Apps

2FAuth

9 70

9 Topics

70 Posts

[1.9.2] Update 2FAuth to 6.1.3 Full Changelog issue #533 Try my luck feature is currently grayed out Some minor UI glitches

Ackee

10 83

10 Topics

83 Posts

[1.8.0] Update Ackee to 3.6.0 Full Changelog Ackee now requires Node.js 24 or newer Vercel deployments and serverless functions (#401, #385)

Actual

7 57

7 Topics

57 Posts

[1.25.1] Update actual to 26.5.2 Full Changelog View release notes

[1.14.15] Update AdGuardHome to 0.107.75 Full Changelog Go version has been updated to prevent the possibility of exploiting the Go vulnerabilities fixed in [1.26.3][go-1.26.3]. IDs of requests received over DoH and DoQ and forwarded to plain-DNS upstreams are now set to non-zero values to improve security. Frontend API requests no longer depend on axios. Dashboard charts use Recharts instead of Nivo. enable_dnssec in dns configuration now defines whether the proxy should set the DO flag in the upstream requests, the default is true ([#7046][#7046]). Statistics database deadlock ([#8359][#8359]). Translated labels on the DNS settings pages not updating after changing the UI language. Dashboard charts now correctly display lower query counts ([#6823][#6823]). Redundant validation warnings about DHCP when it's disabled ([#8348][#8348]). Safe Browsing and Parental Control labels on the General Settings page not updating after changing the UI language.

Alltube

12 115

12 Topics

115 Posts

This look like a good replacement for Alltube (which we were using) https://github.com/alexta69/metube

Ampache

16 182

16 Topics

182 Posts

[1.25.3] Update ampache to 7.9.3 Full Changelog run:updateCatalogFile: Add -m|--move parameter to move file in the database to a new location run:updateCatalogFolder: Add -m|--move parameter to move all music in a folder to a new location Catch any Garbage Collection error for Albums Garbage collection for Albums missing from the album table License checks on upload not considering int ID's Star ratings scale Advanced Random actions missing joins for Artist and Album Don't limit Album track display by page size Extended orphan_album check in Song search Correct structuredLyrics array

Apache Answer

7 66

7 Topics

66 Posts

[1.7.0] Update answer to 2.0.0 Full Changelog New: AI Assistant feature (@shuashuai @LinkinStars #1479) New: MCP server feature (@LinkinStars @shuashuai #1480) New: API Keys feature (@LinkinStars @shuashuai #1482) New: Editor plugin support (@robinv8 #1481) Fixed: Add user in the Admin, no result prompt after submission (@bimakw #1457) Fixed: Fix/external id notification (@IfDougelseSa #1465) Fixed: fix: expand avatar column length from 1024 to 2048 (@csouls #1463) Fixed: When the input type of SchemeForm is a number, the default value of 0 is not displayed.@shuashuai

ArchiveBox

6 28

6 Topics

28 Posts

@girish I understand. Thanks!

Astral

4 25

4 Topics

25 Posts

Hello @andreasdueren Thanks for the report. Fixing it right now.

Audiobookshelf

8 119

8 Topics

119 Posts

[1.99.0] Update audiobookshelf to 2.35.0 Full Changelog Access token refresh grace period (fixes frequently needing to re-login) #4630 by @nichwall in #5004 Listening sessions from Android app showing device name as Abs iOS RSS feeds serving m4b files with incorrect Content-Type #5041 by @brandonfhall in #5221 Book & podcast descriptions from audio files are sanitized cancel_scan and set_log_listener socket events validate account type and log level

AzuraCast

10 35

10 Topics

35 Posts

Thanks for reporting here @gardinermichael . We have in fact hidden the app package because there were many issues with it and we couldn't manage to get it to be stable . Maybe we should revisit this.

Baserow

39 384

39 Topics

384 Posts

[1.37.10] Update uv to 0.11.15

Beszel

5 64

5 Topics

64 Posts

[1.6.6] Update beszel to 0.18.7 Full Changelog Add more disk I/O metrics (utilization, read/write time, await, queue depth) (#1866) Add ability to copy alerts between systems by @svenvg93 (#1853) Add SENSORS_TIMEOUT environment variable (#1871) Replace distatus/battery with an internal implementation by @svenvg93 (#1872) Restrict universal token API to non-superuser accounts (#1870) Fix macOS ARM64 crashes by upgrading gopsutil to v4.26.3 (#1881, #796) Fix text size for system names in grid view by @Malith-Rukshan (#1860) Fix NVMe capacity reporting for Apple SSDs by @svenvg93 (#1873) Fix Windows root disk detection when the executable is not on the root disk (#1863) Fix nested virtual filesystem inclusion in Docker when mounting host root by @svenvg93 (#1859)

BookStack

13 253

13 Topics

253 Posts

[2.0.4] Update BookStack to 26.03.4 Full Changelog Updated PHP package versions. Updated attachment actions to align page access check. Updated URL validation in webhooks to help prevent escaping workarounds. Fixed issue where exact search term negation would lead to no results. (#6121)

Bugsink

1 6

1 Topics

6 Posts

[0.5.0] Fix documentation link

Build Service

11 130

11 Topics

130 Posts

[2.10.3] fix: update doc links from /apps/ to /packages/

Cal.com

54 687

54 Topics

687 Posts

I noticed that they haven't issued a new release since March 1, where they were previously cutting releases every few days. Looks like they are still merging PRs into calcom:main, but unclear when that will turn into a new release. Any idea who is managing the release process for the repo?

Calendar

9 36

9 Topics

36 Posts

[0.7.0] Update calendar to 0.7.0 Add support for custom reminders in the event editor Integrate SCIM addon for pre-provisioning users (scimSync, manifest/server/storage updates) Replace uuid with Node crypto for ID generation Event details popover: positioning fixes, less layout “jumping,” fewer distracting loading states for attendees Schedule view: disable animation on event details Week boundary: fix event display when events sit on a week edge Shared calendar: alignment tweak in the shell UI

Calibre Web

35 327

35 Topics

327 Posts

[1.35.0] Update calibre to 9.8.0 Full Changelog

Castopod

18 157

18 Topics

157 Posts

Hello @luckow This is not documented very well. Had to look into the Castopod code to find the URL path to the API. https://github.com/ad-aures/castopod/blob/bc041702dd8058ae8e1831b9609827c911a5a626/modules/Api/Rest/V1/Config/RestApi.php#L35 public string $gateway = 'api/rest/v1/'; So the full URL would be https://castopod.cloudron.dev/api/rest/v1/podcasts curl https://castopod.cloudron.dev/api/rest/v1/podcasts [] After creating one: curl https://castopod.cloudron.dev/api/rest/v1/podcasts [{"id":1,"guid":"2bdee7b8-8131-5888-b4da-713d7b3a124a","actor_id":1,"handle":"demopadcast","title":"Demo Podcast","description_markdown":"DESC","description_html":"<p>DESC</p>\n","cover_id":3,"banner_id":null,"language_code":"en","category_id":1,"parental_advisory":null,"owner_name":"james","owner_email":"james@cloudron.example","is_owner_email_removed_from_feed":true,"publisher":"","type":"episodic","medium":"podcast","copyright":"","episode_description_footer_markdown":null,"episode_description_footer_html":null,"is_blocked":false,"is_completed":false,"is_locked":true,"imported_feed_url":null,"new_feed_url":null,"payment_pointer":null,"location_name":null,"location_geo":null,"location_osm":null,"verify_txt":"","custom_rss":null,"is_published_on_hubs":false,"partner_id":null,"partner_link_url":null,"partner_image_url":null,"is_premium_by_default":false,"created_by":1,"updated_by":1,"published_at":null,"created_at":{"date":"2026-03-03 11:06:44.000000","timezone_type":3,"timezone":"UTC"},"updated_at":{"date":"2026-03-03 11:06:44.000000","timezone_type":3,"timezone":"UTC"},"feed_url":"https://castopod.cloudron.dev/@demopadcast/feed.xml","actor_display_name":"Demo Podcast","cover_url":"https://castopod.cloudron.dev/media/podcasts/demopadcast/cover.jpg","categories":[{"id":1,"parent_id":null,"code":"arts","apple_category":"Arts","google_category":"Arts","translated":"Arts"}]}]

Change Detection

28 376

28 Topics

376 Posts

[1.30.2] Update changedetection.io to 0.55.4 Full Changelog UI - AI/LLM - "Summary" button should set last viewed by @skkzsh in #4095 API - watch.link was accidently a tuple, enforcing string by @dgtlmoon in #4104 API - Add restock config to API /v1/watch/ json output #4099 by @dgtlmoon in #4103 Notifications - Escape only the diff variables before Jinja2 renders them into the template ( Stop breaking custom HTML for plaintext pages on HTML notifications) #4121 by @dgtlmoon in #4123 Fixing GHSA-vwgh-2hvh-4xm5 substring match in the shared_diff_access by @dgtlmoon in #4130 LLM - Self-hosted OpenAI-compatible endpoint support (vLLM, LM Studio, llama.cpp) refs #3204 by @tekgnosis-net in #4117 Text filters - Process subtractive_selectors first by @dgtlmoon in #4142 Text filters - Ignore text should run before 'extract text' by @dgtlmoon in #4143 UI - LLM - SSRF guard for the LLM api_base setting by @dgtlmoon in #4157 API Security - Watch GET history snapshot - Should return text/plain mimetype so it cant be accidently executed in the browser by @dgtlmoon in #4158

Chatwoot

61 438

61 Topics

438 Posts

[1.52.0] Update chatwoot to 4.14.0 Full Changelog Companies: creation, details, notes, history, labels, and activity tracking. Help Center: bulk actions, AI translation, URL embeds, and category-based article creation. Captain/AI: document sync, FAQ improvements, handoff classification, and config refresh fixes. Inbox UX: expanded chat list, bulk actions, attachments, quoted replies, and conversation IDs. Integrations: Linear issue linking, template previews, WhatsApp campaign variables, and IMAP auth options. Voice: ground work for WhatsApp/Twilio calling, inbound calls, recordings, and call join support. Security: webhook validation, SSRF hardening, safer uploads, SAML fixes, and admin auth checks. Reliability: fixes across reports, notifications, email, CSAT, CSV, portals, widgets, TikTok, and Slack.

Collabora Online (CODE)

38 496

38 Topics

496 Posts

[1.47.0] Update code to 25.04.9.3.1

Comentario

3 30

3 Topics

30 Posts

[1.8.0] Update comentario to 3.17.0 Full Changelog Add custom moderator name feature (#222) - 66d2bcc, 753451c, 61cc240, ff9e89f, 400f7e5, 8425ce6, 4bab9e2, c1a4ec3, 467bcc0 Add support for PostgreSQL 18 (#224) - 84c93da Backend: fix resource leak in DecompressGzip() - 58cfbe7 Backend: fix Postgres restart loop with a non-public schema (#225, !24) - 9137e53, 4476b1b I18n: add Portuguese messages (pt) by @pt.cesar.monteiro - bbc7303 I18n: add Ukrainian translation (uk) by @kleindberg - 3e7ca17 Go 1.26, update dependencies, modernise code - 33d3044, a4232a7, 4605e5c, cab77fb, 3b97e19, 58a1146, 53e905a, 8464344, 1e193e3, 0c1de70, 8c7cc53 Demo website: add predefined comments to Ukrainian page (also !30) - 724a0ad Demo website: fix comment and config statements - 2a3516d, 25e7a30

Commento++

12 81

12 Topics

81 Posts

@gh0stface yup, they made a release yesterday it seems and it should have the PRs we made upstream. @vladimir-d is checking the package again.

Confluence

20 127

20 Topics

127 Posts

@girish Yep, exactly that. AnyType and Appflowy are growing in popularity. Would be nice to see them

Contacts

5 26

5 Topics

26 Posts

[0.7.0] Update contacts to 0.7.0 Fix some layout issues Fix back navigation problems Replace various node modules with local code Update remaining dependencies

CouchPotato

4 25

4 Topics

25 Posts

@atridad Thanks for the heads up, the app is gone from our library as well.

CryptPad

16 107

16 Topics

107 Posts

[1.15.0] Update sso to 0.5.1 This release contains minor fixes designed to work with CryptPad 2026.5.0

Ctfreak

6 95

6 Topics

95 Posts

[1.28.1] Update ctfreak to 1.38.1 Full Changelog

Cubby

48 382

48 Topics

382 Posts

[2.12.0] Update cubby to 2.12.0 Update tegel backend for improved session managment

Dawarich

12 88

12 Topics

88 Posts

[1.12.6] Update dawarich to 1.7.8 Full Changelog Self-hosters running OIDC-only sign-in: the ALLOW_EMAIL_PASSWORD_REGISTRATION env var no longer doubles as a login gate. Email/password sign-in is now controlled by the new ALLOW_EMAIL_PASSWORD_LOGIN env var (defaults to true). To preserve OIDC-only sign-in after upgrade, set ALLOW_EMAIL_PASSWORD_LOGIN=false. Visit detection now uses PostGIS spatial clustering for faster, more accurate stops; the iteration-based detector is removed. Places are now strictly per-user. Suggestion, photo-geotagging, and reverse-geocoding all use your own place catalogue exclusively; no places are shared across users. Existing shared places have been backfilled to their most-active owner. Self-hosted single-user instances see no behaviour change. "Re-run detection on full history" button under Settings Visits. Confirmed visits and named places are preserved. Account lockout after 10 failed 2FA attempts (30-minute auto-unlock or password reset). Applies to both the mobile API (POST /api/v1/auth/otp_challenge) and the web sign-in flow. Backup codes still work during a lockout so users with one stored can recover immediately. A notification email is sent to the account owner when a lockout is triggered. #2575 Fix support of FIT files from Garmin Connect. #2686 Email/password login is now shown alongside the OIDC button on self-hosted instances by default, instead of being hidden whenever OIDC is configured. Operators who want to enforce OIDC-only sign-in can set ALLOW_EMAIL_PASSWORD_LOGIN=false. See the upgrade note above. #2495 GPX import now streams the file rather than loading the entire XML into memory, so multi-hundred-MB GPX files (e.g. long-running activity exports) no longer OOM the Sidekiq worker. #2296 Tracks recorded by multiple devices on the same account (phone + watch + GPS unit) no longer get merged into one zigzagging track on the map. Each device's points are kept on their own track, and Map v2 draws routes per-device. #337, #1726 Importing a Google Records.json export with positions from more than one device no longer "teleports" between devices and inflates distance travelled; points are scoped per-device using Google's deviceTag. #337

Directus

63 639

63 Topics

639 Posts

[2.17.4] Update directus to 11.17.4 Full Changelog Updated the token field on the user detail page to require confirmation before regenerating or removing a token, and saved those changes immediately without requiring a page-level save. (#27108 by @LZylstra) Added opt-in must-revalidate and ETag headers for assets via ASSETS_CACHE_REVALIDATE env var (#27027 by @gaetansenn) Added a force option to schema apply to bypass hash check (#27136 by @Nitwel) Fixed UI freeze when navigating items with WYSIWYG translations for non-admin users (#27154 by @gaetansenn) Fixed selection not being cleared after running a manual flow from the collection list view sidebar (#27330 by @kropsi) Fixed "Save as copy" in the file library throwing a 403 Forbidden error (#27181 by @sanskar-soni-9) Fixed user token not being displayed after generation when collaboration is enabled (#27319 by @LZylstra) Fixed flows not awaiting reload (#27137 by @Nitwel) Fixed VERSION_SAVE activity/revisions not respecting collection tracking settings (#27096 by @yogeshwaran-c) Denied creating collections with / in name (#27114 by @costajohnt)

Discourse

89 765

89 Topics

765 Posts

[2.14.2] Update discourse to 2026.4.1 Full Changelog

Docker Registry

24 265

24 Topics

265 Posts

[2.7.1] Update distribution to 3.1.1 Full Changelog Fixes CVE-2026-41888 Bounds-check the file basename in PurgeUploads Walk callback Add S3 Express One Zone support to the S3 storage driver (#4858) Fix tag list endpoint in proxy mode (#4846) Clamp oversized n query parameter in proxy mode instead of returning 400 (#4856)

Docmost

4 38

4 Topics

38 Posts

Hi @joseph Thanks for this. I can confirm that vector is now enabled. Docmost is still complaining when I activate the option, but I see no "page_embeddings" tables at the moment so I will wait for a potential background creation and report. Thanks again,

Documenso

13 114

13 Topics

114 Posts

[1.21.0] Update documenso to 2.11.0 Full Changelog fix: prevent 2fa users from being flagged as bots by @Mythie in #2748 feat: allow add myself feature for embeds by @dguyen in #2754 feat: remove default personal orgs from custom sso by @dguyen in #2741 feat: add pending signed PDF downloads by @ephraimduncan in #2730 feat: add DD-MM-YYYY date format variants by @catalinpit in #2767 fix: paginate and search member/group pickers by @Mythie in #2768 feat: add new field overflow methods by @dguyen in #2715 feat: add granular signup disable flags by @ephraimduncan in #2765 feat: add custom branding for signing pages by @Mythie in #2785 feat: support DOCX uploads via Gotenberg by @Mythie in #2801

Documize

12 63

12 Topics

63 Posts

[1.12.0] Update community to 5.14.0 Full Changelog Added Spanish language support

DocuSeal

17 259

17 Topics

259 Posts

[1.16.0] Update docuseal to 3.0.0 Full Changelog It is now possible to complete a long form via the "Complete" button in the header after all required fields are filled. Percent format for number fields. Default validation error messages. Images are now written as JPG in PDFs for smaller file sizes and faster PDF generation. Bug fixes and security improvements. This release marks 3 years of DocuSeal development - it does not contain breaking changes.

Dokuwiki

17 130

17 Topics

130 Posts

[1.26.0] Update dokuwiki-plugin-oauth to 2025-10-23

Dolibarr

38 326

38 Topics

326 Posts

[1.13.4] Update dolibarr to 23.0.3 Full Changelog FIX: #36589 (#38037) FIX: broken feature with api auth and Multicompany transverse mode (#37868) FIX: do not print Extrafields in PDF if printable is 0 (#37789) FIX: draft invoice paid when add absolute discount == remain to pay (#38104) FIX: IDOR on messaging.php - Credit Aksoum Abderrahmane FIX: Some remaining cross-customer object creation on API (proposal, orders) - Credit Mitch311 FIX: Can use AI module to make SSRF call. Credit Dilip FIX: #GHSA-crgg-h74r-2m8r (#37636) FIX: SQL Injection via Operator Injection in Contract Service List SEC: Better sanitization param for GETPOST of htmlheader of website page - See commit bbbbb56

Easy!Appointments

13 88

13 Topics

88 Posts

[1.7.2] symlink HTMLPurifier cache path

Emby

12 99

12 Topics

99 Posts

[1.18.3] Update Emby.Releases to 4.9.5.0 Full Changelog Fix sporadic cases of wrong subtitle encoding Fix sporadic cases of subtitles not showing Fix strm files containing youtbue urls Add additional Estonian language codes Fix realtime monitor ignoring folders with a dot in the name Add new spotlight home screen section option (requires Emby Server 4.10+)

EspoCRM

51 505

51 Topics

505 Posts

[2.20.7] Update espocrm to 9.3.7 Full Changelog Maintenance updates.

Etherpad Lite

31 282

31 Topics

282 Posts

[4.8.0] Update etherpad-lite to 3.1.0 Full Changelog Self-update Tier 4 (autonomous in a maintenance window). Set updates.tier: "autonomous" together with updates.maintenanceWindow: {"start":"HH:MM","end":"HH:MM","tz":"local"|"utc"} to constrain autonomous updates to a nightly window. The scheduler snaps scheduledFor forward to the next window opening when grace would otherwise land outside the window, and defers the fire when the window has closed by the timer callback. Cross-midnight windows (end < start) are supported; DST transitions are absorbed by host wall-clock arithmetic. A missing or malformed window degrades the policy to Tier 3 with an explicit policy.reason of maintenance-window-missing / maintenance-window-invalid; an admin banner surfaces the misconfiguration so autonomous behaviour is not silently disabled. The admin update page shows a "Maintenance window" section with the parsed window summary, the next opening, and a "deferred until <iso>" subtitle on the scheduled panel when the timer has been snapped forward. Closes #7607 (#7753). Updater real SMTP via nodemailer (new top-level mail.* block). Replaces the "(would send email)" stub. New settings: mail.host, mail.port, mail.secure, mail.from, mail.auth.{user,pass}. mail.host=null keeps the legacy log-only behaviour. The nodemailer dependency is lazy-imported on first send so installs that don't configure mail pay no runtime cost; the transport is cached on the full SMTP options tuple so a reloadSettings() change to host/port/credentials invalidates the cache. settings.json.docker reads MAIL_HOST / MAIL_FROM / MAIL_PORT / MAIL_SECURE from env. Send errors are logged warn and swallowed so a transient SMTP failure can never poison the updater state machine.

evcc

2 104

2 Topics

104 Posts

[1.22.3] Update evcc to 0.306.3 Full Changelog Revert "Templates: fix intervall type (BC) (#29698)" Templates: fix intervall type (BC) (#29698) Wallbe: remove deprecated (BC) (#29647) Add ZAR (South African Rand) to currency list (#29620) Siemens 7KT: add voltages (#29732) Bluelink: fix unmarshal float EvModeRange.Value from Hyundai EU API (#29687) EEBus: fix LPC/LPP CS failsafe-exit path (#29705) EEBus: named scenario constants + fix MGCP scenario indices (#29701) OCPP: fix flaky test deadlock between trigger handler and WS read loop (#29725) Tessie: fix wakeup uri (#29726)

Fider

6 40

6 Topics

40 Posts

[3.1.0] Update fider to 0.35.0 Full Changelog Support for an annual plan too. by @mattwoberts in #1516 Fix mass assignment auth bypass in sign-in verification by @mattwoberts in #1517 Add rate limiting to sign-in verification code by @mattwoberts in #1524 fix(email): unescape HTML entities in rendered subject by @americodias in #1513 Harden post filter against edge cases by @lol2x in #1515

FilePizza

4 34

4 Topics

34 Posts

[1.15.0] Update filepizza to 60704b4

FindMyDevice

2 14

2 Topics

14 Posts

[1.2.0] Update fmd-server to 0.15.0 Full Changelog Delete all locations/pictures (!218) Add fmd-server-ctl tool (!142) Security: Revoke all active sessions after password change (!221) Internal refactoring (to prepare for APIv2)

Firefly III

22 273

22 Topics

273 Posts

[3.12.1] Update firefly-iii to 6.6.2 Full Changelog MR 12179 (implement password validation JS script) reported by @tasnim0tantawi MR 12182 (fix shrinked sidebar expanding when navigating by clicking on icons) reported by @tasnim0tantawi Issue 12169 (The 'Running balance' column is not showing the respective calculation instantly for new records that use 'Rules') reported by @jgmm81 Issue 12186 (Set a year validator accepted by the system when saving or editing a transaction) reported by @jgmm81 Fixed an issue where oAuth tokens could be generated before you confirmed your 2FA state. This would allow access to your data when your password was stolen, despite you having MFA enabled.

Formbricks

6 108

6 Topics

108 Posts

[2.9.6] Update formbricks to 4.9.6 Full Changelog fix: patch security dependency vulnerabilities for 4.9 by @mattinannt in #7989 fix: backport SSO account deletion reauth by @xernobyl in #7976 fix: backport sso deletion redirect to 4.9 by @xernobyl in #8040

Forgejo

5 23

5 Topics

23 Posts

[1.2.1] Update forgejo to 15.0.2 Full Changelog See https://codeberg.org/forgejo/forgejo/src/branch/forgejo/release-notes-published/15.0.2.md

FreeScout

71 794

71 Topics

794 Posts

Hello @halkhamis If you want to use an external database with Freescout you will have to fork the Freescout package and change it so that you can use an external database. It sounds like you want to use enterprise and high availability features for a software that is not highly available in the first place, so the HA of the DB will offer nothing when the software is down anyway. Cloudron also provides the security and encryption for the DB and also offers the backup and restore for the app and database itself, but not PITR.

FreshRSS

19 153

19 Topics

153 Posts

[1.28.0] Update FreshRSS to 1.29.0 Full Changelog New sort order preferences at global, category, and feed levels #8234 New filtering by date of Server modification date #8131, #8576 New option to automatically mark new articles as read if an identical GUID already exists in the same category #8673 Add option to enable/disable notifications, also for PWA #8458 Fix wrong search toString in case of regex-looking string #8479 Fix redirect to wrong view after mark as read in reader and global views #8552 Fix do not include hidden feeds when counting total number of unread articles #8715 Limit cURL to protocols HTTP, HTTPS #8713 New Webhook extension for automated RSS notifications Extensions#456 New cli/purge.php to apply purge policy #8740

Funkwhale

2 14

2 Topics

14 Posts

@joseph As I understood it, not even that. MEDIA_ROOT is where all media uploaded gets stored. MUSIC_DIRECTORY_PATH is like an import folder where you can manually upload files that then get imported. But I am not 100 % certain, it is still confusing for me.

Ghost

83 1k

83 Topics

1k Posts

[4.170.0] Update ghost to 6.39.0 Full Changelog Changed comments to be enabled by default (#27913) - Hannah Wolfe Added a built-in theme code editor (#27656) - John O'Nolan Migrated redirects download to YAML - Fabien O'Carroll Fixed {{#social_accounts}} emitting "twitter" as the type for X (#27871) - Hannah Wolfe

Gitea

50 437

50 Topics

437 Posts

I've just encountered the exact same issue. Not sure if upgrades are breaking things or what's going on. I resolved 500 internal server error upon login by resetting password via webui, clicking the link, using the same password + topt in the reset page, logging out and logging back in.

GitHub Pages

20 149

20 Topics

149 Posts

Yes, it's only jekyll. Not an expert on next.js but I think it also needs a backend right ? If so, you have to create a custom package - https://docs.cloudron.io/packaging/tutorial/

GitLab

62 641

62 Topics

641 Posts

[1.115.2] Update gitlab-foss to 18.11.3 GitLab 18.11 release notes Fix import_url validation for passwords with special characters Fix project moved notification when project is scheduled for deletion Downgrade Rugged to 1.7.2 to avoid llhttp collision Raise permission for test upstream endpoints GitLab Enterprise Edition Gate trial CTA's on FF automatic_self_managed_trial_activation GitLab Enterprise Edition 18.11 Backport: Fix missing DuoApiAuthenticator stub in json_validation_spec (merge request) Address XSS via file path in global search (merge request) Sanitize HTML in Duo Chat markdown renderer (merge request) Fix the group permission user search results (merge request) Filter tag names with invalid formats during deletion (merge request) Prevent source issue disclosure via issue links API (merge request) Remove componentProps from analytics dashboards DataTable (merge request) Fix value_stream data source passing arbitrary query fields (merge request) Fix HTML injection in achievement email notifications (merge request) Clarify Jira integration access scope in docs and UI (merge request) Authenticate internal API requests pre JSON parsing (merge request) Approval rule lock bypass via GraphQL mutations (merge request) Gate create_note_email on write-level token scope (merge request) Reject oversized job tokens early in AuthJobFinder (merge request) Normalize PyPI package names in protection rule checks (merge request) Enhance DNS rebinding protection in VirtualRegistries RedirectHandler (merge request) Count carriage-return separators in CSV structural char estimate (merge request) Fix DoS via unauthenticated POST to Duo Workflow endpoints - 18.11 backport (merge request) Remove legacy JiraConnect::Subscriptions#create to close CSRF vector (merge request) Remove all namespaced attributes in BaseSanitizationFilter (merge request) Filter out non-user-defined rules on approval update (merge request) Fix orphaned scan_result_policy_reads on policy project reassignment (merge request) Fix confidential issue data leak via move/clone API endpoints (merge request) Add Helm package protection rule check to CreatePackageFileService (merge request) Scope NuGet symbols lookup to projects within the requested namespace (merge request) Security Fix Vulnerability 586634 (merge request)

GLPI

2 11

2 Topics

11 Posts

[1.1.3] Update glpi to 11.0.7 Full Changelog Dashboards can now be reset to the state it would have after a clean install. This is only available for dashboards added by GLPI itself. CLI command security:change_oauth_key to (re)generate the OAuth keys. This can be used to change keys or to create them in the case they fail to be created during the installation/update process. The Planning widget on the homepage now only shows events +/- 1 year from the current date instead of 5 to improve performance. The planning widget on the homepage no longer shows completed events to improve performance and relevance. "Associate to an appliance" and "Remove from a rack" actions removed for templates.

Gogs

7 59

7 Topics

59 Posts

[1.23.1] Update gogs to 0.14.2 Full Changelog Security: Cross-repository LFS object overwrite via missing content hash verification. #8166 - GHSA-gmf8-978x-2fg2 Security: Stored XSS via data URI in issue comments. #8174 - GHSA-xrcr-gmf5-2r8j Security: Release tag option injection in release deletion. #8175 - GHSA-v9vm-r24h-6rqm Security: Stored XSS in branch and wiki views through author and committer names. #8176 - GHSA-vgvf-m4fw-938j Security: DOM-based XSS via issue meta selection on the issue page. #8178 - GHSA-vgjm-2cpf-4g7c Unable to update files via web editor and API. #8184

Grafana

22 248

22 Topics

248 Posts

[2.5.1] Update grafana to 13.0.1 Full Changelog Dashboard: Preserve timezone user-preference when converting V1 V2 #122673, @ivanortegaalba Provisioning: Include dashboard validation errors in pull request comments #122433, @gttrigger Unified storage: Skip migrations if dualwrite state shows they were already migrated #122880, @stephaniehingtgen

Grav CMS

12 131

12 Topics

131 Posts

[1.9.1] Update grav to 1.7.52 Full Changelog GPM client now sends the running PHP version with index requests so the server can substitute PHP-aware compat fallbacks when a plugin's latest release requires a newer PHP than the client can run. [security] Extended default uploads_dangerous_extensions to include md, yaml, yml, json, twig, ini page-content extensions that can be weaponised via permissive form-upload accept policies (GHSA-w4rc-p66m-x6qq, defense-in-depth alongside the Form 9.1.0 plugin fix). Added foundation for migrating to Grav 2.0: cross-major auto-upgrades are blocked in GPM, and core now surfaces a next_major hint so admin can point users at the new migrate-grav plugin Added compatibility: blueprint support so plugins/themes can declare which Grav versions they support Added self-upgrade preflight that flags incompatible plugins/themes and psr/log / Monolog conflicts before proceeding Added upgrade resilience with automatic maintenance mode and opcache reset during self-upgrade Added new cache-cleanup CLI command to prune obsolete cache entries Added new onFlexDirectoryConfigBeforeSave event for Flex More readable time output in bin/grav logviewer #4009 Fixed selectize field losing values when keyed options were used

Greenlight

19 166

19 Topics

166 Posts

[1.11.2] Update greenlight to 3.8.2.3 Full Changelog Multiple gem updates Language Updates

Grist

4 24

4 Topics

24 Posts

Fix landed in the latest package now.

Guacamole

55 318

55 Topics

318 Posts

Hello @albertbeaufrand and welcome to the Cloudron Forum This topic is a duplication of https://forum.cloudron.io/post/97415 and will be merged into it. Please read the responses above to get the full answer to your question.

Hastebin

4 23

4 Topics

23 Posts

App discontinued due to no upstream updates.

HedgeDoc

18 144

18 Topics

144 Posts

[1.21.5] Update hedgedoc to 1.10.8 Full Changelog Fix data loss when 5+ users edit a document concurrently, caused by the OT client discarding operations during revision gap recovery (#6342) Add defensive null checks to hex2rgb to prevent crashes from non-hex color values

Home Assistant

10 136

10 Topics

136 Posts

[1.19.2] Update core to 2026.5.2 Full Changelog Fix ValueError for non-numeric value in LG ThinQ ([@LG-ThinQ-Integration] - [#166300]) (lg_thinq docs) Fix non unique_id for Comelit ([@chemelli74] - [#169756]) (comelit docs) Fix local API incorrectly marking devices as unavailable in Overkiz ([@iMicknl] - [#170118]) (overkiz docs) Fix homematicip_cloud config entry setup crash after migration to 2026.5.0 ([@lackas] - [#170156]) (homematicip_cloud docs) Fix MQTT device discovery not using shared QoS and encoding options ([@jbouwh] - [#170195]) (mqtt docs) Add target flow level and mode end time sensors to Duco integration ([@ronaldvdmeer] - [#169298]) (duco docs) Fix fractional setpoints in Matter climate not rounded ([@TheJulianJES] - [#170442]) (matter docs) Fix duplicate doorbell events when entity becomes unavailable ([@jbouwh] - [#170354]) (alexa docs) Fix hassio.backup_partial AttributeError when folders are specified ([@agners] - [#170312]) (hassio docs) Migrate Duco to python-duco-connectivity and remove temperature sensors ([@ronaldvdmeer] - [#170237]) (duco docs) (breaking-change)

Humhub

27 251

27 Topics

251 Posts

[1.9.3] Update humhub to 1.18.3 Full Changelog Fix #8079: Hide wall entry topics container when no topics Fix #8075: Filtering by Global Topic in Dashboard Fix #8086: Fix Daylight Saving Time issue in DbDateValidator Fix #8090: Show only visible groups on the profile field "Group memberships" Enh #8095: Improve authorization checks Enh #8088: Improve people/space filters Fix #8133: Rebuild search index after file updating Fix #8144: Restrict file view action Enh #8156: Enhance behavior for vertical videos and multiple video attachments Fix #8164: Fix space members list visibility

Immich

73 680

73 Topics

680 Posts

Hey @nebulon - thanks the update did the trick

IP2Location

6 45

6 Topics

45 Posts

[1.0.1] Add pagination to query log

IT-Tools

5 65

5 Topics

65 Posts

Hello @nichu42 Sorry for the delay. We had a misconfiguration for the CI where the updates were not picked up correctly. App updates should be available now.

Infisical

1 3

1 Topics

3 Posts

[0.2.0] Tests implemented Fixup logo

Invidious

17 188

17 Topics

188 Posts

[1.12.4] Update companion to d5504eb90

Invoice Ninja

69 1k

69 Topics

1k Posts

[1.22.18] Update invoiceninja to 5.13.22 Full Changelog Fixes for tax period report. Fixes for auth.net regression Updated tests for BcMath Fixes for PayPal Allow sort[] for multi column sorting Set a default sort by order for al list api endpoints. v5.13.22 by @turbo124 in #11944

Jellyfin

43 343

43 Topics

343 Posts

Ok, thanks. Looks like I'll just run Jellyfin in docker and use Cloudron's app proxy instead.

Jingo

4 18

4 Topics

18 Posts

App discontinued due to no upstream updates.

Jirafeau

13 106

13 Topics

106 Posts

[1.12.2] fix: update doc links from /apps/ to /packages/

Jitsi

33 373

33 Topics

373 Posts

Hello @matthiaskurz That is good to read. If you find anything odd with MiroTalk, the maintainer is very active in the forum and is always happy to help. So if you have an issue, just create a topic in the @mirotalk-57bab571 category and the maintainer @mirotalk should see it.

Joplin Server

12 116

12 Topics

116 Posts

[2.6.0] Update joplin to 3.7.1 Full Changelog New: Add support for post-quantum cryptography (PQS) TLS (#15055 by Alex Martens) New: Add support for whiteboards (#15305) (#15193) Improved: Add settings search to config screen (#14820) (#14763 by @slimuCS) Improved: Add table editing commands (add/delete rows and columns) (#14519) (#12372 by @kanishka0411) Improved: Do not load plugin if it is disabled (#15083) Improved: Speed up app startup by skipping unnecessary plugin file processing (#15085) (#15081) Fixed: Add the ability to delete the default profile (#15153) (#14506 by @mrjo118) Fixed: Avoid OOM when printing notes with large attachment links (#15026) (#13903 by @Rygaa) Fixed: Fix silent sync failure which prevents new changes being synced, when a single server object has an updated_time in the future (#15262 by @mrjo118) Fixed: Preserve timestamps when converting HTML notes (#15275) (#15263 by @izumedonabe)

JupyterHub

12 139

12 Topics

139 Posts

[1.59.2] Update jupyterhub to 5.4.6 Full Changelog

Kanboard

8 73

8 Topics

73 Posts

[1.17.8] Update kanboard to 1.2.52 Full Changelog fix: revoke public tokens for inactive users fix: use timing-safe comparison for token validation fix: validate task ownership before applying property changes fix: enforce visibility controls for public and unprivileged access fix: use parameterized queries in task finder and iCal

Kavita

7 52

7 Topics

52 Posts

[1.12.0] Update Kavita to 0.9.0.2 Full Changelog Changed: OIDC validation no longer requires super safe urls. Fixed: Fixed reading list detail tab not having tabs wired up. Fixed: Fixed series/chapter rating always returning 0 if you had rated it. Fixed: Fixed bookmarks not loading. Fixed: Fixed text & image bookmarks being switched. Fixed: Fixed long chapter names causing wrapping in activity overview. Fixed: Fixed epub bookmarks not loading. Fixed: Fixed people not being removed from series if chapter metadata has none. Fixed: Fixed series not being added to a collection under some circumstances. Fixed: Fixed search being unreliable when searching with year metadata.

Keycloak

8 105

8 Topics

105 Posts

[1.6.2] Update keycloak to 26.6.2 Full Changelog #47485 CVE-2026-33871 HTTP/2 CONTINUATION Frame Flood Denial of Service #47486 CVE-2026-33870 RFC violation: HTTP Request Smuggling primitive via Chunked Extension Quoted-String Parsing #47932 [CVE-2026-4628] Improper Access Control on Keycloak Server through UMA resource management endpoints via PUT parameters authorization-services #48049 [CVE-2026-37980] Stored XSS in select-organization.ftl - FreeMarker HTML-escape insufficient in inline JS handler organizations #48329 JDBC_PING in 26.6 should not fail with 26.7 schema changes #48348 Escape expressions in JS blocks in FTL pages #38526 Duplicate user attribute values cannot be removed core #47901 Realm import with --import-realm fails with ModelValidationException when Admin Permissions is enabled admin/fine-grained-permissions #48040 User session limit generates fatal error authentication #48185 Deleted workflow still attempting to run workflows

Keila

4 27

4 Topics

27 Posts

[1.1.0] Update keila to v0.20.0 Full Changelog This version introduces a new email scheduler and migrates the recipients schema to a more generic messagesschema. This change makes sending large campaigns more performant and will allow the introduction of transaction emails because records of sent messages no longer have to be tied to a campaign or an existing contact. When sending a message to the recipient of a campaign has failed, the number of failed messages is now shown on the campaign analytics page Added Infomaniak and GMX to the list of known shared domains Fixed an issue where contacts could be marked as unreachable after a single soft bounce

Kimai

16 251

16 Topics

251 Posts

[2.50.0] Update kimai to 2.56.0 Full Changelog Added Catalan translation (#5921) New API endpoint to download invoices (#5926) New API endpoint to save invoice meta-fields (#5916) Re-usable ACL checks on teams, xxx_other_timesheet permissions respect teams (#5925) Whitelist PDF context options (#5924) Twig config improvements (#5923) Improved management script ./kimai.sh - please test and leave your feedback (#5909) Translations update from Hosted Weblate (#5911)

Koel

14 201

14 Topics

201 Posts

[1.38.1] Update koel to 9.3.5 Full Changelog fix: validate redirect targets when downloading podcast episodes by @phanan in #2486 fix: validate URLs at podcast sync, playback, and radio AI tool (GHSA-7j2f-6h2r-6cqc) by @phanan in #2485

Kopano Meet

11 132

11 Topics

132 Posts

Running TURN server on port 443 only matters for setups where a Client is unable to contact the server on non-port 443. This is only common in some ultra locked down intranet setups.

Komga

5 62

5 Topics

62 Posts

[1.6.4] Update komga to 1.24.4 Full Changelog omit UserDto.ageRestriction instead of returning null (e3a8cc6) some TOC may not be parsed correctly (5fc0b7e) proxy raw request body to kobo store (4a7d9a6), closes #2289 also accept application/json on Accept header (ddfe65d) incorrect latest series navigation links (717ef82), closes #2285 auth logo issue when using base url (7c00661), closes #2285

Kutt

23 181

23 Topics

181 Posts

@poeti8 have now removed the mention of that it.kutt.cloudronapp in the public pages also

LAMP

144 1k

144 Topics

1k Posts

[5.2.1] fix: update doc links from /apps/ to /packages/

LanguageTool

18 175

18 Topics

175 Posts

[1.45.0] Update languagetool to 67944e7

Leantime

22 228

22 Topics

228 Posts

[1.12.2] Update leantime to 3.7.3 Full Changelog fix: backend bug fixes from phase-0 modernization branch by @marcelfolaron in #3289 feat(tokens): add design system CSS custom property definitions by @marcelfolaron in #3290 fix: accessibility, view system, and composer improvements from phase-0 by @marcelfolaron in #3292 fix: ticket PATCH 500 errors, quick-add group context, and UI fixes by @marcelfolaron in #3313 fix: address 6 GitHub issues - session, calendar, postgres, todos, users, ldap by @marcelfolaron in #3315 fix: PostgreSQL ROUND(double precision, int) error on ticket queries (#3301) by @marcelfolaron in #3317 fix: PostgreSQL ROUND error, missing zp_canvas.color migration, and 3.7.2 changelog by @marcelfolaron in #3318

LibreChat

19 160

19 Topics

160 Posts

[1.2.1] Update LibreChat to 0.8.5 Full Changelog Optimized Entra ID Group Sync with Auto-Creation by @Airamhh in #12606 Sidebar Icon Toggle & New Chat History Switch by @danny-avila in #12642 Claude Opus 4.7 Model Support by @danny-avila in #12698 Claude Opus 4.7 Reasoning Visibility by @danny-avila in #12701 Support text/calendar (iCalendar) in Code Outputs by @upman in #12758 Alias Mimetype text/x-markdown to text/markdown by @dlew in #12608 Scope Web Search Results to Own Turn by @danny-avila in #12631 Resolve Action Tools by Exact Name to Prevent Multi-Action Domain Collision by @lrreverence in #12594 Clear Stale Client Registration on invalid_client During OAuth Token Refresh by @danny-avila in #12643 Preserve Selected Artifact When Clicking Artifact Button by @starchow in #12601

LimeSurvey

16 393

16 Topics

393 Posts

@Patmo.de said: Please note that whilst English has a wider user base, it does not include everyone. Well… it includes more than any other language. [image: 1778765361105-img_3550-resized.jpeg] https://www.statista.com/statistics/266808/the-most-spoken-languages-worldwide/ It is the de facto world language. And it is the „Treppenwitz“ of the EU that its de facto common tongue is from a country that has exited…

Linkding

15 134

15 Topics

134 Posts

Thank you @necrevistonnezr ... it wasn't obvious to find, for me. I have one now.

Linkwarden

15 164

15 Topics

164 Posts

@girish said: @perelin Maybe we can start bundling meilisearch in linkwarden? Once it works out, we can look into making it an addon. I am not sure how many apps work with meilisearch . Would be great if you can contribute this. Do you already have an account on git.cloudron.io ? @girish Not yet, happy to help out though. Send me an invite to the linkwarden repo and I see what I can come up with.

Listmonk

31 232

31 Topics

232 Posts

@filter i have submitted a PR here - https://github.com/knadh/listmonk/pull/3012

Loomio

7 126

7 Topics

126 Posts

[1.17.12] Update loomio to 3.0.24 Full Changelog Fixed: Prevent comment authors from editing or restoring comments that an admin has discarded. Fixed: Preserve group ownership when creating discussions from templates in grouped contexts. Improved: Hardened deployment/runtime behavior with trusted ingress IP allowlisting and exec-based Docker startup processes. Improved: Removed obsolete hocuspocus SQLite persistence and legacy document-list template calls. Improved: Background jobs now avoid retrying forever for records that have already been deleted. Maintenance: Updated dependencies including Devise, Vite, Bootsnap, Rollup, Sentry, Nokogiri, Puma, and tzinfo-data.

Lychee

19 222

19 Topics

222 Posts

[2.44.4] Update Lychee to 7.5.4 Full Changelog Add disabling preloading check in FixTree console by @ildyria in #4226 Fixing discussion #4230 SyntaxError: [sprintf] unexpected placeholder by @TheBullRing in #4231 Fix MySQL error 1390 (too many placeholders) in album/photo deletion path by @Copilot in #4225 Enhance German translation by @hyazinthh in #4239 Finalize German translation by @hyazinthh in #4241 Fix vite 8 building a broken frontend by @ildyria in #4242 Trivy ignore update by @ildyria in #4251 Add turkish template by @ildyria in #4253 Fix notifications by @hyazinthh in #4255 Fix 'rename' string and make ellipses consistent for German by @hyazinthh in #4256

Mailtrain

10 61

10 Topics

61 Posts

@girish That is a super handy feature!

Mastodon

146 1k

146 Topics

1k Posts

[1.17.10] fix: update doc links from /apps/ to /packages/

Matomo

53 440

53 Topics

440 Posts

Yes we will soon release a new Cloudron version which will bring MySQL 8.4 with it.

Matrix (Synapse/Element)

129 1k

129 Topics

1k Posts

[1.134.0] Update synapse to 1.153.0 Full Changelog Make ACLs apply to EDUs per MSC4163. (#18475) Stabilize MSC3266: Room summary API, removing the experimental config flag msc3266_enabled. Contributed by @dasha-uwu. (#19720) Partial MSC4311 implementation: m.room.create is now a required part of stripped invite_state/knock_state . Contributed by @FrenchGithubUser @famedly. (#19722) Expose tombstoned and replacement_room in room details on admin API endpoint GET /_synapse/admin/v1/rooms/<room_id>. Contributed by Noah Markert. (#19737)

Mattermost

60 645

60 Topics

645 Posts

[1.28.0] Update mattermost to 11.7.0 Full Changelog Mattermost Platform Extended Support Release 11.7.0 contains multiple new quality of life improvements, including ABAC for Team Admins, ABAC File Permissions, Agents v2.0, Multi-Window Pop-outs for Channels, Streamlined Channel Sharing, and Elasticsearch 9.0 Support.

Mautic

65 507

65 Topics

507 Posts

[6.1.0] Update mautic to 7.1.1 Full Changelog Fix include/exclude all operators for select fields by @patrykgruszka in #16012 If default_assetlimit is not set, use default_pagelimit parameter. by @biozshock in #16035 Contact timeline preview must use proper view. by @biozshock in #16034 Validate trusted hosts config variable. by @biozshock in #16006 Login throttling enabled by @fedys in #15651 S/MIME email signing by @escopecz in #15563 Optimistic locking for emails and pages by @fedys in #15774 Implement Message of the Day (MOTD) feature by @matbcvo in #15970 Prevent deletion of custom fields if they are in use by segments via API by @fedys in #15882 Prevent crash when campaign published time exceeds event interval by @escopecz in #15963

Mealie

8 96

8 Topics

96 Posts

[1.40.0] Update mealie to 3.17.0 Full Changelog feat: Improve add shopping list item form @miah120 (#7091) feat: Shopping list / Swipe to check off @miah120 (#7118) fix: prevent delete-image dialog from reopening in a loop inside v-menu @zdenek-stursa (#7469) fix: use correct title and icon on Recipe Actions data page @zdenek-stursa (#7498) fix: Allow user-configurable OIDC timeout @t0xicCode (#7496) fix: pressing Enter in dialogs now confirms instead of silently closing @zdenek-stursa (#7503) fix: add missing search bar to Recipe Data management page @zdenek-stursa (#7504) fix: Don't hit authenticated endpoints when logged out @garlic-hub (#7563) fix: restore create-item button in recipe dropdowns (categories, tags, tools) @zdenek-stursa (#7564) fix: Adjust ingredient section spacing @michael-genson (#7580)

MediaWiki

9 93

9 Topics

93 Posts

Beaut, thanks (again) @james that was very helpful.

Meemo

14 97

14 Topics

97 Posts

The latest version now has a plain text mode editor switch. Also to persist via settings as the default mode. It still lacks image uploads though. Since the last two version were put out to migrate from the more heavy mongodb to sqlite you have to update probably twice to get to the latest with the fixes.

Memos

6 47

6 Topics

47 Posts

[2.0.0] Update memos to 0.28.0 Full Changelog Breaking change: Existing SSO users must link their identity again - If you previously signed in through SSO, sign in once with your username and password after upgrading, then go to Account Settings to link your SSO identity. After the identity is linked, future SSO sign-ins will resolve to your existing Memos account. feat: auth: add SSO user identity linkage (#5883) (d688914) feat: memos: choose created or updated time for memos (#5894) (c268551) feat: redesign account and SSO management (#5886) (ee17998) fix: auth: harden authorization and username validation (#5890) (0fb83a7) fix: disable modal prop on DropdownMenu to prevent scroll disappearing (#5861) (d98f665) fix: fix legacy username auth flows (#5885) (30c0611) fix: markdown: split mixed task and bullet lists (e2c6084) fix: reduce list memo query overhead (#5880) (5063804) fix: web: preserve task checkbox state (#5867) (b5863d7)

Metabase

18 646

18 Topics

646 Posts

[3.12.1] Update metabase to 0.61.1.5 Full Changelog

MicroBin

2 7

2 Topics

7 Posts

@jendrik the ui is a bit confusing. You have to switch the mode to Private . Ideally, that password field should be disabled or hidden when 'Public'. [image: 1777903757310-67cd6c39-a43e-4446-9f92-fe1d26f59591-image.jpeg]

Minecraft

50 498

50 Topics

498 Posts

[2.37.10] Update bedrock to 1.26.21.1 Full Changelog

Miniflux

11 97

11 Topics

97 Posts

[1.7.0] Update v2 to 2.3.0 Full Changelog Only discoverable WebAuthn credentials (resident keys / passkeys) are supported for login. Non-resident credentials can no longer be used for first-factor authentication to prevent username enumeration before password verification. They are intended for post-password MFA flows, which Miniflux does not currently support. Add support for exporting and importing Miniflux-specific feed settings in OPML files, allowing full feed configuration backups and restores. Add enclosure links rewrite rule to expose podcast/video enclosure URLs inside entry content for external RSS clients. Prevent archived/deleted entries from reappearing as unread by using a tombstone table and removing the removed entry status. Detect Cloudflare bot challenge pages during feed refresh and return a dedicated error message. Cap the maximum entry limit to 1000 across the UI, API, and storage layer. Fix incorrect read/starred toggling in Google Reader API. Fix handling of slow HTTP headers. Fix "open in new tab" behavior for redirected external entry links.

Minio

54 699

54 Topics

699 Posts

@uroni Nicely done!

MiroTalk

48 1k

48 Topics

1k Posts

[2.7.22] Update mirotalksfu to 2.2.77

Monica

16 103

16 Topics

103 Posts

The app package runs the cron job as outlined in https://github.com/monicahq/monica/blob/4.x/docs/installation/providers/generic.md#4-configure-cron-job Can you open a webterminal into the app and run it manually via: sudo -E -u www-data php /app/code/artisan schedule:run and see if it shows an error or sends the mails then?

Moodle

42 342

42 Topics

342 Posts

[4.1.0] Update moodle to 5.2.0 Full Changelog

N8N

152 1k

152 Topics

1k Posts

[4.23.1] Update n8n to 2.20.9 Full Changelog core: Prevent proxy layer accumulation in ObservableObject (#30505) (4394fe4) core: Preserve nested arrays in VM expression engine output (#30334) (067939a) core: Preserve AxiosHeaders instance when applying OpenAI vendor defaults (#30285) (979aa28)

Navidrome

18 163

18 Topics

163 Posts

[1.28.2] Update navidrome to 0.61.2 Full Changelog Another round of bugfixes. Transcoding now properly clamps target channels to codec limits, WAV files play directly in browsers without unnecessary transcoding, and the scanner picks up ORIGYEAR tags for VorbisComment and MP4 formats. Cover art handling got a few fixes too, including configurable max upload size. Plugin developers now get the file path in TrackInfo for Scrobbler and Lyrics plugins. Prevent theme CSS filters from affecting disc cover art. (c91721363 by @deluan) Refine image filters for playing and paused states in SquiddiesGlass theme. (4570dec67 by @deluan) Update Chinese (Simplified) translation. (#5323 by @fxj368) Update Russian translations. (#5329 by @amakeenk) Map ORIGYEAR tag for VorbisComment and MP4 formats, bringing them in line with ID3. (#5303 by @obskyr) Fix issue with empty ID3v2 frames in go-taglib. (1de4e43d2 by @deluan) Always emit required created field on AlbumID3 responses. (#5340 by @deluan) Make max image upload size configurable. (#5335 by @m8tec) Allow shared disc art from unnumbered filenames in single-folder albums. (#5344 by @deluan)

Nextcloud

404 3k

404 Topics

3k Posts

Hello @ntnsndr Best to use the occ to uninstall the app and then try to install it again. If this does not resolve the issue you might have to report this in the nextcloud forum or the GitHub of the polls app directly.

NocoDB

29 293

29 Topics

293 Posts

[1.39.0] Update nocodb to 2026.05.1 Full Changelog

NodeBB

64 533

64 Topics

533 Posts

[2.27.2] Update NodeBB to 4.11.3 Full Changelog add escaping to id/type/activityType in AP/errors ACP page to guard against improper user data (e95f5bc) escape id, type, activityType, body on AP errors page (16bda6b) #14250 (40b9414) #14208, off-by-some error on getUsersFields (54df63c) use configured forum URL for shared links (#14226) (bd4b34a) hide current category from move topic selector (#14228) (bbdf05d) remove msapplication-badge (00d3c87) bypass self-edit reputation checks for privileged users (#14214) (164a3d4) skip actor resolution when federation is disabled (a729d0a) handle before cursor for upward infinite scroll navigation (0c6988c)

ntfy

13 104

13 Topics

104 Posts

[1.26.0] Update ntfy to 2.23.0 Full Changelog Add per-visitor rate limit on new topic creations (visitor-topic-creation-limit-burst / visitor-topic-creation-limit-replenish, defaults 100 burst / 1m replenish) to mitigate topic-enumeration / squatting attacks that inflate the in-memory topic map Remove stacktrace-js, stacktrace-gps, humanize-duration, and js-base64 from the web app to reduce dependency and security footprint Restrict the publish dialog's local file preview to safe image types (png/jpg/gif/webp) to prevent same-origin script execution from blob URLs when previewing a crafted SVG (GHSA-j8hr-p342-xrmh, thanks to @Venukamatchi for reporting)

Ollama

5 72

5 Topics

72 Posts

[1.12.0] Update ollama to 0.24.0 Full Changelog The OpenAI Codex App is now available on Ollama. Use any Ollama model local or cloud inside the desktop app to code, browse, and review. Codex can spin up local servers and sites in its built-in browser. Annotate directly on the page to request changes. Review code inside the app, leave comments, and iterate without leaving your workspace. Reworked the MLX sampler for improved generation quality on Apple Silicon Full Changelog: https://github.com/ollama/ollama/compare/v0.23.0...v0.24.0

OmekaS

5 45

5 Topics

45 Posts

[1.5.0] Update omeka-s-module-Ldap to 0.7.0 Full Changelog Add update hook on existing ldap user Improve attributes retrieval by asking all ldap attributes and using it potentially in another module

OnlyOffice

51 422

51 Topics

422 Posts

Hello @jdaviescoates Ah! Good to know!

OpenCloud

6 42

6 Topics

42 Posts

[0.9.0] Update opencloud to 6.1.0 Full Changelog Add a flag to the reindex command to force a full reindex [#2606] proxy: Allow mapping from an external tenant id to the internal id [#2569] feat: enable EnableInsertRemoteFile WOPI flag for Collabora [#2555] feat(multi-tenancy): verify tenant via OIDC claim [#2559] Fix race conditions in the hybrid metadata backend [#594] fix: error handling in upload session cleanup [#582] experimental: add darwin watchfs support [#471] Tracing [#596] fix: favorites list, undo delte doesn't return item to the favorites [#2382] feat: handle UI_InsertFile postMessage from Collabora [#2270]

OpenHAB

4 50

4 Topics

50 Posts

[1.8.4] Update openhab-distro to 5.1.4 Full Changelog

OpenProject

24 287

24 Topics

287 Posts

[3.49.0] Update openproject to 17.4.0 Full Changelog Feature: Add meetings and recurring meetings APIv3 endpoints [#32280] Feature: Workflow UX improvement: Apply workflow setting from one role to another role [#72383] Feature: Backlog buckets in "Backlog and sprints" view [#73081] Feature: Allow webhook secrets for GitHub and Gitlab integrations [#73387] Feature: Have a sprint start/complete button in the sprint header [#73402] Feature: Backlog card draggable + one-click for side panel [#73473] Feature: Add widget for upcoming meetings on project overview and home page and remove users widget [#73684] Feature: Jira Migrator imports custom fields [#73147] Bugfix: Users can execute custom actions despite conditions not applying [#74294] Bugfix: Copying a work package with instance wide sharing leads to two projects sharing instance wide [#74721]

Open Web Calendar

4 34

4 Topics

34 Posts

Hi @girish so I learned something while setting up my Radicale and OWC. It seems like the calendar client publishing in to the ICS in Radicale (or wherever your ICS source lives) can matter. When I used the Calendar app on macOS I saw no descriptions. When I used Thunderbird I do. You can see it on my live page that has the OWC page in an iframe https://kb.filewave.com/books/community-engagement/page/customer-event-schedule and if you click on events in the agenda then the description shows. I think initially I was also hoping to show description on the Agenda page without clicking on an event but originally I was bothered that I just couldn't get description to show up. So now it does at least show up when you click an event. I haven't looked at why Calendar doesn't make a summary that shows and Thunderbird does but I'm fine using Thunderbird to put events in my calendar feed.

OpenWebUI

78 716

78 Topics

716 Posts

[3.3.4] Update open-webui to 0.9.5 Full Changelog Redirect-based SSRF protection. All outbound HTTP requests now block 3xx redirects by default via a new AIOHTTP_CLIENT_ALLOW_REDIRECTS environment variable, preventing redirect-based SSRF where a public URL silently redirects to internal addresses (RFC 1918, loopback, cloud-metadata endpoints). Affected call sites include web fetch, image loading, OAuth discovery, tool server execution, and code interpreter login. #24491 Iframe content security policy. Administrators can now configure a Content-Security-Policy for all srcdoc iframes (Artifacts, tool embeds, file previews, citation modals) via the IFRAME_CSP environment variable, restricting what LLM-generated or user-uploaded HTML can load and execute inside previews. Commit Granular markdown rendering controls. Users can now independently disable Markdown rendering for user messages and assistant responses from Interface settings, preventing unintended formatting when pasting text that contains Markdown-sensitive characters. Commit Channel streaming and tool support. Mentioning a model in a Channel now streams responses in real time and supports the full chat completion pipeline, including native and default function calling, built-in tools (web search, image generation), user tools, MCP tools, filters, and RAG knowledge injection the same capabilities available in standard chats. Notes create and open reliability. Creating new notes and opening existing notes no longer fails with a TypeError caused by is_pinned being passed to the SQLAlchemy model on create, and passed twice to NoteResponse on read. #24484, #24486 Feedback user attribution spoofing. Submitting evaluation feedback can no longer forge the user_id field through mass-assignment, preventing authenticated users from attributing ratings to other users and corrupting Elo leaderboard rankings and admin feedback exports. #24508 URL parser SSRF bypass. URL validation now rejects backslash, tab, CR, and LF characters that cause urllib and requests/aiohttp to disagree on the target host, closing a parser-confusion SSRF bypass. #24534 Profile image MIME-type allowlist. Serving profile images from data URIs now enforces a strict MIME-type allowlist (PNG, JPEG, GIF, WEBP by default, configurable via PROFILE_IMAGE_ALLOWED_MIME_TYPES) and sets X-Content-Type-Options: nosniff, preventing stored-XSS through SVG or other executable content types. Commit Legacy chat history self-healing. Loading legacy conversations now automatically detects broken parent-link graphs in migrated message records, merges missing messages from the embedded JSON history, and backfills them to the normalized table so future loads use the fast path without data loss. Commit Removed unauthenticated retrieval status endpoint. The unauthenticated GET /api/v1/retrieval/ status endpoint has been removed as dead code retrieval configuration is already available through authenticated admin endpoints. #24497

oPodSync

3 14

3 Topics

14 Posts

[1.1.4] Fixup docs link

osTicket

15 93

15 Topics

93 Posts

osTicket has finally officially announced osTicket 2.0, with an RC1 being released "shortly". They launched a new site https://next.osticket.com/ to showcase the work that has been done and a video demo.

Outline

29 191

29 Topics

191 Posts

[1.22.1] Update outline to 1.7.1 Full Changelog MCP responses now include breadcrumbs (#12203), summaries (#12241), and title guidance (#12242) MCP now has delete_document and delete_collection tools (#12245) Per-share branding lets you override the title and logo on individual public shares (#12003) Self-hosted instances can now tune rate limiting with the new RATE_LIMITER_MULTIPLIER configuration option (#12226) Shift-Tab on a list item inside a toggle block no longer outdents the entire block (#12162) Code blocks now expand correctly when printing (#12193) API keys created with global read/write scope are now saved correctly (#12225) Post-login redirects with invalid paths are now handled correctly in Firefox (#12218) Autofocus now works inside lazy-loaded modals and popovers (#12146) Resolved a parseXML error originating from the AWS SDK (#12231)

Owncast

17 104

17 Topics

104 Posts

[1.6.2] Update owncast to 0.2.5 Full Changelog fedi_spin.gif as a new emoji. #4721 Add support for federation shared inboxes #4212 Add require chat authentication to take part in chat #4732 Favicon customization #868 Explicitly mention shortcut keys in video player #3785 Remove special characters from auto-generated stream keys as not all broadcast software support them #4690 Sanitize actor displaynames #4864 Fediverse followers contact name / profile picture now get updated and invalid users get removed #2923 Fediverse action titles can overflow in chat #4773 Path Prefix for S3 Not Working On file cleanups #4784

PairDrop

3 16

3 Topics

16 Posts

[1.3.0] Update base image to 5.0.0

Paperless-ngx

66 554

66 Topics

554 Posts

@james said: Is there something 'unique' about your Cloudron set up? Also no Cloudflare. Not that I'm aware of. The check looks good. Vendor: QEMU Product: Standard PC (i440FX + PIIX, 1996) Linux: 6.8.0-111-generic Ubuntu: noble 24.04 Cloudron: 9.1.7 Execution environment: kvm Processor: Intel(R) Xeon(R) Gold 6126 CPU @ 2.60GHz BIOS pc-i440fx-9.2 CPU @ 2.0GHz x 4 RAM: 12248260KB Disk: /dev/sda2 232G [OK] node version is correct [OK] IPv6 is enabled in kernel. No public IPv6 address [OK] docker is running [OK] docker version is correct [OK] MySQL is running [OK] netplan is good [OK] DNS is resolving via systemd-resolved [OK] unbound is running [OK] nginx is running [OK] dashboard cert is valid [OK] dashboard is reachable via loopback [OK] No pending database migrations [OK] Service 'mysql' is running and healthy [OK] Service 'postgresql' is running and healthy [OK] Service 'mongodb' is running and healthy [OK] Service 'mail' is running and healthy [OK] Service 'graphite' is running and healthy [OK] Service 'sftp' is running and healthy [OK] box v9.1.7 is running [OK] Dashboard is reachable via domain name [WARN] Domain *******.com expiry check skipped because whois does not have this information

Paperwork

2 11

2 Topics

11 Posts

You can still install it like this https://my.<cloudron>/#/appstore/rocks.paperwork.cloudronapp . But note that it was last updated 3 years ago. I tried to build a new version with latest with PHP a year ago and the app was not even building anymore. They have been re-writing a new version for a couple of years now.

PeerTube

101 890

101 Topics

890 Posts

[4.6.6] Update peertube-plugin-auth-openid-connect to 1.1.0

Penpot

20 164

20 Topics

164 Posts

[1.17.1] Update penpot to 2.15.3 Full Changelog Fix Plugin API token methods failing with schema validation error on PRO Github #9641 Sanitize comment content on rendering Github #9642 Sanitize font family names on custom uploaded fonts Github #9643

Phabricator

6 24

6 Topics

24 Posts

App discontinued due to no upstream updates.

PHP Server Monitor

4 12

4 Topics

12 Posts

The upstream project has not released in almost 3 years now. We had to build from develop to get some PHP 8 support going, but there are bugs like https://github.com/phpservermon/phpservermon/issues/1196 , https://github.com/phpservermon/phpservermon/issues/1232 . There's also a bunch of basic issues: Normal user cannot login after admin user logs in. Some issue related to service worker. LDAP functionality is incomplete

Piwigo

5 63

5 Topics

63 Posts

[3.4.0] Update Piwigo to 16.4.0 Full Changelog Release note

Pixelfed

80 670

80 Topics

670 Posts

Seems like for some unknown reason putting the app in debug mode and back out of debug mode fixed it.

Planka

3 16

3 Topics

16 Posts

new update helped. working now

PocketBase

9 142

9 Topics

142 Posts

[1.16.1] Update pocketbase to 0.38.1 Full Changelog Silenced the superuser IPs confirmation if there is no change. Updated the experimental UI extensions APIs to allow top-level await in the initialization script. Force unset the auth state of existing realtime connections on user password, collection secret, etc. changes. Added error marker for each collection tab and fixed the styles of the raw errors tooltip. Fixed indexes collection update error (#7689). Updated modernc.org/sqlite to v1.50.1 (SQLite 3.53.1). Other minor fixes (updated API preview examples, fixed code comment typos, etc.).

Postiz

22 216

22 Topics

216 Posts

Hi, It looks like the package is gone from the cloudron supported apps, has anyone tried self-hosting it by following the official method as presented in their doc, with success? (https://docs.postiz.com/quickstart)

Pretix

9 74

9 Topics

74 Posts

[1.7.1] Update pretix to 2026.4.1 Full Changelog

PrivateBin

8 58

8 Topics

58 Posts

[1.11.4] Update PrivateBin to 2.0.4 Full Changelog ADDED: Translations for Swedish & Persian CHANGED: Deduplicate JSON error message translations CHANGED: Refactored translation of exception messages CHANGED: Upgrading libraries to: DOMpurify 3.4.1, ip-lib 1.22.0, polyfill-php80 1.34.0 & zlib 1.3.2 CHANGED: Remove obsolete X-XSS-Protection header (#1825) FIXED: Some exceptions not getting translated FIXED: Attachment disappears after a "paste" in the message area (#1731) FIXED: The content format is not reset when creating a new document (#1707)

Prometheus

19 223

19 Topics

223 Posts

[1.15.1] Update alertmanager to 0.32.1 Full Changelog [BUGFIX] dispatcher: Fix issue with dispatching to a contended route. #5179 [BUGFIX] ui: Provide prebuilt ui assets in release. #5191 [ENHANCEMENT] ui: Support building artifacts in containers with Docker or Podman. #5102

qBittorrent

6 105

6 Topics

105 Posts

[2.28.0] Update VueTorrent to 2.34.0 Full Changelog Settings/WebUI: Add API key support for qBit 5.2.0+ (#2784) (71ff0ec) Sidebar: Add DHT node and peer connection count (#2774) (4a5c857) login: restore vertical centering after Vuetify v4 migration (#2775) (ce05f81) support shareLimitAction in per-torrent view editing (qBit 5.2.0+) (#2780) (7bb3d16)

Radicale

15 158

15 Topics

158 Posts

[2.14.2] chore(deps): update dependency radicale to v3.7.3

Rallly

16 193

16 Topics

193 Posts

[2.10.1] Update rallly to 4.10.1 Full Changelog This release patches the Next.js May 2026 security advisory and CVE-2026-23870 (React Server Components DoS). All self-hosted users should upgrade immediately. Upgrade Next.js to 16.2.6 Upgrade React and React DOM to 19.2.6 Affected surface in Rallly includes middleware, App Router segment-prefetch, Image Optimization, Server Functions, and CSP nonces.

Rainloop

9 75

9 Topics

75 Posts

App discontinued due to no upstream updates.

Redash

14 106

14 Topics

106 Posts

[5.4.0] Update redash to 26.3.0 Full Changelog

Redmine

18 165

18 Topics

165 Posts

[3.11.2] Update redmine_oauth to 4.0.6 Bug: #120 - Undefined method 'url_parameters' for an instance of OauthProvider Domain based self-registration New: #112 - Add DataFlattener for nested data Bug: #115 - Fix redirect loop when OAuth-only login is enabled New: #116 - Add domain-based OAuth self-registration (auto-activate allowlist) Bug: #118 - Cannot save "Alterative name" and "URL parameters"

Release Bell

16 108

16 Topics

108 Posts

Just installed ReleaseBell to monitor the apps I am packaging. But it's not accurate Shows https://github.com/windmill-labs/windmill as v1.457.0 but the actual GitHub page shows 1.645.0 Is there some config I should be changing ? Actually, just noticed it has 2 entries for windmill ( a starred project ), the other showing 1.573.0

Rocket.Chat

70 762

70 Topics

762 Posts

[3.3.1] Update Rocket.Chat to 8.4.1 Full Changelog (#40410 by @dionisio-bot) Disables SAML login when it is set to validate signatures without the proper configuration for it (#40459 by @dionisio-bot) Allows users to search for attribute values when assigning them to rooms (#40410 by @dionisio-bot) Security Hotfix (https://docs.rocket.chat/docs/security-fixes-and-updates)

Roundcube

54 367

54 Topics

367 Posts

I lightened the separating lines between each email in dark mode only: html.dark-mode .listing li, html.dark-mode .listing li ul, html.dark-mode .listing tbody td { border-color: #414f54; }

RSS-Bridge

9 62

9 Topics

62 Posts

@girish said: @rmdes @odie I have updated the app to use symlinks under /app/data/bridges. You can add new bridges there or delete some symlink and add your own. Thank you! Works excellent!

RustFS

1 18

1 Topics

18 Posts

[0.14.0] Update rustfs to 1.0.0-beta.3 Full Changelog fix(object-lock): materialize default retention metadata by @GatewayJ in #2824 fix: 2827 lifecycle days next midnight by @cxymds in #2833 fix(security): document unsafe and TLS overrides by @overtrue in #2835 feat: add features option to build script by @giter in #2834 fix(replication): handle version ID format mismatch with AWS S3 by @ajax-bakun-n in #2829 feat(rustfs): add ftps/webdav defaults to info output by @houseme in #2845 feat(targets): complete redis mysql postgres target wiring by @houseme in #2842 feat(targets): add AMQP support for notify and audit by @houseme in #2879 feat: enhance WebDAV support with features and directory operations (#2856) by @houseme in #2892 feat(sftp): add SFTPv3 protocol support by @simon-escapecode in #2875

Scrumblr

4 15

4 Topics

15 Posts

Given that the upstream project is not maintained anymore, we have hidden this in the appstore. I had also submitted a PR upstream for a basic issue which is ignored - https://github.com/aliasaria/scrumblr/pull/161

SearXNG

17 240

17 Topics

240 Posts

[2.94.0] Update searxng to d7e8b7c

SeaweedFS

1 9

1 Topics

9 Posts

[1.3.0] Update seaweedfs to 4.26 Full Changelog rust(seaweed-volume): distributed EC read across peer servers by @chrislusf in #9516 fix(ec): mount falls back to sibling-disk .ecx (fixes #9519) by @chrislusf in #9521 fix(ec): blanket-clean every destination over the full shard range by @chrislusf in #9512 fix(ec): mirror EC sidecars onto every shard-bearing disk at startup by @chrislusf in #9525 fix(iceberg): dial filer gRPC address verbatim in plugin worker by @chrislusf in #9527 helm: decouple JWT signing from cert-manager mTLS (fixes #9506) by @chrislusf in #9508 fix: ListBucketsHandler for pathStyleDomains by @kmlebedev in #9510 iam: honor configured credential store for IAM API policies and propagate to S3 caches (fixes #9518) by @chrislusf in #9522 filer/iam-grpc: make admin Bearer auth opt-in (fixes #9509) by @chrislusf in #9514 admin: convert filer address to gRPC form before dispatch by @chrislusf in #9523

SerpBear

5 35

5 Topics

35 Posts

[1.4.0] Update serpbear to 3.1.0 Full Changelog add subdomain matching functionality (4533737), closes #324 enhance error handling and response structure in scraper functions (4f394c2) minor ui issue (eecf88a) prevent corrupt failed queue file to reset the app settings (c306fa0), closes #328 resolves broken google ads oauth of instances behind reverse proxy (a988b13), closes #326 resolves cron issue with certain port mapping config (d86616a) resolves issue that prevents refreshing all keywords when one fails (77cfa2f)

SFTPGo

14 83

14 Topics

83 Posts

Hi and thanks. besides MongoDB ervery service seems okay. Just put the app into recovery mode and back - that helped.

Shaarli

5 45

5 Topics

45 Posts

[2.18.0] Update Shaarli to 0.16.0 Full Changelog v0.x branches and tags will no longer be maintained after v0.16. Always upgrade to the latest release to receive bugfixes and security patches. docs: update PHP version compatibility table fix stored XSS via suggested tags (GHSA-g3xq-mj52-f8pg) build(deps): update frontend build dependencies (js-yaml/glob)

SickChill

7 50

7 Topics

50 Posts

@girish said in SickChill unlisted from app store: I hope they atleast bring back the issue tracker Out of interest, why does this matter for Cloudron? BTW, someone has replied to the thread I started on Discord informing me that the master releases are these https://pypi.org/project/sickchill/ Doesn't look like there has been a new one since March though.

Shiori

2 15

2 Topics

15 Posts

[1.3.0] Update shiori to 1.8.0 Full Changelog feat(apiv1): refactor tags api (#1075) feat: add PWA support share functionality (#1060) feat: add apis to handle bookmark tags (#1081) feat: allow tag filtering and count retrieval via api v1 (#1079) feat: improve SQLite performance (#1024) feat: reverts message in json output and allows configuration (#1082) feat: support proxy forward headers authentication (#1105) fix: auth validation on existing sessions, rely on token only (#1069) fix: incorrectly set cookie's expires value in login.js (#1049) fix: parse pocket new CSV format (#1112

Simple Torrent

4 41

4 Topics

41 Posts

The upstream project is archived - https://github.com/boypt/simple-torrent/ . There has been no changes in 2 years and modules are not updated.

SnappyMail

33 346

33 Topics

346 Posts

@robi Technically true. And yet the only door you need to overcome to access all your mails.

Snipe-IT

22 217

22 Topics

217 Posts

[1.20.0] Update snipe-it to 8.5.0 Full Changelog Upgraded to Laravel 12 by @marcusmoore in #18730 Added new indexes to improve some Location queries by @uberbrady in #18833 Fixed #18786 - add port number option to the restore command by @uberbrady in #18835 Fixed potential exception in bulk asset checkout by @marcusmoore in #18852 Added #8414 - acceptance sign in place by @snipe in #18884 Added #14662 - Allow (soft) deletion via ldap sync by @fvollmer in #18889 Fixed #18172 - Encrypted custom fields not correctly decrypted in custom asset report by @snipe in #18926 Use new laravel SCIM server by @uberbrady in #18184 Allow custom report to filter on assigned/unassigned by @snipe in #18983 Added bulk deletion of licenses by @snipe in #19009

SOGo

60 427

60 Topics

427 Posts

[2.18.8] Update sogo to 5.12.8 Full Changelog 2 possible XSS injections with malicious mail: fixed. 1 possible SQL injection with specific request: fixed.

Statping

13 104

13 Topics

104 Posts

Just checked on this again but it seems statping-ng is not going forward much . https://github.com/statping-ng/statping-ng/tags says the release was almost a year ago.

Stirling-PDF

44 462

44 Topics

462 Posts

[3.12.0] Update Stirling-PDF to 2.11.0 Full Changelog Fix Task commands in Powershell by @jbrunton96 in #6330 fix: replace deprecated payload too large status by @Ludy87 in #6336 Fix desktop app overscrolling inappropriately by @jbrunton96 in #6350 Add Playwright/bootRun/test.sh tasks by @Frooodle in #6244 Fix main frontend validation by @jbrunton96 in #6361 UI redesign staging by @EthanHealy01 in #6149 Split and delete forms by @reecebrowne in #6277 add translations by @Frooodle in #6390

Superset

15 145

15 Topics

145 Posts

[1.12.1] update apache-superset to v6.1.0

Surfer

103 776

103 Topics

776 Posts

This is currently not possible and not really on the roadmap. Any reason Cloudron OIDC does not work?

Syncthing

32 239

32 Topics

239 Posts

[1.34.0] Update syncthing to 2.1.0 Full Changelog fix(stdiscosrv): close file descriptor on flush error in write by @cuiweixie in #10615 fix(gui): disable autocomplete for folder password by @bt90 in #10342 fix(protocol): limit size of incoming request messages by @calmh in #10629 fix(gui): don't show local device under remote devices (ref #10563) by @maen-bn in #10631 fix(gui): order folders alphabetically and ensure local device stays hidden (ref #10563, ref #10631) by @maen-bn in #10637 fix(gui): fallback to folder ID when label is empty in remove dialog by @RealCharlesChia in #10657 fix(gui): fix tabs visually disabled but still clickable during ignore patterns setup (fixes #10634) by @JRNitre in #10651 fix(strelaysrv): properly use bind address for outgoing requests (fixes #10658) by @calmh in #10659 feat(gui, config): support simple folder grouping (fixes #2070) by @maen-bn in #10563 feat(dialer): add HTTP/HTTPS proxy support via CONNECT by @luizluca in #10572

Taiga

21 203

21 Topics

203 Posts

[2.19.4] Update taiga-front-dist to 6.10.3 Full Changelog

Tandoor

6 96

6 Topics

96 Posts

[1.12.9] Update recipes to 2.6.9 Full Changelog fixed another stored XSS in recipe instructions GHSA-89pw-5qxc-7v86 updated pillow library security update

TeamSpeak

10 69

10 Topics

69 Posts

[1.5.2] Fixup doc URL

Teddit

9 79

9 Topics

79 Posts

@timconsidine said in Teddit Subscriptions no longer working: Just FYI - my LibReddit - selfhosted as Docker on another VPS = is still working. But now it is down. Maybe they have caught up with me.

The Lounge

5 49

5 Topics

49 Posts

[1.22.2] fix: update doc links from /apps/ to /packages/

TLDraw

10 67

10 Topics

67 Posts

@Sam_uk we have unlisted TLDraw by now. Please see https://forum.cloudron.io/topic/10806/no-more-updates-to-tldraw . The license and company direction has changed.

Traccar

21 219

21 Topics

219 Posts

[1.26.2] Update traccar to 6.13.3 Full Changelog

Translate

10 102

10 Topics

102 Posts

[2.7.3] fix: update doc links from /apps/ to /packages/

Transmission

11 77

11 Topics

77 Posts

[2.5.0] Update transmission to 4.1.0 Full Changelog Improved TP download performance. (#6508) Added support for IPv6 and dual-stack UDP trackers. (#6687) Support trackers that only support the old BEP-7 with &ipv4= and &ipv6=. (#7481) New JSON-RPC 2.0-compliant RPC API. (#7269) Added optional sequential downloading. (#4795) Use native icons for menus and toolbars: SF Symbols on macOS, Segoe Fluent on Windows 11, Segoe MDL2 on Windows 10, and XDG standard icon names everywhere else. (#7819, Qt Client) Fixed 4.0.6 bug where Transmission might spam HTTP tracker announces. (#7086) Improved libtransmission code to use less CPU. (#4876, #5645, #5715, #5734, #5740, #5792, #6103, #6111, #6325, #6549, #6589, #6712, #7027, #7744, #7800) Avoid unnecessary heap memory allocations. (#5519, #5520, #5522, #5527, #5540, #5649, #5666, #5672, #5676, #5720, #5722, #5725, #5726, #5768, #5788, #5830, #6542) Slightly reduced latency when sending protocol messages to peers. (#5394)

TriliumNext

13 159

13 Topics

159 Posts

[1.29.0] Update Trilium to 0.103.0 Full Changelog api.axios has been removed. It has already been marked as deprecated for more than two years now and given the recent security compromise and the fact that it's not actually used in the Trilium code base we took the decision to remove it completely. Please update your scripts to use the built-in fetch() instead. api.cheerio has been marked as deprecated, but not removed. As an alternative we provide node-html-parser which has a more DOM-oriented syntax. A long-awaited note type is now supported: Spreadsheets, allowing for a familiar (Excel-like) editing experience with formulas, powered by Univer Sheets. Basic Markdown support with preview and sync scrolling. Built-in OCR support for images, but also PDF and Office (Word, PowerPoint, Spreadsheet) text extraction which integrates with the search function. See the Media page in Options for configuration. Custom dictionary is now synchronized across instances New deployment for Linux under test: AppImage We are reintroducing an LLM chat functionality with full-size chats as well as a sidebar with tools that allow it to alter your notes or even create scripts. Save indicator not showing in quick edit popup. Grid of child notes does not clear floats.

Tiny Tiny RSS

37 408

37 Topics

408 Posts

[2.87.0] Update tt-rss to b6c12be

Twenty

7 52

7 Topics

52 Posts

[0.11.0] Update twenty to 2.4.0 Full Changelog Add description to oAuth_only app created by @martmull in #20336 Fix plan-required modal issue by @etiennejouan in #20346 fix: workspace member "me" filters now work in dashboard widgets by @QuantumByteMaster in #20266 feat: add email forwarding message channel by @FelixMalfait in #19535 feat(public-domain): bind public domains to apps + reorganize settings by @FelixMalfait in #20360 fix(messaging): reset sync state when IMAP/SMTP/CalDAV credentials are updated by @fucx in #20405 [AI] Add thread actions, filters, and archive support by @ehconitin in #20068 feat(apps): generic OAuth provider support for app SDK by @FelixMalfait in #20181 [Dashboards] [Warning] Remove gauge chart support and delete existing widgets by @ehconitin in #20172 feat(apps): split AI tool and workflow action triggers in LogicFunction manifest by @FelixMalfait in #20208

Typebot

42 296

42 Topics

296 Posts

[1.24.1] Update typebot.io to 3.16.1 Full Changelog baptisteArno/typebot.io (baptisteArno/typebot.io) Compare Source

Umami

33 276

33 Topics

276 Posts

@James fair point .... but still stupid IMHO. Especially as it worked perfectly well in 3Gb until recent updates. Not much time to research an alternative just now so will live with it. Simply because I'm lucky enough to have 128Gb RAM on my Cloudron VPS .... but I didn't spec it that way to be wasted on Umami.

Uptime Kuma

39 343

39 Topics

343 Posts

[2.5.0] Update cloudflared to 2026.5.0 Full Changelog

Valheim

19 126

19 Topics

126 Posts

[1.6.1] fix: Mod support

Vault

4 115

4 Topics

115 Posts

[1.83.1] fix: update doc links from /apps/ to /packages/

Vaultwarden

95 812

95 Topics

812 Posts

@james said: Please follow these steps if you have this issue: Can this script be run on the working version I reverted to, or do I need to update to the broken version and then run it? Edit: yes, it seems fixing the db and then updating also works fine.

Verdaccio

9 162

9 Topics

162 Posts

[1.79.0] Update verdaccio to 6.7.1 Full Changelog feat: update Node.js to 24 Bumps the project's Node.js baseline to 24 across runtime and container, and adds a startup warning for users still on an older (but supported) Node. Node 24 bump: .nvmrc 22 24; Dockerfile base image node:22.22.1-alpine node:24.15.0-alpine (builder + runtime). Soft-deprecation warning: new RECOMMENDED_NODE_VERSION = '22' and isVersionRecommended() in src/lib/cli/utils.ts; the init command logs a warn at startup when Node is below the recommendation. MIN_NODE_VERSION stays at '18' no hard break. Tests: unit tests for isVersionRecommended and the init warning path. Compatibility: minimum supported Node remains 18 (warning only); recommended is 22+; Docker images ship Node 24.

Vikunja

37 259

37 Topics

259 Posts

[1.23.0] Update vikunja to 2.3.0 Full Changelog (auth) Normalize API base URL to prevent refresh cookie path mismatch (auth) Add retry and logging for token refresh failures (auth) Enforce TOTP on OIDC callback for users with 2FA enabled (background) Use targeted column update when removing background (caldav) Add tags and sync token to collections (#2482) (caldav) Resolve lint issues in caldavtests package (caldav) Skip tests for known CalDAV bugs and fix timing issues (caldav) Escape user-controlled strings per RFC 5545 in VCALENDAR output (caldav) Enforce task read authorization on GetTasksByUIDs (caldav) Reject GetResource when URL project mismatches task project

VPN

64 492

64 Topics

492 Posts

Hello @nottheend @nottheend said: "route all traffic to the cloudron VPN endpoint via a third party VPN? The idea would be to only allow access to configured apps through the Cloudron VPN app or a custom VPN you can configure.

Wallabag

20 169

20 Topics

169 Posts

[2.5.6] Update wallabag to 2.6.14 Full Changelog Change version in wallabag.yml by @nicosomb in #8251 Fix deprecation by @j0k3r in #8267 Add annotations filter to entries API endpoint by @skn in #8346 Update dependencies by @yguedidi in #8435 Bump deps (mostly for siteconfig) by @j0k3r in #8489 Fix reading time computation for short entries by @andreadecorte in #8332 Fix urls parameter when sending many urls to be stored using the API by @j0k3r in #8488 Prepare 2.6.14 by @j0k3r in #8494

Wallos

5 80

5 Topics

80 Posts

[1.22.0] Update Wallos to 4.9.0 Full Changelog allow multiple filters on the settings page (0fef959) filter by notification status (0fef959) lifetime subscriptions (0fef959) rework icons (0fef959) sort graphs on the statistics page by usage (0fef959) don't use mbstring (0fef959) migrations using double quotes (0fef959) ntfy notifications with strange chars (0fef959) null array on empty subscription list (0fef959) open 3 dot menu abone for the subscriptions at the bottom (0fef959)

WBO

5 71

5 Topics

71 Posts

[1.34.3] Update whitebophir to 2.8.5 Full Changelog

Weblate

8 152

8 Topics

152 Posts

[1.42.0] Update weblate to 2026.5 Full Changelog Added MDX files support for translating Markdown text while preserving JSX syntax, with File format parameters shared with Markdown files for line wrapping, code blocks, front matter, and placeholder handling. Added extended LLM translation context for automatic suggestions, covering string context, explanations, secondary-language translations, plurals, failing checks, and placeholders. CSV and XLSX downloads in Downloading translations now export plural strings as separate plural-form rows that can be imported back. Hardened search previews and Automatic suggestions suggestion origins against XSS, and stopped exposing database error details in upload failures. Screenshot URL uploads, remote HTML extraction in JavaScript localization CDN, and URL health-check redirects now reject internal or non-public targets by default. Per-project access tokens expiring today now remain valid until the end of the day. The dos-eol flag is no longer supported. Use the dos_eol File format parameters instead. The set_language_team project attribute has been replaced with the po_set_language_team file format parameter at the component level; see File format parameters. Weblate now uses calendar versioning for releases, see Release cycle. The upgrading policy was changed, and upgrades are only supported from the current or previous calendar year.

Wekan

25 505

25 Topics

505 Posts

[4.109.0] Update wekan to 9.07 Full Changelog This release fixes the following CRITICAL SECURITY ISSUES of AvatarBleed: Fix avatars rce. Thanks to Trung Nguyen from CyStack Security and xet7. Fix CleanDark theme. Thanks to stegoh. Thanks to above GitHub users for their contributions and translators for their translations.

Wiki.js

16 139

16 Topics

139 Posts

[1.13.7] Update wiki to 2.5.314 Full Changelog ec36eb2 - update arm docker base to node 24 (commit by @NGPixel) da64dcd - fix windows build missing migration file during tarball creation (commit by @NGPixel)

Woodpecker

4 67

4 Topics

67 Posts

[2.15.2] fix: update doc links from /apps/ to /packages/

WordPress (Managed)

113 867

113 Topics

867 Posts

[3.16.3] Update WordPress to 6.9.4

WordPress (Developer)

224 2k

224 Topics

2k Posts

[3.14.0] Update redis-cache to 2.8.0

XBackBone

13 66

13 Topics

66 Posts

Problems with Flameshot, GNU+Linux, Wayland, keyboard short-cuts? Check out this blog for solutions and save time, especially if you use Bazzite as your operating system. https://wanderingmonster.dev/blog/flameshot-xbackbone-linux/

YOURLS

20 135

20 Topics

135 Posts

Could be. Cloudron uses the default URL size - https://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers If you want to experiment, edit the file in /etc/nginx/applications/*conf and then systemctl restart nginx .

Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.

Cloudron Forum

Subcategories