JavaGolangJavaScriptSwiftAndroidRustMiddleware
7 hours ago
rustfs
rustfs

1.0.0-beta.6

What's Changed

New Contributors

Full Changelog: https://github.com/rustfs/rustfs/compare/1.0.0-beta.5...1.0.0-beta.6

13 hours ago
nacos
alibaba

3.2.2 (May 29th, 2026)

Nacos 3.2.2 is mainly a bugfix and experience-improvement release for the 3.2 series.

This release focuses on:

  • Console experience improvements for Config, Naming, MCP, Skill, AI resources, and namespace workflows.
  • Stability and compatibility fixes across Config, Naming, plugins, startup scripts, and AI resource handling.
  • AI Registry import, discovery, publishing, subscription, and security improvements.

For AI Registry and Console users, this release adds or improves:

  • Importing AI resources from operator-configured external registries.
  • Skill well-known discovery, Skill subscription, and latest protocol adapter support.
  • Config diff confirmation, Prompt Markdown download, and Skill upload lifecycle improvements.

It also fixes bugs across Config, Naming, Console, MCP, Skill, plugins, and client-side watch handling.

Detailed changes in this release:

Feature

[#14695] Support label-based matching for Config gray rules. [#14848] Add Prompt version download as Markdown. [#14907] Support specifying a target version when uploading Skills. [#14985] Add persistent instance deregistration support in Console v3. [#15022] Support optional Skill auto-publish after review. [#15031] Extend nacos.functionMode with microservice and ai modes. [#15142] Support drag-and-drop ZIP upload and batch Skill upload. [#15183] Support importing AI resources from operator-configured external registries, including MCP resources, Skill well-known resources, importer APIs, SPI models, built-in presets, and source-based import UI. [#15234] Support commit messages when uploading AI skills. [#15247] Support the latest Skill well-known protocol in the registry adapter. [#15263] Add Skill subscription support and refactor AgentSpec subscription to HTTP polling with 304 handling.

Enhancement/Refactor

[#14833][#15221] Route AI resource version trace logging through trace events and the default plugin. [#14911] Split LDAP authentication into an optional plugin and package the LDAP plugin JAR. [#14983] Enforce non-frontmatter Markdown body content during Skill validation. [#15059] Add the reviewed version status after pipeline approval for Skill versions. [#15066] Harden AgentSpec ZIP parsing with Zip Slip, Zip Bomb, and entry-count defenses. [#15138] Add Config publish diff confirmation in the new Console. [#15145] Restrict forcePublish to valid Skill states and add pipeline stale flags for re-edit. [#15164] Make Skill ZIP entry and size limits configurable. [#15165] Parallelize AgentSpec storage writes to align with Skill behavior. [#15258] Enable reviewed status by default for the AI publish pipeline.

BugFix

[#11122] Accept healthCheckEnabled as a Naming switch-entry alias. [#14774] Shade Caffeine into the OIDC plugin JAR to avoid NoClassDefFoundError. [#14882] Fix Console theme color loss by adding RGB fallbacks. [#14952] Fix the incorrect MCP protocol value when the restToMcp switch is off. [#14992] Add v3 Naming APIs to DistroFilter to fix client API instance registration and deregistration in clusters. [#14997] Preserve SKILL.md indentation and validate Skill versions during upload and download. [#15000] Add the missing group_id LIKE placeholder in BaseConfigInfoMapper. [#15004] Replace deprecated AccessControlException usage with SecurityException. [#15037] Fix access denied errors on Console history detail, rollback, and compare pages. [#15067] Fix the missing write lock in MemoryMcpCacheIndex#removeIndex. [#15073] Preserve multi-byte UTF-8 characters across DiskUtils chunk boundaries. [#15136] Fix the password modification dialog display. [#15141] Fix namespace description editing when namespaceId is missing. [#15150] Prevent PostgreSQL tenant nulls from causing config sync row explosions. [#15152] Fix Config page display mismatches after namespace switching. [#15160] Fix ConfigChangeAspect misclassifying Console config changes as RPC when srcType is missing. [#15162] Default unlisted AI resources to base64 to avoid UTF-8 corruption. [#15167] Fix Console controller mapping with request context paths. [#15171] Re-exec startup scripts under bash when invoked through sh. [#15192] Reject submit requests for non-draft AI resource versions to protect formal version status. [#15201] Fix Skill description inconsistencies between list and detail after uploading a new version. [#15207] Fix MCP Console editor regressions for object-type tool input fields. [#15228] Guard fuzzy-watch futures against lost and spurious wakeups. [#15240] Fix Skill install card overflow with long Skill names in Console next. [#15252] Preserve namespace context on Console AI resource pages.

Dependencies

[#15039] Upgrade the PostgreSQL JDBC driver from 42.7.2 to 42.7.11. [#15060] Upgrade Micrometer to 1.15.10 to fix the Prometheus endpoint. [#15087] Upgrade vulnerable dependencies reported for the Nacos server image and enable default AI importers. [#15148] Add a console-ui-next npm min-release-age policy for supply-chain security.

Java Version Requirements

Module Java Required
Nacos-Server / Nacos-Console Java 17
Nacos-Client Java 8
Nacos-Maintainer-Client Java 8

New Contributors

Full Changelog: https://github.com/alibaba/nacos/compare/3.2.1...3.2.2

1 days ago
prometheus
prometheus

3.12.0 / 2026-05-28

  • [SECURITY] Remote-write: Reject snappy-compressed requests whose declared decoded length exceeds the 32MB. Thanks to @hibrian827 for reporting it. #18642
  • [SECURITY] STACKIT SD: Fix secrets being exposed in plaintext via /-/config endpoint. Thanks to @August829 and @Phaxma for reporting. GHSA-39j6-789q-qxvh #18649
  • [CHANGE] TSDB/Agent: Adds Start Timestamp field to all WAL Histogram samples in memory; used st-storage flag is enabled. #18221
  • [FEATURE] API: Add /api/v1/status/self_metrics endpoint returning the current state of the Prometheus server's own metrics about itself as JSON. #18411
  • [FEATURE] Discovery: Add DigitalOcean Managed Databases service discovery #18287
  • [FEATURE] Prometheus: Add support for the aix/ppc64 compilation target #18321
  • [FEATURE] Discovery: Add Outscale VM service discovery (outscale_sd_configs) for discovering scrape targets from the Outscale Cloud API. #18139
  • [FEATURE] PromQL: Emit a warning when sort, sort_by_label or sort_by_label_desc is used within range (matrix) queries, as these functions do not have effect in that context. #18498
  • [FEATURE] PromQL: Add start(), end(), range(), and step() experimental functions #17877
  • [FEATURE] PromQL: Update resets() function to consider start timestamp resets. Hidden behind use-start-timestamps feature flag. #18627
  • [FEATURE] Prometheus: Promote auto-reload-config as stable #18620
  • [FEATURE] TSDB/Agent: Add CheckpointFromInMemorySeries option to agent.DB that enables checkpoint based on in-memory series. #17948
  • [FEATURE] UI: Add a web interface for deleting time series and cleaning tombstones, accessible from the Status menu. #18390
  • [FEATURE] PromQL: Use start timestamps for rate(), irate(), and increase()calculations, behind a feature flaguse-start-timestamps. Doesn't work together with extended range selectors anchoredandsmoothed`. #18344
  • [FEATURE] Scrape: Added a feature flag st-synthesis which synthesizes unknown STs for scraped cumulative metrics. Useful when Remote Writing 2.0 with delta or Otel-based backends. #18279
  • [FEATURE] promqltest: support @st annotation in load blocks to specify per-sample start timestamps. #18360
  • [ENHANCEMENT] API: reject concurrent fgprof profiles. #18651
  • [ENHANCEMENT] AWS SD: Add optional external_id field to ECS/MSK/RDS/Elasticache. #18579
  • [ENHANCEMENT] AWS SD: Add optional external_id field. #17171
  • [ENHANCEMENT] Discovery: Propagate SD target updates faster by introducing dynamic backoff interval instead of static 5s interval for throttling. #18187
  • [ENHANCEMENT] Promtool: Add --header flag to query instant command, matching existing query range behaviour. #18418
  • [ENHANCEMENT]: AWS SD: Allows EC2 service discovery to discover IPv6 addresses to communicate with target endpoints. The private IPv4 address remains the default when both IPv4 and IPv6 addresses are present. #16088
  • [PERF] TSDB: Make head chunk lookup in range queries constant time instead of quadratic time #18302
  • [PERF] TSDB: Skip entire stripes in mmapHeadChunks when no series need mmapping, reducing CPU utilization significantly at production-relevant scales. #18541
  • [PERF] TSDB: Skip clean series during periodic head chunk mmap using cached head chunk count #18272
  • [PERF] PromQL: Address FloatHistogram.KahanAdd performance regression on Go 1.26. #18568
  • [BUGFIX] PromQL: Fix info() function incorrectly handling negated __name__ matchers #17932
  • [BUGFIX] API: Return duration expressions in /parse_ast. #18624
  • [BUGFIX] API: correctly document formats accepted for duration query request parameters (step, timeout and lookback delta) in OpenAPI spec #18305
  • [BUGFIX] Scrape: AppenderV2 now tracks staleness even when OOO/duplicate series errors happen similar to AppenderV1 #18567
  • [BUGFIX] Config: Validate remote_write queue_config fields at load time to prevent runtime panic and silent misconfiguration. #18209
  • [BUGFIX] Discovery/Consul: Add health_filter for Health API filtering, fixing breakage when using Catalog-only fields like ServiceTags in filter. #18479 #18499
  • [BUGFIX] OTLP: limit decompressed body size for gzip-encoded OTLP write requests. #18408
  • [BUGFIX] PromQL: Fix smoothed rate/increase returning zero instead of no result when all data falls strictly after the query range. #18523
  • [BUGFIX] PromQL: Fix metric name not being dropped when last_over_time or first_over_time is applied to subqueries containing name-dropping functions like abs(). #18409
  • [BUGFIX] PromQL: Fix missing warning when mixing exponential and custom-bucket histograms in stats queries. #18660
  • [BUGFIX] PromQL: Fix parsing of range() keyword in duration expressions such as foo[5m+range()]. #18623
  • [BUGFIX] PromQL: Fix smoothed vector selector returning no results in binary operations when the @ modifier is used. #18531
  • [BUGFIX] PromQL: Reject NaN, infinite, and out-of-range duration expressions instead of silently producing an out-of-range time.Duration. #18639
  • [BUGFIX] Scrape: Fix panic when scraping malformed native histograms. #18414
  • [BUGFIX] Scrape: fix panic when scraping a target exposing a summary with no quantiles via the protobuf format. #18382
  • [BUGFIX] Scrape: fix scrape failure log file occasionally not applied after a configuration reload. #18421
  • [BUGFIX] TSDB: Allow retention percentage with new data path. #18628
  • [BUGFIX] TSDB: Preserve decimal precision in percentage-based retention #18374
  • [BUGFIX] TSDB: fix prometheus_tsdb_head_chunks going negative after WAL replay #18401
  • [BUGFIX] TSDB: panic with native histograms during query of overlapping chunks. #18692
  • [BUGFIX] Tracing: fix startup failure for insecure OTLP HTTP tracing #18469
  • [BUGFIX] UI: Escape label values offered by PromQL autocomplete. #18658
  • [BUGFIX] UI: Improve Y-axis tick label precision for graph values over small ranges. #18682
  • [BUGFIX] prometheus_sd_refresh* and prometheus_sd_discovered_targets metrics for specific scrape jobs are deleted when the scrape job is removed. #17614
  • [BUGFIX] Remote: fixed validation for received RW2 requests when parsing metadata unit symbols. This fixes a case when request would cause (recovered) handler panic. #18641
  • [BUGFIX] TSDB/Agent: fix race in agent appender where concurrent appends for the same label set could produce duplicate in-memory series and duplicate WAL records. #18292
  • [BUGFIX] Config: Update --enable-feature flag description and sort feature names. #18487
1 days ago
MeiliSearch
meilisearch

v1.45.1 🦒

🪲 Bug Fixes

Full Changelog: https://github.com/meilisearch/meilisearch/compare/v1.45.0...v1.45.1

2 days ago
thingsboard
thingsboard

ThingsBoard 4.3.1.2 Release

What's Changed

Security

Core & Rule Engine

UI

Transport

Edge

Full Changelog: https://github.com/thingsboard/thingsboard/compare/v4.3.1.1...v4.3.1.2

2 days ago
thingsboard
thingsboard

ThingsBoard 4.2.2.2 Release

What's Changed

Security

Core & Rule Engine

UI

Transport

Full Changelog: https://github.com/thingsboard/thingsboard/compare/v4.2.2.1...v4.2.2.2

2 days ago
zuul
Netflix

v3.6.9

What's Changed

Full Changelog: https://github.com/Netflix/zuul/compare/v3.6.8...v3.6.9

3 days ago
rustfs
rustfs

1.0.0-beta.5

What's Changed

New Contributors

Full Changelog: https://github.com/rustfs/rustfs/compare/1.0.0-beta.4...1.0.0-beta.5

3 days ago
dgraph
dgraph-io

v25.4.0-preview1

This preview release showcases the per-predicate mutation pipeline feature. This feature increases mutation performance for write heavy processes under certain conditions. See the PR for more information.

IMPORTANT A feature flag enables this functionality: --feature-flags="mutations-pipeline-threshold=N" — N=0 disables the pipeline entirely (legacy path), N=1 always uses it, N>1 only routes mutations with ≥ N edges to it. The pipeline pays a per-predicate goroutine spin-up cost, so tiny mutations are slightly slower on it; bulk multi-predicate mutations are faster (crossover ≈ 100 edges in in-process benches; live-loading the 1M dataset is ~1.5× faster end-to-end at threshold=1 vs. legacy). As shipped, the current setting is 1, meaning always ON. It's recommended that for your testing you set the value to somewhere around 100.

3 days ago
dgraph
hypermodeinc

v25.4.0-preview1

This preview release showcases the per-predicate mutation pipeline feature. This feature increases mutation performance for write heavy processes under certain conditions. See the PR for more information.

IMPORTANT A feature flag enables this functionality: --feature-flags="mutations-pipeline-threshold=N" — N=0 disables the pipeline entirely (legacy path), N=1 always uses it, N>1 only routes mutations with ≥ N edges to it. The pipeline pays a per-predicate goroutine spin-up cost, so tiny mutations are slightly slower on it; bulk multi-predicate mutations are faster (crossover ≈ 100 edges in in-process benches; live-loading the 1M dataset is ~1.5× faster end-to-end at threshold=1 vs. legacy). As shipped, the current setting is 1, meaning always ON. It's recommended that for your testing you set the value to somewhere around 100.