search

csmith / centauri

TLS-terminating reverse proxy in Go
MIT License
1 stars 1 forks source link

Bump tailscale.com from 1.36.2 to 1.38.4 #48

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps tailscale.com from 1.36.2 to 1.38.4.

Release notes

Sourced from tailscale.com's releases.

1.38.4

All Platforms

  • Build Go 1.20.3 to address security fixes (CVE-2023-24537, CVE-2023-24538, and CVE-2023-24536). These address potential DoS attacks against DNS over HTTPS and Funnel that can occur over the public internet, and PeerAPI attacks launched from other nodes already on the tailnet.
  • Added path support for proxy targets with tailscale serve
  • Error displays when trying to use Funnel and tailscale up --shields-up

Windows

  • When connected to a Windows 10 client using Windows RDP, the Tailscale taskbar right-click option for the remote client works as expected (#7698)

1.38.3

All Platforms

  • Funnel is now beta.
  • Trim mount point prefix from serve HTTP proxy paths.
  • Fix X-Forwarded-For IP address for Funnel.

Linux

  • Fix cert storage to actually use Kubernetes secrets.

Windows

  • We upgraded the Walk framework for the GUI client to improve menu responsiveness.

1.38.2

All Platforms

  • rename tailnet lock tskey-wrap to tailnet lock sign

FreeBSD

  • fixes a bug setting the effective group ID on some non-interactive Tailscale SSH sessions. This issue is specific to FreeBSD's implementation of setgroups and does not impact other platforms.

Linux

macOS

1.38.1

News

  • Early warning: as early as August 2023, Windows 7, 8, Server 2008 and Server 2012 will no longer be supported. Similarly, for macOS, macOS 10.13 High Sierra or 10.14 Mojave will no longer be supported and macOS 10.15 Catalina or later will be required.

All platforms

  • The tailscale debug portmap command replaces tailscaled debug -portmap; this is now available on platforms without a tailscaled binary (like the macOS App Store).
  • Several improvements to UPnP portmapping have been made that should allow it to work with a broader set of home routers (#7377).
  • Add tailscale configure to help configure third party applications to use Tailscale features.
  • Add tailscale debug derp to help diagnose DERP-related difficulty.
  • Allow tailnet-lock to be used with preauth keys.
  • The tailscale serve command has been overhauled, and we've moved Funnel to its own command, tailscale funnel (docs).
  • Added tailscale debug capture to write pcaps for debugging.

Linux

... (truncated)

Commits
  • 043a345 VERSION.txt: this is v1.38.4
  • 214217d cmd/tailscale/cli: [serve] add support for proxy paths (#7800)
  • 00205f0 ssh/tailssh: handle output matching better in tests (#7799)
  • 61f36aa cmd/tailscale/cli: do not allow turning Funnel on while shields-up (#7770)
  • 296d682 cmd/tailscale/cli: fix inconsistency between serve text and example command
  • 383b7c7 cmd/tailscale/cli: make serve and funnel visible in list (#7737)
  • c3301ab go.toolchain.rev: update for go 1.20.3
  • 49e305f ssh/tailssh: fix race in errors returned when starting recorder
  • 71a5f2a ssh/tailssh: add tests for recording failure
  • 1b1ac05 ssh/tailssh: add session recording test for non-pty sessions
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Looks like tailscale.com is up-to-date now, so this is no longer needed.