GHSA-h265-g7rm-h337 (Publication in process, waiting for CVE assignment) This vulnerability would allow an authenticated attacker that is part of an organization to access items from collections to which the attacker does not belong
Vaulwarden is the best 😁 selfhosted for 3 years, no problems. Got all my devices on my tail/headscale network, and only addresses allowed to my server are lan and tailscale 🤓
tofu@lemmy.nocturnal.garden 4 weeks ago
Already updated yesterday 🤓 All hail the mighty renovate
Natanox@discuss.tchncs.de 3 weeks ago
Renovate?
tofu@lemmy.nocturnal.garden 3 weeks ago
I have all my compose stacks in git. They’re deployed from their git repos with Komodo.
Renovate is a bot that checks git repos for dependencies (mostly container images in this case) and checks if there’s a newer version available. If yes, it creates a merge request to update the version. I review the requests and merge, then the updated compose stack gets deployed with Komodo. It’s a great semi automatic way to handle updates without giving up control.
There’s a nice how to here: nickcunningh.am/…/how-to-automate-version-updates…
qaz@lemmy.world 3 weeks ago
It’s a bot to create PR’s with dependency updates
motruck@lemmy.zip 4 weeks ago
Renovate? Hrmmmm
tofu@lemmy.nocturnal.garden 4 weeks ago
Hrmmm?