Sencho

v0.90.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 7d Containers & Orchestration

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Affected surfaces

rce_ssrf

ReleasePort's take

Light signal

editorial:auto 7d

The v0.90.0 release resolves CodeQL path‑injection and temp‑file security alerts in the security module.

Why it matters: Security severity 90: fixing these alerts prevents potential code execution and data leakage; operators using the security module should update immediately.

Summary

AI summary

Resolve CodeQL path‑injection and temp‑file security alerts.

Changes in this release

Type	Severity	Summary	CVE
Security	Critical	Resolves open CodeQL path-injection and temp-file alerts. Resolves open CodeQL path-injection and temp-file alerts. Source: llm_adapter@2026-06-06 Confidence: high	—
Feature
Feature	Medium	Adds one-click import for stray compose files in stacks. Adds one-click import for stray compose files in stacks. Source: llm_adapter@2026-06-06 Confidence: high	—
Feature	Medium	Reorganizes settings hub into domain groups. Reorganizes settings hub into domain groups. Source: llm_adapter@2026-06-06 Confidence: high	—
Feature	Medium	Reclaims banner controls and improves reclaim math in resources. Reclaims banner controls and improves reclaim math in resources. Source: llm_adapter@2026-06-06 Confidence: high	—
Feature	Medium	Auto‑prune dangling images after updates. Auto‑prune dangling images after updates. Source: llm_adapter@2026-06-06 Confidence: high	—
Bugfix
Bugfix	Medium	Allows deleting blueprints stuck on awaiting‑confirmation deployments. Allows deleting blueprints stuck on awaiting‑confirmation deployments. Source: llm_adapter@2026-06-06 Confidence: high	—
Bugfix	Low	Keeps edit sheet body within the sheet width. Keeps edit sheet body within the sheet width. Source: llm_adapter@2026-06-06 Confidence: high	—
Bugfix	Low	Makes sheets and dialogs track the active theme. Makes sheets and dialogs track the active theme. Source: llm_adapter@2026-06-06 Confidence: high	—

Full changelog

0.90.0 (2026-06-06)

Added

resources: reclaim banner controls and accurate reclaim math (#1318) (3089492)
settings: reorganize the settings hub into domain groups (#1321) (ce08a59)
stacks: one-click import for stray compose files (#1320) (f7f3afe)
updates: auto-prune dangling images after updates (#1316) (716daf7)

Fixed

blueprints: allow deleting blueprints stuck on awaiting-confirmation deployments (#1313) (b4cca9b)
blueprints: keep the edit sheet body within the sheet width (#1314) (5d508b9)
security: resolve open CodeQL path-injection and temp-file alerts (#1322) (86bfc10)
theme: make sheets and dialogs track the active theme (#1315) (622af7e)

Security Fixes

Resolve open CodeQL path-injection and temp-file alerts (security module)

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Sencho

Get notified when new releases ship.

About Sencho

All releases →