038) Translations update from Hosted Weblate (#6017) Fix duplicate permission mapped to edit instead of create (#6012) Disable empty cells in weekly hours form if create_x_timesheet is not allowed (#6012) Hide user field for current user if create_other_timesheet is missing (#6029)
  • 16 226
    16 Topics
    226 Posts
    Package UpdatesP
    [1.45.1] Update koel to 9.10.1 Full Changelog fix: populate starred and played dates in Subsonic responses by @phanan in #2607 fix: honor offset in Subsonic getAlbumList/getAlbumList2 for newest, frequent and recent types by @phanan in #2606 fix: read DATE vorbis tag for year when scanning FLAC/OGG files by @theianspence in #2602
  • 11 132
    11 Topics
    132 Posts
    girishG
    Running TURN server on port 443 only matters for setups where a Client is unable to contact the server on non-port 443. This is only common in some ultra locked down intranet setups.
  • 5 63
    5 Topics
    63 Posts
    Package UpdatesP
    [1.7.0] Update komga to 1.25.0 Full Changelog add support for solid rar4 archives (5682a37) enfore content restriction (bd8b773) flatten hierchical schemas (275cb92)
  • 23 182
    23 Topics
    182 Posts
    Package UpdatesP
    [2.5.1] Update kutt to 3.2.6 Full Changelog Add OIDC_PROMPT. Fixes OIDC forced re-authentication by making the prompt configurable. (MR #967 by @Jignesh4611) Add OIDC_BUTTON_TEXT to change OIDC login button text Use a new useragent library (express-useragent) to parse user agent. Fixes vulnerabilities found in the useragent package Update nodemailer package to fix vulnerabilities Set SameSite: Lax for signed-in cookies Use 404 HTTP status code for the 404 page Fix typo in the report page
  • 144 1k
    144 Topics
    1k Posts
    Package UpdatesP
    [5.2.3] Update php-src to 8.5.8
  • 18 182
    18 Topics
    182 Posts
    Package UpdatesP
    [1.52.0] Update languagetool to b08c7f8
  • 23 240
    23 Topics
    240 Posts
    Package UpdatesP
    [1.14.6] Update leantime to 3.9.8 Full Changelog Milestones - Fixed reports showing 0% completion and the timeline "Show Tasks" view displaying nothing (#3624, #3625, #3628) Milestone Modal - Resolved focus loss, restored save-and-close, and fixed a 500 error when saving goals (#3605) To-Dos - Kept To-Dos from closed projects browsable once the project is reopened (#3626, #3627) Post-3.9.7 Regressions - Fixed a file browser out-of-memory issue, strategy grouping, and 403 errors for legacy roles (#3621) MCP Endpoint - The /mcp endpoint now accepts Leantime API keys, and a shim for the removed php-mcp provider lets in-place upgrades boot (#3601, #3602, #3607) Program Board - Moved the card status dropdown below the field row (#3599) Sessions - Isolated sessions into their own Redis database to avoid clashes with other cached data (#3604) Bumped the McpServer submodule to include the bulkAddTasks fix (#3620, #3622) Synced composer.lock content hash with composer.json (#3603)
  • 19 162
    19 Topics
    162 Posts
    Package UpdatesP
    [1.2.3] Update LibreChat to 0.8.7 Full Changelog feat: Add Bottom Terminus Node to Message Minimap Navigation by @danny-avila in #13853 feat: Add Pinned Conversations by @dlew in #13492 feat: Keyboard Shortcuts by @berry-13 in #12425 feat: Google URL Context Param with Native YouTube Video Understanding by @danny-avila in #13924 fix: Restrict MCP Server URL Disclosure to Admins, Owners, and Editors by @dustinhealy in #13784 fix: Narrow Public Share 401 Bypass to the Share Endpoint Only by @danny-avila in #12905 fix: Gate Shared Startup Config By Link Access by @danny-avila in #13897 fix: Withhold Custom Endpoint Headers for User URLs by @danny-avila in #13917 fix: Harden Historical File Authorization by @danny-avila in #13918 fix: Harden User Provided Endpoint URL Protection by @danny-avila in #13919
  • 18 420
    18 Topics
    420 Posts
    T
    @girish I can confirm that your fix solved the issue, at least on our side. Many thanks - Much appreciated! After a brief look, the new editor looks much better than previous one.
  • 16 135
    16 Topics
    135 Posts
    S
    I like the linkding package. I realized the extension is provided only for Chrome and Firefox. There is there unofficial Safari extension in AppStore. Here is a way build the extension locally and use with Safari browser. This is fork of the author's repo, fixed for latest xcode and build script to build the extension. https://github.com/orsenthil/safari-linkding-extension
  • 15 169
    15 Topics
    169 Posts
    perelinP
    @girish said: @perelin it seems you already have an account with the same username and email as in this forum on our GitLab . Can you try resetting password mabye if you have forgotten it at git.cloudron.io ? I have "Trust user" and 2FA is disabled there already as well. You are also in the packages GitLab group . oh... Cant remember a thing Currently im getting 429 Too Many Requests from git.cloudron.io - will try later.
  • 31 233
    31 Topics
    233 Posts
    Package UpdatesP
    [1.17.0] Update listmonk to 6.2.0 Full Changelog feat(i18n): add Arabic (ar) translation by @imohad in #2977 Fixs #2987 - Prevent confirmed subscriber becoming unconfirmed when re-subscribing. by @blu3id in #2996 fix(analytics): correct per-campaign unique view counting by @wucm667 in #3024 fix: prevent nil pointer crash in BounceWebhook when bounce processing disabled by @Koushik-1729 in #2993 Add per-domain SMTP routing by @jaymzh in #2953 Fix: ZIP Slip path traversal in CSV import by @Yunkaiwjs in #3065 fix: protect SES cert cache map with sync.RWMutex to prevent concurrent map writes crash by @Abzaek in #3050 Add Azure ACS bounce webhooks and settings support by @oskari in #3001 Add support for embedding images (inline attachments) via CID in campaign bodies by @knadh in #3034 Fix api tokens hashing by @knadh in #3114
  • 7 126
    7 Topics
    126 Posts
    Package UpdatesP
    [1.17.12] Update loomio to 3.0.24 Full Changelog Fixed: Prevent comment authors from editing or restoring comments that an admin has discarded. Fixed: Preserve group ownership when creating discussions from templates in grouped contexts. Improved: Hardened deployment/runtime behavior with trusted ingress IP allowlisting and exec-based Docker startup processes. Improved: Removed obsolete hocuspocus SQLite persistence and legacy document-list template calls. Improved: Background jobs now avoid retrying forever for records that have already been deleted. Maintenance: Updated dependencies including Devise, Vite, Bootsnap, Rollup, Sentry, Nokogiri, Puma, and tzinfo-data.
  • 19 226
    19 Topics
    226 Posts
    Package UpdatesP
    [2.45.3] Update Lychee to 7.6.4 Full Changelog Add missing tile for bulk album edit by @ildyria in #4464 Add configurable sharable preview by @ildyria in #4463 Please don't tell anyone about this commit. It's a secret. by @ildyria in #4465
  • 10 61
    10 Topics
    61 Posts
    marcusquinnM
    @girish That is a super handy feature!
  • 149 1k
    149 Topics
    1k Posts
    K
    Addressed with update 1.18.4.
  • 53 444
    53 Topics
    444 Posts
    Package UpdatesP
    [1.58.2] Update matomo to 5.11.2 Full Changelog
  • 130 Topics
    1k Posts
    M
    Hello. I got a fresh Synapse install, with users managed by Cloudron (OIDC). How to make it possible to login from a mobile client (Element X and FluffyChat tried out) ? Would it be possible to simply set password_config to the right setting ? Thanks EDIT: I finally managed with FluffyChat, I think you can delete this topic (;
  • 60 652
    60 Topics
    652 Posts
    Package UpdatesP
    [1.29.3] Update mattermost to 11.8.3 Full Changelog
  • 66 510
    66 Topics
    510 Posts
    Package UpdatesP
    [6.1.2] Update mautic to 7.1.3 Full Changelog Fix category save crashing when apply button is disabled by @MoonFuji in #16180 Fix campaign restart issue by @escopecz in #16184 Fix infinite reschedule loop in ScheduledExecutioner::validateSchedule by @TowyTowy in #16066 Fix restarting campaign after republish on every cron job by @escopecz in #16183 Fix deleting a decision from a campaign causes an infinite email-resend loop via redirect_event_id by @hluchas in #16384 Re-enable Typography section and styling tools in GrapesJS builder by @patrykgruszka in #16098 Fix handling of text elements (headings, spans, paragraphs) in the GrapesJS + CKEditor integration. by @GoodPHP in #16058 Fix OAuth bearer auth for API v2 user-bound tokens by @escopecz in #16245 Do not process HEAD requests as unsubscribe requests by @Dominic-Mayers in #14967 Fix stale pending count from cache in email overview by @hluchas in #16442
  • 9 108
    9 Topics
    108 Posts
    Package UpdatesP
    [1.43.1] Update mealie to 3.20.1 Full Changelog fix: Invisible quantities @michael-genson (#7811) fix(deps): update dependency pydantic-settings to v2.14.2 [security] @renovate[bot] (#7782) fix(deps): update dependency fastapi to v0.138.0 @renovate[bot] (#7806)
  • 9 95
    9 Topics
    95 Posts
    Package UpdatesP
    [3.7.0] Update mediawiki to 1.46.0 Full Changelog
  • 14 99
    14 Topics
    99 Posts
    Package UpdatesP
    [1.23.2] Update meemo to 1.23.2 Mitigate path traversal exploit - thanks to Dickson Godwin Massawe for finding and reporting the problem
  • 6 49
    6 Topics
    49 Posts
    Package UpdatesP
    [2.1.1] Update memos to 0.29.1 Full Changelog markdown: keep task item content in one grid column (7c3bff4) support <meta name=description> in link previews (#6000) (e8d32e8) web: render video attachment posters on mobile (0e2a9a9)
  • 18 682
    18 Topics
    682 Posts
    Package UpdatesP
    [3.18.1] Update metabase to 0.62.4.3 Full Changelog
  • 2 7
    2 Topics
    7 Posts
    J
    @jendrik the ui is a bit confusing. You have to switch the mode to Private . Ideally, that password field should be disabled or hidden when 'Public'. [image: 1777903757310-67cd6c39-a43e-4446-9f92-fe1d26f59591-image.jpeg]
  • 50 505
    50 Topics
    505 Posts
    Package UpdatesP
    [2.38.4] Update bedrock to 1.26.33.2 Full Changelog
  • 11 99
    11 Topics
    99 Posts
    Package UpdatesP
    [1.7.2] Update v2 to 2.3.2 Full Changelog Search queries now use PostgreSQL's websearch_to_tsquery, allowing quoted phrases, OR operators, and negation (-term) in search expressions. Added GET /v1/entries/ids to efficiently retrieve paginated entry IDs. Added support for updating the starred status of multiple entries through PUT /v1/entries. API clients can now filter entries by tags. Prevent username enumeration through login timing differences. PostgreSQL installations running in FIPS mode are now fully supported by replacing MD5 with SHA-256 for enclosure uniqueness. This change raises the minimum supported PostgreSQL version to 11. Fixed validation of per-feed entry filter rules in the web interface. SOCKS proxy URLs can once again be configured for individual feeds. Fixed enclosure URL proxying consistency across API endpoints. Fixed several API handlers that incorrectly returned 404 Not Found or 400 Bad Request instead of proper server errors.
  • 54 699
    54 Topics
    699 Posts
    doodlemania2D
    @uroni Nicely done!
  • 48 1k
    48 Topics
    1k Posts
    Package UpdatesP
    [1.19.23] Update mirotalkp2p to 1.8.65
  • 16 103
    16 Topics
    103 Posts
    nebulonN
    The app package runs the cron job as outlined in https://github.com/monicahq/monica/blob/4.x/docs/installation/providers/generic.md#4-configure-cron-job Can you open a webterminal into the app and run it manually via: sudo -E -u www-data php /app/code/artisan schedule:run and see if it shows an error or sends the mails then?
  • 42 343
    42 Topics
    343 Posts
    Package UpdatesP
    [4.1.1] Update moodle to 5.2.1 Full Changelog
  • 155 1k
    155 Topics
    1k Posts
    Package UpdatesP
    [4.33.3] Update n8n to 2.29.10 Full Changelog editor: Keep AI Assistant thread state intact on editor hand-off (#33925) (3934a83)
  • 19 171
    19 Topics
    171 Posts
    Package UpdatesP
    [1.30.2] Update navidrome to 0.63.2 Full Changelog fix(plugins): surface host service failures when loading plugins (#5756) (@deluan) fix(scanner): resolve file symlinks with the production local storage FS (#5755) (@deluan) fix(smartplaylist): reject NSP mixing top-level 'any' and 'all' (#5759) (@deluan)
  • 409 3k
    409 Topics
    3k Posts
    potemkin_aiP
    @joseph said: @potemkin_ai strange . i cannot reproduce this here - nextcloud 34.0.1 supports the latest oidc app . I can't reproduce it anywhere (and I have some instances running)! What do I do to restore that / to get it working?
  • 31 304
    31 Topics
    304 Posts
    Package UpdatesP
    [1.44.0] Update nocodb | stage to 2026.06.2 Full Changelog
  • 64 539
    64 Topics
    539 Posts
    Package UpdatesP
    [2.31.0] Update NodeBB to 4.14.0 Full Changelog add first-run modal for new installations (19e25f2) add localhost and URL mismatch warnings to dashboard notices (644034d) add reject all on registration queue (39f1115) extend prune cutoff for followed remote categories (57e65d0) make public key fetch rate limit configurable (471b827) block re-queuing of rejected crossposts (b9473b9) dont allow loading group list via api/v3 (3760c1e) check topics:read privilege when loading post diffs (8467945) closes #14432, dont show mobile nav on chat page (1633b47) use dummy lockout key for non-existent users to prevent username enumeration (e65c23a)
  • 14 109
    14 Topics
    109 Posts
    fbartelsF
    I just stumbled upon this as well. At least for the email verification part. It seems one of the last releases has added email addresses for accounts and I wanted to add this to mine, but apart from this log line: 2026/07/10 11:09:58 INFO Resending email verification (email=xx@xx.eu, http_method=POST, http_path=/v1/account/email/resend, tag=account, user_id=xx, user_name=felix, visitor_auth_attempts_remaining=30, visitor_emails=2, visitor_emails_limit=24, visitor_emails_remaining=22, visitor_id=ip:xxx, visitor_ip=xxx, visitor_messages=0, visitor_messages_limit=17280, visitor_messages_remaining=17280, visitor_requests_remaining=19, visitor_seen=2026-07-10T11:09:58.274Z, visitor_topic_creations_remaining=92) Nothing else happens. I also dont see any logging regarding this in the Cloudron event log for email.
  • 6 97
    6 Topics
    97 Posts
    Package UpdatesP
    [1.14.0] Update ollama to 0.31.1 Full Changelog Tightened Gemma 4 MoE model loading in the MLX engine Updated the MLX engine to the latest version, including a new small-batch matmul kernel Updated the underlying llama.cpp engine to build 9840 Improved Gemma 4 multi-token prediction (MTP) performance
  • 5 46
    5 Topics
    46 Posts
    Package UpdatesP
    [1.5.1] Update omeka-s to 4.2.1 Full Changelog Block titles for the IIIF page blocks were not properly escaped The IIIF presentation page block did not respect the site's configured IIIF viewer setting for the Mirador theme Some fields were not aligned properly on the admin advanced search Themes could not use the Ckeditor form elements to allow HTML input for theme settings Unnecessary spacing when listing data types in resource template browse Modules using older code for database queries could encounter errors related to core events like those used for processing fulltext search The Asset add form only allowed a fixed list of file types regardless of what types were specified in config The confirm password check did not properly run when the confirm box was left blank
  • 52 431
    52 Topics
    431 Posts
    jamesJ
    Hello Upstream reported that the issue will be resolved with the next release. https://github.com/ONLYOFFICE/DocumentServer/issues/3686#issuecomment-4631461296
  • 6 42
    6 Topics
    42 Posts
    Package UpdatesP
    [0.9.0] Update opencloud to 6.1.0 Full Changelog Add a flag to the reindex command to force a full reindex [#2606] proxy: Allow mapping from an external tenant id to the internal id [#2569] feat: enable EnableInsertRemoteFile WOPI flag for Collabora [#2555] feat(multi-tenancy): verify tenant via OIDC claim [#2559] Fix race conditions in the hybrid metadata backend [#594] fix: error handling in upload session cleanup [#582] experimental: add darwin watchfs support [#471] Tracing [#596] fix: favorites list, undo delte doesn't return item to the favorites [#2382] feat: handle UI_InsertFile postMessage from Collabora [#2270]
  • 4 51
    4 Topics
    51 Posts
    Package UpdatesP
    [1.9.0] Update openhab-distro to 5.2.0 Full Changelog
  • 24 291
    24 Topics
    291 Posts
    Package UpdatesP
    [3.51.0] Update openproject to 17.6.0 Full Changelog Feature: Sprint goals [#71059] Feature: XWiki integration [#53738] Feature: "All sprints" view - simple list [#74594] Feature: Display backlog bucket in work package [#73887] Feature: Create work package out of Meeting Agenda Item [#57053] Feature: Allow cost types to be enabled/disabled per project [#42037] Feature: Escape possible control characters in CSV export [#75486] POST/PATCH/DELETE /api/v3/meetings/:id/agenda_items) is no longer available, they have been moved to the /api/v3/meeting_agendas/ respectively. The same is true for outcomes and sections. Bugfix: GET /api/v3/meetings/{id}/agenda_items returns incorrect section link format unusable for PATCH and POST requests [#75615] Bugfix: User without save_cost_reports can save public cost reports [#76398]
  • 4 Topics
    34 Posts
    J
    Hi @girish so I learned something while setting up my Radicale and OWC. It seems like the calendar client publishing in to the ICS in Radicale (or wherever your ICS source lives) can matter. When I used the Calendar app on macOS I saw no descriptions. When I used Thunderbird I do. You can see it on my live page that has the OWC page in an iframe https://kb.filewave.com/books/community-engagement/page/customer-event-schedule and if you click on events in the agenda then the description shows. I think initially I was also hoping to show description on the Agenda page without clicking on an event but originally I was bothered that I just couldn't get description to show up. So now it does at least show up when you click an event. I haven't looked at why Calendar doesn't make a summary that shows and Thunderbird does but I'm fine using Thunderbird to put events in my calendar feed.
  • 80 735
    80 Topics
    735 Posts
    dsp76D
    No I directly used models without router. After a manual restart of OpenWebUI (it was automatically updated), the problem was gone. No issue anymore.
  • 3 14
    3 Topics
    14 Posts
    Package UpdatesP
    [1.1.4] Fixup docs link
  • 15 94
    15 Topics
    94 Posts
    Package UpdatesP
    [2.4.3] Update osTicket to 1.18.4 Full Changelog security: Latest Patches 06/2026 (52c366f, 5afdf54, c54a6ac, 1e39bf1, feccb6a, 6eb6b98, 078516e, 98abb05, e52e010, fd96bba, 7bbd8ab, ba6217a, 580e1c8, b535782, 5963797, d590a97, eaebe01, b4cc092, d457c14, 5600f94, 5ff9795, 119cefe, b4ede88, 2a0c388, 6558b33)
  • 30 197
    30 Topics
    197 Posts
    Package UpdatesP
    [1.24.0] Update outline to 1.9.0 Full Changelog It is now possible to use the desktop app with on-premise installations from this version onwards in #12742 Login with Passkey is now supported on desktop in #12749 Markdown input such as --- now work after a soft-break in #12925 Table menus in editor were improved and now include alignment options for rows in #12611 Added PROXY_HEADERS_TRUSTED env option (defaults to true) in #12676 Added spec-compliant OIDC logout in #12804 Add support for OIDC provider returning JWT from userinfo endpoint in #12879 Sensitive fields can leak into logging when non-primitive in #12910 Stale CSRF token sent on request retries and form submissions in #12888 validateUrlNotPrivate hardening in #12938
  • 17 104
    17 Topics
    104 Posts
    Package UpdatesP
    [1.6.2] Update owncast to 0.2.5 Full Changelog fedi_spin.gif as a new emoji. #​4721 Add support for federation shared inboxes #​4212 Add require chat authentication to take part in chat #​4732 Favicon customization #​868 Explicitly mention shortcut keys in video player #​3785 Remove special characters from auto-generated stream keys as not all broadcast software support them #​4690 Sanitize actor displaynames #​4864 Fediverse followers contact name / profile picture now get updated and invalid users get removed #​2923 Fediverse action titles can overflow in chat #​4773 Path Prefix for S3 Not Working On file cleanups #​4784
  • 3 16
    3 Topics
    16 Posts
    Package UpdatesP
    [1.3.0] Update base image to 5.0.0
  • 67 558
    67 Topics
    558 Posts
    J
    Most (all?) of it is related to quality of life changes (env var renames). Should be easily fixable in the Cloudron package.
  • 2 11
    2 Topics
    11 Posts
    girishG
    You can still install it like this https://my.<cloudron>/#/appstore/rocks.paperwork.cloudronapp . But note that it was last updated 3 years ago. I tried to build a new version with latest with PHP a year ago and the app was not even building anymore. They have been re-writing a new version for a couple of years now.
  • 106 919
    106 Topics
    919 Posts
    Package UpdatesP
    [4.8.0] Update peertube-plugin-auth-openid-connect to 1.2.0 Full Changelog
  • 21 181
    21 Topics
    181 Posts
    Package UpdatesP
    [1.18.3] Update penpot to 2.16.2 Full Changelog Fix error 500 when submitting the contact form #10178 (MR: #10419) Fix text editor modifying content and detaching applied typography tokens #10389 (MR: #10402)
  • 6 Topics
    24 Posts
    girishG
    App discontinued due to no upstream updates.
  • 4 Topics
    12 Posts
    girishG
    The upstream project has not released in almost 3 years now. We had to build from develop to get some PHP 8 support going, but there are bugs like https://github.com/phpservermon/phpservermon/issues/1196 , https://github.com/phpservermon/phpservermon/issues/1232 . There's also a bunch of basic issues: Normal user cannot login after admin user logs in. Some issue related to service worker. LDAP functionality is incomplete
  • 5 63
    5 Topics
    63 Posts
    Package UpdatesP
    [3.4.0] Update Piwigo to 16.4.0 Full Changelog Release note
  • 80 670
    80 Topics
    670 Posts
    nebulonN
    Seems like for some unknown reason putting the app in debug mode and back out of debug mode fixed it.
  • 3 16
    3 Topics
    16 Posts
    sponchS
    new update helped. working now
  • 9 155
    9 Topics
    155 Posts
    M
    @james Great, thank you very much for the fast implementation
  • 22 222
    22 Topics
    222 Posts
    robiR
    Here's the video:
  • 9 80
    9 Topics
    80 Posts
    Package UpdatesP
    [1.9.0] Update pretix to 2026.6.0 Full Changelog
  • 8 59
    8 Topics
    59 Posts
    Package UpdatesP
    [1.11.5] Update PrivateBin to 2.0.5 Full Changelog CHANGED: Show OS-specific copy hotkey hint (Cmd+c on Mac, Ctrl+c on others) (#1506) FIXED: Prevent browsers from rendering unsafe attachments like HTML in a new tab FIXED: State corruption after "Remove attachment" (#1824) FIXED: Copy button is hidden if the document is made as markdown (#1703) FIXED: Shortened URLs from YOURLS received but failed to parse (#1844) FIXED: Insert only base path in JSON API responses, without GET parameters
  • 19 228
    19 Topics
    228 Posts
    Package UpdatesP
    [2.13.1] Update prometheus to 3.13.1 Full Changelog This is a bugfix release for 3.13 LTS. [BUGFIX] TSDB: Fix the head-chunk cache returning samples from the wrong chunk, or spurious not-found errors, to range queries after head-chunk truncation. #19134
  • 6 105
    6 Topics
    105 Posts
    Package UpdatesP
    [2.28.0] Update VueTorrent to 2.34.0 Full Changelog Settings/WebUI: Add API key support for qBit 5.2.0+ (#2784) (71ff0ec) Sidebar: Add DHT node and peer connection count (#2774) (4a5c857) login: restore vertical centering after Vuetify v4 migration (#2775) (ce05f81) support shareLimitAction in per-torrent view editing (qBit 5.2.0+) (#2780) (7bb3d16)
  • 15 161
    15 Topics
    161 Posts
    Package UpdatesP
    [2.14.5] chore(deps): update dependency radicale to v3.7.6
  • 16 195
    16 Topics
    195 Posts
    Package UpdatesP
    [2.11.0] Update rallly to 4.11.1 Full Changelog Keep environment validation out of the client bundle (#2476, fixes #2474) Polls now default to time-based options with a duration picker (#2466) Hidden participants are anonymized instead of dropped, so the grid stays readable (#2422) Redesigned poll settings form (#2423) Faster first load: browser-cached manifest and icons, fewer round trips (#2438) All-day polls stay on the same date across timezones (#2470) Voters can edit responses from the confirmation email when participants are hidden (#2399) OTP codes are reused on resend, so the latest email always works (#2439) Gravatar is disabled on self-hosted instances; avatars fall back to initials (#2462)
  • 9 75
    9 Topics
    75 Posts
    girishG
    App discontinued due to no upstream updates.
  • 14 106
    14 Topics
    106 Posts
    Package UpdatesP
    [5.4.0] Update redash to 26.3.0 Full Changelog
  • 18 172
    18 Topics
    172 Posts
    Package UpdatesP
    [3.20.0] Update redmine to 7.0.0 Full Changelog
  • 16 108
    16 Topics
    108 Posts
    timconsidineT
    Just installed ReleaseBell to monitor the apps I am packaging. But it's not accurate Shows https://github.com/windmill-labs/windmill as v1.457.0 but the actual GitHub page shows 1.645.0 Is there some config I should be changing ? Actually, just noticed it has 2 entries for windmill ( a starred project ), the other showing 1.573.0
  • 71 786
    71 Topics
    786 Posts
    Package UpdatesP
    [3.5.1] Update Rocket.Chat to 8.6.1 Full Changelog (#41234 by @dionisio-bot) Security Hotfix (https://docs.rocket.chat/docs/security-fixes-and-updates) (#41243 by @dionisio-bot) Security Hotfix (https://docs.rocket.chat/docs/security-fixes-and-updates) (#41308 by @dionisio-bot) Fixes wrong FederationLookup type assigned to IUser in apps. The correct data is there, but the type does not represent it. (#41292 by @dionisio-bot) Ensures the users.CreateToken endpoint checks for the user-generate-access-token permission when generating a login token for another user (#41276 by @dionisio-bot) Ensures room permission checks are applied consistently regardless of how the room is identified when converting a channel to a team or creating a team from an existing room
  • 54 369
    54 Topics
    369 Posts
    Package UpdatesP
    [2.10.2] Update roundcubemail to 1.7.2 Full Changelog Add HEAD request handler to the static.php Fix so the oauth_password_claim claim is retrieved via token or userinfo request (#9631) Fix bug where static.php would return a 416 error on a specific Range request (#10194) Fix bug where configured skin logo wasn't loaded via static.php resulting in 404 error (#10191) Fix bug where installto.sh would fail if public_html folder does not exist in the target directory (#10202) Revert "Prefer 8bit over quoted-printable for HTML parts, when force_7bit is disabled (#8477)" (#10198) Fix incorrect unfolding of folded lines when importing vCard 2.1 contacts (#9647) Fix bug where Imagick could leave large temporary files on failure (#10230) Fix bug where redis/memcache session could have been updated more often than needed Fix support for untyped tokens in OIDC backchannel logout, require unset nonce (#10097)
  • 9 62
    9 Topics
    62 Posts
    O
    @girish said: @rmdes @odie I have updated the app to use symlinks under /app/data/bridges. You can add new bridges there or delete some symlink and add your own. Thank you! Works excellent!
  • 1 23
    1 Topics
    23 Posts
    Package UpdatesP
    [0.18.0] Update rustfs to 1.0.0-beta.8 Full Changelog feat(table-catalog): add object-backed catalog store by @marshawcoco in #3206 feat(scanner): add partial scan resume hints by @marshawcoco in #3207 perf(erasure): remove UUID from clone + increase encode inflight budget by @overtrue in #3212 fix(signer): address post-merge review comments by @overtrue in #3216 fix(server): normalize empty request content length by @GatewayJ in #3215 fix(bucket-encryption): populate default KMS key for SSE-KMS without key ID by @overtrue in #3225 fix(replication): normalize local site endpoint port by @cxymds in #3249 fix: return 503 on lock contention instead of 500 by @overtrue in #3274 feat(rio): rio_v2 is compatible with minio for storing data. by @reatang in #3115 feat(kms): migrate KMS handlers to dedicated actions by @overtrue in #3298
  • 4 15
    4 Topics
    15 Posts
    girishG
    Given that the upstream project is not maintained anymore, we have hidden this in the appstore. I had also submitted a PR upstream for a basic issue which is ignored - https://github.com/aliasaria/scrumblr/pull/161
  • 17 247
    17 Topics
    247 Posts
    Package UpdatesP
    [2.101.0] Update searxng to a643858
  • 1 22
    1 Topics
    22 Posts
    Package UpdatesP
    [1.16.0] Update seaweedfs to 4.39 Full Changelog async, buffered writes in VolumeEcShardsCopy (#10237) fix orphan purge against the rust volume server (#10289) keep tier-uploaded volume reporting to master after volume.tier.upload (#10259) require JWT authorization on TUS upload endpoints (#10249) fail over routed object writes when the owner filer is unreachable (#10251) keep listing when empty directories fill the listing window (#10280) verify SigV4 against each plausible reverse-proxy host (#10284) surface OIDC groups and roles into the STS session request context for resource-policy ABAC (#10263) re-assign to a live volume when a write can't land (#10239) merge filer service annotations to avoid duplicate keys in Helm (#10293)
  • 5 35
    5 Topics
    35 Posts
    Package UpdatesP
    [1.4.0] Update serpbear to 3.1.0 Full Changelog add subdomain matching functionality (4533737), closes #​324 enhance error handling and response structure in scraper functions (4f394c2) minor ui issue (eecf88a) prevent corrupt failed queue file to reset the app settings (c306fa0), closes #​328 resolves broken google ads oauth of instances behind reverse proxy (a988b13), closes #​326 resolves cron issue with certain port mapping config (d86616a) resolves issue that prevents refreshing all keywords when one fails (77cfa2f)
  • 14 85
    14 Topics
    85 Posts
    Package UpdatesP
    [1.4.3] Update sftpgo to 2.7.4 Full Changelog Symbolic links: the new symlink_mode setting selects, per backend, whether clients holding the create_symlinks permission may create symbolic links on the local filesystem, the SFTP backend, or both. It is disabled by default. Creating a link requires create_symlinks on both the link's directory and the directory it points into, so per-directory permissions are enforced consistently on the path the client requests. OIDC redirect: the WebClient OIDC login now preserves a next redirect target across the IdP round-trip. httpd: return after a CSRF failure in the web client login. The login POST handler rendered the CSRF error page but did not return, so execution fell through into the post-connect hook and the credential verification pipeline. Added the missing return to match the admin login, password reset, and setup handlers. Improve symbolic links handling and add more test cases. httpd: clean and unify the WebClient post-login redirect target validation.
  • 5 47
    5 Topics
    47 Posts
    Package UpdatesP
    [2.18.3] Update Shaarli to 0.16.3 Full Changelog fix(xss): escape bookmark title in permalink pagetitle build/release: no longer build .tar.gz full release archives, only provide .zip build: fix inconsistent file permissions in release archives (Fixes #2214) doc: fix issues in the release procedure
  • 7 50
    7 Topics
    50 Posts
    jdaviescoatesJ
    @girish said in SickChill unlisted from app store: I hope they atleast bring back the issue tracker Out of interest, why does this matter for Cloudron? BTW, someone has replied to the thread I started on Discord informing me that the master releases are these https://pypi.org/project/sickchill/ Doesn't look like there has been a new one since March though.
  • 2 15
    2 Topics
    15 Posts
    Package UpdatesP
    [1.3.0] Update shiori to 1.8.0 Full Changelog feat(apiv1): refactor tags api (#1075) feat: add PWA support share functionality (#1060) feat: add apis to handle bookmark tags (#1081) feat: allow tag filtering and count retrieval via api v1 (#1079) feat: improve SQLite performance (#1024) feat: reverts message in json output and allows configuration (#1082) feat: support proxy forward headers authentication (#1105) fix: auth validation on existing sessions, rely on token only (#1069) fix: incorrectly set cookie's expires value in login.js (#1049) fix: parse pocket new CSV format (#1112
  • 4 Topics
    41 Posts
    girishG
    The upstream project is archived - https://github.com/boypt/simple-torrent/ . There has been no changes in 2 years and modules are not updated.
  • 33 346
    33 Topics
    346 Posts
    necrevistonnezrN
    @robi Technically true. And yet the only door you need to overcome to access all your mails.
  • 22 221
    22 Topics
    221 Posts
    Package UpdatesP
    [1.21.3] Update snipe-it to 8.6.3 Full Changelog Authentication/LDAP - Fixed [FD-56031] - throw Exception if STARTTLS fails by @uberbrady in #19190
  • 60 428
    60 Topics
    428 Posts
    Package UpdatesP
    [2.18.9] Update sogo to 5.12.9 Full Changelog Some users couldn't save their preferences anymore Email with event invitation had some display errors Email were wrongly displayed when searching for words Some emails where shown wrongly.
  • 13 104
    13 Topics
    104 Posts
    girishG
    Just checked on this again but it seems statping-ng is not going forward much . https://github.com/statping-ng/statping-ng/tags says the release was almost a year ago.
  • 44 468
    44 Topics
    468 Posts
    Package UpdatesP
    [3.15.1] Update Stirling-PDF to 2.14.2 Full Changelog Server only hotfix for certain postgres connections having issues loading user data fix(frontend): Stop posthog loading before opt flags are read by @Ludy87 in #6812 Fix rearrange-pages DUPLICATE producing shared page nodes (pypdf cyclic-references CI break) by @Frooodle in #6851 Fix tooltip positioning on Add Page Numbers by @jbrunton96 in #6885 Disable update check and notification in SaaS mode by @Frooodle in #6863 Fix missing app icon on Linux/Wayland by @LFd3v in #6875 Fix cert sign not showing under certain instances by @Frooodle in #6908 feat(ui): add dedicated third-party license sections to settings by @Ludy87 in #6820
  • 15 145
    15 Topics
    145 Posts
    Package UpdatesP
    [1.12.1] update apache-superset to v6.1.0
  • 105 786
    105 Topics
    786 Posts
    nottheendN
    Thanks for the quick reaction!!
  • 32 241
    32 Topics
    241 Posts
    Package UpdatesP
    [1.34.2] Update syncthing to 2.1.2 Full Changelog fix: on Windows don't allocate console if not opened inside one by @Shablone in #10726 fix(connections): do not report connection metrics for self (ref #10509) by @calmh in #10724 fix: let umask do the thing by @calmh in #10723 fix(fs, model): improve symlink resilience in file shortcut by @calmh in #10739 fix(protocol): always expect & validate block hash in requests by @calmh in #10738 fix(protocol): be more stringent about blocks in non-file entries by @calmh in #10737 fix(protocol): loosen restriction on size of directory entries by @calmh in #10743 fix(folder): check if context canceled when scanning (fixes #10363) by @henriksb1 in #10757 fix(config): remove extraneous defaults setting while unmarshalling folder options (fixes #10746, fixes #10389) by @calmh in #10763 fix(sqlite): update last migration to set schema version, counts by @calmh in #10768
  • 21 204
    21 Topics
    204 Posts
    Package UpdatesP
    [2.19.5] Update taiga-back to 6.10.2 Full Changelog fix: enforce permission check on create_default due date endpoints
  • 6 99
    6 Topics
    99 Posts
    Package UpdatesP
    [1.12.12] Update recipes to 2.6.13 Full Changelog updated translations
  • 10 69
    10 Topics
    69 Posts
    Package UpdatesP
    [1.5.2] Fixup doc URL
  • 9 79
    9 Topics
    79 Posts
    timconsidineT
    @timconsidine said in Teddit Subscriptions no longer working: Just FYI - my LibReddit - selfhosted as Docker on another VPS = is still working. But now it is down. Maybe they have caught up with me.
  • 5 51
    5 Topics
    51 Posts
    Package UpdatesP
    [1.23.1] Update thelounge to 4.5.1 Full Changelog Replace is-utf8, read-chunk dependencies with Node replacements (#5077) (d21c6fb by @MaxLeiter) sqlite: add message history index (#5107) (dc7f79f by @MaxLeiter) ident: normalize ipv4-mapped addresses when comparing (#5102) (283b6f4 by @MaxLeiter) readme: fix image (#5109) (6172ab2 by @MaxLeiter)
  • 10 67
    10 Topics
    67 Posts
    girishG
    @Sam_uk we have unlisted TLDraw by now. Please see https://forum.cloudron.io/topic/10806/no-more-updates-to-tldraw . The license and company direction has changed.
  • 21 222
    21 Topics
    222 Posts
    Package UpdatesP
    [1.27.2] Update traccar to 6.14.5 Full Changelog
  • 10 103
    10 Topics
    103 Posts
    Package UpdatesP
    [2.7.4] Update libretranslate to 1.9.6 Full Changelog Turkish UI
  • 12 81
    12 Topics
    81 Posts
    Package UpdatesP
    [2.5.3] Update transmission to 4.1.3 Full Changelog Fixed a CORS bug that leaked the anti-CSRF nonce. (#8938) Fixed a use-after-free bug in peer code. (#8921) Fixed build error when compiling with fmt 12.2.0. (#8942) Fixed a 4.1.2 build error in tests. (#8881)
  • 13 159
    13 Topics
    159 Posts
    Package UpdatesP
    [1.29.0] Update Trilium to 0.103.0 Full Changelog api.axios has been removed. It has already been marked as deprecated for more than two years now and given the recent security compromise and the fact that it's not actually used in the Trilium code base we took the decision to remove it completely. Please update your scripts to use the built-in fetch() instead. api.cheerio has been marked as deprecated, but not removed. As an alternative we provide node-html-parser which has a more DOM-oriented syntax. A long-awaited note type is now supported: Spreadsheets, allowing for a familiar (Excel-like) editing experience with formulas, powered by Univer Sheets. Basic Markdown support with preview and sync scrolling. Built-in OCR support for images, but also PDF and Office (Word, PowerPoint, Spreadsheet) text extraction which integrates with the search function. See the Media page in Options for configuration. Custom dictionary is now synchronized across instances New deployment for Linux under test: AppImage We are reintroducing an LLM chat functionality with full-size chats as well as a sidebar with tools that allow it to alter your notes or even create scripts. Save indicator not showing in quick edit popup. Grid of child notes does not clear floats.
  • 37 416
    37 Topics
    416 Posts
    Package UpdatesP
    [2.94.0] Update tt-rss to 8edf462
  • 12 86
    12 Topics
    86 Posts
    jamesJ
    Hello @icegorilla and other @twenty users We just published @twenty 2.17.0. If there are any issues after the update, please let me know since we removed the --force migration since upstream fixed the issue. But, getting some feedback would be appreciated.
  • 42 298
    42 Topics
    298 Posts
    Package UpdatesP
    [1.25.1] Update typebot.io to 3.17.2 Full Changelog Configure WhatsApp forwarded events (#2528) [c5516cd] Configure WhatsApp webhook forwarding URL (#2529) [3db24c4] Fix landing page Discord URL (#2512) [b4a7aab] Fix missing result columns in CSV export (#2513) [08cb6ea] Fix OpenAI audio transcription uploads (#2521) [2fd5510] Fix OpenAI chat completions endpoint (#2522) [b252a9c] Fix embedded audio uploads (#2523) [c82ac43] Ignore expected WhatsApp webhook errors (#2527) [3b321f4] Block IPv6 unspecified SSRF targets (#2511) [f56c3c3]
  • 33 278
    33 Topics
    278 Posts
    S
    Had the same issue — Umami stuck on "Not responding" with build-app exiting with code 137 during next build --turbo. Fix: temporarily bump RAM to 8 GB for the first start, let the build complete, then reduce. In my case 3 GB is the minimum stable amount for ongoing operation — 2.5 GB still crashes. Hope this saves someone some time. Would be great if the package could ship with a pre-compiled build to avoid this entirely.
  • 39 349
    39 Topics
    349 Posts
    Package UpdatesP
    [2.6.3] Update cloudflared to 2026.7.1
  • 19 126
    19 Topics
    126 Posts
    Package UpdatesP
    [1.6.1] fix: Mod support
  • 4 118
    4 Topics
    118 Posts
    Package UpdatesP
    [1.83.4] Update vault to 2.0.3 Full Changelog auth/radius: Added case_insensitive_names toggle to prevent username collisions and enable case-insensitive user handling. core/acl: Fix LIST ACL bypass where a trailing-slash request could skip a more-specific deny rule. core: Use constant-time recovery token comparison core/acl: LIST requests with a trailing slash now correctly respect more-specific deny policies. Previously, a deny on path "kv/*" { deny } could be bypassed for LIST kv/private/ if a broader allow path "kv/*" also existed. Policies relying on the previous (incorrect) behavior may now be denied. core: Vault will now redirect non-canonicalized paths (containing /./, /../, or //) to a cleaned path, instead of rejecting these requests AI Agent Support (Beta/Enterprise): Adds beta support for first-class AI agents. Adds an Agent Registry to register agents, and adds support for using Vault as an OAuth resource server for registered agent entities. When configured, allows OAuth 2.0 JWTs to be used to directly authorize requests to Vault, without needing a Vault token. core/rotationMgr: Fix storage routing for local mounts in namespaces to prevent metadata replication and ensure GDPR compliance. secrets/pki: Fix PKI certificate issuance not_after time to respect max TTL. secrets/transit: Add managed key support to Transit rewrap endpoint. storage/raft: reject performance_multiplier values less than or equal to zero
  • 95 812
    95 Topics
    812 Posts
    jdaviescoatesJ
    @james said: Please follow these steps if you have this issue: Can this script be run on the working version I reverted to, or do I need to update to the broken version and then run it? Edit: yes, it seems fixing the db and then updating also works fine.
  • 9 165
    9 Topics
    165 Posts
    Package UpdatesP
    [1.79.3] Update verdaccio-openid to 0.17.2 Full Changelog fix: add getFullUrl function to handle url_prefix correctly and updat by @kuoruan in #21
  • 38 263
    38 Topics
    263 Posts
    I
    Hi @james thanks for your reply, I tried creating a dummy user before/after installing vikunja, but I can't see any user when I log in (same from my normal account). Thanks for having a look at it!
  • 66 515
    66 Topics
    515 Posts
    R
    @LoudLemur based on your message, which was written to you by AI . You are not suitable for openvpn and wireguard , which are exactly VPN connections. But suitable VLESS , Shadowsocks and Hysteria , which are proxies . For them you can in a couple of clicks to raise a single server with web ui -for example 3xui .
  • 20 169
    20 Topics
    169 Posts
    Package UpdatesP
    [2.5.6] Update wallabag to 2.6.14 Full Changelog Change version in wallabag.yml by @nicosomb in #8251 Fix deprecation by @j0k3r in #8267 Add annotations filter to entries API endpoint by @skn in #8346 Update dependencies by @yguedidi in #8435 Bump deps (mostly for siteconfig) by @j0k3r in #8489 Fix reading time computation for short entries by @andreadecorte in #8332 Fix urls parameter when sending many urls to be stored using the API by @j0k3r in #8488 Prepare 2.6.14 by @j0k3r in #8494
  • 5 84
    5 Topics
    84 Posts
    Package UpdatesP
    [1.23.0] Update Wallos to 5.0.0 Full Changelog complete ui overhaul (#1108) Allow setting beginning of week as Sunday in calendar (#1010) dashboard icons image search declarative oidc settings google image search with serpapi grid view for subscriptions more statistics selfh.st image search subscription details popup v2.0 api - write endpoints
  • 5 78
    5 Topics
    78 Posts
    Package UpdatesP
    [1.41.0] Update whitebophir to 2.15.0 Full Changelog
  • 8 156
    8 Topics
    156 Posts
    Package UpdatesP
    [1.46.0] Update weblate to 2026.7.1 Full Changelog Added INTERNAL_BOT_EMAIL_TEMPLATE to customize internal bot e-mail addresses. Filtered translation and zen navigation now reuse a stable session result list, keeping positions and counts stable after translated strings leave the filter. Component priority icons are no longer shown on translation listings. Punctuation spacing no longer flags Markdown image markers as French punctuation and now shows which punctuation marks triggered the check. Fedora Messaging received several reliability fixes. Anonymous user permission caches are now isolated between requests. Accepting a project invitation now automatically adds the project to the user's watched projects. Dismissing a failing check no longer shows a JSON parsing error in the translation editor. Anonymous and internal bot accounts can no longer be edited through generic user management. Azure AI Translator settings now reject malformed region names before validating service connectivity.
  • 25 520
    25 Topics
    520 Posts
    Package UpdatesP
    [4.121.0] Update wekan to 9.87 Full Changelog Normal users cannot move cards between swimlanes: in the swimlanes view the .js-swimlanes sortable which also carries moving a card from one swimlane to another was disabled for every non-admin (!isBoardAdmin()), even though its own comment said it should be disabled only for non-members. So ordinary board members could move a card within a swimlane but not between swimlanes, and could not reorder swimlanes. Now it is disabled only for users without write access (!canModifyCard(): comment-only, worker, read-only), so board members can move cards between swimlanes again.
  • 16 139
    16 Topics
    139 Posts
    Package UpdatesP
    [1.13.7] Update wiki to 2.5.314 Full Changelog ec36eb2 - update arm docker base to node 24 (commit by @NGPixel) da64dcd - fix windows build missing migration file during tarball creation (commit by @NGPixel)
  • 4 69
    4 Topics
    69 Posts
    Package UpdatesP
    [2.17.0] Update woodpecker to 3.16.0 Full Changelog Gate Kubernetes serviceAccountName backend step config behind agent config [#6792] Harden agent rpc to check agentID on workflow [#6759] Add workflow concurrency limit option [#6671] Support Unix Sockets [#6721] Allow images for secrets to contain SHA256 for image pinning [#6784] server should drop stale queue tasks already missing in database [#6765] server queue api should ignore missing agent [#6763] local backend: on windows use process tree-walk as workaround to kill [#6718] Fix issue with deeply nested k8s backend_options [#6730] github dont fail on force push [#6697]
  • 113 Topics
    870 Posts
    Package UpdatesP
    [3.18.1] Update WordPress to 7.0.1 Full Changelog
  • 226 Topics
    2k Posts
    Package UpdatesP
    [3.15.2] Update WordPress to 7.0.1 Full Changelog
  • 13 67
    13 Topics
    67 Posts
    Package UpdatesP
    [1.4.2] Update XBackBone to 3.8.2 Full Changelog allow pasting images/videos in Web UI via clipboard by @Sloth-on-meth in sergix44/xbackbone#650 Provide oembed endpoint by @matias49 in sergix44/xbackbone#632 Improve docs for large file upload limits and timeouts by @nandhan262006 in sergix44/xbackbone#651
  • 20 136
    20 Topics
    136 Posts
    Package UpdatesP
    [1.12.1] Update YOURLS to 1.10.4 Full Changelog fixed: Prevent XSS in stat pages through referrers (#4107) added: Localization support for date and time display (#4054) improved: Improve shunt filters (#4058) fixed: Notice overlapping logo in admin panel (#4069) fixed: Flag password file as user auth from environment variables (#4066) added: Filter SQL queries (#4064) improved: Improve debug functions and logic (#4089) improved: Make tests debugging easier (#4104)
  • 2 Topics
    14 Posts
    Package UpdatesP
    [0.8.0] Update urlaubsverwaltung to 6.3.0 Full Changelog Neue Abwesenheitsart "Mobiles Arbeiten" #6365 Abwesenheitsbersicht: Rahmen des aktuellen Tages endet nicht korrekt an der letzten Zeile #6371