Skip to content

Safebucket

v0.5.0 Breaking

This release includes 3 breaking changes for platform teams planning a safe upgrade.

Published 18d File Storage & Sync
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

file-sharing go self-hosted storj

Affected surfaces

auth rbac deps

Summary

AI summary

Updates Bug Fixes, deps, and feat across a mixed release.

Full changelog

What's Changed

Features

  • feat: add dedicated network for deployments by @Renizmy in https://github.com/safebucket/safebucket/pull/1008
  • feat: add quick share dialog by @yohanleb in https://github.com/safebucket/safebucket/pull/1010
  • feat: add quick share CRUD endpoints by @yohanleb in https://github.com/safebucket/safebucket/pull/1011
  • feat: add quick share view in bucket settings by @yohanleb in https://github.com/safebucket/safebucket/pull/1017
  • feat: link quick share components to backend by @yohanleb in https://github.com/safebucket/safebucket/pull/1027
  • feat: add share view by @yohanleb in https://github.com/safebucket/safebucket/pull/1029
  • feat: make the rate limit configurable by @Renizmy in https://github.com/safebucket/safebucket/pull/1028
  • feat: add session revocation by @Renizmy in https://github.com/safebucket/safebucket/pull/1012
  • feat: add quick share public endpoints by @yohanleb in https://github.com/safebucket/safebucket/pull/1034
  • feat: linkup quick share frontend and backend by @yohanleb in https://github.com/safebucket/safebucket/pull/1060
  • feat: add share link activity parsing by @yohanleb in https://github.com/safebucket/safebucket/pull/1062
  • feat: add unlimited views option by @yohanleb in https://github.com/safebucket/safebucket/pull/1066
  • feat: add tracing and pyroscope implementation by @Renizmy in https://github.com/safebucket/safebucket/pull/1063
  • feat: add password to quick share dialog + share name to activity by @yohanleb in https://github.com/safebucket/safebucket/pull/1069
  • feat: add link icon by @yohanleb in https://github.com/safebucket/safebucket/pull/1087
  • feat: rename config profile var by @Renizmy in https://github.com/safebucket/safebucket/pull/1089
  • feat: migrate goose logger by @Renizmy in https://github.com/safebucket/safebucket/pull/1092
  • feat: change TI CI triggers by @Renizmy in https://github.com/safebucket/safebucket/pull/1111
  • feat: integration tests rbac init by @Renizmy in https://github.com/safebucket/safebucket/pull/1110
  • feat: re-enable goconst by @Renizmy in https://github.com/safebucket/safebucket/pull/1113
  • feat: add token integration tests and update integration logging by @Renizmy in https://github.com/safebucket/safebucket/pull/1114
  • feat: migrate from jwt to jwe by @Renizmy in https://github.com/safebucket/safebucket/pull/1123
  • feat: add dependabot cooldown by @Renizmy in https://github.com/safebucket/safebucket/pull/1133
  • feat: upx update notifier by @Renizmy in https://github.com/safebucket/safebucket/pull/1124
  • feat: move share auth to cookie only by @yohanleb in https://github.com/safebucket/safebucket/pull/1134
  • feat: add more auth tests by @Renizmy in https://github.com/safebucket/safebucket/pull/1143
  • feat: init ti quickshare tests by @Renizmy in https://github.com/safebucket/safebucket/pull/1144
  • feat: add more quickshare tests scenarios by @Renizmy in https://github.com/safebucket/safebucket/pull/1145
  • feat: update JWT env variable to token by @yohanleb in https://github.com/safebucket/safebucket/pull/1147

Bug Fixes

  • fix: remove not necessary postgresql triggers by @Renizmy in https://github.com/safebucket/safebucket/pull/1016
  • fix: podman healthcheck by @yohanleb in https://github.com/safebucket/safebucket/pull/1032
  • fix: migrate folder status parameter to dedicated enum status by @Renizmy in https://github.com/safebucket/safebucket/pull/1036
  • fix: create folder activity not shown by @yohanleb in https://github.com/safebucket/safebucket/pull/1061
  • fix: add stop defer by @Renizmy in https://github.com/safebucket/safebucket/pull/1064
  • fix: upload translation + move to common by @yohanleb in https://github.com/safebucket/safebucket/pull/1067
  • fix: session scrolling + session clean by @Renizmy in https://github.com/safebucket/safebucket/pull/1068
  • fix: share activity + share upload events by @yohanleb in https://github.com/safebucket/safebucket/pull/1070
  • fix: use dedicated s3 client to sign presign urls + add region in config by @Renizmy in https://github.com/safebucket/safebucket/pull/1071
  • fix: optimistic page update after upload via link + mobile UI issues by @yohanleb in https://github.com/safebucket/safebucket/pull/1072
  • fix: file input on mobile and upload dialog on lg screens by @yohanleb in https://github.com/safebucket/safebucket/pull/1083
  • fix: android file upload navigator by @Renizmy in https://github.com/safebucket/safebucket/pull/1085
  • fix: empty bucket activity message by @yohanleb in https://github.com/safebucket/safebucket/pull/1084
  • fix: revert file input octet stream by @yohanleb in https://github.com/safebucket/safebucket/pull/1090
  • fix: ci go mod by @Renizmy in https://github.com/safebucket/safebucket/pull/1101
  • fix: dependabot cooldown not supported by @yohanleb in https://github.com/safebucket/safebucket/pull/1135

Dependencies

  • deps: Bump the dev-dependencies group across 1 directory with 2 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1005
  • deps: Bump the minor-and-patch group across 1 directory with 2 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1004
  • docker-compose:dev: Bump axllent/mailpit from v1.29.2 to v1.29.3 in /deployments/dev in the minor-and-patch group across 1 directory by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1001
  • deps: Bump the minor-and-patch group across 1 directory with 3 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1007
  • actions: Bump docker/login-action from 3 to 4 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/986
  • actions: Bump docker/setup-buildx-action from 3 to 4 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/984
  • actions: Bump docker/metadata-action from 5 to 6 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/985
  • deps: bump the minor-and-patch group with 5 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1024
  • deps: bump the minor-and-patch group in /web with 4 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1023
  • actions: bump docker/build-push-action from 6 to 7 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1020
  • deps: bump the minor-and-patch group across 1 directory with 2 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1033
  • docker-compose:dev: bump axllent/mailpit from v1.29.3 to v1.29.4 in /deployments/dev in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1040
  • deps: bump the minor-and-patch group in /web with 9 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1039
  • deps: bump the dev-dependencies group across 1 directory with 7 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1026
  • deps: bump the minor-and-patch group with 5 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1049
  • deps: bump i18next from 25.10.5 to 26.0.2 in /web by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1046
  • deps: bump lucide-react from 0.577.0 to 1.7.0 in /web by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1045
  • deps: bump the minor-and-patch group in /web with 3 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1044
  • deps: bump react-i18next from 16.6.2 to 17.0.1 in /web by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1047
  • deps: bump the dev-dependencies group in /web with 6 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1043
  • actions: bump actions/download-artifact from 4 to 8 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1038
  • actions: bump actions/upload-artifact from 4 to 7 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1019
  • actions: bump actions/github-script from 7 to 8 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1021
  • docker-compose:local-full: bump grafana/loki from 3.6.7 to 3.7.1 in /deployments/local/full in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1051
  • deps: bump the minor-and-patch group with 5 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1058
  • deps: bump the dev-dependencies group in /web with 4 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1056
  • deps: bump the minor-and-patch group in /web with 6 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1057
  • docker-compose:dev: bump the minor-and-patch group in /deployments/dev with 2 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1050
  • deps: bump the dev-dependencies group in /web with 7 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1076
  • deps: bump the minor-and-patch group with 5 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1077
  • deps: bump the minor-and-patch group in /web with 9 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1078
  • chore(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.0 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1088
  • deps: bump the minor-and-patch group with 7 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1096
  • docker-compose:dev: bump the minor-and-patch group in /deployments/dev with 2 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1097
  • deps: bump the minor-and-patch group in /web with 5 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1095
  • deps: bump the dev-dependencies group across 1 directory with 8 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1100
  • deps: bump the minor-and-patch group in /web with 8 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1105
  • deps: bump the minor-and-patch group with 4 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1104
  • deps: bump jsdom from 29.0.2 to 29.1.0 in /web in the dev-dependencies group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1103
  • docker-compose:dev: bump grafana/tempo from 2.10.4 to 2.10.5 in /deployments/dev in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1106
  • deps: bump the minor-and-patch group with 6 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1118
  • deps: bump the minor-and-patch group in /web with 7 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1117
  • deps: bump the dev-dependencies group in /web with 4 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1116
  • docker-compose:dev: bump grafana/pyroscope from 1.20.3 to 2.0.1 in /deployments/dev by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1107
  • docker-compose:dev: bump nats from 2.12-alpine to 2.14-alpine in /deployments/dev in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1119
  • deps: bump the minor-and-patch group in /web with 10 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1129
  • deps: bump the minor-and-patch group with 5 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1128
  • deps: bump the dev-dependencies group across 1 directory with 4 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1127
  • docker-compose:dev: bump grafana/pyroscope from 2.0.1 to 2.0.2 in /deployments/dev in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1131
  • docker: bump node from 20-alpine to 26-alpine by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1126
  • docker-compose:dev: bump grafana/loki from 3.7.1 to 3.7.2 in /deployments/dev in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1138
  • deps: bump vitest from 4.1.5 to 4.1.6 in /web in the dev-dependencies group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1140
  • deps: bump github.com/redis/rueidis from 1.0.74 to 1.0.75 in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1139
  • deps: bump @tanstack/react-query from 5.100.9 to 5.100.10 in /web in the minor-and-patch group by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1141
  • actions: bump actions/github-script from 8 to 9 by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1075
  • [docker]: bump upx from 5.1.0 to 5.1.1 by @github-actions[bot] in https://github.com/safebucket/safebucket/pull/1142
  • docker-compose:local-full: bump the minor-and-patch group across 1 directory with 2 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/1137

Other Changes

  • deps: Bump the minor-and-patch group in /web with 4 updates by @dependabot[bot] in https://github.com/safebucket/safebucket/pull/999
  • chore: npm audit fix by @yohanleb in https://github.com/safebucket/safebucket/pull/1054
  • chore: set trivy to manual by @yohanleb in https://github.com/safebucket/safebucket/pull/1053
  • chore: allow tagging from release branch by @yohanleb in https://github.com/safebucket/safebucket/pull/1080
  • feat: enforce activity dedicated type + automigrate on change by @Renizmy in https://github.com/safebucket/safebucket/pull/1081
  • feat: add tracing by @Renizmy in https://github.com/safebucket/safebucket/pull/1086
  • feat: init ti ci framework by @Renizmy in https://github.com/safebucket/safebucket/pull/1091
  • mfa: refactor and simplify by @yohanleb in https://github.com/safebucket/safebucket/pull/1122

New Contributors

  • @github-actions[bot] made their first contribution in https://github.com/safebucket/safebucket/pull/1142

Full Changelog: https://github.com/safebucket/safebucket/compare/v0.4.1...v0.5.0

Breaking Changes

  • Rename config profile variable (old → new)
  • Migrate from JWT to JWE
  • Change folder status parameter to dedicated enum status
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Safebucket

Get notified when new releases ship.

Sign up free

About Safebucket

Open source file sharing platform

All releases →

Related context

Beta — feedback welcome: [email protected]