Skip to content

Talkyard

Productivity & Wikis

Open‑source community forum software that combines StackOverflow‑style Q&A, Slack‑like chat, and blog comment embedding.

Track releases GitHub Website
TypeScript Latest tyse-v1.2026.003-f220a7d9f-regular · 8d ago Security brief →

Features

  • StackOverflow‑style Question & Answer topics with voting
  • Slack‑like chat channels for real‑time discussion
  • Blog comment integration for embedded reader feedback
  • Upvote‑driven ranking so insightful comments rise to the top
  • Anonymous commenting support

Recent releases

View all 2 releases →
Review required
tyse-v1.2026.003-f220a7d9f-regular New feature
Auth

UI translation expansion

Open
tyse-v0.2025.015-368ca18d4-regular Breaking risk
⚠ Upgrade required
  • Self‑hosted deployments must manually enable webhooks if needed, as they are disabled by default starting with this release.
  • Ensure any custom configurations referencing the `http_mp4_module` account for its reenabling in Nginx 1.29.2.3.
Breaking changes
  • Webhooks disabled by default for all deployments unless self‑hosted.
Security fixes
  • CVE-2026-32647 — Nginx upgraded from previous version to 1.29.2.3 and `http_mp4_module` reenabled safely after disabling in v0.2025.014.
  • Webhooks disabled due to Server Side Request Forgery vulnerability; will be reenabled in v1.
Notable features
  • Embedded forums: whole Talkyard forum can now be embedded with deep‑linking and auto iframe resizing.
  • Admins can configure rel="follow" domains via `/-/admin/settings/site` to remove nofollow on specific links.
Full changelog

Changes since v0.2025.007. Full changelog: https://github.com/debiki/talkyard/compare/tyse-v0.2025.007-9ef9b55d1-regular...tyse-v0.2025.015-368ca18d4-regular.

Security

  • Upgrade Nginx to 1.29.2.3, CVE-2026-32647. 3063d87c
    >= tyse-v0.2025.014 is safe: http_mp4_module disabled in 014 3eab08fa, Nginx upgraded and mp4 reenabled in 015.
  • Disable webhooks, unless self-hosted. (Server Side Request Forgery vuln.) Will reenable in v1. 6af6e75f34

Features

  • Embedded forums: A whole Talkyard forum can now be embedded (not just blog comments). Deep-linking, auto iframe resizing.

Improvements

  • SEO & Links: Admins can configure rel="follow" domains (that is, removing nofollow), here: /-/admin/settings/site. 36976d377
  • Better webhooks management: Pause, skip-to-now, see progress. 78c1008
  • Admins can now filter users by email & name, see: /-/admin/users/. a8b30dd9f & 025fa9fd9
  • Make users with no email addr work. f8ae9c6 & 47c7fe4
  • Support .webp and .avif images
  • You can now move a comment (incl replies) to a new page where it becomes the original post. Useful if a comment is too off-topic. cf6282c3e19
  • You can now change topic type between chat and discussions. 3ca15f0ec
  • Disabled "Progress Notes" by default, they're confusing. 568f57532
  • Login dialog: Showing custom title & HTML also in the OIDC SSO login dialog (instead of just "Log In"). 8bbc0bcd6

Fixes

  • Make Command-Click work again to open links in new browser tab 0fcb8c50
  • Make moderation from embedded comments pages work. 548f01e1c
  • Links from embedded comments pages to the admin area were broken. e491471fc
  • Fix "typo" bugs so postElemPostProcessor() gets called cf3a3ea8
  • Fix webhook bug: Make work also if post not approved. 1b850ad

Internal

  • CORS headers also for error messages, so simpler to troubleshoot.
  • Less noisy log messages.
  • Lots of boring stuff.
View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
1,806
Forks
127
Languages
TypeScript Scala PLpgSQL
View on GitHub Homepage Live demo Documentation

Community & Support

Community

Similar tools

Misago
Simple Machines Forum
Ech0
Mindwendel
remark42

Alternative to

StackOverflow Slack Discourse Reddit Disqus

Beta — feedback welcome: [email protected]