Pi Gateway Release Notes

Version 1.4.0 - Documentation Site

Release Date: 2026-03-01 Compatibility: Raspberry Pi 4/5, ARM64/x86_64

What’s New

Documentation site — Professional documentation hosted on GitHub Pages at 1mb-dev.github.io/pi-gateway using Jekyll with the Just the Docs theme
Hierarchical docs structure — Reorganized documentation into Getting Started, Guides, Operations, Development, and Reference sections
5 example guides — Problem-oriented guides for quick install, SSH setup, VPN clients, dynamic DNS, and troubleshooting
Knowledge transfer document — Comprehensive 12-section technical guide for team onboarding
CI/CD for docs — Automated build and deploy workflow with strict front matter validation on PRs

Fixes

Pin trivy-action to v0.26.0 (was using unstable @master ref)
Fix SC2116 linting warnings in pi-gateway-cli.sh

Dependencies

Bump actions/upload-artifact to v6
Bump actions/download-artifact to v7
Bump tests/bats-core submodule

Upgrade

cd pi-gateway
git pull

No configuration changes required. Documentation is deployed automatically.

Version 1.2.0 - Enhanced Testing & Quality 🧪

Release Date: 2025-09-21 Status: Production Ready Compatibility: Raspberry Pi 4/5, ARM64/x86_64

🎯 Overview

Pi Gateway v1.2.0 introduces comprehensive QEMU Pi emulation testing, enhanced code quality tools, and improved development workflow. This release strengthens the testing infrastructure while maintaining production stability.

✨ New Features

🧪 QEMU Pi Emulation Testing

Full Hardware Emulation: Complete Raspberry Pi environment simulation
Kernel & Device Tree: Pre-configured QEMU binaries for Pi testing
SSH Integration: Remote testing capabilities with automated scripts
Quick Test Mode: Fast validation for development workflows

🔧 Enhanced Development Tools

Optimized Shellcheck: Streamlined lint configuration for better code quality
Improved CI/CD: Enhanced BATS test permissions and reliability
Code Organization: Cleaner gitignore patterns and reduced redundancy

🚀 What’s New

Testing Infrastructure

Added tests/qemu/ directory with complete Pi emulation setup
New QEMU testing scripts: run-pi-vm.sh, quick-test-vm.sh, run-pi-vm-ssh.sh
Enhanced mock system capabilities for comprehensive testing
Improved test execution reliability across environments

Code Quality Improvements

New .shellcheckrc configuration for optimized linting
Enhanced common.sh utilities for better script modularity
Improved error handling and validation in core scripts
Streamlined CI pipeline with better permission management

📋 Installation & Usage

Same installation methods as v1.1.0 with enhanced testing capabilities:

# QEMU testing (new)
make setup-qemu
make test-integration

# Enhanced development testing
make test-dry-run
make test-unit
make lint

🛠️ Technical Improvements

Version Consistency: Updated all version references across codebase
Test Reliability: Fixed BATS executable permissions in CI
Code Organization: Removed redundant patterns from gitignore
Development Workflow: Enhanced mock hardware simulation

🔄 Upgrade Path

From v1.1.0:

cd pi-gateway
git pull
# Version automatically updated to 1.2.0

Version 1.0.0 - Production Release 🚀

Release Date: 2025-09-16 Status: Production Ready Compatibility: Raspberry Pi 4/5, ARM64/x86_64

🎯 Overview

Pi Gateway v1.0.0 marks the completion of a comprehensive Raspberry Pi homelab bootstrap system. This production-ready release transforms a basic Raspberry Pi into a secure, monitored, and automated homelab platform with enterprise-grade features.

✨ Major Features

🔒 Security & Hardening

SSH Hardening: Key-based authentication, fail2ban protection, custom security banners
System Security: CIS Benchmark compliance, kernel hardening, network security
Firewall Management: Advanced UFW configuration with intrusion detection
Audit System: Comprehensive system call auditing and compliance reporting
Multi-Factor Security: Defense-in-depth security architecture

🌐 VPN & Remote Access

WireGuard VPN Server: High-performance encrypted remote connectivity
Client Management: Easy VPN client creation with QR code generation
Dynamic DNS: Cloudflare, DuckDNS, and No-IP integration for remote access
Remote Desktop: VNC and xRDP server configuration
Port Management: Automated port forwarding setup guides

🔍 Advanced Monitoring

Real-time Metrics: CPU, memory, disk, temperature, and network monitoring
Intelligent Alerting: Email and webhook notifications with threshold management
Service Health: Automated monitoring of critical services with recovery
Performance Analysis: Trend analysis and optimization recommendations
Dashboard Integration: Prometheus/Grafana compatible metrics export

🔧 Automated Maintenance

Zero-downtime Updates: Rolling updates with automatic rollback capability
System Optimization: Performance tuning and resource management
Configuration Backup: Automated backup with versioning and encryption
Health Validation: Comprehensive pre/post-operation health checks
Scheduled Operations: Systemd timer-based automation

🌐 Network Optimization

TCP Performance: BBR congestion control and buffer optimization
Quality of Service: Traffic classification and bandwidth management
VPN Optimization: WireGuard-specific performance tuning
DDoS Protection: Rate limiting and connection flood protection
Traffic Analysis: Network performance monitoring and analysis

🐳 Container Platform

Multi-Runtime Support: Docker CE and Podman installation and management
Service Templates: Pre-configured Home Assistant, Grafana, Pi-hole, Node-RED
Orchestration: Docker Compose with resource limits and monitoring
Security: Container security profiles and network isolation
Management Tools: Web-based container management with Portainer

📦 What’s Included

Core Scripts (5,000+ lines of production code)

setup.sh - Master setup orchestration
check-requirements.sh - System validation and hardware detection
install-dependencies.sh - Package and service installation
system-hardening.sh - Comprehensive security hardening
ssh-setup.sh - SSH security configuration
firewall-setup.sh - Advanced firewall management
vpn-setup.sh - WireGuard VPN server deployment
ddns-setup.sh - Dynamic DNS configuration
remote-desktop.sh - Remote access setup

Advanced Features (Phase 6)

monitoring-system.sh - Real-time monitoring with alerting
auto-maintenance.sh - Automated updates and optimization
network-optimizer.sh - Network performance tuning
security-hardening.sh - CIS compliance and advanced security
container-support.sh - Container platform deployment

Management Tools

pi-gateway-cli.sh - Unified command-line interface
vpn-client-manager.sh - VPN client lifecycle management
container-manager.sh - Container service management
backup-config.sh - Configuration backup and restore
service-status.sh - System health monitoring

Testing Framework

40+ BATS unit tests with 92.5% pass rate
Docker integration testing (simple + systemd modes)
QEMU hardware emulation testing
Cross-platform compatibility validation
Comprehensive dry-run mode for safe testing

🚀 Installation Options

Quick Install (Recommended)

curl -sSL https://raw.githubusercontent.com/1mb-dev/pi-gateway/main/scripts/quick-install.sh | bash

Interactive Setup

curl -sSL https://raw.githubusercontent.com/1mb-dev/pi-gateway/main/scripts/quick-install.sh | bash -s -- --interactive

Manual Installation

git clone https://github.com/1mb-dev/pi-gateway.git
cd pi-gateway
make setup

🔧 System Requirements

Minimum Hardware

Raspberry Pi 4 Model B (4GB RAM)
32GB MicroSD card (Class 10)
Reliable power supply
Ethernet connection

Recommended Hardware

Raspberry Pi 4/5 (8GB RAM)
64GB+ NVMe SSD
Gigabit Ethernet
UPS power backup

Software Requirements

Raspberry Pi OS Lite/Desktop (64-bit)
Internet connectivity
SSH access
Administrator router access

📊 Performance Metrics

System Performance

Boot Time: <30 seconds from power-on to ready
Response Time: <100ms for management operations
Resource Usage: <10% CPU, <20% memory baseline
Network Throughput: Wire-speed with QoS optimization

Monitoring Performance

Metric Collection: 1-second intervals for critical metrics
Alert Latency: <5 seconds from threshold to notification
Data Retention: 90 days default with compression
Dashboard Updates: Real-time with sub-second latency

🛡️ Security Features

Compliance Standards

CIS Benchmark: Linux security baseline compliance
NIST Framework: Cybersecurity framework alignment
Custom Profiles: Configurable security profiles

Security Architecture

Zero Trust: Default-deny with explicit allow rules
Privilege Separation: Service accounts and capability dropping
Data Protection: Encryption at rest and in transit
Access Control: Role-based permissions and audit logging

🌟 Key Improvements

Phase 1-3: Foundation

✅ Hardware detection and validation
✅ Automated dependency installation
✅ SSH and firewall security
✅ VPN server deployment
✅ Dynamic DNS configuration

Phase 4: Integration

✅ Master setup orchestration
✅ Configuration management
✅ Service coordination
✅ Error handling and recovery

Phase 5: User Experience

✅ Command-line interface
✅ VPN client management
✅ Comprehensive documentation
✅ Extension framework

Phase 6: Production Features

✅ Advanced monitoring and alerting
✅ Automated maintenance and updates
✅ Network performance optimization
✅ Security hardening and compliance
✅ Container platform support

📚 Documentation

User Guides

Quick Start Guide - 15-minute setup
Complete Setup Guide - Detailed installation
Production Deployment - Production deployment
Daily Operations - Daily operations
Troubleshooting Guide - Problem solving

Technical Documentation

System Architecture - System design
Extension Development - Plugin creation
Security Updates - Security hardening and compliance

🔄 Migration & Compatibility

Upgrading from Beta

cd pi-gateway
git pull
make update
./scripts/auto-maintenance.sh verify

Compatibility Matrix

🐛 Known Issues

Minor Issues

Test suite: 3/40 tests failing (network simulation)
ShellCheck: Non-critical style warnings
macOS: Limited compatibility (development only)

Workarounds

Use dry-run mode for testing on non-Pi hardware
Install Bash 4+ for full feature compatibility
Some features require Raspberry Pi hardware

🔮 Future Roadmap

Version 1.1 (Planned)

Web-based management interface
Mobile app for monitoring
Cloud backup integration
Multi-Pi cluster support

Version 1.2 (Planned)

Kubernetes support
AI/ML workload templates
Enhanced IoT integration
Advanced analytics

🤝 Contributing

We welcome contributions! See our Contributing Guidelines for details.

Development Setup

git clone https://github.com/1mb-dev/pi-gateway.git
cd pi-gateway
make dev-setup
make test

Areas for Contribution

Additional container service templates
Security profile improvements
Documentation and tutorials
Platform compatibility testing
Performance optimizations

📞 Support

Issues: GitHub Issues
Discussions: GitHub Discussions
Documentation: Project Wiki
Security: security@pi-gateway.local (for security issues)

🙏 Acknowledgments

Special thanks to:

Raspberry Pi Foundation for the excellent hardware platform
WireGuard team for the VPN technology
Docker community for containerization tools
Open source security projects for hardening guidelines

📄 License

Pi Gateway is released under the MIT License. See LICENSE for details.

Previous Releases

Beta Releases

v0.6.0 - Phase 6 Development (Security & Containers)
v0.5.0 - Phase 5 Development (CLI & Documentation)
v0.4.0 - Phase 4 Development (Integration & Orchestration)
v0.3.0 - Phase 3 Development (VPN & Remote Access)
v0.2.0 - Phase 2 Development (Security & Hardening)
v0.1.0 - Phase 1 Development (Foundation)

🎉 Thank you for using Pi Gateway!

This release represents months of development to create the most comprehensive Raspberry Pi homelab solution available. Whether you’re building your first homelab or upgrading an existing setup, Pi Gateway provides the foundation for a secure, monitored, and automated infrastructure.

Happy homelabbing! 🏠🔧