GitLab 16.8 #
TLDR: GCP CI secrets
- support for GCP Secret Manager secrets (in CI jobs)
- GA for workspaces (GL’s take on remote development environments)
- blame info visible on default file page (previously required navigating to alternate page)
- ability to force MFA for administrator identities on self-managed instances
- ‘your groups’ view/filter in CI components catalog
- support for acting as a Maven dependency proxy
- improved issue analytics and DORA dashboards [Ultimate]
Coroot 0.21-0.27 #
TLDR: profiling datastore migration
- application health summaries
- support for monitoring MongoDB, inclusive of metrics, logs, traces, and cluster topology awareness
- AWS Fargate support (via cAdvisor scrapes)
- support for monitoring .NET runtimes
- deprecated Pyroscope as profiling datastore in favour of ClickHouse (already used for storing logs/traces)
CloudnativePG 1.22 #
TLDR: tablespace lifecycle management
- support for dynamic relabelling of Prometheus metrics via addition of .spec.monitoring.{podMonitorMetricRelabelings,podMonitorRelabelings
- declarative tablespaces: tablespacesstanza added toClusterspec
- temporary tablespaces: .spec.tablespaces[*].temporary
- TLSv1.3 enforced by default on new PG=>12 clusters
- improvements to output of cnpg statusandcnpg reportCLI commands
Nomad 1.7 #
TLDR: job actions
- ability to define ‘actions’ in jobspecs, and execute them via web/API/CLI against running allocations
- support for jobs using workload identity to authenticate with Consul / Vault
- register jobs with multiple Consul clusters, and retrieve secrets from multiple Vault clusters [Enterprise]
Argo Events 1.9 #
TLDR: email triggers
- support for SFTP and Gerrit event emissions
- email trigger support
- improved JetStream EventBus compatibility (single replica/exotic deployments)
Harbor 2.10 #
TLDR: improved robot (service) account creation
- support for larger blobs - 128GB layers the new default, configurable
- sort by storage quota in web UI
- support for OCI distribution spec v1.1.0-RC3
- wizard-driven robot account creation and RBAC
Prometheus 2.49 #
TLDR: selective promtool tests
- heatmap visualiation in graph view of web UI
- --runflag added to- promtool, takes regex as argument, executes only matching rules
- NSrecord support for DNS service discovery
Grafana 10.3 #
TLDR: better tooltips
- zoom and pan supprt for canvas panel (canvasPanelPanZoomfeature flagged)
- improved tooltips when hovering over (a subset of popular) panels
- colour indicators for percentile changes in stat panels
- support for exporting graphs with table data as an appendix, or a separate PDF
- selecting part of a log line surfaces a popover menu offering match/exclude filter options for that selection
- support for transforming and plotting enum values
- metrics and optional rate limiting for anonymous access sessions
- improved ergonomics around contact points and notification templates in the Alerting web UI
Argo CD 2.10 #
TLDR: AppSet templating
- improved templating of ApplicationSets via support for complex patches; no longer limited to strings
- self-service notifications when using apps-in-any-namespace feature (introduced v2.5)
- server side diff’s when ruunning an apply in dry-run mode (an extension of v2.5 introduced ServerSideApply)
- PKCE auth flow extended to web UI (previously CLI only)
VictoriaMetrics 1.97 #
TLDR: LTS release
- Hetzner {Cloud,Robot} scrape targets
- vmagentsupport for DataDog v2 data ingest protocol
- scalability improvements for high core count instances and in processing large responses (eg from kube-state-metrics)
- support for dynamic re-reads of auth keys/passwords from file://andhttps://sources
- web UI visualisation of traffic flows between component services
Teleport 15.0 #
TLDR: RemoteFX RDP
- standalone K8s operator (previously deployed as sidecar, and only via teleport-clusterHelm chart)
- streamed tsh playresponse (whole recording was previously downloaded, prior to play)
- Windows: improved RDP engine performance (leverages RemoteFX codec), streamlined (both domain and workgroup) host registration
- Teleport Connect prompts for MFA when connecting to K8s clusters, and adds support for TCP/HTTPS applications
- automatic SSH connection resumption where possible (requires v15 on both tshclient and target node)
- support for Okta SCIM provisioningsda
- web UI rework, surfacing common pages in top nav, and improving responsive (mobile) views
Cilium 1.15 #
TLDR: Gateway API 1.0 support
- support for correlating traffic to a specific NetworkPolicy(via Hubble)
- ingress NetworkPolicysupport, for traffic traversing both Cilium Ingress or Gateway API
- support for Gateway API 1.0, including gRPC routing capabilitys and HTTP traffic mirroring/redirecting
- MD5 support for BGP peering sessions
- sensitive data can be programatically removed from Hubble collected flows
- Hubble flows can be exported to file (consumed as logs)
- further improvements to KVStoreMesh empowered scalability (511 meshed clusters!)
- additional first-party Grafana dashboards: ‘Network Overview’ and ‘DNS Overview’
- support for deploying Cilium via {Terraform,Pulumi} providers
vCluster 0.19 #
TLDR: single control pod (per child cluster)
- apiserverand- controller-managerfunctionality folded into- syncerpod
- plugins: refactor away from sidecars and towards initContainerdeployment of binaries (into thesyncercontainer)
- support for centralised {validating,mutating} webhook configs [Pro]
- embedded etcd support with EKS, k0s and k8s distro choices (adding to existing k3s support) [Pro]
Traefik 3.0 #
TLDR: Wasm plugins
- support for K8s Gateway API 1.0
- HTTP/3 support no longer ’experimental’; now a first-class protocol option
- improved support for gRPC: grpcWebmiddleware, and gRPC healthchecks
- support for plugins written in Wasm (adding to existing Yaegi plugin extension engine)
- support for OpenTelemetry (both metrics and traces, superseding OpenSensus/OpenTracing)
- support for SPIFFE mTLS secured backends
- support for requesting TLS certificates from your tailnet (via Tailscale API)
- improved support for Consul meshing, and Nomad namespaces
- Brotli compression algorithm support
GitLab 16.9 #
TLDR: MR review types
- Duo Chat (underpinned by GCP Duet) available to both self-host and SaaS seats [Premium]
- MR review submission granularity - select from {comment,approve,request changes}
- improved validation of CI variables, and ability to resize value fields
- REST API support for the first-party Slack app
- ability to define and overlay a WIP limit on kanban boards
- granular RBAC permission for cancelling CI jobs
- improvements to VSCode extension (GitLab Workflow), particularly around surfacing security findings
Crossplane 1.15 #
TLDR: breaking change: default package registry
- Python SDK for composition functions
- new CLI capabilities: {beta} validate,{beta} convert,{beta} top(and improvements totrace/init)
- xpkg.upbound.ioas default package manager registry (previously- index.docker.io)
- alpha support (--enable-ssa-claims) for Server-Side Apply based syncing of XR’s and Claims
VictoriaMetrics 1.98 #
TLDR: mTLS listeners
- support for accepting HTTP requests on multiple TCP addresses (ie passing -httpListenAddrmore than once)
- mTLS support across all components (on -httpListenAddr)
- CLI arg to reset query cache on startup (-search.resetRollupResultCacheOnStartup)
- support for data ingestion via DataDog lambda (/api/beta/sketches)
- additional first-party dashboard stat panels: targets scraped/sec, and CPU spent on GC
Linkerd 2.15 #
TLDR: mesh expansion
- stable releases now tied to a commercial license (Buoyant Enterprise Linkerd aka BEL); free <50 seats, weekly builds also remain free
- support for SPIFFE workload identity (via SPIRE)
- support for ‘mesh expansion’ - allowing Linkerd to handle non-Kubernetes workloads (inc mTLS, retries, circuit-breaking, ZTNA etc)
- support for native sidecar containers (stable as of Kubernetes v1.29)
Prometheus 2.50 #
TLDR: experimental memory management
- coloured JSON output for promtool test rules
- automated memory limit handling [auto-gomemlimitfeature flagged]
- ~half dozen (minor) native histograms improvements
- addition of analyze(histograms) command topromtool
Alertmanager 0.27 #
TLDR: v1 API removed
- UTF-8 support (in label names and matchers)
- support for webhook_url_filein Teams and Discord integrations
- removal of /api/v1, following five years of deprecation
- experimental support for including receiver name in *_totalmetrics [enable-feature=receiver-name-in-metricsfeature flagged]
VictoriaMetrics 1.99 #
TLDR: CloudWatch OTel ingest
- Grafana-like graph gap interpolation in vmuiweb UI
- support for AWS Data Firehose ingest of CloudWatch metrics in OpenTelemetry format
- improved compatibility with Prometheus scrape configs via addition of enable_compressionoption
- support for filtering by group, rule or label in vmalertweb UI
Tempo 2.4 #
TLDR: TraceQL metrics
- declarative configuration of tiered caching (supports frontend search, bloom, parquet footer, and parquet page caches, more to follow)
- large reduction in number of calls to object storage (now only polls meta.json for blocks Tempo lacks information about)
- TraceQL metrics, an experimental feature facilitating creation of metrics from traces (akin to similar capability in LogQL)
- vParquet3 promoted to default storage backend
Consul 1.18 #
TLDR: fault injection
- first LTS releases (v1.15 + v1.18), and schedule for future commitments [Enterprise]
- service mesh gains fault injection capabilities: HTTP/gRPC error code, response latency, and bandwidth limiting [Enterprise]
- Amazon ECS integration improvements: support for transparent proxy mode, and configuring API gateways / terminating gateways as ECS tasks
