Skip to main content

Release Radar - Q1 2024

GitLab 16.8
#

TLDR: GCP CI secrets

  • support for GCP Secret Manager secrets (in CI jobs)
  • GA for workspaces (GL’s take on remote development environments)
  • blame info visible on default file page (previously required navigating to alternate page)
  • ability to force MFA for administrator identities on self-managed instances
  • ‘your groups’ view/filter in CI components catalog
  • support for acting as a Maven dependency proxy
  • improved issue analytics and DORA dashboards [Ultimate]

Coroot 0.21-0.27
#

TLDR: profiling datastore migration

  • application health summaries
  • support for monitoring MongoDB, inclusive of metrics, logs, traces, and cluster topology awareness
  • AWS Fargate support (via cAdvisor scrapes)
  • support for monitoring .NET runtimes
  • deprecated Pyroscope as profiling datastore in favour of ClickHouse (already used for storing logs/traces)

CloudnativePG 1.22
#

TLDR: tablespace lifecycle management

  • support for dynamic relabelling of Prometheus metrics via addition of .spec.monitoring.{podMonitorMetricRelabelings,podMonitorRelabelings
  • declarative tablespaces: tablespaces stanza added to Cluster spec
  • temporary tablespaces: .spec.tablespaces[*].temporary
  • TLSv1.3 enforced by default on new PG=>12 clusters
  • improvements to output of cnpg status and cnpg report CLI commands

Nomad 1.7
#

TLDR: job actions

  • ability to define ‘actions’ in jobspecs, and execute them via web/API/CLI against running allocations
  • support for jobs using workload identity to authenticate with Consul / Vault
  • register jobs with multiple Consul clusters, and retrieve secrets from multiple Vault clusters [Enterprise]

Argo Events 1.9
#

TLDR: email triggers

  • support for SFTP and Gerrit event emissions
  • email trigger support
  • improved JetStream EventBus compatibility (single replica/exotic deployments)

Harbor 2.10
#

TLDR: improved robot (service) account creation

  • support for larger blobs - 128GB layers the new default, configurable
  • sort by storage quota in web UI
  • support for OCI distribution spec v1.1.0-RC3
  • wizard-driven robot account creation and RBAC

Prometheus 2.49
#

TLDR: selective promtool tests

  • heatmap visualiation in graph view of web UI
  • --run flag added to promtool, takes regex as argument, executes only matching rules
  • NS record support for DNS service discovery

Grafana 10.3
#

TLDR: better tooltips

  • zoom and pan supprt for canvas panel (canvasPanelPanZoom feature flagged)
  • improved tooltips when hovering over (a subset of popular) panels
  • colour indicators for percentile changes in stat panels
  • support for exporting graphs with table data as an appendix, or a separate PDF
  • selecting part of a log line surfaces a popover menu offering match/exclude filter options for that selection
  • support for transforming and plotting enum values
  • metrics and optional rate limiting for anonymous access sessions
  • improved ergonomics around contact points and notification templates in the Alerting web UI

Argo CD 2.10
#

TLDR: AppSet templating

  • improved templating of ApplicationSets via support for complex patches; no longer limited to strings
  • self-service notifications when using apps-in-any-namespace feature (introduced v2.5)
  • server side diff’s when ruunning an apply in dry-run mode (an extension of v2.5 introduced ServerSideApply)
  • PKCE auth flow extended to web UI (previously CLI only)

VictoriaMetrics 1.97
#

TLDR: LTS release

  • Hetzner {Cloud,Robot} scrape targets
  • vmagent support for DataDog v2 data ingest protocol
  • scalability improvements for high core count instances and in processing large responses (eg from kube-state-metrics)
  • support for dynamic re-reads of auth keys/passwords from file:// and https:// sources
  • web UI visualisation of traffic flows between component services

Teleport 15.0
#

TLDR: RemoteFX RDP

  • standalone K8s operator (previously deployed as sidecar, and only via teleport-cluster Helm chart)
  • streamed tsh play response (whole recording was previously downloaded, prior to play)
  • Windows: improved RDP engine performance (leverages RemoteFX codec), streamlined (both domain and workgroup) host registration
  • Teleport Connect prompts for MFA when connecting to K8s clusters, and adds support for TCP/HTTPS applications
  • automatic SSH connection resumption where possible (requires v15 on both tsh client and target node)
  • support for Okta SCIM provisioningsda
  • web UI rework, surfacing common pages in top nav, and improving responsive (mobile) views

Cilium 1.15
#

TLDR: Gateway API 1.0 support

  • support for correlating traffic to a specific NetworkPolicy (via Hubble)
  • ingress NetworkPolicy support, for traffic traversing both Cilium Ingress or Gateway API
  • support for Gateway API 1.0, including gRPC routing capabilitys and HTTP traffic mirroring/redirecting
  • MD5 support for BGP peering sessions
  • sensitive data can be programatically removed from Hubble collected flows
  • Hubble flows can be exported to file (consumed as logs)
  • further improvements to KVStoreMesh empowered scalability (511 meshed clusters!)
  • additional first-party Grafana dashboards: ‘Network Overview’ and ‘DNS Overview’
  • support for deploying Cilium via {Terraform,Pulumi} providers

vCluster 0.19
#

TLDR: single control pod (per child cluster)

  • apiserver and controller-manager functionality folded into syncer pod
  • plugins: refactor away from sidecars and towards initContainer deployment of binaries (into the syncer container)
  • support for centralised {validating,mutating} webhook configs [Pro]
  • embedded etcd support with EKS, k0s and k8s distro choices (adding to existing k3s support) [Pro]

Traefik 3.0
#

TLDR: Wasm plugins

  • support for K8s Gateway API 1.0
  • HTTP/3 support no longer ’experimental’; now a first-class protocol option
  • improved support for gRPC: grpcWeb middleware, and gRPC healthchecks
  • support for plugins written in Wasm (adding to existing Yaegi plugin extension engine)
  • support for OpenTelemetry (both metrics and traces, superseding OpenSensus/OpenTracing)
  • support for SPIFFE mTLS secured backends
  • support for requesting TLS certificates from your tailnet (via Tailscale API)
  • improved support for Consul meshing, and Nomad namespaces
  • Brotli compression algorithm support

GitLab 16.9
#

TLDR: MR review types

  • Duo Chat (underpinned by GCP Duet) available to both self-host and SaaS seats [Premium]
  • MR review submission granularity - select from {comment,approve,request changes}
  • improved validation of CI variables, and ability to resize value fields
  • REST API support for the first-party Slack app
  • ability to define and overlay a WIP limit on kanban boards
  • granular RBAC permission for cancelling CI jobs
  • improvements to VSCode extension (GitLab Workflow), particularly around surfacing security findings

Crossplane 1.15
#

TLDR: breaking change: default package registry

  • Python SDK for composition functions
  • new CLI capabilities: {beta} validate, {beta} convert, {beta} top (and improvements to trace / init)
  • xpkg.upbound.io as default package manager registry (previously index.docker.io)
  • alpha support (--enable-ssa-claims) for Server-Side Apply based syncing of XR’s and Claims

VictoriaMetrics 1.98
#

TLDR: mTLS listeners

  • support for accepting HTTP requests on multiple TCP addresses (ie passing -httpListenAddr more than once)
  • mTLS support across all components (on -httpListenAddr)
  • CLI arg to reset query cache on startup (-search.resetRollupResultCacheOnStartup)
  • support for data ingestion via DataDog lambda (/api/beta/sketches)
  • additional first-party dashboard stat panels: targets scraped/sec, and CPU spent on GC

Linkerd 2.15
#

TLDR: mesh expansion

  • stable releases now tied to a commercial license (Buoyant Enterprise Linkerd aka BEL); free <50 seats, weekly builds also remain free
  • support for SPIFFE workload identity (via SPIRE)
  • support for ‘mesh expansion’ - allowing Linkerd to handle non-Kubernetes workloads (inc mTLS, retries, circuit-breaking, ZTNA etc)
  • support for native sidecar containers (stable as of Kubernetes v1.29)

Prometheus 2.50
#

TLDR: experimental memory management

  • coloured JSON output for promtool test rules
  • automated memory limit handling [auto-gomemlimit feature flagged]
  • ~half dozen (minor) native histograms improvements
  • addition of analyze (histograms) command to promtool

Alertmanager 0.27
#

TLDR: v1 API removed

  • UTF-8 support (in label names and matchers)
  • support for webhook_url_file in Teams and Discord integrations
  • removal of /api/v1, following five years of deprecation
  • experimental support for including receiver name in *_total metrics [enable-feature=receiver-name-in-metrics feature flagged]

VictoriaMetrics 1.99
#

TLDR: CloudWatch OTel ingest

  • Grafana-like graph gap interpolation in vmui web UI
  • support for AWS Data Firehose ingest of CloudWatch metrics in OpenTelemetry format
  • improved compatibility with Prometheus scrape configs via addition of enable_compression option
  • support for filtering by group, rule or label in vmalert web UI

Tempo 2.4
#

TLDR: TraceQL metrics

  • declarative configuration of tiered caching (supports frontend search, bloom, parquet footer, and parquet page caches, more to follow)
  • large reduction in number of calls to object storage (now only polls meta.json for blocks Tempo lacks information about)
  • TraceQL metrics, an experimental feature facilitating creation of metrics from traces (akin to similar capability in LogQL)
  • vParquet3 promoted to default storage backend

Consul 1.18
#

TLDR: fault injection

  • first LTS releases (v1.15 + v1.18), and schedule for future commitments [Enterprise]
  • service mesh gains fault injection capabilities: HTTP/gRPC error code, response latency, and bandwidth limiting [Enterprise]
  • Amazon ECS integration improvements: support for transparent proxy mode, and configuring API gateways / terminating gateways as ECS tasks