chore(deps): update container image vaultwarden/server to v1.33.2

[renovate]

This PR contains the following updates:

Package	Update	Change
vaultwarden/server	minor	1.24.0 -> 1.33.2

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

dani-garcia/vaultwarden (vaultwarden/server)

v1.33.2

Compare Source

What's Changed

• Update workflows and enhance security by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5537
• Update crates & fix CVE-2025-24898 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5538
• add bulk-access endpoint for collections by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5542
• Fix icon redirect not working on desktop by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5536
• Show assigned collections on member edit by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5556

Full Changelog: dani-garcia/vaultwarden@1.33.1...1.33.2

v1.33.1

Compare Source

General mention

This release has some minor issues fixed like:

• Icon's not working on the Desktop clients
• Invites not always working
• DUO settings not able to configure
• Manager rights
• Mobile client sync issues fixed

What's Changed

• hide already approved (or declined) auth_requests by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5467
• let invited members access OrgMemberHeaders by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5461
• Make sure the icons are displayed correctly in desktop clients by @​WinLinux1028 in https://github.com/dani-garcia/vaultwarden/pull/5469
• Fix passwordRevisionDate format by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5477
• add and use new event types by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5482
• Fix Duo Field Names for Web Client by @​ratiner in https://github.com/dani-garcia/vaultwarden/pull/5491
• Allow all manager to create collections again by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5488
• Update Rust to 1.84.1 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5508

New Contributors

• @​WinLinux1028 made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5469
• @​ratiner made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5491

Full Changelog: dani-garcia/vaultwarden@1.33.0...1.33.1

v1.33.0

Compare Source

Security Fixes

This release contains security fixes for the following advisories.
And we strongly advice to update as soon as possible.

• GHSA-f7r5-w49x-gxm3
  This vulnerability is only possible if you do not have an ADMIN_TOKEN configured and open links or pages you should not trust anyway. Ensure you have an ADMIN_TOKEN configured to keep your admin environment save.
• GHSA-h6cc-rc6q-23j4
  This vulnerability is only possible if someone was able to gain access to your Vaultwarden Admin Backend. The attacker could then change some settings to use sendmail as mail agent but adjust the settings in such a way that it would use a shell command. It then also needed to craft a special favicon image which would have the commands embedded to run during for example sending a test email.
• GHSA-j4h8-vch3-f797
  This vulnerability affects all users who have multiple Organizations and users which are able to create a new organization or have admin or owner rights on at least one organization. The attacker does need to know the Organization UUID of the Organization it want's to attack or compromise though.

Notable changes

• Updated web-vault to v2025.1.1
• Added partial manage role support for collections
• Manager role is converted to a Custom role with either Manage All Collections or per collection.
  Admins and Owners probably want to check and verify if the rights are still correct.
• The OCI containers and binaries are signed via GitHub Attestations
  This allows you to verify an OCI image or even the vaultwarden binary located within the OCI image.

These vulnerabilities affects

What's Changed

• Add inline-menu-positioning-improvements feature flag by @​Ephemera42 in https://github.com/dani-garcia/vaultwarden/pull/5313
• Fix issues when uri match is a string by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5332
• Add TOTP delete endpoint by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/5327
• fix group issue in send_invite by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5321
• Update crates and GHA by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5346
• Refactor the uri match fix and fix ssh-key sync by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5339
• Add partial role support for manager only using web-vault v2024.12.0 by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5219
• Fix issue with key-rotate by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5348
• fix manager role in admin users overview by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5359
• Prevent new users/members to be stored in db when invite fails by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5350
• Update crates and web-vault to v2025.1.0 by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5368
• Allow building with Rust v1.84.0 or newer by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5371
• rename membership and adopt newtype pattern by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5320
• build: raise msrv (1.83.0) rust toolchain (1.84.0) by @​tessus in https://github.com/dani-garcia/vaultwarden/pull/5374
• Fix an issue with login with device by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5379
• refactor: replace static with const for global constants by @​Integral-Tech in https://github.com/dani-garcia/vaultwarden/pull/5260
• Add Attestations for containers and artifacts by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5378
• Fix version detection on bake by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5382
• Simplify container image attestation by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5387
• improve admin invite by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5403
• Add manage role for collections and groups by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5386
• update web-vault to v2025.1.1 and add /api/devices by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5422
• Security fixes by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5438
• only validate SMTP_FROM if necessary by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5442

New Contributors

• @​Ephemera42 made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5313
• @​Integral-Tech made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5260

Full Changelog: dani-garcia/vaultwarden@1.32.7...1.33.0

v1.32.7

Compare Source

Security Fixes

This release contains a security fix for the following CVE GHSA-g65h-982x-4m5m.

This vulnerability affects any installations that have the ORG_GROUPS_ENABLED setting enabled, and we urge anyone doing so to update as soon as possible.

What's Changed

• feat: mask _smtp_img_src in support string by @​tessus in https://github.com/dani-garcia/vaultwarden/pull/5281
• Some refactoring, optimizations and security fixes by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5291
• Allow adding connect-src entries by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5293
• Use updated fern instead of patch by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5298

Full Changelog: dani-garcia/vaultwarden@1.32.6...1.32.7

v1.32.6

Compare Source

What's Changed

• Fix push not working by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5214
• Fix editing members which have access-all rights by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5213
• chore: fix some comments by @​chuangjinglu in https://github.com/dani-garcia/vaultwarden/pull/5224
• Update Rust and crates by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5248
• Update Alpine to version 3.21 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5256
• Fix another sync issue with native clients by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5259
• Update crates by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5268
• Some Backend Admin fixes and updates by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5272

New Contributors

• @​chuangjinglu made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5224

Full Changelog: dani-garcia/vaultwarden@1.32.5...1.32.6

v1.32.5

Compare Source

Security Fixes

This release further fixed some CVE Reports reported by a third party security auditor and we recommend everybody to update to the latest version as soon as possible. The contents of these reports will be disclosed publicly in the future.

Notable changes

• Added SSH-Key storage support. Currently only usable with Bitwarden Desktop v2024.12.0 and newer.
  You need to enable this feature by adding ssh-key-vault-item,ssh-agent to the EXPERIMENTAL_CLIENT_FEATURE_FLAGS config option. See .env.template

What's Changed

• Fix if logic error by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5171
• More authrequest fixes by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/5176
• Add dynamic CSS support by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4940
• fix hibp username encoding and pw hint check by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5180
• Remove auth-request deletion by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5184
• fix password hint check by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5189
• don't infer manage permission for groups by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5190
• Some more authrequest changes by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/5188
• Support SSH keys on desktop 2024.12 by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/5187
• Fix Org Import duplicate collections by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5200

Full Changelog: dani-garcia/vaultwarden@1.32.4...1.32.5

v1.32.4

Compare Source

Security Fixes

This release has fixed some CVE Reports reported by a third party security auditor and we recommend everybody to update to the latest version as soon as possible. The contents of these reports will be disclosed publicly in the future.

Notable changes

• Added more compatibility fixes for the native mobile apps, datetimes are now formatted without too many decimals.
• Email Template changes to the send emergency access invite. If you have modified this template, make sure to update it with the new changes.

What's Changed

• Update README by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5153

Full Changelog: dani-garcia/vaultwarden@1.32.3...1.32.4

v1.32.3

Compare Source

Notable changes

• Email template for org invites was updated again. The URL got HTML Encoded which resulted in a sometimes non-working URL (#​5100)
• Fixed SMTP issues with some providers which send erroneous response to QUIT messages (Like QQ) (Thanks to @​paolobarbolini)
• Fixed a long standing collection management issue where collections were not able to be managed via the Password Manager overview

What's Changed

• Fix iOS sync by converting field types to int by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5081
• Fix field type to actually be hidden by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5082
• Fix org invite url being html encoded by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5100
• Update Rust to 1.82.0 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5099
• Fix collection management and match some json output by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5095
• Add extension-refresh feature flag by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5106
• Hide user name on invite status by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5110
• Add documentation for the extension-refresh feature flag by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5112
• Update crates and fix Mail issue by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5125

Full Changelog: dani-garcia/vaultwarden@1.32.2...1.32.3

v1.32.2

Compare Source

Notable changes

• Fixed collection management for managers

What's Changed

• Fix compiling for Windows targets by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5053
• Updates and collection management fixes by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5072
• Fix --version from failing without config by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5055

Full Changelog: dani-garcia/vaultwarden@1.32.1...1.32.2

v1.32.1

Compare Source

Notable changes

• Fixed syncing/login with native mobile clients
• Added CLI option to backup SQLite database
• Email Template changes regarding invites, 2FA Incomplete logins, and new logins

What's Changed

• Update GitHub Action Workflows by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4849
• Fix Duo Redirect not using path by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4862
• Fix manager in web-vault v2024.6.2 for collections by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4860
• Update email footer padding values by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4838
• Remove unecessary email normalization by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4840
• Fix Vaultwarden Admin page error messages by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4869
• Update issue template by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4876
• remove overzealous sanity check by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4879
• Fix Login with device by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4878
• Switch to Whitelisting in .dockerignore by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4856
• Remove version from server config info by @​zacknewman in https://github.com/dani-garcia/vaultwarden/pull/4885
• Update issue template by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4882
• Update crates (GHSA-wq9x-qwcq-mmgf) by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4889
• Updated security readme by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4892
• Allow custom umask setting by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4896
• Allow Org Master-Pw policy enforcement by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4899
• Allow enforcing Single Org with pw reset policy by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4903
• Add a CLI feature to backup the SQLite DB by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4906
• Update web-vault, crates and gha by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4909
• Add orgUserHasExistingUser parameters to org invite by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4827
• Update Rust version & crates by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4928
• Fix sync with new native clients by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4932
• Fix collection update from native client by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4937
• fix invitation link via /admin by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4950
• Fix Pw History null dates by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4966
• fix 2fa policy check on registration by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4956
• Actually use Device Type for mails by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4916
• remove backtics from postgresql migrations by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4968
• Fix Device Type column for 2FA migration by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4971
• Fix encrypted lastUsedDate by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4972
• Fix keyword collision in Rust 2024 and add new api/config value by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4975
• Add extra linting by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4977

New Contributors

• @​zacknewman made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4885

Full Changelog: dani-garcia/vaultwarden@1.32.0...1.32.1

v1.32.0

Compare Source

Security Fixes

This release has several CVE Reports fixed and we recommend everybody to update to the latest version as soon as possible.

• CVE-2024-39924 Fixed via #​4715
• CVE-2024-39925 Fixed via #​4837
• CVE-2024-39926 Fixed via #​4737

Other changes

• Updated web-vault to v2024.6.2
• Fixed issues with password reset enrollment by rolling back a web-vault commit

What's Changed

• use a custom plan of enterprise tier to fix limits by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4726
• chore: Dockerfile to Remove port 3012 by @​calvin-li-developer in https://github.com/dani-garcia/vaultwarden/pull/4725
• Fix bug where secureNotes is empty by @​cobyge in https://github.com/dani-garcia/vaultwarden/pull/4730
• Improved HTTP client by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4740
• Update admin interface by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4737
• Fix for RSA Keys which are read only by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4744
• Fix Email 2FA login on native app by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4762
• Update crates & fix crate vulnerability by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4771
• Fix Dockerfile linter warnings by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4763
• allow re-invitations of existing users by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4768
• Allow to override log level for specific target by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4305
• Add support for MFA with Duo's Universal Prompt by @​0x0fbc in https://github.com/dani-garcia/vaultwarden/pull/4637
• Allow to increase the note size to 100_000 by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4772
• Update Rust, Crates and GHA by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4783
• Duo: use the formatted db email by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4779
• Update rust-toolchain.toml to 1.80.0 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4784
• fix issue with adding ciphers to organizations on native ios app by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4800
• Rewrite the Push Notifications section in the configuration template by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4805
• Secure send file uploads by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4810
• make access_all optional by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4812
• Remove lowercase conversion for featureStates by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4820
• Fix mail::send_incomplete_2fa_login panic issue by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4792
• Update crates, web-vault and fixes by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4823
• Updated web-vault to v2024.6.2b by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4826
• Update Rust to 1.80.1 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4831
• Fix data disclosure on organization endpoints by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4837

New Contributors

• @​cobyge made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4730
• @​0x0fbc made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4637

Full Changelog: dani-garcia/vaultwarden@1.31.0...1.32.0

v1.31.0

Compare Source

Major changes and New Features

• Initial support for the beta releases of the new native mobile apps
• Removed support for WebSocket traffic on port 3012, as it's been integrated on the main HTTP port for a few releases
• Updated included web vault to 2024.5.1

General mention

Bitwarden has changed the push API endpoints which affects the EU region endpoint users.
So if you use the push functionality and use the EU region you need to make some changes.
You have to update push.bitwarden.eu to api.bitwarden.eu.
This is also an issue with any previous version of Vaultwarden.

What's Changed

• chore: remove repetitive words by @​one230six in https://github.com/dani-garcia/vaultwarden/pull/4422
• Fix comment in events.rs by @​KrappRamiro in https://github.com/dani-garcia/vaultwarden/pull/4408
• Improve JWT RSA key initialization and avoid saving public key by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4085
• Remove custom WebSocket code by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4001
• refactor: replace panic with a graceful exit by @​tessus in https://github.com/dani-garcia/vaultwarden/pull/4402
• Small improvements around email change by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4415
• Change timestamp data type. by @​gzfrozen in https://github.com/dani-garcia/vaultwarden/pull/4355
• Fix #​3624: fix manager permission within groups by @​matlink in https://github.com/dani-garcia/vaultwarden/pull/3754
• automatically use email address as 2fa provider by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4317
• fix: typos by @​testwill in https://github.com/dani-garcia/vaultwarden/pull/4440
• Update chrono and sqlite by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4436
• Update Rust and crates by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4445
• Use async verify for Yubikey by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4448
• update web-vault to v2024.3.1 (new vertical layout) by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4468
• Update crates and some Clippy fixes by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4475
• Update Key Rotation web-vault v2024.3.x by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4446
• Update Crate and Rust by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4522
• Implement custom DNS resolver by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/3988
• Add extra (unsupported) container build arch's by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4524
• Pass in collection ids to notifier when sharing cipher. by @​kristof-mattei in https://github.com/dani-garcia/vaultwarden/pull/4517
• improve access to collections via groups by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4441
• fix emergency access invites by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4337
• Some fixes for the new mobile apps by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4526
• Update Rust, crates and web-vault by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4558
• Improve Commentary Aesthetics by @​rich-purnell in https://github.com/dani-garcia/vaultwarden/pull/4549
• Optimize Dockerfiles by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4532
• also delete organization_api_key when deleting organizations by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4557
• Fix public api for domains with path prefix by @​FDHoho007 in https://github.com/dani-garcia/vaultwarden/pull/4500
• Update crates by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4587
• Fix web-vault version in Docker(files/Settings) by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4575
• Update Alpine to version 3.20 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4583
• differentiate external groups by organization id by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4586
• Remove old knowndevice route by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/4578
• Update admin interface dependencies by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4581
• Update rust and remove unused header values by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4645
• Update crates, web-vault and GHA by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4648
• Fix some nightly build errors by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4657
• Fix some more nightly errors and remove lint that will become an error by default by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4661
• Change API and structs to camelCase by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4386
• Fix cipher creation on new android app by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4670
• Remove mimalloc workaround by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4606
• Change some missing PascalCase keys by @​dani-garcia in https://github.com/dani-garcia/vaultwarden/pull/4671
• Fix collections and native app issue by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4685
• Fix duplicate folder creations during import by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4702
• Remove duplicate registry step by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4703
• add group support for Cipher::get_collections() by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4592
• Switch registry cache compression algorithm to zstd by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/4704
• Update crates and web-vault by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4714
• Some fixes for emergency access by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4715

New Contributors

• @​one230six made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4422
• @​KrappRamiro made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4408
• @​testwill made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4440
• @​kristof-mattei made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4517
• @​rich-purnell made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4549
• @​dfunkt made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4532
• @​FDHoho007 made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4500

Full Changelog: dani-garcia/vaultwarden@1.30.5...1.31.0

v1.30.5

Compare Source

What's Changed

• fix: web API call for jquery 3.7.1 by @​calvin-li-developer in https://github.com/dani-garcia/vaultwarden/pull/4400

New Contributors

• @​calvin-li-developer made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4400

Full Changelog: dani-garcia/vaultwarden@1.30.4...1.30.5

v1.30.4

Compare Source

⚠️ Note: The WebSockets service for live sync has been integrated in the main HTTP server, which means simpler proxy setups that don't require a separate rule to redirect WS traffic to port 3012. Please check the updated examples in the wiki. It's recommended to migrate to this new setup as using the old server on port 3012 is deprecated, won't receive new features and will be removed in the next release.

What's Changed

• Update crates to fix new builds by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4308
• Add Kubernetes environment detection by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4290
• Update GHA Workflows by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4309
• Update Rust, crates and web-vault by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4328
• Change the codegen-units for low resources by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4336
• Fix env templateto ensure compatibility with systemd's EnvironmentFile parsing by @​seiuneko in https://github.com/dani-garcia/vaultwarden/pull/4315
• Update crates, GHA and a Python script by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4357

New Contributors

• @​seiuneko made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4315

Full Changelog: dani-garcia/vaultwarden@1.30.3...1.30.4

v1.30.3

Compare Source

This is a minor release to fix some issues with push notification device registration and docker healthcheck.

⚠️ Note: The WebSockets service for live sync has been integrated in the main HTTP server, which means simpler proxy setups that don't require a separate rule to redirect WS traffic to port 3012. Please check the updated examples in the wiki. It's recommended to migrate to this new setup as using the old server on port 3012 is deprecated, won't receive new features and will be removed in the next release.

What's Changed

• fix push device registration by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/4297
• Fix healthcheck when using .env file by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4299

Full Changelog: dani-garcia/vaultwarden@1.30.2...1.30.3

v1.30.2

Compare Source

⚠️ Note: The WebSockets service for live sync has been integrated in the main HTTP server, which means simpler proxy setups that don't require a separate rule to redirect WS traffic to port 3012. Please check the updated examples in the wiki. It's recommended to migrate to this new setup as using the old server on port 3012 is deprecated, won't receive new features and will be removed in the next release.

What's Changed

• Prevent generating an error during ws close by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/4127
• Update Rust, Crates, Profile and Actions by @​BlackDex in [https://github.com/dani-garcia/vaultwarden/pull/

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.