Skip to content

0.10.4.49

Latest

Choose a tag to compare

@github-actions github-actions released this 20 Jun 19:53

Hotfix Release

MentisDB 0.10.4.49 fixes a dashboard login bug introduced in 0.10.2.47, corrects a session-lifetime miscalculation, and simplifies the build by making HNSW and local-embeddings unconditional default features.

For the full feature list and benchmark numbers from the prior release, see 0.10.3.48.

Hotfix

  • Dashboard login fix — The session cookie's Secure attribute was hardcoded, so browsers silently dropped it when the dashboard sat behind a TLS-terminating reverse proxy (nginx, Caddy, Traefik) that talked plain HTTP to the daemon. Login would succeed but the browser would discard the cookie, bouncing the user back to /dashboard/login on every request. The Secure attribute is now conditional on X-Forwarded-Proto.

  • Session lifetime fix — The session timeout was 5 hours instead of the intended 8 hours due to RATE_LIMIT_WINDOW_SECS * 60 being used for session expiry (the rate-limit window is already in seconds). Replaced with an explicit SESSION_TIMEOUT_SECS constant independent of the brute-force rate-limit window.

Simplifications

  • HNSW is now unconditional — The hnsw-backend Cargo feature has been removed entirely. HNSW is always compiled in — no feature flag needed. The HnswBackendNotEnabled error variant and its test have been deleted.

  • local-embeddings is now a default featurecargo install mentisdb just works, no --features flag needed. The self-updater, Makefile, and non-interactive update messages have been simplified. The 0.10.3.48 hotfix that added --features local-embeddings to the self-updater is now superseded.

Upgrade

cargo install mentisdb --force

No --features flag needed anymore — HNSW and local-embeddings are both included by default.

Links