Releases: Finsys/dockhand
Releases · Finsys/dockhand
Release list
v1.0.37
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.37
- ✨ Prometheus metrics at /metrics for env state and internals, gated by EXPORT_METRICS (#339)
- ✨ export scan results as SARIF 2.1.0, manual export and API for DefectDojo/Dependency-Track/GitHub (#415)
- ✨ bump bundled docker-compose to 5.2.0-r0 to clear known CVEs
- ✨ Vulnerabilities dashboard: aggregated CVE findings (#1038)
- ✨ update container images directly from the Stack view (#1073)
- ✨ stacks list shows an update indicator for stacks with image updates (#504)
- 🐛 copying an image to another registry keeps its tag instead of defaulting to latest (#1243)
- 🐛
more-than-current imagere-scans the current image so a stale cached scan doesn't block (#1022) - ✨ application logs now include the log level (INFO/WARN/ERROR) in the prefix (#1166)
- ✨ option to suppress the "What's New" popup (#1235)
- 🐛 ntfy notifications now forward the
emailquery parameter so ntfy can send email (#1231) - ✨ default scanner images bumped to grype v0.115.0 and trivy 0.71.2 (#1241)
- 🐛 the "Latest" update-check result now stays visible and doesn't revert (#1019)
- ✨ a stack with container label
dockhand.adopt=falseexcluded from adoption (#998) - 🐛 dashboard daemon info shows the real host hostname, not Dockhand's container id (#1265)
- ✨ file editor prompts to save/discard unsaved changes before closing (#1264)
- 🐛
GET /api/containers/check-updatesnow lists pending updates (POST still triggers a check) (#1266) - ✨ sidebar menu customizable (order and visibility of items) (#1252)
- 🐛 activity and audit date filters respect the configured timezone instead of UTC (#1269)
- ✨ git deploy progress shows the changed files before the deploy starts (#1260)
Docker image
docker pull fnsys/dockhand:v1.0.37Also available as fnsys/dockhand:latest
v1.0.36
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.36
- ✨ sidebar shows an amber update indicator when a newer Dockhand image is available (#1146)
- 🐛 Tag image modal too narrow for images identified only by SHA (#1205)
- 🐛 self-hosted ntfy: accept raw
tk_...access tokens in?auth=(#1209) - 🐛 dashboard: a single failed DB stats query no longer poisons the whole environment tile (#1210)
- 🐛 UI dates and times now honor the configured default timezone instead of the browser's timezone (#1183)
- 🐛 add missing
reset-mfa.shemergency script referenced by the manual (#1214) - 🐛 registry browser: copy between registries no longer duplicates the host (#1220)
- ⚡ published image carries standard OCI annotations (source, url, title, description, vendor, licenses) (#1217)
- ✨ scanner: configurable network mode and DNS servers for vulnerability scans (#1219)
- ✨ template tiles now show a
Projectlink that opens the upstream project page (#1211) - ⚡ cron picker: hour shows just
HH(wasHH:00), minute granularity bumped from 15 to 5 (#1198) - ✨ grid buttons: configurable size and optional semantic colors (#1072)
- 🐛 copy buttons (git deploy logs, API tokens) now work over plain HTTP (#1222)
- 🐛 Podman pod-infra containers no longer trigger update-check warnings (#1221)
- 🐛 terminal exec works even when the browser sends a cookie with stray
%characters (#1224)
Docker image
docker pull fnsys/dockhand:v1.0.36Also available as fnsys/dockhand:latest
v1.0.35
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.35
- ✨ image prune skips Dockhand's scanner images (grype, trivy), configurable (#625)
- 🐛 "No archive" download format selection not persisted (#1180)
- 🐛 regression: vulnerability scans on direct-TCP envs (#1195)
- 🐛 Pangolin labels — recognise the real
public-resources/private-resourcesnamespaces (#2) - 🐛 healthcheck uses HTTPS probe when HTTPS_MODE=on (#1191)
- 🐛 shell detection improved for containers with non-standard PATH or shell locations (#1189)
Docker image
docker pull fnsys/dockhand:v1.0.35Also available as fnsys/dockhand:latest
v1.0.34
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.34
Important
This release closes GHSA-f6q3-chhc-4hxm
- ✨ raw file download — no tar wrapping (#1180)
- 🐛 update modal stuck after closing mid-pull (#1094)
- 🐛 vulnerability scans on Podman hosts (direct TCP and Hawser) (#1076)
- 🐛 crash-looping containers now appear in the logs page list (#227)
- ✨ filter containers by "Update available" (#1063)
- ✨ show hostname / IP of the selected environment in the top header (#962)
- ✨ internal auth and validation hardening and dependency bumps
- ✨ Traefik and Pangolin integration — surface proxy URLs on container and stack panels (#2)
- ✨ release-notes link next to images with updates available (#538)
- ✨ lifecycle action buttons in the container details modal (#461)
- ✨ template library — browse and deploy compose templates from configurable sources (#48)
- 🐛 file browser fails on containers with ls in /usr/sbin (#1185)
Docker image
docker pull fnsys/dockhand:v1.0.34Also available as fnsys/dockhand:latest
v1.0.33
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.33
- ✨ in-place container property updates without restart — restart policy, CPU/memory limits (#1153)
- ✨ clickable stack badge in container and volume inspect modals (#1121)
- ✨ clickable stack badge in volumes list row (#1122)
- ✨ volumes list shows driver_opts type (NFS, CIFS, etc.) with sort and filter (#1123)
- ✨ Bark iOS notifications (#1095, PR#1097, @undirectlookable)
- ✨ Signal notifications via signal-cli-rest-api (#1099)
- ✨ Apprise passthrough — forward to a self-hosted caronc/apprise-api server (#1099)
- 🐛 env editor flagged Docker/Compose built-ins as MISSING (#141)
- 🐛 YAML editor indentation was inconsistent when pressing Enter (#1156)
- ✨
dockhand.update=false,dockhand.hidden=trueandlocalhost/*images skip registry polling (#1083) - 🐛 registry authentication for image pulls (#1105)
- ✨ native HTTPS listener, off by default (#1102)
- 🐛 environments stuck "Failed" after VPN/Tailscale tunnel drops until agent restart (#1160)
- 🐛 health_status events flooding container_events table (#1165)
- 🐛 git stack sync removes files deleted from the repo (hash-verified) (#966, #1162)
- ✨ upload TLS/mTLS certificate files in environment editor (#125)
- ✨ syntax highlighting for shell, Dockerfile, TOML, INI/conf and .env files in the file browser viewer (#1055)
- ✨ Animated icons now configurable (#1169)
- 🐛 stack deploys ignored the env's configured socket path (#1172)
- 🐛 environment names with characters that break path resolution (e.g.
*) are now rejected (#1179)
Docker image
docker pull fnsys/dockhand:v1.0.33Also available as fnsys/dockhand:latest
v1.0.32
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.32
- ✨ container details tweaks: process count, label filter, copy all labels (#812)
- ✨ log improvements (#1130)
- 🐛 cleared Resources fields not persisted on container edit (#1119)
- 🐛 long container names overflowed in activity event details dialog (#1129)
- 🐛 git stack recreate and start operations ignored Dockhand-stored env vars (#1132)
- 🐛 dashboard stopped count reset to 0 after refresh for gracefully stopped containers (#1133)
- 🐛 auto-update preserves runtime
-eenv and-llabel overrides (#1135) - 🐛 git stack volume binds resolved to wrong host path when compose was in a subdirectory (#1139)
- 🐛 git stacks: subdir compose files now find their adjacent env files (#1136)
- ✨ env editor doesn't flag Docker/Compose built-in variables as unused (#141)
- ✨ container network mode: share another container's network namespace (#161)
Docker image
docker pull fnsys/dockhand:v1.0.32Also available as fnsys/dockhand:latest
v1.0.31
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.31
- 🐛 502 Bad Gateway behind nginx-based reverse proxies — SvelteKit 2.51+ bloated the Link response header, pinned to 2.50.0 (#1114)
Docker image
docker pull fnsys/dockhand:v1.0.31Also available as fnsys/dockhand:latest
v1.0.30
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.30
- ✨ time range filter for log viewer — filter logs by From/To date and time (#1068)
- ✨ configurable tail line count in log viewer — choose from 100 to all lines (#1066)
- ✨ toggleable line numbers in log viewer (#1067)
- ✨ "some unused" image filter — show images with both used and unused tags for selective cleanup (#621)
- ✨ IP binding and port ranges in container port mappings (#581)
- ✨ remove individual containers directly from stacks page (#576)
- 🐛 scan cache lookup by tag name never matched — results now resolved via image digest (#1064)
- 🐛 image-baked env vars not updated during auto-update container recreation (#1061)
- 🐛 git stack deploy via Hawser fails with "Invalid string length" when repo has large files (#1040)
- ✨ Gotify notification priority via URL query param — gotify://host/token?priority=5 (#1033)
- 🐛 consistent action button order across container and stack views (#1079)
- ✨ named custom URL labels — dockhand.url=Name markdown syntax (#1065)
- 🐛 HTTPS git credentials no longer leaked in process arguments (#1081)
- ✨ bump Docker Compose to 5.1.4 (GHSA-pmwq-pjrm-6p5r)
- ✨ dockhand.order label to control container display order within stacks (#847)
- ✨ live network attach/detach for running containers — join or leave Docker networks without restarting (#1051)
- 🐛 environment variable values with nested quotes progressively corrupted on each save (#1036, #1086)
Docker image
docker pull fnsys/dockhand:v1.0.30Also available as fnsys/dockhand:latest
v1.0.29
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.29
- ✨ optionally display internal (exposed) container ports alongside published ports (#193)
- ✨ show app version in sidebar with build info tooltip (#209)
- ✨ central label management — rename or delete labels across all environments (#661)
- ✨ find next available host port when creating or editing containers (#116)
- ✨ theme-aware scrollbar styling — scrollbars adapt to dark/light mode and color palettes (#462)
- 🐛 update buttons (single, selected, and all) now respect the "confirm dangerous actions" setting (#638, #751)
- ✨ custom URL labels - dockhand.url or dockhand.port.{port}.url to add links alongside container ports (#266)
- ✨ generate and copy token for Hawser Standard mode with run command hint (#337)
- 🐛 environment stack directory not cleaned up when environment is deleted (#1023)
- ✨ toggle to hide timestamps and container name prefix in log viewer (#124)
- 🐛 Podman containers health status not showing (#737)
- 🐛 containers with exit code 0 (init/migration) no longer cause stack "partial" status (#1026)
- 🐛 stats stream 400 on reconnect by skipping overlapping fetches (#1044)
- 🐛 env var validation false positive for values containing $ followed by text (#1048)
- 🐛 git-repos directory not cleaned up when environment is deleted (#1049)
- 🐛 webhook secret auto-generated when left empty despite hint saying otherwise (#1050)
- ✨ scan reports — combined or individual Grype/Trivy (#1056)
Docker image
docker pull fnsys/dockhand:v1.0.29Also available as fnsys/dockhand:latest
v1.0.28
Immutable
release. Only release title and notes can be modified.
What's new in v1.0.28
- ✨ context directory for git stacks — reference files from anywhere in the repo (#864)
- ✨ no-cache build option for git stacks (#880)
- 🐛 env vars lost when switching between raw/form view (#964)
- 🐛 compose name property not respected during stack scan (#922)
- ✨ editable schedule for scanner cache cleanup (#979)
- 🐛 container labels cannot be deleted (#984)
- 🐛 env var values leaked in deploy logs — now all values are redacted (#985)
- 🐛 volume export keeps helper container alive, preventing volume prune/deletion (#983)
- 🐛 ntfy self-hosted notifications fail when using ?auth= query parameter (#840)
- 🐛 scrollbar appears in dashboard tiles when content overflows (#969)
- 🐛 case-sensitive environment sort order — lowercase names sorted after uppercase (#975)
- 🐛 inaccurate dashboard CPU gauge caused by one-shot stats flag (#932)
- ✨ ntfy notifications support ?tags=, ?title=, and ?priority= URL query parameters (#689)
- 🐛 stack .env file wiped when saving from graph view (#988)
- ✨ dismiss update available indicators without updating (#853)
- ✨ public IP setting available for hawser-edge environments — enables clickable port links (#350)
- 🐛 git stack creation silently destroys existing stacks with the same name (#1001)
- ✨ static IP/MAC address configuration for containers (#297)
Docker image
docker pull fnsys/dockhand:v1.0.28Also available as fnsys/dockhand:latest