v2.9.4

What's Changed

• Add github action to analyze dependencies from pull requests to avoid… by @taik0 in #980
• Bump golang.org/x/net from 0.33.0 to 0.36.0 by @dependabot in #983
• Bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 by @dependabot in #987
• go version upgraded to 1.24.2 by @kpacha in #991
• Change docker image to point to the official one by @alombarte in #990
• version v2.9.4 bumped by @kpacha in #992

Full Changelog: v2.9.3...v2.9.4

v2.9.3

What's Changed

• upgrade old ubuntu versions and use the same in all workflow steps by @kpacha in #969
• bump v2.9.3 by @kpacha in #979

Full Changelog: v2.9.2...v2.9.3

v2.9.2

What's Changed

• Bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5 by @dependabot in #974
• Bump github.com/go-jose/go-jose/v3 from 3.0.3 to 3.0.4 by @dependabot in #975

Full Changelog: v2.9.1...v2.9.2

v2.9.1

What's Changed

• update to fixed branch of krakend-otel for nil tracer by @dhontecillas in #964

Full Changelog: v2.9.0...v2.9.1

v2.9.0

What's Changed

• Fix race warnings by @thedae in #947
• Fix build by @thedae in #956
• Bump golang.org/x/net from 0.32.0 to 0.33.0 by @dependabot in #958
• New methods to lint the config file by @thedae in #954
• Bump krakend-lua to v2.6.1 by @thedae
• Integration of global param propagation for sequential merger by @thedae in #960
• Bump v2.9.0 by @kpacha in #963
• Update Go to 1.22.11 and Alpine to 3.21

New Contributors

• @thedae made their first contribution in #947

Full Changelog: v2.8.0...v2.9.0

v2.8.0

What's Changed

• Otel add backend and endpoint static attrs by @dhontecillas in #938
• upgrade to latest krakend-lua version by @kpacha in #937
• remove setting go version variable at link time by @dhontecillas in #929
• Bump version to 2.8.0 by @taik0 in #943

Full Changelog: v2.7.2...v2.8.0

v2.7.2

What's Changed

• lua pkg upgraded to v2.1.3 by @kpacha in #926

Full Changelog: v2.7.1...v2.7.2

v2.7.1

What's Changed

• Updated the JOSE library to unflag the vulnerability CVE-2024-28180 from scanner, even it does not affect KrakenD.
• The gocloud library has been updated to a higher version (includes minor security fixes for PubSub, Secrets, Azure and AWS
• OpenTelemetry libraries updated
• Go language updated
• The check plugin command printed unnecessarily the help command
• Prevent a failing Identity Provider to be queried constantly by introducing the property failed_jwk_key_cooldown
• OpenAPI was generating incorrect URL patterns with placeholders by decoding its special chars
• OpenAPI did not accept keys with dots in the schemas
• OpenAPI did not have dynamic routing into account and required to manually declare input_headers and input_query_strings, which are now automatic
• Tiered rate limit durations were incorrectly parsed
• Inheritance in the extended flexible configuration didn't allow special chars
• Make the KrakenD main module version detectable by Syft by @LaurentGoderre in #912

New Contributors

• @LaurentGoderre made their first contribution in #912

Full Changelog: v2.7.0...v2.7.1

v2.7.0

What's Changed

• Update Go and Alpine versions by @arambau-wgfs in #888
• Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.1 to 1.6.0 by @dependabot in #887
• always stack the cache factory on the backend by @kpacha in #891
• Update deps for 2 7 by @dhontecillas in #894
• Bump github.com/hashicorp/go-retryablehttp from 0.7.5 to 0.7.7 by @dependabot in #893
• set DNS Cache TTL time on startup by @dhontecillas in #904
• Add permissions to upload the security reports by @taik0 in #905
• Deps 2 7 updated libs by @dhontecillas in #906
• Release v2.7.0 by @kpacha in #902

Full Changelog: v2.6.3...v2.7.0

v2.6.3

What's Changed

• fix: typo by @testwill in #880
• deps: uplift go to 1.22.3 by @ALX99 in #881
• release v2.6.3 by @kpacha in #883

New Contributors

• @testwill made their first contribution in #880

Full Changelog: v2.6.2...v2.6.3