Cloudron Forum

[2.18.2] Update Shaarli to 0.16.2 Full Changelog fix(xss): encode tag text in Awesomplete autocomplete suggestions fix(xss): sanitize href protocols in rendered Markdown HTML fix(xss): sanitize thumbnail update DOM insertions update vulnerable frontend/npm dependencies doc: add documentation for building/testing Docker image locally doc: add documentation for running GitHub Actions locally with act doc: add documentation for GPG_TTY on headless build environments Full Changelog: https://github.com/shaarli/Shaarli/compare/v0.16.1...v0.16.2

[1.12.1] Update YOURLS to 1.10.4 Full Changelog fixed: Prevent XSS in stat pages through referrers (#4107) added: Localization support for date and time display (#4054) improved: Improve shunt filters (#4058) fixed: Notice overlapping logo in admin panel (#4069) fixed: Flag password file as user auth from environment variables (#4066) added: Filter SQL queries (#4064) improved: Improve debug functions and logic (#4089) improved: Make tests debugging easier (#4104)

[1.16.1] Update docuseal to 3.0.1 Full Changelog Upgrade to Ruby 4.0.5

[0.13.0] Update twenty to 2.7.3 Full Changelog fix(front): prevent standalone page layout crash from useTargetRecord by @charlesBochet in #20698 fix(filters): make filter dispatcher own relation-target resolution by @FelixMalfait in #20670 Fix(twenty-front): BlockNote slash command shows empty state when no match by @git-init-priyanshu in #20689 feat(server): Enterprise cron that rotates the current JWT signing key by @charlesBochet in #20612 [CONNECTED_ACCOUNT_BREAKING_CHANGE] Encrypt ConnectedAccount connectionParameters by @prastoin in #20673 Twenty fireflies integration by @abdulrahmancodes in #20618 Slack workflow connector by @abdulrahmancodes in #20427 [CONNECTED_ACCOUNT_BREAKING_CHANGE] Unify connected account permissions by @prastoin in #20732 feat(server): idempotent CLI to rotate ENCRYPTION_KEY across enc:v2 rows by @charlesBochet in #20613 fix(messaging): preserve all gmail to/cc/bcc recipients as participants by @neo773 in #20491

[1.23.1] Update meemo to 1.23.1 Fix browser extension token setup

[1.79.1] Update verdaccio to 6.7.2 Full Changelog a28cf71: chore: add missing types #5889 by @mbtools

[2.52.0] Update kimai to 2.58.0 Full Changelog Adds a setting to disable first time wizard for new users (#5938) - thanks @tofuSCHNITZEL Switch to PNPM for frontend dependencies (#5953) New wizard images (#5952) Fix: sticky tooltip survives page reload (#5952) Fix: actions could trigger GET requests to the API (#5952) Fix: formatting locale reset after embedded controller sub-requests (#5944) - thanks @cheriimoya User permissions <name>_other_profile now respect teams Verify Project permissions in Timesheet Restart and Duplicate - thanks @Mitchell45 Prevent re-use of Password-Reset link - thanks @AzureADTrent Removed API timesheet stop/restart GET endpoints to prevent CSRF - thanks @Mitchell45

[1.23.1] Update evcc to 0.307.1 Full Changelog Add Genesis Europe Bluelink (#30158) Add GoodWe Wallbox (Gen2) charger (#29822) Add Indevolt inverter (#30128) Cupra: add missing OLA API request headers (#30105) Polestar: add gRPC vehicle implementation (#30119) cli: add metrics command (#30099) Atmoce: fix battery energy (#30120) OCPP: coalesce BootNotification channel to fix reboot-loop hang (#30137) Revert "OCPP: fix flaky test deadlock between trigger handler and WS (#30110) fix: device color MQTT encoding (#30168)

[1.1.1] Update keila to v0.20.1 Full Changelog Added Brazilian Portuguese (pt-BR) translation (thanks @polesapart) Contact form fields can now be pre-populated using GET parameters The send preview dialog can now be confirmed with the Enter/Return key App pages now set the HTML lang attribute based on the user's locale; forms don't set a lang attribute (thanks @marco-luigiano for reporting) Added database indices for form_id, form_params_id, and sender_id on the messages table for improved query performance Fixed recognition of language variants from request headers (e.g. pt-BR) Fixed a crash when using custom contact queries with fields not supported by the segment editor Fixed block editor image alignment in Outlook and uneven column gutters in block editor emails Fixed occasional exceptions in the block editor Fixed missing doctype when adding tracking links

[1.6.0] Update seaweedfs to 4.29 Full Changelog EC placement: shared replica-placement resolver, snapshot + Place core, capacity fixes, tiering by @chrislusf in #9621 admin: expose Prometheus metrics by @chrislusf in #9652 filer: serialize same-path mutations with a per-path lock by @chrislusf in #9639 filer: add ObjectTransaction for atomic multi-entry object writes by @chrislusf in #9646 s3: route single-entry object writes to the owner filer, off the DLM by @chrislusf in #9629 filer: POSIX advisory lock set primitive (phase 1 of distributed FUSE locking) by @chrislusf in #9660 mount: fix SetAttr/GetAttr crash from concurrent chunk append under writebackCache by @chrislusf in #9667 mount,filer: re-assert POSIX locks via keepalive (ownership migration + restart) by @chrislusf in #9668 fix: avoid rclone nil close panics by @7y-9 in #9674 fix(master): re-register volumes missing from the lookup index by @chrislusf in #9620

[4.172.1] Update ghost to 6.41.1 Full Changelog Fixed crash in Redis adapter when storeConfig is not provided - Murat orlu

[1.30.4] Update changedetection.io to 0.55.7 Full Changelog Security - SSRF in ChangeDetection.io via urlparse/urllib3 Parser Differential UI - LLM - Fix for settings (wtforms vs pydantic) by @dgtlmoon in #4184 UI - Preview problem fix for extract_text/ignore_text #4138 by @dgtlmoon in #4169 UI - LLM - Flag LLM_FEATURES_DISABLED to disable all LLM from the UI/system by @dgtlmoon in #4171 Notifications - raw_diff token was missing by @dgtlmoon in #4177 LLM UI - Blueprint/code also disabled when env flag LLM_FEATURES_DISABLED is enabled by @dgtlmoon in #4180 Llm settings pydantic refactor by @dgtlmoon in #4181