This release includes an important security fixes, so upgrading is strongly recommended.
This release includes a security fix which closes an additional IPv6 address bypasses that could allow the Link Check API to reach internal services or cloud metadata endpoints.
Security
- Fix incomplete SSRF protection in IsInternalIP() detection for IPv6 transition mechanisms (GHSA-w4mc-hhc6-xp28)
Feature
- Add wait support to readyz (#697)
Chore
- Compress websocket messages once per broadcast to improve performance (#695)
- Toggle websocket compression using HTTP compression setting (#695)
- Update Github Actions dependencies
- Update Go dependencies
- Update node dependencies
Fix
- Adjust header setting order in error response functions (#699)
Test
- Add readyz tests