mescon/Muximux v3.0.4

on GitHub

Changed

• Service worker cache now updates automatically on each deployment -- previously, stale cached assets could persist until a hard refresh

Fixed

• Proxied apps (like Pi-hole) no longer break due to Muximux's Content Security Policy blocking their inline scripts and styles
• Apps configured with base_path no longer trigger CSP violations on page load
• Rare proxy routing bug where an app named "app" could corrupt URLs containing /proxy/application/ or similar substrings

Security

• Bump golang.org/x/net to v0.51.0 -- fixes a denial-of-service vulnerability where malformed HTTP/2 frames could crash the server (CVE-2026-27141)
• Bump Svelte 5.53.3 → 5.53.5, Rollup 4.57.1 → 4.59.0