diff --git a/vikunja/docker-compose.yml b/vikunja/docker-compose.yml index a95b9c87..c1a5a4fe 100644 --- a/vikunja/docker-compose.yml +++ b/vikunja/docker-compose.yml @@ -25,7 +25,7 @@ services: start_period: 30s web: - image: vikunja/vikunja:2.1.0@sha256:f13103b0287aef74a69241fa46e6cac76e14caf643602144ccaca57fc76e587f + image: vikunja/vikunja:2.2.2@sha256:a96c20c0997bae4a445bf717002328524c5449c2b64391032c671ff4e1d8b2fa environment: VIKUNJA_SERVICE_PUBLICURL: http://${DEVICE_DOMAIN_NAME}:4523 VIKUNJA_DATABASE_HOST: vikunja_db_1 diff --git a/vikunja/umbrel-app.yml b/vikunja/umbrel-app.yml index 3af0a6cf..d6cf4610 100644 --- a/vikunja/umbrel-app.yml +++ b/vikunja/umbrel-app.yml @@ -2,7 +2,7 @@ manifestVersion: 1 id: vikunja category: files name: Vikunja -version: "2.1.0" +version: "2.2.2" tagline: The open-source, self-hostable to-do app description: >- Think of Vikunja like the notebook you have with all your things to keep track of. But with superpowers. @@ -22,12 +22,15 @@ description: >- You can view your tasks in the classic list view - or in a Gantt Chart, or Table view, or Kanban Board. Whatever you need! releaseNotes: >- - 🚨 This release fixes multiple critical security issues, including a security fix in v1.1.0, 4 critical security issues in v2.0.0, and a password reset token vulnerability in v2.1.0. Upgrading is highly recommended. + 🚨 This release fixes multiple critical security issues, including 10 security fixes in v2.2.0 and a critical chain in v2.2.2 that could expose instance-wide data. Upgrading is highly recommended. Key highlights in this release: - - Fixed a security issue with password reset tokens - - Checklist indicators now turn green when all items are done + - Nine security fixes including a critical vulnerability that could expose instance-wide data + - Centralized SSRF protection added + - Task duplication support + - Improved Gantt chart with subtask hierarchy and dependency arrows + - User-level webhooks Full release notes are available at https://vikunja.io/changelog/