Cloudron Forum

[3.0.4] Update open-webui to 0.6.41 Full Changelog Sign-in rate limiting was implemented to protect against brute force attacks, limiting login attempts to 15 per 3-minute window per email address using Redis with automatic fallback to in-memory storage when Redis is unavailable. Commit Administrators can now globally disable the folders feature and control user-level folder permissions through the admin panel, enabling minimalist interface configurations for deployments that don't require workspace organization features. #19529, #19210, #18459, #18299 Group channels were introduced as a new channel type enabling membership-based collaboration spaces where users explicitly join as members rather than accessing through permissions, with support for public or private visibility, automatic member inclusion from specified user groups, member role tracking with invitation metadata, and post-creation member management allowing channel managers to add or remove members through the channel info modal. Commit, Commit Direct Message channels were introduced with a dedicated channel type selector and multi-user member selection interface, enabling private conversations between specific users without requiring full channel visibility. Commit Direct Message channels now support a complete user-to-user messaging system with member-based access control, automatic deduplication for one-on-one conversations, optional channel naming, and distinct visual presentation using participant avatars instead of channel icons. Commit Users can now hide Direct Message channels from their sidebar while preserving message history, with automatic reactivation when new messages arrive from other participants, providing a cleaner interface for managing active conversations. Commit A comprehensive user selection component was added to the channel creation modal, featuring search functionality, sortable user lists, pagination support, and multi-select checkboxes for building Direct Message participant lists. Commit Channel unread message count tracking was implemented with visual badge indicators in the sidebar, automatically updating counts in real-time and marking messages as read when users view channels, with join/leave functionality to manage membership status. Commit Message pinning functionality was added to channels, allowing users to pin important messages for easy reference with visual highlighting, a dedicated pinned messages modal accessible from the navbar, and complete backend support for tracking pinned status, pin timestamp, and the user who pinned each message. Commit, Commit Direct Message channels now display an active status indicator for one-on-one conversations, showing a green dot when the other participant is currently online or a gray dot when offline. Commit, Commit

[1.1.1] Update ollama to 0.13.1 Full Changelog nomic-embed-text will now use Ollama's engine by default Tool calling support for cogito-v2.1 Fixed issues with CUDA VRAM discovery Fixed link to docs in Ollama's app Fixed issue where models would be evicted on CPU-only systems Ollama will now better render errors instead of showing Unmarshal: errors Fixed issue where CUDA GPUs would fail to be detected with older GPUs Added thinking and tool parsing for cogito-v2.1

[1.72.5] Update verdaccio to 6.2.4 Full Changelog fix: allow docker listen address to be configured (6.x) by @markormesher in #5503

[5.1.4] Update mautic to 6.0.7 Full Changelog This release addresses several security issues. Please update at your earliest convenience after taking a backup and ensuring that it's working. https://github.com/mautic/mautic/security/advisories/GHSA-3fq7-c5m8-g86x - CVE-2025-13828 - Fixed privilege escalation vulnerability in Marketplace - Reported and fixed by @driskell, reviewed by @escopecz and @patrykgruszka. https://github.com/mautic/mautic/security/advisories/GHSA-5xw2-57jx-pgjp - CVE-2025-13827 - Fixed file upload restriction bypass in GrapesJsBuilder - Reported and fixed by @driskell, reviewed by @escopecz and @patrykgruszka. Update dependencies for M6 by @patrykgruszka in #15666 Bump guzzlehttp/oauth-subscriber to 0.8.1by @patrykgruszka in #15678

[2.27.0] Update metabase to 0.57.5.1 Full Changelog fix: resolve issue with dashboard filters not applying correctly feat: add support for custom themes in the admin panel fix: correct visualization rendering bug in Firefox BREAKING CHANGE: remove deprecated API endpoints for card creation fix: address performance regression in large datasets feat: introduce new query optimization for faster results fix: ensure proper encoding of special characters in CSV exports

[1.17.70] Update mirotalkp2p to 1.6.67

[1.29.1] Update mealie to 3.6.1 Full Changelog fix: Remove Auth Refresh @michael-genson (#6646) fix: Bump version before building release @michael-genson (#6647)

[1.5.0] Update beszel to 0.17.0 Full Changelog Add quiet hours to silence alerts during specific time periods. (#265) Add dedicated S.M.A.R.T. page. Add alerts for S.M.A.R.T. failures. Add DISK_USAGE_CACHE environment variable. (#1426) Add SKIP_SYSTEMD environment variable. (#1448) Add hub builds for Windows and FreeBSD. Change extra disk indicators in systems table to display usage range as dots. (#1409) Strip ANSI escape sequences from docker logs. (#1478) Font ligatures create unwanted artifacts in random ids by @m90 in #1434 fix: Fix the issue where the Add System button is visible to read-only users. by @zjkal in #1442

Does that mean it won’t be installable / usable, for the time being (until some day Cloudron‘s backup supports xattr)?

[1.11.5] Update element-web to 1.12.5 Full Changelog Update Emojibase to v17 (#​31307). Contributed by @​t3chguy. Adds tooltip for compose menu (#​31122). Contributed by @​byteplow. Add option to hide pinned message banner in room view (#​31296). Contributed by @​florianduros. update twemoji to not monochromise emoji with BLACK in their name (#​31281). Contributed by @​ara4n. upgrade to twemoji 17.0.2 and fix #​14695 (#​31267). Contributed by @​ara4n. Add options to hide right panel in room view (#​31252). Contributed by @​florianduros. Delayed event management: split endpoints, no auth (#​31183). Contributed by @​AndrewFerr. Support using Element Call for voice calls in DMs (#​30817). Contributed by @​Half-Shot. Improve screen reader accessibility of auth pages (#​31236). Contributed by @​t3chguy. Add posthog tracking for key backup toasts (#​31195). Contributed by @​Half-Shot.

[3.14.0] Update WordPress to 6.9 Full Changelog Collaborate and stage content directly in your posts Block-level Notes Hide and Show blocks Visual drag and drop Allowed blocks UI and other workflow tools Enrich your content with creative blocks for improved storytelling

[3.1.0] Update Piwigo to 16.1.0 Full Changelog

[1.12.1] Update pocketbase to 0.34.1 Full Changelog Added missing : char to the autocomplete regex (#7353; thanks @ouvreboite). Added "Copy raw JSON" collection dropdown option (#7357). Updated Go deps and JS SDK. Bumped min Go GitHub action version to 1.25.5 because it comes with some minor security fixes. The runner action was also updated to actions/setup-go@v6 since the previous v5 Go source seems no longer accessible.