Normale weergave

Ontvangen — 11 Maart 2026 Selfhosted

fix shares in ftp/sftp

✇Copyparty
Door: 9001
23 Maart 2026 om 04:55

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2026-03-08)

⚠️ ATTN: this release fixes an ftp/sftp issue with shares

  • GHSA-67rw-2x62-mqqm: when a share is created for just one or more files inside a folder, it was possible to use FTP or SFTP to access the other files inside that folder by guessing the filenames
    • so ignore this issue if you did not enable ftp or sftp in the server config
  • it was not possible to descend into subdirectories in this manner; only the sibling files were accessible
  • NOTE: this does NOT affect filekeys; this is specifically regarding the shr global-option
  • password-protected shares were not affected through SFTP, only FTP

this release also fixes GHSA-rcp6-88mm-9vgf but that one is nothing to worry about

recent important news

🧪 new features

  • features? in this econonmy?? ain't nobody got time for that

🩹 bugfixes

🌠 fun facts

⚠️ not the latest version!

  •  
  • ↗️

v11.16.1

✇Directus
Door: github-actions[bot]
10 Maart 2026 om 23:22

✨ New Features & Improvements

  • @directus/system-data
  • @directus/ai

🐛 Bug Fixes & Optimizations

📦 Published Versions

  • @directus/app@15.5.1
  • @directus/api@34.0.1
  • @directus/ai@1.3.0
  • @directus/composables@11.2.15
  • create-directus-extension@11.0.31
  • @directus/env@5.6.1
  • @directus/extensions@3.0.21
  • @directus/extensions-registry@3.0.21
  • @directus/extensions-sdk@17.0.11
  • @directus/memory@3.1.4
  • @directus/pressure@3.0.19
  • @directus/schema-builder@0.0.16
  • @directus/storage-driver-azure@12.0.19
  • @directus/storage-driver-cloudinary@12.0.19
  • @directus/storage-driver-gcs@12.0.19
  • @directus/storage-driver-s3@12.1.5
  • @directus/storage-driver-supabase@3.0.19
  • @directus/system-data@4.3.0
  • @directus/themes@1.2.6
  • @directus/types@14.3.1
  • @directus/utils@13.3.1
  • @directus/validation@2.0.19

  •  
  • ↗️
Ontvangen — 8 Maart 2026 Selfhosted

what? nohtml is evolving!

✇Copyparty
Door: 9001
11 Maart 2026 om 02:26

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2026-03-08)

⚠️ ATTN: this release fixes a vulnerability

GHSA-m6hv-x64c-27mm the nohtml volflag did not prevent javascript inside SVG images from executing -- a malicious user with write-access could upload an SVG file which would execute as javascript when someone opens it 1c9f894

recent important news

🧪 new features

  • version-checker (thx @icxes!) c6965f0
    • default-disabled; you must choose a URL to grab security advisories from to enable it
    • periodically checks the security advisories and shows a warning in the controlpanel if you're running a vulnerable version
    • can optionally panic and shutdown the server if you prefer that
    • man, the timing on this though... absolute cinema

🩹 bugfixes

🔧 other changes

  • #1316 Chinese translation got a huge makeover (thx @satgo1546 and @lxdlam!) b015274
  • #1324 better rclone advice on the connect-page 8941701
  • static website resources, previously served from /.cpr/ have moved to /.cpr/w/ for easier configuration of allowlists in reverseproxies and authentication middlewares 753ff54

🌠 fun facts

  • according to the SVG spec, images being able to execute javascript is a feature and intentional behavior... what a concept!

⚠️ not the latest version!

  •  
  • ↗️

Part-DB 2.9.0

✇Part-DB
Door: jbtronics
7 Maart 2026 om 23:33

Part-DB 2.9.0

Warning

After upgrade, you need to run php bin/console doctrine:migrations:migrate (or equivalent) as webserver user after upgrade.. If you are running a docker container, use sudo docker exec --user=www-data partdb php bin/console doctrine:migrations:migrate, or sudo -E inside the docker container, to ensure that the migrations are applied to the correct database.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New feautures

  • Sidebar trees keep track of page navigations. If you open a certain category, the treenode will be hightlighted
  • Show a "Show password" toggle on all password inputs, including login form
  • Made form fields wider on large monitors, to remove useless whitespace
  • Reset opcache after update manager update (thanks @Sebbeben, PR #1288)
  • Allow to create manual backups and download them from the WebUI (thanks @Sebbeben, PR #1255)
  • Added user_barcode_filter to API (thanks @MayNiklas, PR #1280)
  • Show manufacturing status in project BOM table (thanks @mkne, #1289)
  • Create a part lot with quantity, user barcode and order number based on digikey, lcsc or mouser barcode, to reduce amount of manual input

Bug fixes

  • Do not scroll sidebar to top, when clicking a tree node
  • Fixed description field on KiCAD 9.0.5 and 9.0.6 (#1289)
  • Generate correct url for part lots barcode content label placeholders (#1268)
  • Correctly import files, where only children elements are specified and no parent field (#1272)
  • Clear the input after selecting an option in tomselect (#1264)

Miscellaneous

  • Updated dependencies

Full Changelog: v2.8.1...v2.9.0

  •  
  • ↗️
Ontvangen — 5 Maart 2026 Selfhosted

Version 2.8.1

✇Part-DB
Door: jbtronics
5 Maart 2026 om 00:29

Part-DB 2.8.1

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Bug fixes

  • Security hardening for some endpoints
  • Fixed minor unauthorized information leackage in IPN generation endpoint (#1283)
  • Fixed problem with creating digikey parts from barcode when it contained a CREF (#1283)
  • Use cache:pool:clear --all for more thorough cache clearing in update process
  • Moved settings cache to cache.system adapter, to ensure its cleared on cache:clear (prevents #1279)
  • Fixed problem that flash messages were not shown in admin pages

Miscellaneous

  • Updated dependencies
  • Updated kicad library files

Full Changelog: v2.8.0...v2.8.1

  •  
  • ↗️

v11.16.0

✇Directus
Door: github-actions[bot]
6 Maart 2026 om 14:54

⚠️ Potential Breaking Changes

Added support for a global draft version that is automatically available for all items when versioning is enabled (#26772) Low Risk
Backward Compatibility: If you have an existing version with the key draft and a custom name other than “Draft”, the display name will be standardized to “Draft” (i.e. transformed) to support the new global versioning feature. The version content and functionality remain unchanged.

Added field permission and version access checks to Visual Editor (#26772) Low Risk
The field access checks require an update of the @directus/visual-editing library to v2.0.0.

Fixed password reset sending emails to external auth provider users (#26627) Low Risk
requestPasswordReset now throws a Forbidden error for external auth provider users.

✨ New Features & Improvements

  • @directus/app
    • Added support for a global draft version that is automatically available for all items when versioning is enabled (#26772 by @formfcw)
    • Persisted table column widths to localStorage (#26767 by @HZooly)
    • Implemented RBAC for deployment module (#26683 by @gaetansenn)
    • Added field permission and version access checks to Visual Editor (#26772 by @formfcw)
    • Added image and PDF upload support to Directus AI Assistant with a provider adapter pattern for 3 major providers (#26722 by @bryantgillespie)
      (OpenAI, Anthropic, Gemini).
    • Added version support for visual editing in live preview (#26772 by @formfcw)
    • Supported provider webhooks for deployment real-time updates (#26683 by @gaetansenn)
    • Added version support to Visual Editor (#26772 by @formfcw)
  • @directus/api
    • Implemented RBAC for deployment module (#26683 by @gaetansenn)
    • Added lower_case_table_names support for mysql (#26736 by @licitdev)
    • Added image and PDF upload support to Directus AI Assistant with a provider adapter pattern for 3 major providers (#26722 by @bryantgillespie)
      (OpenAI, Anthropic, Gemini).
    • Supported provider webhooks for deployment real-time updates (#26683 by @gaetansenn)
    • Added JSON field selection support (#26500 by @br41nslug)
  • @directus/system-data
  • @directus/types
  • @directus/sdk
  • @directus/ai
    • Added image and PDF upload support to Directus AI Assistant with a provider adapter pattern for 3 major providers (#26722 by @bryantgillespie)
      (OpenAI, Anthropic, Gemini).
  • @directus/utils
    • Added image and PDF upload support to Directus AI Assistant with a provider adapter pattern for 3 major providers (#26722 by @bryantgillespie)
      (OpenAI, Anthropic, Gemini).
    • Added JSON field selection support (#26500 by @br41nslug)
  • @directus/constants
  • @directus/env

🐛 Bug Fixes & Optimizations

  • @directus/app
    • Fixed v-select group click handler to respect item-level selectable property (#26650 by @alvarosabu)
    • Fixed license modal is not responsive on mobile screens (#26758 by @powerseed)
    • Fixed unsaved changes dialog showing collaborative variant when not in a collaborative session (#26713 by @formfcw)
    • Updated vue-split-panel dependency (#26709 by @HZooly)
    • Fixed datetime picker not closing after selecting a date (#26719 by @alvarosabu)
    • Added some missing translation keys for directus_settings and directus_roles. (#26744 by @powerseed)
    • Upgraded reka-ui to 2.8.2 for timefield two-digit hour fix (#26724 by @alvarosabu)
    • Fixed password reset sending emails to external auth provider users (#26627 by @dstockton)
    • Enabled “Navigate to Item” button for non-editable relational fields (#26711 by @HZooly)
    • Fixed auto-refresh on mobile by preserving sidebar state via Teleport (#26731 by @HZooly)
    • Fixed an issue where duplicated fields kept validation rules referencing the original field name. (#26602 by @vizzv)
    • Fixed drawer not scrolling to top when validation errors occur (#26741 by @robluton)
    • Fixed reset confirm state after flow error (#26803 by @HZooly)
    • Fixed performance degradation when editing forms with large GeoJSON geometry fields by using selective shallow cloning for geometry values. (#26560 by @alvarosabu)
    • Fixed extra tab stop in AI assistant header caused by a focusable VIcon inside VButton. (#26796 by @Mugesh13102001)
    • Guarded nav-bar and sidebar size stores against non-finite values (#26695 by @HZooly)
    • Added lower_case_table_names support for mysql (#26736 by @licitdev)
    • Fixed batch editing translations creating duplicate junction rows (#26597 by @HZooly)
    • Fixed block editor deleting blocks on save-and-stay (#26808 by @formfcw)
    • Fixed MIME type restriction for URL uploads and ensure file/s interfaces respect restricted URL uploads (#26691 by @AlexGaillard)
    • Fixed decimal and bigInteger display formatting (#26637 by @HZooly)
    • Add MIME type restriction option to select file/s interfaces (#26647 by @AlexGaillard)
    • Migrated large field selection requests to use the SDK (#26605 by @ComfortablyCoding)
    • Fixed tags interface not resolving variable strings in raw editor mode (#26739 by @HZooly)
    • Fixed Header interface spacing issue (#26786 by @LZylstra)
    • Fixed insightsStore.saveChanges to send requests only when the corresponding action array is non-empty (#26753 by @deepDiverPaul)
    • Constrained display template images in header bar to text line-height (#26680 by @HZooly)
    • Added Ask User Tool to AI Assistant (#26633 by @bryantgillespie)
  • @directus/api
    • Fixed MIME type restriction for URL uploads and ensure file/s interfaces respect restricted URL uploads (#26691 by @AlexGaillard)
    • Fixed filter rule type mismatch causing database error instead of returning INVALID_QUERY (#26629 by @dstockton)
    • Fixed IPTC metadata key casing in getMetadata so that description, title, and tags are correctly populated from IPTC data. (#26672 by @danielbuechele)
    • Replaced ip-matching dependency with node blocklist (#26806 by @br41nslug)
    • Fixed AI tool schema to not allow null for trigger and accountability fields in flow input validation. (#26763 by @rijkvanzanten)
    • Returned 500 Internal server error for permanent filesystem write failures instead of 503 service unavailable (#26761 by @aryanrichhariya1234-lang)
    • Bumped axios, rollup, basic-ftp, fast-xml-parser, serialize-javascript,nodemailer, vite, tar, minimatch, qs, undici, (#26787 by @br41nslug)
      axios-cache-interceptor dependencies
    • Add auth audit hook for tracking login attempts (#26702 by @AlexGaillard)
    • Fixed GraphQL groupBy with function field (#26706 by @ComfortablyCoding)
    • Prevented encrypted field decryption failures from crashing settings reads when the SECRET has changed. Fields that can't be decrypted now return null and log a warning instead of throwing. (#26764 by @bryantgillespie)
  • @directus/specs

    • Fixed password reset sending emails to external auth provider users (#26627 by @dstockton)

      :::notice
      requestPasswordReset now throws a Forbidden error for external auth provider users.
      :::

  • @directus/env
  • @directus/utils
  • @directus/sdk
    • Updated ReadProviderOutput type to include the label field (#26645 by @kheiner)

📦 Published Versions

  • @directus/app@15.5.0
  • @directus/api@34.0.0
  • @directus/ai@1.2.0
  • @directus/composables@11.2.14
  • @directus/constants@14.2.0
  • create-directus-extension@11.0.30
  • @directus/env@5.6.0
  • @directus/extensions@3.0.20
  • @directus/extensions-registry@3.0.20
  • @directus/extensions-sdk@17.0.10
  • @directus/memory@3.1.3
  • @directus/pressure@3.0.18
  • @directus/schema-builder@0.0.15
  • @directus/specs@12.0.1
  • @directus/storage-driver-azure@12.0.18
  • @directus/storage-driver-cloudinary@12.0.18
  • @directus/storage-driver-gcs@12.0.18
  • @directus/storage-driver-s3@12.1.4
  • @directus/storage-driver-supabase@3.0.18
  • @directus/system-data@4.2.0
  • @directus/themes@1.2.5
  • @directus/types@14.3.0
  • @directus/utils@13.3.0
  • @directus/validation@2.0.18
  • @directus/sdk@21.2.0

  •  
  • ↗️
Ontvangen — 3 Maart 2026 Selfhosted
Ontvangen — 2 Maart 2026 Selfhosted

Part-DB 2.8.0

✇Part-DB
Door: jbtronics
1 Maart 2026 om 23:50

Part-DB 2.8.0

Warning

After upgrade, you need to run php bin/console doctrine:migrations:migrate (or equivalent) as webserver user after upgrade.. If you are running a docker container, use sudo docker exec --user=www-data partdb php bin/console doctrine:migrations:migrate, or sudo -E inside the docker container, to ensure that the migrations are applied to the correct database.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New features

  • Allow to add parts from barcode scans of LCSC, digikey and other vendor labels (thanks @swdee)
  • Allow to scan LCSC labels
  • Added Amazon info provider via Canopy API
  • Added an optional HTML sandbox for attachments, allowing to view interactive BOM HTML files inside Part-DB (#1150)
  • Add option to disable special character keybindings (#1251, thanks @MayNiklas)
  • Improve working with an external barcode scanner, allow scanning barcodes from everywhere
  • Make KiCad API better cachable (#1241, thanks @Sebbeben)
  • Make parameters and order informations visible in KiCad (#1241, thanks @Sebbeben)
  • Show EDA value and reference in part tables (#1266, thanks @hrueger)

Miscellaneous

  • Updated dependencies
  • Updated translations
  • Updated KiCad library autocomplete lists
  • Security hardening of attachments

New Contributors

Full Changelog: v2.7.1...v2.8.0

  •  
  • ↗️
Ontvangen — 27 Februari 2026 Selfhosted

BookStack v25.12.8

✇BookStack
Door: ssddanbrown
27 Februari 2026 om 11:33

Links

Full List of Changes

This release contains the following fixes and changes:

  • Fixed content filtering removing link target attribute, which would impact "New Window" links. (#6034)
  • Fixed content filtering to not remove user references in comments.
  • Updated PHP package versions.

  •  
  • ↗️
Ontvangen — 25 Februari 2026 Selfhosted

fix login (ノ ゚ヮ゚)ノ ~┻━┻

✇Copyparty
Door: 9001
9 Maart 2026 om 00:51

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2026-02-25)

recent important news

🩹 bugfixes

🔧 other changes

  • warn that config-reload doesn't do global-options a29037a

🌠 fun facts

  • rushing out a cve-fix in the wee hours of the morning before the 9-5 is a great idea that never goes wrong
    • 10/10 will probably do again

⚠️ not the latest version!

  •  
  • ↗️

SECURITY: XSS fix

✇Copyparty
Door: 9001
25 Februari 2026 om 17:05

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2026-02-25)

⚠️ ATTN: this release fixes an XSS vulnerability

GHSA-62cr-6wp5-q43h could let an attacker execute arbitrary JS by tricking you into clicking a malicious link 31b2801

known issue: login broken, fix roughly 8pm UTC tonight

🔧 other changes

⚠️ not the latest version!

  •  
  • ↗️
Ontvangen — 22 Februari 2026 Selfhosted

no265

✇Copyparty
Door: 9001
25 Februari 2026 om 17:05

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2025-09-07)

🧪 new features

🩹 bugfixes

🔧 other changes

  • due to legal reasons, the docker-images and bootable flashdrive are now unable to create thumbnails of HEVC/h265 videos and heif/heic images 1bec91d
    • this primarily means photos/videos taken with iphones (and maybe some samsung phones)
    • on the bright side, this has made the docker-images much smaller; ac is now half the size it used to be, and iv / dj are each 97 MiB smaller

🌠 fun facts

  • if you wanna see your car doing its best impression of a frictionless spherical cow, I can warmly (heh) recommend the icy snowcoated countryroads of viken this weekend

⚠️ not the latest version!

  •  
  • ↗️
Ontvangen — 20 Februari 2026 Selfhosted

v0.18.4

✇Beszel
Door: henrygd
20 Februari 2026 om 22:51

What's Changed

  • Add outbound heartbeat monitoring to external services by @amirhmoradi in #1729
  • Add experimental GPU monitoring for Apple Silicon by @raccettura. (#1747, #1746, docs)
  • Add nvtop integration for GPU monitoring. (#1508)
  • Add GPU_COLLECTOR environment variable to manually specify the GPU collector(s).
  • SMART: add eMMC health via sysfs by @VACInc in #1736
  • Add DISABLE_SSH environment variable to disable SSH agent functionality. (#1061)
  • Add fingerprint command to the agent. (#1726)
  • Include GTT memory in AMD GPU metrics and improve device name lookup. (#1569)
  • Improve multiplexed logs detection for Podman. (#1755)
  • Harden against Docker API path traversal.
  • Fix issue where the agent could report incorrect root disk I/O when running in Docker. (#1737)
  • Show system uptime in the system table by @svenvg93 in #1719
  • Retry Docker check on non-200 HTTP response by @ElioDiNino in #1754
  • Allow precise value entry for alerts via text input by @svenvg93 in #1718
  • Add version flag to agent by @svenvg93 in #1639
  • Fix race issue with meter threshold colors.
  • Add InstallMethod parameter to Windows install script.
  • Update Go version and dependencies.

New Contributors

Full Changelog: v0.18.3...v0.18.4

  •  
  • ↗️

BookStack v25.12.7

✇BookStack
Door: ssddanbrown
20 Februari 2026 om 00:36

This release specifically addresses a scenario, introduced in v25.12.4, where loading the editor of a page, last updated/created by a different user with blank content, would result in an error.

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated page document handling to handle empty content instead of throwing an error. (#6026)

  •  
  • ↗️
Ontvangen — 18 Februari 2026 Selfhosted

BookStack v25.12.6

✇BookStack
Door: ssddanbrown
18 Februari 2026 om 20:53

This release specifically addresses issues introduced in v25.12.4, where drawings could become non-editable in certain scenarios due to content filtering rules.

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated content filter to allow required drawio diagram attributes. (#6026)

  •  
  • ↗️
Ontvangen — 17 Februari 2026 Selfhosted

BookStack v25.12.5

✇BookStack
Door: ssddanbrown
17 Februari 2026 om 19:42

This release specifically addresses folder permission issues (often showing as an error when attempting to access content) which could occur from changes introduced in v25.12.4.

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated filter caching folder handling to avoid server filesystem permission issues. (#6023)

  •  
  • ↗️

v11.15.4

✇Directus
Door: github-actions[bot]
17 Februari 2026 om 16:13

✨ New Features & Improvements

  • @directus/app
    • Added collaboration state (is viewing, is editing) and minor design updates (#26574 by @alvarosabu)

🐛 Bug Fixes & Optimizations

  • @directus/app
    • Fixed translation interface being disabled when delete permission not allowed (#26669 by @AlexGaillard)
    • Fixed item comparison failing when special characters are present in manual primary keys (#26668 by @AlexGaillard)
    • Fixed non-editable state for relational fields with custom permissions (#26676 by @HZooly)
    • Added restriction of allowed MIME types to the system file upload interface (#26646 by @AlexGaillard)
  • @directus/api
    • Added restriction of allowed MIME types to the system file upload interface (#26646 by @AlexGaillard)

📦 Published Versions

  • @directus/app@15.4.0
  • @directus/api@33.3.1

  •  
  • ↗️

BookStack v25.12.4

✇BookStack
Door: ssddanbrown
17 Februari 2026 om 12:44

Security Release

BookStack v25.12.4 has been released.

This is a security release to address a vulnerability where style code in page content could be used to manipulate the page beyond the expected content area, opening up risk of potential phishing and/or tracking by bad page editors.

We advise that you update your instance if you allow untrusted users to create or edit pages.

Thanks to SeongYun Moon (@Moonster8282 on GitHub) for their responsible discovery and reporting of this issue.

Additional Update Notices

  • Page Content - As of this release, extra layers of filtering have been applied to page content. While we have tried to ensure this has minimal impact on content, it's possible this will lead to extra elements being filtered.
  • Option Change - The ALLOW_CONTENT_SCRIPTS env option is now considered deprecated. It's advised to use the APP_CONTENT_FILTERING option, as documented here, instead if needed.

If you experience issues with your page content being over-filtered feel free to raise an issue on GitHub where we can check if the behaviour is intentional or something which needs to be patched.

You can use the new page content filtering option, with a value of jhf which should match the prior version filtering, but this will remove a layer of content filtering security so is not recommend.

Full List of Changes

  • Added new option for more granular page filter control.
  • Updated page content filtering to detect extra cases, and to apply a more aggressive allow-list style filter.
  • Updated application PHP dependencies.

  •  
  • ↗️
Ontvangen — 16 Februari 2026 Selfhosted

Part-DB 2.7.1

✇Part-DB
Door: jbtronics
16 Februari 2026 om 18:50

Part-DB 2.7.1

Warning

After upgrade, you need to run php bin/console doctrine:migrations:migrate (or equivalent) as webserver user after upgrade.. If you are running a docker container, use sudo docker exec --user=www-data partdb php bin/console doctrine:migrations:migrate, or sudo -E inside the docker container, to ensure that the migrations are applied to the correct database.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Bug fixes

  • Fixed problem that stocktake date of part lot was required when editing part (#1250)
  • Fixed problem that part tables had wrong sorting on initial loading
  • Fixed german translations related to update manager
  • Fixed visual styling of lot table

  •  
  • ↗️

v11.15.3

✇Directus
Door: github-actions[bot]
16 Februari 2026 om 17:04

✨ New Features & Improvements

  • @directus/app
    • Added activity logging for explicit user logout (#26638 by @JamesW1)
  • @directus/api
    • Added activity logging for explicit user logout (#26638 by @JamesW1)
  • @directus/constants
    • Added activity logging for explicit user logout (#26638 by @JamesW1)

🐛 Bug Fixes & Optimizations

  • @directus/app
    • Fixed date picker month select offset (#26655 by @HZooly)
    • Fixed issue with opening multiple drawers when editing tree view item (#26656 by @AlexGaillard)
    • Fixed vertical alignment of button fields set to half-width by restoring align-self: baseline in form-field component. (#26653 by @omkarg01)
  • @directus/api
    • Fixed GraphQL groupBy collision when a field is named group (#26626 by @dstockton)

📦 Published Versions

  • @directus/app@15.3.0
  • @directus/api@33.3.0
  • @directus/composables@11.2.13
  • @directus/constants@14.1.0
  • create-directus-extension@11.0.29
  • @directus/env@5.5.3
  • @directus/extensions@3.0.19
  • @directus/extensions-registry@3.0.19
  • @directus/extensions-sdk@17.0.9
  • @directus/memory@3.1.2
  • @directus/pressure@3.0.17
  • @directus/schema-builder@0.0.14
  • @directus/storage-driver-azure@12.0.17
  • @directus/storage-driver-cloudinary@12.0.17
  • @directus/storage-driver-gcs@12.0.17
  • @directus/storage-driver-s3@12.1.3
  • @directus/storage-driver-supabase@3.0.17
  • @directus/themes@1.2.4
  • @directus/types@14.2.1
  • @directus/utils@13.2.2
  • @directus/validation@2.0.17

  •  
  • ↗️

Part-DB 2.7.0

✇Part-DB
Door: jbtronics
16 Februari 2026 om 14:08

Part-DB 2.7.0

Warning

After upgrade, you need to run php bin/console doctrine:migrations:migrate (or equivalent) as webserver user after upgrade.. If you are running a docker container, use sudo docker exec --user=www-data partdb php bin/console doctrine:migrations:migrate, or sudo -E inside the docker container, to ensure that the migrations are applied to the correct database.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New features

  • Allow to set GTIN / EAN numbers for parts
  • Some info providers allow to provide GTIN infos
  • Allow to mark if supplier prices contain VAT or not. This is especially useful in combination with info providers
  • Allow to restrict on which element types attachment types can be applied. For example the "Avatars" attachmen type can only be shown on user attachments
  • Added ability to stocktake part lots from info page. This easily allows for setting a specific amount, instead of just adding/removing from an database value. The stocktake date is stored, to give a hint on how reliable the amount left is.
  • Delegate part retrieval to buerklin info provider when an buerklin URL is given (@mkne, PR #1235)
  • Added API endpoint for label generation (@MayNiklas, PR #1234)
  • Added functions to twig labels to retrieve associated parts. This allows to print all parts contained in a storage location (#1239)

Improvements

  • Performance optimizations for parts tables
  • Autofocus fields for easier workflow (@d-buchmann, PR #1240)
  • Allow more functions and filters in twig labels

Bug fixes

  • Fixed issue when parts contained % in name (@d-buchmann, PR #1238)
  • Do not show a 500 error, if twig labels contains invalid code
  • Fixed german translations

Docker

  • Removed nodejs from docker images as it is only needed for frontend building. This makes images ~ 25% smaller
  • Optimized docker image build flow

Miscellaneous

  • Updated dependencies
  • Updated GNU Unifont to 17.0.3

Full Changelog: v2.6.0...v2.7.0

  •  
  • ↗️
Ontvangen — 15 Februari 2026 Selfhosted

fika

✇Copyparty
Door: 9001
22 Februari 2026 om 17:39

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2025-09-07)

🧪 new features

  • now possible to upload/delete files while the filesystem-indexer is still busy d44ea24 0ca4c1b
    • global-option fika decides which actions to allow while still indexing; default is upload+copy+delete
    • full deduplication is only guaranteed if this option is set blank, as dupes are allowed while indexing
  • #1266 browsers can request thumbnails as jxl images, and view jxl files in the gallery (thx @intelfx!) b2711e0 720c83b 93ffc65 a65a30b a7a25de 59de5e2 16403d8 48c1017 0e8913c
    • only works in browsers which support jxl, which is FINALLY happening (sure took a while)
    • some notes on memory/RAM usage though -- it is fine on Alpine Linux, so docker is also fine, just don't enable mimalloc
      • jxl can be disabled with global-option th-no-jxl if necessary on baremetal deployments until libvips fixes this
  • #1265 audioplayer can "skip silence" now (thx @icxes!) 6694998
  • #1287 opensearch support for opds (thx @philips!) 84e687a
  • #1276 option rw-edit is the list of file-extensions that can be edited as textfiles with only permissions read+write (default is md like before); all other files still require read+write+delete 312f48e d692838
  • #1288 option to customize the links copied when selecting files and pressing ctrl-c (thx @icxes!) e5d0a05
  • docker: add env-var DI_PREPARTY to run an arbitrary script during startup, for customizations and such bf01ca4

🩹 bugfixes

  • #1279 the textfile-viewer would refuse to load huge documents when hotlinked f02e9cf
  • #1280 the custom rightclick-menu was enabled in the textfile viewer fc8a4b8
  • #1262 logtail now works on windows; would previously take an exclusive-lock on the monitored file, as windows does by default a368fc6

🔧 other changes

  • volumes are hidden from the treeview if the name starts with a dot 76041fd
  • #1277 descript.ion files no longer require the e2d and e2t options to be enabled 4cb4e82
  • chunked PUT-uploads are now terminated if they exceed a configured size limit dfadb5a
  • #1282 improved compatibility with GraalPy (thx @vgskye!) e8609b8
  • #1292 #1296 updated Esperanto translation (thx @slashdevslashurandom!) 418bf2f 914f84c
  • thumbnails: use libvips as fallback for rawpy 27ae2e1
    • libvips doesn't support .arw files (sony) yet, so still need rawpy
  • make server config slightly easier:
    • improve xff warnings 96aeb89
    • warn if config-values are quoted 598df44
    • lowercase headernames in configs fd09638

🌠 fun facts

  • the fika option sends the filesystem-indexer on a coffee break
  • exci wants me to mention aoi yuuki here for some reason :^) so here's gekisou gungnir

⚠️ not the latest version!

  •  
  • ↗️
Ontvangen — 13 Februari 2026 Selfhosted

5.2.8

✇UpSnap
Door: github-actions[bot]
13 Februari 2026 om 01:02

Note

UpSnap is, and always will be, free and open source software.

If someone is asking you to pay money for access to UpSnap binaries, source code, or licenses, you are being scammed.

The official and only trusted source for UpSnap is this repository (and its linked releases).
Do not pay third parties for something that is provided here for free.

Changelog

Bug fixes

Others

Go dependencies

  • 8dcb32f: go-dep: bump github.com/pocketbase/dbx from 1.11.0 to 1.12.0 in /backend (@dependabot[bot])
  • 33143a1: go-dep: bump github.com/pocketbase/pocketbase in /backend (@dependabot[bot])
  • 8f2e538: go-dep: bump github.com/pocketbase/pocketbase in /backend (@dependabot[bot])
  • 2db3082: go-dep: bump github.com/pocketbase/pocketbase in /backend (@dependabot[bot])
  • 16d4b8e: go-dep: bump github.com/prometheus-community/pro-bing in /backend (@dependabot[bot])
  • 7afdc41: go-dep: bump golang.org/x/sys from 0.39.0 to 0.40.0 in /backend (@dependabot[bot])
  • 8ae36d6: go-dep: bump golang.org/x/sys from 0.40.0 to 0.41.0 in /backend (@dependabot[bot])

Npm dependencies

  •  
  • ↗️
Ontvangen — 12 Februari 2026 Selfhosted

v11.15.2

✇Directus
Door: github-actions[bot]
12 Februari 2026 om 22:29

✨ New Features & Improvements

  • @directus/app
  • @directus/api
  • @directus/types

🐛 Bug Fixes & Optimizations

  • @directus/app
    • Fixed only focusing on fields that have a schema (#26622 by @Nitwel)
    • Fixed nested group fields losing values when a condition toggles the group's readonly property (#26563 by @HZooly)
    • Fixed useStores, useApi, and useSdk not working inside Pinia stores in extensions (#26438 by @kekekuli)
    • Fixed manual flow triggers not working in drawer (#26617 by @HZooly)
    • Replaced flatpickr with reka ui primitives (#26502 by @alvarosabu)
    • Fixed block editor readOnly toggle race condition (#26640 by @formfcw)
    • Updated editorjs to fix inline link tool bug (#26639 by @AlexGaillard)
    • Fixed metric list labels to no longer be cut off by bar value labels (#26527 by @Prasad7007)
  • @directus/api
    • Fixed asset transformation error when using withoutEnlargement with focal point and dimensions larger than the original image. Target dimensions are now clamped to the original image dimensions. (#26608 by @wotan-allfather)
    • Preserved SQL parameterization in relational count subquery and used content-disposition library for folder zip download header (#26592 by @dstockton)
  • @directus/extensions-sdk
    • Fixed linking scoped extensions created nested folders (#25957 by @Nitwel)
  • @directus/utils

📦 Published Versions

  • @directus/app@15.2.0
  • @directus/api@33.2.0
  • @directus/composables@11.2.12
  • create-directus-extension@11.0.28
  • @directus/env@5.5.2
  • @directus/extensions@3.0.18
  • @directus/extensions-registry@3.0.18
  • @directus/extensions-sdk@17.0.8
  • @directus/memory@3.1.1
  • @directus/pressure@3.0.16
  • @directus/schema-builder@0.0.13
  • @directus/storage-driver-azure@12.0.16
  • @directus/storage-driver-cloudinary@12.0.16
  • @directus/storage-driver-gcs@12.0.16
  • @directus/storage-driver-s3@12.1.2
  • @directus/storage-driver-supabase@3.0.16
  • @directus/themes@1.2.3
  • @directus/types@14.2.0
  • @directus/utils@13.2.1
  • @directus/validation@2.0.16

  •  
  • ↗️
Ontvangen — 7 Februari 2026 Selfhosted

Part-DB 2.6.0

✇Part-DB
Door: jbtronics
7 Februari 2026 om 19:39

Part-DB 2.6.0

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New features

  • Experimental update manager, to update Part-DB from the web interface (thanks to @Sebbeben, PR #1217)
  • Added Conrad info provider
  • Added a generic info provider, to retrieve basic part infos from many shop URLs
  • Allow BOM import via SPNs (thanks @MayNiklas, PR #1209)
  • Highlight scanned part lot when scanning a barcode (#968)

Miscellaneous

  • Updated dependencies

New Contributors

Full Changelog: v2.5.1...v2.6.0

  •  
  • ↗️
Ontvangen — 6 Februari 2026 Selfhosted

v11.15.1

✇Directus
Door: github-actions[bot]
6 Februari 2026 om 21:04

🐛 Bug Fixes & Optimizations

📦 Published Versions

  • @directus/app@15.1.1
  • @directus/api@33.1.1
  • @directus/composables@11.2.11
  • create-directus-extension@11.0.27
  • @directus/env@5.5.1
  • @directus/extensions-sdk@17.0.7

  •  
  • ↗️
Ontvangen — 5 Februari 2026 Selfhosted

v11.15.0

✇Directus
Door: github-actions[bot]
19 Februari 2026 om 21:17

⚠️ Potential Breaking Changes

Attached prompts, content items, and visual editor elements to AI Assistant Context (#26512 by @bryantgillespie)
To use this feature, update @directus/visual-editing to v1.2.0+ on your website.

Disabled interfaces are not interactive anymore, which includes opening disabled read-only fields in a drawer (#26470 by @formfcw)

✨ New Features & Improvements

  • @directus/app
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
    • Added collaborative editing (#26172 by @Nitwel)
    • Attached prompts, content items, and visual editor elements to AI Assistant Context (#26512 by @bryantgillespie)
    • Added multi-provider AI support with Google and OpenAI-compatible providers. Extracted shared AI types into new @directus/ai package. (#26481 by @bryantgillespie)
    • Added toggle to allow comparing revision to previous revision (#26480 by @robluton)
    • Added relational field support on x-axis of bar chart (#26489 by @JamesW1)
    • Added visual editing support to the live preview split pane, including display options menu, full-width mode with drag-to-expand, and quick access to the Visual Editor module. (#26463 by @bryantgillespie)
    • Changed permission-blocked fields from disabled to non-editable appearance (#26572 by @HZooly)
  • @directus/api
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
    • Added collaborative editing (#26172 by @Nitwel)
    • Attached prompts, content items, and visual editor elements to AI Assistant Context (#26512 by @bryantgillespie)
    • Added multi-provider AI support with Google and OpenAI-compatible providers. Extracted shared AI types into new @directus/ai package. (#26481 by @bryantgillespie)
  • @directus/sdk
    • Fixed race condition and allow accessing the connected state (#26511 by @Nitwel)
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
  • @directus/system-data
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
  • @directus/types
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
    • Added collaborative editing (#26172 by @Nitwel)
    • Added multi-provider AI support with Google and OpenAI-compatible providers. Extracted shared AI types into new @directus/ai package. (#26481 by @bryantgillespie)
  • @directus/errors
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
  • @directus/env
    • Added deployment module for triggering deployments from Directus with Vercel as first supported provider (#26473 by @gaetansenn)
    • Added collaborative editing (#26172 by @Nitwel)
  • @directus/utils
  • @directus/ai
    • Attached prompts, content items, and visual editor elements to AI Assistant Context (#26512 by @bryantgillespie)
    • Added multi-provider AI support with Google and OpenAI-compatible providers. Extracted shared AI types into new @directus/ai package. (#26481 by @bryantgillespie)
  • @directus/memory

🐛 Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
    • Improved error message for system field updates that are not schema.is_indexed (#26548 by @JamesW1)
    • Replaced deprecated ldapjs with ldapts (#26363 by @dstockton)
    • Changed users.last_access display mode to absolute (#26548 by @JamesW1)
  • @directus/system-data
  • @directus/env
  • @directus/memory
    • Handled empty buffers to prevent errors during race conditions or disconnects (#26172 by @Nitwel)

📦 Published Versions

  • @directus/app@15.1.0
  • @directus/api@33.1.0
  • @directus/ai@1.1.0
  • @directus/composables@11.2.10
  • create-directus-extension@11.0.26
  • @directus/env@5.5.0
  • @directus/errors@2.2.0
  • @directus/extensions@3.0.17
  • @directus/extensions-registry@3.0.17
  • @directus/extensions-sdk@17.0.6
  • @directus/memory@3.1.0
  • @directus/pressure@3.0.15
  • @directus/schema-builder@0.0.12
  • @directus/storage-driver-azure@12.0.15
  • @directus/storage-driver-cloudinary@12.0.15
  • @directus/storage-driver-gcs@12.0.15
  • @directus/storage-driver-s3@12.1.1
  • @directus/storage-driver-supabase@3.0.15
  • @directus/system-data@4.1.0
  • @directus/themes@1.2.2
  • @directus/types@14.1.0
  • @directus/utils@13.2.0
  • @directus/validation@2.0.15
  • @directus/sdk@21.1.0

  •  
  • ↗️
Ontvangen — 1 Februari 2026 Selfhosted

v0.18.3

✇Beszel
Door: henrygd
1 Februari 2026 om 20:02

Notice

  • The Windows agent's updated version of LibreHardwareMonitorLib now uses PawnIO instead of WinRing0. If you lose temperature sensors, make sure PawnIO is installed. (See #1657 and #1697.)

  • Container NetworkSent and NetworkRecv fields have been deprecated in favor of Bandwidth. Agents will stop populating those fields in 0.19.0, so please update any integrations to prefer Bandwidth. It's available for all containers on hubs >= 0.18.3.

What's Changed

  • Add experimental sysfs AMD GPU collector. (#737, #1569)
  • Improve container network stats accuracy.
  • Fix SHARE_ALL_SYSTEMS for system_details, smart_devices, and systemd_services. (#1660)
  • Improve CJK truncation in UI.
  • Fix container uptime sorting edge case. (#1696)
  • Remove stale systemd services from tracking after deletion. (#1594)
  • Update honeypot field name and autofill ignores. (#1011)
  • Write health_file to /dev/shm instead of /tmp if available. (#1455)
  • Ensure battery current charge doesn't exceed full capacity. (#1668)
  • Increase smartctl --scan timeout to 10 seconds. (#1465)
  • Update Go dependencies
  • Change usermod to addgroup for docker access by @wowi42 in #1641
  • fix: update smartctlArgs call to use hasExistingData flag by @nemvince in #1645
  • feat: add tooltip to system name in systems table by @Fahleen1 in #1640
  • chore: update workflows and templates by @svenvg93 in #1661
  • Add SMART_DEVICES_SEPARATOR + allow drives with the same name to be added with different types (e.g. raid controllers) by @jules2689 in #1655
  • Chore: Remove Debian package goreleaser workaround by @svenvg93 in #1677
  • [Agent] feat: parse ATA device statistics for temperature and future metrics by @sternma in #1689
  • [Bug] Restore "Add System" button on mobile. by @svenvg93 in #1687
  • Bug: Apply SELinux context after binary replacement by @svenvg93 in #1678
  • feat: Added tooltips for navbar buttons to clear meaning of each one by @Fahleen1 in #1636
  • Bug: Don't force lowercase text by @svenvg93 in #1682
  • fix: update LibreHardwareMonitorLib to 0.9.5 by @bartvdbraak in #1697
  • bug: ignore alt key combinations by @svenvg93 in #1698

New Contributors

Full Changelog: v0.18.2...v0.18.3

  •  
  • ↗️
❌