core (enterprise): Ensure Role Governing Policies are only applied down the namespace hierarchy
core/namespace (enterprise): Introduce the concept of high-privilege namespace (administrative namespace),
which will have access to some system backend paths that were previously only accessible in the root namespace. [GH-21215]
core: Bump Go version to 1.21.1.
database/couchbase: Update plugin to v0.9.3 [GH-22854]
database/couchbase: Update plugin to v0.9.4 [GH-22871]
database/elasticsearch: Update plugin to v0.13.3 [GH-22696]
database/mongodbatlas: Update plugin to v0.10.1 [GH-22655]
database/redis-elasticache: Update plugin to v0.2.2 [GH-22584]
database/redis-elasticache: Update plugin to v0.2.3 [GH-22598]
database/redis: Update plugin to v0.2.2 [GH-22654]
database/snowflake: Update plugin to v0.9.0 [GH-22516]
events: Log level for processing an event dropped from info to debug. [GH-22997]
events: data_path will include full data path of secret, including name. [GH-22487]
replication (enterprise): Switch to non-deprecated gRPC field for resolver target host
sdk/logical/events: EventSender interface method is now SendEvent instead of Send. [GH-22487]
secrets/transit: fix a regression that was honoring nonces provided in non-convergent modes during encryption. This vulnerability, CVE-2023-4680, is fixed in Vault 1.14.3, 1.13.7, and 1.12.11. [GH-22852, HSEC-2023-28]
sentinel (enterprise): Sentinel RGP policies allowed for cross-namespace denial-of-service. This vulnerability, CVE-2023-3775, is fixed in Vault Enterprise 1.15.0, 1.14.4, and 1.13.8.[HSEC-2023-29]
CHANGES:
auth/alicloud: Update plugin to v0.16.0 [GH-22646]
core (enterprise): Ensure Role Governing Policies are only applied down the namespace hierarchy
core/namespace (enterprise): Introduce the concept of high-privilege namespace (administrative namespace),
which will have access to some system backend paths that were previously only accessible in the root namespace. [GH-21215]
core: Bump Go version to 1.21.1.
database/couchbase: Update plugin to v0.9.3 [GH-22854]
database/couchbase: Update plugin to v0.9.4 [GH-22871]
database/elasticsearch: Update plugin to v0.13.3 [GH-22696]
database/mongodbatlas: Update plugin to v0.10.1 [GH-22655]
database/redis-elasticache: Update plugin to v0.2.2 [GH-22584]
database/redis-elasticache: Update plugin to v0.2.3 [GH-22598]
database/redis: Update plugin to v0.2.2 [GH-22654]
database/snowflake: Update plugin to v0.9.0 [GH-22516]
events: Log level for processing an event dropped from info to debug. [GH-22997]
events: data_path will include full data path of secret, including name. [GH-22487]
replication (enterprise): Switch to non-deprecated gRPC field for resolver target host
sdk/logical/events: EventSender interface method is now SendEvent instead of Send. [GH-22487]
activity (enterprise): filter all fields in client count responses by the request namespace [GH-27790]
activity (enterprise): remove deprecated fields distinct_entities and non_entity_tokens [GH-27830]
activity log: Deprecated the field "default_report_months". Instead, the billing start time will be used to determine the start time
when querying the activity log endpoints. [GH-27350]
activity log: Deprecates the current_billing_period field for /sys/internal/counters/activity. The default start time
will automatically be set the billing period start date. [GH-27426]
activity: The activity export API now responds with a status of 204 instead 400 when no data exists within the time range specified by start_time and end_time. [GH-28064]
activity: The startTime will be set to the start of the current billing period by default.
The endTime will be set to the end of the current month. This applies to /sys/internal/counters/activity,
/sys/internal/counters/activity/export, and the vault operator usage command that utilizes /sys/internal/counters/activity. [GH-27379]
api: Update backoff/v3 to backoff/v4.3.0 [GH-26868]
auth/alicloud: Update plugin to v0.19.0 [GH-28263]
cli: The undocumented -dev-three-node and -dev-four-cluster CLI options have been removed. [GH-27578]
consul-template: updated to version 0.39.1 [GH-27799]
core(enterprise): Updated the following two control group related errors responses to respond with response code 400 instead of 500: control group: could not find token, and control group: token is not a valid control group token.
core: Bump Go version to 1.22.7
database/couchbase: Update plugin to v0.12.0 [GH-28327]
database/elasticsearch: Update plugin to v0.16.0 [GH-28277]
database/mongodbatlas: Update plugin to v0.13.0 [GH-28268]
database/redis-elasticache: Update plugin to v0.5.0 [GH-28293]
database/redis: Update plugin to v0.4.0 [GH-28404]
database/snowflake: Update plugin to v0.12.0 [GH-28275]
sdk: Upgrade to go-secure-stdlib/plugincontainer@v0.4.0, which also bumps github.com/docker/docker to v26.1.5+incompatible [GH-28269]
Bumps the gomod-backward-compatible group with 17 updates:
0.5.0
0.5.1
3.2.3
3.3.0
1.6.6
1.7.2
0.47.0
0.47.1
0.110.0
0.113.0
1.13.0
1.15.0
0.13.0
0.14.0
1.34.1
1.34.2
1.20.3
1.20.4
0.26.0
0.27.0
0.192.0
0.198.0
0.30.3
0.31.1
0.30.3
0.31.1
0.30.3
0.31.1
0.0.0-20230726121419-3b25d923346b
0.0.0-20240711033017-18e509b52bc8
0.18.4
0.19.0
1.8.11
1.8.17
Updates
cloud.google.com/go/compute/metadata
from 0.5.0 to 0.5.1Changelog
Sourced from cloud.google.com/go/compute/metadata's changelog.
... (truncated)
Commits
e992f09
chore: release main (#10792)22adc9a
chore(main): release firestore 1.17.0 (#10597)e9a551e
feat(firestore): Adding distance threshold and result field (#10802)839f30e
chore(main): release auth 0.9.4 (#10846)b9dfce5
chore: update gapic-generator-go to 0.47.0 (#10848)9b4b2fa
docs(pubsub): update documentation for 31 day subscription message retention ...2bdedef
fix(compute/metadata): check error chain for retryable error (#10840)2d5a9f9
feat(dataproc): add support for new Dataproc features (#10817)f9869f7
fix(auth): enable self-signed JWT for non-GDU universe domain (#10831)6720291
chore(main): release bigtable 1.32.0 (#10815)Updates
github.com/Masterminds/sprig/v3
from 3.2.3 to 3.3.0Release notes
Sourced from github.com/Masterminds/sprig/v3's releases.
Changelog
Sourced from github.com/Masterminds/sprig/v3's changelog.
Commits
e708470
Merge pull request #408 from mattfarina/update-changelog-3.38fc4354
Updating the changelog for the 3.3.0 releasecb81a32
Merge pull request #407 from mattfarina/remove-dup-math-functions2637693
Removing duplicate documentation06b9a87
Merge pull request #290 from zzhu41/patch-1e663ec6
Merge pull request #369 from chey/patch-1bb2f73f
Merge pull request #375 from carlpett/patch-1f07659e
Merge pull request #400 from itzik-elayev/master98b35c1
Add closing bracket7a88928
Merge pull request #406 from mattfarina/update-mergoUpdates
github.com/argoproj/argo-rollouts
from 1.6.6 to 1.7.2Release notes
Sourced from github.com/argoproj/argo-rollouts's releases.
... (truncated)
Changelog
Sourced from github.com/argoproj/argo-rollouts's changelog.
... (truncated)
Commits
59e5bd3
fix: replicaSet not scaled down due to incorrect annotations (#3762) (#3784)131b572
fix(metricprovider): reuse http.Transport for http.Client (#3780)a0b7332
fix(controller): Get the right resourceName for traefik.io.Fixes #3615 (#3759)e621fb2
fix(analysis): explicitly set datadog aggregator to last only on v2 (#3730)9efeaa7
fix: add update verb to ClusterRole permissions for scaleDown feature. Fixes ...321fd68
fix(analysis): Take RollbackWindow into account when Reconciling Analysis Run...c0db627
fix(controller): use the stableRS from the rollout context rather tha… (#3664)62fb6cd
fix(dashboard): Update pod status logic to support native sidecars. Fixes #33...6a99ea9
fix: docs site version selector broken (#3590)e472955
fix: don't default datadog aggregator (#3643)Updates
github.com/gruntwork-io/terratest
from 0.47.0 to 0.47.1Release notes
Sourced from github.com/gruntwork-io/terratest's releases.
Commits
1a1a8c1
Merge pull request #1438 from roysha1/master5eca5da
update go-getterf9d5fb2
Merge pull request #1436 from gruntwork-io/fix-circle-ci05ddb3d
Fix circle cif5dd7d8
Merge pull request #1428 from gruntwork-io/dependabot/go_modules/github.com/d...23885a8
Bump github.com/docker/dockerea2688e
Merge pull request #1434 from gruntwork-io/dependabot/bundler/docs/activesupp...e790ff3
Bump activesupport from 6.0.6.1 to 6.1.7.5 in /docs2bff0c8
Merge pull request #1433 from gruntwork-io/dependabot/bundler/docs/commonmark...a3209a0
Merge pull request #1410 from gruntwork-io/dependabot/go_modules/github.com/d...Updates
github.com/hashicorp/hcp-sdk-go
from 0.110.0 to 0.113.0Release notes
Sourced from github.com/hashicorp/hcp-sdk-go's releases.
Changelog
Sourced from github.com/hashicorp/hcp-sdk-go's changelog.
Commits
5a3b0ae
updated CHANGELOG.md8bdc555
Update cloud-vault-secrets SDK14c1de4
updated CHANGELOG.md8766d02
Delete old cloud-vault-scanning-proxy client (#268)99ec972
Update cloud-vault-radar SDK49dbdfa
Update cloud-vault-scanning-proxy SDK8bfb9c4
updated CHANGELOG.md2bae0b1
Update cloud-waypoint-service SDK769fc2a
Update cloud-vagrant-box-registry SDKUpdates
github.com/hashicorp/vault/api
from 1.13.0 to 1.15.0Release notes
Sourced from github.com/hashicorp/vault/api's releases.
... (truncated)
Changelog
Sourced from github.com/hashicorp/vault/api's changelog.
... (truncated)
Commits
b4d0727
backport of commit 771470c28f099c2af5342c76d94716d45aa6887e (#23012)f8da51c
backport of commit 88ed074287d99da0e298589c5236fa094f770b08 (#23263)9e00b34
backport of commit ac9f411949b57669884157a6b6239cb586023175 (#23259)20af1eb
backport of commit 036cbcebd9c5669edbb4519c68cc56f8b83f12d6 (#23258)99b916a
backport of commit 8924f9592d9ff6013c11d5459c376a90908a3c4c (#23257)4e439e0
backport of commit 1d61aeb8aebc96eecbb6a35e10bd914b4d0f41f4 (#23249)565427a
backport of commit 1e76ad42ef4221cb8a58e050d2edbfc552a878a0 (#23247)6fafd52
backport: Support mlock and custom tmpdir for containerized plugins (#23215) ...d3927bc
Backport UI: Add pagination to new PKI (#23238)5603003
backport of commit 68dd82c902ecf4487d9c17729527da9befb81a7f (#23246)Updates
github.com/hashicorp/vault/sdk
from 0.13.0 to 0.14.0Changelog
Sourced from github.com/hashicorp/vault/sdk's changelog.
... (truncated)
Commits
ab8bc34
update vault auth submodules to api/v1.15.0 (#28338)6fe1b88
Remove the BETA badge from EST in documentation (#28265)7c0fb83
Update Go to 1.22.7. (#28335)45acb81
Update vault-plugin-secrets-kv to v0.20.0 (#28334)582035e
Added storage limits (#28270)3924128
[VAULT-30189] enos: verify identity and OIDC tokens (#28274)149c78f
Update vault-plugin-database-couchbase to v0.12.0 (#28327)Superseded by #936.