version tracking: tune annotations + add customManagers for linuxserver servarr

Several images were showing as outdated in version-checker / unhandled by Renovate. Each had a distinct cause; this PR fixes the auto-tractable ones. 1) admin-system/renovate.yaml: bump `app.kubernetes.io/version` labels `43.197.0 -> 43.209.3` (3 occurrences) to match the live image. Renovate's own self-update PR bumped the image tag but left the labels stale; the version-checker widget appears to read the label. Long-term, this label will drift again on each self-update -- worth a customManager later if it becomes a recurring annoyance. 2) admin-system/renovate.yaml: add a customManager + packageRule pair for linuxserver servarr apps. Tag pattern is `version-X.Y.Z.B` (4 segments + `version-` prefix) which the kubernetes manager's default docker versioning rejects at the pre-check, same failure class as termix. Regex versioning parses the prefixed 4-segment form; the same customManager handles prowlarr/radarr/sonarr (depName captured from the regex). kubernetes-manager extraction for these three depnames is disabled via packageRule so the dashboard isn't cluttered with the failing fallback. 3) nextcloud-system/nextcloud.yaml: add `match-regex.version-checker.io/nextcloud: '^\d+\.\d+\.\d+-apache$'` so version-checker doesn't treat the bare `33.0.5` server tag as a newer version of our `33.0.5-apache` image. The widget was showing `33.0.5-apache -> 33.0.5` -- false positive; image is already current. 4) helm/plex/values.yaml: tighten the version-checker regex from `^\d+\.\d+\.\d+\.\d+-.*$` to `^\d+\.\d+\.\d+\.\d+-[a-f0-9]+$` so per-arch tags (`-armhf`, `-arm64`, ...) are excluded. The widget was showing an `-armhf` tag as "newer" than our x86_64 install. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Merge pull request 'pihole: bump image to 2026.05.0 (dnsmasq CVE security release)' (#81 ) from feat/pihole-2026.05.0 into main
2026-06-06 13:25:49 +02:00 · 2026-06-06 10:56:00 +00:00 · 2026-06-06 12:55:58 +02:00 · 2026-06-06 09:16:02 +00:00 · 2026-06-06 11:16:00 +02:00 · 2026-06-06 09:00:33 +00:00
21 changed files with 73 additions and 25 deletions
@@ -62,6 +62,17 @@ data:
          "packageNameTemplate": "Termix-SSH/Termix",
          "versioningTemplate": "regex:^release-(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
          "extractVersionTemplate": "^(?<version>release-\\d+\\.\\d+\\.\\d+)"
        },
        {
          "description": "linuxserver servarr apps (prowlarr, radarr, sonarr) use tag pattern `version-X.Y.Z.B` (4 segments + `version-` prefix). The kubernetes manager's default docker versioning rejects them at the pre-check (same failure class as termix), so no PRs ever open. Use regex versioning to parse the prefixed 4-segment form; depName is captured from the regex so the same customManager handles all three apps.",
          "customType": "regex",
          "managerFilePatterns": ["/servarr-system/.+\\.ya?ml$/"],
          "matchStrings": [
            "image:\\s+linuxserver/(?<depName>prowlarr|radarr|sonarr):(?<currentValue>version-\\d+\\.\\d+\\.\\d+\\.\\d+)"
          ],
          "datasourceTemplate": "docker",
          "packageNameTemplate": "linuxserver/{{depName}}",
          "versioningTemplate": "regex:^version-(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)\\.(?<build>\\d+)$"
        }
      ],
      "packageRules": [
@@ -109,11 +120,35 @@ data:
          "matchPackageNames": ["flomp/wanderer-db", "flomp/wanderer-web"],
          "groupName": "wanderer"
        },
        {
          "description": "meilisearch: every version bump can require an index format migration via dump/restore (see https://www.meilisearch.com/docs/learn/update_and_migration/updating). PR #32 (v1.11.3 -> v1.45.2) on 2026-06-06 broke wanderer with `Your database version (1.11.3) is incompatible with your current engine version (1.45.2)`. Hold ALL meilisearch updates behind dashboard approval so the migration is planned before the PR even opens.",
          "matchPackageNames": ["getmeili/meilisearch"],
          "dependencyDashboardApproval": true
        },
        {
          "description": "Postgres-family images: a major bump (e.g. 16 -> 17) requires pg_upgrade or dump/restore — the new server binary refuses to open the old data directory (`database files are incompatible with server`). PR #76 (immich-app/postgres 16 -> 17) on 2026-06-06 crashlooped immich-postgres and immich-server. Renovate's docker versioning treats these custom tag formats inconsistently, so don't trust the major/minor classification: hold ALL updates for these images behind explicit dashboard approval. Includes vanilla postgres, postgis/postgis (where the tag prefix IS the pg major), and ghcr.io/immich-app/postgres (custom `N-vectorchordX.Y.Z` form).",
          "matchPackageNames": [
            "postgres",
            "postgis/postgis",
            "ghcr.io/immich-app/postgres"
          ],
          "dependencyDashboardApproval": true
        },
        {
          "description": "termix: kubernetes manager would extract the image with versioning=docker and silently skip it (release-1.11.0 fails the docker pre-check). Disable that extraction; customManagers above does the real work via github-releases.",
          "matchManagers": ["kubernetes"],
          "matchPackageNames": ["ghcr.io/lukegus/termix"],
          "enabled": false
        },
        {
          "description": "linuxserver servarr apps: same disable pattern as termix. The customManager above handles extraction with the right versioning; turn off the default kubernetes-manager extraction so it doesn't silently skip + clutter the dashboard.",
          "matchManagers": ["kubernetes"],
          "matchPackageNames": [
            "linuxserver/prowlarr",
            "linuxserver/radarr",
            "linuxserver/sonarr"
          ],
          "enabled": false
        }
      ],
      "labels": ["renovate"]
@@ -127,7 +162,7 @@ metadata:
  labels:
    app.kubernetes.io/instance: renovate
    app.kubernetes.io/name: renovate
-    app.kubernetes.io/version: "43.197.0"
+    app.kubernetes.io/version: "43.209.3"
 spec:
  # Sat 02:00 Europe/Budapest — leaves the full weekend for troubleshooting
  # if a Renovate-merged update breaks something.
@@ -142,14 +177,14 @@ spec:
      labels:
        app.kubernetes.io/instance: renovate
        app.kubernetes.io/name: renovate
-        app.kubernetes.io/version: "43.197.0"
+        app.kubernetes.io/version: "43.209.3"
    spec:
      template:
        metadata:
          labels:
            app.kubernetes.io/instance: renovate
            app.kubernetes.io/name: renovate
-            app.kubernetes.io/version: "43.197.0"
+            app.kubernetes.io/version: "43.209.3"
          annotations:
            # Renovate uses plain X.Y.Z semver tags (no -slim suffix anymore)
            match-regex.version-checker.io/renovate: '^\d+\.\d+\.\d+$'
@@ -56,7 +56,7 @@ spec:
    spec:
      containers:
        - name: redis
-          image: redis:7.4-alpine
+          image: redis:8.8-alpine
          ports:
            - containerPort: 6379
              name: redis
@@ -77,7 +77,7 @@ spec:
    spec:
      containers:
        - name: redis
-          image: redis:7-alpine
+          image: redis:8-alpine
          imagePullPolicy: IfNotPresent
          args:
            - redis-server
@@ -50,7 +50,7 @@ spec:
        fsGroup: 1000
      containers:
        - name: code-server
-          image: codercom/code-server:4.122.1
+          image: codercom/code-server:4.123.0
          args:
            - --bind-addr=0.0.0.0:8080
            - --auth=none
@@ -169,7 +169,7 @@ spec:
          type: RuntimeDefault
      containers:
      - name: reloader
-        image: ghcr.io/stakater/reloader:v1.4.12
+        image: ghcr.io/stakater/reloader:v1.4.17
        imagePullPolicy: IfNotPresent
        env:
        - name: GOMAXPROCS
@@ -57,7 +57,7 @@ replicaCount: 1
 # Image configuration (optional - use defaults)
 image:
  repository: ghcr.io/cloudnative-pg/cloudnative-pg
-  tag: 1.28.1
+  tag: 1.29.1
 # Service configuration
 service:
@@ -258,7 +258,7 @@ spec:
      automountServiceAccountToken: true
      containers:
        - name: headlamp
-          image: ghcr.io/headlamp-k8s/headlamp:v0.40.0
+          image: ghcr.io/headlamp-k8s/headlamp:v0.42.0
          imagePullPolicy: IfNotPresent
          args:
            - "-in-cluster"
@@ -42,5 +42,5 @@ rbac:
 # Image configuration
 image:
  repository: registry.k8s.io/external-dns/external-dns
-  tag: v0.19.0
+  tag: v0.21.0
  pullPolicy: IfNotPresent
@@ -1,4 +1,11 @@
 ---
 # Image tag override: bumps pihole/pihole to 2026.05.0 without changing
 # the chart version. The 2026.05.0 release bundles FTL v6.6.2 which
 # imports 6 upstream dnsmasq CVE fixes (covering the dnsmasq 2.92/2.93
 # disclosures). No FTL-side config or API changes per the release notes.
 # https://github.com/pi-hole/docker-pi-hole/releases/tag/2026.05.0
 image:
  tag: "2026.05.0"
 DNS1: "1.1.1.1"   # Cloudflare
 DNS2: "8.8.8.8"   # Google
 DNS3: "9.9.9.9"   #Quad9
@@ -235,7 +235,10 @@ statefulSet:
  annotations: {}
  # -- Optional extra annotations to add to the pods in the statefulset
  podAnnotations: 
-    match-regex.version-checker.io/plex-plex-media-server-pms: ^\d+\.\d+\.\d+\.\d+-.*$
+    # Match only `<X.Y.Z.B>-<short-hash>` (the amd64/native tag form) and exclude
    # per-arch tags (e.g. `-armhf`, `-arm64`) so version-checker doesn't show an
    # ARM tag as "newer" than our x86_64 install.
    match-regex.version-checker.io/plex-plex-media-server-pms: '^\d+\.\d+\.\d+\.\d+-[a-f0-9]+$'
 service:
  type: LoadBalancer
@@ -372,7 +372,7 @@ spec:
      enableServiceLinks: true
      containers:
        - name: homepage
-          image: ghcr.io/gethomepage/homepage:v1.10.1
+          image: ghcr.io/gethomepage/homepage:v1.13.1
          imagePullPolicy: IfNotPresent
          env:
            # Required for external access
@@ -535,7 +535,7 @@ spec:
      enableServiceLinks: true
      containers:
        - name: homepage
-          image: ghcr.io/gethomepage/homepage:v1.10.1
+          image: ghcr.io/gethomepage/homepage:v1.13.1
          imagePullPolicy: IfNotPresent
          env:
            # Required for external access
@@ -45,7 +45,7 @@ spec:
        fsGroup: 999
      containers:
        - name: postgres
-          image: ghcr.io/immich-app/postgres:17-vectorchord0.3.0
+          image: ghcr.io/immich-app/postgres:16-vectorchord0.3.0
          env:
            - name: POSTGRES_USER
              valueFrom:
@@ -241,7 +241,7 @@ spec:
              value: immich-valkey
            - name: TRANSFORMERS_CACHE
              value: /cache
-          image: ghcr.io/immich-app/immich-machine-learning:v2.5.5
+          image: ghcr.io/immich-app/immich-machine-learning:v2.7.5
          imagePullPolicy: IfNotPresent
          livenessProbe:
            failureThreshold: 3
@@ -336,7 +336,7 @@ spec:
              value: http://immich-machine-learning:3003
            - name: REDIS_HOSTNAME
              value: immich-valkey
-          image: ghcr.io/immich-app/immich-server:v2.5.5
+          image: ghcr.io/immich-app/immich-server:v2.7.5
          imagePullPolicy: IfNotPresent
          livenessProbe:
            failureThreshold: 3
@@ -185,7 +185,7 @@ spec:
    spec:
      containers:
        - name: redis
-          image: redis:7-alpine
+          image: redis:8-alpine
          imagePullPolicy: IfNotPresent
          args:
            - redis-server
@@ -529,7 +529,7 @@ spec:
        runAsGroup: 472
      containers:
        - name: grafana
-          image: grafana/grafana:12.4.4
+          image: grafana/grafana:13.0.2
          ports:
            - containerPort: 3000
              name: http
@@ -392,10 +392,13 @@ spec:
        nextcloud-config-hash: 06b49913be13b1f9a81745166dd75ada59e7ddd39e8f6a2c5538affe2a6d1093
        php-config-hash: 5a497358af870e06b42325eee83d7c0e5466b7f6819cb49b598559d96def7428
        hooks-hash: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
        # Only match the `X.Y.Z-apache` variant tags so version-checker doesn't
        # treat the bare `X.Y.Z` server tag as a "newer" version of our apache image.
        match-regex.version-checker.io/nextcloud: '^\d+\.\d+\.\d+-apache$'
    spec:
      containers:
        - name: nextcloud
-          image: docker.io/library/nextcloud:33.0.4-apache
+          image: docker.io/library/nextcloud:33.0.5-apache
          imagePullPolicy: IfNotPresent
          env:
            - name: SMTP_HOST
@@ -198,7 +198,7 @@ spec:
    spec:
      containers:
        - name: redis
-          image: redis:7-alpine
+          image: redis:8-alpine
          imagePullPolicy: IfNotPresent
          command:
            - redis-server
@@ -71,7 +71,7 @@ spec:
    spec:
      containers:
        - name: redis
-          image: redis:7-alpine
+          image: redis:8-alpine
          imagePullPolicy: IfNotPresent
          ports:
            - name: redis
@@ -158,7 +158,7 @@ spec:
      enableServiceLinks: false
      containers:
        - name: paperless
-          image: ghcr.io/paperless-ngx/paperless-ngx:2.20.6
+          image: ghcr.io/paperless-ngx/paperless-ngx:2.20.15
          imagePullPolicy: IfNotPresent
          env:
            # Database - using shared PostgreSQL in database-system namespace
@@ -121,7 +121,7 @@ spec:
    spec:
      containers:
        - name: redis
-          image: redis:7.4.9
+          image: redis:8.8.0
          ports:
            - containerPort: 6379
              name: redis
@@ -45,7 +45,7 @@ spec:
          # Renovate handles it via a customManagers regex defined in
          # admin-system/renovate.yaml (the kubernetes manager doesn't
          # process inline `# renovate:` comments).
-          image: ghcr.io/lukegus/termix:release-1.11.0
+          image: ghcr.io/lukegus/termix:release-2.3.2
          imagePullPolicy: IfNotPresent
          ports:
            - name: http
@@ -57,7 +57,7 @@ spec:
    spec:
      containers:
        - name: meilisearch
-          image: getmeili/meilisearch:v1.45.2
+          image: getmeili/meilisearch:v1.11.3
          env:
            - name: MEILI_MASTER_KEY
              valueFrom:
Author	SHA1	Message	Date
admin	1d08156d81	version tracking: tune annotations + add customManagers for linuxserver servarr Several images were showing as outdated in version-checker / unhandled by Renovate. Each had a distinct cause; this PR fixes the auto-tractable ones. 1) admin-system/renovate.yaml: bump `app.kubernetes.io/version` labels `43.197.0 -> 43.209.3` (3 occurrences) to match the live image. Renovate's own self-update PR bumped the image tag but left the labels stale; the version-checker widget appears to read the label. Long-term, this label will drift again on each self-update -- worth a customManager later if it becomes a recurring annoyance. 2) admin-system/renovate.yaml: add a customManager + packageRule pair for linuxserver servarr apps. Tag pattern is `version-X.Y.Z.B` (4 segments + `version-` prefix) which the kubernetes manager's default docker versioning rejects at the pre-check, same failure class as termix. Regex versioning parses the prefixed 4-segment form; the same customManager handles prowlarr/radarr/sonarr (depName captured from the regex). kubernetes-manager extraction for these three depnames is disabled via packageRule so the dashboard isn't cluttered with the failing fallback. 3) nextcloud-system/nextcloud.yaml: add `match-regex.version-checker.io/nextcloud: '^\d+\.\d+\.\d+-apache$'` so version-checker doesn't treat the bare `33.0.5` server tag as a newer version of our `33.0.5-apache` image. The widget was showing `33.0.5-apache -> 33.0.5` -- false positive; image is already current. 4) helm/plex/values.yaml: tighten the version-checker regex from `^\d+\.\d+\.\d+\.\d+-.*$` to `^\d+\.\d+\.\d+\.\d+-[a-f0-9]+$` so per-arch tags (`-armhf`, `-arm64`, ...) are excluded. The widget was showing an `-armhf` tag as "newer" than our x86_64 install. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-06-06 13:25:49 +02:00
admin	a8c657d554	Merge pull request 'pihole: bump image to 2026.05.0 (dnsmasq CVE security release)' (#81 ) from feat/pihole-2026.05.0 into main	2026-06-06 10:56:00 +00:00
admin	9e020af94d	pihole: bump image to 2026.05.0 (dnsmasq CVE security release) Pi-hole 2026.05.0 bundles FTL v6.6.2 which imports six upstream dnsmasq security fixes, covering all publicly disclosed CVEs against the dnsmasq 2.92/2.93 line. Per the upstream release notes the fixes are "minimal, self-contained changes to the embedded dnsmasq sources. No FTL-side configuration or API changes; users should see no observable behavior change beyond the closed vulnerabilities." Override the chart's default image.tag in helm/pihole/values.yaml (no chart version bump). The pihole ArgoCD app is intentionally MANUAL sync per Viktor's call -- after merge, sync the pihole app from the ArgoCD UI to roll the pod over. https://github.com/pi-hole/docker-pi-hole/releases/tag/2026.05.0 Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-06-06 12:55:58 +02:00
admin	ec9ae43bee	Merge pull request 'termix: manual bump 1.11.2 -> 2.3.2 (Renovate blocked by DH rate-limit)' (#80 ) from feat/termix-v2.3.2 into main	2026-06-06 09:16:02 +00:00
admin	e822b76982	termix: manual bump 1.11.2 -> 2.3.2 (Renovate blocked by DH rate-limit) Renovate's `Pending Approval` checkbox for the termix v2 major was ticked on Dashboard #6, but the manual Renovate runs that should have processed it both aborted on Docker Hub's authenticated rate-limit: HTTP 429: You have reached your pull rate limit as 'kisfenyo' The free DH plan caps authenticated pulls at 100/6h; with ~270 deps in this repo and the multiple runs we've done today, we've exhausted it. Renovate's behavior on a host 429 is to abort the entire repository run (`result: external-host-error`), so no further work — including ticked dashboard approvals — gets done until the quota window resets. Rather than wait ~3-4 hours, this PR does the bump by hand. Upstream ghcr.io/lukegus/termix:release-2.3.2 is verified present (Termix-SSH GitHub Release of 2026-06-04). Termix is stateless (host/cred config stored in PocketBase but compatible across release-1 and release-2), so the rollout should be a straightforward image swap. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-06-06 11:16:00 +02:00
admin	876b044d0a	Merge pull request 'fix: roll back immich-postgres v17 -> v16 (PG major incompat) + gate postgres-family' (#79 ) from fix/immich-postgres-rollback into main	2026-06-06 09:00:33 +00:00
admin	e459b0d262	immich/renovate: roll back immich-postgres v17 -> v16 (PG major datadir incompat) + gate postgres-family images Renovate PR #76 (merged 2026-06-06 10:48) bumped ghcr.io/immich-app/postgres from `16-vectorchord0.3.0` to `17-vectorchord0.3.0`. PostgreSQL major upgrades require pg_upgrade or pg_dump/restore — the new server binary refuses to open a data directory initialized by the previous major: FATAL: database files are incompatible with server DETAIL: The data directory was initialized by PostgreSQL version 16, which is not compatible with this version 17.6 Both immich-postgres and immich-server (depends on Postgres) went into CrashLoopBackOff. PVC still holds the v16 datadir. This PR: 1. Reverts ghcr.io/immich-app/postgres back to `16-vectorchord0.3.0` so immich recovers immediately. 2. Adds a packageRule with `dependencyDashboardApproval: true` covering `postgres`, `postgis/postgis`, and `ghcr.io/immich-app/postgres`. Any update to these images is now held on the Dashboard's "Pending Approval" section -- Renovate won't even open a PR until the user explicitly ticks the box. Forces the migration plan to be made BEFORE the change reaches main. This is the same recovery pattern we just used for meilisearch (PR #77) -- a class of stateful images where the on-disk format isn't forward-compatible across version bumps. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-06-06 11:00:32 +02:00
admin	99bbc31325	Merge pull request 'Update docker.io/library/nextcloud Docker tag to v33.0.5' (#78 ) from renovate/docker.io-library-nextcloud-33.x into main	2026-06-06 09:00:24 +00:00
Renovate Bot	fee5fafeb0	Update docker.io/library/nextcloud Docker tag to v33.0.5 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 09:00:21 +00:00
admin	25c1baf1c3	Merge pull request 'Update grafana/grafana Docker tag to v13' (#58 ) from renovate/grafana-grafana-13.x into main Reviewed-on: #58	2026-06-06 08:56:24 +00:00
admin	184c469c51	Merge pull request 'Update redis Docker tag to v8' (#64 ) from renovate/redis-8.x into main Reviewed-on: #64	2026-06-06 08:56:16 +00:00
admin	6291423776	Merge pull request 'Update ghcr.io/cloudnative-pg/cloudnative-pg Docker tag to v1.29.1' (#70 ) from renovate/ghcr.io-cloudnative-pg-cloudnative-pg-1.x into main Reviewed-on: #70	2026-06-06 08:56:08 +00:00
admin	d063513869	Merge pull request 'Update ghcr.io/immich-app/immich-server Docker tag to v2.7.5' (#74 ) from renovate/ghcr.io-immich-app-immich-server-2.x into main Reviewed-on: #74	2026-06-06 08:48:14 +00:00
admin	0cd8a3272d	Merge pull request 'Update ghcr.io/immich-app/postgres Docker tag to v17' (#76 ) from renovate/ghcr.io-immich-app-postgres-17.x into main Reviewed-on: #76	2026-06-06 08:48:07 +00:00
admin	9de82b7295	Merge pull request 'fix: roll back wanderer meilisearch v1.45.2 -> v1.11.3 (index incompat) + dashboardApproval' (#77 ) from fix/meilisearch-rollback into main	2026-06-06 08:45:24 +00:00
admin	1338bbb6ae	wanderer/renovate: roll back meilisearch v1.45.2 -> v1.11.3 + gate future bumps Renovate PR #32 (merged 2026-06-06 09:30) bumped getmeili/meilisearch from v1.11.3 to v1.45.2 under the default-allow + 3-day stability rule. Meilisearch's on-disk index format is NOT forward-compatible across that range; wanderer-meilisearch went into CrashLoopBackOff with: Error: Your database version (1.11.3) is incompatible with your current engine version (1.45.2). The PVC still holds the v1.11.x index, so the safest immediate recovery is reverting the image tag. Wanderer's search starts working again the moment the pod comes up on v1.11.3. To prevent recurrence, add a packageRule that holds ALL meilisearch updates behind the dashboard's "Pending Approval" checkbox via `dependencyDashboardApproval: true`. PRs won't be opened until the user explicitly approves them on the dashboard, so the version bump can be planned around the documented dump/restore migration path (https://www.meilisearch.com/docs/learn/update_and_migration/updating). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-06-06 10:45:23 +02:00
admin	789c75d253	Merge pull request 'Update codercom/code-server Docker tag to v4.123.0' (#52 ) from renovate/codercom-code-server-4.x into main Reviewed-on: #52	2026-06-06 08:36:58 +00:00
admin	3c37d283da	Merge pull request 'Update registry.k8s.io/external-dns/external-dns Docker tag to v0.21.0' (#75 ) from renovate/registry.k8s.io-external-dns-external-dns-0.x into main	2026-06-06 08:33:51 +00:00
Renovate Bot	6d46261dff	Update registry.k8s.io/external-dns/external-dns Docker tag to v0.21.0 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:44 +00:00
admin	82c397af2c	Merge pull request 'Update ghcr.io/immich-app/immich-machine-learning Docker tag to v2.7.5' (#73 ) from renovate/ghcr.io-immich-app-immich-machine-learning-2.x into main	2026-06-06 08:33:42 +00:00
Renovate Bot	c0acfc338c	Update ghcr.io/immich-app/immich-server Docker tag to v2.7.5 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:40 +00:00
admin	7956ca930b	Merge pull request 'Update ghcr.io/headlamp-k8s/headlamp Docker tag to v0.42.0' (#72 ) from renovate/ghcr.io-headlamp-k8s-headlamp-0.x into main	2026-06-06 08:33:26 +00:00
Renovate Bot	c5887cb6d6	Update ghcr.io/immich-app/immich-machine-learning Docker tag to v2.7.5 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:26 +00:00
admin	2d5aca0df3	Merge pull request 'Update ghcr.io/gethomepage/homepage Docker tag to v1.13.1' (#71 ) from renovate/ghcr.io-gethomepage-homepage-1.x into main	2026-06-06 08:33:23 +00:00
Renovate Bot	56f2622225	Update ghcr.io/headlamp-k8s/headlamp Docker tag to v0.42.0 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:22 +00:00
Renovate Bot	a3525c7ab6	Update ghcr.io/gethomepage/homepage Docker tag to v1.13.1 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:16 +00:00
Renovate Bot	e0550cbe54	Update ghcr.io/cloudnative-pg/cloudnative-pg Docker tag to v1.29.1 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:11 +00:00
admin	f3d0b7e404	Merge pull request 'Update ghcr.io/stakater/reloader Docker tag to v1.4.17' (#69 ) from renovate/ghcr.io-stakater-reloader-1.x into main	2026-06-06 08:33:11 +00:00
admin	8bc11a6db7	Merge pull request 'Update ghcr.io/paperless-ngx/paperless-ngx Docker tag to v2.20.15' (#68 ) from renovate/ghcr.io-paperless-ngx-paperless-ngx-2.x into main	2026-06-06 08:33:04 +00:00
Renovate Bot	22d5c38bac	Update ghcr.io/stakater/reloader Docker tag to v1.4.17 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:33:03 +00:00
admin	8f29f9e645	Merge pull request 'Update dependency ghcr.io/lukegus/termix to release-1.11.2' (#67 ) from renovate/ghcr.io-lukegus-termix-1.x into main	2026-06-06 08:32:55 +00:00
Renovate Bot	a2d69962ed	Update ghcr.io/paperless-ngx/paperless-ngx Docker tag to v2.20.15 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 08:32:55 +00:00
Renovate Bot	a993456653	Update dependency ghcr.io/lukegus/termix to release-1.11.2 renovate/stability-days Updates have met minimum release age requirement Details	2026-06-06 08:32:50 +00:00
Renovate Bot	56d39399d6	Update redis Docker tag to v8 renovate/stability-days Updates have met minimum release age requirement Details	2026-06-06 07:53:16 +00:00
Renovate Bot	a2e68c1745	Update grafana/grafana Docker tag to v13 renovate/stability-days Updates have met minimum release age requirement Details	2026-06-06 07:52:33 +00:00
Renovate Bot	c7ec82eae0	Update codercom/code-server Docker tag to v4.123.0 renovate/stability-days Updates have not met minimum release age requirement Details	2026-06-06 07:48:15 +00:00