github iamspido/github-release-monitor v2.0.0
2.0.0 - Better Auth, GitLab and Codeberg Support
on GitHub

3 hours ago

🎉 Version 2.0.0 - Better Auth, GitLab and Codeberg Support

Breaking Change: Authentication Migration

Version 2.0.0 replaces the old iron-session username/password login with Better Auth. Existing repositories, settings, and notification data in data/ remain untouched, but existing login sessions are invalidated.

Old AUTH_USERNAME / AUTH_PASSWORD credentials are not imported automatically. A new initial admin account must be created on first startup.

Authentication and Security

  • fd1709e Migrated authentication to Better Auth
  • 6bad9d4 Added configurable authentication modes
  • 614932b Added login lockout/unblock logging, tightened settings-locale origin allowlist, and updated auth/env docs
  • bea8637 Updated example environment configuration for Better Auth

Provider Support

  • aaaa800 Added end-to-end GitLab support, including self-hosted hosts, provider resolution, host-based access/deploy tokens, and git-transport fallback with commit metadata
  • 4f087bb Added Codeberg support, provider-aware repository IDs, and improved repository adding UX
  • 145b20c Replaced the Codeberg API status icon with a custom outline Codeberg logo
  • ef89a55 Added GHCR Docker Compose import support

Repository and Release UI

  • fc3ec55 Added configurable release card sorting
  • 62c52d5 Added security release highlighting and prioritization
  • 4301b63 Added homepage repository status counts
  • e99f819 Added setting to show or hide provider domains in repository labels
  • 1a19903 Added collapsible repository form setting
  • 26d9538 Added smooth repository form collapse transition

Tests and Stability

  • 5ce8f0a Stabilized RepoSettingsDialog offline/autosave tests

Dependencies and Infrastructure

  • 8154eaf Upgraded from Next.js 15.5.9 to Next.js 16.0.10
  • fc61442 Updated Next.js, lucide-react, nodemailer, jsdom, and @swc/helpers
  • 783f7fd Updated Biome, Playwright, Node/React types, Vitest, Next.js, next-intl, nodemailer, React, jsdom, lucide-react, and Docker Playwright base images
  • a025f98 Updated Biome, React types, lucide-react, and Biome schema
  • 37eeb9e Updated GitHub Actions versions
  • a93e8d1 Updated Node types and UI tooling dependencies

Release Maintenance

  • fadf824 Bumped release metadata to 1.5.0, updated dependencies, and clarified Codeberg token docs

Migration to 2.0.0

Version 2.0.0 replaces the old iron-session username/password login with Better Auth. Existing repository, settings, and notification data in data/ stay untouched, but existing login sessions are invalidated.

Required Changes

  • Remove the old AUTH_USERNAME, AUTH_PASSWORD, and AUTH_SECRET variables from your .env.
  • Add BETTER_AUTH_SECRET, BETTER_AUTH_URL, and a one-time AUTH_SETUP_TOKEN.
  • BETTER_AUTH_SECRET and AUTH_SETUP_TOKEN must each be at least 32 characters long.
  • Generate both values separately, for example with openssl rand -base64 32.
  • Keep the existing data/ directory mounted and writable.

Example

BETTER_AUTH_SECRET=<random-secret>
BETTER_AUTH_URL=https://github-releases.example.com
AUTH_SETUP_TOKEN=<random-setup-token>

First Start

Start the updated app and open the login page. The first run shows the setup form. Enter AUTH_SETUP_TOKEN and create the initial admin account.

The old AUTH_USERNAME / AUTH_PASSWORD credentials are not imported automatically.

Optional

After the first account exists, you can configure AUTH_ENABLE_PASSKEY, AUTH_ENABLE_SIGNUP, or the GitHub/Google OAuth variables.

Admin usernames must be 3-30 characters and may contain letters, numbers, _, and .. Passwords must be at least 12 characters and include uppercase, lowercase, and a number.

Full Changelog: v1.4.1...v2.0.0

Check out latest releases or
releases around iamspido/github-release-monitor v2.0.0

Don't miss a new github-release-monitor release

NewReleases is sending notifications on new releases.

Get notifications