Releases: Yundera/AppStore
Release list
Anna's Torrents v1.0.2
Anna's Torrents v1.0.2
Update from v1.0.0 to v1.0.2: maintenance and packaging refresh of the Anna's Archive seeding dashboard — no breaking changes. Upstream (worph/annas-torrents-webui) publishes no release notes; the notes below are derived from the app metadata.
New Features
- One-click seeding of Anna's Archive with a target size (TB/GB)
- Live coverage metric showing how much of Anna's Archive your torrents preserve
- Real-time disk usage, upload/download bandwidth, and swarm health (seeders/leechers)
- Embedded libtorrent session — no separate torrent client to install or wire up
- Read-only
/viewvantage page plus multi-network share buttons to show your impact - Seeding resumes across restarts via persisted libtorrent resume state
- Direct donation link to Anna's Archive from the UI
- Protected by built-in Authelia SSO (AppShield) — no login page to configure
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/annas-torrents-webui | 1.0.0 | 1.0.2 |
| ghcr.io/yundera/appshield | 2.0.5 | 2.0.5 |
Migration Notes
- No data migration required — main app image patch bump only (1.0.0 → 1.0.2).
- Access: sign in with your Yundera SSO account (Authelia via AppShield); there is no separate password to set.
- BitTorrent connectivity: peer traffic uses port 6881 (TCP + UDP), published to the host — forward/open 6881 on your router for best swarm connectivity.
- Data path:
/DATA/AppData/annas-torrents-webui/data(.torrent files, seeded content, and libtorrent resume state). ⚠️ Safety: this app downloads and seeds real content; distributing certain materials may not be legal in all jurisdictions — consider a VPN and seed at your own risk.
Links
- GitHub Repository
- Release Tag v1.0.2 (no upstream release notes published)
- Anna's Archive
Crafty Controller v4.10.7
Crafty Controller v4.10.7
Initial AppStore release: a web-based control panel for creating, running, and managing Minecraft Java and Bedrock servers from your browser.
New Features
- Create and manage multiple Minecraft Java and Bedrock servers from a single web GUI
- Launch and supervise server processes with live, real-time console access
- Build servers from common loaders and automate setup
- Scheduled, automated backups of worlds and configs
- Per-user roles and permissions for safe shared access
- Published Minecraft port pool (Java 25500-25600, Bedrock UDP 19132) plus Dynmap (8123)
- Ships upstream 4.10.7 fixes: Bedrock/Java server creation & updates, modded installs on non-Windows hosts, a Hytale import hang, and a 100% CPU pin after terminal buffer changes
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| registry.gitlab.com/crafty-controller/crafty-4 | — | 4.10.7 |
Migration Notes
- No migration required — this is a first release
- Default login:
admin/ auto-generated password ($APP_DEFAULT_PASSWORD!, shown in the install tips) - Data is stored under
/DATA/AppData/<AppID>/(config,servers,backups,logs,import) - Runs as root (
user: "0:0") — required by Crafty; seerationale.md - Open the Minecraft server port you choose (Java 25500-25600, Bedrock UDP 19132) to the internet for players outside your network
Links
SegmentPlayer v1.4.2
SegmentPlayer v1.4.2
Update from v1.3.12 to v1.4.2: on-the-fly HLS video streaming, now secured by Yundera single sign-on (OIDC) in place of the legacy hash-lock login.
New Features
- Browse and play any video from your Downloads folder as HLS streams
- On-demand HLS packaging with nginx-vod-module (no pre-transcoding needed)
- Live segment-level transcoding for incompatible codecs (HEVC, VP9, AV1, 10-bit, AC3, …)
- Instant seeking, multi-audio-track selection, and embedded subtitle extraction (ASS/SRT → WebVTT)
- Modern responsive web player built on hls.js
- Web UI access now protected by Yundera single sign-on — no per-app password
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/segmentplayer | 1.3.12 | 1.4.2 |
Breaking Changes
- Authentication moved from the legacy hash-lock (USER
segment+ password and URL?hash=token) to Yundera single sign-on (OIDC via AppShield). The old per-app credentials and hash URL no longer apply.
Migration Notes
- No data migration required — media is read from /DATA/Downloads and /DATA/Media (read-only) as before.
- Login: sign in with your Yundera account (SSO); the previous
segmentusername/password is no longer used. - Supported formats: MP4, MKV, MOV, AVI, WebM. H.264/H.265 + AAC stream directly; other codecs transcode on the fly.
Links
- GitHub Repository
- Upstream release notes: none published for this version — notes generated from app metadata and compose changes.
Beacon v1.0.16
Beacon v1.0.16
Update from v1.0.15 to v1.0.16: adds an opt-in MCP OAuth 2.1 broker so remote clients can reach the aggregated /mcp endpoint with Bearer tokens ("add security on beacon").
New Features
- AppShield now ships an MCP OAuth 2.1 authorization server (oidc-provider fronting Dex), activated when
MCP_OAUTH_RESOURCEis set. - Supports Dynamic Client Registration (DCR) for claude.ai and manually-created clients such as n8n, which can now reach
/mcpwith Bearer tokens. - New "Manage remote access" link in the Beacon dashboard pointing at the AppShield-hosted OAuth admin page (
OAUTH_ADMIN_URL). - OAuth clients, signing keys, and grants are now persisted across redeploys via a dedicated data volume.
- Beacon backend updated to 1.0.16; AppShield gateway updated to 2.0.5.
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/beacon | 1.0.15 | 1.0.16 |
| ghcr.io/yundera/appshield | 2.0.4 | 2.0.5 |
Migration Notes
- A new persistent volume is added:
/DATA/AppData/beacon/oauth->/data/oauth(stores DCR/manual clients, signing keys, and grants). The directory is created automatically on deploy. - The MCP OAuth broker is opt-in and only active when
MCP_OAUTH_RESOURCEis set (pre-configured tohttps://beacon-${APP_DOMAIN}/mcp). - Credentials: the web dashboard remains protected by Yundera single sign-on — no extra login.
- Data paths: app data under
/DATA/AppData/beacon, OAuth state under/DATA/AppData/beacon/oauth.
Links
- Upstream release notes: not published (
ghcr.io/worph/beaconis a private/internal image) — notes derived from the compose change. - GitHub Repository
Telegram MCP v1.1.21
Telegram MCP v1.1.21
Update from v1.1.14 to v1.1.21: multi-chat MCP targets, a new bot ask/question API, bot access restrictions, plus quality-of-life and bug fixes.
New Features
- Route messages to multiple MCP chat targets from a single bot
- New bot API for asking questions and collecting answers (improved "ask" flow)
- Bot access restriction — limit which chats/users the bot responds to
- Additional question/answer API endpoints for richer LLM interactions
- General quality-of-life improvements based on user feedback
- Bug fixes across the messaging and ask flows
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/telegram-mcp | 1.1.14 | 1.1.21 |
| ghcr.io/yundera/nginx-hash-lock | 1.0.5 | 1.0.5 |
Migration Notes
- No migration required — backward-compatible image bump; existing config is preserved.
- Default Web UI login: user
ADMIN, password$APP_DEFAULT_PASSWORD(shown in CasaOS after install). - Bot token and settings live at
/DATA/AppData/telegrammcp/config.jsonon the host.
Links
- Upstream Repository
- Release Tag v1.1.21
- Note: upstream publishes git tags only (no GitHub release notes); these notes are derived from compose metadata and commit history.
Claude Code (root) v1.0.25
Claude Code (root) v1.0.25
Initial AppStore release: privileged Claude Code container for PCS administration and debugging, with full control of the host VM.
New Features
- Web-based terminal access to Claude Code with a styled login page and session management
- Full administrative power: Docker socket access plus SSH (admin + sudo) to the host VM
- Can perform any maintenance task on the VM (system updates, service management, disk/network ops)
- Persistent workspace volume; Claude starts automatically on connection
- Idempotent pre-install provisioning of the host
adminuser with NOPASSWD sudo and a writable~/.ssh(so host-SSH works on nsl.sh-managed VMs too) - MCP automation is intentionally disabled on this privileged variant (
MCP_ENABLED=false) — use the standard "Claude Code" app for MCP-driven automation - Auth via Anthropic API key or Claude Pro/Max subscription (OAuth on first run)
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/claude-code-container | — | 1.0.25 |
Migration Notes
- No migration required — this is a first release.
- This is the privileged counterpart to the sandboxed "Claude Code" app; install only if you need full host control.
- Default login password: auto-generated (
$APP_DEFAULT_PASSWORD); check the app settings for theAUTH_PASSWORDvalue. - Authentication: Anthropic API key or Claude Pro/Max subscription (leave API key empty to use subscription auth).
- Data paths: workspace
/DATA/AppData/clauderoot/workspace/, config/DATA/AppData/clauderoot/config/. - Exposed ports: 8080 (terminal) and 9090 (auth server;
/mcpreturns 404 since MCP is disabled).
Links
- Upstream Image Repository (no public release notes for 1.0.25)
- Claude Code Documentation
- Yundera AppStore
Claude Code v1.0.25
Claude Code v1.0.25
Update from v1.0.24 to v1.0.25: the standard Claude Code app is now a fully sandboxed container (no host access) and gains a programmatic MCP automation endpoint.
New Features
- Fully sandboxed: no Docker socket, no host SSH, no sudo account — the container cannot touch the host VM
- Confined to its own persistent workspace volume
- MCP (Model Context Protocol) endpoint enabled (
MCP_ENABLED=true) for programmatic automation by other AI agents (e.g. n8n) - MCP tools available:
query_claude(send a prompt) andcheck_status(availability) - Web-based terminal access to Claude Code with a styled login page and session management
- Bearer-authenticated
/mcpendpoint, reachable via the public URL or directly on thepcsDocker network - Auth via Anthropic API key or Claude Pro/Max subscription (OAuth on first run)
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/claude-code-container | 1.0.24 | 1.0.25 |
Breaking Changes
- Host access has been removed from this app. The Docker socket mount, the
/home/admin/.sshhost-SSH mount, and the full/DATAmount are gone. If you previously used this app for host/PCS maintenance, install the new Claude Code (root) app instead.
Migration Notes
- This app is now split from a privileged variant — for full host VM control use Claude Code (root).
- Default login password: auto-generated (
$APP_DEFAULT_PASSWORD); check the app settings for theAUTH_PASSWORDvalue. - Authentication: Anthropic API key or Claude Pro/Max subscription (leave API key empty to use subscription auth).
- Data paths: workspace
/DATA/AppData/claude/workspace/, config/DATA/AppData/claude/config/. - Exposed ports: 8080 (terminal) and 9090 (auth/MCP server).
Links
- Upstream Image Repository (no public release notes for 1.0.25)
- Claude Code Documentation
- Yundera AppStore
Browser MCP v1.1.3
Browser MCP v1.1.3
Initial AppStore release: a headless Chromium browser in the cloud, controlled by AI via MCP — bundles Chromium, Playwright automation, an MCP server, and a live noVNC viewer in one container.
New Features
- Control a real Chromium browser from any MCP-compatible AI assistant
- Navigate websites, click elements, fill forms, and interact with web pages
- Take screenshots for visual feedback loops (screenshot → decide → act)
- Execute JavaScript in the browser context for advanced automation
- Watch the browser live via the built-in noVNC web viewer
- Web UI dashboard for status monitoring and tool information
- 16+ MCP tools: navigate, click, type, screenshot, evaluate, get_text, get_page_content, wait_for, pdf, cookie management, and more
- Three connection modes: public URL with hash auth, direct Docker network, or auto-registration via Beacon
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| ghcr.io/worph/browser-mcp | — | 1.1.3 |
| ghcr.io/yundera/nginx-hash-lock | — | 1.0.7 |
Migration Notes
- No migration required — this is a first release
- The Web UI, live noVNC viewer, and
/apiendpoints sit behind the Yundera hash-lock; log in asADMINwith$APP_DEFAULT_PASSWORD. Only/mcpis reachable with the hash token. - Data/config path:
/DATA/AppData/browser-mcp/(config at/app/data/config.json) - Chromium needs a large
/dev/shm(2 GB) for rendering; idle Chrome is recycled after 2h
Links
- Upstream Repository (tag v1.1.3 — no published GitHub release notes; notes generated from app metadata)
- Yundera AppStore
Prowlarr v2.4.0
Prowlarr v2.4.0
*Initial AppStore release: Prowlarr is an indexer manager and proxy for the arr stack that manages all your trackers/indexers from one interface and syncs them to Radarr, Sonarr, Lidarr and Readarr.
New Features
- Central management of all torrent trackers and Usenet indexers from a single UI
- Automatic indexer sync to Radarr (
radarr:7878) and Sonarr (sonarr:8989) and other *arr apps - New: Postgres connection string option for external database support
- New: Basic Auth support for sync applications and API key support for qBittorrent
- Fixed: Basic auth and login with credentials on qBittorrent 5.2
- New: MyAnonamouse downloads without session cookies; freeleech wedge handling refined
- Fixed: Newznab minage/minsize/maxsize parameters using the wrong source field
- Bumped to .NET 8.0.27
- Shares the
/DATA/AppData/prowlarr/config folder with the Servaar (JQPR) stack for compatibility
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| lscr.io/linuxserver/prowlarr | — | 2.4.0 |
Migration Notes
- No migration required — this is a first release.
- Authentication: Prowlarr has no default credentials; you set a username/password on first launch (Settings → General → Security).
- Config/data path:
/DATA/AppData/prowlarr/config(shared with the Servaar/JQPR stack). - Web UI is exposed on port
9696.
Links
Jellyfin v10.11.11
Jellyfin v10.11.11
Initial AppStore release: the Free Software Media System that puts you in control of managing and streaming your movies, TV, and music from your own server to any device.
New Features
- Netflix-style web interface for your own movies, TV shows, and music
- Stream to phones, tablets, browsers, smart TVs, and Jellyfin apps
- Hardware-accelerated transcoding so media plays on any device
- Multi-user accounts with per-user libraries and parental controls
- Live TV & DVR support with a compatible tuner
- Automatic metadata, artwork, and subtitle fetching
- Fully self-hosted and open source — no tracking, no subscription fees
- Pre-mapped libraries for Movies, TV Shows, Music, and Downloads
Updated Components
| Component | Old Version | New Version |
|---|---|---|
| jellyfin/jellyfin | — | 10.11.11 |
Migration Notes
- No migration required — this is a first release
- No default credentials — create the admin account in the setup wizard on first launch
- Config:
/DATA/AppData/jellyfin/config· Cache:/DATA/AppData/jellyfin/cache - Media:
/DATA/Media/Movies,/DATA/Media/TV Shows,/DATA/Media/Music,/DATA/Downloads - Web UI served on port 8096 via Caddy