truff/homelab

Fork 0

chore(deps): update pihole/pihole docker tag to v2026 #20

Open

renovatebot wants to merge 1 commit from renovate/pihole-pihole-2026.x into main

renovatebot commented

2026-02-18 00:00:57 +01:00

Collaborator

This PR contains the following updates:

Package	Update	Change
pihole/pihole	major	`2025.11.1` → `2026.05.0`

⚠️ Warning

Some dependencies could not be looked up. Check the warning logs for more information.

Release Notes

pi-hole/docker-pi-hole (pihole/pihole)

`v2026.05.0`

Compare Source

This tag includes the FTL v6.6.2 release which imports six upstream dnsmasq security fixes, covering all publicly disclosed CVEs against the dnsmasq 2.92/2.93 line. Patches are taken verbatim from https://thekelleys.org.uk/dnsmasq/CVE/

Details here: https://github.com/pi-hole/FTL/releases/tag/v6.6.2

Upgrade impact

All six fixes are minimal, self-contained changes to the embedded dnsmasq sources. No FTL-side configuration or API changes; users should see no observable behavior change beyond the closed vulnerabilities.

Fix dnsmasq CVE publications by @DL6ER in pi-hole/FTL#2888

This furthermore indirectly fixes #2871 due to pi-hole/docker-base-images#158

Full Changelog: https://github.com/pi-hole/FTL/compare/v6.6.1...v6.6.2

What's Changed (Docker Specific)

docs: update capability documentation links by @SirRGB in #2025

New Contributors

@SirRGB made their first contribution in #2025

Full Changelog: https://github.com/pi-hole/docker-pi-hole/compare/2026.04.0...2026.05.0

`v2026.04.1`

Compare Source

What's Changed

docs: update capability documentation links by @SirRGB in #2025

New Contributors

@SirRGB made their first contribution in #2025

Full Changelog: https://github.com/pi-hole/docker-pi-hole/compare/2026.04.0...2026.04.1

New component versions included in this tag:

What's Changed (FTL v6.6.1)

Add new GET /api/config/_properties endpoint by @DL6ER in pi-hole/FTL#2356
Fix thread-safety issues causing SIGSEGV under concurrent API load by @DL6ER in pi-hole/FTL#2835
fix: fix rare race condition for SHM strings in API handlers by @DL6ER in pi-hole/FTL#2833
Accept punycode domains that libidn2 rejects under IDNA2008 by @DL6ER in pi-hole/FTL#2838
Improve shutdown diagnostics to identify SIGTERM source by @DL6ER in pi-hole/FTL#2839
Resolve empty backtraces when addr2line is not installed by @DL6ER in pi-hole/FTL#2831
Improve thread-safety for concurrent API requests by @DL6ER in pi-hole/FTL#2847
Don't skip device lookup when resolver.macNames is disabled by @DL6ER in pi-hole/FTL#2846
Fix linker error when compiling w/o optimization by @aeolio in pi-hole/FTL#2850
Clarify dns.blockESNI wording by @darkexplosiveqwx in pi-hole/FTL#2784
Preserve log file path config when fopen fails by @DL6ER in pi-hole/FTL#2834

Security advisories

New Contributors

@darkexplosiveqwx made their first contribution in pi-hole/FTL#2784

Full Changelog: https://github.com/pi-hole/FTL/compare/v6.6...v6.6.1

What's Changed (Core v6.4.2)

Wipe version file before creating a new one by @yubiuser in pi-hole/pi-hole#6538
Fix ownership permissions for containing directories in fix_owner_per… by @PromoFaux in pi-hole/pi-hole#6589
Remove reference to /usr/local/bin/COL_TABLE by @darkexplosiveqwx in pi-hole/pi-hole#6594
Skip apt cache update when pihole-meta is current by @PromoFaux in pi-hole/pi-hole#6581
Set versions in /etc/pihole/versions to null if script fails by @yubiuser in pi-hole/pi-hole#6550
Remove redundant touching of logfiles from systemd Service by @yubiuser in pi-hole/pi-hole#6601
Loosen requirements for local file access for gravity by @yubiuser in pi-hole/pi-hole#6430
Fix permission for *.etag files after gravity run by @yubiuser in pi-hole/pi-hole#6353
add logrotate to DEB and RPM dependencies by @darkexplosiveqwx in pi-hole/pi-hole#6524
Improve gravity error message including curl exit code and errormsg by @rdwebdesign in pi-hole/pi-hole#6605

Security advisories

https://github.com/pi-hole/pi-hole/security/advisories/GHSA-6w8x-p785-6pm4
- Fixed with : pi-hole/pi-hole@7ccb8dd and pi-hole/FTL@88c569a

Full Changelog: https://github.com/pi-hole/pi-hole/compare/v6.4.1...v6.4.2

`v2026.04.0`

Compare Source

Group dependabot PRs to reduce PR spam by @yubiuser in #2004
ci: switch image publishing to docker/github-builder by @crazy-max in #2008
Readme Rework by @PromoFaux in #1958
Replace Python test suite with BATS and consolidate workflows by @PromoFaux in #2009
Add timeout to curl command in branch validation by @RynoCODE in #2011
Use bats-assert library functions in BATS test suite by @Copilot in #2018
ci: run build job on pull request event by @crazy-max in #2021
Update github-builder to v1.5.0 and enable fail-fast by @yubiuser in #2022

New Contributors

@crazy-max made their first contribution in #2008
@RynoCODE made their first contribution in #2011
@Copilot made their first contribution in #2018

Full Changelog: https://github.com/pi-hole/docker-pi-hole/compare/2026.02.0...2026.04.0

Component Release Notes

What's Changed (FTL v6.6)

Fix possible resolver issue on armv5tel by @DL6ER in pi-hole/FTL#2781
Introduce CMake options for optional dependencies by @aeolio in pi-hole/FTL#2795
Fix build without mbedtls [v2] by @aeolio in pi-hole/FTL#2796
Fix overTime data when database.DBimport = false by @DL6ER in pi-hole/FTL#2788
Fix cross-compilation issues w/ custom toolchain by @aeolio in pi-hole/FTL#2797
Add new option for controling name resolution via MAC address by @DL6ER in pi-hole/FTL#2790
Fix obtaining client groups by name by @DL6ER in pi-hole/FTL#2791
Ensure API sessions are restored before starting the HTTP server by @DL6ER in pi-hole/FTL#2803
Add form-action 'self' to Content-Security-Policy by @yubiuser in pi-hole/FTL#2804
Add query_frequency to /padd endpoint by @yubiuser in pi-hole/FTL#2806
Guard query-count counters against unsigned underflow by @DL6ER in pi-hole/FTL#2815
Add universal crash backtrace via _Unwind_Backtrace by @DL6ER in pi-hole/FTL#2811
config: show totp_secret presence in CLI output by @DL6ER in pi-hole/FTL#2813
Fix client count inflation for rate-limited queries by @DL6ER in pi-hole/FTL#2814
Fix stack buffer overflow in get_process_name() by @DL6ER in pi-hole/FTL#2821
Do not restart FTL while pihole -g is still ongoing by @DL6ER in pi-hole/FTL#2419

Security Advisories

GHSA-r7g8-3fj7-m5qq - Authorization bypass: CLI API sessions can import Teleporter archives and modify configuration reported by @mzalzahrani
Remote Code Execution (RCE) via Newline Injection in Multiple Configuration Parameters reported by @T0X1Cx

New Contributors

@aeolio made their first contribution in pi-hole/FTL#2795

Full Changelog: https://github.com/pi-hole/FTL/compare/v6.5...v6.6

What's Changed (Web v6.5)

Amend teleporter help text that the long-term data is not included by @yubiuser in pi-hole/web#3721
Do not use 3 columns when boxed layout is used by @rdwebdesign in pi-hole/web#3722
Use ENTER instead of ⏎ by @yubiuser in pi-hole/web#3727
Don't link to github releases if docker tag is nightly by @yubiuser in pi-hole/web#3718
Do not try to compare component version when remote version info is not available by @yubiuser in pi-hole/web#3729
Show loading overlay when adding/removing CNAME records as it requires a FTL restart by @yubiuser in pi-hole/web#3742
fix: check on responseJSON when wrong password by @guybrush2105 in pi-hole/web#3693
Remove the loggingButton from Settings > System > Actions by @yubiuser in pi-hole/web#3747

Security Advisories

Multiple Stored HTML Injections and XSS in different web interface pages reported by @andrejtomci

New Contributors

@guybrush2105 made their first contribution in pi-hole/web#3693

Full Changelog: https://github.com/pi-hole/web/compare/v6.4.1...v6.5

What's Changed (Core v6.4.1)

Remove additional ':' from debug log system time output by @yubiuser in pi-hole/pi-hole#6551
Remove readonly from piholeNetworkFlush.sh to avoid error message by @rdwebdesign in pi-hole/pi-hole#6554
Add antigravity index by @DL6ER in pi-hole/pi-hole#6573
Fix return status capture of FTL check_download exists by @yubiuser in pi-hole/pi-hole#6572
Remove misleading TODO comment for SetWebPassword by @10adnan75 in pi-hole/pi-hole#6531

Security Advisories

GHSA-c935-8g63-qp74 – Local Privilege Escalation reported by @smittix

New Contributors

@10adnan75 made their first contribution in pi-hole/pi-hole#6531
@Copilot made their first contribution in pi-hole/pi-hole#6580

Full Changelog: https://github.com/pi-hole/pi-hole/compare/v6.4...v6.4.1

`v2026.02.0`

Compare Source

What's Changed (Docker Specific)

Pin base image by sha to catch silent rebuilds by @yubiuser in #1965
Set fixed buildx version to mitigate issues with buildx version 0.31.1 by @yubiuser in #1987

Full Changelog: https://github.com/pi-hole/docker-pi-hole/compare/2025.11.1...2026.02.0

What's Changed (FTL v6.5)

Tweak undocumented wait-for option subtly by @DL6ER in pi-hole/FTL#2707
update gravity - improve domain validation processing speed by @rrobgill in pi-hole/FTL#2710
Update embedded SQLite3 to 3.51.1 by @DL6ER in pi-hole/FTL#2731
Update embedded dnsmasq to 2.92rc1 by @DL6ER in pi-hole/FTL#2730
Fix documentation - Do not use equal sign with pihole-FTL --config command by @rdwebdesign in pi-hole/FTL#2736
Add dns.cache.rrtype by @Manakuremati in pi-hole/FTL#2740
Enhancements to the documentation markdown generator by @PromoFaux in pi-hole/FTL#2741
Network Overview - obtain MAC and hostname from dhcp.leases by @rrobgill in pi-hole/FTL#2727
fix: make get_domains parameters optional by @tien in pi-hole/FTL#2278
Escape unprintable characters in invalid host names by @DL6ER in pi-hole/FTL#2601
Implement better allOf handling in API verifier by @DL6ER in pi-hole/FTL#2745
Update build containers to Alpine 3.23 by @DL6ER in pi-hole/FTL#2743
Add option to hide network connection errors by @DL6ER in pi-hole/FTL#2749
Harden default Content Security Policy (CSP) by @Erasure5959 in pi-hole/FTL#2754
Fix computation of NTP server's root delay by @DL6ER in pi-hole/FTL#2760
Teleporter: Fix for custom gravity.db path by @DL6ER in pi-hole/FTL#2758
Upgrade embedded Lua to 5.5 by @DL6ER in pi-hole/FTL#2626
Add missing [forwarded] property in GET /api/history/database by @DL6ER in pi-hole/FTL#2750
Update SQLite3 to 3.51.2 by @DL6ER in pi-hole/FTL#2761
Low-memory hardware optimizations by @DL6ER in pi-hole/FTL#2757
Reduce startup delay by @DL6ER in pi-hole/FTL#2725
home.arpa and internal TLDs may be non-local without revServer by @DL6ER in pi-hole/FTL#2772

New Contributors

@Erasure5959 made their first contribution in pi-hole/FTL#2754

Full Changelog: https://github.com/pi-hole/FTL/compare/v6.4.1...v6.5

What's Changed (Web v6.4.1)

Set the end date for live query update to end of epoch by @rrobgill in pi-hole/web#3677
Improve initial loading of Query Log by @DL6ER in pi-hole/web#3715

Also fixes two security advisories:

Full Changelog: https://github.com/pi-hole/web/compare/v6.4...v6.4.1

What's Changed (Core v6.4)

Remove wget from alpine dependencies by @darkexplosiveqwx in pi-hole/pi-hole#6484
Remove custom FTL FirewallD zone checks from debug log by @rdwebdesign in pi-hole/pi-hole#6481
Add Alpine 3.23 to test suite by @yubiuser in pi-hole/pi-hole#6488
Debug log - Add colors to gravity tables by @rdwebdesign in pi-hole/pi-hole#6485
Use configured location for web repo when updating or repairing by @rrobgill in pi-hole/pi-hole#6470
Add missing -g to the message in gravity recovery command by @rdwebdesign in pi-hole/pi-hole#6513
Don't install unused /usr/local/share/man/man5 by @darkexplosiveqwx in pi-hole/pi-hole#6526

Full Changelog: https://github.com/pi-hole/pi-hole/compare/v6.3...v6.4

Configuration

📅 Schedule: (UTC)

Branch creation
- At any time (no schedule defined)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [pihole/pihole](https://github.com/pi-hole/docker-pi-hole) | major | `2025.11.1` → `2026.05.0` | --- > ⚠️ **Warning** > > Some dependencies could not be looked up. Check the warning logs for more information. --- ### Release Notes <details> <summary>pi-hole/docker-pi-hole (pihole/pihole)</summary> ### [`v2026.05.0`](https://github.com/pi-hole/docker-pi-hole/releases/tag/2026.05.0) [Compare Source](https://github.com/pi-hole/docker-pi-hole/compare/2026.04.1...2026.05.0)  This tag includes the FTL v6.6.2 release which imports six upstream `dnsmasq` security fixes, covering all publicly disclosed CVEs against the dnsmasq 2.92/2.93 line. Patches are taken verbatim from <https://thekelleys.org.uk/dnsmasq/CVE/> Details here: <https://github.com/pi-hole/FTL/releases/tag/v6.6.2> #### Upgrade impact All six fixes are minimal, self-contained changes to the embedded dnsmasq sources. No FTL-side configuration or API changes; users should see no observable behavior change beyond the closed vulnerabilities. Fix dnsmasq CVE publications by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2888](https://github.com/pi-hole/FTL/pull/2888) This furthermore indirectly fixes [#2871](https://github.com/pi-hole/docker-pi-hole/issues/2871) due to [pi-hole/docker-base-images#158](https://github.com/pi-hole/docker-base-images/pull/158) **Full Changelog**: <https://github.com/pi-hole/FTL/compare/v6.6.1...v6.6.2> *** #### What's Changed (Docker Specific) - docs: update capability documentation links by [@SirRGB](https://github.com/SirRGB) in [#2025](https://github.com/pi-hole/docker-pi-hole/pull/2025) #### New Contributors - [@SirRGB](https://github.com/SirRGB) made their first contribution in [#2025](https://github.com/pi-hole/docker-pi-hole/pull/2025) **Full Changelog**: <https://github.com/pi-hole/docker-pi-hole/compare/2026.04.0...2026.05.0> ### [`v2026.04.1`](https://github.com/pi-hole/docker-pi-hole/releases/tag/2026.04.1) [Compare Source](https://github.com/pi-hole/docker-pi-hole/compare/2026.04.0...2026.04.1)  #### What's Changed - docs: update capability documentation links by [@SirRGB](https://github.com/SirRGB) in [#2025](https://github.com/pi-hole/docker-pi-hole/pull/2025) #### New Contributors - [@SirRGB](https://github.com/SirRGB) made their first contribution in [#2025](https://github.com/pi-hole/docker-pi-hole/pull/2025) **Full Changelog**: <https://github.com/pi-hole/docker-pi-hole/compare/2026.04.0...2026.04.1> #### New component versions included in this tag: #### What's Changed (FTL v6.6.1) - Add new `GET /api/config/_properties` endpoint by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2356](https://github.com/pi-hole/FTL/pull/2356) - Fix thread-safety issues causing SIGSEGV under concurrent API load by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2835](https://github.com/pi-hole/FTL/pull/2835) - fix: fix rare race condition for SHM strings in API handlers by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2833](https://github.com/pi-hole/FTL/pull/2833) - Accept punycode domains that libidn2 rejects under IDNA2008 by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2838](https://github.com/pi-hole/FTL/pull/2838) - Improve shutdown diagnostics to identify SIGTERM source by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2839](https://github.com/pi-hole/FTL/pull/2839) - Resolve empty backtraces when addr2line is not installed by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2831](https://github.com/pi-hole/FTL/pull/2831) - Improve thread-safety for concurrent API requests by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2847](https://github.com/pi-hole/FTL/pull/2847) - Don't skip device lookup when resolver.macNames is disabled by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2846](https://github.com/pi-hole/FTL/pull/2846) - Fix linker error when compiling w/o optimization by [@aeolio](https://github.com/aeolio) in [pi-hole/FTL#2850](https://github.com/pi-hole/FTL/pull/2850) - Clarify `dns.blockESNI` wording by [@darkexplosiveqwx](https://github.com/darkexplosiveqwx) in [pi-hole/FTL#2784](https://github.com/pi-hole/FTL/pull/2784) - Preserve log file path config when fopen fails by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2834](https://github.com/pi-hole/FTL/pull/2834) #### Security advisories - <https://github.com/pi-hole/pi-hole/security/advisories/GHSA-6w8x-p785-6pm4> - Fixed with : [pi-hole/FTL@`88c569a`](https://github.com/pi-hole/FTL/commit/88c569aa026d905d0066135bb71f36a13acf4bf4) and [pi-hole/pi-hole@`7ccb8dd`](https://github.com/pi-hole/pi-hole/commit/7ccb8ddfb085479fa96e801886eb1cdbeaf3a720) - <https://github.com/pi-hole/FTL/security/advisories/GHSA-9cqv-839p-gpq2> - Fixed with : [pi-hole/FTL@`0c46e4e`](https://github.com/pi-hole/FTL/commit/0c46e4ec7fe57f762fce261625f2cf5d43806e6d) #### New Contributors - [@darkexplosiveqwx](https://github.com/darkexplosiveqwx) made their first contribution in [pi-hole/FTL#2784](https://github.com/pi-hole/FTL/pull/2784) **Full Changelog**: <https://github.com/pi-hole/FTL/compare/v6.6...v6.6.1> #### What's Changed (Core v6.4.2) - Wipe version file before creating a new one by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6538](https://github.com/pi-hole/pi-hole/pull/6538) - Fix ownership permissions for containing directories in fix\_owner\_per… by [@PromoFaux](https://github.com/PromoFaux) in [pi-hole/pi-hole#6589](https://github.com/pi-hole/pi-hole/pull/6589) - Remove reference to /usr/local/bin/COL\_TABLE by [@darkexplosiveqwx](https://github.com/darkexplosiveqwx) in [pi-hole/pi-hole#6594](https://github.com/pi-hole/pi-hole/pull/6594) - Skip apt cache update when pihole-meta is current by [@PromoFaux](https://github.com/PromoFaux) in [pi-hole/pi-hole#6581](https://github.com/pi-hole/pi-hole/pull/6581) - Set versions in /etc/pihole/versions to null if script fails by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6550](https://github.com/pi-hole/pi-hole/pull/6550) - Remove redundant touching of logfiles from systemd Service by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6601](https://github.com/pi-hole/pi-hole/pull/6601) - Loosen requirements for local file access for gravity by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6430](https://github.com/pi-hole/pi-hole/pull/6430) - Fix permission for \*.etag files after gravity run by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6353](https://github.com/pi-hole/pi-hole/pull/6353) - add logrotate to DEB and RPM dependencies by [@darkexplosiveqwx](https://github.com/darkexplosiveqwx) in [pi-hole/pi-hole#6524](https://github.com/pi-hole/pi-hole/pull/6524) - Improve gravity error message including curl exit code and errormsg by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/pi-hole#6605](https://github.com/pi-hole/pi-hole/pull/6605) #### Security advisories - <https://github.com/pi-hole/pi-hole/security/advisories/GHSA-6w8x-p785-6pm4> - Fixed with : [pi-hole/pi-hole@`7ccb8dd`](https://github.com/pi-hole/pi-hole/commit/7ccb8ddfb085479fa96e801886eb1cdbeaf3a720) and [pi-hole/FTL@`88c569a`](https://github.com/pi-hole/FTL/commit/88c569aa026d905d0066135bb71f36a13acf4bf4) **Full Changelog**: <https://github.com/pi-hole/pi-hole/compare/v6.4.1...v6.4.2> ### [`v2026.04.0`](https://github.com/pi-hole/docker-pi-hole/releases/tag/2026.04.0) [Compare Source](https://github.com/pi-hole/docker-pi-hole/compare/2026.02.0...2026.04.0)  #### What's Changed (Docker Specific - all related to CI/build) - Group dependabot PRs to reduce PR spam by [@yubiuser](https://github.com/yubiuser) in [#2004](https://github.com/pi-hole/docker-pi-hole/pull/2004) - ci: switch image publishing to docker/github-builder by [@crazy-max](https://github.com/crazy-max) in [#2008](https://github.com/pi-hole/docker-pi-hole/pull/2008) - Readme Rework by [@PromoFaux](https://github.com/PromoFaux) in [#1958](https://github.com/pi-hole/docker-pi-hole/pull/1958) - Replace Python test suite with BATS and consolidate workflows by [@PromoFaux](https://github.com/PromoFaux) in [#2009](https://github.com/pi-hole/docker-pi-hole/pull/2009) - Add timeout to curl command in branch validation by [@RynoCODE](https://github.com/RynoCODE) in [#2011](https://github.com/pi-hole/docker-pi-hole/pull/2011) - Use bats-assert library functions in BATS test suite by [@Copilot](https://github.com/Copilot) in [#2018](https://github.com/pi-hole/docker-pi-hole/pull/2018) - ci: run build job on pull request event by [@crazy-max](https://github.com/crazy-max) in [#2021](https://github.com/pi-hole/docker-pi-hole/pull/2021) - Update github-builder to v1.5.0 and enable fail-fast by [@yubiuser](https://github.com/yubiuser) in [#2022](https://github.com/pi-hole/docker-pi-hole/pull/2022) #### New Contributors - [@crazy-max](https://github.com/crazy-max) made their first contribution in [#2008](https://github.com/pi-hole/docker-pi-hole/pull/2008) - [@RynoCODE](https://github.com/RynoCODE) made their first contribution in [#2011](https://github.com/pi-hole/docker-pi-hole/pull/2011) - [@Copilot](https://github.com/Copilot) made their first contribution in [#2018](https://github.com/pi-hole/docker-pi-hole/pull/2018) **Full Changelog**: <https://github.com/pi-hole/docker-pi-hole/compare/2026.02.0...2026.04.0> #### Component Release Notes  #### What's Changed (FTL v6.6) - Fix possible resolver issue on armv5tel by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2781](https://github.com/pi-hole/FTL/pull/2781) - Introduce CMake options for optional dependencies by [@aeolio](https://github.com/aeolio) in [pi-hole/FTL#2795](https://github.com/pi-hole/FTL/pull/2795) - Fix build without mbedtls \[v2] by [@aeolio](https://github.com/aeolio) in [pi-hole/FTL#2796](https://github.com/pi-hole/FTL/pull/2796) - Fix overTime data when database.DBimport = false by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2788](https://github.com/pi-hole/FTL/pull/2788) - Fix cross-compilation issues w/ custom toolchain by [@aeolio](https://github.com/aeolio) in [pi-hole/FTL#2797](https://github.com/pi-hole/FTL/pull/2797) - Add new option for controling name resolution via MAC address by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2790](https://github.com/pi-hole/FTL/pull/2790) - Fix obtaining client groups by name by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2791](https://github.com/pi-hole/FTL/pull/2791) - Ensure API sessions are restored before starting the HTTP server by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2803](https://github.com/pi-hole/FTL/pull/2803) - Add form-action 'self' to Content-Security-Policy by [@yubiuser](https://github.com/yubiuser) in [pi-hole/FTL#2804](https://github.com/pi-hole/FTL/pull/2804) - Add query\_frequency to /padd endpoint by [@yubiuser](https://github.com/yubiuser) in [pi-hole/FTL#2806](https://github.com/pi-hole/FTL/pull/2806) - Guard query-count counters against unsigned underflow by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2815](https://github.com/pi-hole/FTL/pull/2815) - Add universal crash backtrace via \_Unwind\_Backtrace by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2811](https://github.com/pi-hole/FTL/pull/2811) - config: show totp\_secret presence in CLI output by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2813](https://github.com/pi-hole/FTL/pull/2813) - Fix client count inflation for rate-limited queries by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2814](https://github.com/pi-hole/FTL/pull/2814) - Fix stack buffer overflow in get\_process\_name() by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2821](https://github.com/pi-hole/FTL/pull/2821) - Do not restart FTL while `pihole -g` is still ongoing by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2419](https://github.com/pi-hole/FTL/pull/2419) #### Security Advisories - [GHSA-r7g8-3fj7-m5qq - Authorization bypass: CLI API sessions can import Teleporter archives and modify configuration](https://github.com/pi-hole/FTL/security/advisories/GHSA-r7g8-3fj7-m5qq) reported by [@mzalzahrani](https://github.com/mzalzahrani) - Remote Code Execution (RCE) via Newline Injection in Multiple Configuration Parameters reported by [@T0X1Cx](https://github.com/T0X1Cx) - [pi-hole/FTL/security/advisories/GHSA-vfmq-jrx3-wv3c](https://github.com/pi-hole/FTL/security/advisories/GHSA-vfmq-jrx3-wv3c) - [pi-hole/FTL/security/advisories/GHSA-wxhv-w77q-6qwp](https://github.com/pi-hole/FTL/security/advisories/GHSA-wxhv-w77q-6qwp) - [pi-hole/FTL/security/advisories/GHSA-28g5-gg88-wh5m](https://github.com/pi-hole/FTL/security/advisories/GHSA-28g5-gg88-wh5m) - [pi-hole/FTL/security/advisories/GHSA-fqv2-qhfh-ghcj](https://github.com/pi-hole/FTL/security/advisories/GHSA-fqv2-qhfh-ghcj) - [pi-hole/FTL/security/advisories/GHSA-23w8-7333-p9fj](https://github.com/pi-hole/FTL/security/advisories/GHSA-23w8-7333-p9fj) #### New Contributors - [@aeolio](https://github.com/aeolio) made their first contribution in [pi-hole/FTL#2795](https://github.com/pi-hole/FTL/pull/2795) **Full Changelog**: <https://github.com/pi-hole/FTL/compare/v6.5...v6.6>  #### What's Changed (Web v6.5) - Amend teleporter help text that the long-term data is not included by [@yubiuser](https://github.com/yubiuser) in [pi-hole/web#3721](https://github.com/pi-hole/web/pull/3721) - Do not use 3 columns when boxed layout is used by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/web#3722](https://github.com/pi-hole/web/pull/3722) - Use <kbd>ENTER</kbd> instead of <kbd>⏎</kbd> by [@yubiuser](https://github.com/yubiuser) in [pi-hole/web#3727](https://github.com/pi-hole/web/pull/3727) - Don't link to github releases if docker tag is nightly by [@yubiuser](https://github.com/yubiuser) in [pi-hole/web#3718](https://github.com/pi-hole/web/pull/3718) - Do not try to compare component version when remote version info is not available by [@yubiuser](https://github.com/yubiuser) in [pi-hole/web#3729](https://github.com/pi-hole/web/pull/3729) - Show loading overlay when adding/removing CNAME records as it requires a FTL restart by [@yubiuser](https://github.com/yubiuser) in [pi-hole/web#3742](https://github.com/pi-hole/web/pull/3742) - fix: check on responseJSON when wrong password by [@guybrush2105](https://github.com/guybrush2105) in [pi-hole/web#3693](https://github.com/pi-hole/web/pull/3693) - Remove the loggingButton from Settings > System > Actions by [@yubiuser](https://github.com/yubiuser) in [pi-hole/web#3747](https://github.com/pi-hole/web/pull/3747) #### Security Advisories - Multiple Stored HTML Injections and XSS in different web interface pages reported by [@andrejtomci](https://github.com/andrejtomci) - [GHSA-jx8x-mj2r-62vq - Stored HTML Injection in queries.js](https://github.com/pi-hole/web/security/advisories/GHSA-jx8x-mj2r-62vq) - [GHSA-9rfm-c5g6-538p - Stored HTML attribute injection](https://github.com/pi-hole/web/security/advisories/GHSA-9rfm-c5g6-538p) - [GHSA-px6w-85wp-ww9v - Stored XSS / HTML injection in the Network page/Dashboard](https://github.com/pi-hole/web/security/advisories/GHSA-px6w-85wp-ww9v) - [GHSA-7xqw-r9pr-qv59 - Reflected XSS / HTML injection in taillog.js](https://github.com/pi-hole/web/security/advisories/GHSA-7xqw-r9pr-qv59) (Also reported by [@n1rwhex](https://github.com/n1rwhex) and [@mzalzahrani](https://github.com/mzalzahrani)) #### New Contributors - [@guybrush2105](https://github.com/guybrush2105) made their first contribution in [pi-hole/web#3693](https://github.com/pi-hole/web/pull/3693) **Full Changelog**: <https://github.com/pi-hole/web/compare/v6.4.1...v6.5>  #### What's Changed (Core v6.4.1) - Remove additional ':' from debug log system time output by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6551](https://github.com/pi-hole/pi-hole/pull/6551) - Remove `readonly` from piholeNetworkFlush.sh to avoid error message by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/pi-hole#6554](https://github.com/pi-hole/pi-hole/pull/6554) - Add antigravity index by [@DL6ER](https://github.com/DL6ER) in [pi-hole/pi-hole#6573](https://github.com/pi-hole/pi-hole/pull/6573) - Fix return status capture of FTL check\_download exists by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6572](https://github.com/pi-hole/pi-hole/pull/6572) - Remove misleading TODO comment for SetWebPassword by [@10adnan75](https://github.com/10adnan75) in [pi-hole/pi-hole#6531](https://github.com/pi-hole/pi-hole/pull/6531) #### Security Advisories - [GHSA-c935-8g63-qp74 – Local Privilege Escalation](https://github.com/pi-hole/pi-hole/security/advisories/GHSA-c935-8g63-qp74) reported by [@smittix](https://github.com/smittix) #### New Contributors - [@10adnan75](https://github.com/10adnan75) made their first contribution in [pi-hole/pi-hole#6531](https://github.com/pi-hole/pi-hole/pull/6531) - [@Copilot](https://github.com/Copilot) made their first contribution in [pi-hole/pi-hole#6580](https://github.com/pi-hole/pi-hole/pull/6580) **Full Changelog**: <https://github.com/pi-hole/pi-hole/compare/v6.4...v6.4.1> ### [`v2026.02.0`](https://github.com/pi-hole/docker-pi-hole/releases/tag/2026.02.0) [Compare Source](https://github.com/pi-hole/docker-pi-hole/compare/2025.11.1...2026.02.0)  #### What's Changed (Docker Specific) - Pin base image by sha to catch silent rebuilds by [@yubiuser](https://github.com/yubiuser) in [#1965](https://github.com/pi-hole/docker-pi-hole/pull/1965) - Set fixed buildx version to mitigate issues with buildx version 0.31.1 by [@yubiuser](https://github.com/yubiuser) in [#1987](https://github.com/pi-hole/docker-pi-hole/pull/1987) **Full Changelog**: <https://github.com/pi-hole/docker-pi-hole/compare/2025.11.1...2026.02.0> ***  #### What's Changed (FTL v6.5) - Tweak undocumented wait-for option subtly by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2707](https://github.com/pi-hole/FTL/pull/2707) - update gravity - improve domain validation processing speed by [@rrobgill](https://github.com/rrobgill) in [pi-hole/FTL#2710](https://github.com/pi-hole/FTL/pull/2710) - Update embedded SQLite3 to 3.51.1 by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2731](https://github.com/pi-hole/FTL/pull/2731) - Update embedded dnsmasq to 2.92rc1 by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2730](https://github.com/pi-hole/FTL/pull/2730) - Fix documentation - Do not use equal sign with `pihole-FTL --config` command by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/FTL#2736](https://github.com/pi-hole/FTL/pull/2736) - Add dns.cache.rrtype by [@Manakuremati](https://github.com/Manakuremati) in [pi-hole/FTL#2740](https://github.com/pi-hole/FTL/pull/2740) - Enhancements to the documentation markdown generator by [@PromoFaux](https://github.com/PromoFaux) in [pi-hole/FTL#2741](https://github.com/pi-hole/FTL/pull/2741) - Network Overview - obtain MAC and hostname from dhcp.leases by [@rrobgill](https://github.com/rrobgill) in [pi-hole/FTL#2727](https://github.com/pi-hole/FTL/pull/2727) - fix: make `get_domains` parameters optional by [@tien](https://github.com/tien) in [pi-hole/FTL#2278](https://github.com/pi-hole/FTL/pull/2278) - Escape unprintable characters in invalid host names by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2601](https://github.com/pi-hole/FTL/pull/2601) - Implement better allOf handling in API verifier by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2745](https://github.com/pi-hole/FTL/pull/2745) - Update build containers to Alpine 3.23 by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2743](https://github.com/pi-hole/FTL/pull/2743) - Add option to hide network connection errors by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2749](https://github.com/pi-hole/FTL/pull/2749) - Harden default Content Security Policy (CSP) by [@Erasure5959](https://github.com/Erasure5959) in [pi-hole/FTL#2754](https://github.com/pi-hole/FTL/pull/2754) - Fix computation of NTP server's root delay by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2760](https://github.com/pi-hole/FTL/pull/2760) - Teleporter: Fix for custom gravity.db path by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2758](https://github.com/pi-hole/FTL/pull/2758) - Upgrade embedded Lua to 5.5 by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2626](https://github.com/pi-hole/FTL/pull/2626) - Add missing \[forwarded] property in GET /api/history/database by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2750](https://github.com/pi-hole/FTL/pull/2750) - Update SQLite3 to 3.51.2 by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2761](https://github.com/pi-hole/FTL/pull/2761) - Low-memory hardware optimizations by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2757](https://github.com/pi-hole/FTL/pull/2757) - Reduce startup delay by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2725](https://github.com/pi-hole/FTL/pull/2725) - home.arpa and internal TLDs may be non-local without revServer by [@DL6ER](https://github.com/DL6ER) in [pi-hole/FTL#2772](https://github.com/pi-hole/FTL/pull/2772) #### New Contributors - [@Erasure5959](https://github.com/Erasure5959) made their first contribution in [pi-hole/FTL#2754](https://github.com/pi-hole/FTL/pull/2754) **Full Changelog**: <https://github.com/pi-hole/FTL/compare/v6.4.1...v6.5>  #### What's Changed (Web v6.4.1) - Set the end date for live query update to end of epoch by [@rrobgill](https://github.com/rrobgill) in [pi-hole/web#3677](https://github.com/pi-hole/web/pull/3677) - Improve initial loading of Query Log by [@DL6ER](https://github.com/DL6ER) in [pi-hole/web#3715](https://github.com/pi-hole/web/pull/3715) Also fixes two security advisories: - <https://github.com/pi-hole/web/security/advisories/GHSA-6xp4-jw73-f4qp>: fixed with [pi-hole/web@`d328f14`](https://github.com/pi-hole/web/commit/d328f143718022d82dc94c8751121ca41be3b996) - <https://github.com/pi-hole/web/security/advisories/GHSA-8rw8-vjgp-rwj6>: fixed with [pi-hole/web@`1a0c6f4`](https://github.com/pi-hole/web/commit/1a0c6f4fe6d0116fd2846b2adaae95996b7f194d) **Full Changelog**: <https://github.com/pi-hole/web/compare/v6.4...v6.4.1>  #### What's Changed (Core v6.4) - Remove wget from alpine dependencies by [@darkexplosiveqwx](https://github.com/darkexplosiveqwx) in [pi-hole/pi-hole#6484](https://github.com/pi-hole/pi-hole/pull/6484) - Remove custom FTL FirewallD zone checks from debug log by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/pi-hole#6481](https://github.com/pi-hole/pi-hole/pull/6481) - Add Alpine 3.23 to test suite by [@yubiuser](https://github.com/yubiuser) in [pi-hole/pi-hole#6488](https://github.com/pi-hole/pi-hole/pull/6488) - Debug log - Add colors to gravity tables by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/pi-hole#6485](https://github.com/pi-hole/pi-hole/pull/6485) - Use configured location for web repo when updating or repairing by [@rrobgill](https://github.com/rrobgill) in [pi-hole/pi-hole#6470](https://github.com/pi-hole/pi-hole/pull/6470) - Add missing `-g` to the message in gravity recovery command by [@rdwebdesign](https://github.com/rdwebdesign) in [pi-hole/pi-hole#6513](https://github.com/pi-hole/pi-hole/pull/6513) - Don't install unused /usr/local/share/man/man5 by [@darkexplosiveqwx](https://github.com/darkexplosiveqwx) in [pi-hole/pi-hole#6526](https://github.com/pi-hole/pi-hole/pull/6526) **Full Changelog**: <https://github.com/pi-hole/pi-hole/compare/v6.3...v6.4> </details> --- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate).

renovatebot added 1 commit

2026-02-18 00:00:57 +01:00

chore(deps): update pihole/pihole docker tag to v2026 e270d45da5

renovatebot force-pushed renovate/pihole-pihole-2026.x from e270d45da5 to 9604321888

2026-04-04 00:02:06 +02:00

Compare

renovatebot force-pushed renovate/pihole-pihole-2026.x from 9604321888 to bdf8da673b

2026-04-26 00:02:00 +02:00

Compare

renovatebot force-pushed renovate/pihole-pihole-2026.x from bdf8da673b to f326144a34

2026-05-12 00:01:59 +02:00

Compare

This pull request can be merged automatically.

This branch is out-of-date with the base branch

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin renovate/pihole-pihole-2026.x:renovate/pihole-pihole-2026.x

git switch renovate/pihole-pihole-2026.x

Merge

Merge the changes and update on Forgejo.

git switch main

git merge --no-ff renovate/pihole-pihole-2026.x

git switch renovate/pihole-pihole-2026.x

git rebase main

git switch main

git merge --ff-only renovate/pihole-pihole-2026.x

git switch renovate/pihole-pihole-2026.x

git rebase main

git switch main

git merge --no-ff renovate/pihole-pihole-2026.x

git switch main

git merge --squash renovate/pihole-pihole-2026.x

git switch main

git merge --ff-only renovate/pihole-pihole-2026.x

git switch main

git merge renovate/pihole-pihole-2026.x

git push origin main

No reviewers

No labels

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

truff/homelab!20

No description provided.

Rows
Columns