🔧 Renovate: Update (digest) qmcgaw/gluetun:latest Docker digest to 25273bc

2026-05-20 00:50:47 +00:00
5 changed files with 33 additions and 60 deletions
@@ -209,9 +209,8 @@ jobs:
        with:
          HC_VAULT_VERSION: ${{ env.HC_VAULT_VERSION }}
          HC_VAULT_ADDR: ${{ secrets.TREZ_VAULT_ADDR }}
-          HC_VAULT_AUTH: approle
-          HC_VAULT_ROLE_ID: ${{ secrets.VAULT_ROLE_ID }}
-          HC_VAULT_SECRET_ID: ${{ secrets.VAULT_SECRET_ID }}
+          HC_VAULT_AUTH: token
+          HC_VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }}
          HC_VAULT_SECRETS_PATH: rinoa-docker/env

      - name: Pre-pull/build service images in parallel
@@ -415,9 +414,8 @@ jobs:
        with:
          HC_VAULT_VERSION: ${{ env.HC_VAULT_VERSION }}
          HC_VAULT_ADDR: ${{ secrets.TREZ_VAULT_ADDR }}
-          HC_VAULT_AUTH: approle
-          HC_VAULT_ROLE_ID: ${{ secrets.VAULT_ROLE_ID }}
-          HC_VAULT_SECRET_ID: ${{ secrets.VAULT_SECRET_ID }}
+          HC_VAULT_AUTH: token
+          HC_VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }}
          HC_VAULT_SECRETS_PATH: rinoa-docker/env

      - name: Pre-pull/build service images in parallel
@@ -138,9 +138,8 @@ jobs:
        with:
          HC_VAULT_VERSION: ${{ env.HC_VAULT_VERSION }}
          HC_VAULT_ADDR: ${{ secrets.TREZ_VAULT_ADDR }}
-          HC_VAULT_AUTH: approle
-          HC_VAULT_ROLE_ID: ${{ secrets.VAULT_ROLE_ID }}
-          HC_VAULT_SECRET_ID: ${{ secrets.VAULT_SECRET_ID }}
+          HC_VAULT_AUTH: token
+          HC_VAULT_TOKEN: ${{ secrets.VAULT_GITEA_TOKEN }}
          HC_VAULT_SECRETS_PATH: rinoa-docker/env

      - name: Docker Compose Deployment
@@ -2,7 +2,7 @@ name: Renovate

 on:
  schedule:
-    - cron: "0 */2 * * *"
+    - cron: "0/30 * * * *"
  workflow_dispatch:

 env:
@@ -50,7 +50,7 @@
 | garage | dxflrs/garage:v2.3.0 |  |
 | garage-webui | khairul169/garage-webui:latest | S3-compatible storage backend |
 | ghost | ghost:latest | Personal blog |
-| gitea | gitea/gitea:1.26.2 | Private Code Repo |
+| gitea | gitea/gitea:1.26.1 | Private Code Repo |
 | gitea-db | postgres:14 |  |
 | gitea-runner | gitea/act_runner:nightly |  |
 | gitea-sonarqube-bot | justusbunsi/gitea-sonarqube-bot:v0.4.0 |  |
@@ -183,7 +183,6 @@
 | unmanic | josh5/unmanic:latest | Library Optimizer |
 | uptimekuma | louislam/uptime-kuma:latest | HTTP Endpoint Monitoring |
 | vault | hashicorp/vault:2.0.0-bugfix | HashiCorp Vault for secrets, key/value stores, etc. |
-| vault-agent | hashicorp/vault:2.0.0-bugfix |  |
 | wallos | bellamy/wallos:latest | Subscription Tracking |
 | web-check | lissy93/web-check | Site scanner for attack vectors, architecture, security configs, and more |
 | whodb | clidey/whodb | Lightweight next-gen database explorer |
@@ -483,7 +483,7 @@ services:
    expose:
      - 9091
      - 9959 # Metrics port for Prometheus
-    image: authelia/authelia:master@sha256:4848d39777ede5f11d8123d4c30488a1d418f9d8183ffbb8f624b1a13bf0ec6f
+    image: authelia/authelia:master@sha256:47f64d0477329255c5efc1f01b584e1a341244354926c8f82fcc88dfcfbc3f94
    labels:
      homepage.group: Privacy/Security
      homepage.name: Authelia
@@ -1042,7 +1042,7 @@ services:
    environment:
      MB_DB_FILE: /data/metabase.db
      MGID: ${GID-1000}
-    image: metabase/metabase@sha256:8d6e649d4bbd19aa641a5b71bff2c89e3c2f348e8a1f0b527573b06c73c7748d
+    image: metabase/metabase@sha256:f50d83eabc0e38cf9c40fc9c779ca39780b44edb3db3a0857d59ca46949eddad
    labels:
      homepage.group: Privacy/Security
      homepage.name: CrowdSec Dashboard
@@ -1192,7 +1192,7 @@ services:
      retries: 30
      start_period: 30s
      timeout: 10s
-    image: freikin/dawarich:latest@sha256:54329b050caab65f39367308ef7a9f2f3bd1fa3b6ba969d6a33bbf4a0f5e7e84
+    image: freikin/dawarich:latest@sha256:dea326d03e728cd3b8d051b72d293cf375d0db6c00e22c55f338daedfdfdb3a4
    labels:
      homepage.group: Privacy/Security
      homepage.name: Dawarich
@@ -1283,7 +1283,7 @@ services:
      retries: 30
      start_period: 30s
      timeout: 10s
-    image: freikin/dawarich:latest@sha256:54329b050caab65f39367308ef7a9f2f3bd1fa3b6ba969d6a33bbf4a0f5e7e84
+    image: freikin/dawarich:latest@sha256:dea326d03e728cd3b8d051b72d293cf375d0db6c00e22c55f338daedfdfdb3a4
    profiles: ["rinoa-apps"]
    restart: on-failure
    stdin_open: true
@@ -1708,7 +1708,7 @@ services:
      mail__options__auth__pass: ${POSTAL_SMTP_AUTH_PASSWORD}
      mail__from: "'Ghost @ Rinoa' <noreply@${MY_TLD}>"
      url: https://blog.${MY_TLD}
-    image: ghost:latest@sha256:588d5f5ed5ac6e94925860f76b2b14a18cf5d71c58a236f8817c600a9454fe2d
+    image: ghost:latest@sha256:876880a26b770631949d9bf2aa4b62d169e2a2f1dad56e9b065ac5d6f1c346e1
    labels:
      homepage.group: Lifestyle
      homepage.name: Ghost
@@ -1753,7 +1753,7 @@ services:
      GITEA__mailer__SMTP_PORT: 25
      GITEA__mailer__USER: ${POSTAL_SMTP_AUTH_USER}
      GITEA__mailer__PASSWD: ${POSTAL_SMTP_AUTH_PASSWORD}
-    image: gitea/gitea:1.26.2@sha256:7d13848af12645600a5f9d93ee2560daa9c6fa6b5b859b7bff3a5e1c0b661031
+    image: gitea/gitea:1.26.1@sha256:d8667667b4ccbd1f67b86a376bffcc0a17b16cf71309ed04e3918231776d47dd
    labels:
      cloudflare.tunnel.enable: true
      cloudflare.tunnel.hostname: git-ssh.${MY_TLD}
@@ -1813,7 +1813,7 @@ services:
      interval: 10s
      start_period: 20s
      test: ["CMD-SHELL", "pg_isready -U gitea -d gitea"]
-    image: postgres:14@sha256:a209aced4fa19381231fae4d9a4c5816f7691294f13572f8bddc082ba32e1c7c
+    image: postgres:14@sha256:04a3d3d1475ad37f07d8219d0e5eb46f64ac132bf6e110c772dab45e12e4a919
    networks:
      default: null
    profiles: ["rinoa-infra"]
@@ -1895,7 +1895,7 @@ services:
      VPN_SERVICE_PROVIDER: private internet access
    expose:
      - 8000
-    image: qmcgaw/gluetun:latest@sha256:18a0abe7a020acdf9f80db45440d18487239abde5495a357ceb36517f7ea67cf
+    image: qmcgaw/gluetun:latest@sha256:25273bc5c8df54359bbf079c201d263ffb4140b793b1ba8c86907635ed636b13
    ports:
      - 3333:3333
      - 3334:3334
@@ -2163,7 +2163,7 @@ services:
      test: wget -q --spider http://localhost:3000/share/healthcheck || exit 1
      start_period: 10s
      timeout: 5s
-    image: alangrainger/immich-public-proxy:latest@sha256:759a04f859bd18d51cf70d06756f802df9707b410f3e91dc25787254b6d2099a
+    image: alangrainger/immich-public-proxy:latest@sha256:48c4ea4884b04c77a4a4ec93e190dea6cb7dc1b38acb005a35dd56f68212d85a
    labels:
      homepage.group: Lifestyle
      homepage.name: Immich Public Proxy
@@ -2310,7 +2310,7 @@ services:
      test:
        - CMD-SHELL
        - pg_isready -U $$POSTGRES_USER -d $$POSTGRES_DB
-    image: docker.io/library/postgres:14@sha256:a209aced4fa19381231fae4d9a4c5816f7691294f13572f8bddc082ba32e1c7c
+    image: docker.io/library/postgres:14@sha256:04a3d3d1475ad37f07d8219d0e5eb46f64ac132bf6e110c772dab45e12e4a919
    networks:
      default: null
    profiles: ["rinoa-apps"]
@@ -2359,7 +2359,7 @@ services:
    container_name: jellyfin
    environment:
      JELLYFIN_PublishedServerUrl: https://jf.${MY_TLD}
-    image: jellyfin/jellyfin@sha256:bc9fa8e1462fffe3d8d4255fc62af478602641f4c0e5f4875fea8563d1189837
+    image: jellyfin/jellyfin@sha256:1694ff069f0c9dafb283c36765175606866769f5d72f2ed56b6a0f1be922fc37
    labels:
      homepage.group: Media Library
      homepage.name: Jellyfin
@@ -3131,7 +3131,7 @@ services:
      TZ: America/New_York
      DOCKER_MODS: ghcr.io/gilbn/theme.park:lidarr
    hostname: Rinoa
-    image: lscr.io/linuxserver/lidarr:latest@sha256:ca2f95634d422fdeccfbff2a42cbe3a4fed1170f7e3546d99d5d5f2c9c9aa03b
+    image: lscr.io/linuxserver/lidarr:latest@sha256:7f34e2a907c7bcfc5cd49a1685db21a1e5055c96e8ad5e0d77ee94e1d50d84e5
    labels:
      homepage.group: Servarr Stack
      homepage.name: Lidarr
@@ -3874,7 +3874,7 @@ services:
      LZ_TOKEN: ${MALOJA_LISTENBRAINZ_TOKEN}
      SPOTIFY_CLIENT_ID: ${YOUR_SPOTIFY_ID}
      SPOTIFY_CLIENT_SECRET: ${YOUR_SPOTIFY_SECRET}
-    image: foxxmd/multi-scrobbler@sha256:7d50785dba6c97b81640643180b04e3aa48138b3a71c041277617c27d36011b3
+    image: foxxmd/multi-scrobbler@sha256:aecbf754a18c2ddc5d9bcf6385316a63aeae685f4106e76c25ab9d2c26c0f550
    labels:
      homepage.group: Media Library
      homepage.name: Multi-Scrobbler
@@ -3914,7 +3914,7 @@ services:
      NODE_ENV: production
      WEBHOOK_URL: https://n8n.${MY_TLD}/
      GENERIC_TIMEZONE: ${TZ}
-    image: docker.n8n.io/n8nio/n8n@sha256:9f1f8e4c093c9924338bd168e3f813f746041d13b337753af0dbdd329e7b50f7
+    image: docker.n8n.io/n8nio/n8n@sha256:e755a7ba60113bb5e3959e24999e810be1aeee25e267d9dfec3dcfcb3d14617c
    labels:
      swag: enable
      swag_proto: http
@@ -4303,7 +4303,6 @@ services:
      LDAP_SEARCH_BASE: dc=trez,dc=wtf
      LDAP_SEARCH_FILTER: "(objectClass=inetOrgPerson)"
      LDAP_USE_TLS: false
-      #WEBUI_SECRET_KEY: ${}
      # LibreTranslate
      LT_DEBUG: false
      LT_UPDATE_MODELS: true
@@ -4319,7 +4318,7 @@ services:
      WEBSOCKET_MANAGER: redis
      WEBSOCKET_REDIS_URL: redis://open-webui-valkey:6379/0
      REDIS_KEY_PREFIX: open-webui
-    image: ghcr.io/open-webui/open-webui:main@sha256:73f93f9ff87bc148105ffdba14ee35f03481a7ebbfaa9b350ebec4210e4b1a45
+    image: ghcr.io/open-webui/open-webui:main@sha256:74093dadc9c6aabc23987a74fd8c2fb8d995b1a5b22e83b0036fb9d6af590e8c
    labels:
      homepage.group: Personal Tools
      homepage.name: Open WebUI
@@ -4624,7 +4623,7 @@ services:
      - plant-it-valkey-data:/data/valkey
  plantuml-server:
    container_name: plantuml-server
-    image: plantuml/plantuml-server:jetty@sha256:6ab7824dbc4882156ba9b6d4f8ca42d697a79634c073d4d28eb768158f6ef5a7
+    image: plantuml/plantuml-server:jetty@sha256:cd3d67a3150ab9dbe3c77c2abce6796c7cbfb46819fa4c74c987b44ff2c10003
    labels:
      homepage.group: Personal Tools
      homepage.name: PlantUML
@@ -4827,7 +4826,7 @@ services:
      TP_COMMUNITY_THEME: false
      TP_THEME: space-gray
    hostname: Rinoa
-    image: lscr.io/linuxserver/prowlarr:latest@sha256:c9fe528f34b1fd3715438b6f6d6991d64e2965f2c055db36398bc66a0e7eab01
+    image: lscr.io/linuxserver/prowlarr:latest@sha256:a89f252d6a22bd25af14a5380aec0adcc3c3af2e3282164f981680e6844070f3
    labels:
      homepage.group: Servarr Stack
      homepage.name: Prowlarr
@@ -4934,7 +4933,7 @@ services:
      VPN_PASS: ${DELUGEVPN_ENVIRONMENT_VPN_PASS}
      VPN_PROV: pia
      WEBUI_PORT: 8080
-    image: ghcr.io/binhex/arch-qbittorrentvpn:latest@sha256:b61d8a11e022239c4e3b218ae7ebb58d9adc67b59c46280c1812c6d9ccc0e8d1
+    image: ghcr.io/binhex/arch-qbittorrentvpn:latest@sha256:fe6daf82a190902d99350026eccdb883eb1e5f80b23827ba04a29c155815c696
    labels:
      homepage.group: Downloaders
      homepage.name: qBittorrent
@@ -5381,7 +5380,7 @@ services:
      VPN_USER: ${SABNZBDVPN_ENVIRONMENT_VPN_USER}
      DEBUG: true
    hostname: Rinoa
-    image: ghcr.io/binhex/arch-sabnzbdvpn:latest@sha256:f9c6e4131a003ff8d033949afa08e3555cddcccbff51375c920f3755438e2b06
+    image: ghcr.io/binhex/arch-sabnzbdvpn:latest@sha256:c01bec2f4a9695aca83034f2ca759936ac1d2ddd96b2dc17ce62533bb065ea84
    labels:
      homepage.group: Downloaders
      homepage.name: SABnzbd
@@ -5430,8 +5429,6 @@ services:
        source: /rinoa-storage
        target: /storage
        type: bind
-      - ${DOCKER_VOLUME_CONFIG}/.openvpn:/config/openvpn
-      - ${DOCKER_VOLUME_CONFIG}/.wireguard:/config/wireguard
  sablier:
    container_name: sablier
    environment:
@@ -5552,7 +5549,7 @@ services:
    container_name: searxng
    environment:
      SEARXNG_BASE_URL: https://search.${MY_TLD}
-    image: searxng/searxng:latest@sha256:04cc81a759e882e411569e008a77243ab8b0fc4137bcf88018cd7b7c3cbdff41
+    image: searxng/searxng:latest@sha256:25ff3c045548971d12726e54bea4564b8ec3bedb3d6951aecdefd01caf840974
    labels:
      homepage.group: Privacy/Security
      homepage.name: SearxNG
@@ -6067,7 +6064,7 @@ services:
      - ${DOCKER_VOLUME_STORAGE}/downloads/incomplete/slsk:/app/incomplete
  speedtest-tracker:
    container_name: speedtest-tracker
-    image: lscr.io/linuxserver/speedtest-tracker:latest@sha256:3f75c5ec7a14c232f91af1ddda4248543bb2e8f0aeb18fec64c34d2f42dd00ce
+    image: lscr.io/linuxserver/speedtest-tracker:latest@sha256:bf18a04f9e61573cefb0112ca9604a93a82451ada74050a6b30b41e30651d9a1
    environment:
      PUID: ${PUID}
      PGID: ${PGID}
@@ -6107,7 +6104,7 @@ services:
      SECURITY_ENABLE_LOGIN: true
      SYSTEM_SHOW_UPDATE: false
      SYSTEM_SHOW_UPDATE_ONLY_ADMIN: true
-    image: docker.stirlingpdf.com/stirlingtools/stirling-pdf:latest@sha256:976dfa581b6cb1fb91e9b0b90284a92febe8ba6a4519e28f95c4e8e550d6d70d
+    image: docker.stirlingpdf.com/stirlingtools/stirling-pdf:latest@sha256:950c596db26e0764f642def2fd4f9ee904ff2ac16d83fe621ff731b771d9b385
    labels:
      homepage.name: Stirling-PDF
      homepage.group: Professional Services
@@ -6159,7 +6156,7 @@ services:
      UPTIME_KUMA_URL: http://uptimekuma:3001
      UPTIME_KUMA_USERNAME: ${UPTIME_KUMA_USERNAME}
    hostname: Rinoa
-    image: lscr.io/linuxserver/swag:latest@sha256:ef97e83fc0283f972406ed62f208482653b9a9233eb389b947718b28c8c99263
+    image: lscr.io/linuxserver/swag:latest@sha256:74b906a164b2eb43f1792aeac5e2ca464b5b118b3d918cb1a5f2b8ccfed12ebb
    labels:
      swag: enable
      swag_proto: http
@@ -6456,26 +6453,6 @@ services:
    volumes:
      - ${DOCKER_VOLUME_CONFIG}/hashicorp-vault/config/:/vault/config
      - ${DOCKER_VOLUME_CONFIG}/hashicorp-vault/logs/:/vault/logs
-  vault-agent:
-    cap_add:
-      - IPC_LOCK
-    command:
-      - agent
-      - -config=/vault/config/vault-agent.hcl
-    container_name: hc-vault-agent
-    environment:
-      VAULT_ADDR: http://hc-vault:8200
-      SKIP_SETCAP: true
-    image: hashicorp/vault:2.0.0-bugfix
-    ports:
-      - 8100
-    profiles: ["rinoa-apps"]
-    restart: unless-stopped
-    volumes:
-      - ${DOCKER_VOLUME_CONFIG}/hashicorp-vault/agent/config/:/vault/config:ro
-      - ${DOCKER_VOLUME_CONFIG}/hashicorp-vault/agent/data/:/vault/data:ro
-      - ${DOCKER_VOLUME_CONFIG}/hashicorp-vault/agent/tokens/:/vault/tokens
-      - ${DOCKER_VOLUME_CONFIG}/hashicorp-vault/agent/output/:/vault/output
  wallos:
    container_name: wallos
    environment:
@@ -6510,7 +6487,7 @@ services:
      - wallos-logos:/var/www/html/images/uploads/logos
  web-check:
    container_name: web-check
-    image: lissy93/web-check@sha256:6c2c4957c8794ffbcd50e0b560f6f010f17884b36b587c74155482fbad15a077
+    image: lissy93/web-check@sha256:e5cd2f8c9197e0a2b646ce94691ffa2a08878b1ae9bbbbbb725c37e685ff8859
    labels:
      homepage.group: Privacy/Security
      homepage.name: Web-Check
@@ -6536,7 +6513,7 @@ services:
    restart: unless-stopped
  whodb:
    container_name: whodb
-    image: clidey/whodb@sha256:daee5c278a431a14f7d76a2f55eb483452d16e151f90098a61ceea358d35f025
+    image: clidey/whodb@sha256:29f5b78bb2e3d07514058f33f0157bd0845b0b9d841a6775d7ef9c5a952c4e78
    environment:
      WHODB_CLICKHOUSE_1: '{ "host": "signoz-clickhouse" }'
      WHODB_MARIADB_1: '{ "host": "mariadb", "user": "root", "password":