Release v0.0.37 · heymrun/heym

Breaking change: the Docker Logs tab is now opt-in

Starting this release, the Docker-backed Logs tab is disabled by default. Previously any signed-in user could read container logs. Access is now gated behind two settings.

To re-enable it, set:

DOCKER_LOGS_ENABLED=true
DOCKER_LOGS_ALLOWED_EMAILS=admin@example.com (comma-separated list of trusted user emails)
For safety, create the trusted admin account before enabling this, or keep ALLOW_REGISTER=false, so an unverified self-registration cannot claim an allow-listed email.

What's Changed

Make Docker log access opt in by @VykosMolt in #159
Harden OAuth token handling by @VykosMolt in #154
Enforce resource access during workflow execution by @VykosMolt in #152
feat(frontend): add password hint by @eryue0220 in #163
update/version by @ckakgun in #165

Full Changelog: v0.0.36...v0.0.37

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

v0.0.37

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

Breaking change: the Docker Logs tab is now opt-in

What's Changed

Contributors

Uh oh!