Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
chore(helm): update image ghcr.io/ajnart/homarr 0.15.7 → 0.15.10 (#30120
) This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/ajnart/homarr](https://redirect.github.com/ajnart/homarr) | patch | `a716c56` -> `3ddd7a3` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. Add the preset `:preserveSemverRanges` to your config if you don't want to pin your dependencies. --- ### Release Notes <details> <summary>ajnart/homarr (ghcr.io/ajnart/homarr)</summary> ### [`v0.15.10`](https://redirect.github.com/ajnart/homarr/releases/tag/v0.15.10) [Compare Source](https://redirect.github.com/ajnart/homarr/compare/v0.15.9...v0.15.10) > \[!NOTE]\ > We've been working actively on working towards version 1.0 which will include many improvements to performance, security and the overall look & feel of Homarr. It will greatly overhaul the technical architecture of Homarr. This work is done by volunteers. Please consider supporting our work via donations at https://opencollective.com/homarr > > We just started a **public beta**. Find more informations [here](https://deploy-preview-113--homarr-docs.netlify.app/blog/2024/12/17/open-beta-1.0) #### 1.0 Migration page From this release on you can find in the Managment section a new site to export your boards, integrations and users for 1.0. You can find them under `Tools` -> `Migrate to 1.0`  Find more informations about the process [here](https://deploy-preview-113--homarr-docs.netlify.app/docs/getting-started/after-the-installation#importing-a-zip-from-version-before-100) #### What's Changed - feat: add 1.0 migration page by [@​Meierschlumpf](https://redirect.github.com/Meierschlumpf) in [https://github.com/ajnart/homarr/pull/2224](https://redirect.github.com/ajnart/homarr/pull/2224) - fix: unable to delete boards with capitalised name 'Default' by [@​tancak](https://redirect.github.com/tancak) in [https://github.com/ajnart/homarr/pull/2223](https://redirect.github.com/ajnart/homarr/pull/2223) - New Crowdin updates by [@​ajnart](https://redirect.github.com/ajnart) in [https://github.com/ajnart/homarr/pull/2190](https://redirect.github.com/ajnart/homarr/pull/2190) - New Crowdin updates by [@​ajnart](https://redirect.github.com/ajnart) in [https://github.com/ajnart/homarr/pull/2225](https://redirect.github.com/ajnart/homarr/pull/2225) **Full Changelog**: ajnart/homarr@v0.15.9...v0.15.10 ### [`v0.15.9`](https://redirect.github.com/ajnart/homarr/releases/tag/v0.15.9) [Compare Source](https://redirect.github.com/ajnart/homarr/compare/v0.15.8...v0.15.9) > \[!NOTE]\ > We've been working actively on working towards version 1.0 which will include many improvements to performance, security and the overall look & feel of Homarr. It will greatly overhaul the technical architecture of Homarr. This work is done by volunteers. Please consider supporting our work via donations at https://opencollective.com/homarr ### Fix iframe regression in 0.15.8 We introduced a regression in the iframe widget in the version `0.15.8`. It caused all embeds, that used JavaScript, to break. We have updated the code and implemented a fix that JavaScript is executed again. Starting from 1.0, we will use automated testing to avoid such regressions in the future. Sorry for the inconvenience. **Full Changelog**: ajnart/homarr@v0.15.8...v0.15.9 ### [`v0.15.8`](https://redirect.github.com/ajnart/homarr/releases/tag/v0.15.8) [Compare Source](https://redirect.github.com/ajnart/homarr/compare/v0.15.7...v0.15.8) > \[!NOTE]\ > We've been working actively on working torwards version 1.0 which will include many improvements to performance, security and the overall look & feel of Homarr. It will greatly overhaul the technical architecture of Homarr. This work is done by volunteers. Please consider supporting our work via donations at https://opencollective.com/homarr #### 🔒 Security patch v0.15.8 🔒 > \[!CAUTION]\ > Please update your Homarr instance to this new version. Versions before **<0.15.8** contain **two vulnerabilities**: > > 1. Allow an admin user to add arbitrary JavaScript code to other users board (aka. XSS or cross site-scripting). We implemented a fix where JavaScript is no longer being executed. > 2. Any logged in user to create a file on your filesystem (or inside your docker container). This shouldn't be dangerous when running Docker but could lead to dangerous situations if you run Homarr bare-metal using `root`. At this time, full RCE doesn't seem possible but creating files is possible. #### Fix broken avatars in Jellyseer For some users avatars were broken in Jellyseerr. Thanks to [@​TyxTang](https://redirect.github.com/TyxTang) for fixing it #### Fix broken translations in the DNS hole widget Some timer modal for dns-hole translations did not work. Thanks to [@​marius-arch](https://redirect.github.com/marius-arch) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44Mi45IiwidXBkYXRlZEluVmVyIjoiMzkuODIuOSIsInRhcmdldEJyYW5jaCI6Im1hc3RlciIsImxhYmVscyI6WyJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL3BhdGNoIl19-->
- Loading branch information
1 parent
d5c97e4
commit be4e0d1