Update all dependencies

[missingcharacter]

This PR contains the following updates:

Package	Type	Update	Change
postgres		minor	17.0-alpine3.20 -> 17.4-alpine3.20
python	uses-with	minor	3.9 -> 3.13
traefik		minor	v3.2.0 -> v3.3.4
vaultwarden/server		minor	1.32.3-alpine -> 1.33.2-alpine

---

Release Notes

actions/python-versions (python)

v3.13.2: 3.13.2

Compare Source

Python 3.13.2

v3.13.1: 3.13.1

Compare Source

Python 3.13.1

v3.13.0: 3.13.0

Compare Source

Python 3.13.0

v3.12.9: 3.12.9

Compare Source

Python 3.12.9

v3.12.8: 3.12.8

Compare Source

Python 3.12.8

v3.12.7: 3.12.7

Compare Source

Python 3.12.7

v3.12.6: 3.12.6

Compare Source

Python 3.12.6

v3.12.5: 3.12.5

Compare Source

Python 3.12.5

v3.12.4: 3.12.4

Compare Source

Python 3.12.4

v3.12.3: 3.12.3

Compare Source

Python 3.12.3

v3.12.2: 3.12.2

Compare Source

Python 3.12.2

v3.12.1: 3.12.1

Compare Source

Python 3.12.1

v3.12.0: 3.12.0

Compare Source

Python 3.12.0

v3.11.11: 3.11.11

Compare Source

Python 3.11.11

v3.11.10: 3.11.10

Compare Source

Python 3.11.10

v3.11.9: 3.11.9

Compare Source

Python 3.11.9

v3.11.8: 3.11.8

Compare Source

Python 3.11.8

v3.11.7: 3.11.7

Compare Source

Python 3.11.7

v3.11.6: 3.11.6

Compare Source

Python 3.11.6

v3.11.5: 3.11.5

Compare Source

Python 3.11.5

v3.11.4: 3.11.4

Compare Source

Python 3.11.4

v3.11.3: 3.11.3

Compare Source

Python 3.11.3

v3.11.2: 3.11.2

Compare Source

Python 3.11.2

v3.11.1: 3.11.1

Compare Source

Python 3.11.1

v3.11.0: 3.11.0

Compare Source

Python 3.11.0

v3.10.16: 3.10.16

Compare Source

Python 3.10.16

v3.10.15: 3.10.15

Compare Source

Python 3.10.15

v3.10.14: 3.10.14

Compare Source

Python 3.10.14

v3.10.13: 3.10.13

Compare Source

Python 3.10.13

v3.10.12: 3.10.12

Compare Source

Python 3.10.12

v3.10.11: 3.10.11

Compare Source

Python 3.10.11

v3.10.10: 3.10.10

Compare Source

Python 3.10.10

v3.10.9: 3.10.9

Compare Source

Python 3.10.9

v3.10.8: 3.10.8

Compare Source

Python 3.10.8

v3.10.7: 3.10.7

Compare Source

Python 3.10.7

v3.10.6: 3.10.6

Compare Source

Python 3.10.6

v3.10.5: 3.10.5

Compare Source

Python 3.10.5

v3.10.4: 3.10.4

Compare Source

Python 3.10.4

v3.10.3: 3.10.3

Compare Source

Python 3.10.3

v3.10.2: 3.10.2

Compare Source

Python 3.10.2

v3.10.1: 3.10.1

Compare Source

Python 3.10.1

v3.10.0: 3.10.0

Compare Source

Python 3.10.0

containous/traefik (traefik)

v3.3.4

Compare Source

All Commits

Bug fixes:

• [fastproxy] Bump github.com/valyala/fasthttp to v1.58.0 (#​11526 by kevinpollet)
• [fastproxy] Add WebSocket headers if they are present in the request (#​11522 by kevinpollet)
• [fastproxy] Chunked responses does not have a Content-Length header (#​11514 by kevinpollet)
• [metrics,otel] Change request duration metric unit from millisecond to second (#​11523 by rtribotte)
• [sticky-session] Fix double hash in sticky cookie (#​11518 by juliens)
• [tracing] Use ResourceAttributes instead of GlobalAttributes (#​11515 by bruno-de-queiroz)
• [tracing] Fix panic when calling Tracer (#​11479 by basgys)

Documentation:

• [acme] Update ACME provider configuration options (#​11564 by sheddy-traefik)
• [acme] Fix incorrect grammar in ACME documentation (#​11553 by Peter-Maguire)
• [metrics,tracing,accesslogs] Add missing options in entrypoints page (#​11524 by sheddy-traefik)
• [tracing] Replace globalAttributes with resourceAttributes in tracing reference (#​11531 by rtribotte)

Misc:

• Merge branch v2.11 into v3.3 (#​11567 by kevinpollet)

v3.3.4

Compare Source

All Commits

Bug fixes:

• [fastproxy] Bump github.com/valyala/fasthttp to v1.58.0 (#​11526 by kevinpollet)
• [fastproxy] Add WebSocket headers if they are present in the request (#​11522 by kevinpollet)
• [fastproxy] Chunked responses does not have a Content-Length header (#​11514 by kevinpollet)
• [metrics,otel] Change request duration metric unit from millisecond to second (#​11523 by rtribotte)
• [sticky-session] Fix double hash in sticky cookie (#​11518 by juliens)
• [tracing] Use ResourceAttributes instead of GlobalAttributes (#​11515 by bruno-de-queiroz)
• [tracing] Fix panic when calling Tracer (#​11479 by basgys)

Documentation:

• [acme] Update ACME provider configuration options (#​11564 by sheddy-traefik)
• [acme] Fix incorrect grammar in ACME documentation (#​11553 by Peter-Maguire)
• [metrics,tracing,accesslogs] Add missing options in entrypoints page (#​11524 by sheddy-traefik)
• [tracing] Replace globalAttributes with resourceAttributes in tracing reference (#​11531 by rtribotte)

Misc:

• Merge branch v2.11 into v3.3 (#​11567 by kevinpollet)

v3.3.3

Compare Source

All Commits

Bug fixes:

• [api] Do not create observability model by default (#​11476 by rtribotte)
• [fastproxy] Fix content-length header assertion (#​11498 by kevinpollet)
• [fastproxy] Handle responses without content length header (#​11458 by rtribotte)
• [k8s/crd,k8s] Add missing headerField in Middleware CRD (#​11499 by jspdown)
• [tracing,accesslogs] Bring back TraceID and SpanID fields in access logs (#​11450 by rtribotte)

Misc:

• Merge branch v2.11 into v3.3 (#​11502 by rtribotte)
• Merge branch v2.11 into v3.3 (#​11491 by rtribotte)

v3.3.3

Compare Source

All Commits

Bug fixes:

• [api] Do not create observability model by default (#​11476 by rtribotte)
• [fastproxy] Fix content-length header assertion (#​11498 by kevinpollet)
• [fastproxy] Handle responses without content length header (#​11458 by rtribotte)
• [k8s/crd,k8s] Add missing headerField in Middleware CRD (#​11499 by jspdown)
• [tracing,accesslogs] Bring back TraceID and SpanID fields in access logs (#​11450 by rtribotte)

Misc:

• Merge branch v2.11 into v3.3 (#​11502 by rtribotte)
• Merge branch v2.11 into v3.3 (#​11491 by rtribotte)

v3.3.2

Compare Source

All Commits

Bug fixes:

• [fastproxy] Do not read response body for HEAD requests (#​11442 by kevinpollet)
• [metrics,tracing,accesslogs] Fix observability configuration on EntryPoints (#​11446 by rtribotte)
• [webui] Set content-type when serving webui index (#​11428 by kevinpollet)

Documentation:

• [acme] Fix deprecated dnsChallenge propagation logging and documentation (#​11433 by thomscode)
• [acme] Add missing trailing s to propagation.delayBeforeCheck option (#​11417 by jspiers)

Misc:

• Merge branch v2.11 into v3.3 (#​11419 by kevinpollet)

v3.3.2

Compare Source

All Commits

Bug fixes:

• [fastproxy] Do not read response body for HEAD requests (#​11442 by kevinpollet)
• [metrics,tracing,accesslogs] Fix observability configuration on EntryPoints (#​11446 by rtribotte)
• [webui] Set content-type when serving webui index (#​11428 by kevinpollet)

Documentation:

• [acme] Fix deprecated dnsChallenge propagation logging and documentation (#​11433 by thomscode)
• [acme] Add missing trailing s to propagation.delayBeforeCheck option (#​11417 by jspiers)

Misc:

• Merge branch v2.11 into v3.3 (#​11419 by kevinpollet)

v3.3.1

Compare Source

All Commits

Bug fixes:

• [websocket,server] Disable http2 connect setting for websocket by default (#​11408 by rtribotte)

v3.3.1

Compare Source

All Commits

Bug fixes:

• [websocket,server] Disable http2 connect setting for websocket by default (#​11408 by rtribotte)

v3.3.0

Compare Source

All Commits

Enhancements:

• [acme] Add options to control ACME propagation checks (#​11241 by ldez)
• [api] Add support dump API endpoint (#​11328 by mmatur)
• [http] Set Host header in HTTP provider request (#​11237 by nikonhub)
• [k8s/crd,k8s] Make the IngressRoute kind optional (#​11177 by skirtan1)
• [k8s/ingress,sticky-session,k8s/crd,k8s] Support serving endpoints (#​11121 by BZValoche)
• [logs,accesslogs] OpenTelemetry Logs and Access Logs (#​11319 by rtribotte)
• [logs,accesslogs] Add experimental flag for OTLP logs integration (#​11335 by kevinpollet)
• [metrics,tracing,accesslogs] Manage observability at entrypoint and router level (#​11308 by rtribotte)
• [middleware,authentication] Add an option to preserve the ForwardAuth Server Location header (#​11318 by Nelwhix)
• [middleware,authentication] Only calculate basic auth hashes once for concurrent requests (#​11143 by michelheusschen)
• [middleware,authentication] Send request body to authorization server for forward auth (#​11097 by kyo-ke)
• [plugins] Add AbortOnPluginFailure option to abort startup on plugin load failure (#​11228 by bmagic)
• [sticky-session] Configurable path for sticky cookies (#​11166 by IIpragmaII)
• [webui,api] Configurable API & Dashboard base path (#​11250 by rtribotte)

Bug fixes:

• [k8s/ingress,k8s/crd] Fix fenced server status computation (#​11361 by kevinpollet)

Documentation:

• Prepare release v3.3.0-rc2 (#​11362 by rtribotte)
• Prepare Release v3.3.0-rc1 (#​11349 by rtribotte)

Misc:

• Merge branch v3.2 into v3.3 (#​11402 by kevinpollet)
• Merge branch v3.2 into v3.3 (#​11393 by mmatur)
• Merge branch v3.2 into v3.3 (#​11389 by mmatur)
• Merge branch v3.2 into v3.3 (#​11367 by kevinpollet)
• Merge branch v3.2 into master (#​11340 by kevinpollet)
• Merge branch v3.2 into master (#​11293 by kevinpollet)
• Merge branch v3.2 into master (#​11239 by kevinpollet)
• Merge branch v3.2 into master (#​11187 by kevinpollet)

v3.3.0

Compare Source

All Commits

Enhancements:

• [acme] Add options to control ACME propagation checks (#​11241 by ldez)
• [api] Add support dump API endpoint (#​11328 by mmatur)
• [http] Set Host header in HTTP provider request (#​11237 by nikonhub)
• [k8s/crd,k8s] Make the IngressRoute kind optional (#​11177 by skirtan1)
• [k8s/ingress,sticky-session,k8s/crd,k8s] Support serving endpoints (#​11121 by BZValoche)
• [logs,accesslogs] OpenTelemetry Logs and Access Logs (#​11319 by rtribotte)
• [logs,accesslogs] Add experimental flag for OTLP logs integration (#​11335 by kevinpollet)
• [metrics,tracing,accesslogs] Manage observability at entrypoint and router level (#​11308 by rtribotte)
• [middleware,authentication] Add an option to preserve the ForwardAuth Server Location header (#​11318 by Nelwhix)
• [middleware,authentication] Only calculate basic auth hashes once for concurrent requests (#​11143 by michelheusschen)
• [middleware,authentication] Send request body to authorization server for forward auth (#​11097 by kyo-ke)
• [plugins] Add AbortOnPluginFailure option to abort startup on plugin load failure (#​11228 by bmagic)
• [sticky-session] Configurable path for sticky cookies (#​11166 by IIpragmaII)
• [webui,api] Configurable API & Dashboard base path (#​11250 by rtribotte)

Bug fixes:

• [k8s/ingress,k8s/crd] Fix fenced server status computation (#​11361 by kevinpollet)

Documentation:

• Prepare release v3.3.0-rc2 (#​11362 by rtribotte)
• Prepare Release v3.3.0-rc1 (#​11349 by rtribotte)

Misc:

• Merge branch v3.2 into v3.3 (#​11402 by kevinpollet)
• Merge branch v3.2 into v3.3 (#​11393 by mmatur)
• Merge branch v3.2 into v3.3 (#​11389 by mmatur)
• Merge branch v3.2 into v3.3 (#​11367 by kevinpollet)
• Merge branch v3.2 into master (#​11340 by kevinpollet)
• Merge branch v3.2 into master (#​11293 by kevinpollet)
• Merge branch v3.2 into master (#​11239 by kevinpollet)
• Merge branch v3.2 into master (#​11187 by kevinpollet)

v3.2.5

Compare Source

All Commits

Bug fixes:

• [websocket,server] Disable http2 connect setting for websocket by default (#​11408 by rtribotte)

v3.2.5

Compare Source

All Commits

Bug fixes:

• [websocket,server] Disable http2 connect setting for websocket by default (#​11408 by rtribotte)

v3.2.4

Compare Source

All Commits

Bug fixes:

• [k8s/gatewayapi] Support empty value for core Kubernetes API group (#​11386 by rtribotte)
• [tcp,k8s/crd] Pass TLS bool from IngressRouteTCP to TCPService (#​11343 by lipmem)
• [tls] Upgrade github.com/spiffe/go-spiffe/v2 to v2.4.0 (#​11385 by mmatur)
• Remove duplicate github.com/coreos/go-systemd dependency (#​11354 by Juneezee)

Documentation:

• [k8s/gatewayapi] Update Gateway API version support to v1.2.1 (#​11357 by kevinpollet)
• Add @​jnoordsij to maintainers (#​11352 by emilevauge)

Misc:

• Merge branch v2.11 into v3.2 (#​11400 by kevinpollet)
• Merge branch v2.11 into v3.2 (#​11392 by rtribotte)
• Merge branch v2.11 into v3.2 (#​11388 by mmatur)
• Merge branch v2.11 into v3.2 (#​11366 by kevinpollet)

v3.2.4

Compare Source

All Commits

Bug fixes:

• [k8s/gatewayapi] Support empty value for core Kubernetes API group (#​11386 by rtribotte)
• [tcp,k8s/crd] Pass TLS bool from IngressRouteTCP to TCPService (#​11343 by lipmem)
• [tls] Upgrade github.com/spiffe/go-spiffe/v2 to v2.4.0 (#​11385 by mmatur)
• Remove duplicate github.com/coreos/go-systemd dependency (#​11354 by Juneezee)

Documentation:

• [k8s/gatewayapi] Update Gateway API version support to v1.2.1 (#​11357 by kevinpollet)
• Add @​jnoordsij to maintainers (#​11352 by emilevauge)

Misc:

• Merge branch v2.11 into v3.2 (#​11400 by kevinpollet)
• Merge branch v2.11 into v3.2 (#​11392 by rtribotte)
• Merge branch v2.11 into v3.2 (#​11388 by mmatur)
• Merge branch v2.11 into v3.2 (#​11366 by kevinpollet)

v3.2.3

Compare Source

All Commits

Documentation:

• Update reference install documentation with current chart default (#​11332 by mloiseleur)

Misc:

• Merge branch v2.11 into v3.2 (#​11346 by kevinpollet)
• Merge branch v2.11 into v3.2 (#​11337 by kevinpollet)

v3.2.3

Compare Source

All Commits

Documentation:

• Update reference install documentation with current chart default (#​11332 by mloiseleur)

Misc:

• Merge branch v2.11 into v3.2 (#​11346 by kevinpollet)
• Merge branch v2.11 into v3.2 (#​11337 by kevinpollet)

v3.2.2

Compare Source

All Commits

Bug fixes:

• [docker,docker/swarm] Rename traefik.docker.* labels for Docker Swarm to traefik.swarm.* (#​11247 by anchal00)
• [k8s/gatewayapi] Update sigs.k8s.io/gateway-api to v1.2.1 (#​11314 by kevinpollet)
• [plugins] Fix WASM settings (#​11321 by juliens)
• [rules] Fix models mechanism for default rule syntax (#​11300 by rtribotte)

Documentation:

• Move callout to the entrypoint page footer (#​11305 by kevinpollet)
• Fix incorrect links in v3 migration sections (#​11297 by kevinpollet)
• New Install Reference Documentation (#​11213 by sheddy-traefik)

v3.2.2

Compare Source

All Commits

Bug fixes:

• [docker,docker/swarm] Rename traefik.docker.* labels for Docker Swarm to traefik.swarm.* (#​11247 by anchal00)
• [k8s/gatewayapi] Update sigs.k8s.io/gateway-api to v1.2.1 (#​11314 by kevinpollet)
• [plugins] Fix WASM settings (#​11321 by juliens)
• [rules] Fix models mechanism for default rule syntax (#​11300 by rtribotte)

Documentation:

• Move callout to the entrypoint page footer (#​11305 by kevinpollet)
• Fix incorrect links in v3 migration sections (#​11297 by kevinpollet)
• New Install Reference Documentation (#​11213 by sheddy-traefik)

v3.2.1

Compare Source

All Commits

Bug fixes:

• [k8s/ingress,k8s] Fix HostRegexp config for rule syntax v2 (#​11288 by kevinpollet)
• [logs] Change level of peeking first byte error log to DEBUG for Postgres (#​11270 by rtribotte)
• [service,fastproxy] Fix case problem for websocket upgrade (#​11246 by juliens)

Documentation:

• [acme,tls] Document how to use Certificates of cert-manager (#​11053 by mloiseleur)
• [docker/swarm] Add tips about the use of docker in dynamic configuration for swarm provider (#​11207 by webash)
• [middleware] Add Compress middleware to migration guide (#​11229 by logica0419)

Misc:

• Merge branch v2.11 into v3.2 (#​11290 by kevinpollet)
• Merge branch v2.11 into v3.2 (#​11287 by rtribotte)
• Merge branch v2.11 into v3.2 (#​11285 by juliens)
• Merge branch v2.11 into v3.2 (#​11268 by kevinpollet)

v3.2.1

Compare Source

All Commits

Bug fixes:

• [k8s/ingress,k8s] Fix HostRegexp config for rule syntax v2 (#​11288 by kevinpollet)
• [logs] Change level of peeking first byte error log to DEBUG for Postgres (#​11270 by rtribotte)
• [service,fastproxy] Fix case problem for websocket upgrade (#​11246 by juliens)

Documentation:

• [acme,tls] Document how to use Certificates of cert-manager (#​11053 by mloiseleur)
• [docker/swarm] Add tips about the use of docker in dynamic configuration for swarm provider (#​11207 by webash)
• [middleware] Add Compress middleware to migration guide (#​11229 by logica0419)

Misc:

• Merge branch v2.11 into v3.2 (#​11290 by kevinpollet)
• Merge branch v2.11 into v3.2 (#​11287 by rtribotte)
• Merge branch v2.11 into v3.2 (#​11285 by juliens)
• Merge branch v2.11 into v3.2 (#​11268 by kevinpollet)

dani-garcia/vaultwarden (vaultwarden/server)

v1.33.2

Compare Source

What's Changed

• Update workflows and enhance security by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5537
• Update crates & fix CVE-2025-24898 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5538
• add bulk-access endpoint for collections by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5542
• Fix icon redirect not working on desktop by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5536
• Show assigned collections on member edit by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5556

Full Changelog: dani-garcia/vaultwarden@1.33.1...1.33.2

v1.33.1

Compare Source

General mention

This release has some minor issues fixed like:

• Icon's not working on the Desktop clients
• Invites not always working
• DUO settings not able to configure
• Manager rights
• Mobile client sync issues fixed

What's Changed

• hide already approved (or declined) auth_requests by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5467
• let invited members access OrgMemberHeaders by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5461
• Make sure the icons are displayed correctly in desktop clients by @​WinLinux1028 in https://github.com/dani-garcia/vaultwarden/pull/5469
• Fix passwordRevisionDate format by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5477
• add and use new event types by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5482
• Fix Duo Field Names for Web Client by @​ratiner in https://github.com/dani-garcia/vaultwarden/pull/5491
• Allow all manager to create collections again by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5488
• Update Rust to 1.84.1 by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5508

New Contributors

• @​WinLinux1028 made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5469
• @​ratiner made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/5491

Full Changelog: dani-garcia/vaultwarden@1.33.0...1.33.1

v1.33.0

Compare Source

Security Fixes

This release contains security fixes for the following advisories.
And we strongly advice to update as soon as possible.

• GHSA-f7r5-w49x-gxm3
  This vulnerability is only possible if you do not have an ADMIN_TOKEN configured and open links or pages you should not trust anyway. Ensure you have an ADMIN_TOKEN configured to keep your admin environment save.
• GHSA-h6cc-rc6q-23j4
  This vulnerability is only possible if someone was able to gain access to your Vaultwarden Admin Backend. The attacker could then change some settings to use sendmail as mail agent but adjust the settings in such a way that it would use a shell command. It then also needed to craft a special favicon image which would have the commands embedded to run during for example sending a test email.
• GHSA-j4h8-vch3-f797
  This vulnerability affects all users who have multiple Organizations and users which are able to create a new organization or have admin or owner rights on at least one organization. The attacker does need to know the Organization UUID of the Organization it want's to attack or compromise though.

Notable changes

• Updated web-vault to v2025.1.1
• Added partial manage role support for collections
• Manager role is converted to a Custom role with either Manage All Collections or per collection.
  Admins and Owners probably want to check and verify if the rights are still correct.
• The OCI containers and binaries are signed via GitHub Attestations
  This allows you to verify an OCI image or even the vaultwarden binary located within the OCI image.

These vulnerabilities affects

What's Changed

• Add inline-menu-positioning-improvements feature flag by @​Ephemera42 in https://github.com/dani-garcia/vaultwarden/pull/5313
• Fix issues when uri match is a string by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5332
• Add TOTP delete endpoint by @​Timshel in https://github.com/dani-garcia/vaultwarden/pull/5327
• fix group issue in send_invite by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5321
• Update crates and GHA by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5346
• Refactor the uri match fix and fix ssh-key sync by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5339
• Add partial role support for manager only using web-vault v2024.12.0 by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5219
• Fix issue with key-rotate by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5348
• fix manager role in admin users overview by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5359
• Prevent new users/members to be stored in db when invite fails by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5350
• Update crates and web-vault to v2025.1.0 by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5368
• Allow building with Rust v1.84.0 or newer by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5371
• rename membership and adopt newtype pattern by @​stefan0xC in https://github.com/dani-garcia/vaultwarden/pull/5320
• build: raise msrv (1.83.0) rust toolchain (1.84.0) by @​tessus in https://github.com/dani-garcia/vaultwarden/pull/5374
• Fix an issue with login with device by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5379
• refactor: replace static with const for global constants by @​Integral-Tech in https://github.com/dani-garcia/vaultwarden/pull/5260
• Add Attestations for containers and artifacts by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5378
• Fix version detection on bake by @​BlackDex in https://github.com/dani-garcia/vaultwarden/pull/5382
• Simplify container image attestation by @​dfunkt in https://github.com/dani-garcia/vaultwarden/pull/5387
• improve admin invite by [@​st

---

Configuration

📅 Schedule: Branch creation - "* 0-3 * * *" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.