❌

Normale weergave

Ontvangen β€” 28 April 2026 ⏭ Servers

v0.16.2

βœ‡Stalwart
Door: github-actions[bot]
28 April 2026 om 17:30

[0.16.2] - 2026-04-28

If you are upgrading from v0.16.x, replace the binary (or run docker pull). If you are upgrading from v0.15.x and below, please read the upgrading documentation for more information on how to upgrade from previous versions.

Added

  • OIDC: Fallback to userinfo endpoint when JWT token does not contain an email claim.
  • S3: verifyAfterWrite option to verify that objects have persisted after writing.

Changed

  • Allow HTTP to be used for configuring the server.

Fixed

  • LDAP: Generate valid credentialId when there are password changes.
  • TLS: Disable cipher suited option disables wrong ciphers.
  • DNS Updater:
    • BunnyDNS: Use subdomain as name of record instead of FQDN.
    • RFC2136: Chunk TXT records.
  • Skip invalid entries in log files.

Check binary attestation here

  •  
  • ↗️
Ontvangen β€” 27 April 2026 ⏭ Servers

Proxmox expands storage options for enterprises with native StorPool integration

βœ‡Proxmox
27 April 2026 om 11:08

VIENNA, Austria – April 27, 2026 – Enterprise software developer Proxmox Server Solutions (henceforth "Proxmox") today announced a new partnership with StorPool, which is now officially listed as a Proxmox solution provider. Through native integration with Proxmox Virtual Environment, StorPool brings high-performance block storage with very low and consistent latency to organizations running demanding production workloads on open-source infrastructure.

The integration combines the flexibility of Proxmox Virtual Environment with StorPool’s software-defined storage technology to support predictable I/O performance under load, efficient hardware utilization, and fast recovery from drive or server failures. The joint solution is designed for enterprises that require reliable primary storage for business-critical virtualized environments, whether deployed in hyperconverged or disaggregated architectures.

Short Quote StorPool
"StorPool takes Proxmox-powered environments to a new level in terms of speed (<0.1 ms latency), availability (99.999% of measured uptime) and efficiency (CPU, RAM & SSD consumption)," stated Boyan Ivanov, CEO, StorPool. "Now Proxmox users can optimize their environments, while having a robust enterprise-grade solution with 24/7 support, SLA and high-end storage capabilities."

Shorte Quote Proxmox:
"Our goal is to offer a powerful virtualization platform supported by a strong, enterprise-ready ecosystem," said Tim Marx, COO of Proxmox. "Through StorPool's native integration with Proxmox Virtual Environment, customers can have an additional high-performance storage option whenever their specific use cases require it. This expands flexibility for organizations running demanding workloads on open-source infrastructure."

Availability

Storpool on Proxmox Virtual Environment is available immediately. For more information, please visit https://storpool.com/proxmox-virtual-environment

###

About StorPool
StorPool has deployed hundreds of infrastructure solutions that help companies streamline their data centers and optimize their entire businesses. Our core focus is on developing StorPool Storage, a primary data storage software platform for service providers and enterprises. We design and provide solutions for virtualized environments, databases, and IaaS/SaaS platforms, delivering consistent low-latency performance and high availability using only standard hardware. Founded in 2011, StorPool serves customers globally across a range of industries. Learn more: https://storpool.com

About Proxmox
Proxmox provides powerful and user-friendly open-source server software. Enterprises of all sizes and industries use the Proxmox solutions to deploy efficient and simplified IT infrastructures, minimize total cost of ownership, and avoid vendor lock-in. Proxmox also offers commercial support, training services, and an extensive partner ecosystem to ensure business continuity for its customers. Proxmox Server Solutions GmbH was established in 2005 and is headquartered in Vienna, Austria. To learn more visit https://www.proxmox.com. You can also follow us on LinkedIn and on YouTube.

Contact: Michael Hiess Proxmox Server Solutions GmbH, marketing@proxmox.com

  •  
  • ↗️

v4.0.0

βœ‡Coolify
Door: andrasbacsai
29 April 2026 om 09:23

Finally releasing v4.0.

It was long overdue because we have been in beta for a long time. Thousands of companies and people have been using Coolify in production for 1-2 years.

Of course, this does not mean it has no bugs, it has many, but we fix them every day.

v5 is coming together, but we are not rushing it.

The biggest feature will be full scalability in the core, so you will have cloud infrastructure, but with your own servers.

I already have a working solution for the core and it is soo cool. Can't wait to start showing them to you.

By the way, doing v5 does not mean we won't continue to support v4.
We just want to push what is possible with servers and automations.

Thank you to everyone who helped me reach this point πŸ’œ

Let's make cool stuff! 🫰

So the release notes:

What's Changed

Security & Fixes

  • Fixed Rallly service environment variable defaults (#9041, fixes #9615)
  • Fixed Logto upgrade failure caused by missing database migration step (#9376)
  • Fixed Jitsi Meet not working β€” rebuilt template with stable image and proper UDP/secrets (#9594, fixes #4813)
  • Fixed Twenty deployment failure from unhealthy worker dependency (#9603, fixes #9574)
  • Fixed mobile info popup not opening on tap and bubbling clicks to parent (#9809, closes #4834)
  • Fixed SPA navigation race conditions causing stale state, broken buttons, and unsaved changes (#9742, closes #9732)

New Services & Templates

  • Added Cap captcha service template (#9729)
  • Re-enabled Plane service with updated docker-compose (#9641, fixes #8338)
  • Updated Beszel and Beszel Agent to 0.18.7 (#9775)
  • Disabled Cal.com template β€” project went closed source (#9776)

Improvements

  • Added healthcheck to Langfuse worker (#9772)

What's Changed (Github)

New Contributors

Full Changelog: v4.0.0-beta.474...v4.0.0

  •  
  • ↗️
Ontvangen β€” 25 April 2026 ⏭ Servers

v0.16.1

βœ‡Stalwart
Door: github-actions[bot]
25 April 2026 om 09:35

[0.16.1] - 2026-04-25

This version includes multiple breaking changes. If you are upgrading from v0.15.x and below, please read the upgrading documentation for more information on how to upgrade from previous versions.

Added

  • OIDC: Extract username from JWT token.
  • system('node_hostname') and system('node_role') expression variables to retrieve the local node hostname and cluster role respectively.

Changed

Fixed

  • JMAP:
    • Invalid receivedAt headers after importing (#2939).
    • Sorting order issues when emails lack receivedAt headers.
  • IMAP: Fix BINARY fetch responses (#2940).
  • WebDAV: Fix ACL validation for target folders.
  • ACME: Allow requesting apex domain certificates.
  • Hostname issues:
    • Accept RFC 6761 reserved TLDs during bootstrap.
    • Allow hostnames without TLDs in remote server settings.
  • Reverse proxy issues.
  • OSS builds.
  • DNS Updater:
    • RFC2136: TSIG secret not base64 decoded.
    • Google DNS: Chunk TXT records when they exceed 255 characters.
    • Cloudflare:
      • Fix CAA record updates.
      • Check zone subdomains when finding zones

Check binary attestation here

  •  
  • ↗️
Ontvangen β€” 22 April 2026 ⏭ Servers
Ontvangen β€” 21 April 2026 ⏭ Servers

Minecraft 26.2-snapshot-4 (snapshot) Released

βœ‡Minecraft
21 April 2026 om 14:05
26.2 Snapshot 4 (known as 26.2-snapshot-4 in the launcher) is the fourth snapshot for Java Edition 26.2, released on April 21, 2026, which adds two new languages, makes technical changes, and fixes some bugs and issues. Full changelog: https://minecraft.wiki/Java_Edition_26.2-snapshot-4
  •  
  • ↗️

v4.0.0-beta.474

βœ‡Coolify
Door: andrasbacsai
21 April 2026 om 12:31

What's Changed

Security & Fixes

  • Prevent data loss when persistent containers (databases, apps, services) are accidentally pruned during service deletion (#9654, fixes #9582)
  • Fix S3 storage backup endpoints returning 500 in API context (#9655, fixes #9581)
  • Encrypt manual webhook secrets and strengthen HMAC signature verification (#9652)
  • Fix Rocky Linux installer to use correct RHEL Docker repository (#9541, fixes #8730)
  • Harden authentication: upgrade email verification hash and fix invitation link login (#9672)
  • Validate and rate-limit feedback endpoint (#9653)
  • Tighten volume name and path validation with shell argument escaping (#9666)
  • Validate backup upload file type and size limits (#9667)
  • Tighten S3 endpoint URL validation (#9668)
  • Harden dev helper version validation and build argument escaping (#9670)
  • Strengthen team scoping across resource creation flows (#9651)
  • Fix SSH repository URLs with custom ports being mangled (#9425)
  • Fix healthcheck path validation rejecting commas and semicolons (#9223)
  • Fix database credential validation and shell escaping across Postgres, MySQL, MariaDB (#9674, #9676, #9681, #9682)
  • Improve shell command tokenization for install, build, and start commands (#9684)
  • Return stable generic error messages for API 5xx responses (#9669)

Improvements

  • Add optional expiration for API tokens with advance notification warning before expiry (#9677)
  • Add DELETE API endpoint to remove preview deployments by pull request ID (#9614)
  • Mark Docker Swarm support as deprecated ahead of v5 removal (#9621)
  • Categorize application advanced settings into logical sections (#9234)
  • Improve service settings layout with dedicated advanced page and clearer headings (#9027)
  • Display memory limit fields in a single row (#9232)
  • Add info callout to clone resource section listing excluded items (#9233)
  • Add architecture warning for service templates with platform limitations (#8390)
  • Improve domain port+path format documentation in the UI (#8331)

What's Changed (Github)

  • fix(installer): use RHEL Docker repo for Rocky Linux by @andrasbacsai in #9541
  • fix(dev): add Docker volume path mapping to testing-host for database deployments by @cyface in #9534
  • feat(ui): categorize application advanced settings into logical sections by @ShadowArcanist in #9234
  • feat(ui): add info callout to clone resource section about excluded items by @ShadowArcanist in #9233
  • feat(ui): display memory limit fields in single row by @ShadowArcanist in #9232
  • fix(healthcheck): user input is rejected if path contains comma and semicolon by @ShadowArcanist in #9223
  • feat(ui): improve service settings UX, headings, and helper text for clarity by @ShadowArcanist in #9027
  • feat(services): add architecture warning by @Cinzya in #8390
  • Added extra documentation on format for port+path for domains by @JamesPeters98 in #8331
  • fix(git): preserve ssh scheme URLs with custom ports by @Iisyourdad in #9425
  • refactor: tighten team scoping on resource creation and admin nav by @andrasbacsai in #9651
  • build(deps-dev): bump follow-redirects from 1.15.11 to 1.16.0 by @dependabot[bot] in #9580
  • refactor(webhook): encrypt manual webhook secrets and tighten HMAC verification by @andrasbacsai in #9652
  • feat(api): add DELETE endpoint for preview deployments by PR id by @andrasbacsai in #9614
  • refactor(api): validate and throttle feedback endpoint by @andrasbacsai in #9653
  • fix(server): exclude persistent resources from container prune by @andrasbacsai in #9654
  • fix(api): use explicit team ID for S3 storage lookup in backup endpoints by @andrasbacsai in #9655
  • refactor(volumes): validate input and escape shell args by @andrasbacsai in #9666
  • refactor(backup): validate database backup upload file type and size by @andrasbacsai in #9667
  • refactor(storage): tighten S3 endpoint URL validation by @andrasbacsai in #9668
  • refactor(settings): harden dev_helper_version validation and escape build args by @andrasbacsai in #9670
  • refactor(api): return stable generic error messages for 5xx responses by @andrasbacsai in #9669
  • [v5.x] chore: mark v4 docker swarm support as deprecated by @peaklabs-dev in #9621
  • refactor: harden auth, CLI input, and scheduled-log viewer by @andrasbacsai in #9672
  • fix(database): mount guard, healthcheck CMD exec-form, port input layout by @andrasbacsai in #9674
  • fix(database): credential format validation with dirty-value escape hatch by @andrasbacsai in #9676
  • feat(security): add expiration support for API tokens by @andrasbacsai in #9677
  • fix(database): tighten Postgres init script filename handling by @andrasbacsai in #9681
  • refactor(database): align Postgres SSL chown escaping with MySQL by @andrasbacsai in #9682
  • refactor(validation): tokenize shell-safe command pattern by @andrasbacsai in #9684
  • v4.0.0-beta.474 by @andrasbacsai in #9542

New Contributors

Full Changelog: v4.0.0-beta.473...v4.0.0-beta.474

  •  
  • ↗️
Ontvangen β€” 20 April 2026 ⏭ Servers

v0.16.0

βœ‡Stalwart
Door: github-actions[bot]
20 April 2026 om 19:27

[0.16.0] - 2026-04-20

This version includes multiple breaking changes. If you are upgrading from v0.15.x and below, please read the upgrading documentation for more information on how to upgrade from previous versions.

Added

  • Web UI rewritten from the ground up using the JMAP management API, featuring a refreshed design and addressing 76 enhancement requests and bug fixes.
  • CLI rewritten from the ground up to use the JMAP management API.
  • Security enhancements:
    • Password strength enforcement using the zxcvbn algorithm
    • Password expiration, rotation policies and IP address restrictions for user accounts
    • App Passwords with limited access (#1609), labels (#2255), IP address restrictions and expiration dates
    • API keys with limited access, labels, IP address restrictions and expiration dates
    • Auto-ban comments and details about the triggering event (#1321)
    • Auto-ban expiration after a configurable time period (#964)
  • DNS Management:
  • DKIM:
    • Automatic DKIM key generation, rotation and DNS management (#368 #961)
    • Store DKIM keys in the database (#1264)
    • Ignore insecure signatures when verifying DKIM (#1068 #467)
  • ACME/TLS:
    • DNS-PERSIST-01 ACME challenge support (#2837)
    • Renew certificates on demand, view certificate details (#675 #1162 #2566)
    • CAA record support (#468) with accounturi parameter (#1933)
    • TLSA records publishing restricted to 3 1 1 and 2 1 1 (#2193)
  • OIDC and OAuth:
    • JWT token validation without requesting userinfo from the OIDC provider.
    • Audience (aud) claim (#2603) and scope validation support.
    • Groups support (#1448)
    • RFC 7636 - Proof Key for Code Exchange by OAuth Public Clients
  • LDAP:
    • Separate filter for groups (#1841)
    • Improve support for OpenLDAP schemas (#760)
    • Improve and simplify LDAP settings (#2194 #2174)
  • Directory:
    • Masked email addresses for enhanced privacy (Enterprise)
    • Domain aliases (#583)
    • E-mail alias descriptions and option to disable aliases (#506)
    • Account archiving and un-deletion (#2767) (Enterprise)
    • Per-domain directory backends (Enterprise)
  • Account configuration and discovery:
  • Sieve: Allow deactivating scripts without deleting them (#1251).
  • Tracing: Enable events only mode (#2276)
  • Clustering:
    • Automatic cluster node ID generation and management.
    • Unified cluster management (#960)
    • Outbound MTA role (#1692)

Changed

  • Replaced REST API with JMAP API (#2262 #959 #1480)
  • Removed support for Authenticated Received Chain (ARC) sealing (learn more).
  • Directory: Removed smtp, imap and memory directory backends.
  • Use aws-lc for cryptographic operations instead of ring.
  • Use rustls-platform-verifier for TLS certificate verification instead of webpki (#247).

Fixed

  • Directory:
    • Cannot remove built-in "admin" role from user once it was assigned (#1467)
    • Delete associated records (#963)
    • Updated Role permissions not applied (#2038)
    • Recreated account cannot log in until server is restarted (#1469)
    • Subaddressing does not work for groups (#475)
    • New LDAP aliases are rejected (#1318).
    • Validate account and group names (#2209)
  • MTA:
    • RCPT TO stage settings improvements (#2217 #394)
    • Relay to IP addresses (#838)
    • Duplicate delivery inverted check
    • SASL challenge responses include invalid Go ahead text
  • JMAP:
    • Fix inMailboxOtherThan query logic.
    • Fix hasAttachment search field (#2778)
  • IMAP:
    • Increment argument max length to 8000 bytes
    • ACL: Add RIGHTS capability (#2762)
    • ACL: Fix ACL SET permission override.
  • WebDAV:
    • Return 304 NOT_MODIFIED on If-None-Match
    • Use RFC 2616 instead of RFC 1123 for date formatting
    • Fix ACL container/item mismatch in reports.
    • CalDAV: Allow organized properties to be present in PUT requests if they are equal to the existing ones.
    • CalDAV: Enforce cumulative iCalendar instances cap in CalDAV free-busy REPORT handler
  • Configuration: Prefix parsing issues (#2495)
  • OIDC: JWKS Exposes Symmetric Signing Key
  • SQLite: Fix thread pool exhaustion.
  • PostgreSQL: Use clean recycling method on connection pool
  • Meilisearch: Make id sorteable.
  • ACME: Fix wrong origin for subdomain updates (#2360)
  • Spam filter: Skip invalid messages during training.
  • Calendar: Include minutes in localized invite templates (#2828)
  • HTTP: Fix 204 CORS preflight responses

Check binary attestation here

  •  
  • ↗️

Proxmox and Kasm Technologies partner to deliver secure, open-source VDI and web-native workspaces

βœ‡Proxmox
15 April 2026 om 14:32

VIENNA, Austria – April 20, 2026 – Enterprise software developer Proxmox Server Solutions (henceforth "Proxmox") and Kasm Technologies, a leader in zero-trust cloud workspaces, today announced a strategic solution partnership. The collaboration expands the Proxmox ecosystem with a secure, web-native workspace streaming layer for Proxmox VE. This integration enables organizations to deliver virtual desktops, application streaming, and remote browser isolation through any modern browser – on any device and from any location.

Built on the foundation of Proxmox Virtual Environment, Kasm Workspaces adds a modern workspace delivery layer that allows IT and security teams to provision, manage, and isolate workloads across Windows, Linux, and macOS from a unified stack. Kasm’s containerized, zero-trust approach ensures that end-users never interact directly with sensitive data or endpoints, helping organizations reduce risk while simplifying secure remote access.

The Proxmox and Kasm integration provides a DevOps-enabled alternative to legacy VDI environments. The combined solution reduces operational overhead, eliminates proprietary licensing constraints, and delivers a verifiable security architecture that can scale from small deployments to global enterprise rollouts.

Short Quote Kasm Technologies:

β€œGreat technology partnerships are built on shared principles, and Kasm Technologies and Proxmox are united by a common belief: organizations of all sizes deserve infrastructure that works for them,” said Justin Travis, CEO of Kasm Technologies. β€œTogether, we offer a full-stack VDI solution, from the hypervisor layer to the end-user experience, built on the reliability and rapid innovation that Proxmox’s open-source ecosystem is known for delivering.”

Short Quote Proxmox:

β€œAt Proxmox, we believe open-source infrastructure should give organizations more freedom, not more complexity,” said Tim Marx, COO of Proxmox Server Solutions. β€œKasm extends Proxmox Virtual Environment with a modern, browser-based workspace experience that aligns with the needs of today’s IT and security teams. This partnership gives customers a flexible and secure path to deliver virtual desktops and applications without the constraints of legacy VDI platforms.”

Availability

Kasm Workspaces on Proxmox Virtual Environment is available immediately. For more information, please visitΒ https://kasm.com/alliance-partnership/proxmox

Β 

###

About Kasm Technologies
Kasm Technologies is a leading provider of cloud workspaces, delivering zero-trust browser isolation, Desktop-as-a-Service, and application streaming through its open-source, web-native container streaming platform. Founded by cybersecurity experts with decades of experience defending U.S. federal and Department of Defense programs, Kasm enables organizations to securely deliver digital workspaces to any device, any network, anywhere in the world. Kasm Technologies is headquartered in McLean, Virginia. Learn more atΒ https://www.kasm.com

About Proxmox Server Solutions
Proxmox provides powerful and user-friendly open-source server software. Enterprises of all sizes and industries use the Proxmox solutions to deploy efficient and simplified IT infrastructures, minimize total cost of ownership, and avoid vendor lock-in. Proxmox also offers commercial support, training services, and an extensive partner ecosystem to ensure business continuity for its customers. Proxmox Server Solutions GmbH was established in 2005 and is headquartered in Vienna, Austria. To learn more visit https://www.proxmox.com

Media contact: Michael Hiess, Proxmox Server Solutions GmbH, marketing@proxmox.com

  •  
  • ↗️
Ontvangen β€” 14 April 2026 ⏭ Servers

Minecraft 26.2-snapshot-3 (snapshot) Released

βœ‡Minecraft
14 April 2026 om 13:30
26.2 Snapshot 3 (known as 26.2-snapshot-3 in the launcher) is the third snapshot for Java Edition 26.2, released on April 14, 2026, which adds sulfur spikes and fixes bugs. Full changelog: https://minecraft.wiki/Java_Edition_26.2-snapshot-3
  •  
  • ↗️
Ontvangen β€” 13 April 2026 ⏭ Servers

v4.0.0-beta.473

βœ‡Coolify
Door: andrasbacsai
13 April 2026 om 11:33

Fixes

  • Fixed the upgrade modal to show the correct target version and cleared stale upgrade notifications when the instance was already up to date. (#7774, fixes #6039, #8707)
  • Fixed user deletion cleanup so team-owned Git app sources were handled safely, while instance-wide sources were preserved for the root team. (#9435, fixes #8172)
  • Fixed dashboard homepage add buttons so they remained visible in light mode. (#9456, fixes #9454)
  • Fixed port mapping validation to accept protocol suffixes like /tcp, /udp, /sctp and IP-bound mappings. (#9503, fixes #9501, #9504)

Improvements

  • Updated phpseclib/phpseclib to 3.0.51. (#9500)
  • Updated axios to 1.15.0 for development dependencies. (#9515)
  • Updated axios to 1.15.0 in coolify-realtime. (#9516)

What's Changed (Github)

  • fix(ui): Initialize latestVersion in Upgrade component mount by @andrasbacsai in #7774
  • fix(user-deletion): safely clean up team-owned Git app sources by @andrasbacsai in #9435
  • fix(ui): dashboard homepage add buttons are invisible in light mode by @rosslh in #9456
  • fix(validation): allow protocol suffix and ip in port mappings (/tcp, /udp, /sctp) by @ShadowArcanist in #9503
  • build(deps): bump phpseclib/phpseclib from 3.0.50 to 3.0.51 by @dependabot[bot] in #9500
  • build(deps-dev): bump axios from 1.13.2 to 1.15.0 by @dependabot[bot] in #9515
  • build(deps): bump axios from 1.13.6 to 1.15.0 in /docker/coolify-realtime by @dependabot[bot] in #9516
  • v4.0.0-beta.473 by @andrasbacsai in #9521

New Contributors

Full Changelog: v4.0.0-beta.472...v4.0.0-beta.473

  •  
  • ↗️
Ontvangen β€” 9 April 2026 ⏭ Servers

Asterisk Release 23.3.0

βœ‡Asterisk
Door: asteriskteam
9 April 2026 om 18:37

The Asterisk Development Team would like to announce
the release of asterisk-23.3.0.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/23.3.0
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 23.3.0

This release resolves issues reported by the community
and would have not been possible without your participation.

Thank You!

Change Log for Release asterisk-23.3.0

Links:

Summary:

  • Commits: 50
  • Commit Authors: 21
  • Issues Resolved: 34
  • Security Advisories Resolved: 0

  •  
  • ↗️

Asterisk Release 22.9.0

βœ‡Asterisk
Door: asteriskteam
9 April 2026 om 18:24

The Asterisk Development Team would like to announce
the release of asterisk-22.9.0.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/22.9.0
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 22.9.0

This release resolves issues reported by the community
and would have not been possible without your participation.

Thank You!

Change Log for Release asterisk-22.9.0

Links:

Summary:

  • Commits: 50
  • Commit Authors: 21
  • Issues Resolved: 34
  • Security Advisories Resolved: 0

  •  
  • ↗️

Asterisk Release 20.19.0

βœ‡Asterisk
Door: asteriskteam
9 April 2026 om 18:13

The Asterisk Development Team would like to announce
the release of asterisk-20.19.0.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/20.19.0
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 20.19.0

This release resolves issues reported by the community
and would have not been possible without your participation.

Thank You!

Change Log for Release asterisk-20.19.0

Links:

Summary:

  • Commits: 50
  • Commit Authors: 21
  • Issues Resolved: 34
  • Security Advisories Resolved: 0

  •  
  • ↗️

Minecraft 26.2-snapshot-2 (snapshot) Released

βœ‡Minecraft
9 April 2026 om 14:26
26.2 Snapshot 2 (known as 26.2-snapshot-2 in the launcher) is the second snapshot for Java Edition 26.2, released on April 9, 2026, which fixes several major issues found in the previous snapshot. Full changelog: https://minecraft.wiki/Java_Edition_26.2-snapshot-2
  •  
  • ↗️

Minecraft 26.1.2 (stable) Released

βœ‡Minecraft
9 April 2026 om 12:12
26.1.2 is a hotfix for Java Edition released on April 9, 2026, which tweaks UI checkboxes and fixes an exploit. It is compatible with 26.1 and 26.1.1 servers. Full changelog: https://minecraft.wiki/Java_Edition_26.1.2
  •  
  • ↗️

v4.0.0-beta.472

βœ‡Coolify
Door: andrasbacsai
9 April 2026 om 12:19

What's Changed

Security & Fixes

  • Allow quoted arguments in custom Docker run options (#9481, fixes #9343)
  • Patched Alpine packages in helper, realtime, and development Docker images (#9437)
  • Bumped Alexandrie images to address upstream security advisory (#9434)

New Services & Templates

  • Added Grimmory one-click service, the successor to Booklore (#9109)
  • Comprehensive Supabase template update to latest versions (#8316)
  • Allow overriding GOTRUE_SITE_URL in Supabase for separate frontend domains (#9079, fixes #5581)
  • Added sensible CORS defaults to Directus templates (#9081, fixes #5024)
  • Updated Rivet template to v2.2.0 (#9378)
  • Updated Convex to current latest version (#9392)
  • Fixed LibreChat healthcheck and upgraded Meilisearch image (#9358)
  • Fixed n8n task-runners health check (#9309, fixes #9306)
  • Increased Nextcloud healthcheck interval to prevent worker exhaustion (#9440, fixes #9439)
  • Updated Nextcloud healthcheck endpoint to /status.php (#9470)
  • Fixed Netbird client volume path so settings persist across restarts (#9484)
  • Corrected Minecraft template category to games (#9387)
  • Corrected several template categories that were set incorrectly (#9449)

Improvements

  • Removed Algora bounty program references from community docs and templates (#9436)

What's Changed (Github)

  • fix(services): bump images of alexandrie to fix security issue by @Smaug6739 in #9434
  • feat(service): update Convex to current latest version by @sebous in #9392
  • fix(template): Minecraft was on wrong category by @Iisyourdad in #9387
  • feat(service): update Rivet to v2.2.0 by @yipfram in #9378
  • fix(service): fix librechat healthcheck and update dependencies by @GauthierPLM in #9358
  • fix(service): n8n task-runners health check fails by @frank-netkey in #9309
  • feat(service): add grimmory by @RickyWanga in #9109
  • fix(service): directus cors not applied in preflight requests by @xidik12 in #9081
  • feat(service): update Supabase to current latest versions by @Vadko in #8316
  • fix(service): allow overriding GOTRUE_SITE_URL in Supabase template by @xidik12 in #9079
  • fix(service): nextcloud workers exhaustion due to low interval healthcheck by @ShadowArcanist in #9440
  • fix(docker): add apk upgrade to helper, realtime, and development Dockerfiles by @andrasbacsai in #9437
  • chore(community): remove Algora bounty program references by @andrasbacsai in #9436
  • chore(service): update nextcloud healthcheck endpoint by @ShadowArcanist in #9470
  • fix(validation): allow quoted docker run options in custom config by @andrasbacsai in #9481
  • build(deps-dev): bump vite from 7.3.0 to 7.3.2 by @dependabot[bot] in #9457
  • fix(service): Several templates on wrong catagory. by @Iisyourdad in #9449
  • fix(service): netbird-client wrong volume path by @iamimmanuelraj in #9484
  • v4.0.0-beta.472 by @andrasbacsai in #9492

New Contributors

Full Changelog: v4.0.0-beta.471...v4.0.0-beta.472

  •  
  • ↗️

v4.0.0-beta.471

βœ‡Coolify
Door: andrasbacsai
9 April 2026 om 09:16

What's Changed

Security & Fixes

  • Harden model mass assignment protection across all models (#9282)
  • Scope server and project queries to current team (#9230)
  • Harden GetLogs component with locked properties and input validation (#9229)
  • Add validation and escaping for Docker network names (#9228)
  • Add URL validation for notification webhook fields (#9224)
  • Use server-side config for password reset URL generation (#9193)
  • Add input validation for install/build/start command fields (#9227)
  • Add input validation for resource limit fields (#9238)
  • Add IP validation for custom DNS servers input (#9239)
  • Add URL validation for proxy redirect input (#9241)
  • Add input validation for server advanced settings page (#9242)
  • Add input validation for sentinel configuration (#9243)
  • Add input validation for database backup timeout (#9245)
  • Add input validation for emails configuration (#9259)
  • Add input validation for database public port and proxy timeout
  • Add validation to block unsafe webhook URLs
  • Use random_int() for email change verification codes (#9226)
  • Move admin route into middleware group (#9225)
  • Enforce team-scoped project/env lookups in onboarding
  • Add input validation for port exposes and port mappings fields

New Services & Templates

  • Added ElectricSQL template (#8190)

Fixes

  • Fix intermittent pre-deployment command failures (#9165, fixes #9076)
  • Fix Grafana GF_SERVER_DOMAIN using FQDN instead of URL (#9080, fixes #5307)
  • Fix listmonk db config env typo (#9250)
  • Fix Langfuse by pinning ClickHouse version to avoid init errors
  • Fix cloning persistent volumes with missing uuid (#9290, fixes #9270)
  • Fix redirect value not persisting in setRedirect (#9279)
  • Fix cloud subscription notification links (#9296)
  • Fix slash branches in public repo URLs
  • Fix shared env vars resolving on wrong server
  • Fix database SSL/status state and clone writes
  • Fix auto-generate missing CA cert on SSL regeneration
  • Fix backup notification failures affecting backup status (fixes #9088)
  • Fix backup retention enforcement and stale execution cleanup
  • Fix password visibility toggle using Alpine state
  • Fix GitHub branch state when refreshing repositories

Improvements

  • Shared server environment variables (#7764)
  • Refresh repos on private GitHub app (#8621)
  • Support Docker image tags for preview deployments
  • Add preserve repository option to deployment API (#8371)
  • Implement exponential backoff for unreachable servers (#9184)
  • Improve scheduled task single view UX (#9266)
  • Add two-step confirmation to enable self-registration (#9277)
  • Add public port timeout configuration for databases
  • Make textarea monospace opt-in and improve multiline toggle

What's Changed (Github)

New Contributors

Full Changelog: v4.0.0-beta.470...v4.0.0-beta.471

  •  
  • ↗️
Ontvangen β€” 8 April 2026 ⏭ Servers
Ontvangen β€” 7 April 2026 ⏭ Servers

Minecraft 26.2-snapshot-1 (snapshot) Released

βœ‡Minecraft
7 April 2026 om 13:52
26.2-snapshot-1 (also known as 26.2 Snapshot 1) is the first snapshot for Java Edition 26.2, released on April 7, 2026, which adds the sulfur caves, sulfur cube, sulfur and cinnabar block sets, and an experimental Vulkan renderer. Full changelog: https://minecraft.wiki/Java_Edition_26.2-snapshot-1
  •  
  • ↗️
Ontvangen β€” 2 April 2026 ⏭ Servers

Asterisk Release 23.3.0-rc2

βœ‡Asterisk
Door: asteriskteam
2 April 2026 om 19:03

The Asterisk Development Team would like to announce
release candidate 2 of asterisk-23.3.0.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/23.3.0-rc2
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 23.3.0-rc2

This release resolves issues reported by the community
and would have not been possible without your participation.

Thank You!

Change Log for Release asterisk-23.3.0-rc2

Links:

Summary:

  • Commits: 2
  • Commit Authors: 2
  • Issues Resolved: 3
  • Security Advisories Resolved: 0

User Notes:

Upgrade Notes:

Developer Notes:

Commit Authors:

  • George Joseph: (1)
  • nappsoft: (1)

Issue and Commit Detail:

Closed Issues:

  • 1844: [bug]: cdrel_custom isn't respecting the default time format for CEL records
  • 1845: [bug]:res_cdrel_custom produces wrong float timestamps
  • 1852: [bug]: res_cdrel_custom: connection to the sqlite3 database closes from time to time

Commits By Author:

  • George Joseph (1):

    • res_cdrel_custom: Resolve several formatting issues.

  • nappsoft (1):

    • res_cdrel_custom: do not free config when no new config was loaded

Commit List:

  • res_cdrel_custom: do not free config when no new config was loaded
  • res_cdrel_custom: Resolve several formatting issues.

Commit Details:

res_cdrel_custom: do not free config when no new config was loaded

Author: nappsoft
Date: 2026-04-02

When the res_cdrel_custom modules is reloaded and the config has not been changed asterisk should not free the old config. Otherwise the connection to the database will be closed and no new connection will be opened.

Resolves: #1852

res_cdrel_custom: Resolve several formatting issues.

Author: George Joseph
Date: 2026-03-31

Several issues are resolved:

  • Internally, floats were used for timestamp values but this could result
    in wrapping so they've been changed to doubles.

  • Historically, the default CEL eventtime format is <seconds>.<microseconds>
    with <microseconds> always being 6 digits. This should have continued to be
    the case but res_cdrel_custom wasn't checking the dateformat setting in
    cel.conf and was defaulting to %F %T. res_cdrel_custom now gets the default
    date format from cel.conf, which will be whatever the dateformat parameter
    is set to or <seconds>.<microseconds> if not set.

  • The timeval field formatter for both CDR and CEL wasn't handling custom
    strftime format strings correctly. This is now fixed so you should be able
    to specifiy custom strftime format strings for the CEL eventtime and CDR
    start, answer and end fields. For example: eventtime(%FT%T%z).

Resolves: #1844
Resolves: #1845

  •  
  • ↗️

Asterisk Release 22.9.0-rc2

βœ‡Asterisk
Door: asteriskteam
2 April 2026 om 18:52

The Asterisk Development Team would like to announce
release candidate 2 of asterisk-22.9.0.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/22.9.0-rc2
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 22.9.0-rc2

This release resolves issues reported by the community
and would have not been possible without your participation.

Thank You!

Change Log for Release asterisk-22.9.0-rc2

Links:

Summary:

  • Commits: 2
  • Commit Authors: 2
  • Issues Resolved: 3
  • Security Advisories Resolved: 0

User Notes:

Upgrade Notes:

Developer Notes:

Commit Authors:

  • George Joseph: (1)
  • nappsoft: (1)

Issue and Commit Detail:

Closed Issues:

  • 1844: [bug]: cdrel_custom isn't respecting the default time format for CEL records
  • 1845: [bug]:res_cdrel_custom produces wrong float timestamps
  • 1852: [bug]: res_cdrel_custom: connection to the sqlite3 database closes from time to time

Commits By Author:

  • George Joseph (1):

    • res_cdrel_custom: Resolve several formatting issues.

  • nappsoft (1):

    • res_cdrel_custom: do not free config when no new config was loaded

Commit List:

  • res_cdrel_custom: do not free config when no new config was loaded
  • res_cdrel_custom: Resolve several formatting issues.

Commit Details:

res_cdrel_custom: do not free config when no new config was loaded

Author: nappsoft
Date: 2026-04-02

When the res_cdrel_custom modules is reloaded and the config has not been changed asterisk should not free the old config. Otherwise the connection to the database will be closed and no new connection will be opened.

Resolves: #1852

res_cdrel_custom: Resolve several formatting issues.

Author: George Joseph
Date: 2026-03-31

Several issues are resolved:

  • Internally, floats were used for timestamp values but this could result
    in wrapping so they've been changed to doubles.

  • Historically, the default CEL eventtime format is <seconds>.<microseconds>
    with <microseconds> always being 6 digits. This should have continued to be
    the case but res_cdrel_custom wasn't checking the dateformat setting in
    cel.conf and was defaulting to %F %T. res_cdrel_custom now gets the default
    date format from cel.conf, which will be whatever the dateformat parameter
    is set to or <seconds>.<microseconds> if not set.

  • The timeval field formatter for both CDR and CEL wasn't handling custom
    strftime format strings correctly. This is now fixed so you should be able
    to specifiy custom strftime format strings for the CEL eventtime and CDR
    start, answer and end fields. For example: eventtime(%FT%T%z).

Resolves: #1844
Resolves: #1845

  •  
  • ↗️

Asterisk Release 20.19.0-rc2

βœ‡Asterisk
Door: asteriskteam
2 April 2026 om 18:41

The Asterisk Development Team would like to announce
release candidate 2 of asterisk-20.19.0.

The release artifacts are available for immediate download at
https://github.com/asterisk/asterisk/releases/tag/20.19.0-rc2
and
https://downloads.asterisk.org/pub/telephony/asterisk

Repository: https://github.com/asterisk/asterisk
Tag: 20.19.0-rc2

This release resolves issues reported by the community
and would have not been possible without your participation.

Thank You!

Change Log for Release asterisk-20.19.0-rc2

Links:

Summary:

  • Commits: 2
  • Commit Authors: 2
  • Issues Resolved: 3
  • Security Advisories Resolved: 0

User Notes:

Upgrade Notes:

Developer Notes:

Commit Authors:

  • George Joseph: (1)
  • nappsoft: (1)

Issue and Commit Detail:

Closed Issues:

  • 1844: [bug]: cdrel_custom isn't respecting the default time format for CEL records
  • 1845: [bug]:res_cdrel_custom produces wrong float timestamps
  • 1852: [bug]: res_cdrel_custom: connection to the sqlite3 database closes from time to time

Commits By Author:

  • George Joseph (1):

    • res_cdrel_custom: Resolve several formatting issues.

  • nappsoft (1):

    • res_cdrel_custom: do not free config when no new config was loaded

Commit List:

  • res_cdrel_custom: do not free config when no new config was loaded
  • res_cdrel_custom: Resolve several formatting issues.

Commit Details:

res_cdrel_custom: do not free config when no new config was loaded

Author: nappsoft
Date: 2026-04-02

When the res_cdrel_custom modules is reloaded and the config has not been changed asterisk should not free the old config. Otherwise the connection to the database will be closed and no new connection will be opened.

Resolves: #1852

res_cdrel_custom: Resolve several formatting issues.

Author: George Joseph
Date: 2026-03-31

Several issues are resolved:

  • Internally, floats were used for timestamp values but this could result
    in wrapping so they've been changed to doubles.

  • Historically, the default CEL eventtime format is <seconds>.<microseconds>
    with <microseconds> always being 6 digits. This should have continued to be
    the case but res_cdrel_custom wasn't checking the dateformat setting in
    cel.conf and was defaulting to %F %T. res_cdrel_custom now gets the default
    date format from cel.conf, which will be whatever the dateformat parameter
    is set to or <seconds>.<microseconds> if not set.

  • The timeval field formatter for both CDR and CEL wasn't handling custom
    strftime format strings correctly. This is now fixed so you should be able
    to specifiy custom strftime format strings for the CEL eventtime and CDR
    start, answer and end fields. For example: eventtime(%FT%T%z).

Resolves: #1844
Resolves: #1845

  •  
  • ↗️
Ontvangen β€” 1 April 2026 ⏭ Servers

Minecraft 26w14a (snapshot) Released

βœ‡Minecraft
1 April 2026 om 14:13
26w14a, supposedly the first and only snapshot for the "Herdcraft Update", is an April Fools' Day joke snapshot released on April 1, 2026. Similar to 22w13oneBlockAtATime, it disables many inventory features. Instead, the player can command "living blocks" using various tools in their hotbar. The blocks act as mobs, meaning they can be hurt, moved, and attacked. Full changelog: https://minecraft.wiki/Java_Edition_26w14a
  •  
  • ↗️
❌