Change8

v1.21.5

📦 consul-connectView on GitHub →
4 features🐛 1 fixes🔧 4 symbols

Summary

This release focuses heavily on security enhancements, including dependency upgrades and fixes for path traversal, authentication bypass, and sensitive data exposure. New configuration options for request header size (`max_request_headers_kb`) were also introduced.

✨ New Features

  • config: Add new parameter `max_request_headers_kb` to configure maximum header size for requests from downstream to upstream.
  • config: Handle a new parameter `max_request_headers_kb` to configure maximum header size for requests from downstream to upstream in API Gateway config and proxy-defaults.
  • config: Handle a new parameter `max_request_headers_kb` to configure maximum header size for requests from downstream to upstream in Mesh Gateway via service-defaults and proxy-defaults.
  • config: Handle a new parameter `max_request_headers_kb` to configure maximum header size for requests from downstream to upstream in Terminating Gateway service-defaults and proxy-defaults.

🐛 Bug Fixes

  • agent: Don't show admin partition during errors [GH-11154]

🔧 Affected Symbols

agentapiconnectcli