New features

• add removeOrphans option to project deploy/redeploy (#2785 by @khanhx)
• prune idle volume browser helper containers (#2767 by @Zgrill2)

Bug fixes

• slog-go nil pointer dereference (#2781 by @lohrbini)
• dashboard card buttons paddings overlaps(c1a0bda by @kmendell)
• disable schema display on text selection(058f062 by @kmendell)
• clear / check for default jwt secret(ae914bd by @kmendell)

Dependencies

• bump date-fns from 4.2.1 to 4.3.0 (#2745 by @dependabot[bot])
• bump @sveltejs/kit from 2.60.1 to 2.61.1 (#2748 by @dependabot[bot])
• bump docker/login-action from 4.1.0 to 4.2.0 (#2739 by @dependabot[bot])
• bump eps1lon/actions-label-merge-conflict from 3 to 3.0.3 (#2743 by @dependabot[bot])
• bump depot/build-push-action from 1.17.0 to 1.18.0 (#2738 by @dependabot[bot])
• bump golangci/golangci-lint-action from 9.2.0 to 9.2.1 (#2740 by @dependabot[bot])
• bump github/codeql-action from 4.35.5 to 4.36.0 (#2741 by @dependabot[bot])
• bump github.com/nicholas-fedor/shoutrrr from 0.15.0 to 0.15.1 (#2747 by @dependabot[bot])
• bump @tanstack/svelte-query from 6.1.30 to 6.1.33 (#2744 by @dependabot[bot])
• bump react-email from 6.2.0 to 6.3.3 (#2749 by @dependabot[bot])
• bump react and @types/react (#2821 by @dependabot[bot])
• bump svelte from 5.55.9 to 5.56.1 (#2798 by @dependabot[bot])
• bump react-email from 6.3.3 to 6.5.0 (#2806 by @dependabot[bot])
• bump prettier-plugin-svelte from 4.0.1 to 4.1.0 (#2811 by @dependabot[bot])
• bump react-dom from 19.2.6 to 19.2.7 (#2799 by @dependabot[bot])
• bump @xyflow/svelte from 1.5.2 to 1.6.0 (#2809 by @dependabot[bot])
• bump eps1lon/actions-label-merge-conflict from 3.0.3 to 3.1.0 (#2801 by @dependabot[bot])
• bump date-fns from 4.3.0 to 4.4.0 (#2810 by @dependabot[bot])
• bump github/codeql-action from 4.36.0 to 4.36.1 (#2800 by @dependabot[bot])
• bump to go 1.26.4(31efe1a by @kmendell)

Full Changelog: v1.19.5...v1.20.0

1.20.0

1.20.0

1.20.0

Bug fixes

• improve environment proxy error handling (#2649 by @kmendell)
• align local BuildKit load/push exporter (#2650 by @kmendell)
• PUID and PGID being set on project subfolder on every startup (#2656 by @kmendell)
• system upgrade doesnt support non unix socket docker hosts (#2651 by @kmendell)
• resizing window discards edits in compose editors (#2719 by @kmendell)
• only validate project name if it has changed (#2720 by @kmendell)
• make Arcane reverse-proxy aware to resolve connection issues (#2717 by @kmendell)
• tolerate undefined typed env vars in GitOps sync (#2721 by @kmendell)
• show all container ip's in list view (#2726 by @kmendell)

Dependencies

• bump pnpm to v11.1.3(fb8f2f5 by @kmendell)
• bump devalue to 5.8.1(2ed772d by @kmendell)
• bump ws to 8.20.1(47c4f81 by @kmendell)
• bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in /backend in the go_modules group across 1 directory (#2654 by @dependabot[bot])
• bump @sveltejs/kit from 2.58.0 to 2.60.1 in the npm_and_yarn group across 1 directory (#2662 by @dependabot[bot])
• bump github.com/containerd/containerd/v2 from 2.3.0 to 2.3.1 in /backend in the go_modules group across 1 directory (#2663 by @dependabot[bot])
• bump golang.org/x/crypto from 0.51.0 to 0.52.0 in /backend (#2664 by @dependabot[bot])
• bump github.com/docker/cli from 29.5.0+incompatible to 29.5.2+incompatible in /backend (#2666 by @dependabot[bot])
• bump github.com/compose-spec/compose-go/v2 from 2.10.2 to 2.11.0 in /backend (#2665 by @dependabot[bot])
• bump date-fns from 4.1.0 to 4.2.1 (#2675 by @dependabot[bot])
• bump github.com/docker/compose/v5 from 5.1.3 to 5.1.4 in /backend (#2670 by @dependabot[bot])
• bump go.podman.io/image/v5 from 5.39.2 to 5.40.0 in /backend (#2667 by @dependabot[bot])
• bump github.com/compose-spec/compose-go/v2 from 2.10.2 to 2.11.0 in /types (#2668 by @dependabot[bot])
• bump github.com/getarcaneapp/arcane/types from 1.19.1 to 1.19.4 in /cli (#2669 by @dependabot[bot])
• bump marked from 18.0.3 to 18.0.4 (#2679 by @dependabot[bot])
• bump svelte from 5.55.7 to 5.55.9 (#2672 by @dependabot[bot])
• bump @codemirror/autocomplete from 6.20.1 to 6.20.2 (#2673 by @dependabot[bot])
• bump @codemirror/legacy-modes from 6.5.2 to 6.5.3 (#2671 by @dependabot[bot])
• bump pnpm to v11.2.2(74f7ec4 by @kmendell)
• bump react and @types/react (#2682 by @dependabot[bot])
• bump frontend deps(7fe4f34 by @kmendell)
• bump prettier-plugin-svelte from 3.5.2 to 4.0.1(a2fbf3e by @kmendell)
• bump github.com/aws/aws-sdk-go-v2/credentials from 1.19.16 to 1.19.17 in /backend (#2705 by @dependabot[bot])
• bump golang.org/x/net from 0.54.0 to 0.55.0 in /backend (#2696 by @dependabot[bot])
• bump golang from 1.26-trixie to 1.26.3-trixie in /docker (#2708 by @dependabot[bot])
• bump github.com/aws/aws-sdk-go-v2/config from 1.32.17 to 1.32.18 in /backend (#2700 by @dependabot[bot])
• bump golangci/golangci-lint-action from 9 to 9.2.0 (#2714 by @dependabot[bot])
• bump github/codeql-action from 4 to 4.35.5 (#2713 by @dependabot[bot])
• bump @uiw/codemirror-themes from 4.25.9 to 4.25.10 (#2712 by @dependabot[bot])
• bump depot/build-push-action from 1 to 1.17.0 (#2716 by @dependabot[bot])
• bump docker/login-action from 4 to 4.1.0 (#2715 by @dependabot[bot])
• bump react-email from 6.1.1 to 6.2.0 (#2711 by @dependabot[bot])

Other

• run workflows on breaking branches(993d27f by @kmendell)

Full Changelog: v1.19.4...v1.19.5

1.19.5

1.19.5

1.19.5

Bug fixes

• block unsafe compose include file reads (#2630 by @kmendell)
• add missing gRPC/ws tunnel commands (#2636 by @kmendell)
• unable to use templates due to 'not found' error (#2634 by @kmendell)
• retry rate limited update checks (#2639 by @kmendell)
• prevent projects from disappearing when projects folder is unreadable (#2641 by @kmendell)
• release notes not populated for manager instance (#2643 by @kmendell)

Other

• publish manager and agent image tags (#2645 by @kmendell)
• use trivy-db mirrors from arcane-tools (#2646 by @kmendell)

Full Changelog: v1.19.3...v1.19.4

1.19.4

1.19.4

1.19.4

Bug fixes

• remove gzip middleware from agent endpoints (#2627 by @kmendell)

Full Changelog: v1.19.2...v1.19.3

1.19.3

1.19.3

1.19.3

Bug fixes

• remove intel-gpu-tools from docker images since its has no effect currently(fea78a5 by @kmendell)
• allow hiding default networks on typology view (#2594 by @kmendell)
• refresh project detail runtime status (#2602 by @kmendell)
• allow LOGIN email authentication type (#2603 by @kmendell)
• keep session across backend version bumps (#2607 by @kmendell)
• missing store prefix on test connection form(5f1645f by @kmendell)
• swarm engine not respecting cpu limits (#2617 by @kmendell)
• only perform auto pairing on edge edgent not direct (#2622 by @kmendell)
• container cache leak from docker subscription (#2624 by @kmendell)

Performance improvements

• increase loading times of project list view (#2596 by @kmendell)

Dependencies

• bump to go 1.26.3(8e819fe by @kmendell)
• bump all go deps(6817e70 by @kmendell)
• bump the npm_and_yarn group across 1 directory with 2 updates (#2600 by @dependabot[bot])
• bump svelte from 5.55.5 to 5.55.7 in the npm_and_yarn group across 1 directory (#2601 by @dependabot[bot])
• bump github.com/danielgtaylor/huma/v2 from 2.37.3 to 2.38.0 in /backend (#2612 by @dependabot[bot])
• bump github.com/docker/cli from 29.4.3+incompatible to 29.5.0+incompatible in /backend (#2613 by @dependabot[bot])
• bump google.golang.org/grpc from 1.81.0 to 1.81.1 in /backend (#2610 by @dependabot[bot])
• bump prettier-plugin-svelte from 3.5.1 to 3.5.2 (#2618 by @dependabot[bot])

Other

• create admin role middleware for each endpoint (#2593 by @kmendell)
• consolidate digest and image updater logic (#2623 by @kmendell)

Full Changelog: v1.19.1...v1.19.2

1.19.2

1.19.2

1.19.2

Bug fixes

• show archived switch overlapping projects search bar(d02a05c by @kmendell)
• show correct environments types in filter (#2578 by @kmendell)
• build history not being updated after builds are completed (#2586 by @kmendell)
• incorrect backend arg used for trivy on 32bit hosts (#2587 by @kmendell)
• updater api authorization checks (#2588 by @kmendell)
• deny non hmac jwt requests(d568d03 by @kmendell)
• add rate limiting to webhooks and auth endpoints, and add caching to user session (#2591 by @kmendell)

Other

• add mobile device custom redirect url for oidc (#2580 by @kmendell)
• migrate off gin to use echo for backend router (#2582 by @kmendell)
• store user sessions in database with proper jti (#2590 by @kmendell)

Full Changelog: v1.19.0...v1.19.1

1.19.1

1.19.1

1.19.1

New features

• show pull usage and limits (if applicable) (#2458 by @kmendell)
• automated docker api re-negotiation (#2471 by @kmendell)
• implement node label management with system and user label separation (#2479 by @SplinterHead)
• allow mTLS auth for edge agents (#2116 by @kmendell)
• implement multi-file swarm git sync and host path mapping (#2457 by @SplinterHead)
• ability to archive projects (#2519 by @kmendell)
• redesigned updater center for arcane self updates (#2558 by @kmendell)

CLI - New features

• arcane-cli update channels and self-update (#2517 by @kmendell)

Bug fixes

• git sync file size limitations not being respected (#2427 by @kmendell)
• default secret and config UID/GID to "0" to prevent parsing errors (#2422 by @SplinterHead)
• resolve project status using effective compose project name (#2198 by @GiulioSavini)
• block compose self-redeploy when arcane manages itself (#2404 by @GiulioSavini)
• scope named volume sources to stack in service mounts (#2430 by @GiulioSavini)
• card overview headers missaligned on layout(5fd35e4 by @kmendell)
• include files not created with new projects (#2463 by @kmendell)
• tables are laggy when lots of rows are rendered (#2468 by @kmendell)
• buildkit not using the image exporter (#2469 by @kmendell)
• swarm scale mode and replicas fixes (#2470 by @kmendell)
• prevent slog-gin panic on tunneled requests (#2467 by @lohrbini)
• don't clear real image records when marking ref-aliases up to date (#2474 by @GiulioSavini)
• restrict git repository management to admins and block credential reuse on URL changes (#2504 by @kmendell)
• show loading state immediately on swarm service actions (#2475 by @GiulioSavini)
• allow mtls when tls is not managed by arcane (#2503 by @kmendell)
• skip excluded containers when collecting images for auto-update pull (#2473 by @GiulioSavini)
• remove double verification of mTLS certificates (#2505 by @kmendell)
• image update checks fail on mobile due to incorrect id (#2506 by @kmendell)
• add registry.gitlab.com to trustedAuthDelegations (#2507 by @kmendell)
• accent color allows non color values to be saved (#2513 by @kmendell)
• handle directory-sync file paths that Docker previously created as directories (#2508 by @kmendell)
• improve login form autofill compatibility (#2514 by @MikeO7)
• use in-memory trivy DB backend on 32-bit architectures to prevent mmap allocation failure (#2529 by @kmendell)
• allow force removing of images (#2530 by @kmendell)
• set docker config directory to avoid errors around config.json (#2557 by @kmendell)
• remove double loading of env overides and settings, use in memory cache instead (#2562 by @kmendell)
• show compose-labeled image updates in project updates (#2563 by @kmendell)
• gotify token decryption missing from auto heal and prune notifications(e28c4a4 by @kmendell)
• regenerate apikey dialog shows behind sheet(b7a8ec7 by @kmendell)
• always use dockerhub credentials if available (#2567 by @kmendell)
• agent api token fallbacks and guards (#2568 by @kmendell)

CLI - Bug fixes

• use correct checksum for updater(d645d4d by @kmendell)
• replace the arcane-cli located on PATH during update(a1e0c4a by @kmendell)

Dependencies

• bump github.com/moby/moby/client from 0.4.0 to 0.4.1 in /types (#2441 by @dependabot[bot])
• bump github.com/docker/cli from 29.4.0+incompatible to 29.4.1+incompatible in /backend (#2443 by @dependabot[bot])
• bump github.com/getarcaneapp/arcane/types from 1.17.4 to 1.18.1 in /cli (#2444 by @dependabot[bot])
• bump github.com/moby/moby/api from 1.54.1 to 1.54.2 in /backend (#2445 by @dependabot[bot])
• bump prettier from 3.8.2 to 3.8.3 (#2449 by @dependabot[bot])
• migrate to pnpm v11.0.0(4a94c5c by @kmendell)
• upgrade frontend dependencies (#2461 by @kmendell)
• bump github.com/docker/cli from 29.4.1+incompatible to 29.4.2+incompatible in /backend (#2490 by @dependabot[bot])
• bump github.com/samber/slog-gin from 1.21.0 to 1.21.1 in /backend (#2481 by @dependabot[bot])
• bump github.com/aws/aws-sdk-go-v2/service/ecr from 1.57.1 to 1.57.2 in /backend (#2489 by @dependabot[bot])
• bump @tanstack/svelte-query from 6.1.24 to 6.1.26 (#2485 by @dependabot[bot])
• bump github.com/aws/aws-sdk-go-v2/credentials from 1.19.15 to 1.19.16 in /backend (#2487 by @dependabot[bot])
• bump ghcr.io/devcontainers/features/node from 1.7.1 to 2.0.0 (#2480 by @dependabot[bot])
• bump github.com/fsnotify/fsnotify from 1.9.0 to 1.10.1 in /backend (#2482 by @dependabot[bot])
• bump pnpm to 11.0.6(0e47b40 by @kmendell)
• bump github.com/aws/aws-sdk-go-v2/config from 1.32.16 to 1.32.17 in /backend (#2536 by @dependabot[bot])
• bump github.com/shirou/gopsutil/v4 from 4.26.3 to 4.26.4 in /backend (#2542 by @dependabot[bot])
• bump golang.org/x/text from 0.36.0 to 0.37.0 in /backend (#2540 by @dependabot[bot])
• bump github.com/charmbracelet/fang from 0.4.4 to 1.0.0 in /cli (#2532 by @dependabot[bot])
• bump @codemirror/view from 6.41.1 to 6.42.1 (#2535 by @dependabot[bot])
• bump golang.org/x/time from 0.14.0 to 0.15.0 in /backend (#2538 by @dependabot[bot])
• bump react-dom from 19.2.5 to 19.2.6 (#2541 by @dependabot[bot])
• bump github.com/in-toto/in-toto-golang from 0.10.0 to 0.11.0 in /backend in the go_modules group across 1 directory (#2544 by @dependabot[bot])
• bump sigstore/cosign-installer from 4.1.1 to 4.1.2 (#2533 by @dependabot[bot])
• bump react-email from 6.0.1 to 6.1.1 (#2537 by @dependabot[bot])
• bump golang.org/x/net from 0.53.0 to 0.54.0 in /backend (#2539 by @dependabot[bot])
• bump pnpm to v11.0.9(5f43b7e by @kmendell)
• remove react-email/preview-server(685f9c3 by @kmendell)
• bump github.com/nicholas-fedor/shoutrrr from 0.14.3 to 0.15.0 in /backend (#2547 by @dependabot[bot])
• bump github.com/docker/cli from 29.4.2+incompatible to 29.4.3+incompatible in /backend (#2548 by @dependabot[bot])
• bump golang.org/x/mod from 0.35.0 to 0.36.0 in /backend (#2550 by @dependabot[bot])
• bump google.golang.org/grpc from 1.80.0 to 1.81.0 in /backend (#2551 by @dependabot[bot])
• bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0 in /backend (#2553 by @dependabot[bot])
• bump @tanstack/svelte-query from 6.1.26 to 6.1.28 (#2549 by @dependabot[bot])

Other

• make login screen padding more centered (#2429 by @kmendell)
• sidebar grouping and edge cases (#2188 by @cabaucom376)
• consolidate helpers and dedupe boilerplate code (#2437 by @kmendell)
• split ws_handler and skip pagination counts when not needed (#2440 by @kmendell)
• cleanup frontend with more universal components (#2459 by @kmendell)
• frontend ui cleanup and fixes (#2515 by @kmendell)
• use charm logging instead of logrus for arcane-cli (#2518 by @kmendell)
• move job bootstrap into job service (#2523 by @kmendell)
• streamline remote environment logic (#2524 by @kmendell)

Full Changelog: v1.18.1...v1.19.0

1.19.0

1.19.0

1.19.0

Bug fixes

• validation failed when creating git sync(d7a8bc1 by @kmendell)

Full Changelog: v1.18.0...v1.18.1

1.18.1