Nostr notes by sharkey

That may take a while to propagate, then. We only officially ...

2026-03-08T23:11:56Z

In reply to nevent1q…pw4w
_________________________

That may take a while to propagate, then. We only officially support docker compose- other setups are reliant on self-support.

you'll need to update the docker image to 2025.4.6

2026-03-08T22:58:15Z

In reply to nevent1q…tt3g
_________________________

you'll need to update the docker image to 2025.4.6

[The stable release for 2025.4.6 has been ...

2026-03-08T22:38:00Z

[The stable release for 2025.4.6 has been made](https://activitypub.software/TransFem-org/Sharkey/-/releases/2025.4.6), with the security patches applied. Develop has merge conflicts that are actively being resolved.

quoting
note1xgk…3xlm

**This is your official notice that we'll be making a major security release for Sharkey tomorrow** (between $[unixtime 1773007200] and $[unixtime 1773014400]) in coordination with Misskey. Please be ready to patch your instances soon as humanly possible, as the vulnerabilities at play are _extremely_ severe. Note that IceShrimp and Firefish derivatives are not affected, only direct forks of Misskey.

Docker images will be available, yes!

2026-03-08T00:43:50Z

In reply to nevent1q…6a5k
_________________________

Docker images will be available, yes!

UTC

2026-03-07T20:21:31Z

In reply to nevent1q…q6gq
_________________________

UTC

**This is your official notice that we'll be making a major ...

2026-03-07T19:30:34Z

**This is your official notice that we'll be making a major security release for Sharkey tomorrow** (between $[unixtime 1773007200] and $[unixtime 1773014400]) in coordination with Misskey. Please be ready to patch your instances soon as humanly possible, as the vulnerabilities at play are _extremely_ severe. Note that IceShrimp and Firefish derivatives are not affected, only direct forks of Misskey.

We've just released version 2025.4.5 of Sharkey! - ...

2026-01-13T23:18:38Z

**We've just released version 2025.4.5 of Sharkey!** - We'll catch up, we promise.

This release contains a single (but rather important fix) regarding [how we authenticate to DeepL](https://developers.deepl.com/docs/resources/breaking-changes-change-notices/november-2025-deprecation-of-legacy-auth-methods).

No other changes this time, our current priority is to stabilize a mass of fixes and improvements we've made on top of Misskey 2025.5.0, which has been stalled due to life things getting in the way for several of our contributors. That said, the hope is to get things back in motion through the coming months- and contributions are _always_ welcome. Thanks for bearing with us in the meantime! :blahaj:

We've officially released version 2025.2.3 of Sharkey! **This ...

2025-04-27T21:09:18Z

We've officially released version 2025.2.3 of Sharkey!

**This update contains critical security fixes. Please update as soon as possible.** Disclosures for the relevant vulnerabilities will be made available once instances have been patched.

Heads up- we'll be making a major security release for ...

2025-04-27T14:57:57Z

Heads up- we'll be making a major security release for Sharkey later today (between $[unixtime 1745780400] and $[unixtime 1745787600]) in coordination with Iceshrimp and Misskey. Please make sure to update your instances as soon as possible.

Hello everyone, we've just released a new version of Sharkey! ...

2025-03-02T20:49:09Z

Hello everyone, we've just released a new version of Sharkey! This is the first release in the 2025.2 series, despite the .2- we had to make use of that due to technical limitations in the upstream merge workflow we use.

Here's what we've been working on:
- A fix for an annoying `corepack`/`pnpm` error.
- Optimizations to SQL-based note search.
- Support for `tsvector` full-text search.
- Support for filtering by Module and Flash file types.
- Fixes for quote preview.
- Fixes for hashtags and tag search.
- Allow user-initiated object lookups to redirect. (makes the lookup function 100x more likely to actually work instead of throwing a vague error).
- Add missing translations in various places.
- Bulk fixes and refactoring of Mastodon API. (it may work better with some clients, and several known bugs are fixed.)
- Option to regenerate vapid keys without a CLI command.
- Revision 2 of the new rate limit system- improved performance, simpler API, and the "role template" rate limit factor now applies to unauthenticated / logged-out requests.
- Fixes for docker build & deployment.
- Fixes for BSD build & deployment.
- Add a "follow back" button to "user followed you" notifications.
- Buttons to accept/reject follow requests directly from a user's profile.
- Various rate limit fixes and adjustments.
- Improved support for MFM and HTML ruby.
- Improved browser language detection, especially in cases where we don't have an exact-match language file.
- Robots.txt can be configured through admin settings, instead of using the reverse-proxy.
- Federation fixes and improvements, particularly for software which produces null for Person.discoverable.
- Build and development tooling improvements.
- Fixes for import limits and config settings.
- Fixes for reactions
- Fixes for note visibility in streaming API
- Shift-click to automatically boost w/ visibility
- Fixes to emoji sorting, search, and categorization.
- Emoji import now honours the `import.downloadTimeout` setting
- Laxer validation for admin-controlled HTML.
- Add some missing MFM to the cheat sheet.
- Record the person who created an invite code.
- Classic and narrow UI layout fixes.
- Fixes for RSS widgets
- Remove unused "email notification type" settings to avoid user confusion.
- Remove duplicate role badges
- Add file extension to locally-stored media (allows the reverse-proxy to directly serve media)
- The IP address that the server listens on is now configurable
- Users can set a default CW
- Moderators can force a CW for a user
- Moderators can remove the "quote" feature for specific users (local or remote) and remote instances
- Optional separate Redis connection for rate-limiting purposes
- Ability to log all AP objects- note that this respects deletes, and is optional, as a debugging aid.
- Better support for PeerTube thumbnails
- Better interoperability with SocialHome

Here's what we've pulled in from upsteam:
- A new experimental custom emoji manager using a spreadsheet UI
- Support for PGroonga full-text search, which gives accuracy closer to Meilisearch with dramatically less system load and deployment headache.
- We can log full SQL queries for development
- A bunch of bug fixes for login, note hiding, MFM, and others.
- Remove unused "view source" button.
- Fixes to data saver mode.
- Fixes to Deck UI.
- Add missing translations in various places.