Cloudron Forum

[1.57.2] Update matomo to 5.10.1 Full Changelog

[2.14.0] Add Split Routing settings to choose what traffic goes through the tunnel Support full-tunnel, Cloudron-only, and custom CIDR routing modes Apply split routing mode to WireGuard AllowedIPs generation Use sentence casing in the UI consistently

[1.39.2] Update koel to 9.4.2 Full Changelog fix: silent OOM on Searchable save with TNT driver on Laravel 13 by @phanan in #2528

[2.14.3] chore(deps): update dependency radicale to v3.7.4

[5.8.2] Update server to 33.0.4 Full Changelog

[1.25.5] Update ampache to 7.9.5 Full Changelog Split structured lyrics when you have a time in the line Update Composer and NPM dependencies Set some stricter PHP-CS-Fixer rules Sending the name instead of the ID for Album::check on Song insert Searches for my_flagged_album missing AlbumDisk joins when needed Song Search not applying column id for my_flagged_album, my_flagged_artist Artist Search not applying column id for my_flagged_album, my_flagged_song Send artistInfo2 response correctly Bad podcast_update function name REST rewrite rules

[2.12.0] Update prometheus to 3.12.0 Full Changelog [SECURITY] Remote-write: Reject snappy-compressed requests whose declared decoded length exceeds the 32MB. Thanks to @hibrian827 for reporting it. #18642 [SECURITY] STACKIT SD: Fix secrets being exposed in plaintext via /-/config endpoint. Thanks to @August829 and @Phaxma for reporting. GHSA-39j6-789q-qxvh #18649 [CHANGE] TSDB/Agent: Adds Start Timestamp field to all WAL Histogram samples in memory; used st-storage flag is enabled. #18221 [FEATURE] API: Add /api/v1/status/self_metrics endpoint returning the current state of the Prometheus server's own metrics about itself as JSON. #18411 [FEATURE] Discovery: Add DigitalOcean Managed Databases service discovery #18287 [FEATURE] PromQL: Add start(), end(), range(), and step() experimental functions #17877 [FEATURE] UI: Add a web interface for deleting time series and cleaning tombstones, accessible from the Status menu. #18390 [BUGFIX] PromQL: Fix info() function incorrectly handling negated __name__ matchers #17932 [BUGFIX] Config: Validate remote_write queue_config fields at load time to prevent runtime panic and silent misconfiguration. #18209 [BUGFIX] TSDB: panic with native histograms during query of overlapping chunks. #18692

[4.25.2] Update n8n to 2.22.5

[1.37.12] Update uv to 0.11.17

[1.99.1] Update audiobookshelf to 2.35.1 Full Changelog Duplicate refresh tokens across sessions can cause unexpected logout #5253 by @nichwall in #5255 Server crash when renaming an author to another author when they are both on the same book #5247 by @nichwall in #5256 Server crash when invalid metadata.json is scanned in #5268 Sequelize user queries to use direct case-insensitive username/email matching

[2.7.29] Update mirotalksfu to 2.2.86

[1.17.0] Update pocketbase to 0.39.0 Full Changelog Added new "SQL console" section under Settings > Debug allowing executing any raw SQL query from the UI (#2236; #7638). Send system email alerts to superusers in case of an error with the automated backups (#7698). fixed logs bulk selection export error optimized logs and records list rendering allowed word breaking in labels text contrast improvements registered missing oidc2 and oidc3 option fields updated default email template texts for consistency updated modernc.org/sqlite to v1.51.0

[6.1.1] Update mautic to 7.1.2 Full Changelog CVE-2026-4776: SQL Injection in API Contact Filtering Advisory: GHSA-fcmw-wx57-9p75 CVE-2026-9557: SSRF in the Mautic Focus Component Advisory: GHSA-jmv8-8j9j-rcpc CVE-2026-9558: Server-Side Template Injection (SSTI) in Theme Templates CVE-2026-9559: Path Traversal via Campaign Import CVE-2026-9808: Authorization Bypass in API v2 Endpoints CVE-2026-9809: Stored Cross-Site Scripting (XSS) in Projects Component CVE-2026-9811: Stored Cross-Site Scripting (XSS) in Project Option Selector Bumping CK editor libraries by @escopecz in #16074

[2.1.0] Update BookStack to 26.05 Full Changelog Upgrade Notices - Folder Permissions - Due to some changes in how fonts are used for exports, after updating you may need to ensure that the storage/fonts folder (and all folders within that) are accessible & writable by the web-server. If you start seeing errors on PDF export after updating, it's likely this issue. See this page for guidance on setting permissions. Revision Access - Revision access & visibility is now controlled separately to pages. In some cases, after upgrading, users may no longer be able to access revisions by default (for example, where users had access to view page content but had no role-level view permissions). Added page contents view to page editor. (#6131, #4218) Added API endpoints for browsing tags. (#6095, #5835) Added custom font load handling for default PDF renderer. (#6109, #148, #719, #5770) Added specific permission for revision viewing. (#6108, #4526) Added Thai language support. (#6105) Fixed misaligned link attachment validation rules. (#6093) Fixed non-ascii character issues in headers on PDF exports. Thanks to @alexwoo-awso. (#6069, #6107)

[2.15.0] Update discourse to 2026.5.0 Full Changelog