Releases: linkerd/linkerd2
Releases · linkerd/linkerd2
edge-26.4.4
What's Changed
- Chore(deps): upgrade to go 1.25.9 by @arichardet in #15178
- build(deps): bump github.com/moby/spdystream from 0.5.0 to 0.5.1 by @dependabot[bot] in #15179
- build(deps): bump rustls-webpki from 0.103.11 to 0.103.12 by @dependabot[bot] in #15180
- build(deps): bump tj-actions/changed-files from 47.0.5 to 47.0.6 by @dependabot[bot] in #15186
- build(deps-dev): bump webpack from 5.106.0 to 5.106.2 in /web/app by @dependabot[bot] in #15185
- build(deps-dev): bump html-webpack-plugin from 5.6.6 to 5.6.7 in /web/app by @dependabot[bot] in #15184
- build(deps): bump the kube group across 1 directory with 7 updates by @dependabot[bot] in #15177
- build(deps): bump openssl-sys from 0.9.112 to 0.9.113 by @dependabot[bot] in #15169
- build(deps): bump openssl from 0.10.76 to 0.10.77 by @dependabot[bot] in #15170
- build(deps): bump follow-redirects from 1.15.6 to 1.16.0 in /web/app by @dependabot[bot] in #15168
- build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 by @dependabot[bot] in #15163
- build(deps): bump softprops/action-gh-release from 2.6.1 to 3.0.0 by @dependabot[bot] in #15164
- build(deps): bump docker/build-push-action from 7.0.0 to 7.1.0 by @dependabot[bot] in #15165
- build(deps-dev): bump sinon from 21.0.3 to 21.1.2 in /web/app by @dependabot[bot] in #15158
- fix(policy): skip admission validation for Gateway routes with unsupported fields by @alpeb in #15118
- build(deps): bump libc from 0.2.184 to 0.2.185 by @dependabot[bot] in #15171
- build(deps): bump indexmap from 2.13.1 to 2.14.0 by @dependabot[bot] in #15155
- fix(inject): use more robust logic to convert annotation to metric label by @sdickhoven in #15176
- Update proxy-init to v2.4.8 & cni-plugin to v1.6.7 by @arichardet in #15190
- Apply overrides to chart values on install #15025 by @raykroeker in #15181
- build(deps): bump openssl from 0.10.77 to 0.10.78 by @dependabot[bot] in #15202
- build(deps): bump typenum from 1.19.0 to 1.20.0 by @dependabot[bot] in #15192
- fix(policy): minor correctness fixes in outbound index by @unleashed in #15157
- build(deps): bump bitflags from 2.11.0 to 2.11.1 by @dependabot[bot] in #15193
- proxy: v2.350.0 by @l5d-bot in #15198
New Contributors
- @arichardet made their first contribution in #15178
- @sdickhoven made their first contribution in #15176
- @raykroeker made their first contribution in #15181
- @unleashed made their first contribution in #15157
Full Changelog: edge-26.4.3...edge-26.4.4
Contributors
unleashed, alpeb, and 5 other contributors
Assets 7
edge-26.4.3
What's Changed
- build(deps): bump helm.sh/helm/v3 from 3.20.1 to 3.20.2 by @dependabot[bot] in #15154
- build(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 by @dependabot[bot] in #15153
- chore: bump max k8s version to 1.35 in tests by @alpeb in #15149
- build(deps): bump rustls-webpki from 0.103.10 to 0.103.11 by @dependabot[bot] in #15160
- build(deps): bump cc from 1.2.59 to 1.2.60 by @dependabot[bot] in #15161
- build(deps): bump rand from 0.10.0 to 0.10.1 by @dependabot[bot] in #15162
- chore: run policy tests with k8s 1.35 by @alpeb in #15167
- feat(inject): add proxy-additional-env annotation for per-scope env overrides by @relu in #15156
- proxy: v2.349.0 by @l5d-bot in #15173
Full Changelog: edge-26.4.2...edge-26.4.3
Contributors
alpeb, relu, and 2 other contributors
Assets 7
edge-26.4.2
Overall status: RECOMMENDED
Cautions
N/A
Changes
This release contains internal improvements, but no new capabilities over edge-26.4.1.
What's Changed
- build(deps): bump extractions/setup-just from 3.1.0 to 4.0.0 by @dependabot[bot] in #15132
- build(deps-dev): bump sinon from 21.0.2 to 21.0.3 in /web/app by @dependabot[bot] in #15130
- build(deps-dev): bump webpack-bundle-analyzer from 5.2.0 to 5.3.0 in /web/app by @dependabot[bot] in #15129
- build(deps): bump docker/login-action from 4.0.0 to 4.1.0 by @dependabot[bot] in #15122
- build(deps): bump github.com/clarketm/json from 1.15.7 to 1.17.1 by @dependabot[bot] in #15116
- build(deps-dev): bump jest-environment-jsdom from 30.2.0 to 30.3.0 in /web/app by @dependabot[bot] in #15128
- build(deps): bump lodash from 4.17.23 to 4.18.1 in /web/app by @dependabot[bot] in #15127
- build(deps): bump github.com/mattn/go-runewidth from 0.0.21 to 0.0.22 by @dependabot[bot] in #15120
- build(deps): bump google.golang.org/grpc from 1.79.3 to 1.80.0 by @dependabot[bot] in #15115
- build(deps): bump indexmap from 2.13.0 to 2.13.1 by @dependabot[bot] in #15121
- build(deps): bump libc from 0.2.183 to 0.2.184 by @dependabot[bot] in #15117
- build(deps): bump semver from 1.0.27 to 1.0.28 by @dependabot[bot] in #15138
- build(deps): bump fastrand from 2.3.0 to 2.4.1 by @dependabot[bot] in #15137
- test(destination): Add destination controller API tests by @adleong in #15123
- proxy: v2.348.0 by @l5d-bot in #15142
- build(deps): bump cc from 1.2.58 to 1.2.59 by @dependabot[bot] in #15140
- build(deps): bump tokio from 1.50.0 to 1.51.0 by @dependabot[bot] in #15139
- build(deps): bump tokio from 1.51.0 to 1.51.1 by @dependabot[bot] in #15147
- build(deps): bump github.com/mattn/go-isatty from 0.0.20 to 0.0.21 by @dependabot[bot] in #15146
- chore(deps): ignore major lingui updates by @alpeb in #15135
- build(deps-dev): bump webpack from 5.105.4 to 5.106.0 in /web/app by @dependabot[bot] in #15148
- build(deps): bump github.com/mattn/go-runewidth from 0.0.22 to 0.0.23 by @dependabot[bot] in #15145
- tests: introduce
kubectlRunto avoid conflating stdin and stdout in tests by @alpeb in #15151
Full Changelog: edge-26.4.1...edge-26.4.2
Contributors
alpeb, adleong, and 2 other contributors
Assets 7
edge-26.4.1
Overall status: RECOMMENDED
Cautions
This release includes bugfixes in the proxy's HTTP/2 implementation. Importantly, this corrects a situation in which a proxy connection could deadlock when servicing many concurrent streams, by allowing the proxy to open new connections to the target workload in order to add capacity overall. This could result in an increase in the steady-state number of outbound connections from proxies in high-traffic situations. This update also adjusts limits related to processing RST_STREAM frames.
Changes
This release updates the Linkerd Viz scrape configuration to match ports renamed in edge-25.6.3, fixing issue 14642 and issue 15089 (thanks, Benedikt Kittinger!). Additionally, it always correctly honors the TTL of a DNS negative response and allows configuring the TCP listen backlog using the LINKERD2_PROXY_INBOUND_TCP_LISTEN_BACKLOG environment variable (thanks, Aurel Canciu!).
What's Changed
- build(deps): bump the kube group with 7 updates by @dependabot[bot] in #15073
- build(deps): bump openssl from 0.10.75 to 0.10.76 by @dependabot[bot] in #15075
- build(deps): bump slab from 0.4.11 to 0.4.12 by @dependabot[bot] in #15076
- build(deps): bump itoa from 1.0.17 to 1.0.18 by @dependabot[bot] in #15078
- build(deps): bump rustls-webpki from 0.103.9 to 0.103.10 by @dependabot[bot] in #15079
- build(deps): bump aws-lc-rs from 1.16.1 to 1.16.2 by @dependabot[bot] in #15087
- chore: update MAINTAINERS.md by @cratelyn in #15088
- build(deps): bump linkerd-extension-init from 0.1.9 to 0.1.10 by @alpeb in #15091
- build(deps): bump linkerd-network-validator from 0.1.7 to 0.1.8 by @alpeb in #15092
- proxy: v2.346.0 by @l5d-bot in #15093
- chore: Move @olix0r to emeritus status 🫡 by @olix0r in #15095
- build(deps): bump linkerd2-proxy-init from 2.4.6 to 2.4.7 by @alpeb in #15094
- build(deps): bump cmake from 0.1.57 to 0.1.58 by @dependabot[bot] in #15097
- build(deps): bump DavidAnson/markdownlint-cli2-action from 22.0.0 to 23.0.0 by @dependabot[bot] in #15098
- build(deps): bump codecov/codecov-action from 5.5.3 to 6.0.0 by @dependabot[bot] in #15099
- build(deps): bump actions/setup-go from 6.3.0 to 6.4.0 by @dependabot[bot] in #15107
- build(deps): bump flatted from 3.2.2 to 3.4.2 in /web/app by @dependabot[bot] in #15072
- build(deps-dev): bump @babel/preset-env from 7.29.0 to 7.29.2 in /web/app by @dependabot[bot] in #15081
- build(deps-dev): bump webpack-cli from 6.0.1 to 7.0.2 in /web/app by @dependabot[bot] in #15082
- build(deps): bump core-js from 3.48.0 to 3.49.0 in /web/app by @dependabot[bot] in #15083
- build(deps-dev): bump @babel/runtime from 7.28.6 to 7.29.2 in /web/app by @dependabot[bot] in #15084
- build(deps): bump node-forge from 1.3.2 to 1.4.0 in /web/app by @dependabot[bot] in #15100
- build(deps): bump github.com/fatih/color from 1.18.0 to 1.19.0 by @dependabot[bot] in #15085
- build(deps): bump aws-lc-sys from 0.39.0 to 0.39.1 by @dependabot[bot] in #15103
- build(deps): bump mio from 1.1.1 to 1.2.0 by @dependabot[bot] in #15104
- build(deps): bump zerocopy from 0.8.42 to 0.8.48 by @dependabot[bot] in #15106
- chore: upgrade devcontainer to v49 by @adleong in #15111
- build(deps): bump cc from 1.2.57 to 1.2.58 by @dependabot[bot] in #15105
- chore(multicluster): add missing Server/AuthorizationPolicy resources by @alpeb in #14992
- fix(viz): adjust prometheus config to match new admin port names by @bkittinger in #15090
- proxy: v2.347.0 by @l5d-bot in #15114
Full Changelog: edge-26.3.3...edge-26.4.1
Contributors
olix0r, alpeb, and 5 other contributors
Assets 7
edge-26.3.3
Overall status: RECOMMENDED
Cautions
N/A
Changes
This release fixes a bug that could result in an OOMKilled proxy panicking on restart with a "period must be non-zero" message.
What's Changed
- build(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 in /.github/actions/cli-setup by @dependabot[bot] in #15037
- build(deps): bump getrandom from 0.2.16 to 0.2.17 by @dependabot[bot] in #15033
- build(deps): bump rustls from 0.23.35 to 0.23.37 by @dependabot[bot] in #15034
- build(deps): bump bitflags from 2.10.0 to 2.11.0 by @dependabot[bot] in #15035
- build(deps): bump Swatinem/rust-cache from 2.8.2 to 2.9.1 by @dependabot[bot] in #15040
- build(deps): bump golang.org/x/tools from 0.42.0 to 0.43.0 by @dependabot[bot] in #15039
- build(deps): bump openssl-sys from 0.9.111 to 0.9.112 by @dependabot[bot] in #15048
- build(deps): bump tracing-subscriber from 0.3.22 to 0.3.23 in the tracing group by @dependabot[bot] in #15047
- build(deps): bump the clap group with 4 updates by @dependabot[bot] in #15046
- chore(deps): upgrade extension-init version by @adleong in #15009
- build(deps): bump h2 from 0.4.12 to 0.4.13 by @dependabot[bot] in #15051
- build(deps): bump cc from 1.2.56 to 1.2.57 by @dependabot[bot] in #15052
- build(deps): bump anstyle from 1.0.13 to 1.0.14 by @dependabot[bot] in #15053
- proxy: v2.343.0 by @l5d-bot in #15060
- build(deps): bump google.golang.org/grpc from 1.79.2 to 1.79.3 by @dependabot[bot] in #15055
- build(deps): bump softprops/action-gh-release from 2.5.0 to 2.6.1 by @dependabot[bot] in #15049
- build(deps-dev): bump babel-loader from 10.1.0 to 10.1.1 in /web/app by @dependabot[bot] in #15044
- build(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 by @dependabot[bot] in #15036
- build(deps): bump helm.sh/helm/v3 from 3.20.0 to 3.20.1 by @dependabot[bot] in #15031
- build(deps-dev): bump sinon from 21.0.1 to 21.0.2 in /web/app by @dependabot[bot] in #15013
- build(deps): bump socket2 from 0.6.2 to 0.6.3 by @dependabot[bot] in #15057
- build(deps): bump pin-project from 1.1.10 to 1.1.11 by @dependabot[bot] in #15058
- build(deps): bump once_cell from 1.21.3 to 1.21.4 by @dependabot[bot] in #15059
- build(deps-dev): bump babel-jest from 30.1.2 to 30.3.0 in /web/app by @dependabot[bot] in #15045
- build(deps-dev): bump jest from 30.1.3 to 30.3.0 in /web/app by @dependabot[bot] in #15043
- build(deps): bump windows-link from 0.2.0 to 0.2.1 by @dependabot[bot] in #15032
- chore(deps): upgrade to go 1.25.8 by @alpeb in #15061
- proxy: v2.344.0 by @l5d-bot in #15063
- build(deps): bump proxy-init from 2.4.5 to 2.4.6 by @alpeb in #15062
- nit(policy-controller): replace extern crate directive by @cratelyn in #14901
- build(deps): bump dtoa from 1.0.10 to 1.0.11 by @dependabot[bot] in #15064
- build(deps): bump windows-result from 0.4.0 to 0.4.1 by @dependabot[bot] in #15065
- build(deps): bump windows-core from 0.62.1 to 0.62.2 by @dependabot[bot] in #15067
- build(deps): bump windows-strings from 0.5.0 to 0.5.1 by @dependabot[bot] in #15066
- build(deps): bump codecov/codecov-action from 5.5.2 to 5.5.3 by @dependabot[bot] in #15068
Full Changelog: edge-26.3.2...edge-26.3.3
Contributors
alpeb, adleong, and 3 other contributors
Assets 7
edge-26.3.2
Overall status: RECOMMENDED
Cautions
N/A
Changes
As of this release, Linkerd Viz's default scraping configuration will only scrape Running or Pending pods, to avoid duplication when a new pod is assigned an IP address that belonged to a Failed or Completed pod (fixing issue 10562 -- thanks, Benedikt Kittinger!) Additionally, this release introduces new inbound_http_request_duration_seconds and inbound_grpc_request_duration_seconds metrics histograms, tracking the durations of inbound requests.
What's Changed
- build(deps): bump pin-project-lite from 0.2.16 to 0.2.17 by @dependabot[bot] in #15001
- build(deps): bump ryu from 1.0.20 to 1.0.23 by @dependabot[bot] in #15002
- build(deps): bump anyhow from 1.0.100 to 1.0.102 by @dependabot[bot] in #15003
- build(deps): bump regex-lite from 0.1.8 to 0.1.9 by @dependabot[bot] in #15004
- build(deps): bump docker/setup-buildx-action from 3.12.0 to 4.0.0 by @dependabot[bot] in #15005
- build(deps): bump docker/setup-buildx-action from 3.12.0 to 4.0.0 in /.github/actions/docker-build by @dependabot[bot] in #15007
- build(deps-dev): bump babel-loader from 10.0.0 to 10.1.0 in /web/app by @dependabot[bot] in #15011
- build(deps-dev): bump webpack from 5.105.3 to 5.105.4 in /web/app by @dependabot[bot] in #15012
- build(deps): bump k8s.io/klog/v2 from 2.130.1 to 2.140.0 in the kube group by @dependabot[bot] in #15014
- build(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.2 by @dependabot[bot] in #15015
- build(deps): bump github.com/mattn/go-runewidth from 0.0.20 to 0.0.21 by @dependabot[bot] in #15016
- build(deps): bump chrono from 0.4.43 to 0.4.44 by @dependabot[bot] in #15017
- build(deps): bump unicode-ident from 1.0.23 to 1.0.24 by @dependabot[bot] in #15018
- build(deps): bump rand_core from 0.9.3 to 0.9.5 by @dependabot[bot] in #15019
- build(deps): bump memchr from 2.7.6 to 2.8.0 by @dependabot[bot] in #15020
- build(deps): bump docker/build-push-action from 6.19.2 to 7.0.0 by @dependabot[bot] in #15006
- Adjust configmap to not scrape proxies from failed pods and completed jobs by @bkittinger in #14916
- build(deps): bump libc from 0.2.180 to 0.2.183 by @dependabot[bot] in #15022
- build(deps): bump cc from 1.2.49 to 1.2.56 by @dependabot[bot] in #15023
- build(deps): bump tokio-metrics from 0.4.7 to 0.4.9 by @dependabot[bot] in #15024
- build(deps): bump crypto-common from 0.1.6 to 0.1.7 by @dependabot[bot] in #15021
- build(deps): bump zerocopy from 0.8.39 to 0.8.42 by @dependabot[bot] in #15026
- build(deps): bump cmake from 0.1.54 to 0.1.57 by @dependabot[bot] in #15027
- build(deps): bump schannel from 0.1.28 to 0.1.29 by @dependabot[bot] in #15028
- build(deps): bump aws-lc-rs from 1.16.0 to 1.16.1 by @dependabot[bot] in #15029
- proxy: v2.342.0 by @l5d-bot in #15030
New Contributors
- @bkittinger made their first contribution in #14916
Full Changelog: edge-26.3.1...edge-26.3.2
Contributors
bkittinger, dependabot, and l5d-bot
Assets 7
edge-26.3.1
Overall status: RECOMMENDED
Cautions
N/A
Changes
This release improves Linkerd Viz tap's authorization mechanism to supply any X-Remote-Extra- headers present in incoming requests when checking to make sure that the user using tap has access to the resources they're attempting to watch, fixing issue 13169 (thanks, @Tolsto and David Symons!). This permits tap to function even in environments where authorization plugins need the extra attributes, such as AWS EKS with AccessEntry authentication.
Additionally, this release introduces new inbound_http_response_duration_seconds and inbound_grpc_response_duration_seconds metrics histograms, tracking the durations of responses to inbound requests, and downgrades the error logged when a non-mTLS connection is attempted to port 4143 from INFO to DEBUG, fixing issue 10203 (thanks, Rohan Sood!). This can help avoid flooding the logs with error messages, especially in multicluster installations.
What's Changed
- proxy: v2.339.0 by @l5d-bot in #14947
- build(deps): bump hyper-util from 0.1.17 to 0.1.20 by @dependabot[bot] in #14944
- build(deps): bump rustls-pki-types from 1.13.1 to 1.14.0 by @dependabot[bot] in #14945
- build(deps): bump tokio from 1.48.0 to 1.49.0 by @dependabot[bot] in #14946
- build(deps): bump the clap group with 2 updates by @dependabot[bot] in #14943
- proxy: v2.340.0 by @l5d-bot in #14959
- build(deps): bump the clap group with 2 updates by @dependabot[bot] in #14955
- build(deps): bump tonic from 0.14.4 to 0.14.5 in the grpc group by @dependabot[bot] in #14956
- build(deps): bump tower-http from 0.6.6 to 0.6.8 by @dependabot[bot] in #14958
- build(deps): bump aws-lc-rs from 1.15.0 to 1.16.0 by @dependabot[bot] in #14960
- build(deps): bump regex-syntax from 0.8.8 to 0.8.10 by @dependabot[bot] in #14961
- build(deps): bump log from 0.4.28 to 0.4.29 by @dependabot[bot] in #14962
- chore(deps): bump rand from 0.9.2 to 0.10.0 by @cratelyn in #14965
- chore(deps): upgrade linkerd-await by @adleong in #14950
- build(deps): bump regex-automata from 0.4.13 to 0.4.14 by @dependabot[bot] in #14966
- build(deps): bump tower from 0.5.2 to 0.5.3 by @dependabot[bot] in #14967
- build(deps): bump bumpalo from 3.19.0 to 3.20.2 by @dependabot[bot] in #14968
- build(deps): bump axum from 0.8.7 to 0.8.8 by @dependabot[bot] in #14969
- build(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 by @dependabot[bot] in #14970
- build(deps): bump actions/download-artifact from 7.0.0 to 8.0.0 by @dependabot[bot] in #14971
- build(deps): bump actions/download-artifact from 7.0.0 to 8.0.0 in /.github/actions/cli-setup by @dependabot[bot] in #14972
- build(deps-dev): bump webpack from 5.105.2 to 5.105.3 in /web/app by @dependabot[bot] in #14976
- build(deps): bump the kube group with 7 updates by @dependabot[bot] in #14978
- build(deps): bump extractions/setup-just from 3.0.0 to 3.1.0 by @dependabot[bot] in #14952
- build(deps-dev): bump css-loader from 7.1.3 to 7.1.4 in /web/app by @dependabot[bot] in #14951
- build(deps): bump actions/setup-go from 6.2.0 to 6.3.0 by @dependabot[bot] in #14963
- build(deps): bump github.com/mattn/go-runewidth from 0.0.19 to 0.0.20 by @dependabot[bot] in #14942
- Include extra attributes in SubjectAccessReview by @Tolsto in #14768
- build(deps): bump crazy-max/ghaction-github-runtime from 3.1.0 to 4.0.0 in /.github/actions/docker-build by @dependabot[bot] in #14985
- build(deps): bump tj-actions/changed-files from 47.0.4 to 47.0.5 by @dependabot[bot] in #14984
- build(deps): bump security-framework-sys from 2.15.0 to 2.17.0 by @dependabot[bot] in #14983
- build(deps): bump tonic-prost from 0.14.2 to 0.14.5 by @dependabot[bot] in #14982
- build(deps): bump axum-core from 0.5.5 to 0.5.6 by @dependabot[bot] in #14980
- build(deps): bump github.com/go-openapi/spec from 0.22.3 to 0.22.4 by @dependabot[bot] in #14979
- proxy: v2.341.0 by @l5d-bot in #14991
- build(deps): bump iana-time-zone from 0.1.64 to 0.1.65 by @dependabot[bot] in #14990
- build(deps): bump zmij from 1.0.17 to 1.0.21 by @dependabot[bot] in #14989
- build(deps): bump itoa from 1.0.15 to 1.0.17 by @dependabot[bot] in #14988
- build(deps): bump tokio from 1.49.0 to 1.50.0 by @dependabot[bot] in #14987
- build(deps): bump docker/setup-qemu-action from 3.7.0 to 4.0.0 in /.github/actions/docker-build by @dependabot[bot] in #14998
- build(deps): bump docker/login-action from 3.7.0 to 4.0.0 by @dependabot[bot] in #14997
- build(deps): bump tokio-macros from 2.6.0 to 2.6.1 by @dependabot[bot] in #14996
- build(deps): bump ipnet from 2.11.0 to 2.12.0 by @dependabot[bot] in #14995
- build(deps): bump syn from 2.0.114 to 2.0.117 by @dependabot[bot] in #14994
- build(deps): bump quote from 1.0.42 to 1.0.45 by @dependabot[bot] in #14993
- build(deps): bump linkerd-validator from 0.1.6 to 0.1.7 by @alpeb in #15000
New Contributors
Full Changelog: edge-26.2.1...edge-26.3.1
Contributors
alpeb, adleong, and 4 other contributors
Assets 7
edge-26.2.1
Overall status: RECOMMENDED
Cautions
N/A
Changes
This release contains internal improvements, but no new capabilities over edge-26.1.4.
What's Changed
- build(deps): bump docker/build-push-action from 6.18.0 to 6.19.1 by @dependabot[bot] in #14922
- build(deps-dev): bump @babel/core from 7.28.6 to 7.29.0 in /web/app by @dependabot[bot] in #14913
- build(deps-dev): bump webpack from 5.104.1 to 5.105.0 in /web/app by @dependabot[bot] in #14912
- chore(deps): upgrade to go 1.25.7 by @adleong in #14920
- build(deps): bump tonic from 0.14.2 to 0.14.3 in the grpc group by @dependabot[bot] in #14897
- build(deps): bump tokio-stream from 0.1.17 to 0.1.18 by @dependabot[bot] in #14898
- build(deps): bump the clap group across 1 directory with 4 updates by @dependabot[bot] in #14921
- build(deps-dev): bump css-loader from 7.1.2 to 7.1.3 in /web/app by @dependabot[bot] in #14902
- build(deps-dev): bump webpack-bundle-analyzer from 5.1.1 to 5.2.0 in /web/app by @dependabot[bot] in #14903
- build(deps): bump bytes from 1.11.0 to 1.11.1 by @dependabot[bot] in #14907
- build(deps-dev): bump @babel/preset-env from 7.28.6 to 7.29.0 in /web/app by @dependabot[bot] in #14904
- build(deps): bump qs from 6.14.1 to 6.14.2 in /web/app by @dependabot[bot] in #14923
- build(deps): bump proc-macro2 from 1.0.105 to 1.0.106 by @dependabot[bot] in #14899
- build(deps): bump the pest group with 4 updates by @dependabot[bot] in #14925
- build(deps): bump regex from 1.12.2 to 1.12.3 by @dependabot[bot] in #14926
- build(deps): bump unicode-ident from 1.0.22 to 1.0.23 by @dependabot[bot] in #14927
- build(deps): bump zerocopy from 0.8.33 to 0.8.39 by @dependabot[bot] in #14928
- chore: replace registry for the
pausecontainer, fix multicluster test by @alpeb in #14918 - build(deps): bump docker/build-push-action from 6.19.1 to 6.19.2 by @dependabot[bot] in #14929
- build(deps): bump google.golang.org/grpc from 1.78.0 to 1.79.0 by @dependabot[bot] in #14924
- chore(deps): upgrade proxy-init and extension-init by @adleong in #14931
- build(deps): bump @fortawesome/free-solid-svg-icons from 7.0.1 to 7.2.0 in /web/app by @dependabot[bot] in #14932
- build(deps-dev): bump webpack from 5.105.0 to 5.105.2 in /web/app by @dependabot[bot] in #14934
- build(deps): bump the futures group with 8 updates by @dependabot[bot] in #14938
- build(deps): bump tonic from 0.14.3 to 0.14.4 in the grpc group by @dependabot[bot] in #14939
- build(deps): bump data-encoding from 2.9.0 to 2.10.0 by @dependabot[bot] in #14940
- build(deps): bump indexmap from 2.12.1 to 2.13.0 by @dependabot[bot] in #14941
- build(deps): bump @fortawesome/fontawesome-svg-core from 6.7.2 to 7.2.0 in /web/app by @dependabot[bot] in #14935
- build(deps): bump the kube group with 7 updates by @dependabot[bot] in #14917
- build(deps): bump golang.org/x/tools from 0.41.0 to 0.42.0 by @dependabot[bot] in #14914
- build(deps): bump google.golang.org/grpc/cmd/protoc-gen-go-grpc from 1.6.0 to 1.6.1 by @dependabot[bot] in #14909
- build(deps): bump @fortawesome/free-regular-svg-icons from 7.0.1 to 7.2.0 in /web/app by @dependabot[bot] in #14933
- build(deps): bump tj-actions/changed-files from 47.0.1 to 47.0.2 by @dependabot[bot] in #14915
- build(deps): bump github.com/emicklei/proto from 1.14.2 to 1.14.3 by @dependabot[bot] in #14911
Full Changelog: edge-26.1.4...edge-26.2.1
Contributors
alpeb, adleong, and dependabot
Assets 7
edge-26.1.4
Overall status: RECOMMENDED
Cautions
N/A
Changes
This release adds support for the P256+SHA512 and P384+SHA512 cryptographic signatures for the proxy.
What's Changed
- build(deps-dev): bump webpack-dev-server from 5.2.2 to 5.2.3 in /web/app by @dependabot[bot] in #14885
- build(deps): bump core-js from 3.47.0 to 3.48.0 in /web/app by @dependabot[bot] in #14884
- build(deps-dev): bump @babel/core from 7.28.5 to 7.28.6 in /web/app by @dependabot[bot] in #14883
- build(deps-dev): bump @babel/runtime from 7.28.4 to 7.28.6 in /web/app by @dependabot[bot] in #14882
- build(deps): bump actions/checkout from 6.0.1 to 6.0.2 by @dependabot[bot] in #14881
- build(deps): bump chrono from 0.4.42 to 0.4.43 by @dependabot[bot] in #14874
- build(deps): bump zerocopy from 0.8.31 to 0.8.33 by @dependabot[bot] in #14876
- build(deps): bump find-msvc-tools from 0.1.5 to 0.1.8 by @dependabot[bot] in #14875
- build(deps): bump syn from 2.0.111 to 2.0.114 by @dependabot[bot] in #14877
- proxy: v2.338.0 by @l5d-bot in #14891
- build(deps): bump docker/login-action from 3.6.0 to 3.7.0 by @dependabot[bot] in #14892
- build(deps): bump thiserror from 2.0.17 to 2.0.18 by @dependabot[bot] in #14890
- build(deps): bump libc from 0.2.178 to 0.2.180 by @dependabot[bot] in #14889
- build(deps): bump zmij from 1.0.14 to 1.0.17 by @dependabot[bot] in #14888
- build(deps): bump socket2 from 0.6.1 to 0.6.2 by @dependabot[bot] in #14887
Full Changelog: edge-26.1.3...edge-26.1.4
Contributors
dependabot and l5d-bot
Assets 7
edge-26.1.3
Overall status: RECOMMENDED
Cautions
N/A
Changes
This release introduces the inbound_http_statuses_total and inbound_grpc_statuses_total metrics tracking statuses of inbound HTTP and gRPC traffic.
What's Changed
- build(deps): bump zerocopy from 0.8.27 to 0.8.31 by @dependabot[bot] in #14820
- build(deps): bump mio from 1.1.0 to 1.1.1 by @dependabot[bot] in #14819
- build(deps): bump libc from 0.2.177 to 0.2.178 by @dependabot[bot] in #14818
- build(deps): bump cc from 1.2.46 to 1.2.49 by @dependabot[bot] in #14788
- build(deps): bump helm.sh/helm/v3 from 3.19.4 to 3.19.5 by @dependabot[bot] in #14853
- chore(policy-controller): remove unused
hyperdependency by @cratelyn in #14852 - build(deps): bump the clap group with 3 updates by @dependabot[bot] in #14854
- build(deps): bump the grpc group with 3 updates by @dependabot[bot] in #14855
- build(deps): bump the tracing group with 2 updates by @dependabot[bot] in #14856
- build(deps): bump serde_json from 1.0.145 to 1.0.149 in the serde group by @dependabot[bot] in #14857
- build(deps): bump tokio-test from 0.4.4 to 0.4.5 by @dependabot[bot] in #14861
- build(deps): bump tokio-metrics from 0.4.6 to 0.4.7 by @dependabot[bot] in #14862
- build(deps): bump signal-hook-registry from 1.4.7 to 1.4.8 by @dependabot[bot] in #14863
- build(deps): bump the pest group with 4 updates by @dependabot[bot] in #14860
- build(deps): bump derive_more from 2.0.1 to 2.1.1 by @dependabot[bot] in #14872
- build(deps): bump tokio-util from 0.7.17 to 0.7.18 by @dependabot[bot] in #14871
- build(deps): bump rustls-webpki from 0.103.8 to 0.103.9 by @dependabot[bot] in #14870
- build(deps): bump proc-macro2 from 1.0.103 to 1.0.105 by @dependabot[bot] in #14869
- build(deps-dev): bump @babel/eslint-parser from 7.28.5 to 7.28.6 in /web/app by @dependabot[bot] in #14868
- build(deps): bump d3-format from 3.1.0 to 3.1.2 in /web/app by @dependabot[bot] in #14867
- build(deps-dev): bump @babel/preset-env from 7.28.5 to 7.28.6 in /web/app by @dependabot[bot] in #14866
- build(deps-dev): bump html-webpack-plugin from 5.6.5 to 5.6.6 in /web/app by @dependabot[bot] in #14864
- build(deps): bump github.com/sirupsen/logrus from 1.9.3 to 1.9.4 by @dependabot[bot] in #14859
- proxy: v2.337.0 by @l5d-bot in #14878
- build(deps): bump helm.sh/helm/v3 from 3.19.5 to 3.20.0 by @dependabot[bot] in #14880
- build(deps): bump lodash from 4.17.21 to 4.17.23 in /web/app by @dependabot[bot] in #14879
Full Changelog: edge-26.1.2...edge-26.1.3
Contributors
dependabot, l5d-bot, and cratelyn