← Back to all sparks
P

Postiz

MARKETING
Velocity2.5

Open-source social media scheduling and management platform.

Postiz's recent cadence is mostly security patching, with one new network added

social-media-schedulingopen-sourcesecurityintegrationsself-hosted
Current state
Postiz is an open-source social-media scheduling tool, and its recent releases skew toward security: two of the last four are urgent vulnerability patches users are told to apply immediately. The non-security work is incremental — a MeWe integration and a Stripe configuration fix.
Where it's heading
For a self-hosted product, this security-forward cadence is the story: keeping the deployment safe matters as much as features. Integration breadth grows slowly alongside the patching, MeWe being the latest network added.
Prediction
Expect the alternating pattern to continue — periodic security releases punctuated by added social networks and integration fixes. Nothing in these entries signals a larger feature pivot.

Recent moves

  1. 11d ago

    Security fix for advisory PSA-2026-NWZN9J

    An urgent security release (advisory PSA-2026-NWZN9J) with an immediate-upgrade recommendation — the second such patch in this window, underscoring how much of Postiz's recent cadence is hardening rather than features.

    View source ↗
  2. 3mo ago

    Patches two GHSA security advisories

    Another immediate-upgrade security release, closing two GHSA advisories. Part of the steady security-maintenance rhythm that dominates Postiz's recent history.

    View source ↗
  3. 3mo ago

    MeWe Integration, Integration Fixes & PR Quality

    Adds a MeWe integration plus a PR-quality CI workflow and OAuth/integration fixes — the main feature-bearing release in this set, extending Postiz's network coverage incrementally.

    View source ↗
  4. 3mo ago

    Fix for stripe to still post when no strike key has been set

    A narrow fix so posting still works when Stripe isn't configured. Pure maintenance, invisible to most users.

    View source ↗