KrakenD Enterprise 2.1.2 (security fix) released
by Albert Lombarte
The new KrakenD Enterprise version 2.1.2 is already available for install or upgrade. This patch version does not bring significant new functionality but updates dependencies that have security vulnerabilities and adds a few fixes:
🚀 Summary of changes for EEv2.1
The patch v2.1.2 updates dependencies that have security vulnerabilities.
- Add the content-type header when returning errors
-
Upgrade from Go 1.19.3 to Go 1.19.5, which includes security fixes to the
net/http,crypto/x509, andospackages, among others. - Caching backends with gzipped content wasn’t working properly
- Upgraded the gin router to avoid panics on certain 404 paths.
- Improve render selection when negotiating XML content
- Use a float instead of an integer for API keys rate limiting
- Add security definitions to OpenAPI generation
Upgrading to the latest version is always advised.
Categories:
Product UpdatesSecurity
