Cloudron Forum

[3.17.0] Update WordPress to 7.0

[4.172.0] Update ghost to 6.41.0 Full Changelog Added Danger Zone action to reset all authentication - Rob Lester

[2.0.5] Update BookStack to 26.03.5 Full Changelog Updated PHP package versions. Updated MFA verification routes with rate limiting.

[3.11.3] Update redmine_oauth to 4.0.7

[1.116.0] Update gitlab-foss to 19.0.0 Full Changelog

[1.38.2] Update gitea to 1.26.2 Full Changelog fix(permissions): Fix reading permission (#37769) fix(actions): make artifact signature payloads unambiguous (#37707) fix(oauth): strengthen PKCE validation and refresh token replay protection (#37706) fix(web): enforce token scopes on raw, media, and attachment downloads (#37698) feat(api): encrypt AWS creds (#37679) fix!: add DEFAULT_TITLE_SOURCE setting for pull request title default behavior (#37465) fix(pull): handle empty pull request files view to allow reviews (#37783) fix(actions): deadlock between PrepareRunAndInsert and UpdateTaskByState (#37692) fix: treat email addresses case-insensitively (#37600) Fix color regressions, add priority color (#37417) (#37421)

[1.28.1] Update FreshRSS to 1.29.1 Full Changelog Accept .txt import of feed URLs in additional to e.g. OPML #8818, #8837 New CLI for automatic periodic SQLite export with retention #8819 More feed info: last received date, publication date #8799 Fix cookies with some browsers #8867 Fix search in shared user queries with empty results #8863 Fix XML errors with loading invalid OPML in lib_opml library #8652, #8853, lib_opml#48, lib_opml#51 Fix ensure maximum number of feeds also with Dynamic OPML #8832 Fix click mark as read #8817

[1.57.3] Update LimeSurvey to 6.17.3+260512

[2.37.11] Update bedrock to 1.26.22.1

[3.15.0] Update WordPress to 7.0 Full Changelog

[1.17.11] Update mastodon to 4.5.10 Full Changelog Fix SSRF protection bypass (GHSA-crr4-7rm4-8gpw, GHSA-xx55-4rrg-8xg6) Fix Linked-Data Signature bypass through JSON-LD graph restructuring features (GHSA-53m7-2wrh-q839, GHSA-chgx-jx3p-rf73) Updated dependencies Fix type of interactingObject, interactionTarget and add missing QuoteAuthorization (#38940 by @ClearlyClaire) Remove unused devise strategies (#38795 by @ClearlyClaire)

[3.12.2] Update firefly-iii to 6.6.3 Full Changelog Better explanation text for the password validation code. Discussion 11408 (How do I see the content of link notes?) started by @Coderdude112 Discussion 11455 ("Sum" Line In Account Charts) started by @PVTejas Discussion 12097 (Error updating Exchange Rates) started by @gpampuro Issue 12204 (A change is shown in "Audit log entries" when there was actually no movement (currency values fields)) reported by @jgmm81 Issue 12207 (Rule triggers hidden on rules page for rules with multiple triggers) reported by @frankakn7 Discussion 12210 (PiggyBanks and suggested amount per month) started by @Thieume Issue 12223 (Budget figures on the default financial report does not include transactions in liability accounts) reported by @likinon1981 Issue 12243 (Abacus App is not working with the new OAuth) reported by @darkmatter18 Issue 12254 (Personal Access Tokens not listed on web UI) reported by @imjuzcy MR 12271 (Fix stored XSS in audit log view via piggy bank name (ale.twig)) reported by @alanturing881

[1.25.4] Update ampache to 7.9.4 Full Changelog Many new search enhancements, documentation updates and fixes. Media weight is calculated based on ratings, flags, play and skip counts. Add my_flagged_song, my_flagged_album and my_flagged_artist to Album, Artist and Song searches Add weight_song, weight_album and weight_artist to Album, Artist Podcast, Podcast_Episode and Song searches Add all rating rules to podcast and podcast_episode searches Add coverArt for radio stations Catalog sync would not respect podcast download limits Missing collaboration in Playlist browses Orphaned uploads would never be able to change from an orphan album object Allow REST calls to block GET requests for sensitive calls (e.g. register)

[4.23.3] Update n8n to 2.20.12