v6.4.1 by PromoFaux · Pull Request #3717 · pi-hole/web

PromoFaux · 2026-02-15T18:04:47Z

What's Changed

Set the end date for live query update to end of epoch by @rrobgill in Set the end date for live query update to end of epoch #3677
Improve initial loading of Query Log by @DL6ER in Improve initial loading of Query Log #3715

Also fixes two security advisories:

GHSA-6xp4-jw73-f4qp: fixed with d328f14
GHSA-8rw8-vjgp-rwj6: fixed with 1a0c6f4

Full Changelog: v6.4...v6.4.1

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.4 to 4.31.5. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@e12f017...fdbfb4d) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [prettier](https://github.com/prettier/prettier) from 3.6.2 to 3.7.2. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.6.2...3.7.2) --- updated-dependencies: - dependency-name: prettier dependency-version: 3.7.2 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Rob Gill <rrobgill@protonmail.com>

Signed-off-by: yubiuser <github@yubiuser.dev>

Bumps [prettier](https://github.com/prettier/prettier) from 3.7.2 to 3.7.4. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.7.2...3.7.4) --- updated-dependencies: - dependency-name: prettier dependency-version: 3.7.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 6.0.0 to 6.1.0. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@2028fbc...395ad32) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.0 to 6.0.1. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@1af3b93...8e8c483) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.5 to 4.31.7. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@fdbfb4d...cf1bb45) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [actions/stale](https://github.com/actions/stale) from 10.1.0 to 10.1.1. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](actions/stale@5f858e3...9971854) --- updated-dependencies: - dependency-name: actions/stale dependency-version: 10.1.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.7 to 4.31.8. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@cf1bb45...1b168cd) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.8 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [eslint](https://github.com/eslint/eslint) from 9.39.1 to 9.39.2. - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v9.39.1...v9.39.2) --- updated-dependencies: - dependency-name: eslint dependency-version: 9.39.2 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.8 to 4.31.9. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@1b168cd...5d4e8d1) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [autoprefixer](https://github.com/postcss/autoprefixer) from 10.4.22 to 10.4.23. - [Release notes](https://github.com/postcss/autoprefixer/releases) - [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md) - [Commits](postcss/autoprefixer@10.4.22...10.4.23) --- updated-dependencies: - dependency-name: autoprefixer dependency-version: 10.4.23 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [globals](https://github.com/sindresorhus/globals) from 16.5.0 to 17.0.0. - [Release notes](https://github.com/sindresorhus/globals/releases) - [Commits](sindresorhus/globals@v16.5.0...v17.0.0) --- updated-dependencies: - dependency-name: globals dependency-version: 17.0.0 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

- use `createElement()` to create the button - add data-* attributes using `.dateset` Signed-off-by: RD WebDesign <github@rdwebdesign.com.br>

Signed-off-by: RD WebDesign <github@rdwebdesign.com.br>

Bumps [globals](https://github.com/sindresorhus/globals) from 17.0.0 to 17.1.0. - [Release notes](https://github.com/sindresorhus/globals/releases) - [Commits](sindresorhus/globals@v17.0.0...v17.1.0) --- updated-dependencies: - dependency-name: globals dependency-version: 17.1.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [prettier](https://github.com/prettier/prettier) from 3.8.0 to 3.8.1. - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](prettier/prettier@3.8.0...3.8.1) --- updated-dependencies: - dependency-name: prettier dependency-version: 3.8.1 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [eslint-plugin-compat](https://github.com/amilajack/eslint-plugin-compat) from 6.0.2 to 6.1.0. - [Release notes](https://github.com/amilajack/eslint-plugin-compat/releases) - [Changelog](https://github.com/amilajack/eslint-plugin-compat/blob/main/CHANGELOG.md) - [Commits](amilajack/eslint-plugin-compat@v6.0.2...v6.1.0) --- updated-dependencies: - dependency-name: eslint-plugin-compat dependency-version: 6.1.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.11 to 4.32.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@19b2f06...b20883b) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.32.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [globals](https://github.com/sindresorhus/globals) from 17.1.0 to 17.2.0. - [Release notes](https://github.com/sindresorhus/globals/releases) - [Commits](sindresorhus/globals@v17.1.0...v17.2.0) --- updated-dependencies: - dependency-name: globals dependency-version: 17.2.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [autoprefixer](https://github.com/postcss/autoprefixer) from 10.4.23 to 10.4.24. - [Release notes](https://github.com/postcss/autoprefixer/releases) - [Changelog](https://github.com/postcss/autoprefixer/blob/main/CHANGELOG.md) - [Commits](postcss/autoprefixer@10.4.23...10.4.24) --- updated-dependencies: - dependency-name: autoprefixer dependency-version: 10.4.24 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.0 to 4.32.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@b20883b...45cbd0c) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.32.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [globals](https://github.com/sindresorhus/globals) from 17.2.0 to 17.3.0. - [Release notes](https://github.com/sindresorhus/globals/releases) - [Commits](sindresorhus/globals@v17.2.0...v17.3.0) --- updated-dependencies: - dependency-name: globals dependency-version: 17.3.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

…vided by FTL (on related branch) to avoid having to call the (very heavy) GET /info/database endpoint just for sourcing the earliest timestamps in the database Signed-off-by: Dominik <dl6er@dl6er.de>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.2 to 4.32.3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@45cbd0c...9e907b5) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.32.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Escape `data.x_forwarded_for` value before inserting it into the DOM

Use `.dataset` to avoid passing untrusted data to HTML button

Also fix Unnecessary use of boolean literals in conditional expression. Co-authored-by: RD WebDesign <github@rdwebdesign.com.br> Signed-off-by: Adam Warner <me@adamwarner.co.uk>

PromoFaux and others added 30 commits November 27, 2025 23:21

Sync master back into development (#3672)

9845468

build(deps): bump github/codeql-action from 4.31.4 to 4.31.5 (#3673)

b96edff

Set the end date for live query update to end of epoch

a832290

Signed-off-by: Rob Gill <rrobgill@protonmail.com>

Fix css style

5299221

Signed-off-by: yubiuser <github@yubiuser.dev>

build(deps-dev): bump prettier from 3.6.2 to 3.7.2 (#3674)

9777f9c

build(deps-dev): bump prettier from 3.7.2 to 3.7.4 (#3678)

8735363

build(deps): bump actions/setup-node from 6.0.0 to 6.1.0 (#3679)

393a00f

build(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#3680)

dfe8dfb

build(deps): bump github/codeql-action from 4.31.5 to 4.31.7 (#3681)

cbea15a

build(deps): bump actions/stale from 10.1.0 to 10.1.1 (#3682)

9c92d61

build(deps): bump github/codeql-action from 4.31.7 to 4.31.8 (#3683)

4d387f5

build(deps-dev): bump eslint from 9.39.1 to 9.39.2 (#3684)

e6fa80f

build(deps): bump github/codeql-action from 4.31.8 to 4.31.9 (#3686)

d75fa2f

build(deps-dev): bump autoprefixer from 10.4.22 to 10.4.23 (#3687)

3282e04

build(deps-dev): bump globals from 16.5.0 to 17.0.0 (#3694)

f28fea3

Set the end date for live query update to end of epoch (#3677)

bf1dcfb

Use a different approach to create the delete button

2378eba

- use `createElement()` to create the button - add data-* attributes using `.dateset` Signed-off-by: RD WebDesign <github@rdwebdesign.com.br>

Escape data.x_forwarded_for value before inserting it into the DOM

053cfb2

Signed-off-by: RD WebDesign <github@rdwebdesign.com.br>

dependabot Bot and others added 25 commits January 24, 2026 10:03

build(deps-dev): bump globals from 17.0.0 to 17.1.0 (#3707)

7f2cb5f

build(deps-dev): bump eslint-plugin-compat from 6.0.2 to 6.1.0 (#3705)

54178d5

build(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#3703)

c0fc6e1

build(deps): bump github/codeql-action from 4.31.10 to 4.31.11 (#3702)

1bac47e

build(deps-dev): bump prettier from 3.8.0 to 3.8.1 (#3704)

fb78146

build(deps): bump github/codeql-action from 4.31.11 to 4.32.0 (#3708)

67c7508

build(deps-dev): bump globals from 17.1.0 to 17.2.0 (#3709)

6954f43

build(deps-dev): bump autoprefixer from 10.4.23 to 10.4.24 (#3710)

098a161

build(deps): bump github/codeql-action from 4.32.0 to 4.32.2 (#3712)

c1390aa

build(deps-dev): bump globals from 17.2.0 to 17.3.0 (#3713)

2fa03ef

Use the properties earliest_timestamp and earliest_timestamp_disk pro…

fdbba6b

…vided by FTL (on related branch) to avoid having to call the (very heavy) GET /info/database endpoint just for sourcing the earliest timestamps in the database Signed-off-by: Dominik <dl6er@dl6er.de>

Improve initial loading of Query Log (#3715)

eb3c38a

build(deps): bump github/codeql-action from 4.32.2 to 4.32.3 (#3716)

c39117e

Merge commit from fork

1a0c6f4

Escape `data.x_forwarded_for` value before inserting it into the DOM

Merge commit from fork

d328f14

Use `.dataset` to avoid passing untrusted data to HTML button

Accidentally a ;

192d96f

Also fix Unnecessary use of boolean literals in conditional expression. Co-authored-by: RD WebDesign <github@rdwebdesign.com.br> Signed-off-by: Adam Warner <me@adamwarner.co.uk>

PromoFaux requested a review from a team as a code owner February 15, 2026 18:04

DL6ER approved these changes Feb 15, 2026

View reviewed changes

yubiuser approved these changes Feb 15, 2026

View reviewed changes

rdwebdesign approved these changes Feb 15, 2026

View reviewed changes

PromoFaux merged commit 09e4e0e into master Feb 17, 2026
12 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

v6.4.1#3717

v6.4.1#3717
PromoFaux merged 63 commits intomasterfrom
development

PromoFaux commented Feb 15, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Uh oh!

Conversation

PromoFaux commented Feb 15, 2026

What's Changed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants