Releases: cyberark/secretless-broker
Releases · cyberark/secretless-broker
Release list
v1.7.32
[1.7.32] - 2026-02-04
Changed
- Upgrade base docker images from Debian Bookworm to Trixie.
- Upgrade Go packages. (CNJR-7655)
Security
- Add message length limits to PostgreSQL protocol handler to prevent potential
denial-of-service via memory exhaustion. Startup messages are limited to 10KB
(matching PostgreSQL's MAX_STARTUP_PACKET_LENGTH) and authentication messages
are limited to 64KB (matching PostgreSQL's PG_MAX_AUTH_TOKEN_LENGTH). (CONJSE-2078)
v1.7.31
[1.7.31] - 2026-01-07
Changed
- Migrate AWS SDK for Go from v1 to v2 in:
internal/providers/awssecrets/provider.gointernal/plugin/connectors/http/aws/aws.go(HTTP v4 signing)
- Use localhost instead of 0.0.0.0 for listening addresses in k8s examples (CONJSE-2078)
v1.7.30
[1.7.30] - 2025-11-06
Changed
- Upgrade Go to 1.25 (CONJSE-2067)
- Update Go dependencies
v1.7.29
[1.7.29] - 2025-09-03
Changed
- Update README to align with Conjur's name change to CyberArk Secrets Manager and update SECURITY.md. CNJR-10966
- Upgrade base docker images from Debian Bullseye to Bookworm.
- Migrate from MySQL 8.1 to MySQL LTS and enable
mysql_native_passwordplugin in the configuration files. - Remove deprecated docker compose version declarations
- Update gosec security scanning configuration to use
securego/gosec:latestdocker image.
v1.7.28
[1.7.28] - 2025-04-01
Changed
- Upgrade Go to 1.24.x
v1.7.27
[1.7.27] - 2025-01-10
Security
- Update multiple dependencies to latest versions
v1.7.26
v1.7.25
v1.7.24
[1.7.24] - 2024-07-25
Security
- Update golang.org/x/net to v0.24.0
v1.7.22
[1.7.22] - 2024-03-11
Security
- Update ruby:3.0.6-slim-bullseye to ruby:3-slim-bullseye for docs and website generation (CONJSE-1850)
- Update Jekyll to v4.3.3 (CONJSE-1850)