Cloudron Forum

[1.133.1] Update synapse to 1.152.1 Full Changelog Prevent CPU starvation (Denial of Service) under worker lock contention, additionally capping the WorkerLock time out interval to a maximum of 60 seconds. Contributed by Famedly. (#19394, ELEMENTSEC-2026-1706, GHSA-8q93-326v-3m7g, CVE pending) Prevent pagination ending when a page is full of rejected events. (ELEMENTSEC-2025-1636, GHSA-6qf2-7x63-mm6v, CVE pending)

[2.19.3] Update taiga-front-dist to 6.10.2 Full Changelog

[1.57.1] Update LimeSurvey to 6.17.1+260427

[4.22.2] Update n8n to 2.19.4 Full Changelog Add fully dynamic disclaimer to Quick Connect offer (#29865) (492a0b7) core: Add support for context establishment hooks in webhook mode (#29901) (c967cb2) core: Allow GIT_SSH_COMMAND in simple-git after 3.36.0 upgrade (#29921) (4b73a25) Snowflake Node: Fix issue with Insert and Update operations not working (#29811) (b1f2200)

[1.57.1] Set HTTP_AUTHORIZATION for the mcp plugin server

[2.14.1] Fix Sidekiq startup

[1.40.0] Update mealie to 3.17.0 Full Changelog feat: Improve add shopping list item form @miah120 (#7091) feat: Shopping list / Swipe to check off @miah120 (#7118) fix: prevent delete-image dialog from reopening in a loop inside v-menu @zdenek-stursa (#7469) fix: use correct title and icon on Recipe Actions data page @zdenek-stursa (#7498) fix: Allow user-configurable OIDC timeout @t0xicCode (#7496) fix: pressing Enter in dialogs now confirms instead of silently closing @zdenek-stursa (#7503) fix: add missing search bar to Recipe Data management page @zdenek-stursa (#7504) fix: Don't hit authenticated endpoints when logged out @garlic-hub (#7563) fix: restore create-item button in recipe dropdowns (categories, tags, tools) @zdenek-stursa (#7564) fix: Adjust ingredient section spacing @michael-genson (#7580)

[4.6.3] Update etherpad-lite to 2.7.3 Full Changelog Pad compaction. New compactPad HTTP API plus bin/compactPad and bin/compactAllPads CLIs to reclaim database space on long-lived pads with heavy edit history (issue #6194). --keep N retains the last N revisions; --dry-run previews per-pad rev counts before writing. Per-pad failures don't stop the bulk run. Social / mobile metadata. Pad, timeslider, and home views now emit Open Graph and Twitter Card tags (closes #7599) and a theme-color meta that matches the toolbar on mobile. Socket.io: don't kick authenticated duplicate-author sessions. A regression where two tabs from the same authenticated author could evict each other has been fixed (#7656 / #7678). Anchor scrolling. Anchor-link navigation now waits for layout to settle, so jumping to a deep link no longer overshoots. Plugin updater. bin/updatePlugins.sh actually updates installed plugins again (closes #6670). Settings: stable per-release version string. randomVersionString is now derived from the release identity rather than regenerated on each boot, so caches behave correctly across restarts of the same version.

[3.9.1] Update metabase to 0.60.4.2

[1.37.6] Update uv to 0.11.11 Full Changelog Accept legacy ID format from pre-0.11.9 cache entries (#19301)