v0.4.4

New Appstore

• The application store has been fully upgraded with the addition of 30+ new applications, including support for composite applications.
  • New applications: Adminer, Alist, ChatbotUI, Cloudflared, Databag, EmulatorJS, Handbrake, MariaDB, Memos, MineOS, Mongo, MongoDB4, Overseerr, Petio, PostgreSQL, Resilio-sync, Snapdrop, Stash.
• You can add third-party app sources from one page ( the page link will be live ,align with 0.4.4 in this week), offering thousands of applications to choose from.
• Migrated from Docker-cli to Docker-compose.
• Added support for multiple languages.
• Added author type filters to the app store.
• Supports assigning multiple applications to the same network.
• Added management of global environment variables, allowing injection of arbitrary environment variables into all CasaOS applications, such as OPENAI_API_KEY .
• Added relevant subcommands for managing global environment variables .
• Synchronized application list to the local system, providing more stability.
  • Potential issues (if concerned, please hold off on upgrading):
  • Removed the settings, update, and clone functions for installed applications. Installed applications can not be updated or have their configurations changed, but their expected operation and data remain unaffected!
  • Removed the feature of randomly assigning ports when there is a port conflict in applications.
  • Removed the sorting function for applications in the application store.
  • Removed the application cloning function.

Added

• Changed the synchronization method between frontend and backend to socket.io, using socket.io communication throughout the application's lifecycle.
• Added a prompt feature to applications, allowing users to save passwords or query default passwords in the tips section
• Clicking on the time allows switching between 12-hour and 24-hour formats
• Clicking on the CPU temperature allows toggling between Fahrenheit and Celsius
• Added the functionality to download system logs.
• Added the file editor performs syntax checking for the following file formats: JavaScript, CSS, HTML, JSON, YAML.

Security Advisories（ Fixed）

• CVE-2023-37265: Incorrect identification of the source IP address.
• CVE-2023-37266: Weak JWT secret.
• Fixed a security vulnerability (credits: @thomas-chauchefoin-sonarsource @CorrectRoadH).
• If you are still on an older CasaOS version, please do not expose your CasaOS to anyone you do not trust. See details by searching CVE IDs in https://github.com/advisories.

Fixed

• Optimized some styles and aesthetics.
• Fixed sorting and other issues in the file list.
• Fixed the issue of incorrect paths when downloading multiple files.
• Fixed the forced JSON formatting behavior of the editor when saving files.
• Faster speed for app update checks.
• Adjusted fonts on the log, console, and other pages to match the native console.
• Merged the "Exited Applications" panel into the application list.
• Fixed the mounting issue when there are no partitions on the disk.