chore(deps): update fnsys/dockhand docker tag to v1.0.35

[renovate]

This PR contains the following updates:

Package	Update	Change	Pending
fnsys/dockhand (source)	patch	v1.0.29 → v1.0.35	v1.0.36

---

Release Notes

Finsys/dockhand (fnsys/dockhand)

v1.0.35

Compare Source

What's new in v1.0.35

• ✨ image prune skips Dockhand's scanner images (grype, trivy), configurable (#​625)
• 🐛 "No archive" download format selection not persisted (#​1180)
• 🐛 regression: vulnerability scans on direct-TCP envs (#​1195)
• 🐛 Pangolin labels — recognise the real public-resources / private-resources namespaces (#​2)
• 🐛 healthcheck uses HTTPS probe when HTTPS_MODE=on (#​1191)
• 🐛 shell detection improved for containers with non-standard PATH or shell locations (#​1189)

Docker image

docker pull fnsys/dockhand:v1.0.35

Also available as fnsys/dockhand:latest

View on Docker Hub

v1.0.34

Compare Source

What's new in v1.0.34

[!Important]
This release closes GHSA-f6q3-chhc-4hxm

• ✨ raw file download — no tar wrapping (#​1180)
• 🐛 update modal stuck after closing mid-pull (#​1094)
• 🐛 vulnerability scans on Podman hosts (direct TCP and Hawser) (#​1076)
• 🐛 crash-looping containers now appear in the logs page list (#​227)
• ✨ filter containers by "Update available" (#​1063)
• ✨ show hostname / IP of the selected environment in the top header (#​962)
• ✨ internal auth and validation hardening and dependency bumps
• ✨ Traefik and Pangolin integration — surface proxy URLs on container and stack panels (#​2)
• ✨ release-notes link next to images with updates available (#​538)
• ✨ lifecycle action buttons in the container details modal (#​461)
• ✨ template library — browse and deploy compose templates from configurable sources (#​48)
• 🐛 file browser fails on containers with ls in /usr/sbin (#​1185)

Docker image

docker pull fnsys/dockhand:v1.0.34

Also available as fnsys/dockhand:latest

View on Docker Hub

v1.0.33

Compare Source

What's new in v1.0.33

• ✨ in-place container property updates without restart — restart policy, CPU/memory limits (#​1153)
• ✨ clickable stack badge in container and volume inspect modals (#​1121)
• ✨ clickable stack badge in volumes list row (#​1122)
• ✨ volumes list shows driver_opts type (NFS, CIFS, etc.) with sort and filter (#​1123)
• ✨ Bark iOS notifications (#​1095, PR#1097, @​undirectlookable)
• ✨ Signal notifications via signal-cli-rest-api (#​1099)
• ✨ Apprise passthrough — forward to a self-hosted caronc/apprise-api server (#​1099)
• 🐛 env editor flagged Docker/Compose built-ins as MISSING (#​141)
• 🐛 YAML editor indentation was inconsistent when pressing Enter (#​1156)
• ✨ dockhand.update=false, dockhand.hidden=true and localhost/* images skip registry polling (#​1083)
• 🐛 registry authentication for image pulls (#​1105)
• ✨ native HTTPS listener, off by default (#​1102)
• 🐛 environments stuck "Failed" after VPN/Tailscale tunnel drops until agent restart (#​1160)
• 🐛 health_status events flooding container_events table (#​1165)
• 🐛 git stack sync removes files deleted from the repo (hash-verified) (#​966, #​1162)
• ✨ upload TLS/mTLS certificate files in environment editor (#​125)
• ✨ syntax highlighting for shell, Dockerfile, TOML, INI/conf and .env files in the file browser viewer (#​1055)
• ✨ Animated icons now configurable (#​1169)
• 🐛 stack deploys ignored the env's configured socket path (#​1172)
• 🐛 environment names with characters that break path resolution (e.g. *) are now rejected (#​1179)

Docker image

docker pull fnsys/dockhand:v1.0.33

Also available as fnsys/dockhand:latest

View on Docker Hub

v1.0.32

Compare Source

What's new in v1.0.32

• ✨ container details tweaks: process count, label filter, copy all labels (#​812)
• ✨ log improvements (#​1130)
• 🐛 cleared Resources fields not persisted on container edit (#​1119)
• 🐛 long container names overflowed in activity event details dialog (#​1129)
• 🐛 git stack recreate and start operations ignored Dockhand-stored env vars (#​1132)
• 🐛 dashboard stopped count reset to 0 after refresh for gracefully stopped containers (#​1133)
• 🐛 auto-update preserves runtime -e env and -l label overrides (#​1135)
• 🐛 git stack volume binds resolved to wrong host path when compose was in a subdirectory (#​1139)
• 🐛 git stacks: subdir compose files now find their adjacent env files (#​1136)
• ✨ env editor doesn't flag Docker/Compose built-in variables as unused (#​141)
• ✨ container network mode: share another container's network namespace (#​161)

Docker image

docker pull fnsys/dockhand:v1.0.32

Also available as fnsys/dockhand:latest

View on Docker Hub

v1.0.31

Compare Source

What's new in v1.0.31

• 🐛 502 Bad Gateway behind nginx-based reverse proxies — SvelteKit 2.51+ bloated the Link response header, pinned to 2.50.0 (#​1114)

Docker image

docker pull fnsys/dockhand:v1.0.31

Also available as fnsys/dockhand:latest

View on Docker Hub

v1.0.30

Compare Source

What's new in v1.0.30

• ✨ time range filter for log viewer — filter logs by From/To date and time (#​1068)
• ✨ configurable tail line count in log viewer — choose from 100 to all lines (#​1066)
• ✨ toggleable line numbers in log viewer (#​1067)
• ✨ "some unused" image filter — show images with both used and unused tags for selective cleanup (#​621)
• ✨ IP binding and port ranges in container port mappings (#​581)
• ✨ remove individual containers directly from stacks page (#​576)
• 🐛 scan cache lookup by tag name never matched — results now resolved via image digest (#​1064)
• 🐛 image-baked env vars not updated during auto-update container recreation (#​1061)
• 🐛 git stack deploy via Hawser fails with "Invalid string length" when repo has large files (#​1040)
• ✨ Gotify notification priority via URL query param — gotify://host/token?priority=5 (#​1033)
• 🐛 consistent action button order across container and stack views (#​1079)
• ✨ named custom URL labels — dockhand.url=Name markdown syntax (#​1065)
• 🐛 HTTPS git credentials no longer leaked in process arguments (#​1081)
• ✨ bump Docker Compose to 5.1.4 (GHSA-pmwq-pjrm-6p5r)
• ✨ dockhand.order label to control container display order within stacks (#​847)
• ✨ live network attach/detach for running containers — join or leave Docker networks without restarting (#​1051)
• 🐛 environment variable values with nested quotes progressively corrupted on each save (#​1036, #​1086)

Docker image

docker pull fnsys/dockhand:v1.0.30

Also available as fnsys/dockhand:latest

View on Docker Hub

---

Configuration

📅 Schedule: (in timezone Europe/Bratislava)

• Branch creation
  • "after 6am and before 10am on monday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Trivy misconfiguration findings (HIGH + CRITICAL)

✅ No HIGH or CRITICAL misconfigurations detected.

[github-actions]

CVE delta

Net change

Severity	Added	Removed	Net
Critical	1	0	+1
High	1	0	+1
Medium	0	0	0
Low	0	0	0

Changed images: 1 of 3

Per-image detail

fnsys-dockhand-v1.0.35

• Added: C:1 H:1 M:0 L:0
• Removed: C:0 H:0 M:0 L:0
  • [NEW]:
    • CVE-2026-53488 (CRITICAL) — docker-compose
    • GHSA-p6gq-j5cr-w38f (HIGH) — nodemailer