Skip to content

FaynoSync

Deployment Automation

A self-hosted, open-source API server for managing automatic and on-demand updates of cross‑platform desktop applications

Track releases GitHub Website
Go Latest v1.5.15 · 5d ago Security brief →

Features

  • Provides a REST API for clients to check for and download application updates
  • Supports multiple storage backends (AWS S3, MinIO, Google Cloud Storage, DigitalOcean Spaces)
  • Integrates with MongoDB for metadata persistence and Redis for performance caching
  • Allows configurable update channels such as stable, beta, or nightly

Recent releases

View all 15 releases →
Config change
v1.5.15 New feature
Auth

CDN param + batch delete + telemetry fixes

Open
Review required
v1.5.14 New feature
Auth RBAC

reports feature

Open
No immediate action
v1.5.13 New feature

Delegated metadata rotation

Open
v1.5.12 Breaking risk
Breaking changes
  • MongoDB migrations decoupled from API startup; must run `./faynoSync migrate up`/`down` explicitly.
Notable features
  • Added GET /tuf/v1/metadata/targets and GET /tuf/v1/metadata/delegated endpoints
  • Added tuf TypeScript example
Full changelog

Improvements

  • Decoupled MongoDB migrations from API startup: the server now starts with ./faynoSync only, and migrations run explicitly via ./faynoSync migrate up or ./faynoSync migrate down.

Features

  • Added GET /tuf/v1/metadata/targets and GET /tuf/v1/metadata/delegated endpoints to retrieve TUF metadata for targets and delegated roles.
  • Added tuf typescript example.

Fixes

  • Fixed telemetry period aggregation for range=week and range=month to deduplicate repeated client_id values across days instead of summing daily set sizes.
  • Updated telemetry integration coverage to validate that unique_clients, clients_using_latest_version, and clients_outdated remain deduplicated at period level.
View release on GitHub
v1.5.11 New feature
Notable features
  • Added `POST /tuf/v1/bootstrap/recovery` endpoint to rebuild Redis settings from persisted TUF metadata
  • Asynchronous `bootstrap_recovery` task flow with lock protection, prechecks, timeout support, and status reporting
Full changelog

Features

  • Added POST /tuf/v1/bootstrap/recovery to rebuild bootstrap Redis settings from persisted TUF metadata for already initialized repositories.
  • Added asynchronous bootstrap_recovery task flow with lock protection, recovery prechecks, timeout support, and task status reporting.

Security & Access Control

  • Added RBAC edit permission checks for TUF task status, artifact publish, and artifact delete endpoints.
  • Added owner resolution middleware for team users so TUF artifact operations run under resolved owner context.

Reliability

  • Unified bootstrap settings persistence and recovery via a shared Redis save path, including delegated role expirations and ROOT_SIGNING initialization.

API Tooling

  • Updated Postman collection with bootstrap recovery API request examples.
View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
150
Forks
3
Languages
Go Lua Shell
View on GitHub Homepage Documentation

Install & Platforms

Install via
go
Platforms
linux macos windows

Similar tools

coolify
kubero
zane-ops
dokku
nixopus

Beta — feedback welcome: [email protected]