Cloudron Forum

[3.50.0] Update openproject to 17.5.0 Full Changelog Feature: Exclude certain work package types from automated backlog (per project) [#71305] Feature: Jira Migrator imports project-based semantic issue identifiers [#72427] Feature: Jira Migrator supports due date, estimated hours and remaining hours. [#74807] Feature: Meeting series: Add monthly scheduling options [#61522] Feature: Debounce emails for meetings [#66645] Feature: Workflows UX improvement: Allow multi-selection of roles in workflow [#72242] Feature: Bring sprint sharing (SAFe) to corporate plan [#74147] Bugfix: POST/PATCH/DELETE requests to APIv3 return unauthorized [#73499] Bugfix: Nextcloud integration shows "No connection to Nextcloud" for folders that have "&" in the name [#73855] Bugfix: Wrong calendar week in My time tracking [#68272]

[2.54.0] Update kimai to 2.60.0 Full Changelog Added options to allow watermark-text and watermark-image in PDF (not allowed for PDFa/PDFx) usable in twig templates e.g. to define a background image Translations update from Hosted Weblate (#5973) Added missing "default user" in invoice archive query (fixes invisible filter) (#5971) Improve whitespace handling in Search term parser (#5977) - thanks @tikket1

[1.52.2] Update chatwoot to 4.14.2 Full Changelog Help Center search and per-locale portal branding. WhatsApp voice messages and improved Twilio call controls. Processing status for one-off SMS and WhatsApp campaigns. Contact filter for conversations and inline images in messages. Resizable table columns and article editor improvements. Companies enabled for Business cloud plans. Onboarding OAuth return flows and Help Center generation status. Inbox API docs, attachment docs, and richer webhook payloads. Reliability fixes across email, Facebook, Instagram, WhatsApp, widgets, and webhooks. Security and platform updates for Puma, OAuth dependencies, SafeFetch, and Vite.

[1.25.0] Update evcc to 0.309.0 Full Changelog Add long-lived api key (BC) (#29431) Refactor dim/curtail handling- split hems and circuit (BC) (#30284) Add HoldCharge battery mode (#27906) Add OCPP forwarder (#29154) AlphaESS: add returnEnergy support (#30568) Vehicle: add climaterdisabled feature (#30610) Deye: fix energy and power, add returnenergy and voltages (#30691) GoodWe: fix wallbox RFID register and phase-type detection (#30667) Vehicle (SAIC/MG): fix missing SoC for idle vehicles (#30603) Warp: fix phase switching for WARP2+Energy Manager and WARP3 (#30460)

[1.5.17] Update mirotalkbro to 1.3.33

[1.2.2] Update forgejo to 15.0.3 Full Changelog

[4.10.1] Update etherpad-lite to 3.3.1 Full Changelog Pad editor escape and integer-coerce the numbered-list start attribute (GHSA-f7h5-v9hm-548j, #7937). A crafted <ol start> value flowed unescaped into domline.ts, a distinct client-side sink from the export-path fix in 3.3.0's #7905. The value is now integer-coerced and HTML-escaped before it reaches the DOM. A jsdom regression test covers the sink. Skin paint the root canvas so iOS dark mode has no white status bar (#7606 / #7931). iOS Safari paints the top safe area from the html root background, which theme-color (an Android address-bar hint) does not affect, so dark-mode pads showed a white status-bar strip on iOS. Colibris now sets the root background and color-scheme so the safe area matches the editor. Settings show the detected language in the dropdown (#7925 / #7928). The settings language <select> did not reflect the language Etherpad had actually auto-detected; it now shows the active selection. Pad don't issue a deletion token (or show its modal) when allowPadDeletionByAllUsers is on (#7929). With pad deletion open to all users the client still minted a deletion token and surfaced the confirm modal; both are now suppressed in that configuration. Admin one unreadable pad no longer empties the Manage-pads list (#7935 / #7938). A single pad that failed to read could throw out of the list-hydration path and blank the entire admin Manage-pads view; the read is now guarded per-pad so the rest of the list still renders. ueberdb2 6.1.8 6.1.9 PostgreSQL pool errors are now handled and TCP keep-alive is enabled (fixes #7878), and the Redis and RethinkDB drivers attach connection-error handlers so a dropped database connection no longer crashes the Etherpad process. semver 7.8.2 7.8.3 (#7933), rate-limiter-flexible 11.1.1 11.2.0 (#7934), plus a dev-dependencies group update (#7932).

[4.29.1] Update n8n to 2.25.7 Full Changelog editor: Use workflow-scoped credential fetch in node credential picker (#31989) (c67d1fc)

[1.116.2] Update gitlab-foss to 19.0.2 Make CI cache limit per job configurable by admins Allow job token basic auth for generic package upload Add fat manifest types to container registry Accept Ensure uploads.id has the correct default Patching deployment bigint swap for missing index

[1.29.0] Update navidrome to 0.62.0 Full Changelog Fix cross-account disclosure of other users' shares (incl. share tokens) by enforcing per-user ownership on share reads. (1e7996f5d, GHSA-3g4p-jhv2-xrxf, reported by @Wernerina) Fix cross-tenant player takeover and share-update IDOR by enforcing ownership atomically on player and share updates. (#5563, GHSA-x65f-m8x9-pjxm reported by @tonghuaroot; GHSA-58gr-c777-g23p reported by @lighthousekeeper1212; GHSA-wx2c-q8g7-4q5p reported by @CE2Sec) Fix unauthenticated Last.fm scrobble session hijack (IDOR) by requiring a signed state token on the link callback. (#5521, GHSA-8jrh-w926-8rvw, reported by @geo-chen) Fix JWT expiration bypass on public share stream endpoints by validating token expiration and share existence. (#5426, GHSA-3rfj-qx9q-jghx, reported by @wooseokdotkim) Cap concurrent transcodes to prevent an ffmpeg-based denial of service, with new per-server and per-user limits. (#5522 by @deluan) Add EnforceNonRootUser option to exit early if Navidrome is started as root. (#5373 by @kopf) Replace UI scrobble with reportPlayback and redesign the Now Playing panel. (#5448 by @deluan) Add the sonicSimilarity extension as a plugin capability. (#5419 by @deluan) Add ReplayGain fields to the criteria system. (d9dac4445 by @deluan) Add isMissing and isPresent operators. (#5436 by @deluan)

[3.13.0] Update Stirling-PDF to 2.12.0 Full Changelog New JPDFium repository enhancement for 'merge' and 'split' tools to allow up to 99% less memory consumption on merges and splits (Special thanks to PDFium and EmbedPDF for this, Please check out EmbedPDF and donate to them, great project for the future of PDF for OSS) Forced JDK 25 for improved memory efficiency and compatibility issues Introduced Stirling.com code into OSS repo to make it source viewable and allow us to return stirling.com to the old UI (Coming very soon!) New folder system for file storage with a "my files" UI. Customisable folders and storage for server! (must be enabled in settings) Desktop multi-window support Desktop auto updater (WIP) OAuth2 / OIDC diagnostic logging flag Landscape page-size options Fixed font loss in Rearrange / Overlay / Auto-split / OCR Fix issue with SSO Auto-login setting not correctly setting

[1.3.1] Update ip2location to 1.4.0 Fix width and height of the map