News KrakenD EE v2.8 released: Configurable logging, Redis-backed rate limits, Lua, YAML encoding and more

Product UpdatesSecurity

1 min read

KrakenD Enterprise 2.1.2 (security fix) released

by Albert Lombarte

The new KrakenD Enterprise version 2.1.2 is already available for install or upgrade. This patch version does not bring significant new functionality but updates dependencies that have security vulnerabilities and adds a few fixes:

🚀 Summary of changes for EEv2.1

The patch v2.1.2 updates dependencies that have security vulnerabilities.

  • Add the content-type header when returning errors
  • Upgrade from Go 1.19.3 to Go 1.19.5, which includes security fixes to the net/http, crypto/x509, and os packages, among others.
  • Caching backends with gzipped content wasn’t working properly
  • Upgraded the gin router to avoid panics on certain 404 paths.
  • Improve render selection when negotiating XML content
  • Use a float instead of an integer for API keys rate limiting
  • Add security definitions to OpenAPI generation

Upgrading to the latest version is always advised.

Scarf

Stay up to date with KrakenD releases and important updates