We've released #security updates for #Hollo (0.4.12, 0.5.7, and 0.6.6) to address a #vulnerability in the underlying #Fedify framework. These updates incorporate the latest Fedify security patches that fix CVE-2025-54888.
We strongly recommend all Hollo instance administrators update to the latest version for their respective release branch as soon as possible.
Update Instructions:
- Railway users: Go to your project dashboard, select your Hollo service, click the three dots menu in deployments, and choose “Redeploy”
- Docker users: Pull the latest image with
docker pull ghcr.io/fedify-dev/hollo:latestand restart your containers - Manual installations: Run
git pullto get the latest code, thenpnpm installand restart your service