P
Postiz
MARKETING
Velocity2.5
Open-source social media scheduling and management platform.
Postiz's recent cadence is mostly security patching, with one new network added
social-media-schedulingopen-sourcesecurityintegrationsself-hosted
◆Current state
Postiz is an open-source social-media scheduling tool, and its recent releases skew toward security: two of the last four are urgent vulnerability patches users are told to apply immediately. The non-security work is incremental — a MeWe integration and a Stripe configuration fix.
◆Where it's heading
For a self-hosted product, this security-forward cadence is the story: keeping the deployment safe matters as much as features. Integration breadth grows slowly alongside the patching, MeWe being the latest network added.
◆Prediction
Expect the alternating pattern to continue — periodic security releases punctuated by added social networks and integration fixes. Nothing in these entries signals a larger feature pivot.
◆Recent moves
- 11d ago
Security fix for advisory PSA-2026-NWZN9J
An urgent security release (advisory PSA-2026-NWZN9J) with an immediate-upgrade recommendation — the second such patch in this window, underscoring how much of Postiz's recent cadence is hardening rather than features.
View source ↗ - 3mo ago
Patches two GHSA security advisories
Another immediate-upgrade security release, closing two GHSA advisories. Part of the steady security-maintenance rhythm that dominates Postiz's recent history.
View source ↗ - 3mo ago
MeWe Integration, Integration Fixes & PR Quality
Adds a MeWe integration plus a PR-quality CI workflow and OAuth/integration fixes — the main feature-bearing release in this set, extending Postiz's network coverage incrementally.
View source ↗ - 3mo ago
Fix for stripe to still post when no strike key has been set
A narrow fix so posting still works when Stripe isn't configured. Pure maintenance, invisible to most users.
View source ↗