Skip to content

Nmlinux

v1.4.2 Breaking

This release includes breaking changes for platform teams planning a safe upgrade.

Published 4d Server & OS Management
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

crypto_tls

Summary

AI summary

TLS Watchlist adds certificate expiry monitoring at startup.

Changes in this release

Feature Medium

Adds TLS Watchlist panel with monitoring UI and background checks

Adds TLS Watchlist panel with monitoring UI and background checks

Source: llm_adapter@2026-06-14

Confidence: high
Feature Low

Provides '+ Watch' button to add current host:port to watchlist instantly

Provides '+ Watch' button to add current host:port to watchlist instantly

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Feature Low

Stores TLS watchlist persistently in ~/.config/nmlinux/tls_watchlist.json

Stores TLS watchlist persistently in ~/.config/nmlinux/tls_watchlist.json

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Feature Low

Runs automatic background certificate expiry check 2 seconds after launch (non‑blocking)

Runs automatic background certificate expiry check 2 seconds after launch (non‑blocking)

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Feature Low

Shows sidebar alert dot on 'TLS Inspector' entry: red for expired, orange for ≤30 days remaining

Shows sidebar alert dot on 'TLS Inspector' entry: red for expired, orange for ≤30 days remaining

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Feature Low

Displays per‑entry status (✓ / ⚠ / EXPIRED) with color coding and days remaining in the panel

Displays per‑entry status (✓ / ⚠ / EXPIRED) with color coding and days remaining in the panel

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Feature Low

Adds 'Re-check' button to manually refresh all watchlist entries

Adds 'Re-check' button to manually refresh all watchlist entries

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Bugfix Low

Silently ignores unreachable hosts, preventing false alerts when offline

Silently ignores unreachable hosts, preventing false alerts when offline

Source: granite4.1:30b@2026-06-14-audit

Confidence: high
Full changelog

What's new in v1.4.2

TLS Watchlist — monitor certificate expiry at startup

A new TLS Watchlist panel appears at the bottom of the TLS Inspector page:

  • + Watch button in the toolbar: adds the current host:port to the watchlist with one click
  • Persistent list stored in ~/.config/nmlinux/tls_watchlist.json
  • Automatic background check runs 2 seconds after launch (non-blocking)
  • Sidebar alert dot on the "TLS Inspector" entry:
    • 🔴 Red dot = at least one certificate expired
    • 🟠 Orange dot = at least one certificate expires within 30 days
    • No dot = all certificates valid
  • Per-entry status in the panel: ✓ / ⚠ / EXPIRED with color coding and days remaining
  • Re-check button to manually refresh all entries
  • Unreachable hosts are silently ignored (no false alert when offline)
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Nmlinux

Get notified when new releases ship.

Sign up free

About Nmlinux

All releases →

Related context

Beta — feedback welcome: [email protected]