• Enabling header validation via fast property by @ilanachalom in https://github.com/Netflix/zuul/pull/2138

Full Changelog: https://github.com/Netflix/zuul/compare/v3.6.8...v3.6.9

• chore(deps): bump aws sdk and config by @houseme in https://github.com/rustfs/rustfs/pull/3035
• fix(tooling): harden internode transport benchmark setup by @marshawcoco in https://github.com/rustfs/rustfs/pull/3037
• docs(internode): analyze buffer lifecycle by @marshawcoco in https://github.com/rustfs/rustfs/pull/3046
• fix(ecstore): harden multipart part metadata visibility by @houseme in https://github.com/rustfs/rustfs/pull/3042
• feat(internode): label transport operation metrics by @marshawcoco in https://github.com/rustfs/rustfs/pull/3045
• docs(internode): inventory transport data paths by @marshawcoco in https://github.com/rustfs/rustfs/pull/3040
• fix(ecstore): allow expired delete markers on locked buckets by @houseme in https://github.com/rustfs/rustfs/pull/3048
• fix(utils): map verified Linux filesystem magic values by @overtrue in https://github.com/rustfs/rustfs/pull/3051
• fix(utils): cover sha256 checksum validation by @overtrue in https://github.com/rustfs/rustfs/pull/3052
• feat(internode): define transport capabilities by @marshawcoco in https://github.com/rustfs/rustfs/pull/3047
• fix(scanner): preserve background heal compatibility by @weisd in https://github.com/rustfs/rustfs/pull/3041
• fix(storage): add scoped timeout policy and startup fs guardrail by @houseme in https://github.com/rustfs/rustfs/pull/3056
• fix(tls): resolve RUSTFS_TLS_PATH startup regression by @houseme in https://github.com/rustfs/rustfs/pull/3059
• fix: bind run script to localhost by @GatewayJ in https://github.com/rustfs/rustfs/pull/3063
• docs(internode): align transport adapter scope by @marshawcoco in https://github.com/rustfs/rustfs/pull/3064
• docs(internode): keep transport adapter OSS scoped by @marshawcoco in https://github.com/rustfs/rustfs/pull/3067
• fix: derive run script CORS console port by @overtrue in https://github.com/rustfs/rustfs/pull/3068
• fix(replication): avoid skipping existing-object backfill for new targets by @LeonWang0735 in https://github.com/rustfs/rustfs/pull/2992
• test(internode): cover RemoteDisk adapter routing by @marshawcoco in https://github.com/rustfs/rustfs/pull/3070
• perf(ecstore): use direct std writes for local disk by @overtrue in https://github.com/rustfs/rustfs/pull/3069
• test(internode): cover adapter metrics validation by @marshawcoco in https://github.com/rustfs/rustfs/pull/3071
• chore(deps): update flake.lock by @houseme in https://github.com/rustfs/rustfs/pull/3074
• test(utils): cover bracketed IPv6 zone host parsing by @overtrue in https://github.com/rustfs/rustfs/pull/3073
• refactor(tls): centralize runtime foundation by @houseme in https://github.com/rustfs/rustfs/pull/3065
• feat(s3select): improve SelectObjectContent streaming by @GatewayJ in https://github.com/rustfs/rustfs/pull/3072
• fix(replication): preserve multipart pending state by @weisd in https://github.com/rustfs/rustfs/pull/3058
• docs(skills): quote release bump description by @houseme in https://github.com/rustfs/rustfs/pull/3077
• fix(user): service account expiration handling with RFC3339 by @SamuraJey in https://github.com/rustfs/rustfs/pull/3078
• fix(ecstore): correct is_truncated logic in ListObjectsV2 pagination by @DemoMacro in https://github.com/rustfs/rustfs/pull/2997
• refactor(credentials): derive RPC secret fallback and remove IAM keygen duplication by @houseme in https://github.com/rustfs/rustfs/pull/3079
• fix(data-usage): refresh admin usage after object changes by @marshawcoco in https://github.com/rustfs/rustfs/pull/3081
• fix: include deployment ID in admin info by @overtrue in https://github.com/rustfs/rustfs/pull/3083
• fix(heal): rebuild parity shards during repair by @weisd in https://github.com/rustfs/rustfs/pull/3086
• fix: rebuild wiped disks during admin heal by @overtrue in https://github.com/rustfs/rustfs/pull/3084
• fix(heal): restore single disk data during deep heal by @marshawcoco in https://github.com/rustfs/rustfs/pull/3085
• fix: unify runtime readiness publication and graceful shutdown flow by @houseme in https://github.com/rustfs/rustfs/pull/3087

• @DemoMacro made their first contribution in https://github.com/rustfs/rustfs/pull/2997

Full Changelog: https://github.com/rustfs/rustfs/compare/1.0.0-beta.4...1.0.0-beta.5

Meilisearch v1.45.0 mainly improves indexing performance when changing settings and also improves document fetch performance.

• Autobatch deletions by filter with additions by @Kerollmops in https://github.com/meilisearch/meilisearch/pull/6389 While Meilisearch tries to improve indexing speed when users add documents and mix those additions with deletions via a filter, it is still an anti-pattern to interleave both. It is recommended to delete documents by ID whenever possible, as the engine is optimized to merge them, thereby drastically speeding up indexation.
• Improve settings indexing performance & visibility We are introducing support for more settings in the nez settings indexer. If you find any bugs, please report them on GitHub. You can disable the new settings indexer by setting the environment variable like this: MEILI_EXPERIMENTAL_NO_EDITION_2024_FOR_SETTINGS=true or use the equivalent dedicated CLI parameter.
  • Support non-extracting parameters by @Kerollmops in https://github.com/meilisearch/meilisearch/pull/6393 Changing one of the following settings is now directly handled by the new settings indexer: displayed fields, synonyms, the primary key, authorize typos, min word len one and two typos, max values per facet, sort facet values by, pagination max total hits, search cut off, chat, and foreign keys.
  • Support the global facet search by @Kerollmops in https://github.com/meilisearch/meilisearch/pull/6390 Meilisearch can use the new settings indexer when the settings change the facet search root boolean parameter.

• Fetching documents no longer blocks the actix worker @dureuill in https://github.com/meilisearch/meilisearch/pull/6402
• Fix an internal error when changing the binary quantization by @Kerollmops in https://github.com/meilisearch/meilisearch/pull/6396 We fixed an issue where users were changing the binary-quantized boolean in embedder configurations. The change corrupted the database, making it impossible to change the quantization in the future. Users had to create a binary-quantized embedder from scratch, or they could never change it again.

• Make timeout test less flaky on Windows by @dureuill in https://github.com/meilisearch/meilisearch/pull/6388

Full Changelog: https://github.com/meilisearch/meilisearch/compare/v1.44.0...v1.45.0

• Admin Server and Worker

  • EC placement: shared replica-placement resolver, snapshot + Place core, capacity fixes, tiering by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9621
  • EC encode: place shards via ecbalancer.Place + configurable replica placement by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9623
  • Delete the EC placement package now that encode/repair use ecbalancer.Place by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9624
  • EC detection: build placement snapshot once per cycle (fix large-topology timeout) by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9625
  • admin: expose Prometheus metrics by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9652

• S3 APIs

  • filer: serialize same-path mutations with a per-path lock by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9639
  • filer: evaluate a write precondition in CreateEntry by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9650
  • filer: add ObjectTransaction for atomic multi-entry object writes by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9646
  • filer: add RECOMPUTE_LATEST mutation to ObjectTransaction by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9647
  • filer: add extended-attribute guard clauses for object-lock by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9648
  • s3: use oidc: prefix for trust-policy conditions in IAM example by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9653
  • filer: add ObjectTransactionBatch for multi-key object writes by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9649
  • filer: reuse the caller's fetched entry in CreateEntry by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9645
  • filer: let PATCH_EXTENDED replace Entry.content by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9654
  • s3: dial the object lock's primary filer directly by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9626
  • s3: route single-entry object writes to the owner filer, off the DLM by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9629
  • s3: serialize bucket config writes with field-level filer patches by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9655
  • s3: route versioned PutObject finalize off the DLM by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9631
  • s3: route object-lock object writes off the distributed lock by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9635
  • s3: route versioned COPY and delete-marker off the DLM by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9633
  • s3: route multipart-upload completion off the distributed lock by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9632
  • s3: route object-lock version-specific deletes off the distributed lock by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9657
  • s3: route metadata-only self-copy off the distributed lock by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9638
  • ObjectTransaction: filer-side forwarding via route_key by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9659

• FUSE Mount

  • filer: POSIX advisory lock set primitive (phase 1 of distributed FUSE locking) by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9660
  • filer: serialize the POSIX lock set for entry metadata (phase 2) by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9661
  • filer: in-memory POSIX lock authority (Manager) by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9663
  • filer: routed PosixLock RPC over the in-memory authority by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9664
  • mount: fix SetAttr/GetAttr crash from concurrent chunk append under writebackCache by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9667
  • mount: route POSIX advisory locks to the owner filer under -dlm by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9669
  • mount: keep the posix-lock hint until the release RPC succeeds by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9670
  • filer: session lease + reaping for POSIX locks by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9666
  • mount,filer: re-assert POSIX locks via keepalive (ownership migration + restart) by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9668
  • fix: avoid rclone nil close panics by @7y-9 in https://github.com/seaweedfs/seaweedfs/pull/9674
  • filer: cooling-off dual-read for POSIX locks during ring changes by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9672
  • filer: warm-up + fail-closed cooling for POSIX locks on owner (re)start by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9673
  • filer/posixlock: remove the unused lock-set serde by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9676
  • test/fuse_dlm: cross-mount POSIX locks + survival across a ring change by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9677

• Misc

  • test: wait for a writable volume before lifecycle tests' first write by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9658
  • fix(master): re-register volumes missing from the lookup index by @chrislusf in https://github.com/seaweedfs/seaweedfs/pull/9620

Full Changelog: https://github.com/seaweedfs/seaweedfs/compare/4.28...4.29

• Adds Go SDK support for nullable vector columns across dense, binary, sparse, and int8 vector types.
• Adds Array field partial update helpers for ARRAY_APPEND and ARRAY_REMOVE in upsert requests.
• Validates that vector fields added to existing collections are nullable before sending AddCollectionField requests.
• Bumps the Go SDK version constant to 2.6.5 and updates milvus-proto/go-api/v2 to v2.6.17.

• Nullable vector columns: Added nullable column constructors for vector fields: NewNullableColumnFloatVector, NewNullableColumnBinaryVector, NewNullableColumnFloat16Vector, NewNullableColumnBFloat16Vector, NewNullableColumnInt8Vector, and NewNullableColumnSparseFloatVector. These constructors accept compact non-null vector values plus validData, and validate that the values length matches the valid row count. (#49848)

• Nullable vector response decoding: FieldDataColumn now decodes nullable vector field data using ValidData for FloatVector, BinaryVector, Float16Vector, BFloat16Vector, SparseFloatVector, and Int8Vector. Null rows are preserved in the returned column while compact wire-format vector payloads are expanded back to row-aligned columns. (#49848)

• Array partial update operations: Added upsert helpers WithArrayAppend(fieldName), WithArrayRemove(fieldName), and WithFieldPartialOp(fieldName, op) for Array field partial updates. Non-REPLACE field ops are serialized into UpsertRequest.FieldOps and automatically enable partial_update for both column-based and row-based upserts. (#49328)

• AddCollectionField vector validation: AddCollectionField now validates options before sending the RPC and rejects vector fields added to existing collections unless the field is marked nullable=true, preventing invalid schema changes from reaching the server. (#49848)

• All-null sparse vector handling: Sparse vector column serialization now handles empty value sets by emitting dimension 0, allowing all-null nullable sparse vector columns to round-trip without panics or invalid dimension calculations. (#49848)

• Nullable column row counts: Added Column.ValidCount() support so nullable columns can report the number of non-null rows separately from total row count. Struct-array columns return their total length. (#49848)

• @marcelo-cjl
• @weiliu1031

This is the General Availability release of Redis 8.8 in Redis Open Source.

• New data structure: Array (@antirez)
• Subkey notification for hash fields - field-level notifications
• INCREX: a window counter rate limiter combining INCR, INCRBY, INCRBYFLOAT, bounds, and expiration (@raffertyyu + Redis team)
• XNACK: a new streams command - allow consumers to explicitly release pending messages
• ZUNION, ZINTER, ZUNIONSTORE, ZINTERSTORE: new COUNT aggregator
• JSON.SET: new FPHA argument to specify the FP type for homogeneous FP arrays
• TS.RANGE, TS.REVRANGE, TS.MRANGE, TS.MREVRANGE: multiple aggregators in a single command
• FT.HYBRID KNN clause: new argument to request fewer candidates per shard
• FT.PROFILE HYBRID: profiling support for FT.HYBRID
• Performance improvements

• Alpine and Debian Docker images - https://hub.docker.com/_/redis
• Install using snap - see https://github.com/redis/redis-snap
• Install using brew - see https://github.com/redis/homebrew-redis
• Install using RPM - see https://github.com/redis/redis-rpm
• Install using Debian APT - see https://github.com/redis/redis-debian

• Ubuntu 22.04 (Jammy Jellyfish), 24.04 (Noble Numbat), 26.04 (Resolute Raccoon)
• Rocky Linux 8.10, 9.7, 10.1
• AlmaLinux 8.10, 9.7, 10.1
• Debian 12.13 (Bookworm), Debian 13.4 (Trixie)
• Alpine 3.23
• macOS 14.8.4 (Sonoma), 15.7.4 (Sequoia), 26.3 (Tahoe) - for both Intel and ARM

• #15237 INCREX syntax update
• #15005 Memory tracking can be enabled at runtime in non-clustered mode
• RedisTimeSeries/RedisTimeSeries#1930 Cluster topology changes during a multi-shard command are not handled (MOD-14439)
• RedisBloom/RedisBloom#1007 Memory leak on RDB load (MOD-15418)

nginx-1.30.2 stable version has been released, with a fix for buffer overflow vulnerability in the ngx_http_rewrite_module (CVE-2026-9256).

See official CHANGES-1.30 on nginx.org.

Below is a release summary generated by GitHub.

• nginx-1.30.2-RELEASE by @pluknet in https://github.com/nginx/nginx/pull/1397

Full Changelog: https://github.com/nginx/nginx/compare/release-1.30.1...release-1.30.2

nginx-1.31.1 mainline version has been released, with a fix for buffer overflow vulnerability in the ngx_http_rewrite_module (CVE-2026-9256).

See official CHANGES on nginx.org.

Below is a release summary generated by GitHub.

• Fix the set-creation-date.yaml workflow by @ac000 in https://github.com/nginx/nginx/pull/1353
• Mp4: avoid adding or comparing to null pointer by @arut in https://github.com/nginx/nginx/pull/1360
• HTTP/2: limit Content-Type and Location response header length by @arut in https://github.com/nginx/nginx/pull/1359
• Mail error path fixes by @arut in https://github.com/nginx/nginx/pull/1358
• Rewrite: harden escape flags control by @arut in https://github.com/nginx/nginx/pull/1381
• Rewrite: fix buffer overflow with overlapping captures by @arut in https://github.com/nginx/nginx/pull/1395
• nginx-1.31.1-RELEASE by @pluknet in https://github.com/nginx/nginx/pull/1396

Full Changelog: https://github.com/nginx/nginx/compare/release-1.31.0...release-1.31.1