This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
+9 more
ReleasePort's take
Light signalimgproxy v4.0.3 fixes a cache key generation bug affecting the pro edition. Users relying on cache behavior should verify correct key generation after upgrading.
Why it matters: Cache key generation bugs cause cache misses or collisions. Pro edition users should test caching in dev and upgrade if needed; verifies correctness.
Summary
AI summaryFixed a bug in the cache key generation for the pro edition.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Bugfix | Medium |
Fixed a bug in the cache key generation Fixed a bug in the cache key generation Source: llm_adapter@2026-05-21 Confidence: high |
— |
Changelog
Fixed
- (pro) Fixed a bug in the cache key generation
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About imgproxy
Fast and secure standalone server for resizing and converting remote images.
Related context
Related tools
Earlier breaking changes
- v4.0.0 Removed deprecated OpenTelemetry configuration options (endpoint, protocol, GRPC_INSECURE, propagators, connection timeout); use corresponding OTEL_* variables
- v4.0.0 Docker images now built on Ubuntu 22.04; minimum libc version required is 2.35
- v4.0.0 Minimum libc version requirement changed to 2.35
- v4.0.0 Custom New Relic metrics renamed from imgproxy.X to Custom/imgproxy/X
- v4.0.0 Log format and naming changed to match documentation
Beta — feedback welcome: [email protected]