You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: modules/ROOT/partials/release-notes/release-25.7.adoc
+14-2Lines changed: 14 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -28,8 +28,11 @@ Starting with this release, the release notes for `stackablectl` are located on
28
28
29
29
====== Security
30
30
31
-
Users (and services) can now use the new TrustStore resource to request the trust root certificates associated with a SecretClass.
32
-
See the xref:secret-operator:truststore.adoc[TrustStore documentation] and https://github.com/stackabletech/secret-operator/issues/410[secret-operator#410].
31
+
* Users (and services) can now use the new TrustStore resource to request the trust root certificates associated with a SecretClass.
32
+
See the xref:secret-operator:truststore.adoc[TrustStore documentation] and https://github.com/stackabletech/secret-operator/issues/410[secret-operator#410].
33
+
* Add support for format-specific annotations to override secret file names.
34
+
Names can be customized using secret volume annotations which are listed xref:secret-operator:volume.adoc[in our documentation].
35
+
See https://github.com/stackabletech/secret-operator/pull/572[secret-operator#572].
33
36
34
37
====== Automatic cluster domain detection
35
38
@@ -48,16 +51,23 @@ See https://github.com/stackabletech/issues/issues/662[issues#662].
48
51
* All operators use unified CLI arguments and environment variables to configure the exporters.
49
52
* All operators allow exporter configuration via Helm values.
50
53
* All exporters are disabled by default, except for console logs, which remain enabled by default.
54
+
* Customization via Helm values is supported for all exporters.
51
55
52
56
Additionally see the official xref:concepts:observability/telemetry.adoc[telemetry documentation page] and the tracking issue https://github.com/stackabletech/issues/issues/639[issues#639] for further details.
53
57
58
+
====== AuthZ
59
+
60
+
The user-info-fetcher backend now supports fetching user groups from Microsoft Entra (experimental).
61
+
See https://github.com/stackabletech/opa-operator/pull/712[opa-operator#712].
62
+
54
63
===== Apache Airflow
55
64
56
65
* The recent release of Airflow 3 brings with it a raft of changes - with both new features and significant changes to architecture.
57
66
SDP offers early experimental support for Airflow 3.0.1 as of SDP 25.7.
58
67
This gives users the chance to use the new UI, to https://airflow.apache.org/docs/apache-airflow/3.0.1/installation/upgrading_to_airflow3.html#step-3-dag-authors-check-your-airflow-dags-for-compatibility[update] their DAGs and to test the new OPA authenticator.
59
68
See https://github.com/stackabletech/docker-images/issues/1074[docker-images#1074].
60
69
* Set the default `airflow.task` log level to `INFO` to not spam the Airflow UI with task logs.
70
+
See https://github.com/stackabletech/airflow-operator/pull/649[airflow-operator#649].
61
71
62
72
===== Apache NiFi
63
73
@@ -146,6 +156,8 @@ This includes 3 critical and 97 high-severity CVEs.
146
156
See the official https://nifi.apache.org/docs/nifi-docs/html/administration-guide.html#property-encryption-algorithms[NiFi documentation] and https://github.com/stackabletech/nifi-operator/issues/791[nifi-operator#791].
147
157
* Re-add Iceberg support to NiFi 2.4.0, which was removed upstream starting with version 2.0.0.
148
158
See xref:nifi:usage_guide/writing-to-iceberg-tables.adoc[NiFi Iceberg documentation] and https://github.com/stackabletech/nifi-operator/issues/738[nifi-operator#738].
159
+
* Update patch that allows bypassing the host header validation starting with NiFi 2.4.0.
160
+
See https://github.com/stackabletech/docker-images/pull/1125[docker-images#1125].
0 commit comments