Notables changes
🆕 New features/Enhancements
- You can now pass parameters to package managers through environment variables using "options" field
🩹 Bug fixes
- Server package on recent rhel like system is fixed ( changes in postgresql packaging )
- Score excludes pending nodes (system update score of pending nodes was included into dashboard
- It was impossible de to apply multiple times the same jinja2 template on a node
- Directive page was slower than before (7.3) it is fixed.
- User may be disabled when using incompatible clean date and login date
🔒 Security
- Fixed add XSS in OpenSCAP plugin (GHSA-3pxp-7gwf-xm2g)
- /var/rudder/tmp was world-readable (GHSA-xjjc-8vw4-c9p2)
- OIDC users api token got their rights from user configuration file instead of their correct provider (GHSA-gr6h-8xj2-w29c)
- Path traversal in technique resource API (GHSA-h66x-c5pj-f5f8)
More
More details about the new features and installation/upgrade procedures can be found in the change logs.