apps: bump library (#1222)

truenas · Dec 23, 2024 · 7934880 · 7934880
1 parent 269607e
commit 7934880
Show file tree

Hide file tree

Showing 7,550 changed files with 62,764 additions and 62,008 deletions.
diff --git a/ix-dev/community/actual-budget/app.yaml b/ix-dev/community/actual-budget/app.yaml
@@ -10,8 +10,8 @@ icon: https://media.sys.truenas.net/apps/actual-budget/icons/icon.png
 keywords:
 - finance
 - budget
-lib_version: 2.1.5
-lib_version_hash: 94754830801a8fa90e04e35d324a34a51b90d5919e544ebc1018e065adb02a12
+lib_version: 2.1.6
+lib_version_hash: 84c965e8b9bea696765ab62b8ee3238162fe7807d0f0a61cf9c153994a47fa90
 maintainers:
 - email: dev@ixsystems.com
   name: truenas
@@ -32,4 +32,4 @@ sources:
 - https://hub.docker.com/r/actualbudget/actual-server
 title: Actual Budget
 train: community
-version: 1.2.6
+version: 1.2.7
diff --git a/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py b/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py
diff --git a/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py b/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py
diff --git a/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py b/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py
diff --git a/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py b/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py
diff --git a/...t/templates/library/base_v2_1_5/deploy.py → ...t/templates/library/base_v2_1_6/deploy.py b/...t/templates/library/base_v2_1_5/deploy.py → ...t/templates/library/base_v2_1_6/deploy.py
diff --git a/...get/templates/library/base_v2_1_5/deps.py → ...get/templates/library/base_v2_1_6/deps.py b/...get/templates/library/base_v2_1_5/deps.py → ...get/templates/library/base_v2_1_6/deps.py
diff --git a/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py b/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py
diff --git a/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py b/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py
diff --git a/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py b/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py
diff --git a/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py b/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py
diff --git a/...t/templates/library/base_v2_1_5/device.py → ...t/templates/library/base_v2_1_6/device.py b/...t/templates/library/base_v2_1_5/device.py → ...t/templates/library/base_v2_1_6/device.py
diff --git a/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py b/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py
diff --git a/...dget/templates/library/base_v2_1_5/dns.py → ...dget/templates/library/base_v2_1_6/dns.py b/...dget/templates/library/base_v2_1_5/dns.py → ...dget/templates/library/base_v2_1_6/dns.py
diff --git a/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py b/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py
diff --git a/...et/templates/library/base_v2_1_5/error.py → ...et/templates/library/base_v2_1_6/error.py b/...et/templates/library/base_v2_1_5/error.py → ...et/templates/library/base_v2_1_6/error.py
diff --git a/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py b/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py
diff --git a/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py b/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py
diff --git a/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py b/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py
diff --git a/...t/templates/library/base_v2_1_5/labels.py → ...t/templates/library/base_v2_1_6/labels.py b/...t/templates/library/base_v2_1_5/labels.py → ...t/templates/library/base_v2_1_6/labels.py
diff --git a/...et/templates/library/base_v2_1_5/notes.py → ...et/templates/library/base_v2_1_6/notes.py b/...et/templates/library/base_v2_1_5/notes.py → ...et/templates/library/base_v2_1_6/notes.py
diff --git a/...t/templates/library/base_v2_1_5/portal.py → ...t/templates/library/base_v2_1_6/portal.py b/...t/templates/library/base_v2_1_5/portal.py → ...t/templates/library/base_v2_1_6/portal.py
diff --git a/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py b/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py
diff --git a/...et/templates/library/base_v2_1_5/ports.py → ...et/templates/library/base_v2_1_6/ports.py b/...et/templates/library/base_v2_1_5/ports.py → ...et/templates/library/base_v2_1_6/ports.py
diff --git a/...t/templates/library/base_v2_1_5/render.py → ...t/templates/library/base_v2_1_6/render.py b/...t/templates/library/base_v2_1_5/render.py → ...t/templates/library/base_v2_1_6/render.py
diff --git a/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py b/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py
diff --git a/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py b/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py
diff --git a/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py b/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py
diff --git a/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py b/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py
diff --git a/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py b/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py
diff --git a/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py b/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py
diff --git a/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py b/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py
diff --git a/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py b/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py
diff --git a/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py b/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py
diff --git a/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py b/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py
diff --git a/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py b/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py
diff --git a/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py b/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py
diff --git a/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py b/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py
diff --git a/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py b/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py
diff --git a/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py b/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py
diff --git a/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py b/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py
diff --git a/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py b/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py
diff --git a/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py b/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py
diff --git a/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py b/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py
diff --git a/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py b/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py
diff --git a/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py b/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py
diff --git a/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py b/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py
diff --git a/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py b/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py
diff --git a/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py b/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py
diff --git a/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py b/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py
@@ -49,6 +49,12 @@ def test_is_allowed_path_direct(test_path, expected):
     assert is_allowed_path(test_path) == expected
 
 
+@patch.object(Path, "resolve", mock_resolve)
+def test_is_allowed_path_ix_volume():
+    """Test that IX volumes are not allowed"""
+    assert is_allowed_path("/mnt/.ix-apps/something", True)
+
+
 @patch.object(Path, "resolve", mock_resolve)
 def test_is_allowed_path_symlink(tmp_path):
     """

diff --git a/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py b/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py
diff --git a/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py b/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py
@@ -150,7 +150,7 @@ def valid_fs_path_or_raise(path: str):
     return path
 
 
-def is_allowed_path(input_path: str) -> bool:
+def is_allowed_path(input_path: str, is_ix_volume: bool = False) -> bool:
     """
     Validates that the given path (after resolving symlinks) is not
     one of the restricted paths or within those restricted directories.
@@ -159,15 +159,15 @@ def is_allowed_path(input_path: str) -> bool:
     """
     # Resolve the path to avoid symlink bypasses
     real_path = Path(input_path).resolve()
-    for restricted in RESTRICTED:
+    for restricted in RESTRICTED if not is_ix_volume else [r for r in RESTRICTED if r != Path("/mnt/.ix-apps")]:
         if real_path.is_relative_to(restricted):
             return False
 
     return real_path not in RESTRICTED_IN
 
 
-def allowed_fs_host_path_or_raise(path: str):
-    if not is_allowed_path(path):
+def allowed_fs_host_path_or_raise(path: str, is_ix_volume: bool = False):
+    if not is_allowed_path(path, is_ix_volume):
         raise RenderError(f"Path [{path}] is not allowed to be mounted.")
     return path
 

diff --git a/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py b/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py
diff --git a/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py b/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py
diff --git a/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py b/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py
@@ -58,7 +58,7 @@ def __init__(self, render_instance: "Render", config: "IxStorageIxVolumeConfig")
             )
 
         path = valid_fs_path_or_raise(ix_volumes[dataset_name].rstrip("/"))
-        self.source = allowed_fs_host_path_or_raise(path)
+        self.source = allowed_fs_host_path_or_raise(path, True)
 
     def get(self):
         return self.source

diff --git a/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py b/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py
diff --git a/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py b/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py
diff --git a/ix-dev/community/adguard-home/app.yaml b/ix-dev/community/adguard-home/app.yaml
@@ -20,8 +20,8 @@ icon: https://media.sys.truenas.net/apps/adguard-home/icons/icon.svg
 keywords:
 - dns
 - adblock
-lib_version: 2.1.5
-lib_version_hash: 94754830801a8fa90e04e35d324a34a51b90d5919e544ebc1018e065adb02a12
+lib_version: 2.1.6
+lib_version_hash: 84c965e8b9bea696765ab62b8ee3238162fe7807d0f0a61cf9c153994a47fa90
 maintainers:
 - email: dev@ixsystems.com
   name: truenas
@@ -42,4 +42,4 @@ sources:
 - https://hub.docker.com/r/adguard/adguardhome
 title: AdGuard Home
 train: community
-version: 1.1.8
+version: 1.1.9
diff --git a/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py b/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py
diff --git a/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py b/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py
diff --git a/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py b/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py
diff --git a/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py b/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py
diff --git a/...e/templates/library/base_v2_1_5/deploy.py → ...e/templates/library/base_v2_1_6/deploy.py b/...e/templates/library/base_v2_1_5/deploy.py → ...e/templates/library/base_v2_1_6/deploy.py
diff --git a/...ome/templates/library/base_v2_1_5/deps.py → ...ome/templates/library/base_v2_1_6/deps.py b/...ome/templates/library/base_v2_1_5/deps.py → ...ome/templates/library/base_v2_1_6/deps.py
diff --git a/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py b/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py
diff --git a/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py b/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py
diff --git a/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py b/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py
diff --git a/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py b/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py
diff --git a/...e/templates/library/base_v2_1_5/device.py → ...e/templates/library/base_v2_1_6/device.py b/...e/templates/library/base_v2_1_5/device.py → ...e/templates/library/base_v2_1_6/device.py
diff --git a/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py b/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py
diff --git a/...home/templates/library/base_v2_1_5/dns.py → ...home/templates/library/base_v2_1_6/dns.py b/...home/templates/library/base_v2_1_5/dns.py → ...home/templates/library/base_v2_1_6/dns.py
diff --git a/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py b/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py
diff --git a/...me/templates/library/base_v2_1_5/error.py → ...me/templates/library/base_v2_1_6/error.py b/...me/templates/library/base_v2_1_5/error.py → ...me/templates/library/base_v2_1_6/error.py
diff --git a/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py b/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py
diff --git a/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py b/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py
diff --git a/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py b/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py
diff --git a/...e/templates/library/base_v2_1_5/labels.py → ...e/templates/library/base_v2_1_6/labels.py b/...e/templates/library/base_v2_1_5/labels.py → ...e/templates/library/base_v2_1_6/labels.py
diff --git a/...me/templates/library/base_v2_1_5/notes.py → ...me/templates/library/base_v2_1_6/notes.py b/...me/templates/library/base_v2_1_5/notes.py → ...me/templates/library/base_v2_1_6/notes.py
diff --git a/...e/templates/library/base_v2_1_5/portal.py → ...e/templates/library/base_v2_1_6/portal.py b/...e/templates/library/base_v2_1_5/portal.py → ...e/templates/library/base_v2_1_6/portal.py
diff --git a/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py b/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py
diff --git a/...me/templates/library/base_v2_1_5/ports.py → ...me/templates/library/base_v2_1_6/ports.py b/...me/templates/library/base_v2_1_5/ports.py → ...me/templates/library/base_v2_1_6/ports.py
diff --git a/...e/templates/library/base_v2_1_5/render.py → ...e/templates/library/base_v2_1_6/render.py b/...e/templates/library/base_v2_1_5/render.py → ...e/templates/library/base_v2_1_6/render.py
diff --git a/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py b/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py
diff --git a/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py b/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py
diff --git a/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py b/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py
diff --git a/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py b/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py
diff --git a/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py b/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py
diff --git a/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py b/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py
diff --git a/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py b/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py
diff --git a/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py b/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py
diff --git a/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py b/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py
diff --git a/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py b/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py
diff --git a/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py b/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py
diff --git a/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py b/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py
diff --git a/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py b/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py
diff --git a/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py b/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py
diff --git a/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py b/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py
diff --git a/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py b/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py
diff --git a/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py b/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py
diff --git a/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py b/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py
diff --git a/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py b/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py
diff --git a/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py b/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py
diff --git a/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py b/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py
diff --git a/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py b/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py
diff --git a/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py b/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py
diff --git a/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py b/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py
diff --git a/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py b/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py
@@ -49,6 +49,12 @@ def test_is_allowed_path_direct(test_path, expected):
     assert is_allowed_path(test_path) == expected
 
 
+@patch.object(Path, "resolve", mock_resolve)
+def test_is_allowed_path_ix_volume():
+    """Test that IX volumes are not allowed"""
+    assert is_allowed_path("/mnt/.ix-apps/something", True)
+
+
 @patch.object(Path, "resolve", mock_resolve)
 def test_is_allowed_path_symlink(tmp_path):
     """

diff --git a/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py b/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py
diff --git a/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py b/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py
@@ -150,7 +150,7 @@ def valid_fs_path_or_raise(path: str):
     return path
 
 
-def is_allowed_path(input_path: str) -> bool:
+def is_allowed_path(input_path: str, is_ix_volume: bool = False) -> bool:
     """
     Validates that the given path (after resolving symlinks) is not
     one of the restricted paths or within those restricted directories.
@@ -159,15 +159,15 @@ def is_allowed_path(input_path: str) -> bool:
     """
     # Resolve the path to avoid symlink bypasses
     real_path = Path(input_path).resolve()
-    for restricted in RESTRICTED:
+    for restricted in RESTRICTED if not is_ix_volume else [r for r in RESTRICTED if r != Path("/mnt/.ix-apps")]:
         if real_path.is_relative_to(restricted):
             return False
 
     return real_path not in RESTRICTED_IN
 
 
-def allowed_fs_host_path_or_raise(path: str):
-    if not is_allowed_path(path):
+def allowed_fs_host_path_or_raise(path: str, is_ix_volume: bool = False):
+    if not is_allowed_path(path, is_ix_volume):
         raise RenderError(f"Path [{path}] is not allowed to be mounted.")
     return path
 

diff --git a/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py b/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py
diff --git a/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py b/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py
diff --git a/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py b/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py
@@ -58,7 +58,7 @@ def __init__(self, render_instance: "Render", config: "IxStorageIxVolumeConfig")
             )
 
         path = valid_fs_path_or_raise(ix_volumes[dataset_name].rstrip("/"))
-        self.source = allowed_fs_host_path_or_raise(path)
+        self.source = allowed_fs_host_path_or_raise(path, True)
 
     def get(self):
         return self.source

diff --git a/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py b/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py
diff --git a/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py b/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py
diff --git a/ix-dev/community/audiobookshelf/app.yaml b/ix-dev/community/audiobookshelf/app.yaml
@@ -9,8 +9,8 @@ icon: https://media.sys.truenas.net/apps/audiobookshelf/icons/icon.svg
 keywords:
 - media
 - audiobook
-lib_version: 2.1.5
-lib_version_hash: 94754830801a8fa90e04e35d324a34a51b90d5919e544ebc1018e065adb02a12
+lib_version: 2.1.6
+lib_version_hash: 84c965e8b9bea696765ab62b8ee3238162fe7807d0f0a61cf9c153994a47fa90
 maintainers:
 - email: dev@ixsystems.com
   name: truenas
@@ -33,4 +33,4 @@ sources:
 - https://github.com/advplyr/audiobookshelf
 title: Audiobookshelf
 train: community
-version: 1.3.6
+version: 1.3.7
diff --git a/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py b/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py
diff --git a/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py b/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py
diff --git a/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py b/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py
diff --git a/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py b/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py
diff --git a/...f/templates/library/base_v2_1_5/deploy.py → ...f/templates/library/base_v2_1_6/deploy.py b/...f/templates/library/base_v2_1_5/deploy.py → ...f/templates/library/base_v2_1_6/deploy.py
diff --git a/...elf/templates/library/base_v2_1_5/deps.py → ...elf/templates/library/base_v2_1_6/deps.py b/...elf/templates/library/base_v2_1_5/deps.py → ...elf/templates/library/base_v2_1_6/deps.py
diff --git a/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py b/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py
diff --git a/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py b/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py
diff --git a/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py b/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py
diff --git a/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py b/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py
diff --git a/...f/templates/library/base_v2_1_5/device.py → ...f/templates/library/base_v2_1_6/device.py b/...f/templates/library/base_v2_1_5/device.py → ...f/templates/library/base_v2_1_6/device.py
diff --git a/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py b/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py
diff --git a/...helf/templates/library/base_v2_1_5/dns.py → ...helf/templates/library/base_v2_1_6/dns.py b/...helf/templates/library/base_v2_1_5/dns.py → ...helf/templates/library/base_v2_1_6/dns.py
diff --git a/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py b/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py
diff --git a/...lf/templates/library/base_v2_1_5/error.py → ...lf/templates/library/base_v2_1_6/error.py b/...lf/templates/library/base_v2_1_5/error.py → ...lf/templates/library/base_v2_1_6/error.py
diff --git a/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py b/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py
diff --git a/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py b/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py
diff --git a/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py b/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py
diff --git a/...f/templates/library/base_v2_1_5/labels.py → ...f/templates/library/base_v2_1_6/labels.py b/...f/templates/library/base_v2_1_5/labels.py → ...f/templates/library/base_v2_1_6/labels.py
diff --git a/...lf/templates/library/base_v2_1_5/notes.py → ...lf/templates/library/base_v2_1_6/notes.py b/...lf/templates/library/base_v2_1_5/notes.py → ...lf/templates/library/base_v2_1_6/notes.py
diff --git a/...f/templates/library/base_v2_1_5/portal.py → ...f/templates/library/base_v2_1_6/portal.py b/...f/templates/library/base_v2_1_5/portal.py → ...f/templates/library/base_v2_1_6/portal.py
diff --git a/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py b/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py
diff --git a/...lf/templates/library/base_v2_1_5/ports.py → ...lf/templates/library/base_v2_1_6/ports.py b/...lf/templates/library/base_v2_1_5/ports.py → ...lf/templates/library/base_v2_1_6/ports.py
diff --git a/...f/templates/library/base_v2_1_5/render.py → ...f/templates/library/base_v2_1_6/render.py b/...f/templates/library/base_v2_1_5/render.py → ...f/templates/library/base_v2_1_6/render.py
diff --git a/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py b/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py
diff --git a/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py b/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py
diff --git a/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py b/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py
diff --git a/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py b/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py
diff --git a/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py b/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py
diff --git a/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py b/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py
diff --git a/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py b/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py
diff --git a/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py b/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py
diff --git a/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py b/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py
diff --git a/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py b/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py
diff --git a/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py b/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py
diff --git a/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py b/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py
diff --git a/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py b/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py
diff --git a/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py b/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py
diff --git a/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py b/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py
diff --git a/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py b/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py
diff --git a/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py b/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py
diff --git a/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py b/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py
diff --git a/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py b/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py
diff --git a/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py b/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py
diff --git a/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py b/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py
diff --git a/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py b/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py
diff --git a/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py b/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py
diff --git a/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py b/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py
diff --git a/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py b/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py
@@ -49,6 +49,12 @@ def test_is_allowed_path_direct(test_path, expected):
     assert is_allowed_path(test_path) == expected
 
 
+@patch.object(Path, "resolve", mock_resolve)
+def test_is_allowed_path_ix_volume():
+    """Test that IX volumes are not allowed"""
+    assert is_allowed_path("/mnt/.ix-apps/something", True)
+
+
 @patch.object(Path, "resolve", mock_resolve)
 def test_is_allowed_path_symlink(tmp_path):
     """

diff --git a/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py b/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py
diff --git a/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py b/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py
@@ -150,7 +150,7 @@ def valid_fs_path_or_raise(path: str):
     return path
 
 
-def is_allowed_path(input_path: str) -> bool:
+def is_allowed_path(input_path: str, is_ix_volume: bool = False) -> bool:
     """
     Validates that the given path (after resolving symlinks) is not
     one of the restricted paths or within those restricted directories.
@@ -159,15 +159,15 @@ def is_allowed_path(input_path: str) -> bool:
     """
     # Resolve the path to avoid symlink bypasses
     real_path = Path(input_path).resolve()
-    for restricted in RESTRICTED:
+    for restricted in RESTRICTED if not is_ix_volume else [r for r in RESTRICTED if r != Path("/mnt/.ix-apps")]:
         if real_path.is_relative_to(restricted):
             return False
 
     return real_path not in RESTRICTED_IN
 
 
-def allowed_fs_host_path_or_raise(path: str):
-    if not is_allowed_path(path):
+def allowed_fs_host_path_or_raise(path: str, is_ix_volume: bool = False):
+    if not is_allowed_path(path, is_ix_volume):
         raise RenderError(f"Path [{path}] is not allowed to be mounted.")
     return path
 

diff --git a/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py b/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py
diff --git a/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py b/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py
diff --git a/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py b/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py
@@ -58,7 +58,7 @@ def __init__(self, render_instance: "Render", config: "IxStorageIxVolumeConfig")
             )
 
         path = valid_fs_path_or_raise(ix_volumes[dataset_name].rstrip("/"))
-        self.source = allowed_fs_host_path_or_raise(path)
+        self.source = allowed_fs_host_path_or_raise(path, True)
 
     def get(self):
         return self.source

diff --git a/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py b/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py
diff --git a/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py b/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py
diff --git a/ix-dev/community/autobrr/app.yaml b/ix-dev/community/autobrr/app.yaml
@@ -10,8 +10,8 @@ keywords:
 - media
 - torrent
 - usenet
-lib_version: 2.1.5
-lib_version_hash: 94754830801a8fa90e04e35d324a34a51b90d5919e544ebc1018e065adb02a12
+lib_version: 2.1.6
+lib_version_hash: 84c965e8b9bea696765ab62b8ee3238162fe7807d0f0a61cf9c153994a47fa90
 maintainers:
 - email: dev@ixsystems.com
   name: truenas
@@ -31,4 +31,4 @@ sources:
 - https://github.com/autobrr/autobrr
 title: Autobrr
 train: community
-version: 1.2.8
+version: 1.2.9
diff --git a/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py b/...templates/library/base_v2_1_5/__init__.py → ...templates/library/base_v2_1_6/__init__.py
diff --git a/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py b/.../templates/library/base_v2_1_5/configs.py → .../templates/library/base_v2_1_6/configs.py
diff --git a/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py b/...emplates/library/base_v2_1_5/container.py → ...emplates/library/base_v2_1_6/container.py
diff --git a/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py b/.../templates/library/base_v2_1_5/depends.py → .../templates/library/base_v2_1_6/depends.py
diff --git a/...r/templates/library/base_v2_1_5/deploy.py → ...r/templates/library/base_v2_1_6/deploy.py b/...r/templates/library/base_v2_1_5/deploy.py → ...r/templates/library/base_v2_1_6/deploy.py
diff --git a/...brr/templates/library/base_v2_1_5/deps.py → ...brr/templates/library/base_v2_1_6/deps.py b/...brr/templates/library/base_v2_1_5/deps.py → ...brr/templates/library/base_v2_1_6/deps.py
diff --git a/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py b/...lates/library/base_v2_1_5/deps_mariadb.py → ...lates/library/base_v2_1_6/deps_mariadb.py
diff --git a/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py b/...mplates/library/base_v2_1_5/deps_perms.py → ...mplates/library/base_v2_1_6/deps_perms.py
diff --git a/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py b/...ates/library/base_v2_1_5/deps_postgres.py → ...ates/library/base_v2_1_6/deps_postgres.py
diff --git a/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py b/...mplates/library/base_v2_1_5/deps_redis.py → ...mplates/library/base_v2_1_6/deps_redis.py
diff --git a/...r/templates/library/base_v2_1_5/device.py → ...r/templates/library/base_v2_1_6/device.py b/...r/templates/library/base_v2_1_5/device.py → ...r/templates/library/base_v2_1_6/device.py
diff --git a/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py b/.../templates/library/base_v2_1_5/devices.py → .../templates/library/base_v2_1_6/devices.py
diff --git a/...obrr/templates/library/base_v2_1_5/dns.py → ...obrr/templates/library/base_v2_1_6/dns.py b/...obrr/templates/library/base_v2_1_5/dns.py → ...obrr/templates/library/base_v2_1_6/dns.py
diff --git a/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py b/...plates/library/base_v2_1_5/environment.py → ...plates/library/base_v2_1_6/environment.py
diff --git a/...rr/templates/library/base_v2_1_5/error.py → ...rr/templates/library/base_v2_1_6/error.py b/...rr/templates/library/base_v2_1_5/error.py → ...rr/templates/library/base_v2_1_6/error.py
diff --git a/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py b/...emplates/library/base_v2_1_5/formatter.py → ...emplates/library/base_v2_1_6/formatter.py
diff --git a/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py b/...emplates/library/base_v2_1_5/functions.py → ...emplates/library/base_v2_1_6/functions.py
diff --git a/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py b/...plates/library/base_v2_1_5/healthcheck.py → ...plates/library/base_v2_1_6/healthcheck.py
diff --git a/...r/templates/library/base_v2_1_5/labels.py → ...r/templates/library/base_v2_1_6/labels.py b/...r/templates/library/base_v2_1_5/labels.py → ...r/templates/library/base_v2_1_6/labels.py
diff --git a/...rr/templates/library/base_v2_1_5/notes.py → ...rr/templates/library/base_v2_1_6/notes.py b/...rr/templates/library/base_v2_1_5/notes.py → ...rr/templates/library/base_v2_1_6/notes.py
diff --git a/...r/templates/library/base_v2_1_5/portal.py → ...r/templates/library/base_v2_1_6/portal.py b/...r/templates/library/base_v2_1_5/portal.py → ...r/templates/library/base_v2_1_6/portal.py
diff --git a/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py b/.../templates/library/base_v2_1_5/portals.py → .../templates/library/base_v2_1_6/portals.py
diff --git a/...rr/templates/library/base_v2_1_5/ports.py → ...rr/templates/library/base_v2_1_6/ports.py b/...rr/templates/library/base_v2_1_5/ports.py → ...rr/templates/library/base_v2_1_6/ports.py
diff --git a/...r/templates/library/base_v2_1_5/render.py → ...r/templates/library/base_v2_1_6/render.py b/...r/templates/library/base_v2_1_5/render.py → ...r/templates/library/base_v2_1_6/render.py
diff --git a/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py b/...emplates/library/base_v2_1_5/resources.py → ...emplates/library/base_v2_1_6/resources.py
diff --git a/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py b/.../templates/library/base_v2_1_5/restart.py → .../templates/library/base_v2_1_6/restart.py
diff --git a/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py b/.../templates/library/base_v2_1_5/storage.py → .../templates/library/base_v2_1_6/storage.py
diff --git a/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py b/.../templates/library/base_v2_1_5/sysctls.py → .../templates/library/base_v2_1_6/sysctls.py
diff --git a/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py b/...tes/library/base_v2_1_5/tests/__init__.py → ...tes/library/base_v2_1_6/tests/__init__.py
diff --git a/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py b/...ary/base_v2_1_5/tests/test_build_image.py → ...ary/base_v2_1_6/tests/test_build_image.py
diff --git a/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py b/...library/base_v2_1_5/tests/test_configs.py → ...library/base_v2_1_6/tests/test_configs.py
diff --git a/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py b/...brary/base_v2_1_5/tests/test_container.py → ...brary/base_v2_1_6/tests/test_container.py
diff --git a/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py b/...library/base_v2_1_5/tests/test_depends.py → ...library/base_v2_1_6/tests/test_depends.py
diff --git a/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py b/...es/library/base_v2_1_5/tests/test_deps.py → ...es/library/base_v2_1_6/tests/test_deps.py
diff --git a/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py b/.../library/base_v2_1_5/tests/test_device.py → .../library/base_v2_1_6/tests/test_device.py
diff --git a/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py b/...tes/library/base_v2_1_5/tests/test_dns.py → ...tes/library/base_v2_1_6/tests/test_dns.py
diff --git a/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py b/...ary/base_v2_1_5/tests/test_environment.py → ...ary/base_v2_1_6/tests/test_environment.py
diff --git a/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py b/...brary/base_v2_1_5/tests/test_formatter.py → ...brary/base_v2_1_6/tests/test_formatter.py
diff --git a/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py b/...brary/base_v2_1_5/tests/test_functions.py → ...brary/base_v2_1_6/tests/test_functions.py
diff --git a/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py b/...ary/base_v2_1_5/tests/test_healthcheck.py → ...ary/base_v2_1_6/tests/test_healthcheck.py
diff --git a/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py b/.../library/base_v2_1_5/tests/test_labels.py → .../library/base_v2_1_6/tests/test_labels.py
diff --git a/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py b/...s/library/base_v2_1_5/tests/test_notes.py → ...s/library/base_v2_1_6/tests/test_notes.py
diff --git a/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py b/.../library/base_v2_1_5/tests/test_portal.py → .../library/base_v2_1_6/tests/test_portal.py
diff --git a/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py b/...s/library/base_v2_1_5/tests/test_ports.py → ...s/library/base_v2_1_6/tests/test_ports.py
diff --git a/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py b/.../library/base_v2_1_5/tests/test_render.py → .../library/base_v2_1_6/tests/test_render.py
diff --git a/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py b/...brary/base_v2_1_5/tests/test_resources.py → ...brary/base_v2_1_6/tests/test_resources.py
diff --git a/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py b/...library/base_v2_1_5/tests/test_restart.py → ...library/base_v2_1_6/tests/test_restart.py
diff --git a/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py b/...library/base_v2_1_5/tests/test_sysctls.py → ...library/base_v2_1_6/tests/test_sysctls.py
diff --git a/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py b/...ary/base_v2_1_5/tests/test_validations.py → ...ary/base_v2_1_6/tests/test_validations.py
@@ -49,6 +49,12 @@ def test_is_allowed_path_direct(test_path, expected):
     assert is_allowed_path(test_path) == expected
 
 
+@patch.object(Path, "resolve", mock_resolve)
+def test_is_allowed_path_ix_volume():
+    """Test that IX volumes are not allowed"""
+    assert is_allowed_path("/mnt/.ix-apps/something", True)
+
+
 @patch.object(Path, "resolve", mock_resolve)
 def test_is_allowed_path_symlink(tmp_path):
     """

diff --git a/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py b/...library/base_v2_1_5/tests/test_volumes.py → ...library/base_v2_1_6/tests/test_volumes.py
diff --git a/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py b/...plates/library/base_v2_1_5/validations.py → ...plates/library/base_v2_1_6/validations.py
@@ -150,7 +150,7 @@ def valid_fs_path_or_raise(path: str):
     return path
 
 
-def is_allowed_path(input_path: str) -> bool:
+def is_allowed_path(input_path: str, is_ix_volume: bool = False) -> bool:
     """
     Validates that the given path (after resolving symlinks) is not
     one of the restricted paths or within those restricted directories.
@@ -159,15 +159,15 @@ def is_allowed_path(input_path: str) -> bool:
     """
     # Resolve the path to avoid symlink bypasses
     real_path = Path(input_path).resolve()
-    for restricted in RESTRICTED:
+    for restricted in RESTRICTED if not is_ix_volume else [r for r in RESTRICTED if r != Path("/mnt/.ix-apps")]:
         if real_path.is_relative_to(restricted):
             return False
 
     return real_path not in RESTRICTED_IN
 
 
-def allowed_fs_host_path_or_raise(path: str):
-    if not is_allowed_path(path):
+def allowed_fs_host_path_or_raise(path: str, is_ix_volume: bool = False):
+    if not is_allowed_path(path, is_ix_volume):
         raise RenderError(f"Path [{path}] is not allowed to be mounted.")
     return path
 

diff --git a/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py b/...lates/library/base_v2_1_5/volume_mount.py → ...lates/library/base_v2_1_6/volume_mount.py
diff --git a/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py b/...library/base_v2_1_5/volume_mount_types.py → ...library/base_v2_1_6/volume_mount_types.py
diff --git a/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py b/...tes/library/base_v2_1_5/volume_sources.py → ...tes/library/base_v2_1_6/volume_sources.py
@@ -58,7 +58,7 @@ def __init__(self, render_instance: "Render", config: "IxStorageIxVolumeConfig")
             )
 
         path = valid_fs_path_or_raise(ix_volumes[dataset_name].rstrip("/"))
-        self.source = allowed_fs_host_path_or_raise(path)
+        self.source = allowed_fs_host_path_or_raise(path, True)
 
     def get(self):
         return self.source

diff --git a/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py b/...lates/library/base_v2_1_5/volume_types.py → ...lates/library/base_v2_1_6/volume_types.py
diff --git a/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py b/.../templates/library/base_v2_1_5/volumes.py → .../templates/library/base_v2_1_6/volumes.py
diff --git a/ix-dev/community/bazarr/app.yaml b/ix-dev/community/bazarr/app.yaml
@@ -10,8 +10,8 @@ icon: https://media.sys.truenas.net/apps/bazarr/icons/icon.png
 keywords:
 - media
 - subtitles
-lib_version: 2.1.5
-lib_version_hash: 94754830801a8fa90e04e35d324a34a51b90d5919e544ebc1018e065adb02a12
+lib_version: 2.1.6
+lib_version_hash: 84c965e8b9bea696765ab62b8ee3238162fe7807d0f0a61cf9c153994a47fa90
 maintainers:
 - email: dev@ixsystems.com
   name: truenas
@@ -31,4 +31,4 @@ sources:
 - https://github.com/morpheus65535/bazarr
 title: Bazarr
 train: community
-version: 1.1.3
+version: 1.1.4