feat(vaultwarden): update vaultwarden version from 1.35.4 to 1.35.8

feat(blocky): update blocky version from 0.28.2 to 0.29.0
feat(step-ca): update step-ca version from 0.29.0 to 0.30.2
2026-04-30 10:03:33 +09:00 · 2026-04-30 10:01:18 +09:00 · 2026-04-30 09:56:22 +09:00 · 2026-04-30 09:19:42 +09:00 · 2026-04-30 09:18:44 +09:00 · 2026-04-30 09:09:40 +09:00
3 changed files with 14 additions and 11 deletions
@@ -152,17 +152,17 @@ services:
 version:
  packages:
    sops: "3.12.1"
-    step: "0.29.0"
+    step: "0.30.2"
    kopia: "0.22.3"
-    blocky: "0.28.2"
+    blocky: "0.29.0"
    alloy: "1.13.0"
  containers:
    # common
-    caddy: "2.10.2"
+    caddy: "2.11.2"
    # infra
-    step: "0.29.0"
+    step: "0.30.2"
    ldap: "v0.6.2"
-    x509-exporter: "3.19.1"
+    x509-exporter: "3.21.0"
    prometheus: "v3.9.1"
    loki: "3.6.5"
    grafana: "12.3.3"
@@ -172,9 +172,9 @@ version:
 #    pgvector: "v0.8.1"
    vectorchord: "0.5.3"
    # Auth
-    authelia: "4.39.15"
+    authelia: "4.39.19"
    # App
-    vaultwarden: "1.35.4"
+    vaultwarden: "1.35.8"
    gitea: "1.26.1"
    redis: "8.6.1"
    immich: "v2.7.5"
@@ -73,10 +73,10 @@
  listen: "notification_restart_grafana"
  ignore_errors: true # noqa: ignore-errors
- name: Enable x509-exporter.service
+- name: Restart x509-exporter.service
  ansible.builtin.systemd:
    name: "x509-exporter.service"
-    state: "started"
+    state: "restarted"
    enabled: true
    daemon_reload: true
    scope: "user"
@@ -22,14 +22,17 @@ Volume=%h/containers/ca/db:/home/step/db:rw
 Volume=%h/containers/ca/templates:/home/step/templates:rw
 Environment="TZ=Asia/Seoul"
-Environment="PWDPATH=/run/secrets/STEP_CA_PASSWORD"
+# Since 0.30.0, Docker CMD no longer expands PWDPATH.
 #Environment="PWDPATH=/run/secrets/STEP_CA_PASSWORD"
 Secret=STEP_CA_PASSWORD,target=/run/secrets/STEP_CA_PASSWORD
 Exec=/usr/local/bin/step-ca --password-file /run/secrets/STEP_CA_PASSWORD /home/step/config/ca.json
 [Service]
 Restart=always
 RestartSec=10s
 TimeoutStopSec=120
 [Install]
-WantedBy=default.target
+WantedBy=default.target
Author	SHA1	Message	Date
il	d1dcb1984a	feat(vaultwarden): update vaultwarden version from 1.35.4 to 1.35.8	2026-04-30 10:03:33 +09:00
il	37c986177b	feat(blocky): update blocky version from 0.28.2 to 0.29.0	2026-04-30 10:01:18 +09:00
il	17326b1b15	feat(step-ca): update step-ca version from 0.29.0 to 0.30.2 update note: - step-ca container doesn't support $PWDPATH anymore - add --password-file argument to exec	2026-04-30 09:56:22 +09:00
il	88e1383202	feat(x509-exporter): update x509-exporter version from 3.19.1 to 3.21.0	2026-04-30 09:19:42 +09:00
il	c9b4707cb2	refactor(x509-exporter): change handler from enable to restart	2026-04-30 09:18:44 +09:00
il	da9c610426	feat(caddy): update caddy version from 2.10.2 to 2.11.2 update note: - https upstream Host rewrite is automated - Caddyfile already defines Host rewrite explicitly	2026-04-30 09:09:40 +09:00
il	c1a6da2aa8	feat(authelia): update authelia version from 4.39.15 to 4.39.19	2026-04-30 09:07:16 +09:00