Category: Security

1 July 2026
Grafana | v13.0.3

Grafana v13 0 3: Alpine 3 24 1, write folder metadata on create or move, provisioning PR fixes for multi org, datasource UID validation and migration fix

Read more
1 July 2026
SOPS | v3.13.2

SOPS v3 13 2: install and verify binaries, cosign image and slsa provenance checks, key bug fixes, SBOMs and CI dependency updates

Read more
1 July 2026
Traefik | v3.7.6

Traefik v3 7 6: upgrade guidance, k8s and Gateway API fixes, middleware and auth fixes, server TLS websocket header improvements, dependency security and docs updates

Read more
1 July 2026
n8n | n8n@2.28.3

n8n 2 28 3, 2026 06 29: fixes startup when partial community package installs interrupt, ensures reliable start, Stage Review PR 33188, cubic dev review noted

Read more
30 June 2026
Conditional access still anchors ZTNA policy

Zero Trust Network Access looks tidy until you test the policy against a failed identity provider, a stale token, or a changing location. I have seen too many setups where conditional access does all the work, while the network quietly keeps the old trust assumptions alive.

Read more
30 June 2026
ZTNA access policies for self-hosted services

ZTNA access policies only work when I treat the service, not the subnet, as the thing being protected. Once you start drawing the boundary around the app, rather than the VLAN, the gaps show up quickly, and they are usually where I least wanted them.

Read more
30 June 2026
Telegraf | v1.39.1

Telegraf v1 39 1: bug fixes for OPC UA, smartctl, tail, temp, vsphere, parser, dependency bumps, new migrations, multi platform packages with checksums

Read more
30 June 2026
Telegraf | v1.39.1

Telegraf v1 39 1: bugfixes and plugin fixes, automated configuration migrations, dependency and compatibility updates, multi platform packages and checksums

Read more
30 June 2026
NocoDB | 2026.06.2

NocoDB 2026 06 2: Oracle DB add on, UI and views upgrades, security hardening, self host Helm and performance improvements, safer auth and exports

Read more
30 June 2026
n8n | n8n@2.27.5

n8n 2 27 5: fixes startup failures from partially installed community packages, hardens package loading, boosts resilience, upgrade if you see startup errors

Read more
30 June 2026
ESPHome | 2026.6.3

ESPHome 2026 6 3: deps bumped, ESP32 ESP IDF tooling and secure boot fixes, Wi Fi and ESP NOW stability, MIPI SPI display fixes, storage and integration tweaks

Read more
29 June 2026
Persisting federated users in AWS Cognito

AWS Cognito writes the user record before most people notice the decision point has gone, so I keep the real check in AWS Cognito PreSignUp_ExternalProvider. Anything later is tidying up after the fact, and by then the account may already exist.

Read more
28 June 2026
Android security boundary failures around AuthToken handling

Android Biometric AuthToken handling is one of those details that looks tidy until you trace what actually trusts it. I pay closest attention to the hand-off points, because that is where a neat biometric check can quietly turn into an open door.

Read more
28 June 2026
Access control in WrappedADS authorised mint flow

WrappedADS wrapTo() mint path is not hiding much, and that is the point. If the caller is trusted, the mint goes through; if that trust is wrong, supply moves just as easily.

Read more
27 June 2026
MMR proof indexing in a bridge dispatcher audit

The ugly part of an Ethereum bridge dispatcher is not the proof itself, it is the gap between a tidy verification trace and the bytes that finally reach custody logic. If those two ever diverge, the bridge has stopped proving anything useful.

Read more
27 June 2026
k3s | v1.36.2+k3s1

k3s v1 36 2 k3s1: Kubernetes v1 36 2 upgrade, containerd and runtime fixes, security and component bumps, backports and Go 1 26 4 toolchain

Read more
27 June 2026
k3s | v1.36.2+k3s1

k3s v1 36 2 k3s1: Kubernetes v1 36 2 base, runtime fixes for containerd and cri api, third party CVE bumps, CI backports and Go 1 26 4 toolchain update

Read more
26 June 2026
Uniswap V2 spot reads distort reward payouts

A pair reserve is a terrible price feed when someone can shove it around for one transaction. I have seen the same bad read turn cheap stake entry into inflated principal, then pay out rewards from the same mistake; spot-price oracle manipulation is doing all the work.

Read more
26 June 2026
Nextcloud | v34.0.1

Nextcloud v34 0 1: security and hardening fixes, core stability and sync bug fixes, app compatibility and API adjustments, upgrade guidance

Read more
26 June 2026
Nextcloud | v34.0.1

Cannot fetch release page: paste v34 0 1 notes or pick best effort 3 to 5 Nextcloud patch highlights, security, bugfixes, upgrade, apps, admin tips

Read more
25 June 2026
OTel Collector | v0.155.0

OTel Collector v0 155 0 release: component deps refresh 9410f51, Dockerfile update a04e0aab, GitHub Actions update 8b7182c9, tag 0c0862e

Read more
25 June 2026
Loki | v3.7.3

Loki v3.7.3: Faster, more accurate queries, ingestion and storage gains, operator and Helm updates, security fixes, Promtail removed

Read more
25 June 2026
OTel Collector | v0.155.0

OTel Collector v0 155 0 release: version bump, component dependency updates, Dockerfile and GitHub Actions maintenance, see changelogs and release artifacts

Read more
25 June 2026
Loki | v3.7.3

Loki v3 7 3: breaking change to OpenShift stream label defaults, operator and config fixes, query and ingestion performance, packaging and security updates

Read more
25 June 2026
n8n | n8n@2.27.4

n8n 2 27 4: Fix Python allowlist relative imports, correct chained node builds, Google Ads API v20 to v21 upgrade, recommended for Python and Ads users

Read more