• Add YAQL v1.0 support to Mistral. Earlier versions are deprecated. (improvement)
• Update CLI so st2 run / st2 execution run and st2 execution re-run commands exit with
  non-zero code if the action fails. (improvement)
• Move st2auth service authentication backends to a "repo per backend" model. Backends are now also
  dynamically discovered and registered which makes it possible to easily create and use custom
  backends. For backward compatibility reasons, flat_file backend is installed And available by
  default. (new feature, improvement)
• New st2auth authentication backend for authenticating against LDAP servers -
  https://github.com/StackStorm/st2-auth-backend-ldap. (new feature)
• Default to rule being disabled if the user doesn't explicitly specify enabled attribute when
  creating a rule via the API or inside the rule metadata file when registering local content
  (previously it defaulted to enabled).
• Fix timestamp_lt and timestamp_gt filtering in the /executions API endpoint. Now we
  return a correct result which is expected from a user-perspective. (bug-fix)
• Enable Mistral workflow cancellation via st2 execution cancel. (improvement)
• Make sure that alias execution endpoint returns a correct status code and error message if the
  referenced action doesn't exist.
• Allow action-alias to be created and deleted from CLI.
• Allow user to select keystone backend in the st2auth service. (bug-fix)
• Fix packs.info action so it correctly exists with a non-zero status code if the pack doesn't
  exist or if it doesn't contain a valid .gitinfo file. (bug-fix)
• Fix packs.info action so it correctly searches all the packs base dirs. (bug-fix)
• Add support for --profile flag to all the services. When this flag is provided service runs
  in the profiling module which means all the MongoDB queries and query related profile data is
  logged. (new-feature)
• Introduce API Keys that do not expire like Authentication tokens. This makes it easier to work
  with webhook based integrations. (new-feature)
• Allow user to define trigger tags in sensor definition YAML files. (new feature) #2000
  [Tom Deckers]
• Fix a bug in stdout and stderr consumption in paramiko SSH runner where reading a fixed
  chunk byte array and decoding it could result in multi-byte UTF-8 character being read half way
  resulting in UTF-8 decode error. This happens only when output is greater than default chunk size
  (1024 bytes) and script produces utf-8 output. We now collect all the bytes from channel
  and only then decode the byte stream as utf-8.
• Update CLI so it supports caching tokens for different users (it creates a different file for each
  user). This means you can now use ST2_CONFIG_FILE option without disabling token cache.
  (improvement)
• Cleanup timers and webhook trigger definitions once all rules referencing them are removed. (bug-fix)
• Enable pseudo tty when running remote SSH commands with the paramiko SSH runner. This is done
  to match existing Fabric behavior. (bug-fix)
• Fix CLI so it skips automatic authentication if credentials are provided in the config on "auth"
  command. (bug fix)
• Strip the last '\r' or '\r\n' from both stdout and stderr streams from paramiko and local
  runner output. This is done to be compatible with fabric output of those streams. (bug-fix)
• Include parameters when viwewing output an execution on the CLI. (improvement)
• CLI renders parameters and output as yaml for better readability. (improvement)
• Set env variables (user provided and system assigned) before running remote command or script
  action with paramiko. (bug-fix)
• Fix a bug in Paramiko SSH runner where cwd could just be accessed in sudo mode but cd
  was outside scope of sudo in the command generated. Now, cd is inside the scope of
  sudo. (bug-fix)
• Fix a bug in Paramiko SSH runner where kwargs keys in script arguments were not shell
  injection safe. For example, kwarg key could contain spaces. (bug-fix)
• Fix a bug in Paramiko SSH runner where JSON output in stdout or stderr wasn't transformed
  to object automatically. (bug-fix)
• Paramiko SSH runner no longer runs a remote command with sudo if local user and remote user
  differ. (bug-fix)
• Fix a bug with the CLI token precedence - now the auth token specified as an environment variable
  or as a command line argument has precedence over credentials in the CLI config. (bug fix)
• Support versioned APIs for auth controller. For backward compatibility, unversioned API calls
  get redirected to versioned controllers by the server. (improvement)
• Add option to verify SSL cert for HTTPS request to the core.http action. (new feature)
• Update remote runner to include stdout and stderr which was consumed so far when a timeout
  occurs. (improvement)
• Fix st2-self-check script to check whether to use http/https when connecting to st2, to disable
  Windows test by default, and to check test status correctly. (bug-fix)
• Reduce the wait time between message consumption by TriggerWatcher to avoid latency (improvement)
• Use exclusive messaging Qs for TriggerWatcher to avoid having to deal with old messages
  and related migration scripts. (bug-fix)
• Allow user to specify value for the From field in the sendmail action by passing from
  parameter to the action. (improvement)
  [pixelrebel]
• Allow user to update / reinstall Python dependencies listed in requirements.txt inside the
  pack virtual environment by passing update=True parameter to packs.setup_virtualenv
  action or by using new packs.update_virtualenv action. (new feature)
  [jsjeannotte]
• Pack on install are now assigned an owner group. The pack_group property allows to pick this
  value and default is st2packs. (new feature)