Update all stable non-major dependencies

renovate commented

2026-03-07 22:32:00 +01:00

Member

This PR contains the following updates:

Package	Update	Change
docker.io/binwiederhier/ntfy (source)	minor	`v2.17.0` → `v2.20.1`
docker.io/grafana/grafana	patch	`12.4.0` → `12.4.2`
docker.io/grafana/loki	minor	`3.6.7` → `3.7.1`
docker.io/library/nginx	patch	`1.29.5` → `1.29.7`
docker.io/library/redis	patch	`8.6.1` → `8.6.2`
docker.io/matrixdotorg/mjolnir	patch	`v1.12.0` → `v1.12.1`
docker.io/prompve/prometheus-pve-exporter	patch	`3.8.1` → `3.8.2`
netbox	patch	`v4.5.4` → `v4.5.5`
quay.io/oauth2-proxy/oauth2-proxy (source)	minor	`v7.14.3` → `v7.15.1`

Release Notes

binwiederhier/ntfy (docker.io/binwiederhier/ntfy)

`v2.20.1`

Compare Source

This is a small bugfix release that only affects high volume S3 backends that struggle with HTTP/2.

Bug fixes + maintenance:

Attachments: Add disable_http2=true S3 URL option to work around HTTP/2 stream errors with DigitalOcean Spaces and other S3-compatible providers (#1678/#1679)

This release is another step towards making it possible to help scale ntfy up and out 🔥! With this release, you can store attachments in an S3-compatible object store as an alterative to the directory. See attachment store for details.

⚠️ Important note: With this release, ntfy will take full control over the attachment directory or S3 bucket. Files/objects in the configured attachment-cache-dir that match the message ID format (12 chars, matching ^[A-Za-z0-9]{12}$), and have no entries in the message database will be deleted. Do not use a directory or S3 bucket as attachment-cache-dir that is also used for something else.

This is a small behavioral change that was necessary because the old logic often left attachments behind and would not clean them up. Unless you have re-used the attachment directory for anything else (which is hopefully never done), this should not affect you at all.

Features:

Add S3-compatible object storage as an alternative attachment store via attachment-cache-dir config option (#1656/#1672)

Bug fixes + maintenance:

Reject invalid e-mail addresses (e.g. multiple comma-separated recipients) with HTTP 400
Add OpenRC init service file (#1650, thanks to @ageru for the contribution)

`v2.19.2`

Compare Source

This is another small bugfix release for PostgreSQL, avoiding races between primary and read replica, as well as to further reduce primary load.

Bug fixes + maintenance:

Fix race condition in web push subscription causing FK constraint violation when concurrent requests hit the same endpoint
Route authorization query to read-only database replica to reduce primary database load

`v2.19.1`

Compare Source

This is a bugfix release to avoid PostgreSQL insert failures due to invalid UTF-8 messages. It also fixes database-url validation incorrectly rejecting postgresql:// connection strings.

Bug fixes + maintenance:

Fix invalid UTF-8 in HTTP headers (e.g. Latin-1 encoded text) causing PostgreSQL insert failures and dropping entire message batches
Fix database-url validation rejecting postgresql:// connection strings (#1657/#1658)

`v2.19.0`

Compare Source

This is a fast-follow release that enables Postgres read replica support.

To offload read-heavy queries from the primary database, you can optionally configure one or more read replicas using the database-replica-urls option. When configured, non-critical read-only queries (e.g. fetching messages, checking access permissions, etc) are distributed across the replicas using round-robin, while all writes and correctness-critical reads continue to go to the primary. If a replica becomes unhealthy, ntfy automatically falls back to the primary until the replica recovers.

Features:

Support PostgreSQL read replicas for offloading non-critical read queries via database-replica-urls config option (#1648)
Add interactive config generator to the documentation to help create server configuration files (#1654)

Bug fixes + maintenance:

Web: Throttle notification sound in web app to play at most once every 2 seconds (similar to #1550, thanks to @jlaffaye for reporting)
Web: Add hover tooltips to icon buttons in web app account and preferences pages (#1565, thanks to @jermanuts for reporting)

`v2.18.0`

Compare Source

This is the biggest release I've ever done on the server. It's 14,997 added lines of code, and 10,202 lines removed, all from one pull request that adds PostgreSQL support.

The code was written by Cursor and Claude, but reviewed and heavily tested over 2-3 weeks by me. I created comparison documents, went through all queries multiple times and reviewed the logic over and over again. I also did load tests and manual regression tests, which took lots of evenings.

ntfy.sh was successfully upgraded to 2.18.0 (though not with Postgres backend yet, as per the rollout plan).

I'm kindly asking the community to test the Postgres support and report back to me if things are working (or not working). There is a one-off migration tool (entirely written by AI) that you can use to migrate.

Features:

Add experimental PostgreSQL support as an alternative database backend (message cache, user manager, web push subscriptions) via database-url config option (#1114/#1619, thanks to @brettinternet for reporting)

Bug fixes + maintenance:

Preserve <br> line breaks in HTML-only emails received via SMTP (#690, #1620, thanks to @uzkikh for the fix and to @teastrainer for reporting)

grafana/grafana (docker.io/grafana/grafana)

`v12.4.2`

Compare Source

Features and enhancements

Analytics tab: Improve voice over accessibility (Enterprise)
Dashboards a11y: Do not open time zonemenu on focus #120388, @idastambuk
Dashboards: Resolve display names by identity in version history #120273, @ivanortegaalba
Plugins: Forward AWS SDK credential chain env vars to external AWS plugins #120209, @kevinwcyu
Public Dashboards: Prevent unintended CRUD operations from different orgs #120457, @mmandrus

Bug fixes

IAM: Handle NULL team_member.external column to fix dashboard loading #120179, @difro
Plugins: Fix installer IsDisabled condition #120568, @andresmgot
Plugins: Forward PLUGIN_UNIX_SOCKET_DIR to plugin processes to fix tmp dir in restricted environments #120275, @HarshadaGawas05
Security: Fix CVE-2026-27876
Security: Fix CVE-2026-27877
Security: Fix CVE-2026-28375
Security: Fix CVE-2026-27879
Security: Fix CVE-2026-27880
Security: Fix CVE-2026-27876
Security: Fix CVE-2026-27876
Security: Fix CVE-2026-33375

`v12.4.1`

Compare Source

Features and enhancements

AccessControl: Invalidate scope resolver cache on datasource deletion #118741, @mihai-turdean
Go: Update to 1.25.8 #119693, @macabu
Rendering: Add support for custom CA certs in Image Renderer #118859, @mrevutskyi

Bug fixes

AccessControl: Fix test utility for datasource deletion permissions cleanup (Enterprise)
Alerting: Change scope for testing new receivers to use supported resource type. #118495, @yuri-tceretian
Alerting: Fix CollateAlertRuleGroup migration for MariaDB compatibility #119028, @alexander-akhmetov

prometheus-pve/prometheus-pve-exporter (docker.io/prompve/prometheus-pve-exporter)

`v3.8.2`

Compare Source

Changed


- Add security note to the README file (#&#8203;423)
- Bump docker/setup-buildx-action from 3 to 4 (#&#8203;424)
- Bump docker/build-push-action from 6 to 7 (#&#8203;425)
- Bump docker/login-action from 3 to 4 (#&#8203;426)
- Bump wrapt from 2.1.1 to 2.1.2 (#&#8203;419)
- Bump proxmoxer from 2.2.0 to 2.3.0 (#&#8203;418)
- Bump werkzeug from 3.1.5 to 3.1.6 (#&#8203;411)
- Bump docker/metadata-action from 5 to 6 (#&#8203;417)
- Bump docker/setup-qemu-action from 3 to 4 (#&#8203;416)
- Bump actions/attest-build-provenance from 3 to 4 (#&#8203;415)
- Bump actions/download-artifact from 7 to 8 (#&#8203;414)
- Bump actions/upload-artifact from 6 to 7 (#&#8203;413)
- fix: f-string in module-not-found response and move url_map to __init__ (#&#8203;421)

`3.8.1`_ - 2025-02-11
---------------------

Changed

Bump wrapt from 2.1.0 to 2.1.1 (#406)
Bump wrapt from 2.0.1 to 2.1.0 (#403)
Bump alpine from 3.23.2 to 3.23.3 (#402)
Bump cryptography from 44.0.1 to 46.0.5 (#407)
Bump prometheus-client from 0.23.1 to 0.24.1 (#400)
Bump werkzeug from 3.1.4 to 3.1.5 (#399)
Bump urllib3 from 2.6.0 to 2.6.3 (#398)
Bump pynacl from 1.5.0 to 1.6.2 (#396)

netbox-community/netbox (netbox)

`v4.5.5`: - 2026-03-17

Compare Source

Enhancements

#21114 - Support path exclusions for data source synchronization
#21578 - Support identifying scope object by name or slug when bulk importing scoped objects

Performance Improvements

#21330 - Optimize the assignment of tags when saving objects
#21402 - Avoid excessive database queries when rendering unnamed devices via the REST API
#21611 - Replace inefficient calls to .count() with .exists()

Bug Fixes

#19867 - Preserve the "per page" pagination setting when returning from object edit forms
#20077 - Fix form field focus bug in Microsoft Edge
#20385 - Enforce MAX_PAGE_SIZE limit for GraphQL API requests
#20468 - Fix range-based filter lookups for integer fields in GraphQL API
#20915 - Restore user language preference after login via social authentication
#20934 - Fix dark mode flicker on page load
#21012 - Add pagination for VLAN table on interface view to prevent silent truncation at 100 entries
#21380 - Fix display of the background tasks table on mobile
#21440 - Avoid erroneously clearing primary/OOB IP assignments during bulk import/update
#21468 - Preserve safe custom HTTP headers when copying requests for background job processing
#21486 - Fix AttributeError exception caused by missing COOKIES attribute on NetBoxFakeRequest
#21512 - Fix GraphQL filter field name mismatch for device component types (e.g. console_ports)
#21531 - Fix search functionality for location when combined with other filters
#21556 - Avoid clearing the platform field when changing device type in the device edit form
#21579 - Hide the script "Add" button for users lacking the required permission
#21580 - Hide the virtual machine "Add components" dropdown for users lacking change permission
#21586 - Fix broken "Add child group" link in site group view (was pointing to the region endpoint)
#21618 - Fix cable termination points being lost when bulk-editing the cable profile
#21651 - Disable sorting by the is_primary column in the MAC address list view
#21653 - Fix profile-based cable tracing when a single origin carries multiple positions
#21673 - Fix display of primary IP address with associated NAT IP on virtual machine view
#21686 - Clean up cached circuit attributes when reassigning a circuit termination

oauth2-proxy/oauth2-proxy (quay.io/oauth2-proxy/oauth2-proxy)

`v7.15.1`

Compare Source

`v7.15.0`

Compare Source

#3382 chore(deps): update gomod and golangci/golangci-lint to v2.11.4 (@tuunit)
#3374 fix: handle Unix socket RemoteAddr in IP resolution (@H1net)
#3381 fix: do not log error for backend logout 204 (@artificiosus)
#3327 fix: improve logging when session refresh token is missing (@yosri-brh)
#2767 fix: propagate errors during route building (@sybereal)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [docker.io/binwiederhier/ntfy](https://ntfy.sh/) ([source](https://github.com/binwiederhier/ntfy)) | minor | `v2.17.0` → `v2.20.1` | | [docker.io/grafana/grafana](https://github.com/grafana/grafana) | patch | `12.4.0` → `12.4.2` | | docker.io/grafana/loki | minor | `3.6.7` → `3.7.1` | | docker.io/library/nginx | patch | `1.29.5` → `1.29.7` | | docker.io/library/redis | patch | `8.6.1` → `8.6.2` | | docker.io/matrixdotorg/mjolnir | patch | `v1.12.0` → `v1.12.1` | | [docker.io/prompve/prometheus-pve-exporter](https://github.com/prometheus-pve/prometheus-pve-exporter) | patch | `3.8.1` → `3.8.2` | | [netbox](https://github.com/netbox-community/netbox) | patch | `v4.5.4` → `v4.5.5` | | [quay.io/oauth2-proxy/oauth2-proxy](https://quay.io/oauth2-proxy/oauth2-proxy) ([source](https://github.com/oauth2-proxy/oauth2-proxy)) | minor | `v7.14.3` → `v7.15.1` | --- ### Release Notes <details> <summary>binwiederhier/ntfy (docker.io/binwiederhier/ntfy)</summary> ### [`v2.20.1`](https://github.com/binwiederhier/ntfy/releases/tag/v2.20.1) [Compare Source](https://github.com/binwiederhier/ntfy/compare/v2.20.0...v2.20.1) This is a small bugfix release that only affects high volume S3 backends that struggle with HTTP/2. **Bug fixes + maintenance:** - [Attachments](https://docs.ntfy.sh/config/#attachments): Add `disable_http2=true` S3 URL option to work around HTTP/2 stream errors with DigitalOcean Spaces and other S3-compatible providers ([#1678](https://github.com/binwiederhier/ntfy/issues/1678)/[#1679](https://github.com/binwiederhier/ntfy/pull/1679)) ### [`v2.20.0`](https://github.com/binwiederhier/ntfy/releases/tag/v2.20.0) [Compare Source](https://github.com/binwiederhier/ntfy/compare/v2.19.2...v2.20.0) This release is another step towards making it possible to help scale ntfy up and out 🔥! With this release, you can store attachments in an S3-compatible object store as an alterative to the directory. See [attachment store](https://docs.ntfy.sh/config/#attachments) for details. > :warning: **Important note:** With this release, ntfy will take full control over the attachment directory or S3 bucket. Files/objects in the configured `attachment-cache-dir` that match the message ID format (12 chars, matching `^[A-Za-z0-9]{12}$`), and have no entries in the message database will be deleted. **Do not use a directory or S3 bucket as `attachment-cache-dir` that is also used for something else.** > > This is a small behavioral change that was necessary because the old logic often left attachments behind and would not clean them up. Unless you have re-used the attachment directory for anything else (which is hopefully never done), this should not affect you at all. **Features:** - Add S3-compatible object storage as an alternative [attachment store](https://docs.ntfy.sh/config/#attachments) via `attachment-cache-dir` config option ([#1656](https://github.com/binwiederhier/ntfy/pull/1656)/[#1672](https://github.com/binwiederhier/ntfy/pull/1672)) **Bug fixes + maintenance:** - Reject invalid e-mail addresses (e.g. multiple comma-separated recipients) with HTTP 400 - Add OpenRC init service file ([#1650](https://github.com/binwiederhier/ntfy/pull/1650), thanks to [@ageru](https://github.com/ageru) for the contribution) ### [`v2.19.2`](https://github.com/binwiederhier/ntfy/releases/tag/v2.19.2) [Compare Source](https://github.com/binwiederhier/ntfy/compare/v2.19.1...v2.19.2) This is another small bugfix release for PostgreSQL, avoiding races between primary and read replica, as well as to further reduce primary load. **Bug fixes + maintenance:** - Fix race condition in web push subscription causing FK constraint violation when concurrent requests hit the same endpoint - Route authorization query to read-only database replica to reduce primary database load ### [`v2.19.1`](https://github.com/binwiederhier/ntfy/releases/tag/v2.19.1) [Compare Source](https://github.com/binwiederhier/ntfy/compare/v2.19.0...v2.19.1) This is a bugfix release to avoid PostgreSQL insert failures due to invalid UTF-8 messages. It also fixes `database-url` validation incorrectly rejecting `postgresql://` connection strings. **Bug fixes + maintenance:** - Fix invalid UTF-8 in HTTP headers (e.g. Latin-1 encoded text) causing PostgreSQL insert failures and dropping entire message batches - Fix `database-url` validation rejecting `postgresql://` connection strings ([#1657](https://github.com/binwiederhier/ntfy/issues/1657)/[#1658](https://github.com/binwiederhier/ntfy/pull/1658)) ### [`v2.19.0`](https://github.com/binwiederhier/ntfy/releases/tag/v2.19.0) [Compare Source](https://github.com/binwiederhier/ntfy/compare/v2.18.0...v2.19.0) This is a fast-follow release that enables Postgres read replica support. To offload read-heavy queries from the primary database, you can optionally configure one or more read replicas using the `database-replica-urls` option. When configured, non-critical read-only queries (e.g. fetching messages, checking access permissions, etc) are distributed across the replicas using round-robin, while all writes and correctness-critical reads continue to go to the primary. If a replica becomes unhealthy, ntfy automatically falls back to the primary until the replica recovers. **Features:** - Support [PostgreSQL read replicas](https://docs.ntfy.sh/config/#postgresql-experimental) for offloading non-critical read queries via `database-replica-urls` config option ([#1648](https://github.com/binwiederhier/ntfy/pull/1648)) - Add interactive [config generator](https://docs.ntfy.sh/config/#config-generator) to the documentation to help create server configuration files ([#1654](https://github.com/binwiederhier/ntfy/pull/1654)) **Bug fixes + maintenance:** - Web: Throttle notification sound in web app to play at most once every 2 seconds (similar to [#1550](https://github.com/binwiederhier/ntfy/issues/1550), thanks to [@jlaffaye](https://github.com/jlaffaye) for reporting) - Web: Add hover tooltips to icon buttons in web app account and preferences pages ([#1565](https://github.com/binwiederhier/ntfy/issues/1565), thanks to [@jermanuts](https://github.com/jermanuts) for reporting) ### [`v2.18.0`](https://github.com/binwiederhier/ntfy/releases/tag/v2.18.0) [Compare Source](https://github.com/binwiederhier/ntfy/compare/v2.17.0...v2.18.0) This is the biggest release I've ever done on the server. It's 14,997 added lines of code, and 10,202 lines removed, all from one [pull request](https://github.com/binwiederhier/ntfy/pull/1619) that adds [PostgreSQL support](https://docs.ntfy.sh/config/#postgresql-experimental). The code was written by Cursor and Claude, but reviewed and heavily tested over 2-3 weeks by me. I created comparison documents, went through all queries multiple times and reviewed the logic over and over again. I also did load tests and manual regression tests, which took lots of evenings. ntfy.sh was successfully upgraded to 2.18.0 (though not with Postgres backend yet, as per the [rollout plan](https://github.com/binwiederhier/ntfy/issues/1114#issuecomment-3991245185)). I'm kindly asking the community to test the Postgres support and report back to me if things are working (or not working). There is a [one-off migration tool](https://github.com/binwiederhier/ntfy/tree/main/tools/pgimport) (entirely written by AI) that you can use to migrate. **Features:** - Add experimental [PostgreSQL support](https://docs.ntfy.sh/config/#postgresql-experimental) as an alternative database backend (message cache, user manager, web push subscriptions) via `database-url` config option ([#1114](https://github.com/binwiederhier/ntfy/issues/1114)/[#1619](https://github.com/binwiederhier/ntfy/pull/1619), thanks to [@brettinternet](https://github.com/brettinternet) for reporting) **Bug fixes + maintenance:** - Preserve `<br>` line breaks in HTML-only emails received via SMTP ([#690](https://github.com/binwiederhier/ntfy/issues/690), [#1620](https://github.com/binwiederhier/ntfy/pull/1620), thanks to [@uzkikh](https://github.com/uzkikh) for the fix and to [@teastrainer](https://github.com/teastrainer) for reporting) </details> <details> <summary>grafana/grafana (docker.io/grafana/grafana)</summary> ### [`v12.4.2`](https://github.com/grafana/grafana/blob/HEAD/CHANGELOG.md#1242-2026-03-25) [Compare Source](https://github.com/grafana/grafana/compare/v12.4.1...v12.4.2) ##### Features and enhancements - **Analytics tab:** Improve voice over accessibility (Enterprise) - **Dashboards a11y:** Do not open time zonemenu on focus [#120388](https://github.com/grafana/grafana/pull/120388), [@idastambuk](https://github.com/idastambuk) - **Dashboards:** Resolve display names by identity in version history [#120273](https://github.com/grafana/grafana/pull/120273), [@ivanortegaalba](https://github.com/ivanortegaalba) - **Plugins:** Forward AWS SDK credential chain env vars to external AWS plugins [#120209](https://github.com/grafana/grafana/pull/120209), [@kevinwcyu](https://github.com/kevinwcyu) - **Public Dashboards:** Prevent unintended CRUD operations from different orgs [#120457](https://github.com/grafana/grafana/pull/120457), [@mmandrus](https://github.com/mmandrus) ##### Bug fixes - **IAM:** Handle NULL team\_member.external column to fix dashboard loading [#120179](https://github.com/grafana/grafana/pull/120179), [@difro](https://github.com/difro) - **Plugins:** Fix installer IsDisabled condition [#120568](https://github.com/grafana/grafana/pull/120568), [@andresmgot](https://github.com/andresmgot) - **Plugins:** Forward PLUGIN\_UNIX\_SOCKET\_DIR to plugin processes to fix tmp dir in restricted environments [#120275](https://github.com/grafana/grafana/pull/120275), [@HarshadaGawas05](https://github.com/HarshadaGawas05) - **Security:** Fix CVE-2026-27876 - **Security:** Fix CVE-2026-27877 - **Security:** Fix CVE-2026-28375 - **Security:** Fix CVE-2026-27879 - **Security:** Fix CVE-2026-27880 - **Security:** Fix CVE-2026-27876 - **Security:** Fix CVE-2026-27876 - **Security:** Fix CVE-2026-33375   ### [`v12.4.1`](https://github.com/grafana/grafana/blob/HEAD/CHANGELOG.md#1241-2026-03-09) [Compare Source](https://github.com/grafana/grafana/compare/v12.4.0...v12.4.1) ##### Features and enhancements - **AccessControl:** Invalidate scope resolver cache on datasource deletion [#118741](https://github.com/grafana/grafana/pull/118741), [@mihai-turdean](https://github.com/mihai-turdean) - **Go:** Update to 1.25.8 [#119693](https://github.com/grafana/grafana/pull/119693), [@macabu](https://github.com/macabu) - **Rendering:** Add support for custom CA certs in Image Renderer [#118859](https://github.com/grafana/grafana/pull/118859), [@mrevutskyi](https://github.com/mrevutskyi) ##### Bug fixes - **AccessControl:** Fix test utility for datasource deletion permissions cleanup (Enterprise) - **Alerting:** Change scope for testing new receivers to use supported resource type. [#118495](https://github.com/grafana/grafana/pull/118495), [@yuri-tceretian](https://github.com/yuri-tceretian) - **Alerting:** Fix CollateAlertRuleGroup migration for MariaDB compatibility [#119028](https://github.com/grafana/grafana/pull/119028), [@alexander-akhmetov](https://github.com/alexander-akhmetov)   </details> <details> <summary>prometheus-pve/prometheus-pve-exporter (docker.io/prompve/prometheus-pve-exporter)</summary> ### [`v3.8.2`](https://github.com/prometheus-pve/prometheus-pve-exporter/blob/HEAD/CHANGELOG.rst#382---2025-03-22) [Compare Source](https://github.com/prometheus-pve/prometheus-pve-exporter/compare/v3.8.1...v3.8.2) Changed ``` - Add security note to the README file (#423) - Bump docker/setup-buildx-action from 3 to 4 (#424) - Bump docker/build-push-action from 6 to 7 (#425) - Bump docker/login-action from 3 to 4 (#426) - Bump wrapt from 2.1.1 to 2.1.2 (#419) - Bump proxmoxer from 2.2.0 to 2.3.0 (#418) - Bump werkzeug from 3.1.5 to 3.1.6 (#411) - Bump docker/metadata-action from 5 to 6 (#417) - Bump docker/setup-qemu-action from 3 to 4 (#416) - Bump actions/attest-build-provenance from 3 to 4 (#415) - Bump actions/download-artifact from 7 to 8 (#414) - Bump actions/upload-artifact from 6 to 7 (#413) - fix: f-string in module-not-found response and move url_map to __init__ (#421) `3.8.1`_ - 2025-02-11 --------------------- Changed ``` - Bump wrapt from 2.1.0 to 2.1.1 ([#406](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/406)) - Bump wrapt from 2.0.1 to 2.1.0 ([#403](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/403)) - Bump alpine from 3.23.2 to 3.23.3 ([#402](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/402)) - Bump cryptography from 44.0.1 to 46.0.5 ([#407](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/407)) - Bump prometheus-client from 0.23.1 to 0.24.1 ([#400](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/400)) - Bump werkzeug from 3.1.4 to 3.1.5 ([#399](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/399)) - Bump urllib3 from 2.6.0 to 2.6.3 ([#398](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/398)) - Bump pynacl from 1.5.0 to 1.6.2 ([#396](https://github.com/prometheus-pve/prometheus-pve-exporter/issues/396)) </details> <details> <summary>netbox-community/netbox (netbox)</summary> ### [`v4.5.5`](https://github.com/netbox-community/netbox/releases/tag/v4.5.5): - 2026-03-17 [Compare Source](https://github.com/netbox-community/netbox/compare/v4.5.4...v4.5.5) ##### Enhancements - [#21114](https://github.com/netbox-community/netbox/issues/21114) - Support path exclusions for data source synchronization - [#21578](https://github.com/netbox-community/netbox/issues/21578) - Support identifying scope object by name or slug when bulk importing scoped objects ##### Performance Improvements - [#21330](https://github.com/netbox-community/netbox/issues/21330) - Optimize the assignment of tags when saving objects - [#21402](https://github.com/netbox-community/netbox/issues/21402) - Avoid excessive database queries when rendering unnamed devices via the REST API - [#21611](https://github.com/netbox-community/netbox/issues/21611) - Replace inefficient calls to `.count()` with `.exists()` ##### Bug Fixes - [#19867](https://github.com/netbox-community/netbox/issues/19867) - Preserve the "per page" pagination setting when returning from object edit forms - [#20077](https://github.com/netbox-community/netbox/issues/20077) - Fix form field focus bug in Microsoft Edge - [#20385](https://github.com/netbox-community/netbox/issues/20385) - Enforce `MAX_PAGE_SIZE` limit for GraphQL API requests - [#20468](https://github.com/netbox-community/netbox/issues/20468) - Fix range-based filter lookups for integer fields in GraphQL API - [#20915](https://github.com/netbox-community/netbox/issues/20915) - Restore user language preference after login via social authentication - [#20934](https://github.com/netbox-community/netbox/issues/20934) - Fix dark mode flicker on page load - [#21012](https://github.com/netbox-community/netbox/issues/21012) - Add pagination for VLAN table on interface view to prevent silent truncation at 100 entries - [#21380](https://github.com/netbox-community/netbox/issues/21380) - Fix display of the background tasks table on mobile - [#21440](https://github.com/netbox-community/netbox/issues/21440) - Avoid erroneously clearing primary/OOB IP assignments during bulk import/update - [#21468](https://github.com/netbox-community/netbox/issues/21468) - Preserve safe custom HTTP headers when copying requests for background job processing - [#21486](https://github.com/netbox-community/netbox/issues/21486) - Fix `AttributeError` exception caused by missing `COOKIES` attribute on `NetBoxFakeRequest` - [#21512](https://github.com/netbox-community/netbox/issues/21512) - Fix GraphQL filter field name mismatch for device component types (e.g. `console_ports`) - [#21531](https://github.com/netbox-community/netbox/issues/21531) - Fix search functionality for location when combined with other filters - [#21556](https://github.com/netbox-community/netbox/issues/21556) - Avoid clearing the platform field when changing device type in the device edit form - [#21579](https://github.com/netbox-community/netbox/issues/21579) - Hide the script "Add" button for users lacking the required permission - [#21580](https://github.com/netbox-community/netbox/issues/21580) - Hide the virtual machine "Add components" dropdown for users lacking change permission - [#21586](https://github.com/netbox-community/netbox/issues/21586) - Fix broken "Add child group" link in site group view (was pointing to the region endpoint) - [#21618](https://github.com/netbox-community/netbox/issues/21618) - Fix cable termination points being lost when bulk-editing the cable profile - [#21651](https://github.com/netbox-community/netbox/issues/21651) - Disable sorting by the `is_primary` column in the MAC address list view - [#21653](https://github.com/netbox-community/netbox/issues/21653) - Fix profile-based cable tracing when a single origin carries multiple positions - [#21673](https://github.com/netbox-community/netbox/issues/21673) - Fix display of primary IP address with associated NAT IP on virtual machine view - [#21686](https://github.com/netbox-community/netbox/issues/21686) - Clean up cached circuit attributes when reassigning a circuit termination </details> <details> <summary>oauth2-proxy/oauth2-proxy (quay.io/oauth2-proxy/oauth2-proxy)</summary> ### [`v7.15.1`](https://github.com/oauth2-proxy/oauth2-proxy/blob/HEAD/CHANGELOG.md#Changes-since-v7151) [Compare Source](https://github.com/oauth2-proxy/oauth2-proxy/compare/v7.15.0...v7.15.1) ### [`v7.15.0`](https://github.com/oauth2-proxy/oauth2-proxy/blob/HEAD/CHANGELOG.md#Changes-since-v7150) [Compare Source](https://github.com/oauth2-proxy/oauth2-proxy/compare/v7.14.3...v7.15.0) - [#3382](https://github.com/oauth2-proxy/oauth2-proxy/pull/3382) chore(deps): update gomod and golangci/golangci-lint to v2.11.4 ([@tuunit](https://github.com/tuunit)) - [#3374](https://github.com/oauth2-proxy/oauth2-proxy/pull/3374) fix: handle Unix socket RemoteAddr in IP resolution ([@H1net](https://github.com/H1net)) - [#3381](https://github.com/oauth2-proxy/oauth2-proxy/pull/3381) fix: do not log error for backend logout 204 ([@artificiosus](https://github.com/artificiosus)) - [#3327](https://github.com/oauth2-proxy/oauth2-proxy/pull/3327) fix: improve logging when session refresh token is missing ([@yosri-brh](https://github.com/yosri-brh)) - [#2767](https://github.com/oauth2-proxy/oauth2-proxy/pull/2767) fix: propagate errors during route building ([@sybereal](https://github.com/sybereal)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).

renovate added the

renovate

label

2026-03-07 22:32:00 +01:00

renovate added 1 commit

2026-03-07 22:32:00 +01:00

Update docker.io/binwiederhier/ntfy Docker tag to v2.18.0

/ Ansible Lint (pull_request) Successful in 2m26s

Details

/ Ansible Lint (push) Successful in 2m29s

Details

ac74db2919

renovate force-pushed renovate/all-stable-minor-patch from ac74db2919

/ Ansible Lint (pull_request) Successful in 2m26s

Details

/ Ansible Lint (push) Successful in 2m29s

Details

to 2c7220d944

/ Ansible Lint (pull_request) Successful in 8m39s

Details

/ Ansible Lint (push) Successful in 15m45s

Details

2026-03-09 16:30:52 +01:00

Compare

renovate changed title from ~~Update docker.io/binwiederhier/ntfy Docker tag to v2.18.0~~ to Update all stable non-major dependencies

2026-03-09 16:30:54 +01:00

renovate force-pushed renovate/all-stable-minor-patch from 2c7220d944

/ Ansible Lint (pull_request) Successful in 8m39s

Details

/ Ansible Lint (push) Successful in 15m45s

Details

to d98f5365b1

/ Ansible Lint (push) Successful in 3m0s

Details

/ Ansible Lint (pull_request) Successful in 3m4s

Details

2026-03-10 01:31:30 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from d98f5365b1

/ Ansible Lint (push) Successful in 3m0s

Details

/ Ansible Lint (pull_request) Successful in 3m4s

Details

to 4c99da8ab9

/ Ansible Lint (push) Successful in 2m56s

Details

/ Ansible Lint (pull_request) Successful in 2m58s

Details

2026-03-11 01:16:44 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 4c99da8ab9

/ Ansible Lint (push) Successful in 2m56s

Details

/ Ansible Lint (pull_request) Successful in 2m58s

Details

to 662688f7dc

/ Ansible Lint (push) Successful in 2m31s

Details

/ Ansible Lint (pull_request) Successful in 2m34s

Details

2026-03-16 01:31:34 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 662688f7dc

/ Ansible Lint (push) Successful in 2m31s

Details

/ Ansible Lint (pull_request) Successful in 2m34s

Details

to b52f5c0e68

/ Ansible Lint (pull_request) Successful in 2m33s

Details

/ Ansible Lint (push) Successful in 2m36s

Details

2026-03-16 03:03:25 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from b52f5c0e68

/ Ansible Lint (pull_request) Successful in 2m33s

Details

/ Ansible Lint (push) Successful in 2m36s

Details

to b29514430b

/ Ansible Lint (push) Successful in 2m45s

Details

/ Ansible Lint (pull_request) Successful in 2m44s

Details

2026-03-17 02:01:36 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from b29514430b

/ Ansible Lint (push) Successful in 2m45s

Details

/ Ansible Lint (pull_request) Successful in 2m44s

Details

to 98213073a8

/ Ansible Lint (pull_request) Successful in 2m28s

Details

/ Ansible Lint (push) Successful in 2m30s

Details

2026-03-18 02:16:43 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 98213073a8

/ Ansible Lint (pull_request) Successful in 2m28s

Details

/ Ansible Lint (push) Successful in 2m30s

Details

to 814b0b046c

/ Ansible Lint (pull_request) Successful in 3m19s

Details

/ Ansible Lint (push) Successful in 4m5s

Details

2026-03-18 19:00:53 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 814b0b046c

/ Ansible Lint (pull_request) Successful in 3m19s

Details

/ Ansible Lint (push) Successful in 4m5s

Details

to 9a19381e67

/ Ansible Lint (push) Successful in 12m56s

Details

/ Ansible Lint (pull_request) Successful in 14m27s

Details

2026-03-22 15:01:19 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 9a19381e67

/ Ansible Lint (push) Successful in 12m56s

Details

/ Ansible Lint (pull_request) Successful in 14m27s

Details

to a88f9eecbe

/ Ansible Lint (push) Successful in 2m33s

Details

/ Ansible Lint (pull_request) Successful in 2m34s

Details

2026-03-23 16:15:56 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from a88f9eecbe

/ Ansible Lint (push) Successful in 2m33s

Details

/ Ansible Lint (pull_request) Successful in 2m34s

Details

to 2495368790

/ Ansible Lint (pull_request) Successful in 2m58s

Details

/ Ansible Lint (push) Successful in 3m1s

Details

2026-03-25 01:46:38 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 2495368790

/ Ansible Lint (pull_request) Successful in 2m58s

Details

/ Ansible Lint (push) Successful in 3m1s

Details

to 705efc862d

/ Ansible Lint (push) Successful in 3m5s

Details

/ Ansible Lint (pull_request) Successful in 3m4s

Details

2026-03-26 02:01:40 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 705efc862d

/ Ansible Lint (push) Successful in 3m5s

Details

/ Ansible Lint (pull_request) Successful in 3m4s

Details

to a0d0dce0a3

/ Ansible Lint (pull_request) Successful in 3m27s

Details

/ Ansible Lint (push) Successful in 3m32s

Details

2026-03-26 18:01:04 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from a0d0dce0a3

/ Ansible Lint (pull_request) Successful in 3m27s

Details

/ Ansible Lint (push) Successful in 3m32s

Details

to 45789e2972

/ Ansible Lint (push) Successful in 2m38s

Details

/ Ansible Lint (pull_request) Successful in 2m40s

Details

2026-03-26 19:15:46 +01:00

Compare

renovate force-pushed renovate/all-stable-minor-patch from 45789e2972

/ Ansible Lint (push) Successful in 2m38s

Details

/ Ansible Lint (pull_request) Successful in 2m40s

Details

to 66830eaf30

/ Ansible Lint (pull_request) Successful in 2m45s

Details

/ Ansible Lint (push) Successful in 11m4s

Details

2026-03-28 02:01:40 +01:00

Compare

june merged commit 66830eaf30 into main

2026-03-30 20:42:18 +02:00

june deleted branch renovate/all-stable-minor-patch

2026-03-30 20:42:18 +02:00

Rows
Columns

Update all stable non-major dependencies #73

Release Notes

Features and enhancements

Bug fixes

Features and enhancements

Bug fixes

v4.5.5: - 2026-03-17

Enhancements

Performance Improvements

Bug Fixes

Configuration

`v4.5.5`: - 2026-03-17