Skip to content

v0.1.6

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 04 May 06:38
· 1 commit to main since this release
v0.1.6
2345712

[0.1.6] — 2026-05-04

Lets docsiq run on a non-loopback host without an API key when the
operator explicitly opts in. Default behavior is unchanged — every
existing install boots identically.

Added

  • server.allow_unauthenticated (env:
    DOCSIQ_SERVER_ALLOW_UNAUTHENTICATED=true). When set, docsiq starts
    even with an empty server.api_key on a non-loopback bind. Use this
    on trusted private networks (homelabs, single-tenant LANs, air-gapped
    clusters) where the boot gate is purely a ritual. Never enable on
    the public internet     — every indexed document and the LLM proxy
    become reachable to anyone on the bind address.

    Boot-time warning when the override is active:

    ⚠️ auth disabled and server.allow_unauthenticated=true — anyone
reachable on this network can read all data and use the LLM proxy;
do NOT enable on the public internet  host=0.0.0.0 port=8080

    (#98)

Changed

  • The "refusing to start" boot errors now name the override env var so
    anyone who hits the refusal sees both escape hatches (set a key OR
    set the override) without grepping the docs. (#98)

Upgrade impact

Drop-in. Default value of the new key is false. Existing installs
behave identically to v0.1.5. The override is opt-in only.

Verify

All artifacts are signed with cosign keyless via Sigstore.

cosign verify-blob \
  --certificate-identity-regexp 'https://github.com/RandomCodeSpace/docsiq/\.github/workflows/release\.yml.*' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --certificate docsiq-v0.1.6-linux-amd64.pem \
  --signature docsiq-v0.1.6-linux-amd64.sig \
  docsiq-v0.1.6-linux-amd64
Assets 13
Loading