This release includes 1 breaking change for platform teams planning a safe upgrade.
✓ No known CVEs patched in this version
Topics
+5 more
Affected surfaces
ReleasePort's take
Light signalDuplicati v2.3.0.3_stable improves synthetic filelist creation performance and resolves several backend bugs, while deprecating older OneDrive/SharePoint backends in favor of the new Microsoft Graph integration.
Why it matters: The release optimizes filelist generation for significant performance gains (severity 40) and fixes critical locking, misclassification, timeout, and timestamp issues across SMB, OneDrive, and macOS surfaces; deprecation of legacy OneDrive/SharePoint backends (severity 70) mandates migration to the new Graph backend.
Summary
AI summaryUpdates Detailed list of changes, Updates to ngclient, and ironically across a mixed release.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
Adds `--exclude-non-local-files` option to exclude cloud‑stored files (e.g., OneDrive, Dropbox) from backups. Adds `--exclude-non-local-files` option to exclude cloud‑stored files (e.g., OneDrive, Dropbox) from backups. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Feature | Medium |
Makes Duplicati storage backend publicly available with zero client‑side configuration via Duplicati Console integration. Makes Duplicati storage backend publicly available with zero client‑side configuration via Duplicati Console integration. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Feature | Low |
Adds failsafe checks for synthetic filelist metadata to ensure validity. Adds failsafe checks for synthetic filelist metadata to ensure validity. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Feature | Low |
Adds guard to prevent errors when deleting old backup versions. Adds guard to prevent errors when deleting old backup versions. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Feature | Low |
Supports the do‑not‑track environment variable for privacy compliance. Supports the do‑not‑track environment variable for privacy compliance. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Performance | Medium |
Optimizes synthetic filelist creation to prevent dangling metadata entries and improve performance significantly. Optimizes synthetic filelist creation to prevent dangling metadata entries and improve performance significantly. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Performance | Low |
Logs 500 errors to system log or local storage for better observability. Logs 500 errors to system log or local storage for better observability. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Deprecation | High |
Deprecates older OneDrive and SharePoint backends in favor of the new Microsoft Graph backend. Deprecates older OneDrive and SharePoint backends in favor of the new Microsoft Graph backend. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Medium |
Fixes remote-file locking issue that could cause database locking problems on Windows. Fixes remote-file locking issue that could cause database locking problems on Windows. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Medium |
Corrects S3 lock mode configuration to display accurate values. Corrects S3 lock mode configuration to display accurate values. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Medium |
Resolves SMB backend misclassifying files as folders, eliminating warning messages during enumeration. Resolves SMB backend misclassifying files as folders, eliminating warning messages during enumeration. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Medium |
Addresses OneDrive timeout problem caused by slow transfers triggering unexpected timeouts. Addresses OneDrive timeout problem caused by slow transfers triggering unexpected timeouts. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Medium |
Adds defensive handling for macOS Photos library timestamps to prevent warnings during backup. Adds defensive handling for macOS Photos library timestamps to prevent warnings during backup. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Medium |
Improves snapshot error messages to include permission‑related guidance for resolution. Improves snapshot error messages to include permission‑related guidance for resolution. Source: llm_adapter@2026-06-10 Confidence: high |
— |
| Bugfix | Low |
Fixes incorrect quota size being reported. Fixes incorrect quota size being reported. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Bugfix | Low |
Corrects version‑based search issues when restoring backups. Corrects version‑based search issues when restoring backups. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Bugfix | Low |
Detects if locking is used when recreating the database, preventing misconfiguration. Detects if locking is used when recreating the database, preventing misconfiguration. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
| Bugfix | Low |
Adds guard against secret provider initialization failures to improve robustness. Adds guard against secret provider initialization failures to improve robustness. Source: granite4.1:30b@2026-06-10-audit Confidence: low |
— |
Full changelog
About this release
This release patches version 2.3.0.1 with fixes for a few issues that were discovered after the release.
This is the same as the 2.3.0.2 release but with a few additional fixes that were missed by the 2.3.0.2 release.
Reliability Fixes
This release optimizes the synthetic filelist creation process to improve performance significantly. Additionally, there are a few added failsafe checks to ensure syntehtic filelists are always valid.
We also fixed an issue with remote-file locking that could (ironically) cause database locking issues in some cases. And we fixed the S3 lock mode configuration to show the correct values.
Backend Fixes and Improvements
We fixed an issue where the SMB backend could incorrectly treat files as folders giving warnings when attempting to enumerate them. We also fixed a timeout issue for OneDrive where slow transfers could trigger an unexpected timeout.
The OneDrive for Business and SharePoint backends have been deprecated in favor of the Microsoft Graph backend, as the older backends relied on an API that is no longer supported.
We also made the Duplicati storage backend publicly available, so you can now use Duplicati storage for your backups. Duplicati storage is integrated with the Duplicati Console, so there is zero storage configuration needed on the client.
Platform and Restore Improvements
This release also features a new option --exclude-non-local-files that can be used to exclude files that are stored in the cloud, such as OneDrive, Dropbox, etc.
We also fixed an issue causing warnings when doing backups of the MacOS Photos folder, and improved some error messages to include more guidance on how to resolve them.
Detailed list of changes:
- Renamed Office 365 branding to Microsoft 365
- Optimized synthetic filelist creation to prevent dangling metadata entries
- Improved Docker image build configuration
- Persist the used compression module in backup metadata
- Updated usage reporter integration
- Improved websocket handling for remote management connections
- Fixed Filen backend CI and authentication issues
- Added failsafe checks for synthetic filelist metadata
- Improved restore messages with additional result details
- Deprecated older OneDrive and SharePoint backends
- Fixed folders incorrectly showing as files in the filesystem API
- Added defensive handling for macOS Photos library timestamps
- Updated MEGA S4 endpoints for S3 backend
- Improved snapshot error messages with permission guidance
- Fixed timeout handling in OneDrive backend
- Updated Duplicati backend with improved timeout options
- Removed explicit defaults from new backup template
- Cleaned up remote controller registration state handling
- Fixed SMB backend issue where files could be treated as folders
- Fixed remote file locking on Windows
- Fixed S3 lock mode configuration
- Added support for extended Win32 file attributes in backups
- Update Avalonia to avoid DirectX dependency
- Improved handling of expired links
- Fix incorrect quota size reported
- Fixed version based search for restored
- Added guard when deleting old versions
- Log 500 errors to system log or local local
- Detect if locking is used when recreating database
- Support the do-not-track environment variable
- Guard against secret provider init failure
Updates to ngclient
- Added toggle to show advanced option names instead of descriptions
- Added confirmation popup before exporting configuration without encryption
- Now showing remote lock results on log page
- Fixed websocket not connecting on welcome page
- Added a welcome page for simpler console connections
- Removed attributes filter options on source page, in favor of using advanced options
- Prevent iteration of non-folder paths
- Enable selecting hidden items
- Added path resolving on the "dynamic paths", such as "My documents"
- Fixed compression option not being visible
- Added support for showing backends as deprecated or untested
- Fixed an issue where file size would not be shown in the file tree
- Added an option to retry loading a backup list
- Show "last backup" with the same date in both detail and grid view
- Show actual scheduled time for backups
- Fixed an issue with using stored destinations which would fail to create folders
- Fixed an issue with importing backups where the schedule edits would be ignored
- Fixed an issue where the date for a scheduled backup would be off-by-one when edited
- Optimized query flow to use websockets instead of polling/fetching
Breaking Changes
- Deprecated the OneDrive for Business and SharePoint backends; they will be removed in a future release.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
Related context
Related tools
Beta — feedback welcome: [email protected]