Whiskers is in public beta. This page mirrors the roadmap in the project repository: what has shipped and what is planned next.

Status: Public BetaVersion v0.12.1License Apache-2.0

Already shipped

  • Prebuilt image on ghcr.io (multi-arch, Trivy-gated, SBOM) + Helm chart
  • Browser setup wizard — no .env required
  • Local login (e-mail + password) and SSO (Google/OIDC)
  • Live dashboard: CPU, RAM and health across all hosts
  • Container management: stats, logs, terminal, environment
  • Kubernetes: manage k3s clusters + run Whiskers via Helm
  • Git-based deployments (push-to-deploy) and private registries
  • Automatic image updates with one-click rollback
  • Self-backup & restore (encrypted, schedulable, crash-safe)
  • Scheduled tasks (cron) and HMAC-signed webhooks
  • CVE monitor (Trivy) for images and the host OS
  • Log search and alert rules
  • Deployment, compose editor and app store
  • MCP server with per-key permissions (Read / Write / Admin)
  • AI agent: advisor and acting mode, vision, live widgets
  • Guardrails, approvals (human-in-the-loop) and agent history
  • Infrastructure: firewall, nginx, systemd, SSL and volume backups
  • SSH-key-free operation over an mTLS mesh + verified host keys
  • Cloud control: power, snapshots and metrics (Hetzner/Hostinger)
  • Notifications: e-mail, Telegram, Discord, Slack, Ntfy, Matrix, Mattermost, webhook — with a persistent history
  • PostgreSQL as a database option next to SQLite
  • Light/dark/system mode, five color schemes, bilingual UI (EN/DE)
  • Fail-closed authorization and a complete audit log

Planned / up next

Accounts & roles

2FA (TOTP) and passkeys for the local login; server groups & tags; finer-grained roles (per-server scoping, teams).

Fleet & containers

Live Docker events instead of polling, editing resource limits (CPU/RAM) in place, richer compose templates.

Monitoring & triggers

Real traffic/anomaly detection with a dedicated “extreme traffic” trigger (today: thresholds plus a rolling z-score) and disk-space alerts.

Agent governance

Extend approvals to external / direct MCP calls, real per-tool diffs on the approval card, a larger rich-widget catalog.

Hardening & resilience

Break-glass emergency access via short-lived SSH certificates (step-ca); move the remaining environment settings into the UI.

Polish

Finish the last bilingual pages and messages; more screenshots and guided tours in the docs.

Follow along

This roadmap tracks the repository. Watch progress on GitHub — requests welcome as issues.