mirror/glances
1
0
Fork 0
mirror of https://github.com/nicolargo/glances.git synced 2026-06-03 11:24:52 -04:00
Code Issues Packages Projects Releases Wiki Activity
7,070 Commits 109 Branches 148 Tags
master
Commit Graph

7070 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
nicolargo
05ff62d883 version 4.5.4 v4.5.4 2026-04-19 09:41:52 +02:00
nicolargo
9bbc887a36 Merge branch 'develop' 2026-04-19 09:36:47 +02:00
nicolargo
30730f4eb4 Prepare Glances 4.5.4 version 2026-04-19 09:36:25 +02:00
nicolargo
a3771ce0cd Improve WevUI workflow 2026-04-18 14:40:08 +02:00
Nicolas Hennion
9f6297417c Merge pull request #3529 from crishoj/fix/lxd-standalone-filter 
Fix LXD filter excluding containers on standalone hosts

Thanks for the PR @crishoj !

Merged into develop.
 2026-04-18 12:03:44 +02:00
Nicolas Hennion
1aae112723 Merge pull request #3528 from nicolargo/dependabot/github_actions/actions-c7405466a8 
Bump the actions group with 3 updates
 2026-04-18 12:02:15 +02:00
nicolargo
6ac0d051f8 Upgrade dep 2026-04-18 12:01:01 +02:00
nicolargo
b50f306e86 Update doc 2026-04-18 11:40:18 +02:00
nicolargo
cec380536f Overwrite thresholds for a specific sensor is not taken into account - Related to #3525 2026-04-18 09:45:29 +02:00
Christian Rishøj
34943bae5c #3524 suppress Codacy asserts/D203 warnings in new tests 2026-04-16 18:12:18 +02:00
Christian Rishøj
c68f1fc52e #3524 fix LXD container filter excluding standalone instances 
connect() unconditionally stored server_name as local_node, and
update() filtered instances whose location did not match. On a
standalone LXD host, instance.location is empty, so every container
was dropped and the user saw no LXD stats at all.

Gate the filter on environment.server_clustered — only apply the
cluster-member filter when the daemon reports itself as clustered.
Also promote the connect() failure log from debug to error so that
future connectivity issues are visible in the default log.
 2026-04-16 18:06:45 +02:00
dependabot[bot]
e03f95f700 Bump the actions group with 3 updates 
Bumps the actions group with 3 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact), [docker/build-push-action](https://github.com/docker/build-push-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/upload-artifact` from 7.0.0 to 7.0.1
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](bbbca2ddaa...043fb46d1a)

Updates `docker/build-push-action` from 7.0.0 to 7.1.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](d08e5c354a...bcafcacb16)

Updates `github/codeql-action` from 4.35.1 to 4.35.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](c10b8064de...95e58e9a2c)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: 7.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: docker/build-push-action
  dependency-version: 7.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: github/codeql-action
  dependency-version: 4.35.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-16 05:21:39 +00:00
nicolargo
eb0c4c2bd5 Update README.md file 2026-04-12 09:52:21 +02:00
nicolargo
d6808be667 SSRF in Glances IP Plugin via public_api leads to credential leakage - Correct CVE-2026-35587 2026-04-12 09:27:01 +02:00
nicolargo
fdfb977b1d Cross-Origin Information Disclosure via Unauthenticated REST API (/api/4) due to Permissive CORS in Glances - Mitigate CVE-2026-34839 2026-04-12 09:22:36 +02:00
nicolargo
c2e4fd6b41 Optimize token for Claude 2026-04-12 09:14:21 +02:00
nicolargo
b7182821fc Optimize token for Claude 2026-04-12 09:14:09 +02:00
nicolargo
f2c3ba9e2b Lint the code 2026-04-12 08:58:27 +02:00
Nicolas Hennion
e41b665576 Merge pull request #3520 from morimori-dev/fix/cassandra-cql-injection-ghsa-grp3-h8m8-45p7 
fix(cassandra): validate keyspace/table/replication_factor to prevent CQL injection (GHSA-grp3-h8m8-45p7)
 2026-04-12 08:53:07 +02:00
Paul
1563ff8e0a fix(cassandra): use logger.error and return instead of sys.exit on invalid config 
Per reviewer feedback:
- Replace logger.critical with logger.error for config validation errors
- Replace sys.exit(2) with self.export_enable = False + return so the
  export module does not terminate the Glances process on bad config

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-11 22:03:29 +09:00
nicolargo
24615e52e7 Update doc and webui 2026-04-11 09:26:20 +02:00
nicolargo
acd5c6a4a8 Merge branch 'csvke-RV1126BP-70-Add-Rockchip-MPP-Support' into develop 2026-04-11 09:19:58 +02:00
nicolargo
eb3a608d08 Merge branch 'RV1126BP-70-Add-Rockchip-MPP-Support' of github.com:csvke/glances into csvke-RV1126BP-70-Add-Rockchip-MPP-Support 2026-04-11 09:19:10 +02:00
Nicolas Hennion
2c20656339 Merge pull request #3521 from nicolargo/dependabot/npm_and_yarn/glances/outputs/static/npm-989d12babf 
Bump the npm group in /glances/outputs/static with 2 updates
 2026-04-11 09:17:50 +02:00
Nicolas Hennion
356b0846ea Merge pull request #3522 from nicolargo/dependabot/github_actions/actions-60639b94c2 
Bump the actions group with 2 updates
 2026-04-11 09:17:28 +02:00
csvke
bcf9f3db5d RV1126BP-70: Fix Codacy issues in rockchip_mpp.py 
- Remove unnecessary pass statement in exit()
- Replace unused variable 'addr' with '_'
 2026-04-11 01:34:44 +08:00
csvke
a8023b3e4c RV1126BP-70: Add config, docs, and unit tests for MPP plugin 
- Add [mpp] section to conf/glances.conf with disable=True
- Add docs/aoa/mpp.rst documentation page and index entry
- Add unit test test_026_mpp with Rockchip MPP test fixtures
 2026-04-11 01:34:44 +08:00
csvke
fc059208a7 RV1126BP-70: Add Rockchip MPP plugin for hardware encoder/decoder monitoring 
- New plugin: glances/plugins/mpp/ with Rockchip MPP backend
- Reads per-engine load/utilization from /proc/mpp_service/load
- Tracks active sessions from /proc/mpp_service/sessions-summary
- Auto-enables load_interval when not set
- Displays RKVENC, RKVDEC, RKJPEGD engines with load % and session count
- TUI: Added to top bar with hotkey '8' to toggle
- WebUI: Vue component, uiconfig, CSS, rebuilt bundle
- Tested on Rockchip RV1126B-P with ffmpeg rkmpp HW transcode
 2026-04-11 01:34:44 +08:00
dependabot[bot]
1315531d7b Bump the actions group with 2 updates 
Bumps the actions group with 2 updates: [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) and [docker/login-action](https://github.com/docker/login-action).


Updates `pypa/gh-action-pypi-publish` from 1.13.0 to 1.14.0
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases)
- [Commits](ed0c53931b...cef221092e)

Updates `docker/login-action` from 4.0.0 to 4.1.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](b45d80f862...4907a6ddec)

---
updated-dependencies:
- dependency-name: pypa/gh-action-pypi-publish
  dependency-version: 1.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: docker/login-action
  dependency-version: 4.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-09 05:20:40 +00:00
dependabot[bot]
ad49eebb4e Bump the npm group in /glances/outputs/static with 2 updates 
Bumps the npm group in /glances/outputs/static with 2 updates: [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint) and [webpack](https://github.com/webpack/webpack).


Updates `typescript-eslint` from 8.58.0 to 8.58.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.58.1/packages/typescript-eslint)

Updates `webpack` from 5.105.4 to 5.106.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](https://github.com/webpack/webpack/compare/v5.105.4...v5.106.0)

---
updated-dependencies:
- dependency-name: typescript-eslint
  dependency-version: 8.58.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: webpack
  dependency-version: 5.106.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-09 05:17:24 +00:00
morimori-dev
d339181f03 fix(cassandra): validate keyspace/table/replication_factor to prevent CQL injection 
Interpolating config values directly into CQL strings allows an attacker
with write access to glances.conf to inject arbitrary CQL statements via
the keyspace, table, or replication_factor fields.

Add _validate_cql_identifier() to enforce that keyspace and table contain
only letters, digits, and underscores (standard CQL identifier rules).
Cast replication_factor to int and reject values less than 1.

Fixes GHSA-grp3-h8m8-45p7 / CVE-2026-35588
 2026-04-09 09:29:59 +09:00
nicolargo
8aa613712a Merge branch 'issue3516' into develop 2026-04-06 17:48:21 +02:00
nicolargo
6940195b1a pycache file is put in wheel #3516 2026-04-06 17:48:01 +02:00
nicolargo
d07233857b Windows-curses noz support Python 3.14 2026-04-04 16:49:34 +02:00
nicolargo
eb6b8c848f Update WebUI 2026-04-04 16:15:56 +02:00
nicolargo
f72edef56a Revert "Merge pull request #3507 from duriantaco/remove-dead-code" 
This reverts commit 1ed473d429, reversing
changes made to 183e2a4200.
 2026-04-04 16:13:17 +02:00
nicolargo
81d6db5040 Merge branch 'develop' of github.com:nicolargo/glances into develop 2026-04-04 16:05:49 +02:00
Nicolas Hennion
c348bb3ed4 Merge pull request #3509 from nicolargo/dependabot/npm_and_yarn/glances/outputs/static/npm-09a430aeca 
Bump the npm group in /glances/outputs/static with 3 updates
 2026-04-04 16:05:34 +02:00
Nicolas Hennion
1ed473d429 Merge pull request #3507 from duriantaco/remove-dead-code 
Remove dead code
 2026-04-04 16:05:15 +02:00
Nicolas Hennion
183e2a4200 Merge pull request #3510 from nicolargo/dependabot/github_actions/actions-fd00acb19b 
Bump github/codeql-action from 4.34.1 to 4.35.1 in the actions group
 2026-04-04 16:01:39 +02:00
nicolargo
196b3dc537 Merge branch 'develop' of github.com:nicolargo/glances into develop 2026-04-04 15:50:18 +02:00
dependabot[bot]
bf3a651b7d Bump github/codeql-action from 4.34.1 to 4.35.1 in the actions group 
Bumps the actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 4.34.1 to 4.35.1
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](3869755554...c10b8064de)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-02 07:03:07 +00:00
dependabot[bot]
ea78714a0b Bump the npm group in /glances/outputs/static with 3 updates 
Bumps the npm group in /glances/outputs/static with 3 updates: [hotkeys-js](https://github.com/jaywcjlove/hotkeys-js), [lodash](https://github.com/lodash/lodash) and [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint).


Updates `hotkeys-js` from 4.0.2 to 4.0.3
- [Release notes](https://github.com/jaywcjlove/hotkeys-js/releases)
- [Commits](https://github.com/jaywcjlove/hotkeys-js/compare/v4.0.2...v4.0.3)

Updates `lodash` from 4.17.23 to 4.18.1
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.23...4.18.1)

Updates `typescript-eslint` from 8.57.2 to 8.58.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/typescript-eslint/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.58.0/packages/typescript-eslint)

---
updated-dependencies:
- dependency-name: hotkeys-js
  dependency-version: 4.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: lodash
  dependency-version: 4.18.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: typescript-eslint
  dependency-version: 8.58.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-02 06:59:09 +00:00
duriantaco
ae4e31ec05 chore: remove 14 verified dead functions and methods 2026-03-31 17:50:44 +08:00
duriantaco
6cfec83a62 chore: remove 14 verified dead functions and methods 2026-03-31 17:50:29 +08:00
Nicolas Hennion
3d2f31be61 Back to develop 2026-03-31 06:22:21 +00:00
Nicolas Hennion
fd7f15e397 Merge master 2026-03-31 06:09:26 +00:00
Nicolas Hennion
9e1200bd5a Correct CI v2 v4.5.3.2 2026-03-31 06:02:38 +00:00
Nicolas Hennion
8bd7c9916c Update CI v4.5.3.1 2026-03-30 16:47:19 +00:00
Nicolas Hennion
915d2e68bd Merge pull request #3499 from csvke/RV1126BP-68-Add-RV1126B-NPU-support-for-Glances 
fix: support single-core Rockchip NPU load parsing and improve device naming
 2026-03-30 13:58:44 +02:00