dozzle

v10.6.2 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 8d Logging

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

docker go kubernetes log logging logging-server

+4 more

real-time sever-events swarm vuejs

Affected surfaces

auth

ReleasePort's take

Moderate signal

editorial:auto 8d

The release adds support for accepting container names or IDs in cloud‑scoped tools and enforces the Secure flag on JWT session cookies for HTTPS requests.

Why it matters: Enforcing the Secure flag (severity 80) prevents JWT cookie leakage over insecure connections; new tooling input flexibility expands operational workflows.

Summary

AI summary

Updates 🐞 Bug Fixes, 🚀 Features, and 6a014 across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Security	High	Set Secure flag on JWT cookie for HTTPS requests. Set Secure flag on JWT cookie for HTTPS requests. Source: llm_adapter@2026-05-26 Confidence: high	—
Feature	Medium	Accept container name or id in cloud‑scoped tools. Accept container name or id in cloud‑scoped tools. Source: llm_adapter@2026-05-26 Confidence: high	—
Bugfix
Bugfix	Medium	Show CPU/Mem as compact pills in container table on mobile. Show CPU/Mem as compact pills in container table on mobile. Source: llm_adapter@2026-05-26 Confidence: high	—
Bugfix	Medium	Back off cloud notification dispatcher on invalid API key. Back off cloud notification dispatcher on invalid API key. Source: llm_adapter@2026-05-26 Confidence: high	—
Bugfix	Medium	Bump cloud search timeout to 3 seconds and map gRPC deadline to HTTP 504. Bump cloud search timeout to 3 seconds and map gRPC deadline to HTTP 504. Source: llm_adapter@2026-05-26 Confidence: high	—
Bugfix	Medium	Prevent DuckDB MAP inference from breaking log analytics. Prevent DuckDB MAP inference from breaking log analytics. Source: llm_adapter@2026-05-26 Confidence: high	—
Bugfix	Medium	Fix stale stats charts after switching containers. Fix stale stats charts after switching containers. Source: llm_adapter@2026-05-26 Confidence: high	—
Bugfix	Medium	Improve SQL analytics panel UX. Improve SQL analytics panel UX. Source: llm_adapter@2026-05-26 Confidence: high	—

Full changelog

🚀 Features

cloud: Accept container name or id in container-scoped tools - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4743 (6a014)

🐞 Bug Fixes

Stats charts stale for a few seconds after switching containers - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4738 (ab6c9)
Set Secure flag on jwt cookie when request is HTTPS - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4740 (dd2eb)
Show CPU/Mem as compact pills in container table on mobile - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4744 (a0744)
Back off cloud notification dispatcher on invalid API key - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4747 (be352)
Bump cloud search timeout to 3s and map gRPC deadline to 504 - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4748 (5bef7)
Prevent DuckDB MAP inference from breaking log analytics - by @amir20 in https://github.com/amir20/dozzle/issues/4746 (9a99e)
Improve SQL analytics panel UX - by @amir20 and Claude Opus 4.7 (1M context) in https://github.com/amir20/dozzle/issues/4749 (a51c7)

View changes on GitHub

Security Fixes

Set Secure flag on JWT cookie when request is HTTPS

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track dozzle

Get notified when new releases ship.

About dozzle

Realtime log viewer for containers. Supports Docker, Swarm and K8s.

All releases →