What's Changed
- Updated the JOSE library to unflag the vulnerability CVE-2024-28180 from scanner, even it does not affect KrakenD.
- The gocloud library has been updated to a higher version (includes minor security fixes for PubSub, Secrets, Azure and AWS
- OpenTelemetry libraries updated
- Go language updated
- The check plugin command printed unnecessarily the help command
- Prevent a failing Identity Provider to be queried constantly by introducing the property
failed_jwk_key_cooldown - OpenAPI was generating incorrect URL patterns with placeholders by decoding its special chars
- OpenAPI did not accept keys with dots in the schemas
- OpenAPI did not have dynamic routing into account and required to manually declare input_headers and input_query_strings, which are now automatic
- Tiered rate limit durations were incorrectly parsed
- Inheritance in the extended flexible configuration didn't allow special chars
- Make the KrakenD main module version detectable by Syft by @LaurentGoderre in #912
New Contributors
- @LaurentGoderre made their first contribution in #912
Full Changelog: v2.7.0...v2.7.1