BlumeOps v1.15.3 - eblume/blumeops - Forgejo: Beyond coding. We Forge.

eblume/blumeops

83 releases 160 tags

v1.15.3 f9397b7fa0
BlumeOps v1.15.3 Stable

eblume released this 2026-04-05 21:24:21 -07:00 | 234 commits to main since this release
BlumeOps release v1.15.3

What's Changed

Infrastructure
- Build Tempo container from source via forge mirror; bump 2.10.1 → 2.10.3
- Pin NixOS service versions (forgejo-runner, snowflake, k3s) via nixpkgs-services overlay in ringtail flake, preventing silent upgrades from nix flake update. Add k3s and minikube to service-versions.yaml tracking. Fix stale nix-container-builder version (was 12.6.4, actually running 12.7.2).
- Migrate Immich from Helm chart to kustomize manifests and upgrade from v2.5.6 to v2.6.3
- Upgrade Grafana from 12.3.3 to 12.4.2 — patches 7 CVEs including an unauthenticated DoS (CVE-2026-27880).
Documentation
- First compensating control review: verified single-user-cluster still in effect. Added aspirational how-to card for PCI DSS evidence collection.
- Prowler --registry fix merged upstream (PR #10470); initContainer workaround documented as pending release.
Documentation

Download docs-v1.15.3.tar.gz and configure the quartz container with:
```
DOCS_RELEASE_URL=https://forge.eblu.me/eblume/blumeops/releases/download/v1.15.3/docs-v1.15.3.tar.gz
```
Downloads
- Source code (ZIP)
  0 downloads
- Source code (TAR.GZ)
  0 downloads
- docs-v1.15.3.tar.gz
  2 downloads · 2026-04-05 21:24:24 -07:00 · 1.8 MiB