Release Notes
This release focuses on security hardening, an upgrade to the Threat Intelligence Sharing program, and several stability and user experience fixes. Community Edition users are advised to update promptly.
Security Hardening
- Upgraded Nginx-related components to mitigate the potential security risk of CVE-2026-49975 and improve the runtime security of the protection service.
- Fixed an edge case in static file path handling related to Auth,improving security when abnormal paths are accessed.
Improvements
- Upgraded Threat Intelligence Sharing.
- Updated the IP geo location database.
Bug Fixes
- Fixed an issue where the application access log could automatically switch back to the real time log after refresh or polling while viewing the History log.
- Fixed an issue where a failed Free Cert application or renewal could trigger an abnormal full rebuild of application configuration.
- Optimized certificate synchronization and configuration reload logic to reduce unnecessary Nginx/MGT reloads when certificate content has not changed.