Releases: hassio-addons/addon-ssh
v11.0.2
v11.0.1
v11.0.0
What’s changed
This release is built on the new Alpine Linux 3.16.
All dependencies have been upgraded, including Python 3.10 and OpenSSH 9.0.
📚 Documentation
⬆️ Dependency updates
Contributors
Assets 2
v10.1.3
v10.1.2
What’s changed
🐛 Bug fixes
📚 Documentation
- 📚 Add note on usernames @sinclairpaul (#396)
⬆️ Dependency updates
- ⬆️ Upgrades add-on base image to 11.1.2 @frenck (#397)
- ⬆️ Upgrades docker to 20.10.14-r1 @frenck (#398)
- ⬆️ Upgrades zlib-dev to 1.2.12-r1 @frenck (#399)
- ⬆️ Upgrades bind-tools to 9.16.27-r0 @frenck (#400)
- ⬆️ Upgrades bluez to 5.64-r0 @frenck (#401)
- ⬆️ Upgrades vim to 8.2.4836-r0 @frenck (#402)
- ⬆️ Upgrades git to 2.34.2-r0 @frenck (#403)
- ⬆️ Upgrades mariadb-client to 10.6.7-r0 @frenck (#404)
- ⬆️ Upgrades openssl to 1.1.1n-r0 @frenck (#405)
- ⬆️ Upgrades Home Assistant CLI to v4.16.1 @frenck (#407)
- ⬆️ Upgrades ttyd to 2b4dbac @frenck (#408)
Contributors
Assets 2
v10.1.1
v10.1.0
What’s changed
🚀 Enhancements
🧰 Maintenance
📚 Documentation
⬆️ Dependency updates
- ⬆️ Upgrades bind-tools to 9.16.25-r0 @frenck (#381)
- ⬆️ Upgrades bluez to 5.63-r0 @frenck (#382)
- ⬆️ Upgrades libxml2-utils to 2.9.13-r0 @frenck (#383)
- ⬆️ Upgrades vim to 8.2.4173-r0 @frenck (#384)
- ⬆️ Upgrades zsh to 5.8.1-r0 @frenck (#385)
- ⬆️ Upgrades zsh-syntax-highlighting to 0.7.1-r1 @frenck (#386)
- ⬆️ Upgrades add-on base image to 11.1.0 @frenck (#387)
Contributors
Assets 2
v10.0.2
v10.0.1
v10.0.0
What’s changed
👋 Hi there! Time for a big update, v10.0.0
The add-on has upgraded to Alpine 3.15, which means all tools are now running the latest versions.
The homeassistant_cli has been removed. This (third-party) CLI has some upstream updates, which broke add-on compatibility.
It, therefore, has now been removed. One can still install it using the command_init option if wanted, however, is no longer part of the default distribution.
The Have I Been Pwned checks have been removed from the add-on, as this is a built-in feature of the Supervisor nowadays. This means the i_like_to_be_pwned option has been removed from the add-on configuration. If you have this option set, you will need to remove this from your add-on options.
Lastly, the addon.stdin service has been removed. And I want to explain a little about the reasoning behind it.
The addon.stdin service allowed to run commands on this add-on, which could be helpful. However, I got contacted about this service as it has the potential to be used as an attack surface in combination with social engineering. Quite a lot of social engineering, as this is not a one-click accept kinda attack. It requires a lot of steps.
For this matter, me (@frenck) and the reporting person didn't agree on the type of issue this imposes. A CVE has been requested at MITRE by the reporter, however, I do not recognize it and do not agree on the vulnerability. For that reason, this person and the CVE are also not listed in these release notes.
The service has not been removed because I think it is a vulnerability (as a matter of fact, I don't agree it is), but the service is removed as I think we should protect users, even against possible complex social engineering; if this helps, I think we should do that.
The above all said... You can use the plain ssh command as a replacement for this service; which is generally already done and has been around for ages 👍 And always check any third-party code and configuration you get from others of course! 🙏
If these changes impacted your automations or scripts, please accept my sincere apologies.
Kind regards,
../Frenck
PS: I hope the Firefox rendering issues is finally resolved! Please let me know :)
🚨 Breaking changes
- 🔥 Remove STDIN service @frenck (#349)
- 🔥 Remove hibp checks @frenck (#350)
- 🔥 Remove homeassistant_cli @frenck (#352)
🧰 Maintenance
📚 Documentation
- Fix privileged mode instructions for HASS 2021.12 @tigattack (#346)
