spupuz/VibeNVR

v1.29.2 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 6d Media Servers

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

ffmpeg lightweight local-storage nvr opensource privacy

+1 more

video-surveillance

Affected surfaces

auth

Summary

AI summary

Added configurable TLS‑verification bypass toggle for SMTP notifications while strengthening error handling.

Changes in this release

Type	Severity	Summary	CVE
Feature	Low	Adds configurable toggle to bypass strict TLS certificate verification for SMTP relays. Adds configurable toggle to bypass strict TLS certificate verification for SMTP relays. Source: llm_adapter@2026-05-28 Confidence: high	—
Bugfix	Medium	Improves SMTP transport error handling by robustly catching SMTPException in events.py. Improves SMTP transport error handling by robustly catching SMTPException in events.py. Source: llm_adapter@2026-05-28 Confidence: low	—

Full changelog

Full Changelog: https://github.com/spupuz/VibeNVR/compare/v1.29.1...v1.29.2

🚀 Release v1.29.2

📝 Summary

This release focuses on strengthening our internal networking reliability and improving the developer/self-hosting experience. We've introduced a flexible configuration for the SMTP Mail integration, allowing seamless notification delivery across both hardened cloud infrastructures and custom, self-signed local environments without compromising our strict default security posture.

🛠️ Key Improvements

🚀 Notifications: Added a new configurable toggle to gracefully bypass strict TLS certificate verification (CERT_NONE) for SMTP relays, enabling frictionless integration with local Postfix/Mailcow instances.
🛡️ Security: Fortified events.py with robust SMTPException handling to ensure transport layer errors are caught accurately without being masked. Strict verification remains enforced by default.
🎨 Localization: Automatically generated and merged translated labels for the new SMTP settings across all 9 supported languages, ensuring a native experience globally.