Security
A security vulnerability was identified in Dokploy. To patch your self-hosted instance, before you run this command please upgrade your instance to 0.29.3 and then run the following command:
curl -sSL https://dokploy.com/security/0.29.3.sh | bashWhat's Changed
- fix: enforce 255-char max length on forgot password email field by @Siumauricio in #4323
- fix: reduce healthcheck frequency to lower memory pressure by @Siumauricio in #4325
- fix(webhook): return 401 when signature header is missing by @mixelburg in #4278
- fix: use temporary redirects for auth checks in getServerSideProps by @Siumauricio in #4335
- fix(templates): add fetch timeout and handle network errors gracefully by @Siumauricio in #4336
- fix(sidebar): close mobile sidebar on navigation by @Siumauricio in #4341
- fix: align card footers to bottom on project and service cards by @amit-y11 in #4345
- feat: add copy button to AI log analysis result by @berkay-digital in #4294
- fix: remove leftover debug console.log statements by @BradPerbs in #4338
- fix: UI Responsiveness for both mobile, Tab and desktop Screens by @nhridoy in #4358
- fix: replace traefik.me with sslip.io for auto-generated domains by @Siumauricio in #4368
- feat(templates): support isolated = false opt-out in template.toml by @Siumauricio in #4370
- feat(schedules): add optional description field by @Siumauricio in #4371
- fix(security): replace hardcoded BETTER_AUTH_SECRET with Docker secret support by @Siumauricio in #4374
New Contributors
- @amit-y11 made their first contribution in #4345
- @berkay-digital made their first contribution in #4294
- @BradPerbs made their first contribution in #4338
- @nhridoy made their first contribution in #4358
Full Changelog: v0.29.2...v0.29.3