This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
+4 more
Summary
AI summaryFixed ICS import escaping and CalDAV display issues for SUMMARY, DESCRIPTION, LOCATION, and calendar names.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Bugfix | Medium |
ICS text fields now have RFC 5545 escape sequences unescaped on import ICS text fields now have RFC 5545 escape sequences unescaped on import Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Bugfix | Medium |
SUMMARY and DESCRIPTION values are properly escaped when pushing to CalDAV server SUMMARY and DESCRIPTION values are properly escaped when pushing to CalDAV server Source: granite4.1:8b-q6_K@2026-05-20 Confidence: high |
— |
| Bugfix | Medium |
CalDAV calendar names appear correctly in event edit modal sync target dropdown CalDAV calendar names appear correctly in event edit modal sync target dropdown Source: granite4.1:8b-q6_K@2026-05-20 Confidence: low |
— |
Full changelog
Fixed
- ICS text fields (SUMMARY, DESCRIPTION, LOCATION) now have RFC 5545 escape sequences unescaped on import; characters like ,, ;, \n, and \ are now displayed correctly instead of shown as raw backslash sequences
- When pushing events to a CalDAV server, SUMMARY and DESCRIPTION values are now properly escaped per RFC 5545, preventing corrupted data on round-trip
- CalDAV calendar names now appear correctly in the event edit modal's sync target dropdown; the dropdown was reading calendar.url and calendar.display_name instead of the API response fields calendarUrl and calendarName, causing empty or undefined entries
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
Beta — feedback welcome: [email protected]