This is related to the recent massive Jellyfin upgrade. The Jellyfin team recommends to only upgrade directly to the new version from version 10.10.7.

I checked my server and I happened to be a bit slow, I got 10.10.3. Maybe that is fine but I don’t want to take any chances. Then I realised I have no idea how I’d get this specific version first before upgrading to the latest version, with using docker.

I tried finding the answer but somehow couldn’t really find a good page explaining it. Can I do this with docker compose or maybe it is better to just run this one time without compose? How to do it and what is easier?

    • WhyJiffie@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      3
      ·
      20 hours ago

      don’t forget to recreate the container after editing the file, or else you’ll keep running your previous Jellyfin version. “docker compose start” does not do it, “docker compose up” does when it detects a change.

    • seang96@spgrn.com
      link
      fedilink
      English
      arrow-up
      6
      ·
      1 day ago

      Its also good practice to include the sha256 digest after the version like

      DockerImage:v… @sha256:…

      If you pull without digest and say the maintainers get compromised and release an update with the same version tag with malicious stuff in it, then you won’t pull it automatically since the digest does not match.

      • ook@discuss.tchncs.deOP
        link
        fedilink
        English
        arrow-up
        1
        ·
        18 hours ago

        You can only do that if you get a specific version, or can this be done in some way with just leaving it to latest version?

        • seang96@spgrn.com
          link
          fedilink
          English
          arrow-up
          1
          ·
          17 hours ago

          I believe you can just do the sha but it would be a similar affect pinning it to that sxact docker image, but doing so without version tag makes it harder for you to know what you are running.

          The sha256 is generated by an algorithm based off of the bytes of the image wherr the tag is overwritable and pushed by the developer.