feat(container): update image ghcr.io/miniflux/miniflux to v2.2.5

[renovate]

This PR contains the following updates:

Package	Update	Change
ghcr.io/miniflux/miniflux (source)	minor	2.1.3 -> 2.2.5

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

miniflux/v2 (ghcr.io/miniflux/miniflux)

v2.2.5

Compare Source

• tests(js): improve .jshintrc (strict comparison, etc...)
• test(sanitizer): add a fuzzer
• refactor(rewriter): use custom title case converter implementation instead of golang.org/x/text/cases.Title()
• refactor(readingtime): replace whatlanggo package with an ad-hoc implementation
• refactor(oauth2): no need to use io.WriteString when sha256 provides a way to obtain a sum in a single call
• refactor(js): simplify a bit keyboard_handler.js
• refactor(js): remove an outdated check for {passive: true}
• refactor(js): minor refactoring of touch_handler.js
• refactor(js): minor improvements in app.js
• refactor(database): add special handling for PostgreSQL-specific migrations
• fix(ui): reading preferences are reset if the form values are incorrect
• fix(sanitizer): allow <hr> tags
• fix(finder): do not add redirections to the list of subscriptions to avoid confusion
• fix: update Wallabag URL label to avoid confusion
• fix: improve pagination when having identical publication date
• fix: do not strip tags in Atom entry title
• feat(ntfy): Add option to use internal links
• feat(locale): update Polish translation
• feat(locale): update German translation
• feat(integration): add Discord integration
• feat(database): add optional build support for SQLite
• feat: validate usernames upon creation
• feat: replace %{?systemd_requires} with %{?systemd_ordering}
• feat: bump linter and minifier from ECMAScript 2017 to 2020 (ES11)
• feat: add fix_ghost_cards rewrite rule
• ci: tighten the CodeQL rules
• ci: run Docker tests only when the Dockerfiles are modified
• ci: run -race -cover only on Ubuntu jobs
• ci: don't specify languages for CodeQL
• ci: don't run go vet ./... as it's run as part of golangci-lint
• ci: checkout before installing Go to improve cache efficiency
• ci: avoid building Linux packages for each pull-request
• build(deps): bump golang.org/x/oauth2 from 0.24.0 to 0.25.0
• build(deps): bump golang.org/x/net from 0.33.0 to 0.34.0
• build(deps): bump golang.org/x/crypto from 0.31.0 to 0.32.0
• build(deps): bump github.com/tdewolff/minify/v2 from 2.21.2 to 2.21.3
• build(deps): bump github.com/PuerkitoBio/goquery from 1.10.0 to 1.10.1
• build(deps): bump github.com/coreos/go-oidc/v3 from 3.11.0 to 3.12.0

v2.2.4

Compare Source

• test(rewrite): add unit test for referer rewrite function
• refactor(subscription): use strings.HasSuffix instead of a regex in FindSubscriptionsFromYouTubePlaylistPage
• refactor(sanitizer): use token.String() instead of html.EscapeString(token.Data)
• refactor(sanitizer): simplify isValidTag
• refactor(sanitizer): simplify hasRequiredAttributes
• refactor(sanitizer): remove condition because config.Opts is guaranteed to never be nil
• refactor(sanitizer): remove a now-useless function after refactoring
• refactor(sanitizer): refactor conditions to highlight their similitude, enabling further refactoring
• refactor(sanitizer): optimize strip_tags.go
• refactor(sanitizer): micro-optimizations of srcset.go
• refactor(sanitizer): merge two conditions
• refactor(sanitizer): inline a function in sanitizeAttributes and fix a bug in it
• refactor(sanitizer): inline a condition in sanitizeSrcsetAttr
• refactor(sanitizer): improve rewriteIframeURL()
• refactor(sanitizer): Google+ isn't a thing anymore
• refactor(sanitizer): change the scope of a variable
• refactor(rewriter): replace regex with URL parsing for referrer override
• refactor(rewriter): avoid the use of regex in addDynamicImage
• refactor(rewrite): remove unused function arguments
• refactor(readability): various improvements and optimizations
• refactor(readability): simplify the regexes in readability.go
• refactor(processor): use URL parsing instead of a regex
• refactor(processor): improve the rewrite URL rule regex
• refactor(locale): delay parsing of translations until they're used
• refactor(js): factorise a line in app.js
• refactor(handler): delay store.UserByID() as much as possible
• refactor(css): replace -ms-text-size-adjust with text-size-adjust
• refactor(css): remove -webkit-clip-path
• refactor(css): factorise .pagination-next and .pagination-last together
• refactor: use a better construct than doc.Find(…).First()
• refactor: use min/max instead of math.Min/math.Max
• refactor: refactor internal/reader/readability/testdata
• refactor: optimize sanitizeAttributes
• refactor: get rid of numberOfPluralFormsPerLanguage test-only variable
• fix(storage): replace timezone function call with view
• fix(consistency): align feed modification behavior between API and UI
• fix(ci): fix grammar in pull-request template
• fix: load icon from site URL instead of feed URL
• fix: feed icon from xml ignored during force refresh
• feat(rewrite)!: remove parse_markdown rewrite rule
• feat(mediaproxy): update predefined referer spoofing rules for restricted media resources
• feat(locale): update translations to clarify readeck URL instead of readeck API endpoint
• feat(locale): update German translations
• feat(locale): update Chinese translations
• feat(apprise): update SendNotification to handle multiple entries and add logging
• feat(apprise): add title in notification request body
• feat: resize favicons before storing them in the database
• feat: optionally fetch watch time from YouTube API instead of website
• feat: only show the commit URL if it's not empty on /about
• feat: add predefined scraper rules for arstechnica.com
• feat: add date-based entry filtering rules
• chore: remove blog.laravel.com rewrite rule
• build(deps): bump library/alpine in /packaging/docker/alpine to 3.21
• build(deps): bump golang.org/x/term from 0.26.0 to 0.27.0
• build(deps): bump golang.org/x/net from 0.31.0 to 0.33.0
• build(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0
• build(deps): bump github.com/tdewolff/minify/v2 from 2.21.1 to 2.21.2

v2.2.3

Compare Source

• fix: unable to change password due to a typo in SQL parameter
• fix: show only one player when there are several audio/video enclosures
• feat(mediaproxy): pass original filename in Content-Disposition header
• feat(mediaproxy): implement referer spoofing for restricted media resources
• feat(integration): update Shiori integration to use new API endpoints for login/bookmark
• build(deps): bump golang.org/x/text from 0.19.0 to 0.20.0
• build(deps): bump golang.org/x/term from 0.25.0 to 0.26.0
• build(deps): bump golang.org/x/oauth2 from 0.23.0 to 0.24.0
• build(deps): bump golang.org/x/net from 0.30.0 to 0.31.0
• build(deps): bump golang.org/x/crypto from 0.28.0 to 0.29.0

v2.2.2

Compare Source

• fix(webauthn): add backup eligibility flag workaround to avoid a 401 response
• fix: update Last-Modified if it changes in a 304 response
• feat(webauthn): show help message regarding username and non-discoverable credentials
• feat(rss): calculate hash based on item title/content for feeds without GUID and link
• feat(locale): update Chinese translations
• feat(locale): update Polish translations
• feat(integration): add Cubox integration
• feat(client): add custom_js field to Go API client
• feat(api): add endpoint for user integration status
• feat: update feed icon during force refresh
• feat: take Retry-After header into consideration for rate limited feeds
• feat: set entry URL to rewritten URL if a rewrite rule is defined
• feat: replace xurls third-party module with an ad-hoc regexp
• feat: add new settings option to allow external fonts
• feat: add custom user JavaScript similar to custom CSS
• chore: update test case comment
• build(deps): bump golang.org/x/net from 0.29.0 to 0.30.0
• build(deps): bump github.com/yuin/goldmark from 1.7.4 to 1.7.8
• build(deps): bump github.com/tdewolff/minify/v2 from 2.20.37 to 2.21.1
• build(deps): bump github.com/prometheus/client_golang
• build(deps): bump github.com/andybalholm/brotli from 1.1.0 to 1.1.1

v2.2.1

Compare Source

• refactor: split processor package into smaller files
• fix(mediaproxy): forward client user-agent to origin to bypass bot protection
• fix: use root URL to generate absolute proxy URL
• fix: remove progression save on shared entry
• fix: add datasource variable and upgrade depecrated panels on the Grafana dashboard
• feat(locale): update zh_CN translations
• feat(locale): update Ukrainian translations
• feat(locale): update Spanish translations
• feat(locale): update Dutch translations
• feat: use Bilibili API instead of web scraping to get videos watch time
• feat: add pagination to shared entries listing
• feat: add button to show only starred entries per category
• build(deps): bump golang.org/x/term from 0.23.0 to 0.24.0
• build(deps): bump golang.org/x/oauth2 from 0.22.0 to 0.23.0
• build(deps): bump golang.org/x/net from 0.28.0 to 0.29.0
• build(deps): bump github.com/PuerkitoBio/goquery from 1.9.2 to 1.10.0
• build(deps): bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4
• build(deps): bump github.com/go-webauthn/webauthn from 0.10.2 to 0.11.2
• build: update go.mod to Go 1.23
• build: bump devcontainer version to go 1.23

v2.2.0

Compare Source

• refactor: simplify Youtube feeds discovery
• fix(integration): define content encoding explicitly when sending article body to Readeck
• fix(fever): correct sorting direction when using max_id argument
• fix(client): Return nil and error if endpoint is an empty string
• fix: video poster image URL is encoded twice when using MEDIA_PROXY_MODE=all
• fix: use BASE_URL instead of r.Host to generate absolute media proxy URL
• fix: panic during YouTube channel feed discovery
• fix: honor hide_globally when creating a new feed through the api
• fix: align pagination correctly on small screens with non-English text
• fix: store.GetEnclosure() should return nil if no rows are returned
• feat(locale): update Turkish translations
• feat(locale): update French translations
• feat(locale): update Chinese` translations
• feat(integration): add ntfy integration
• feat(api): add API routes /v1/enclosures/{enclosureID}
• feat: validate OAUTH2_PROVIDER config option value
• feat: remove YouTube video page subscription finder because meta[itemprop="channelId"] no longer exists
• feat: remove well-known URL parameter trackers
• feat: mark media as read when playback reaches 90%
• feat: change log level to info when running migrations
• feat: allow customizing the display name of the OpenID Connect provider
• feat: add support for base HTML element when discovering feeds
• feat: add support for aside HTML element in entry content
• feat: Add option to disable local auth form
• feat: add license info to Javascript files for LibreJS compatibility
• feat: add FETCH_BILIBILI_WATCH_TIME config option
• docs: update links to filtering rules
• chore: avoid using legacy key/value format in Dockerfile
• build(deps): bump golang.org/x/oauth2 from 0.21.0 to 0.22.0
• build(deps): bump golang.org/x/net from 0.27.0 to 0.28.0
• build(deps): bump golang.org/x/crypto from 0.25.0 to 0.26.0
• build(deps): bump github.com/tdewolff/minify/v2 from 2.20.36 to 2.20.37
• build(deps): bump github.com/prometheus/client_golang
• build: update GitHub Actions to Go 1.23
• build: publish OCI images only if PUBLISH_DOCKER_IMAGES=true
• build: bump Alpine Linux build image to v3.20
• build: add sha256 checksum file for published binaries

v2.1.4

Compare Source

• test: add unit tests for IsModified() behaviour
• refactor: improve YouTube page feed detection
• fix(ui): settings form is not populated correctly after validation errors
• fix(ui): playback speed indicator precision
• fix(ui): playback speed indicator on shared entries
• fix(integration): preserve existing Pinboard bookmarks
• fix(googlereader): set CrawlTimeMsec to the correct precision
• fix(build): failed to solve container image arm64v8/golang:1.22-bookworm
• fix(build): add distroless suffix on latest tag in GitHub workflow
• fix: use ETag as a stronger validator than Last-Modified
• fix: update theverge.com rewrite rule to avoid duplicate image
• fix: incorrect Go package comment reader/readingtime
• fix: error out for improper rewrite regexp when processing feed entries
• fix: ensures that session cookies are not expiring before the session is cleaned up from the database as per CLEANUP_REMOVE_SESSIONS_DAYS
• fix: <img> aspect ratio with height: auto
• feat(ui): add viewport-fit=cover
• feat(sanitizer): add support for HTML hidden attribute
• feat(locale): update French translations
• feat(integration): add Raindrop integration
• feat(integration): add feed name to Telegram message
• feat(integration): add Betula integration
• feat: use of insecure TLS ciphers when "Allow self-signed or invalid certificates" is enabled to workaround some broken websites
• feat: discover feeds from a Youtube playlist pages
• feat: add navigation to last/first page
• feat: add global block and keep filters
• feat: add description field to feed settings
• feat: add pitchfork.com scraping rule
• feat: add FETCH_NEBULA_WATCH_TIME config option
• Bump github.com/PuerkitoBio/goquery from 1.9.1 to 1.9.2
• Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1
• build(deps): bump library/alpine in /packaging/docker/alpine
• build(deps): bump golangci/golangci-lint-action from 4 to 6
• build(deps): bump golang.org/x/term from 0.19.0 to 0.22.0
• build(deps): bump golang.org/x/oauth2 from 0.19.0 to 0.21.0
• build(deps): bump golang.org/x/net from 0.22.0 to 0.27.0
• build(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0
• build(deps): bump github.com/yuin/goldmark from 1.7.1 to 1.7.4
• build(deps): bump github.com/tdewolff/minify/v2 from 2.20.20 to 2.20.36
• build(deps): bump github.com/coreos/go-oidc/v3 from 3.10.0 to 3.11.0
• build(deps): bump docker/build-push-action from 5 to 6

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.