Releases: pivotal/credhub-release
Releases · pivotal/credhub-release
2.12.70
2.12.69
Security fixes
- Bumped nettty-codec-http to fix CVE-2024-29025.
What's Changed
- Documented how to clean up orphaned encrypted_value records.
- Removed a fix that was released in 2.12.67 for a bug that caused CredHub to leave orphaned encrypted_value records - it required permissions for adding triggers to the database that are not available in some databases.
- Various dependency bumps.
Full Changelog: 2.12.66...2.12.69
2.12.67
What's Changed
⚠️ Known Issues
- This CredHub release might fail to start if CredHub is configured with a database vendor that enforces additional access control on database triggers creation (e.g. Amazon RDS), as this release will attempt to create database triggers at start time. This issue is still under investigation. We recommend that you do not use this release if you are using vendors like Amazon RDS.
Fixes
Dependency Bumps
- Build(deps): bump com.google.guava:guava from 33.0.0-jre to 33.1.0-jre
- Build(deps): bump org.postgresql:postgresql from 42.7.2 to 42.7.3
- Build(deps): bump com.google.api.grpc:proto-google-common-protos
- Build(deps): bump org.owasp:dependency-check-gradle from 9.0.9 to 9.0.10
Full Changelog: 2.12.66...2.12.67
2.12.66
What's Changed
- Build(deps): Bump rubocop from 1.62.0 to 1.62.1 in /spec by @dependabot in #199
- Build(deps): Bump rubocop-ast from 1.31.1 to 1.31.2 in /spec by @dependabot in #198
- Build(deps): bump io.netty:netty-tcnative-boringssl-static
- Bump: gradlew to 8.6
Full Changelog: 2.12.65...2.12.66
2.12.65
2.12.64
2.12.63
Maintenance Release
Full Changelog: 2.12.62...2.12.63
2.12.62
Maintenance release
Full Changelog: 2.12.61...2.12.62
2.12.61
Bug fix
- Fix docker startup - Fixes: cloudfoundry/credhub#689
What's Changed
- Build(deps): Bump rspec-core from 3.12.2 to 3.12.3 in /spec by @dependabot in #192
- Build(deps): Bump rspec-expectations from 3.12.3 to 3.12.4 in /spec by @dependabot in #191
- Build(deps): Bump rspec-mocks from 3.12.6 to 3.12.7 in /spec by @dependabot in #190
- Build(deps): Bump rspec from 3.12.0 to 3.13.0 in /spec by @dependabot in #188
- Bumps
grpcVersion
from 1.61.0 to 1.61.1.
Full Changelog: 2.12.60...2.12.61