Releases: cortexapps/axon
Releases · cortexapps/axon
Address go vuln CVE-2026-3318
What's Changed
- Fix Trivy CI: upgrade grpc to v1.79.3 (CVE-2026-33186) by @ashiramin in #92
- Bump google.golang.org/grpc from 1.68.0 to 1.79.3 in /scaffold/go/axon_client by @dependabot[bot] in #93
New Contributors
- @dependabot[bot] made their first contribution in #93
Full Changelog: v0.2.2...v0.2.3
Contributors
ashiramin and dependabot
Assets 2
Update to resolve base Debian vulns
What's Changed
- Fix Trivy CI: upgrade OS packages to patch linux-libc-dev vulnerabilities by @ashiramin in #90
- Add build version to /__axon/info endpoint by @ashiramin in #89
New Contributors
- @ashiramin made their first contribution in #90
Full Changelog: v0.2.1...v0.2.2
Contributors
ashiramin
Assets 2
Fix websocket HTTP_PROXY, shrink image, add logging
What's Changed
- Move go build to multistage, only copy binary by @keithfz in #86
- Fix WebSocket proxy to respect HTTP_PROXY and custom CA certificates by @shawnburke in #87
- Add TLS-through-proxy E2E test and diagnostic logging by @shawnburke in #88
New Contributors
Full Changelog: v0.2.0...v0.2.1
Contributors
shawnburke and keithfz
Assets 2
Hardened broker reconnection strategies
Iterates on a more-aggressive reconnection strategy for dealing with with cases where connectivity with Cortex backend is lost.
Adds snyk-broker restarts on:
- Websocket tunnel close or interruption
- Idle timeout (default: 5m) with no traffic from backend
What's Changed
- Fix broker reconnection: channel-based restart with persistent watchdog by @shawnburke in #84
Full Changelog: v0.1.10...v0.2.0
Contributors
shawnburke
Assets 2
v0.1.10
What's Changed
- Upgrade to Go 1.26.1 (new vulns) by @shawnburke in #81
- Add Primus WebSocket tunnel death detection for faster recovery by @shawnburke in #82
Full Changelog: v0.1.9...v0.1.10
Contributors
shawnburke
Assets 2
Upgrade websocket library, add restart probing
What's Changed
- Add Trivy vulnerability scanning workflow by @gvillenave in #74
- Switch to GitHub runners for axon by @gvillenave in #76
- Add WebSocket proxy traversal to reflector by @shawnburke in #79
New Contributors
- @gvillenave made their first contribution in #74
Full Changelog: v0.1.8...v0.1.9
Contributors
gvillenave and shawnburke
Assets 2
Update to Go 1.25.7, Upgrade node packages
Deep pass on snyk-broker node dependencies to work through all CRITICAL|HIGH vulns
What's Changed
- Upgrade go to 1.25.7 by @shawnburke in #69
- fix vulns in snyk-broker packages by @shawnburke in #70
- Pick up HIGH sev snyk-broker vuln fixes, make trivy blocking. by @shawnburke in #71
- Restore ignore-unfixed, make trivy blocking by @shawnburke in #72
- Add x-broker-ws-response header to relay test curl requests by @shawnburke in #73
Full Changelog: v0.1.7...v0.1.8
Contributors
shawnburke
Assets 2
Update broker to support binary payloads
Summary
It was discovered the underlying snyk-broker was utf-8 encoding payloads regardless of content type. This addresses that issue.
What's Changed
- Modify Sonarqube token and add outbound connection details by @jeff-schnitter in #66
- Use axon fork of snyk-broker by @shawnburke in #67
- Set snyk-broker tag by @shawnburke in #68
New Contributors
- @jeff-schnitter made their first contribution in #66
Full Changelog: v0.1.6...v0.1.7
Contributors
shawnburke and jeff-schnitter
Assets 2
Structured logging when ENV=production
Logger now in JSON when ENV=production
What's Changed
- Move to stable debian, ignore unfixed container vulns by @shawnburke in #63
- Clean up verbose logging by @shawnburke in #53
- Support structured (JSON) logging in prod env by @shawnburke in #64
- Move logging time to RFC 3339 by @shawnburke in #65
Full Changelog: v0.1.5...v0.1.6
Contributors
shawnburke
Assets 2
Upgrade to Go 1.25.5
Merge pull request #62 from cortexapps/upgrade-go-1.25 Upgrade go to 1.25.5