Skip to main content

Release Radar - Q4 2023

Vault 1.15
#

TLDR: KV eventing

  • web UI enhancements - new landing page, LDAP and KV UI’s (both v1 and v2 engines), example policies
  • secrets sync support for AWS, Azure, Google, GitHub and Vercel [Enterprise]
  • support for Azure Workload Identity Federation
  • event monitoring for KV engines
  • high availability for seal keys (ie support multiple KMS providers) [Enterprise]
  • Certificate Issuance External Policy Service; enables fine-grained control over X.509 attributes

VictoriaMetrics 1.94
#

TLDR: web UI improvements

  • support for underscore delimited values
  • numerous vmui enhancements, including query history (in localStorage), button to auto-format PromQL/MetricsQL queries, and Prometheus data support to the cardinality page
  • support for server-side copy of (existing) backups

vCluster 0.16
#

TLDR: commercial offering

  • addition of k8s/k3s v1.28 images, and support for Kubernetes v1.28 in general
  • vcluster connect and vcluster import CLI commands
  • monetized features (under new ‘vCluster Pro’ offering): initially headlined by a commercialized k8s distribution (vCluster.Pro Distro)

Terraform 1.6
#

TLDR: in-tree test framework

  • terraform test command, deprecates/replaces previous experiments, tests declaratively configured in .tftest.hcl files
  • support for id attribute expressions in import blocks (previously only static values)
  • improvements to AWS S3 (remote state) backend, to better align with AWS SDK/TF provider

Coroot 0.18 - 0.20
#

TLDR: logs!

  • support for collection, exploration, and correlation of application logs
  • app-aware NATS observability
  • cluster-wide deployment report

Dapr 1.12
#

TLDR: service invocation improvements

  • HTTP streaming graduates to stable & enabled by default
  • support for https:// invocation calls to external (non-Dapr) endpoints
  • addition of Azure OpenAPI binding (component)
  • multi-app run now supports Windows, adding to existing Mac/Linux compatibility
  • support for multiple resource paths (--resources-path can be specified more than once)

Argo Workflows 3.5
#

TLDR: web UI enhancements

  • unified workflow view - lists both live and archived workflows
  • web UI modal to re-submit workflows with different parameters
  • new title and description attributes for workflows
  • declarative (controller ConfigMap) config of custom web UI columns and nav links

GitLab 16.5
#

TLDR: thread resolutions

  • support for resolving threads inside issue comments (without resolving the issue itself)
  • API endpoint (/user/personal_access_tokens) for creating new PAT for currently authenticated user
  • support for exporting individual wiki pages as PDF files
  • ‘standards adherence report’ in compliance center web UI [Ultimate]
  • API endpoints for deleting SAML and SCIM provisioned identities

Grafana 10.2
#

TLDR: Alerting x OnCall integration

  • support for calculating RED metrics (and grouped spans) by Tempo tags
  • y-axis zoom for time series and candlestick panels
  • support for triggering user-specified API endpoints from canvas panel buttons
  • integration between Grafana Alerting and Grafana OnCall, enabling (alerting) context awareness of escalation chains and schedules
  • general availability for public dashboards
  • support for ephemeral AWS credentials when querying CloudWatch datasources

Tempo 2.3
#

TLDR: more TraceQL capabilities

  • vParquet3 backend upgrade, including attribute column chooser, enabling more performant TraceQL queries
  • TraceQL features: structural operators, negated regex and statusMessage intrinsic
  • full compatibility with OpenTelemetry attribute names

Nomad 1.7
#

TLDR: workload identity improvements

  • dynamic workload identity JWT’s accesssible (via OIDC) to third parties
  • Vault integration enhancements - automatic token management (previously required ACL tokens) and support for templated policies
  • action jobspec block facilitates declarative config for repeated task executions
  • native distributed locks (leverages variables) as an alternative to Consul’s lock orchestration capability
  • Consul integration enhancement - removes ACL token requirement when submitting jobs
  • high-availability mode for autoscaler component

Crossplane 1.14
#

TLDR: CLI functionality

  • crossplane CLI enhancements - init, build, push, install, trace (!!)
  • addition of Usage API, to facilitate ordered deletion (via dependency declarations) of MR’s
  • Composition Functions beta graduation
    • crossplane render facilitates test execution of a composition’s logic
    • Upbound Marketplace will soon host community-developed functions
  • crossplane.io/paused annotation support for Configuration, Function, and Provider types

Argo CD 2.9
#

TLDR: scale-out load balancing

  • support for dynamic rebalancing of clusters across shards (in horizontally scaled deployments)
  • ignoreApplicationDifferences capability added to ApplicationSet spec
  • ApplicationSet x GitLab improvements: SCM provider topic filter for projects, includeSharedProjets field (for bypassing query of large shared project lists), self-signed TLS support
  • --apply-out-of-sync-only CLI flag
  • repo-server grace period - ignores consecutive errors to avoid transient Application ‘unknown state’ stressors (default = 3m)
  • examples added to --help output of most argocd subcommands
  • --output tree option added to CLI sync, wait and rollback subcommands

Kyverno 1.11
#

TLDR: ValidatingAdmissionPolicy support

  • support for CEL expressions in ValidatingAdmissionPolicy rule evaluations, alongside imperative VAP testing via the kyverno CLI
  • policy reports now per-resource (previously per policy)
  • Cosign and Notary enhancements, including OCI v1.1 attestations and Cosign v2.0 support

Gitea 1.21
#

TLDR: CI enhancements

  • support for automatically tagging PR reviewers using CODEOWNERS files
  • commit range selector when reviewing PR’s
  • Gitea Actions enhancements: scheduled workflows, disable workflows, raw log download, variables (~de-obfuscated secrets), UI filters
  • support for pre-registration of OAuth2 apps (eg for git credential helpers)
  • simplified blame view, honoring .git-blame-ignore-revs

Istio 1.20
#

TLDR: Gateway API GA

  • full support for GA variant of K8s Gateway API
  • better alignment with K8s ExternalName semantics
  • consistant ordering for Envoy filters, regardless of traffic direction, protocol or proxy component
  • support for mirroring traffic to multiple destinations

VictoriaMetrics 1.95
#

TLDR: New Relic agent ingest

  • vmui autocomplete support expanded to include functions, labels, values
  • support for New Relic infrastructure agent data ingest
  • vmagent no longer exit’s as a result of invalid/missing scrape_config files
  • support for skipping vmauth backend TLS verification

Gitlab 16.6
#

TLDR: CI enhancements

  • support for minimal forking (ie only fork default branch)
  • components (CI feature) graduates to beta, with (future) breaking changes to folder structure
  • improvements to web interface for CI variable management
  • CI runner support for macOS Sonoma and Xcode 15 images
  • support for excluding findings from container scans (eg those you’ve elected not to remediate) [Ultimate]
  • ‘silent mode’ - disabled most outbound traffic (emails, integrations, webhooks, mirroring etc), eg for testing backup restores

Prometheus 2.48
#

TLDR: AWS+Azure auth method ergonomics

  • support for out-of-order sample ingest
  • usual slew of efficiency improvements, particularly with TSDB and scrape semantics
  • histograms included in promtool TSDB dump command
  • improved support for hyperscaler auth methods (eg AWS SigV4 and Azure OAuth)

HAProxy 2.9
#

TLDR: perf enhancements

  • perf/efficiency enhancements for (deep breath!) HTTP/2, threads, shared pools, logs, health checks, maps, caching, stick tables, and QUIC
  • syslog load balancing, more QUIC options, more SSL/TLS libraries, Linux setcap support
  • none hash type, enabling custom hash-based load balancing

VictoriaMetrics 1.96
#

TLDR: per-backend replica counts

  • support for capping time series response size via search.maxResponseSeries (to avoid Grafana choking)
  • ability to specify replicationFactor values for individual vmstorage groups
  • additional Golang garbage collection /metrics added to all VM components
  • /vmalert/api/v1/rule endpoint - outputs rule object in JSON format
  • support for HA vmauth architectures via addition of first available / hot standby semantics

GitLab 16.7
#

TLDR: CI catalog (~marketplace)

  • GA for Code Suggestions (GH Copilot competitor), ‘works’ with on-prem but SaaS licensed either way; supports VSCode, VS, JetBrains, Neovim and GL WebIDE
  • custom emoji (added at group level)
  • CI/CD catalog graduates to beta
  • better support for complex dependency chains in MR’s
  • removed requirement for wildcard cert when self-hosting Pages
  • easier access to Admin Area from new sidebar
  • support for OpenTofu (the Terraform fork); binary now included in gitlab-terraform helper image