Attention all sysadmins / selfhosters of #inventree instances:
We will publish a critical security vulnerability and patched version on 2026-04-08 21:00 UTC

Read https://inventree.org/blog/2026/03/25/security-release for more details - there are several recommended steps to keep your instance safe in the meantime.

Please prepare to update as soon as we release. #inventreedb #opensource

InvenTree 1.2.6 contains fixes for new security advisories

Updating to 1.2.6 is strongly advised. See GHSA-rhc5-7c3r-c769 and GHSA-m8j2-vfmq-p6qg for details.
Every admin should be aware of the assumed trust in our threat model. If you followed it you are not vulnerable see https://docs.inventree.org/en/latest/concepts/threat_model/

many thanks to patelhettt (x2) and alonaki for their research and responsible disclosure

#inventree #inventreedb #opensourcesecurity

RE: https://chaos.social/@InvenTree/116059586117578078

I am looking forward to seeing more deployments out there!

If you know #kubernetes #k8 #helm or have deeper knowledge around these technologies I invite you to check things out and let us know what could be done better.

I am reasonably familiar with docker and the security implications / bag of grenades it can be. Kubernetes is something >other people™< do at my place of work, and I would rather improve the ecosystem than learn another deployment stack. To be honest.

#inventreedb #inventree

InvenTree is now listed on artifact hub for easier Kubernetes deployment and discovery

With many thanks to community member @plaes [1] who basically wrote the whole chart and helped to close this long-standing request/issue [2].
Now with the listing on artifacthub[3] the base for easy deployment in the broad Kubernetes ecosystem is laid.

1: https://plaes.org/
2: https://github.com/inventree/InvenTree/discussions/8823
3: https://artifacthub.io/packages/helm/inventree/inventree

#inventreedb

Gearing up for 1.2.0 release - You can help!
https://github.com/inventree/InvenTree/discussions/11199

We are closing the scope for 1.2.0 and starting to put the finishing touches on. Expect a release in the next few months.
Please test the "latest" / "master" images and packages and help with translations to make this the best release yet.

#inventreedb #inventree

1.1.10 release with fix to long standing registration control problem

The newest release https://github.com/inventree/InvenTree/releases/tag/1.1.10 fixes a long-running issue where SSO registration could not be enabled without also enabling built-in authentication registration.
With debugging support by the community, this cosmetic issue could finally be fixed.

Upgrades are encouraged as there is also a patch for a vulnerable dependency.

#inventreedb #inventree #opensource

Anyone of my followers have access to the JLCPCB ordering API (preferably docs) - scoping if it would be a good source for a InvenTree SupplierMixin plugin once that merges.

I do not think I have enough orders (0 this year ;-) ) https://jlcpcb.com/help/article/jlcpcb-online-api-available-now

#jlc #opensource #inventree #inventreedb #fedihelp

InvenTree 1.0.0 Released!
After (nearly) a year of intense work on the new UI framework, 1.0 is now published.

Blog Post: https://inventree.org/blog/2025/09/15/1.0.0

Release Notes: https://github.com/inventree/InvenTree/releases/tag/1.0.0

#inventree #inventreedb #inventory #opensource