Update synapse to v1.128.0 (#2551)

2025-05-12 19:30:42 +02:00 · 2025-04-11 12:30:57 +02:00 · 2025-04-11 12:30:57 +02:00 · 71127878b1
commit 71127878b1
parent f900ebf74b
2 changed files with 6 additions and 9 deletions
--- a/synapse/docker-compose.yml
+++ b/synapse/docker-compose.yml
@ -8,7 +8,7 @@ services:
      PROXY_AUTH_ADD: "false"

  server:
-    image: matrixdotorg/synapse:v1.127.1@sha256:c3c4a9de2a0b7de37d9af8101f6196748d76cd6355e6e282d7b550dd0a833519
+    image: matrixdotorg/synapse:v1.128.0@sha256:5765b7f1bd46b3ded0a59546c8e69b33e57ef6007854791701943f0414557e39
    restart: on-failure
    stop_grace_period: 1m
    entrypoint: "bash"
--- a/synapse/umbrel-app.yml
+++ b/synapse/umbrel-app.yml
@ -2,7 +2,7 @@ manifestVersion: 1.1
 id: synapse
 category: social
 name: Synapse
-version: "1.127.1"
+version: "1.128.0"
 tagline: Matrix homeserver
 description: >-
  Synapse is an open source Matrix homeserver implementation, written and maintained by Element. Matrix is the open standard for secure and interoperable real time communications.
@ -42,14 +42,11 @@ torOnly: false
 submitter: Umbrel
 submission: https://github.com/getumbrel/umbrel/commit/c9f0975e766e79d4bd6adf4255cd081f54d654cb
 releaseNotes: >-
-  🚨 This release includes a high severity security fix for a vulnerability affecting federation. The vulnerability has been exploited in the wild.
-
-
  Some of the key highlights in this release include:
-    - Fixed a high severity security vulnerability (CVE-2025-30355)
-    - Updated implementation of delayed state events
-    - Added caching support to media endpoints
-    - Improved handling of user-sent state events
+    - Added an access token introspection cache for improved efficiency
+    - Added background job to clear unreferenced state groups
+    - Improved media file tracking and quarantine system
+    - Fixed a performance issue related to sliding sync membership snapshot table


  ⚠️ Room list publication is now disabled by default