https://fluentbit.io/announcements/v5.0.1/

• moth: update banner to v5.0 by @edsiper in https://github.com/fluent/fluent-bit/pull/11628
• tests: runtime: Mark another port 4318 raced test case by @cosmo0920 in https://github.com/fluent/fluent-bit/pull/11627
• tests: CI test stabilization by @mabrarov in https://github.com/fluent/fluent-bit/pull/11625
• workflows: ensure 5.0 releases are handled by @patrick-stephens in https://github.com/fluent/fluent-bit/pull/11631
• opentelemetry: add OTLP JSON and OTLP Proto helpers by @edsiper in https://github.com/fluent/fluent-bit/pull/11624

Full Changelog: https://github.com/fluent/fluent-bit/compare/v5.0.0...v5.0.1

• Add listener tag to ssl handshake metrics by @gavinbunney in https://github.com/Netflix/zuul/pull/2106

Full Changelog: https://github.com/Netflix/zuul/compare/v3.5.3...v3.5.4

• #18572 agent Error out if configuration directory is not readable
• #18574 agent Reject negative collection_offset
• #18568 inputs Add startup-errors of input models to gather statistics
• #18586 inputs.opcua_listener Parse namespace prefixes and nested browse paths in event fields
• #18628 inputs.opcua_listener Resume metrics after OPC UA session loss
• #18530 inputs.ping Do not show warning when timeout not set
• #18569 inputs.sip Use local_address for Via header hostname
• #18531 inputs.snmp Disable OID increase check
• #18556 outputs.cloudwatch Allow to send the max of 30 dimensions
• #18567 outputs.heartbeat Skip selfstat collection when status is not configured

• #18594 deps Bump cloud.google.com/go/auth from 0.18.2 to 0.19.0
• #18595 deps Bump cloud.google.com/go/pubsub/v2 from 2.4.0 to 2.5.0
• #18549 deps Bump cloud.google.com/go/storage from 1.60.0 to 1.61.3
• #18548 deps Bump github.com/Azure/azure-sdk-for-go/sdk/messaging/azeventhubs/v2 from 2.0.1 to 2.0.2
• #18543 deps Bump github.com/SAP/go-hdb from 1.15.2 to 1.16.1
• #18592 deps Bump github.com/SAP/go-hdb from 1.16.1 to 1.16.2
• #18591 deps Bump github.com/antchfx/xmlquery from 1.5.0 to 1.5.1
• #18603 deps Bump github.com/coocood/freecache from 1.2.5 to 1.2.7
• #18590 deps Bump github.com/fatih/color from 1.18.0 to 1.19.0
• #18593 deps Bump github.com/go-ldap/ldap/v3 from 3.4.12 to 3.4.13
• #18544 deps Bump github.com/gophercloud/gophercloud/v2 from 2.11.0 to 2.11.1
• #18604 deps Bump github.com/hashicorp/vault/api from 1.22.0 to 1.23.0
• #18587 deps Bump github.com/jackc/pgx/v4 to github.com/jackc/pgx/v5
• #18596 deps Bump github.com/klauspost/compress from 1.18.4 to 1.18.5
• #18624 deps Bump github.com/lxc/incus/v6 from 6.22.0 to 6.23.0
• #18606 deps Bump github.com/nats-io/nats-server/v2 from 2.12.5 to 2.12.6
• #18445 deps Bump github.com/prometheus/prometheus from 0.308.1 to 0.310.0
• #18537 deps Bump github.com/testcontainers/testcontainers-go/modules/azure from 0.40.0 to 0.41.0
• #18545 deps Bump github.com/testcontainers/testcontainers-go/modules/kafka from 0.40.0 to 0.41.0
• #18550 deps Bump github.com/testcontainers/testcontainers-go/modules/vault from 0.40.0 to 0.41.0
• #18597 deps Bump github.com/yuin/goldmark from 1.7.16 to 1.7.17
• #18589 deps Bump go.opentelemetry.io/collector/pdata from 1.53.0 to 1.54.0
• #18600 deps Bump go.step.sm/crypto from 0.76.2 to 0.77.1
• #18540 deps Bump golang.org/x/mod from 0.33.0 to 0.34.0
• #18551 deps Bump golang.org/x/net from 0.51.0 to 0.52.0
• #18542 deps Bump google.golang.org/api from 0.270.0 to 0.272.0
• #18570 deps Bump google.golang.org/grpc from 1.79.2 to 1.79.3
• #18605 deps Bump k8s.io/client-go from 0.35.2 to 0.35.3
• #18541 deps Bump modernc.org/sqlite from 1.46.1 to 1.46.2
• #18598 deps Bump modernc.org/sqlite from 1.46.2 to 1.47.0
• #18536 deps Bump the aws-sdk-go-v2 group with 11 updates
• #18588 deps Bump the aws-sdk-go-v2 group with 4 updates

• Fixed XSS vulnerability in notification center by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15204
• Fixed CVE-2026-24308, CVE-2026-24281 and CVE-2026-24400 by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15244
• Added configurable security headers and env-var-backed CORS configuration by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15254
• Fixed SSRF DNS rebinding bypass, added allow-list by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15253
• Fixed CVE-2026-24281, CVE-2026-24308, CVE-2026-24400, CVE-2026-29063, CVE-2026-29087, CVE-2026-29786, CVE-2026-30827, CVE-2026-31802, CVE-2026-32141, CVE-2026-32635, CVE-2026-27904 by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15251
• Fixed CVE-2026-22731, CVE-2026-22732, CVE-2026-22733, CVE-2026-22737 + Spring Boot 3.5 by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15278
• Fixed CVE-2026-33228 by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15293
• Fixed CVE-2026-33870, CVE-2026-33871 and GHSA-72hv-8253-57qq by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15315
• Fixed CVE-2026-33895, CVE-2026-33894, CVE-2026-33896, CVE-2026-33750, CVE-2026-4923, CVE-2026-33671 by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15322
• Fixed CVE-2026-0861, CVE-2026-0915, CVE-2025-15281 for Docker images by @ViacheslavKlimov

• Sanitize database error messages by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15262
• Added OTA package data cleanup by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/14775
• Fixed notification requests and RPC cleanup timeout on large datasets by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/14762
• Added WS update on telemetry deletion by @dashevchenko in https://github.com/thingsboard/thingsboard/pull/14781

• Updated locales da_DK, de_DE, el_GR, es_ES, fr_FR, it_IT, ja_JP, nl_NL, no_NO, pt_BR, tr_TR, uk_UA, zh_CN by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15237
• Hidden "Show on widgets" button on sysadmin level by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15203
• Fixed WS reconnect loop and notification spam when session limit is reached by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15219
• Fixed missing translation for Polylines toggle in map settings by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15252
• Fixed resetting of validation on storeLink property by @mtsymbarov-del in https://github.com/thingsboard/thingsboard/pull/15168
• Fixed time series table widgets tab style by @mtsymbarov-del in https://github.com/thingsboard/thingsboard/pull/15267
• Fixed proxy error handling for 502/503/504 HTTP status codes by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15292
• Fixed string-items-list autocomplete selection and blur handling by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15273

• Support combined PEM cert+key for Edge gRPC SSL by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/15205

• MQTTS metrics and client address logging on exceptionCaught by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/15112
• Fixed LwM2M Redis stores startup: use separate connections for SCAN and GET by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/15143

Full Changelog: https://github.com/thingsboard/thingsboard/compare/v4.3.1...v4.3.1.1

• Fixed XSS vulnerability in notification center by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15204
• Fixed CVE-2026-24308, CVE-2026-24281 and CVE-2026-24400 by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15244
• Added configurable security headers and env-var-backed CORS configuration by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15254
• Fixed SSRF DNS rebinding bypass, added allow-list by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15253
• Fixed CVE-2026-24281, CVE-2026-24308, CVE-2026-24400, CVE-2026-29063, CVE-2026-29087, CVE-2026-29786, CVE-2026-30827, CVE-2026-31802, CVE-2026-32141, CVE-2026-32635, CVE-2026-27904 by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15251
• Fixed CVE-2026-22731, CVE-2026-22732, CVE-2026-22733, CVE-2026-22737 + Spring Boot 3.5 by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15278
• Fixed CVE-2026-33228 by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15293
• Fixed CVE-2026-33870, CVE-2026-33871 and GHSA-72hv-8253-57qq by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15315
• Fixed CVE-2026-33895, CVE-2026-33894, CVE-2026-33896, CVE-2026-33750, CVE-2026-4923, CVE-2026-33671 by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15322

• Sanitize database error messages by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/15262
• Added OTA package data cleanup by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/14775
• Fixed notification requests and RPC cleanup timeout on large datasets by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/14762
• Added WS update on telemetry deletion by @dashevchenko in https://github.com/thingsboard/thingsboard/pull/14781

• Updated locales da_DK, de_DE, el_GR, es_ES, fr_FR, it_IT, ja_JP, nl_NL, no_NO, pt_BR, tr_TR, uk_UA, zh_CN by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15237
• Hidden "Show on widgets" button on sysadmin level by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15203
• Fixed WS reconnect loop and notification spam when session limit is reached by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15219
• Fixed resetting of validation on storeLink property by @mtsymbarov-del in https://github.com/thingsboard/thingsboard/pull/15168
• Fixed proxy error handling for 502/503/504 HTTP status codes by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15292
• Fixed string-items-list autocomplete selection and blur handling by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/15273

• Support combined PEM cert+key for Edge gRPC SSL by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/15205

• Fixed LwM2M Redis stores startup: use separate connections for SCAN and GET by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/15143

Full Changelog: https://github.com/thingsboard/thingsboard/compare/v4.2.2...v4.2.2.1

Nacos 3.2.1-2026.03.30 is a snapshot release focused on critical bug fixes for issues discovered in 3.2.0, particularly around AI module dependency conflicts, console UI bugs, and race conditions in the skill publish pipeline.

Key highlights include:

• Dependency Resolution: Upgraded MCP SDK to 0.17.0 to resolve json-schema-validator conflicts affecting AI module functionality
• AI Module Stability: Fixed race condition in skill publish pipeline and streamlined skill download routing
• Console UI Fixes: Addressed configuration file editing errors and namespace ID validation issues in the new UI
• Input Validation: Enhanced parameter validation in ops controller forms for better security

• [#14794] Support force-publish skills for admin user

• [#14784] Validate input parameters in ops controller forms for better security

• [#14765] Fix configuration file editing error in 3.2 console
• [#14768] Fix /v3/console/ai/mcp/importToolsFromMcp failure due to json-schema-validator dependency conflict
• [#14771] Fix batch import failure in legacy console UI
• [#14775] Add missing OIDC-related configurations to application.properties template
• [#14783] Remove downloadSkillZip from AiClientProxy interface and route skill download directly to HTTP client
• [#14786] Eliminate race condition in AI publish pipeline by pre-generating executionId
• [#14794] Fix namespace ID validation issue in new UI when adding custom namespace

• [#14782] Upgrade MCP SDK to 0.17.0 to resolve json-schema-validator conflict

Full Changelog: https://github.com/alibaba/nacos/compare/3.2.0...3.2.1-2026.03.30

• [CHANGE] Hetzner SD: The __meta_hetzner_datacenter label is deprecated for the role robot but kept for backward compatibility, use the __meta_hetzner_robot_datacenter label instead. For the role hcloud, the label is deprecated and will stop working after the 1 July 2026. #17850
• [CHANGE] Hetzner SD: The __meta_hetzner_hcloud_datacenter_location and __meta_hetzner_hcloud_datacenter_location_network_zone labels are deprecated, use the __meta_hetzner_hcloud_location and __meta_hetzner_hcloud_location_network_zone labels instead. #17850
• [CHANGE] Promtool: Redirect debug output to stderr to avoid interfering with stdout-based tool output. #18346
• [FEATURE] AWS SD: Add Elasticache Role. #18099
• [FEATURE] AWS SD: Add RDS Role. #18206
• [FEATURE] Azure SD: Add support for Azure Workload Identity authentication method. #17207
• [FEATURE] Discovery: Introduce prometheus_sd_last_update_timestamp_seconds metric to track the last time a service discovery update was sent to consumers. #18194
• [FEATURE] Kubernetes SD: Add support for node role selectors for pod roles. #18006
• [FEATURE] Kubernetes SD: Introduce pod-based labels for deployment, cronjob, and job controller names: __meta_kubernetes_pod_deployment_name, __meta_kubernetes_pod_cronjob_name and __meta_kubernetes_pod_job_name, respectively. #17774
• [FEATURE] PromQL: Add </ and >/ operators for trimming observations from native histograms. #17904
• [FEATURE] PromQL: Add experimental histogram_quantiles variadic function for computing multiple quantiles at once. #17285
• [FEATURE] TSDB: Add storage.tsdb.retention.percentage configuration to configure the maximum percent of disk usable for TSDB storage. #18080
• [FEATURE] TSDB: Add an experimental fast-startup feature flag that writes a series_state.json file to the WAL directory to track active series state across restarts. #18303
• [FEATURE] TSDB: Add an experimental st-storage feature flag. When enabled, Prometheus stores ingested start timestamps (ST, previously called Created Timestamp) from scrape or OTLP in the TSDB and Agent WAL, and exposes them via Remote Write 2. #18062
• [FEATURE] TSDB: Add an experimental xor2-encoding feature flag for the new TSDB block float sample chunk encoding that is optimized for scraped data and allows encoding start timestamps. #18062
• [ENHANCEMENT] HTTP client: Add AWS external_id support for sigv4. #17916
• [ENHANCEMENT] Kubernetes SD: Deduplicate deprecation warning logs from the Kubernetes API to reduce noise. #17829
• [ENHANCEMENT] TSDB: Remove old temporary checkpoints when creating a Checkpoint. #17598
• [ENHANCEMENT] UI: Add autocomplete support for experimental first_over_time and ts_of_first_over_time PromQL functions. #18318
• [ENHANCEMENT] Vultr SD: Upgrade govultr library from v2 to v3 for continued security patches and maintenance. #18347
• [PERF] PromQL: Improve performance and reduce heap allocations in joins (VectorBinop)/And/Or/Unless. #17159
• [PERF] PromQL: Partially address performance regression in native histogram aggregations due to using KahanAdd. #18252
• [PERF] Remote write: Optimize WAL watching used for RW sending to reuse internal buffers. #18250
• [PERF] TSDB: Optimize LabelValues intersection performance for matchers. #18069
• [PERF] UI: Skip restacking on hover in stacked series charts. #18230
• [BUGFIX] AWS SD: Fix EC2 SD ignoring the configured endpoint option, a regression from the AWS SDK v2 migration. #18133
• [BUGFIX] AWS SD: Fix panic in EC2 SD when DescribeAvailabilityZones returns nil ZoneName or ZoneId. #18133
• [BUGFIX] Agent: Fix memory leak caused by duplicate SeriesRefs being loaded as active series. #17538
• [BUGFIX] Alerting: Fix alert state incorrectly resetting to pending when the FOR period is increased in the config file. #18244
• [BUGFIX] Azure SD: Fix system-assigned managed identity not working when client_id is empty. #18323
• [BUGFIX] Consul SD: Fix filter parameter not being applied to health service endpoint, causing Node and Node.Meta filters to be ignored. #17349
• [BUGFIX] Kubernetes SD: Fix duplicate targets generated by *DualStack EndpointSlices policies. #18192
• [BUGFIX] OTLP: Fix ErrTooOldSample being returned as HTTP 500 instead of 400 in PRW v2 histogram write paths, preventing infinite client retry loops. #18084
• [BUGFIX] OTLP: Fix exemplars getting mixed between incorrect parts of a histogram. #18056
• [BUGFIX] PromQL: Do not skip histogram buckets in queries where histogram trimming is used. #18263
• [BUGFIX] Remote write: Fix prometheus_remote_storage_sent_batch_duration_seconds measuring before the request was sent. #18214
• [BUGFIX] Rules: Fix alert state restoration when rule labels contain Go template expressions. #18375
• [BUGFIX] Scrape: Fix panic when parsing bare label names without an equal sign in brace-only metric notation. #18229
• [BUGFIX] TSDB: Fail early when use-uncached-io feature flag is set on unsupported environments. #18219
• [BUGFIX] TSDB: Fall back to CLI flag values when retention is removed from config file. #18200
• [BUGFIX] TSDB: Fix memory leaks in buffer pools by clearing reference fields before returning buffers to pools. #17895
• [BUGFIX] TSDB: Fix missing mmap of histogram chunks during WAL replay. #18306
• [BUGFIX] TSDB: Fix storage.tsdb.retention.time unit mismatch in file causing retention to be 1e6 times longer than configured. #18200
• [BUGFIX] Tracing: Fix missing traceID in query log when tracing is enabled, previously only spanID was emitted. #18189
• [BUGFIX] UI: Fix tooltip Y-offset drift when using multiple graph panels. #18228
• [BUGFIX] UI: Update retention display in runtime info when config is reloaded. #18200

This release contains bug fixes since the 2.26.0 release. We recommend that you upgrade at the next available opportunity.

Bugfixes

• #9455 Fix memory leak in ColumnarScan

Patch release with a fix in query engine order by logic,backup scheduler configuration update and updates of dependencies.

• Fix order by for nested properties, issue #10732
• Updated deps

• Fix store of settings for scheduled backups

orientdb-community-3.2.51.tar.gz orientdb-community-3.2.51.zip

orientdb-tp3-3.2.51.tar.gz orientdb-tp3-3.2.51.zip

agent-3.2.51.jar