These are the release notes for VMware Tanzu Application Service for VMs (TAS for VMs) v6.0.

TAS for VMs is certified by the Cloud Foundry Foundation for 2023.

For more information about the Cloud Foundry Certified Provider Program, see How Do I Become a Certified Provider? on the Cloud Foundry website.

Because VMware uses the Percona Distribution for MySQL, expect a time lag between Oracle releasing a MySQL patch and VMware releasing TAS for VMs containing that patch.


Deprecation Notice: Cloud Foundry Command-Line Interface (cf CLI) v7 is deprecated and will lose support. For how to upgrade to cf CLI v8 see Upgrading to cf CLI v8.

Important

For release 6.0.0 to 6.0.3, CVE-2024-22279. (VMware Tanzu Application Service for VMs GoRouter contains an RFC protocol issue that can lead to a denial of service) has been fixed. For details, see TNZ-2024-0100.

Releases

6.0.5

Release Date: 07/08/2024

  • [Feature Improvement] Configure JWKS cache in UAA
  • [Feature Improvement] Expose proxy metrics for internal MySQL
  • [Bug Fix] Re-enables parallel applier threads for internal MySQL cluster
  • [Bug Fix] Route Registrar only sends 5 unregistration messages in a row when a route becomes unhealthy. This prevents Gorouter’s logs from filling up with unnecessary, repetitive log messages.
  • Bump backup-and-restore-sdk to version 1.19.22
  • Bump bpm to version 1.2.22
  • Bump capi to version 1.185.0
  • Bump cf-autoscaling to version 250.2.5
  • Bump cf-cli to version 1.64.0
  • Bump cflinuxfs3 to version 0.390.0
  • Bump cflinuxfs4 to version 1.103.0
  • Bump credhub to version 2.12.80
  • Bump diego to version 2.100.0
  • Bump dotnet-core-offline-buildpack to version 2.4.29
  • Bump java-offline-buildpack to version 4.70.0
  • Bump java-native-image-cnb-buildpack to version 0.11.18
  • Bump log-cache to version 3.1.0
  • Bump mapfs to version 1.2.79
  • Bump nats to version 56.21.0
  • Bump nfs-volume to version 7.1.74
  • Bump nginx-offline-buildpack to version 1.2.15
  • Bump otel-collector to version 0.5.0
  • Bump php-offline-buildpack to version 4.6.20
  • Bump push-apps-manager-release to version 677.0.48
  • Bump push-usage-service-release to version 674.0.112
  • Bump pxc to version 1.0.29
  • Bump python-offline-buildpack to version 1.8.26
  • Bump routing to version 0.301.0
  • Bump web-servers-cnb-buildpack to version 0.14.1
  • Bump smb-volume to version 3.1.73
  • Bump syslog to version 12.3.0
  • Bump uaa to version 77.12.0
Component Version Release Notes
ubuntu-jammy stemcell 1.486
backup-and-restore-sdk 1.19.22
v1.19.22
  ## Dependencies
  * **storage:** Updated to v1.42.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **api:** Updated to v0.184.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.19.21
  ## Changes
  * Bump Ruby from 3.2.2 to 3.3.1 (#1715)
  * Bump pcre2 from 10.43 to 10.44 (#1716)
  * Golang: Updated to v1.22.4. (#1714)
  ## Dependencies
  * **net:** Updated to v0.26.0.
For more information, see [net](https://github.com/golang/net). * **api:** Updated to v0.183.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.19.20
  ## Dependencies
  * **bosh-backup-and-restore:** Updated to v1.9.65.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **v2:** Updated to v2.19.0.
For more information, see [v2](https://github.com/onsi/ginkgo). * **api:** Updated to v0.182.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.19.17
  ## Dependencies
  * **storage:** Updated to v1.41.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go).
binary-offline-buildpack 1.1.12
bosh-dns-aliases 0.0.4
bpm 1.2.22
capi 1.185.0
cf-autoscaling 250.2.5
v250.2.5
  * Bump dependencies
  * Bump packaged Golang to 1.21.11
  * Fix JSON parsing of CAPI responses that don't using pretty-printing
          
cf-cli 1.64.0
v1.64.0
  ### Included CF CLI versions:
  7.7.10
  8.7.10
          
cf-networking 3.46.0
cflinuxfs3 0.390.0
v0.390.0
  This release ships with cflinuxfs3 version 0.390.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.390.0)
          
v0.389.0
  This release ships with cflinuxfs3 version 0.389.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.389.0)
          
v0.388.0
  This release ships with cflinuxfs3 version 0.388.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs3/releases/tag/0.388.0)
          
cflinuxfs4 1.103.0
v1.103.0
  This release ships with cflinuxfs4 version 1.103.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.103.0)
          
v1.102.0
  This release ships with cflinuxfs4 version 1.102.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.102.0)
          
v1.101.0
  This release ships with cflinuxfs4 version 1.101.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.101.0)
          
v1.100.0
  This release ships with cflinuxfs4 version 1.100.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.100.0)
          
v1.99.0
  This release ships with cflinuxfs4 version 1.99.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.99.0)
          
v1.98.0
  This release ships with cflinuxfs4 version 1.98.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.98.0)
          
v1.97.0
  This release ships with cflinuxfs4 version 1.97.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.97.0)
          
v1.96.0
  This release ships with cflinuxfs4 version 1.96.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.96.0)
          
v1.95.0
  This release ships with cflinuxfs4 version 1.95.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.95.0)
          
v1.94.0
  This release ships with cflinuxfs4 version 1.94.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.94.0)
          
v1.93.0
  This release ships with cflinuxfs4 version 1.93.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.93.0)
          
v1.92.0
  This release ships with cflinuxfs4 version 1.92.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.92.0)
          
count-cores-indicator 2.0.0
credhub 2.12.80
2.12.80
  ## What's Changed
  * Various dependency bumps
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.79...2.12.80
          
2.12.79
  ## What's Changed
  * Build(deps): Bump rspec-expectations from 3.13.0 to 3.13.1 in /spec by @dependabot in https://github.com/pivotal/credhub-release/pull/221
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.78...2.12.79
          
2.12.78
  ## What's Changed
  * Bumped various dependencies.
  * Added a missing index on `credential_version` table's FK column to `credential` table for PostgreSQL database.
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.77...2.12.78
          
2.12.77
  ## What's Changed
  * Various dependency bumps
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.76...2.12.77
          
2.12.76
  ## What's Changed
  * Build(deps): Bump rubocop from 1.63.5 to 1.64.0 in /spec by @dependabot in https://github.com/pivotal/credhub-release/pull/214
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.75...2.12.76
          
diego 2.100.0
v2.100.0
  ## Changes
  - Bumped loggregator usage to loggregator v9 - Thanks @Birdrock!
  - Bumped cfhttp usage to cfhttp v2 - Thanks @jrussett !
  - Bumped go dependency bumps
  ## ✨  Built with go 1.22.3
  **Full Changelog**: https://github.com/cloudfoundry/diego-release/compare/v2.99.0...v2.100.0
  ## Resources
  - [Download release 2.100.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/diego-release?version=2.100.0).
          
dotnet-core-offline-buildpack 2.4.29
2.4.29
  * Remove .NET 7
  * Rebuild node 20.14.0 (#994)
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 8.0.301, remove dotnet-sdk 8.0.300
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 6.0.31, remove dotnet-runtime 6.0.30
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 8.0.6, remove dotnet-aspnetcore 8.0.5
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 6.0.423, remove dotnet-sdk 6.0.422
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 6.0.31, remove dotnet-aspnetcore 6.0.30
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 8.0.6, remove dotnet-runtime 8.0.5
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add node 20.14.0, remove node 20.13.1
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add node 20.13.1, remove node 20.12.2 (#984)
  for stack(s) cflinuxfs4, cflinuxfs3
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 6.0.31 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 8.0.6 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 6.0.31 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 8.0.6 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 6.0.423 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 8.0.301 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.8.1 | cflinuxfs3 |
  | libunwind | 1.8.1 | cflinuxfs4 |
  | node | 20.14.0 | cflinuxfs3 |
  | node | 20.14.0 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 8.0.x |
  | dotnet-aspnetcore | 8.0.x |
  | dotnet-sdk | 8.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: 8033951a304d8c4ec2e7f14672b925fdb1a0eec72a1f2b7ebd9008d709cfd0fd
  * Uncached buildpack SHA256: 5cf8cda60cd15159cfc242e53378935c2323c1c7899d8f3136956c62ca9280da
          
garden-runc 1.53.0
go-offline-buildpack 1.10.19
java-offline-buildpack 4.70.0
java-native-image-cnb-buildpack 0.11.18
0.11.18
  Components:
  * [buildpack v0.13.8](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.8)
          
0.11.17
  Components:
  * [buildpack v0.13.7](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.7)
          
0.11.16
  Components:
  * [buildpack v0.13.6](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.6)
          
0.11.15
  Components:
  * [buildpack v0.13.6](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.6)
          
0.11.14
  Components:
  * [buildpack v0.13.6](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.6)
          
0.11.13
  Components:
  * [buildpack v0.13.6](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.6)
          
0.11.12
  Components:
  * [buildpack v0.13.5](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.5)
          
0.11.11
  Components:
  * [buildpack v0.13.5](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.5)
          
0.11.10
  Components:
  * [buildpack v0.13.4](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.4)
          
0.11.9
  Components:
  * [buildpack v0.13.4](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.4)
          
0.11.8
  Components:
  * [buildpack v0.13.4](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.4)
          
0.11.7
  Components:
  * [buildpack v0.13.3](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.3)
          
0.11.6
  Components:
  * [buildpack v0.13.3](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.3)
          
0.11.5
  Components:
  * [buildpack v0.13.2](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.2)
          
0.11.4
  Components:
  * [buildpack v0.13.2](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.2)
          
0.11.3
  Components:
  * [buildpack v0.13.1](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.1)
          
0.11.2
  Components:
  * [buildpack v0.13.1](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.1)
          
0.11.1
  Components:
  * [buildpack v0.13.0](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.0)
          
0.11.0
  Components:
  * [buildpack v0.13.0](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.13.0)
          
0.10.7
  Components:
  * [buildpack v0.12.6](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.6)
          
0.10.6
  Components:
  * [buildpack v0.12.5](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.5)
          
0.10.5
  Components:
  * [buildpack v0.12.5](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.5)
          
log-cache 3.1.0
v3.1.0
  ## What's Changed
  * Bump dependencies
  * Bump packaged Golang to go1.21.10
  * Add configuration to make whitespace trimming in log messages optional by @chombium in https://github.com/cloudfoundry/log-cache-release/pull/506
  **Full Changelog**: https://github.com/cloudfoundry/log-cache-release/compare/v3.0.12...v3.1.0
          
loggregator 107.0.14
loggregator-agent 8.1.1
mapfs 1.2.79
v1.2.79
  ## Changes
  * Add final release 1.2.72 [ci skip]
  * Golang: Updated to v1.22.4 (#269)
  * bump mapfs
  ## Dependencies
  * **v2:** Updated to v2.19.0.
For more information, see [v2](https://github.com/onsi/ginkgo). * **mapfs:** Updated to v`756bafb`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
v1.2.72
  ## Changes
  * Add final release 1.2.71 [ci skip]
  * Bump mapfs (#263)
  ## Dependencies
  * **mapfs:** Updated to v`ac01341`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
metric-registrar 4.0.0
mysql-monitoring 10.15.0
nats 56.21.0
v56.21.0
  ## Changes
  - Dependency bumps
  ## ✨  Built with go 1.22.4
  **Full Changelog**: https://github.com/cloudfoundry/nats-release/compare/v56.20.0...v56.21.0
  ## Resources
  - [Download release 56.21.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/nats-release?version=56.21.0).
          
v56.20.0
  ## Changes
  - Dependency bumps
  ## ✨  Built with go 1.22.3
  **Full Changelog**: https://github.com/cloudfoundry/nats-release/compare/v56.19.0...v56.20.0
  ## Resources
  - [Download release 56.20.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/nats-release?version=56.20.0).
          
nfs-volume 7.1.74
v7.1.74
  ## Changes
  * Golang: Updated to v1.22.4 (#963)
          
v7.1.73
  ## Changes
  * Add final release 7.1.72 [ci skip]
  * Use cf create|update-service-broker to register the service (#972)
  * Bump openssl- from 3.3.0 to 3.3.1 (https://github.com/cloudfoundry/nfs-volume-release/pull/959)
  * Golang: Updated to v1.22.4 (https://github.com/cloudfoundry/nfs-volume-release/pull/962)
          
v7.1.72
  ## Changes
  * Add final release 7.1.71 [ci skip]
  * Bump openssl- from 3.3.0 to 3.3.1 (#959)
  * Golang: Updated to v1.22.4 (#962)
          
v7.1.71
  ## Changes
  ## Dependencies
  * **nfsbroker:** Updated to v`b8a1e4c`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker).
v7.1.68
  ## Changes
  * Add final release 7.1.66 [ci skip]
  * Bump submodules (#938)
  ## Dependencies
  * **nfsbroker:** Updated to v`e1d14e4`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker).
nginx-offline-buildpack 1.2.15
1.2.15
  * Add nginx 1.26.1, remove nginx 1.26.0 (#285)
  for stack(s) cflinuxfs3, cflinuxfs4
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.25.5 | cflinuxfs3 |
  | nginx | 1.25.5 | cflinuxfs4 |
  | nginx | 1.26.1 | cflinuxfs3 |
  | nginx | 1.26.1 | cflinuxfs4 |
  | openresty | 1.21.4.2 | cflinuxfs3 |
  | openresty | 1.21.4.2 | cflinuxfs4 |
  | openresty | 1.25.3.1 | cflinuxfs3 |
  | openresty | 1.25.3.1 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.25.x |
  * Uncached buildpack SHA256: 98463e90b84aabe86f8caf355130d85b560c2b233e919df61d0469fda0a5ae47
  * Uncached buildpack SHA256: 01e3e11ea53e1d3a5bc88c49c43f2b131cedacea2659094b0f43dc7e540307ed
          
nodejs-offline-buildpack 1.8.25
notifications 70.0.0
notifications-ui 47.0.0
otel-collector 0.5.0
v0.5.0
  ## What's Changed
  * Bump otel-collector to v0.103.0 in https://github.com/cloudfoundry/otel-collector-release/pull/28.
  * If you have configured exporters to use persistent queues note that [re-enqueuing of failed batches has been removed](https://github.com/open-telemetry/opentelemetry-collector/releases/tag/v0.92.0).
  * Bump to [go1.21.11](https://groups.google.com/g/golang-announce/c/XbxouI9gY7k/m/TuoGEhxIEwAJ).
  **Full Changelog**: https://github.com/cloudfoundry/otel-collector-release/compare/v0.4.1...v0.5.0
          
php-offline-buildpack 4.6.20
4.6.20
  * Add php 8.1.28, remove php 8.1.26 (#1056)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187422133)
  * Rebuild php 8.3.6 (#1055)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187414040)
  * Rebuild php 8.2.18 (#1054)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187413454)
  * Rebuild php 8.1.27 (#1053)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/186787155)
  * Rebuild php 8.3.7 (#1058)
  * Rebuild php 8.2.19 (#1057)
  * Add nginx 1.26.1, remove nginx 1.26.0 (#1050)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187700030)
  * Update php defaults for 8.1.x (#1059)
  * Update New Relic PHP agent to latest (10.21.0.11)
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | appdynamics | 23.11.0-839 | cflinuxfs3, cflinuxfs4 |  |
  | composer | 2.7.6 | cflinuxfs3, cflinuxfs4 |  |
  | httpd | 2.4.59 | cflinuxfs3 |  |
  | httpd | 2.4.59 | cflinuxfs4 |  |
  | newrelic | 10.21.0.11 | cflinuxfs3, cflinuxfs4 |  |
  | nginx | 1.25.5 | cflinuxfs3 |  |
  | nginx | 1.25.5 | cflinuxfs4 |  |
  | nginx | 1.26.1 | cflinuxfs3 |  |
  | nginx | 1.26.1 | cflinuxfs4 |  |
  | php | 8.1.27 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.27 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.28 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.28 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.2.18 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.18 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.19 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.19 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.6 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.6 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.7 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.7 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | python | 2.7.18 | cflinuxfs4 |  |
  | ruby | 3.0.5 | cflinuxfs4 |  |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 8.1.27 |
  | httpd | 2.4.59 |
  | newrelic | 10.21.0.11 |
  | nginx | 1.26.1 |
  | composer | 2.7.6 |
  * Uncached buildpack SHA256: 4d4fca70c5cf5ebff88c1ba0844e973c7715fde3400b10076f3b1045c9262a31
  * Uncached buildpack SHA256: bd145ea864adf3c71c72fff90638ab57a3bf5afed057a80d2e991de8fae694e9
          
push-apps-manager-release 677.0.48
677.0.48
  * correct user view of tcp routes. No longer displayed as "https://" and the port is now part of the uri rather then a grey label beside the uri.
          
677.0.47
  * add fix to new routing view
  * fix bug with shared services causing crashes
          
677.0.46
  * New version of the Map route for applications. More dynamic. Allows for creation of tcp routes. Fixes optionality of fields.
          
push-offline-docs-release 6.0.169
push-usage-service-release 674.0.112
v674.0.112
  ## Changes
  * creating final release 674.0.105
  ## Dependencies
  * **app-usage-service:** Updated to v`4e6bc6a`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.105
  ## Dependencies
  * **app-usage-service:** Updated to v`809e359`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.104
  ## Changes
  * Maintenance release (internal technical work, CI improvements, etc)
          
v674.0.103
  ## Dependencies
  * **app-usage-service:** Updated to v`98e365c`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
pxc 1.0.29
v1.0.29
  ## Release Notes
  **Dependency bumps**
  - Updates packages and dependencies
  **Bugs fixed**
  - Fixes a bug that could lead to the Galera-init job hanging at pre-start phase from a schema deadlock
          
python-offline-buildpack 1.8.26
1.8.26
  * vendored apps with sdist: install common build-time dependencies in staging (#922)
  | name | version | cf_stacks |
  |-|-|-|
  | libffi | 3.2.1 | cflinuxfs3, cflinuxfs4 |
  | libmemcache | 1.0.18 | cflinuxfs3, cflinuxfs4 |
  | miniconda3-py39 | 24.4.0 | cflinuxfs3, cflinuxfs4 |
  | pip | 24.0 | cflinuxfs3, cflinuxfs4 |
  | pipenv | 2023.12.1 | cflinuxfs3 |
  | pipenv | 2023.12.1 | cflinuxfs4 |
  | python | 3.8.19 | cflinuxfs3 |
  | python | 3.8.19 | cflinuxfs4 |
  | python | 3.9.19 | cflinuxfs3 |
  | python | 3.9.19 | cflinuxfs4 |
  | python | 3.10.14 | cflinuxfs3 |
  | python | 3.10.14 | cflinuxfs4 |
  | python | 3.11.9 | cflinuxfs3 |
  | python | 3.11.9 | cflinuxfs4 |
  | python | 3.12.3 | cflinuxfs3 |
  | python | 3.12.3 | cflinuxfs4 |
  | setuptools | 70.0.0 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | python | 3.10.x |
  * Uncached buildpack SHA256: 684e6da0cc826950b436debdabd14c036a0d60461ed6457f1ead6a9fe99a91f7
  * Uncached buildpack SHA256: 2465bb4b302cf9cc20c7785cac068f70e1d0855f8ec8aa37ffee5ead36047be7
          
r-offline-buildpack 1.2.12
routing 0.301.0
v0.301.0
  ## Changes
  - 🐛Fixes a bug introduced in [v0.298.0](https://github.com/cloudfoundry/routing-release/releases/tag/v0.298.0) where the `X-Forwarded-Host` header was incorrectly set for requests containing an `Expect: 100-continue` header. Thanks @maxmoehl !
  ## ✨  Built with go 1.22.4
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.300.0...v0.301.0
  ## Resources
  - [Download release 0.301.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.301.0).
          
v0.300.0
  ## Changes
  - Update route registrar to only send 5 unregistration messages for an unhealthy route - https://github.com/cloudfoundry/route-registrar/pull/46 . Thanks @andy-a-d-nguyen for your first contribution to CF!
  ## ✨  Built with go 1.22.4
  ## Resources
  - [Download release 0.300.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.300.0).
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.299.0...v0.300.0
          
v0.299.0
  ## Changes
  - Bumped to Golang 1.22.4
  - Added ability to enforce strict validation of route service signature. Thanks @maxmoehl, @b1tamara and @plowin !
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/gorouter/spec b/jobs/gorouter/spec
  index 8269440b..60c7b520 100644
  --- a/jobs/gorouter/spec
  +++ b/jobs/gorouter/spec
  @@ -262,6 +262,9 @@ properties:
  router.route_services_timeout:
  description: "Expiry time of a route service signature in seconds"
  default: 60
  +  router.route_services_strict_signature_validation:
  +      description: "Enforce strict validation of a route service signature"
  +      default: false
  router.max_header_kb:
  description: |
  This value controls the maximum number of bytes (in KB) the gorouter will read
  ```
  ## ✨  Built with go 1.22.4
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.298.0...v0.299.0
  ## Resources
  - [Download release 0.299.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.299.0).
          
ruby-offline-buildpack 1.10.15
web-servers-cnb-buildpack 0.14.1
0.14.1
  Components:
  * [buildpack v0.17.1](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.17.1)
          
0.14.0
  Components:
  * [buildpack v0.17.0](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.17.0)
          
0.13.14
  Components:
  * [buildpack v0.16.5](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.5)
          
0.13.13
  Components:
  * [buildpack v0.16.5](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.5)
          
0.13.12
  Components:
  * [buildpack v0.16.5](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.5)
          
0.13.11
  Components:
  * [buildpack v0.16.4](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.4)
          
0.13.10
  Components:
  * [buildpack v0.16.3](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.3)
          
0.13.9
  Components:
  * [buildpack v0.16.3](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.3)
          
0.13.8
  Components:
  * [buildpack v0.16.3](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.3)
          
0.13.7
  Components:
  * [buildpack v0.16.3](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.3)
          
0.13.6
  Components:
  * [buildpack v0.16.3](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.3)
          
0.13.5
  Components:
  * [buildpack v0.16.2](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.2)
          
0.13.4
  Components:
  * [buildpack v0.16.2](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.2)
          
0.13.3
  Components:
  * [buildpack v0.16.2](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.2)
          
silk 3.46.0
smb-volume 3.1.73
v3.1.73
  ## Changes
  ## Dependencies
  * **smbdriver:** Updated to v`9ec4dc3`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
v3.1.72
  ## Changes
  * Bump smbdriver (#414)
  * Golang: Updated to v1.22.4 (#422)
  * Use cf create|update-service-broker to register the service (#424)
  ## Dependencies
  * **v2:** Updated to v2.19.0.
For more information, see [v2](https://github.com/onsi/ginkgo). * **smbdriver:** Updated to v`4b6cce2`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
v3.1.69
  ## Changes
  * Add final release 3.1.68 [ci skip]
  ## Dependencies
  * **smbbroker:** Updated to v`da19354`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`6a0de14`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
smoke-tests 4.10.0
staticfile-offline-buildpack 1.6.13
statsd-injector 1.11.40
syslog 12.3.0
v12.3.0
  ## What's Changed
  ### Features
  * Use service command to restart rsyslog, enabling BOSH Lite deployment by @ohkyle in https://github.com/cloudfoundry/syslog-release/pull/178
  ### Maintenance
  * Bump blackbox dependencies
  * Bump packaged Golang to go1.21.11
  ## New Contributors
  * @ohkyle made their first contribution in https://github.com/cloudfoundry/syslog-release/pull/178
  **Full Changelog**: https://github.com/cloudfoundry/syslog-release/compare/v12.2.5...v12.3.0
          
system-metrics-scraper 4.0.8
uaa 77.12.0
v77.12.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.12.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.12.0)
  ### Misc
  * Enable configuring of cache for Identity providers in UAA by @coolgang123 in https://github.com/cloudfoundry/uaa-release/pull/906
  * Add more configurations for Identity providers in UAA by @strehle in https://github.com/cloudfoundry/uaa-release/pull/913
  ### Dependency Bumps
  * [Upgrade Tomcat to version 9.0.90](https://github.com/cloudfoundry/uaa-release/commit/bf65dd1b02f9b02e86e232eb063908f0a8105cd8)
  * Bump nokogiri from 1.16.5 to 1.16.6 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/907
  * Bump rspec-expectations from 3.13.0 to 3.13.1 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/908
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.472 to 0.0.473 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/912
  * Bump minitest from 5.23.1 to 5.24.0 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/915
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.473 to 0.0.474 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/917
  ## New Contributors
  * @coolgang123 made their first contribution in https://github.com/cloudfoundry/uaa-release/pull/906
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.11.0...v77.12.0
          
v77.11.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.11.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.11.0)
  * [Support Alias feature in experimental mode](https://github.com/cloudfoundry/uaa/blob/develop/docs/UAA-Alias-Entities.md)
  * Specification for "login.aliasEntitiesEnabled" Setting by @adrianhoelzl-sap in https://github.com/cloudfoundry/uaa-release/pull/899
  ### Dependency Bumps
  * Bump concurrent-ruby from 1.2.3 to 1.3.1 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/894
  * Bump mini_portile2 from 2.8.6 to 2.8.7 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/895
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.467 to 0.0.469 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/896
  * Bump activesupport from 7.1.3.3 to 7.1.3.4 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/901
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.469 to 0.0.471 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/900
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.471 to 0.0.472 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/902
  * Bump concurrent-ruby from 1.3.1 to 1.3.3 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/905
  ## New Contributors
  * @adrianhoelzl-sap made their first contribution in https://github.com/cloudfoundry/uaa-release/pull/899
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.10.0...v77.11.0
          
v77.10.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.10.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.10.0)
  ### Misc
  * [Upgrade Bellsoft JDK to version 17.0.11+12](https://github.com/cloudfoundry/uaa-release/commit/6b4ec004cfccbb61d6bd30e935a39af5fd2822a9)
  ### Dependency Bumps
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.463 to 0.0.464 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/873
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.464 to 0.0.465 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/875
  * Bump nokogiri from 1.16.4 to 1.16.5 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/878
  * Bump minitest from 5.22.3 to 5.23.0 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/879
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.465 to 0.0.466 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/883
  * Ignore bosh-utils bump in uaa v74.5.x branch. by @hsinn0 in https://github.com/cloudfoundry/uaa-release/pull/890
  * Bump activesupport from 7.1.3.2 to 7.1.3.3 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/880
  * Bump minitest from 5.23.0 to 5.23.1 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/888
  * Bump racc from 1.7.3 to 1.8.0 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/882
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.466 to 0.0.467 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/893
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.9.0...v77.10.0
          
tanzu-jammy-stack 1.0.1

6.0.4

Release Date: 05/29/2024

  • [Feature Improvement] metric-registrar uses syslog binding cache, reducing load on Cloud Controllers
  • [Bug Fix] Apps-manager large route list display failure
  • [Bug Fix] Remove replication-canary
  • [Bug Fix] App Autoscaler resolves incompatibility with load balancers that reject POST requests without a Content-Length header.
  • Bump backup-and-restore-sdk to version 1.19.16
  • Bump binary-offline-buildpack to version 1.1.12
  • Bump bpm to version 1.2.19
  • Bump capi to version 1.182.0
  • Bump cf-autoscaling to version 250.2.4
  • Bump cflinuxfs4 to version 1.91.0
  • Bump credhub to version 2.12.75
  • Bump diego to version 2.99.0
  • Bump dotnet-core-offline-buildpack to version 2.4.28
  • Bump garden-runc to version 1.53.0
  • Bump go-offline-buildpack to version 1.10.19
  • Bump java-offline-buildpack to version 4.69.0
  • Bump java-native-image-cnb-buildpack to version 0.10.4
  • Bump mapfs to version 1.2.70
  • Bump metric-registrar to version 4.0.0
  • Bump mysql-monitoring to version 10.15.0
  • Bump nfs-volume to version 7.1.66
  • Bump nodejs-offline-buildpack to version 1.8.25
  • Bump php-offline-buildpack to version 4.6.19
  • Bump push-apps-manager-release to version 677.0.45
  • Bump push-usage-service-release to version 674.0.101
  • Bump pxc to version 1.0.28
  • Bump python-offline-buildpack to version 1.8.25
  • Bump r-offline-buildpack to version 1.2.12
  • Bump routing to version 0.298.0
  • Bump ruby-offline-buildpack to version 1.10.15
  • Bump web-servers-cnb-buildpack to version 0.13.2
  • Bump smb-volume to version 3.1.68
  • Bump uaa to version 77.9.0
Component Version Release Notes
ubuntu-jammy stemcell 1.445
backup-and-restore-sdk 1.19.16
v1.19.16
  ## Changes
  * Bump postgresql from 15.6 to 15.7 (#1678)
  ## Dependencies
  * **api:** Updated to v0.180.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.19.15
  ## Changes
  * Bump postgresql from 13.14 to 13.15 (#1677)
  * Golang: Updated to v1.22.3. (#1668)
  ## Dependencies
  * **v2:** Updated to v2.17.3.
For more information, see [v2](https://github.com/onsi/ginkgo). * **net:** Updated to v0.25.0.
For more information, see [net](https://github.com/golang/net). * **api:** Updated to v0.179.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.19.14
  ## Changes
  * Bump ncurses from 6.4 to 6.5 (#1656)
  ## Dependencies
  * **v2:** Updated to v2.17.2.
For more information, see [v2](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.33.1.
For more information, see [gomega](https://github.com/onsi/gomega). * **oauth2:** Updated to v0.20.0.
For more information, see [oauth2](https://github.com/golang/oauth2). * **api:** Updated to v0.177.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
binary-offline-buildpack 1.1.12
1.1.12
  * Updating github-config
  * add codeowners (#173)
  * Uncached buildpack SHA256: 48e3f0980cb55382272f9a1f0663d75040e4afd799ba92e8469a178a3fee6601
  * Uncached buildpack SHA256: 200bab1ec9b36a75dc79abac3a4c9c22a492893c42960c882a5b53c86b2032fb
  * Uncached buildpack SHA256: a553f16f4728012d86a652136aadaa74647b3a9797f1919ae8b0cc6bda6623fe
  * Uncached buildpack SHA256: 753085c3118851092f580125c938796fec87ccf88e155c61d5d9ecba53bc4c30
          
bosh-dns-aliases 0.0.4
bpm 1.2.19
capi 1.182.0
cf-autoscaling 250.2.4
v250.2.4
  * Ensure Content-Length header is present on client credential grant requests to the UAA. Resolves incompatibility with some load balancers that will reject POST requests that do not provide a Content-Length header. The incompatibility was introduced in v250.1.3.
  * Bump dependencies
          
cf-cli 1.60.0
cf-networking 3.46.0
cflinuxfs3 0.387.0
cflinuxfs4 1.91.0
v1.91.0
  This release ships with cflinuxfs4 version 1.91.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.91.0)
          
v1.90.0
  This release ships with cflinuxfs4 version 1.90.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.90.0)
          
v1.89.0
  This release ships with cflinuxfs4 version 1.89.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.89.0)
          
v1.88.0
  This release ships with cflinuxfs4 version 1.88.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.88.0)
          
v1.87.0
  This release ships with cflinuxfs4 version 1.87.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.87.0)
          
v1.86.0
  This release ships with cflinuxfs4 version 1.86.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.86.0)
          
v1.85.0
  This release ships with cflinuxfs4 version 1.85.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.85.0)
          
v1.84.0
  This release ships with cflinuxfs4 version 1.84.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.84.0)
          
v1.83.0
  This release ships with cflinuxfs4 version 1.83.0. For more information, see the [release notes](https://github.com/cloudfoundry/cflinuxfs4/releases/tag/1.83.0)
          
count-cores-indicator 2.0.0
credhub 2.12.75
2.12.75
  ## Security Fixes
  * Various dependency bumps
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.74...2.12.75
          
2.12.74
  ## Security Fixes
  * Various dependency bumps
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.73...2.12.74
          
2.12.73
  # What's Changed
  ## Security Fix
  * bump org.bouncycastle:bc-fips from 1.0.2.4 to 1.0.2.5 - this addresses CVE-2024-29857.
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.72...2.12.73
          
diego 2.99.0
v2.99.0
  ## Changes
  - Do not remove evacuating actual LRP during cleanup ([rep#53](https://github.com/cloudfoundry/rep/pull/53))
  - Add additional retries when apps make use of credhub for credentials. ([buildpackapplifecycle#71](https://github.com/cloudfoundry/buildpackapplifecycle/pull/71))
  - Prevent panics in BBS by checking for all types of errors ([bbs#95](https://github.com/cloudfoundry/bbs/pull/95))
  - Add retry logic and more explicit failure in router emitter start-up ([router-emitter#34](https://github.com/cloudfoundry/route-emitter/pull/34))
  - Bump envoy blob version to `1.28.3`
  - Go mod dependency bumps
  ## ✨  Built with go 1.22.3
  **Full Changelog**: https://github.com/cloudfoundry/diego-release/compare/v2.98.0...v2.99.0
  ## Resources
  - [Download release 2.99.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/diego-release?version=2.99.0).
          
dotnet-core-offline-buildpack 2.4.28
2.4.28
  * Add dotnet-runtime 6.0.30, remove dotnet-runtime 6.0.29
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 8.0.5, remove dotnet-runtime 8.0.4
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 6.0.422, remove dotnet-sdk 6.0.421
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 8.0.300, remove dotnet-sdk 8.0.204
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 7.0.409, remove dotnet-sdk 7.0.408
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 6.0.30, remove dotnet-aspnetcore 6.0.29
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 7.0.19, remove dotnet-aspnetcore 7.0.18
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 7.0.19, remove dotnet-runtime 7.0.18
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 8.0.5, remove dotnet-aspnetcore 8.0.4 (#972)
  for stack(s) cflinuxfs4, cflinuxfs3
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 6.0.30 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 7.0.19 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 8.0.5 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 6.0.30 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 7.0.19 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 8.0.5 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 6.0.422 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 7.0.409 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 8.0.300 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.8.1 | cflinuxfs3 |
  | libunwind | 1.8.1 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 8.0.x |
  | dotnet-aspnetcore | 8.0.x |
  | dotnet-sdk | 8.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: 8c941c4f5e94f26a698251f43416b793c13d223f21778de7c4f254735022b0f5
  * Uncached buildpack SHA256: 53b1022685fe334be0dac2b53b0d36d35f883e08154854194d6257f013a04bae
          
garden-runc 1.53.0
v1.53.0
  ## Changes
  - **DEPRECATION NOTICE** The `garden.experimental_use_containerd_mode_for_processes` property and usage of Garden when run in containerd mode for processes is now deprecated and no longer tested.
  -  **DEFAULT CHANGE** - The default mode for garden containers is now containerd. This has been the default in cf-deployment since 2018.
  -  **REMOVAL OF EXPERIMENTAL FUNCTIONALITY NOTICE**  The experimental option to run the garden server process in rootless mode has been removed, as it did not work as expected and was an abandoned feature.
  - Go package dependency bumps
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/garden-binaries/spec b/jobs/garden-binaries/spec
  index 0433639a..a8a96bae 100644
  --- a/jobs/garden-binaries/spec
  +++ b/jobs/garden-binaries/spec
  @@ -15,7 +15,6 @@ packages:
  - grootfs
  - xfs-progs
  - thresholder
  -  - netplugin-shim
  - dontpanic
  - tini
  diff --git a/jobs/garden/spec b/jobs/garden/spec
  index 027df351..093e53e1 100644
  --- a/jobs/garden/spec
  +++ b/jobs/garden/spec
  @@ -36,7 +36,6 @@ packages:
  - grootfs
  - xfs-progs
  - thresholder
  -  - netplugin-shim
  - dontpanic
  - tini
  @@ -199,10 +198,6 @@ properties:
  description: AppArmor profile to use for unprivileged container processes
  default: garden-default
  -  garden.experimental_rootless_mode:
  -    description: A boolean stating whether or not to run garden-server as a non-root user
  -    default: false
  -
  # We believe this defaults to false to help concourse: https://github.com/cloudfoundry/garden-runc-release/releases/tag/v1.5.0
  # For diego/cf, this should be set to true
  garden.cleanup_process_dirs_on_wait:
  @@ -210,8 +205,8 @@ properties:
  default: false
  garden.containerd_mode:
  -    description: "Use containerd for container lifecycle management. NOTE: cannot be used in combination with bpm or rootless"
  -    default: false
  +    description: "Use containerd for container lifecycle management. NOTE: cannot be used in combination with bpm"
  +    default: true
  garden.tcp_keepalive_time:
  description: Sets the `net.ipv4.tcp_keepalive_time` kernel parameter in containers. If not specified, the value from the linux init_net namespace is used.
  @@ -229,7 +224,7 @@ properties:
  description: Sets the `net.ipv4.tcp_retries2` kernel parameter in containers. If not specified, the value from the linux init_net namespace is used.
  garden.experimental_use_containerd_mode_for_processes:
  -    description: "(Under development) Use containerd for container process management. Must be used with containerd_mode also set to true. NOTE: cannot be used in combination with bpm or rootless"
  +    description: "(Deprecated) No longer used/tested."
  default: false
  garden.experimental_cpu_throttling:
  diff --git a/jobs/gats/spec b/jobs/gats/spec
  index 916a35eb..065e3ace 100644
  --- a/jobs/gats/spec
  +++ b/jobs/gats/spec
  @@ -22,12 +22,6 @@ properties:
  garden_test_rootfs:
  description: Test rootfs to use
  default: 'docker:///cloudfoundry/garden-rootfs'
  -  containerd_for_processes:
  -    description: Run GATS with CONTAINERD_FOR_PROCESSES_ENABLED
  -    default: false
  -  rootless:
  -    description: Run GATS with ROOTLESS env var
  -    default: false
  cpu_throttling:
  description: Run GATS with CPU_THROTTLING_ENABLED
  default: false
  ```
  ## ✨  Built with go 1.22.3
  **Full Changelog**: https://github.com/cloudfoundry/garden-runc-release/compare/v1.52.0...v1.53.0
  ## Resources
  - [Download release 1.53.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/garden-runc-release?version=1.53.0).
          
go-offline-buildpack 1.10.19
1.10.19
  * Updating github-config
  * Add go 1.22.3, remove go 1.22.2 (#446)
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187563910)
  * Add go 1.21.10, remove go 1.21.9 (#447)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187563965)
  | name | version | cf_stacks |
  |-|-|-|
  | dep | 0.5.4 | cflinuxfs3 |
  | dep | 0.5.4 | cflinuxfs4 |
  | glide | 0.13.3 | cflinuxfs3 |
  | glide | 0.13.3 | cflinuxfs4 |
  | go | 1.21.10 | cflinuxfs3 |
  | go | 1.21.10 | cflinuxfs4 |
  | go | 1.22.3 | cflinuxfs3 |
  | go | 1.22.3 | cflinuxfs4 |
  | godep | 80 | cflinuxfs3 |
  | godep | 80 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | go | 1.21.x |
  * Uncached buildpack SHA256: 01b9a7ec000681208f9b1f11a9c4ae92b2c284f8b07b847856bae56d398bf996
  * Uncached buildpack SHA256: 6d51853911899b58554327ff01c4cf9b0d97ac7e849e6038b010d1b515ff47f6
          
java-offline-buildpack 4.69.0
java-native-image-cnb-buildpack 0.10.4
0.10.4
  Components:
  * [buildpack v0.12.4](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.4)
          
log-cache 3.0.12
loggregator 107.0.14
loggregator-agent 8.1.1
mapfs 1.2.70
v1.2.70
  ## Changes
  * Golang: Updated to v1.22.3. (#259)
  ## Dependencies
  * **v2:** Updated to v2.17.3.
For more information, see [v2](https://github.com/onsi/ginkgo). * **mapfs:** Updated to v`0de16f2`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
v1.2.69
  ## Dependencies
  * **v2:** Updated to v2.17.2.
For more information, see [v2](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.33.1.
For more information, see [gomega](https://github.com/onsi/gomega). * **mapfs:** Updated to v`7f382bc`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
metric-registrar 4.0.0
v4.0.0
  ## What's Changed
  * feat: Discover binding URLs from Binding Cache by @ctlong in https://github.com/pivotal-cf/metric-registrar-release/pull/485
  * delete unused uaa properties by @mkocher in https://github.com/pivotal-cf/metric-registrar-release/pull/487
  **Full Changelog**: https://github.com/pivotal-cf/metric-registrar-release/compare/v3.0.3...v4.0.0
          
v3.0.3
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/pivotal-cf/metric-registrar-release/compare/v3.0.2...v3.0.3
          
v3.0.2
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.8](https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg/m/46oA5yPABQAJ)
  **Full Changelog**: https://github.com/pivotal-cf/metric-registrar-release/compare/v3.0.1...v3.0.2
          
v3.0.1
  ## What's Changed
  * Bump dependencies
  * Bump packaged Golang to go1.21.6
  **Full Changelog**: https://github.com/pivotal-cf/metric-registrar-release/compare/v3.0.0...v3.0.1
          
v3.0.0
  ## What's Changed
  * feat(orchestrator): Update to use CAPI internal API v5 https://github.com/pivotal-cf/metric-registrar-release/pull/340
  * bump dependencies
  **Full Changelog**: https://github.com/pivotal-cf/metric-registrar-release/compare/v2.1.11...v3.0.0
          
mysql-monitoring 10.15.0
v10.15.0
  - Updates golang to 1.22.3
          
nats 56.19.0
nfs-volume 7.1.66
v7.1.66
  ## Dependencies
  * **v2:** Updated to v2.17.3.
For more information, see [v2](https://github.com/onsi/ginkgo). * **nfsbroker:** Updated to v`90964d1`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`4d13326`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
v7.1.65
  ## Changes
  * Golang: Updated to v1.22.3 (#920)
  * Bump util-linux from 2.40 to 2.40.1 (#922)
  * Change nfsv3driver statd default port to `41793` (non-ephemeral) (#909)
  * Use newest cf-cli available (#913)
  ## Dependencies
  * **nfsbroker:** Updated to v`071d3d8`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`49ad37b`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
v7.1.64
  ## Dependencies
  * **gomega:** Updated to v1.33.1.
For more information, see [gomega](https://github.com/onsi/gomega). * **nfsbroker:** Updated to v`33b1b44`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`2e98b36`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
nginx-offline-buildpack 1.2.14
nodejs-offline-buildpack 1.8.25
1.8.25
  * Add node 18.20.3, remove node 18.19.1
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187642410)
  * Add node 20.13.1, remove node 20.11.1 (#722)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187563723)
  | name | version | cf_stacks |
  |-|-|-|
  | node | 18.20.2 | cflinuxfs3 |
  | node | 18.20.2 | cflinuxfs4 |
  | node | 18.20.3 | cflinuxfs3 |
  | node | 18.20.3 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  | node | 20.13.1 | cflinuxfs3 |
  | node | 20.13.1 | cflinuxfs4 |
  | python | 3.11.9 | cflinuxfs3 |
  | python | 3.11.9 | cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | node | 18.x |
  | python | 3.11.x |
  * Uncached buildpack SHA256: 725a6a0a45207f1469a6a146883aeccacff70ab2dde4d3c6c68fc98fe86199c9
  * Uncached buildpack SHA256: 85d4df7c4d322005d6730a04245fcf18eb5742ae36523f35598f9f229c20f29a
          
notifications 70.0.0
notifications-ui 47.0.0
otel-collector 0.4.1
php-offline-buildpack 4.6.19
4.6.19
  * Add php 8.3.7, remove php 8.3.4 (#1047) for stack(s) cflinuxfs4, cflinuxfs3
  * Add composer 2.7.6, remove composer 2.7.5 (#1044) for stack(s) cflinuxfs4, cflinuxfs3
  * Add php 8.2.19, remove php 8.2.17 (#1045) for stack(s) cflinuxfs4, cflinuxfs3
  * Add composer 2.7.5, remove composer 2.7.4 (#1043) for stack(s) cflinuxfs4, cflinuxfs3
  * Update default nginx version
  * Add nginx 1.25.5, remove nginx 1.25.4 (#1036)
  * Add nginx 1.26.0 for stack(s) cflinuxfs4, cflinuxfs3
  * Rebuild php 8.2.18 for stack(s) cflinuxfs4, cflinuxfs3
  * Add composer 2.7.4, remove composer 2.7.3 (#1034) for stack(s) cflinuxfs4, cflinuxfs3
  * Add composer 2.7.3, remove composer 2.7.2 (#1033) for stack(s) cflinuxfs4, cflinuxfs3
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | appdynamics | 23.11.0-839 | cflinuxfs3, cflinuxfs4 |  |
  | composer | 2.7.6 | cflinuxfs3, cflinuxfs4 |  |
  | httpd | 2.4.59 | cflinuxfs3 |  |
  | httpd | 2.4.59 | cflinuxfs4 |  |
  | newrelic | 10.11.0.3 | cflinuxfs3, cflinuxfs4 |  |
  | nginx | 1.25.5 | cflinuxfs3 |  |
  | nginx | 1.25.5 | cflinuxfs4 |  |
  | nginx | 1.26.0 | cflinuxfs3 |  |
  | nginx | 1.26.0 | cflinuxfs4 |  |
  | php | 8.1.26 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.26 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.27 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.27 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.2.18 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.18 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.19 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.19 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.6 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.6 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.7 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.7 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | python | 2.7.18 | cflinuxfs4 |  |
  | ruby | 3.0.5 | cflinuxfs4 |  |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 8.1.27 |
  | httpd | 2.4.59 |
  | newrelic | 10.11.0.3 |
  | nginx | 1.26.0 |
  | composer | 2.7.6 |
  * Uncached buildpack SHA256: ba1f163a50874979ee5bd6dabd5ea95c30e59fe0beb23544ca0d949fdacae635
  * Uncached buildpack SHA256: 11f5e960ee8c953802cc3112c390abb0caa972b0967c6885aaf557bd4219f15f
          
push-apps-manager-release 677.0.45
677.0.45
  ## What's Changed
  fix http:414 caused by customers with more than 200 routes. This fix is for the service binding pages.
          
677.0.44
  * update dependencies
          
677.0.43
  * Add doc link to autoscaler rule add/edit flyout
  * Change default threshold for CPU Entitlement rules in App Autoscaling
  * Fix issue with self hosted service_instances affecting the service instance quota in apps man header
  * Make the documentation clearer for airgapped/non-airgapped environments
          
push-offline-docs-release 6.0.169
push-usage-service-release 674.0.101
v674.0.101
  ## Dependencies
  * **app-usage-service:** Updated to v`0b882d3`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.100
  ## Changes
  * Avoid leaking creds from env var if possible (#578)
  ## Dependencies
  * **app-usage-service:** Updated to v`e850c40`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.99
  ## Dependencies
  * **app-usage-service:** Updated to v`9d527f6`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
pxc 1.0.28
v1.0.28
  **Dependency bumps**
  - Updates golang to 1.22.3
          
python-offline-buildpack 1.8.25
1.8.25
  * Add miniconda3-py39 24.4.0, remove miniconda3-py39 24.3.0 (#917)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187637426)
  * Add setuptools 70.0.0, remove setuptools 69.5.1 (#918)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187641872)
  * Add miniconda3-py39 24.3.0, remove miniconda3-py39 24.1.2
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187433355)
  | name | version | cf_stacks |
  |-|-|-|
  | libffi | 3.2.1 | cflinuxfs3, cflinuxfs4 |
  | libmemcache | 1.0.18 | cflinuxfs3, cflinuxfs4 |
  | miniconda3-py39 | 24.4.0 | cflinuxfs3, cflinuxfs4 |
  | pip | 24.0 | cflinuxfs3, cflinuxfs4 |
  | pipenv | 2023.12.1 | cflinuxfs3 |
  | pipenv | 2023.12.1 | cflinuxfs4 |
  | python | 3.8.19 | cflinuxfs3 |
  | python | 3.8.19 | cflinuxfs4 |
  | python | 3.9.19 | cflinuxfs3 |
  | python | 3.9.19 | cflinuxfs4 |
  | python | 3.10.14 | cflinuxfs3 |
  | python | 3.10.14 | cflinuxfs4 |
  | python | 3.11.9 | cflinuxfs3 |
  | python | 3.11.9 | cflinuxfs4 |
  | python | 3.12.3 | cflinuxfs3 |
  | python | 3.12.3 | cflinuxfs4 |
  | setuptools | 70.0.0 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | python | 3.10.x |
  * Uncached buildpack SHA256: 5c5ce4eb1a7f3784963234075467784df417b8fd92fe6d0c5ad77d1829f9025e
  * Uncached buildpack SHA256: 0cb3bac356825d8220fa522bdb6bb7ce3ef682b6cc974346da9b3c75778a5ac3
          
r-offline-buildpack 1.2.12
1.2.12
  * Remove R 3.6 (old version)
  * Add r 4.4.0 for stack(s) cflinuxfs3, cflinuxfs4
  with dependencies for stack cflinuxfs3: forecast 8.22.0, plumber 1.2.2, rserve 1.8.13, shiny 1.8.1.1
  with dependencies for stack cflinuxfs4: forecast 8.22.0, plumber 1.2.2, rserve 1.8.13, shiny 1.8.1.1
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | r | 4.2.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.3 | cflinuxfs4 | forecast, plumber, rserve, shiny |
  | r | 4.3.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.3.3 | cflinuxfs4 | forecast, plumber, rserve, shiny |
  | r | 4.4.0 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.4.0 | cflinuxfs4 | forecast, plumber, rserve, shiny |
  * Uncached buildpack SHA256: c2bfdb323e374eec2f7306d9f97393d017a6cc176568a29e4a7aef6125a1efb1
  * Uncached buildpack SHA256: 33b434519fa21656243a448f40d368c93d5498a8528d1331fb9beb85f1d1c76e
          
routing 0.298.0
v0.298.0
  ## Changes
  - :bug: Improve support for requests using the Expect: 100-continue header.
  - :bug: The missing_content_length_header metric introduced in 0.297.0 has been renamed  to empty_content_length_header for more accuracy. Thanks @peanball!
  - :bug: The empty_content_length_header was fixed to more accurately capture events when the content-length header of a request was empty. Previously extra request types were being included erroneously.
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/gorouter/spec b/jobs/gorouter/spec
  index 712a761f..8269440b 100644
  --- a/jobs/gorouter/spec
  +++ b/jobs/gorouter/spec
  @@ -306,6 +306,9 @@ properties:
  router.keep_alive_probe_interval:
  default: 1s
  description: Interval between TCP keep alive probes. Value is a string (e.g. "10s")
  +  router.keep_alive_100_continue_requests:
  +    description: "If set gorouter reuses backend connection for requests expecting 100-Continue"
  +    default: false
  router.force_forwarded_proto_https:
  description: "Enables setting X-Forwarded-Proto header if SSL termination happened upstream and incorrectly set the header value. When this property is set to true gorouter sets the header X-Forwarded-Proto to https. When this value set to false, gorouter set the header X-Forwarded-Proto to the protocol of the incoming request"
  default: false
  ```
  ## ✨  Built with go 1.22.3
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.297.0...v0.298.0
  ## Resources
  - [Download release 0.298.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.298.0).
          
v0.297.0
  ## Changes
  - **🐛FIXES KNOWN ISSUE** Gorouter now correctly returns the status code provided by backends for workflows using 100-continue, or other 1xx interim status codes.  Thanks for catching this @plowin @domdom82 and thanks @geofffranks for the quick fix!
  - 🐛The TLS listener for the health status endpoint in gorouter now handles custom cipher-suites that do not include any of the required HTTP/2 ciphers. Thanks @MarcPaquette + @geofffranks!
  - 🐛 Failing to establish a TCP connection to a backend no longer causes a panic when setting up a WebSocket connection. Thanks @domdom82!
  - ✨The health status endpoint for gorouter is now able to log error messages encountered when it starts up, to aid in troubleshooting. Thanks @MarcPaquette and @geofffranks !
  - ✨Gorouter now provides a `missing_content_length_header` metric that will flag requests that would have been hit by Golang 1.22's new check to reject requests that have an empty content-length header. This can be used to determine if an environment will be affected by disabling the `go.httplaxcontentlength` gorouter property. Thanks @mariash!
  - **NOTE:** The metric is counting requests unaffected by the new golang behavior and will be updated in 0.298.0+, where it is also renamed to `empty_content_length_header`.
  - ✨Route registrar now allows operators to specify load blancing algorithms for individual routes. Thanks @b1tamara and @domdom82 !
  - Bumped to golang 1.22.3
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/route_registrar/spec b/jobs/route_registrar/spec
  index c51dbb9f..de81a0e8 100644
  --- a/jobs/route_registrar/spec
  +++ b/jobs/route_registrar/spec
  @@ -125,7 +125,8 @@ properties:
  with error, the route is unregistered.
  router_group (required, string, for tcp routes): Name of the router group to which the TCP route should be added.
  external_port (required, string, for tcp routes): Port that the TCP router will listen on.
  -        server_cert_domain_name_modifier (optional, string, for sni routes): a regex replace to help with complicated hostnames
  +        server_cert_domain_name_modifier (optional, string, for sni routes): a regex replace to help with complicated hostnames.
  +        options (optional, object, for http routes): Custom per-route options
  health_check object
  name (required, string): Human-readable reference for the healthcheck
  @@ -135,6 +136,9 @@ properties:
  the script is terminated with `SIGKILL` and the route is unregistered. Value is a string (e.g. "10s") and must parse to a positive time duration i.e. "-5s" is not permitted. Must be less than the value of `registration_interval`.
  Default: Half of the value of `registration_interval`
  +      options object
  +        lb_algo (optional, string): Load balancing algorithm for routing incoming requests to the backend: 'round-robin' or 'least-connection'. In cases where this option is not specified, the algorithm defined in gorouter spec is applied.
  +
  example: |
  - name: my-service
  uris:
  @@ -150,6 +154,8 @@ properties:
  script_path: /path/to/script
  timeout: 5s
  route_service_url: https://my-oauth-proxy-route-service.example.com
  +        options:
  +          lb_algo: least-connection
  - name: my-tls-endpoint
  tls_port: 12346
  server_cert_domain_san: "my-tls-endpoint.internal.com"
  ```
  ## ✨  Built with go 1.22.3
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.296.0...v0.297.0
  ## Resources
  - [Download release 0.297.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.297.0).
          
ruby-offline-buildpack 1.10.15
1.10.15
  * Add jruby 9.4.7.0, remove jruby 9.4.6.0 (#939)
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add bundler 2.5.10, remove bundler 2.5.9 (#941)
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add rubygems 3.5.10, remove rubygems 3.5.9 (#942)
  for stack(s) cflinuxfs4, cflinuxfs3
  | name | version | cf_stacks |
  |-|-|-|
  | bundler | 2.5.10 | cflinuxfs3, cflinuxfs4 |
  | jruby | 9.4.7.0 | cflinuxfs3 |
  | jruby | 9.4.7.0 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  | openjdk1.8-latest | 1.8.0 | cflinuxfs3, cflinuxfs4 |
  | ruby | 3.1.4 | cflinuxfs3 |
  | ruby | 3.1.4 | cflinuxfs4 |
  | ruby | 3.1.5 | cflinuxfs3 |
  | ruby | 3.1.5 | cflinuxfs4 |
  | ruby | 3.2.2 | cflinuxfs3 |
  | ruby | 3.2.2 | cflinuxfs4 |
  | ruby | 3.2.3 | cflinuxfs3 |
  | ruby | 3.2.3 | cflinuxfs4 |
  | ruby | 3.2.4 | cflinuxfs3 |
  | ruby | 3.2.4 | cflinuxfs4 |
  | ruby | 3.3.0 | cflinuxfs3 |
  | ruby | 3.3.0 | cflinuxfs4 |
  | ruby | 3.3.1 | cflinuxfs3 |
  | ruby | 3.3.1 | cflinuxfs4 |
  | rubygems | 3.5.10 | cflinuxfs3, cflinuxfs4 |
  | yarn | 1.22.22 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | ruby | 3.2.x |
  * Uncached buildpack SHA256: 7a017a3df73e6142992e55c7a6f9d906199fc57d7dbb2e8a04a73fc86e159221
  * Uncached buildpack SHA256: c6ec2510015faf48b68f5026e4a7f5421bbd3e8a35fec342a89adfa3df753950
          
web-servers-cnb-buildpack 0.13.2
0.13.2
  Components:
  * [buildpack v0.16.1](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.1)
          
0.13.1
  Components:
  * [buildpack v0.16.1](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.1)
          
silk 3.46.0
smb-volume 3.1.68
v3.1.68
  ## Changes
  * Golang: Updated to v1.22.3 (#408)
  ## Dependencies
  * **v2:** Updated to v2.17.3.
For more information, see [v2](https://github.com/onsi/ginkgo). * **smbbroker:** Updated to v`17a844f`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`9ccf77c`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
v3.1.67
  ## Changes
  * Use newest cf-cli available (#405)
  ## Dependencies
  * **v2:** Updated to v2.17.2.
For more information, see [v2](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.33.1.
For more information, see [gomega](https://github.com/onsi/gomega). * **smbbroker:** Updated to v`490615c`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`fa2b5d0`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
smoke-tests 4.10.0
staticfile-offline-buildpack 1.6.13
statsd-injector 1.11.40
syslog 12.2.5
system-metrics-scraper 4.0.8
uaa 77.9.0
v77.9.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.9.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.9.0)
  ### Misc
  * fix: update java version by @Tallicia in https://github.com/cloudfoundry/uaa-release/pull/861
  * fix issue #856 by @strehle in https://github.com/cloudfoundry/uaa-release/pull/857
  ### Dependency Bumps
  * [Upgrade Tomcat to version 9.0.89](https://github.com/cloudfoundry/uaa-release/commit/153829329852ed06f65b62ead33651962510063b)
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.459 to 0.0.461 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/864
  * Bump i18n from 1.14.4 to 1.14.5 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/866
  * Bump bigdecimal from 3.1.7 to 3.1.8 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/867
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.461 to 0.0.463 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/869
  * Bump rspec-mocks from 3.13.0 to 3.13.1 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/870
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.8.0...v77.9.0
          
tanzu-jammy-stack 1.0.1

6.0.3

Release Date: 05/03/2024

Caution This release is susceptible to a known issue where Gorouter returns an incorrect HTTP status code in response to requests with an "HTTP 100 Continue" interim status header. To resolve this issue, see the Broadcom Knowledge Base article Gorouter Returns wrong HTTP response code to client when the request flow uses HTTP 100-continue.

  • [Bug Fix] Reduce load on Cloud Controller from syslog drain fetching in Syslog Binding Cache and Metric Registrar. In certain instances Cloud Controllers may become unresponsive without this bug fix if they can not handle the load
  • [Bug Fix] In certain instances Cloud Controllers may become unresponsive because of the load generated by metric-registrar 3.0.0-3.0.3. Rolling back to 2.1.14 will not have any user visible effects and will reduce the load on Cloud Controller substantially.
  • Bump loggregator-agent to version 8.1.1
  • Bump metric-registrar to version 2.1.14
  • Bump mysql-monitoring to version 10.14.0
  • Bump nginx-offline-buildpack to version 1.2.14
  • Bump ruby-offline-buildpack to version 1.10.14
  • Bump staticfile-offline-buildpack to version 1.6.13
  • Bump uaa to version 77.8.0
Component Version Release Notes
ubuntu-jammy stemcell 1.423
backup-and-restore-sdk 1.19.12
binary-offline-buildpack 1.1.11
bosh-dns-aliases 0.0.4
bpm 1.2.18
capi 1.180.0
cf-autoscaling 250.2.3
cf-cli 1.60.0
cf-networking 3.46.0
cflinuxfs3 0.387.0
cflinuxfs4 1.82.0
count-cores-indicator 2.0.0
credhub 2.12.72
diego 2.98.0
dotnet-core-offline-buildpack 2.4.27
garden-runc 1.52.0
go-offline-buildpack 1.10.18
java-offline-buildpack 4.68.0
java-native-image-cnb-buildpack 0.10.3
log-cache 3.0.12
loggregator 107.0.14
loggregator-agent 8.1.1
v8.1.1
  ## What's Changed
  * Bump dependencies
  * Fix Syslog Binding Cache polling to wait for the entire polling interval between each operation in https://github.com/cloudfoundry/loggregator-agent-release/pull/572
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-agent-release/compare/v8.1.0...v8.1.1
          
mapfs 1.2.68
metric-registrar 2.1.14
mysql-monitoring 10.14.0
v10.14.0
  - Removing indicator protocol
  - Dependency bumps
          
nats 56.19.0
nfs-volume 7.1.63
nginx-offline-buildpack 1.2.14
1.2.14
  * Add nginx 1.26.0, remove nginx 1.24.0
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187519044)
  * Add nginx 1.25.5, remove nginx 1.25.4
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187441840)
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.25.5 | cflinuxfs3 |
  | nginx | 1.25.5 | cflinuxfs4 |
  | nginx | 1.26.0 | cflinuxfs3 |
  | nginx | 1.26.0 | cflinuxfs4 |
  | openresty | 1.21.4.2 | cflinuxfs3 |
  | openresty | 1.21.4.2 | cflinuxfs4 |
  | openresty | 1.25.3.1 | cflinuxfs3 |
  | openresty | 1.25.3.1 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.25.x |
  * Uncached buildpack SHA256: ba7b84c47b0dae826bb0b29d4013843b74e2dfbaf9096a896bd122c6ee04b780
  * Uncached buildpack SHA256: 65aa6409a9972b8741989cf7da65b7bff4a93057b5e375b4f802e4910bf923ba
          
nodejs-offline-buildpack 1.8.24
notifications 70.0.0
notifications-ui 47.0.0
otel-collector 0.4.1
php-offline-buildpack 4.6.18
push-apps-manager-release 677.0.42
push-offline-docs-release 6.0.169
push-usage-service-release 674.0.98
pxc 1.0.27
python-offline-buildpack 1.8.23
r-offline-buildpack 1.2.11
routing 0.296.0
ruby-offline-buildpack 1.10.14
1.10.14
  * Add ruby 3.3.1
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add ruby 3.2.4, remove ruby 3.2.2 (#936)
  for stack(s) cflinuxfs4, cflinuxfs3 [#187500229]
  * Add ruby 3.1.5, remove ruby 3.1.3 (#938)
  for stack(s) cflinuxfs3, cflinuxfs4
  | name | version | cf_stacks |
  |-|-|-|
  | bundler | 2.5.9 | cflinuxfs3, cflinuxfs4 |
  | jruby | 9.4.6.0 | cflinuxfs3 |
  | jruby | 9.4.6.0 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  | openjdk1.8-latest | 1.8.0 | cflinuxfs3, cflinuxfs4 |
  | ruby | 3.1.4 | cflinuxfs3 |
  | ruby | 3.1.4 | cflinuxfs4 |
  | ruby | 3.1.5 | cflinuxfs3 |
  | ruby | 3.1.5 | cflinuxfs4 |
  | ruby | 3.2.2 | cflinuxfs3 |
  | ruby | 3.2.2 | cflinuxfs4 |
  | ruby | 3.2.3 | cflinuxfs3 |
  | ruby | 3.2.3 | cflinuxfs4 |
  | ruby | 3.2.4 | cflinuxfs3 |
  | ruby | 3.2.4 | cflinuxfs4 |
  | ruby | 3.3.0 | cflinuxfs3 |
  | ruby | 3.3.0 | cflinuxfs4 |
  | ruby | 3.3.1 | cflinuxfs3 |
  | ruby | 3.3.1 | cflinuxfs4 |
  | rubygems | 3.5.9 | cflinuxfs3, cflinuxfs4 |
  | yarn | 1.22.22 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | ruby | 3.2.x |
  * Uncached buildpack SHA256: 7bd144c9f55ac9e90d05ca43af8359923ade9de084c87f280560af3deb077307
  * Uncached buildpack SHA256: 008265316f8b74a066e5a5198c39a75b78514c7b458952f151fc52c858d079ff
          
web-servers-cnb-buildpack 0.13.0
silk 3.46.0
smb-volume 3.1.66
smoke-tests 4.10.0
staticfile-offline-buildpack 1.6.13
1.6.13
  * Add nginx 1.26.0, remove 1.24.0
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187519048)
  * Add nginx 1.25.5, remove nginx 1.25.4
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187441964)
  * add codeowners (#418)
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.25.5 | cflinuxfs3 |
  | nginx | 1.25.5 | cflinuxfs4 |
  | nginx | 1.26.0 | cflinuxfs3 |
  | nginx | 1.26.0 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.25.x |
  * Uncached buildpack SHA256: 4ab6f2a4d8f132e0a07451ef6eff3c138e08990b1de36b5bb6d5c9630f3fe192
  * Uncached buildpack SHA256: d8d6617a7c62b626309260dd455720b227d7e1487bed54a7d6d56aad2251106e
          
statsd-injector 1.11.40
syslog 12.2.5
system-metrics-scraper 4.0.8
uaa 77.8.0
v77.8.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.8.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.8.0)
  ### Misc
  * fix: MySQL Performance Issues in "/ids/Users" Endpoint - [Set DB case-insensitivity flag in SimpleSearchQueryConverter](https://github.com/cloudfoundry/uaa/commit/38a2048f7285850cc5e1cb8bd996175b9b76c185)
  ### Dependency Bumps
  * Bump github.com/onsi/gomega from 1.33.0 to 1.33.1 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/860
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.7.0...v77.8.0
          
tanzu-jammy-stack 1.0.1

6.0.2

Release Date: 05/01/2024

Caution This release is susceptible to a known issue where Gorouter returns an incorrect HTTP status code in response to requests with an "HTTP 100 Continue" interim status header. To resolve this issue, see the Broadcom Knowledge Base article Gorouter Returns wrong HTTP response code to client when the request flow uses HTTP 100-continue.

  • [Bug fix] Fixed a database performance problem for UAA using MySQL with a large number of users
  • Bump backup-and-restore-sdk to version 1.19.12
  • Bump binary-offline-buildpack to version 1.1.11
  • Bump capi to version 1.180.0
  • Bump cf-autoscaling to version 250.2.3
  • Bump cf-networking to version 3.46.0
  • Bump credhub to version 2.12.72
  • Bump diego to version 2.98.0
  • Bump dotnet-core-offline-buildpack to version 2.4.27
  • Bump garden-runc to version 1.52.0
  • Bump go-offline-buildpack to version 1.10.18
  • Bump java-offline-buildpack to version 4.68.0
  • Bump java-native-image-cnb-buildpack to version 0.10.3
  • Bump loggregator-agent to version 8.1.0
  • Bump mapfs to version 1.2.68
  • Bump nats to version 56.19.0
  • Bump nfs-volume to version 7.1.63
  • Bump nginx-offline-buildpack to version 1.2.13
  • Bump nodejs-offline-buildpack to version 1.8.24
  • Bump notifications to version 70.0.0
  • Bump php-offline-buildpack to version 4.6.18
  • Bump push-usage-service-release to version 674.0.98
  • Bump pxc to version 1.0.27
  • Bump python-offline-buildpack to version 1.8.23
  • Bump r-offline-buildpack to version 1.2.11
  • Bump routing to version 0.296.0
  • Bump ruby-offline-buildpack to version 1.10.13
  • Bump web-servers-cnb-buildpack to version 0.13.0
  • Bump silk to version 3.46.0
  • Bump smb-volume to version 3.1.66
  • Bump staticfile-offline-buildpack to version 1.6.12
  • Bump syslog to version 12.2.5
  • Bump uaa to version 77.7.0
Component Version Release Notes
ubuntu-jammy stemcell 1.423
backup-and-restore-sdk 1.19.12
v1.19.12
  ## Dependencies
  * **gomega:** Updated to v1.33.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **net:** Updated to v0.23.0.
For more information, see [net](https://github.com/golang/net). * **api:** Updated to v0.175.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.19.11
  ## Dependencies
  * **azblob:** Updated to v1.3.2.
For more information, see [azblob](https://github.com/Azure/azure-sdk-for-go). * **bosh-backup-and-restore:** Updated to v1.9.63.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore).
binary-offline-buildpack 1.1.11
1.1.11
  * Updating github-config (#171)
  * Uncached buildpack SHA256: 2fdf5a579b79fdf13f372e3f5b4b629e9aae874ce6f0dd2c45e40677ca0cfab8
  * Uncached buildpack SHA256: 7ed9c48549bde198c89f9f30a0d41f15a2d210a2c64762bd5fb5aa72a8b0d7d6
  * Uncached buildpack SHA256: bb0ef600ab0f007d47e0094289529cc2a5c8e35ad0c870aeee97e23bcbb9bd08
  * Uncached buildpack SHA256: 0178f96db779db196fd56d031ff87116af8f2f8d1bfcd82c563317ffe1ff2d13
          
bosh-dns-aliases 0.0.4
bpm 1.2.18
capi 1.180.0
cf-autoscaling 250.2.3
v250.2.3
  ## What's Changed
  * Bump dependencies
          
cf-cli 1.60.0
cf-networking 3.46.0
v3.46.0
  ## Changes
  - Bump Golang to 1.22
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/performance-test-sd/spec b/jobs/performance-test-sd/spec
  index c89d50f5..0583340e 100644
  --- a/jobs/performance-test-sd/spec
  +++ b/jobs/performance-test-sd/spec
  @@ -6,7 +6,7 @@ templates:
  config.json.erb: config.json
  packages:
  -  - golang-1.21-linux
  +  - golang-1.22-linux
  - performance-test-sd
  consumes:
  ```
  ## ✨  Built with go 1.22.2
  **Full Changelog**: https://github.com/cloudfoundry/cf-networking-release/compare/v3.45.0...v3.46.0
  ## Resources
  - [Download release 3.46.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/cf-networking-release?version=3.46.0).
          
cflinuxfs3 0.387.0
cflinuxfs4 1.82.0
count-cores-indicator 2.0.0
credhub 2.12.72
2.12.72
  Various dependency security bumps
          
2.12.71
  ## Security Fixes
  * Various dependency bumps
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.70...2.12.71
          
2.12.70
  # What's Changed
  ## Bug Fixes
  * Fixed issue #231 [CredHub accumulates orphaned data in the the encrypted_value table](https://github.com/cloudfoundry/credhub/issues/231)
  ## Security Fixes
  * Various dependency bumps
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.69...2.12.70
          
2.12.69
  ## Security fixes
  * Bumped nettty-codec-http to fix CVE-2024-29025.
  ## What's Changed
  * Documented how to clean up orphaned encrypted_value records.
  * Removed a fix that was released in 2.12.67 for a bug that caused CredHub to leave orphaned encrypted_value records - it required permissions for adding triggers to the database that are not available in some databases.
  * Various dependency bumps.
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.66...2.12.69
          
2.12.67
  ## What's Changed
  ### ⚠️  Known Issues
  * This CredHub release might fail to start if CredHub is configured with a database vendor that enforces additional access control on database triggers creation (e.g. Amazon RDS), as this release will attempt to create database triggers at start time. This issue is still under investigation. We recommend that you do not use this release if you are using vendors like Amazon RDS.
  ### Fixes
  * Fixed issue #231 [CredHub accumulates orphaned data in the the encrypted_value table](cloudfoundry/credhub/issues/231)
  ### Dependency Bumps
  * Build(deps): bump com.google.guava:guava from 33.0.0-jre to 33.1.0-jre
  * Build(deps): bump org.postgresql:postgresql from 42.7.2 to 42.7.3
  * Build(deps): bump com.google.api.grpc:proto-google-common-protos
  * Build(deps): bump org.owasp:dependency-check-gradle from 9.0.9 to 9.0.10
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.66...2.12.67
          
diego 2.98.0
v2.98.0
  ## Changes
  - Update Golang to 1.22
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/vizzini/spec b/jobs/vizzini/spec
  index 7eb920159..d61278357 100644
  --- a/jobs/vizzini/spec
  +++ b/jobs/vizzini/spec
  @@ -1,7 +1,7 @@
  ---
  name: vizzini
  packages:
  -  - golang-1.21-linux
  +  - golang-1.22-linux
  - vizzini
  templates:
  ```
  ## ✨  Built with go 1.22.2
  **Full Changelog**: https://github.com/cloudfoundry/diego-release/compare/v2.97.0...v2.98.0
  ## Resources
  - [Download release 2.98.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/diego-release?version=2.98.0).
          
dotnet-core-offline-buildpack 2.4.27
2.4.27
  * Update default .NET Core version in buildpack from 6.0.x to 8.0.x
  * Add dotnet-runtime 6.0.29, remove dotnet-runtime 6.0.28 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 7.0.18, remove dotnet-runtime 7.0.17 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 8.0.4, remove dotnet-runtime 8.0.3 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 6.0.421, remove dotnet-sdk 6.0.420 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 7.0.408, remove dotnet-sdk 7.0.407 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 8.0.204, remove dotnet-sdk 8.0.203 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 6.0.29, remove dotnet-aspnetcore 6.0.28 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 7.0.18, remove dotnet-aspnetcore 7.0.17 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 8.0.4, remove dotnet-aspnetcore 8.0.3 for stack(s) cflinuxfs4, cflinuxfs3
  * Add node 20.12.2, remove node 20.11.1 for stack(s) cflinuxfs3, cflinuxfs4
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 6.0.29 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 7.0.18 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 8.0.4 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 6.0.29 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 7.0.18 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 8.0.4 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 6.0.421 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 7.0.408 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 8.0.204 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.8.1 | cflinuxfs3 |
  | libunwind | 1.8.1 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 8.0.x |
  | dotnet-aspnetcore | 8.0.x |
  | dotnet-sdk | 8.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: 1d70ed8764000483b61bd54e8b63b4ced2cace1e5ba65a1516425b1f848cf755
  * Uncached buildpack SHA256: 6093eff801445ac688841553e40f9c760be0385d3008b12f99b8d96bc83d16b5
          
garden-runc 1.52.0
v1.52.0
  ## Changes
  - Bump Golang to 1.22
  ## ✨  Built with go 1.22.2
  **Full Changelog**: https://github.com/cloudfoundry/garden-runc-release/compare/v1.51.0...v1.52.0
  ## Resources
  - [Download release 1.52.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/garden-runc-release?version=1.52.0).
          
go-offline-buildpack 1.10.18
1.10.18
  * Add go 1.21.9, remove go 1.21.8 for stack(s) cflinuxfs3, cflinuxfs4 (#441)
  * Add go 1.22.2, remove go 1.22.1 for stack(s) cflinuxfs3, cflinuxfs4 (#442)
  | name | version | cf_stacks |
  |-|-|-|
  | dep | 0.5.4 | cflinuxfs3 |
  | dep | 0.5.4 | cflinuxfs4 |
  | glide | 0.13.3 | cflinuxfs3 |
  | glide | 0.13.3 | cflinuxfs4 |
  | go | 1.21.9 | cflinuxfs3 |
  | go | 1.21.9 | cflinuxfs4 |
  | go | 1.22.2 | cflinuxfs3 |
  | go | 1.22.2 | cflinuxfs4 |
  | godep | 80 | cflinuxfs3 |
  | godep | 80 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | go | 1.21.x |
  * Uncached buildpack SHA256: 5c558a7007327b161c22a35364c3c6efb8462b0fbed1bb971d1383517fbf8a8d
  * Uncached buildpack SHA256: e49a42b9d164e0b3e393d22cd3e9f6c4711be46389d93acc5709de40970fa9a1
          
java-offline-buildpack 4.68.0
java-native-image-cnb-buildpack 0.10.3
0.10.3
  Components:
  * [buildpack v0.12.4](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.4)
          
log-cache 3.0.12
loggregator 107.0.14
loggregator-agent 8.1.0
v8.1.0
  ## What's Changed
  * Replace usages of `grpc.Dial` with `grpc.NewClient` which does not open connections until necessary
  * Bump dependencies
  ### Experimental OTel Collector changes
  * Added `temporary_emit_otel_traces` property to the loggr-forwarder-agent and loggr-forwarder-agent-windows jobs. Setting this property to `true` activates conversion of appropriately tagged http timers to OpenTelemetry traces (it defaults to `false`). See cloudfoundry/gorouter#407.
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-agent-release/compare/v8.0.3...v8.1.0
          
v8.0.4
  Don't use. It contains the code changes from v8.1.0 but without a semver minor bump to indicate new functionality.
          
mapfs 1.2.68
v1.2.68
  ## Dependencies
  * **gomega:** Updated to v1.33.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **mapfs:** Updated to v`3fb73af`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
v1.2.67
  ## Dependencies
  * **mapfs:** Updated to v`b5baec0`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
metric-registrar 3.0.3
mysql-monitoring 10.13.0
nats 56.19.0
v56.19.0
  ## Changes
  - Bump Golang to 1.22
  ## ✨  Built with go 1.22.2
  **Full Changelog**: https://github.com/cloudfoundry/nats-release/compare/v56.18.0...v56.19.0
  ## Resources
  - [Download release 56.19.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/nats-release?version=56.19.0).
          
nfs-volume 7.1.63
v7.1.63
  ## Changes
  * Add final release 7.1.62 [ci skip]
  ## Dependencies
  * **gomega:** Updated to v1.33.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **nfsbroker:** Updated to v`5d71277`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`31062e6`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
v7.1.62
  ## Changes
  * Bump sqlite from 3.45.2 to 3.45.3 (#881)
  ## Dependencies
  * **nfsbroker:** Updated to v`680bc33`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`279655c`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
nginx-offline-buildpack 1.2.13
1.2.13
  * Updating github-config (#274)
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.24.0 | cflinuxfs3 |
  | nginx | 1.24.0 | cflinuxfs4 |
  | nginx | 1.25.4 | cflinuxfs3 |
  | nginx | 1.25.4 | cflinuxfs4 |
  | openresty | 1.21.4.2 | cflinuxfs3 |
  | openresty | 1.21.4.2 | cflinuxfs4 |
  | openresty | 1.25.3.1 | cflinuxfs3 |
  | openresty | 1.25.3.1 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.25.x |
  * Uncached buildpack SHA256: a8bcd08605ef71db790fc0f25481ea34cd4cf705cb9d1cbd737537b5fcc16ac8
  * Uncached buildpack SHA256: 6adb381aea1fc7f1066e25eb4348317c39b7aef6d5c899ba78e4e1b7b2139858
          
nodejs-offline-buildpack 1.8.24
1.8.24
  * Add node 18.20.2, remove node 18.19.0 (#717)
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187406609)
  * Add node 20.12.2, remove node 20.11.0 (#716)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187406689)
  * Add python 3.11.9, remove python 3.11.8 (#712)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187354849)
  * Updating github-config (#706)
  | name | version | cf_stacks |
  |-|-|-|
  | node | 18.19.1 | cflinuxfs3 |
  | node | 18.19.1 | cflinuxfs4 |
  | node | 18.20.2 | cflinuxfs3 |
  | node | 18.20.2 | cflinuxfs4 |
  | node | 20.11.1 | cflinuxfs3 |
  | node | 20.11.1 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  | python | 3.11.9 | cflinuxfs3 |
  | python | 3.11.9 | cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | node | 18.x |
  | python | 3.11.x |
  * Uncached buildpack SHA256: 140b82e74a883754ff987b47e41eb1103bb4616b2c4aa0ba23c42cb00fe1b670
  * Uncached buildpack SHA256: b23bf383be6d3332484b6a7033bfca8b36a50a7cadf6d87ee608a104e3e55d9f
          
notifications 70.0.0
v70.0.0
  * add spec options to specify max number of retries and max queue length for jobs
  * default length to 5000 and reduce number of retries from 9 to 5
  * fix deploy errand to report when cf push fails correctly
  * fix deploy errand to not fail upgrades due to intermixing new and old code.
          
notifications-ui 47.0.0
otel-collector 0.4.1
php-offline-buildpack 4.6.18
4.6.18
  * Add php 8.2.18, remove php 8.2.16 for stack(s) cflinuxfs4, cflinuxfs3
  * Add php 8.3.6, remove php 8.3.3 for stack(s) cflinuxfs4, cflinuxfs3
  * Add httpd 2.4.59, remove httpd 2.4.58 for stack(s) cflinuxfs4, cflinuxfs3
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | appdynamics | 23.11.0-839 | cflinuxfs3, cflinuxfs4 |  |
  | composer | 2.7.2 | cflinuxfs3, cflinuxfs4 |  |
  | httpd | 2.4.59 | cflinuxfs3 |  |
  | httpd | 2.4.59 | cflinuxfs4 |  |
  | newrelic | 10.11.0.3 | cflinuxfs3, cflinuxfs4 |  |
  | nginx | 1.24.0 | cflinuxfs3 |  |
  | nginx | 1.24.0 | cflinuxfs4 |  |
  | nginx | 1.25.4 | cflinuxfs3 |  |
  | nginx | 1.25.4 | cflinuxfs4 |  |
  | php | 8.1.26 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.26 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.27 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.27 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.2.17 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.17 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.18 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.2.18 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.4 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.4 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.6 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | php | 8.3.6 | cflinuxfs4 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaml, zip, zlib |
  | python | 2.7.18 | cflinuxfs4 |  |
  | ruby | 3.0.5 | cflinuxfs4 |  |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 8.1.27 |
  | httpd | 2.4.59 |
  | newrelic | 10.11.0.3 |
  | nginx | 1.25.4 |
  | composer | 2.7.2 |
  * Uncached buildpack SHA256: 0a3064a52cf955fd63a97f721b71c884f7ff4b1f6feebf28ee6ed24cd8138444
  * Uncached buildpack SHA256: a8ec252ebb290ff8bca22136821a9ba695831688b14120f3a0e9135f264ebf3d
          
push-apps-manager-release 677.0.42
push-offline-docs-release 6.0.169
push-usage-service-release 674.0.98
v674.0.98
  ## Changes
  * creating final release 674.0.97
  ## Dependencies
  * **app-usage-service:** Updated to v`159f378`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.97
  ## Dependencies
  * **app-usage-service:** Updated to v`7d0ce49`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
pxc 1.0.27
v1.0.27
  ## Release Notes
  - Adds new job for percona-xtrabackup-2.4
  - Adds new job for percona-xtrabackup-8.0
  **Dependency bumps**
  - None
  **Bugs fixed**
  - mysql_slow_query.log no longer leaks sensitive secrets
          
python-offline-buildpack 1.8.23
1.8.23
  * Add setuptools 69.5.1, remove setuptools 69.2.0
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187426113)
  * Add python 3.12.3, remove python 3.12.2 (#904)
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187398328)
  * Add python 3.11.9, remove python 3.11.8 (#903)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187354849)
  * Add python 3.10.14, remove python 3.10.13 (#901)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/187273725)
  * Add python 3.9.19, remove python 3.9.18 (#900)
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187271197)
  * Add python 3.8.19, remove python 3.8.18 (#899)
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/187270980)
  | name | version | cf_stacks |
  |-|-|-|
  | libffi | 3.2.1 | cflinuxfs3, cflinuxfs4 |
  | libmemcache | 1.0.18 | cflinuxfs3, cflinuxfs4 |
  | miniconda3-py39 | 24.1.2 | cflinuxfs3, cflinuxfs4 |
  | pip | 24.0 | cflinuxfs3, cflinuxfs4 |
  | pipenv | 2023.12.1 | cflinuxfs3 |
  | pipenv | 2023.12.1 | cflinuxfs4 |
  | python | 3.8.19 | cflinuxfs3 |
  | python | 3.8.19 | cflinuxfs4 |
  | python | 3.9.19 | cflinuxfs3 |
  | python | 3.9.19 | cflinuxfs4 |
  | python | 3.10.14 | cflinuxfs3 |
  | python | 3.10.14 | cflinuxfs4 |
  | python | 3.11.9 | cflinuxfs3 |
  | python | 3.11.9 | cflinuxfs4 |
  | python | 3.12.3 | cflinuxfs3 |
  | python | 3.12.3 | cflinuxfs4 |
  | setuptools | 69.5.1 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | python | 3.10.x |
  * Uncached buildpack SHA256: 0d4fb765c07620a46968ac6e556762e8c7afe2bd0cc8b4f1da5acaae3004a496
  * Uncached buildpack SHA256: dfa231d89974e279f84e51db50a353042c5853e78d31946185fdac20c6badb70
          
r-offline-buildpack 1.2.11
1.2.11
  * Add r 4.3.3, remove r 4.3.2 for stack(s) cflinuxfs3, cflinuxfs4
  * Update r 4.2.3 dependencies for stack(s) cflinuxfs3, cflinuxfs4:
  * plumber from 1.2.1 to 1.2.2
  * shiny from 1.8.0 to 1.8.1.1
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | r | 3.6.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.3 | cflinuxfs4 | forecast, plumber, rserve, shiny |
  | r | 4.3.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.3.3 | cflinuxfs4 | forecast, plumber, rserve, shiny |
  * Uncached buildpack SHA256: a72c532106fca24a9e8cb4fbef5e4be438985b5b84c0a6fef522ef53f06f5849
  * Uncached buildpack SHA256: 27bd5acf1658c8308787581f5c2ec5e1e569e1adb7c4ddb5f251ae7820f51b1a
          
routing 0.296.0
v0.296.0
  ## Changes
  - Pass availability zone in route-registrar for AZ-aware routing of system components
  - Bump Golang to 1.22
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/acceptance_tests/spec b/jobs/acceptance_tests/spec
  index e1a6a9ae..8122ddaf 100644
  --- a/jobs/acceptance_tests/spec
  +++ b/jobs/acceptance_tests/spec
  @@ -7,7 +7,7 @@ templates:
  bpm.yml.erb: config/bpm.yml
  packages:
  - - golang-1.21-linux
  + - golang-1.22-linux
  - acceptance_tests
  - rtr
  - cf-cli-8-linux
  diff --git a/jobs/smoke_tests/spec b/jobs/smoke_tests/spec
  index b230192b..02edfd9d 100644
  --- a/jobs/smoke_tests/spec
  +++ b/jobs/smoke_tests/spec
  @@ -7,7 +7,7 @@ templates:
  bpm.yml.erb: config/bpm.yml
  packages:
  - - golang-1.21-linux
  + - golang-1.22-linux
  - acceptance_tests
  - cf-cli-8-linux
  ```
  ## ✨  Built with go 1.22.2
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.295.0...v0.296.0
  ## Resources
  - [Download release 0.296.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.296.0).
          
ruby-offline-buildpack 1.10.13
1.10.13
  * Enable rails 7.1 compatibility for buildpack (#925)
  * Add rubygems 3.5.9, remove rubygems 3.5.8 (#932)
  for stack(s) cflinuxfs4, cflinuxfs3 [#187420578]
  * Add rubygems 3.5.8, remove rubygems 3.5.7 (#930)
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add bundler 2.5.9, remove bundler 2.5.8 (#931)
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add bundler 2.5.8, remove bundler 2.5.7 (#929)
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add node 20.12.2, remove node 20.12.1 (#926)
  for stack(s) cflinuxfs3, cflinuxfs4
  * Deprecate Ruby 3.0.X (EOL)
  * Add rubygems 3.5.7, remove rubygems 3.5.6 for stack(s) cflinuxfs4, cflinuxfs3
  * Add bundler 2.5.7, remove bundler 2.5.6 for stack(s) cflinuxfs4, cflinuxfs3
  * Add node 20.12.1, remove node 20.11.1 for stack(s) cflinuxfs4, cflinuxfs3
  | name | version | cf_stacks |
  |-|-|-|
  | bundler | 2.5.9 | cflinuxfs3, cflinuxfs4 |
  | jruby | 9.4.6.0 | cflinuxfs3 |
  | jruby | 9.4.6.0 | cflinuxfs4 |
  | node | 20.12.2 | cflinuxfs3 |
  | node | 20.12.2 | cflinuxfs4 |
  | openjdk1.8-latest | 1.8.0 | cflinuxfs3, cflinuxfs4 |
  | ruby | 3.1.3 | cflinuxfs3 |
  | ruby | 3.1.3 | cflinuxfs4 |
  | ruby | 3.1.4 | cflinuxfs3 |
  | ruby | 3.1.4 | cflinuxfs4 |
  | ruby | 3.2.2 | cflinuxfs3 |
  | ruby | 3.2.2 | cflinuxfs4 |
  | ruby | 3.2.3 | cflinuxfs3 |
  | ruby | 3.2.3 | cflinuxfs4 |
  | ruby | 3.3.0 | cflinuxfs3 |
  | ruby | 3.3.0 | cflinuxfs4 |
  | rubygems | 3.5.9 | cflinuxfs3, cflinuxfs4 |
  | yarn | 1.22.22 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | ruby | 3.2.x |
  * Uncached buildpack SHA256: e40ebcdb8e47d99a7b6c56dd784074d5a9de4c01a75e6d0cd13bb95252c46649
  * Uncached buildpack SHA256: 80e4fe57a72551e42e6077bab42f12e6351799bd4d4d640d2fd3fccf3cbff190
          
web-servers-cnb-buildpack 0.13.0
0.13.0
  Components:
  * [buildpack v0.16.0](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.16.0)
          
0.12.0
  Components:
  * [buildpack v0.15.0](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.15.0)
          
silk 3.46.0
v3.46.0
  ## Changes
  - Bump Golang to 1.22
  ## ✨  Built with go 1.22.2
  **Full Changelog**: https://github.com/cloudfoundry/silk-release/compare/v3.45.0...v3.46.0
  ## Resources
  - [Download release 3.46.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/silk-release?version=3.46.0).
          
smb-volume 3.1.66
v3.1.66
  ## Changes
  * Add final release 3.1.65 [ci skip]
  ## Dependencies
  * **smbbroker:** Updated to v`b2fb57d`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`2335f8e`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
smoke-tests 4.10.0
staticfile-offline-buildpack 1.6.12
1.6.12
  * Updating github-config (#415)
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.24.0 | cflinuxfs3 |
  | nginx | 1.24.0 | cflinuxfs4 |
  | nginx | 1.25.4 | cflinuxfs3 |
  | nginx | 1.25.4 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.25.x |
  * Uncached buildpack SHA256: 658d54e795ab943127061d29cec3d442801d88dac0aba8c4c1ddd93a5ba1eb87
  * Uncached buildpack SHA256: d7dffa3868a7d2ae43e7de366d753f572cf275416045234cdf4fc25ee3607938
          
statsd-injector 1.11.40
syslog 12.2.5
v12.2.5
  ## What's Changed
  * Bump dependencies
  **Full Changelog**: https://github.com/cloudfoundry/syslog-release/compare/v12.2.4...v12.2.5
          
system-metrics-scraper 4.0.8
uaa 77.7.0
v77.7.0
  ## What's Changed
  Fix performance issue recently introduced by reverting the [PR](https://github.com/cloudfoundry/uaa/pull/2704) that caused it.
  ### New UAA
  * Bump to [UAA v77.7.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.7.0)
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.7.0...v77.7.0
          
v77.6.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.6.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.6.0)
  ### Misc
  * [Upgrade Bellsoft JDK to version 17.0.11+10](https://github.com/cloudfoundry/uaa-release/commit/6d6fb64e02976d1d047a7a07e7eb1269eca2804d)
  * [Upgrade Tomcat to version 9.0.88](https://github.com/cloudfoundry/uaa-release/commit/7803ae2ef864f9bb9650741cae0439be52f965dd)
  * Solve issue #850 by @strehle in https://github.com/cloudfoundry/uaa-release/pull/851
  ### Dependency Bumps
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.456 to 0.0.457 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/848
  * Bump mini_portile2 from 2.8.5 to 2.8.6 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/847
  * Bump method_source from 1.0.0 to 1.1.0 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/849
  * Bump github.com/onsi/gomega from 1.32.0 to 1.33.0 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/852
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.457 to 0.0.458 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/853
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.5.0...v77.6.0
          
tanzu-jammy-stack 1.0.1

6.0.1

Release Date: 04/17/2024

Caution This release is susceptible to a known issue where Gorouter returns an incorrect HTTP status code in response to requests with an "HTTP 100 Continue" interim status header. To resolve this issue, see the Broadcom Knowledge Base article Gorouter Returns wrong HTTP response code to client when the request flow uses HTTP 100-continue.

  • [Feature] Add option to enable concurrent read/writes for HTTP/1
  • [Feature Improvement] Remove requirement for manually enabling log cache syslog ingestion when upgrading
  • [Bug Fix] Fix pre-start hang in internal MySQL
  • Bump backup-and-restore-sdk to version 1.19.10
  • Bump bpm to version 1.2.18
  • Bump capi to version 1.177.0
  • Bump diego to version 2.97.0
  • Bump java-native-image-cnb-buildpack to version 0.10.2
  • Bump log-cache to version 3.0.12
  • Bump loggregator to version 107.0.14
  • Bump loggregator-agent to version 8.0.3
  • Bump mapfs to version 1.2.66
  • Bump metric-registrar to version 3.0.3
  • Bump mysql-monitoring to version 10.13.0
  • Bump nats to version 56.18.0
  • Bump nfs-volume to version 7.1.61
  • Bump otel-collector to version 0.4.1
  • Bump push-apps-manager-release to version 677.0.42
  • Bump push-usage-service-release to version 674.0.96
  • Bump pxc to version 1.0.26
  • Bump web-servers-cnb-buildpack to version 0.11.1
  • Bump smb-volume to version 3.1.64
  • Bump smoke-tests to version 4.10.0
  • Bump statsd-injector to version 1.11.40
  • Bump syslog to version 12.2.4
  • Bump system-metrics-scraper to version 4.0.8
  • Bump uaa to version 77.5.0
Component Version Release Notes
ubuntu-jammy stemcell 1.423
backup-and-restore-sdk 1.19.10
v1.19.10
  ## Changes
  * Golang: Updated to v1.22.2. (#1621)
  ## Dependencies
  * **net:** Updated to v0.24.0.
For more information, see [net](https://github.com/golang/net). * **oauth2:** Updated to v0.19.0.
For more information, see [oauth2](https://github.com/golang/oauth2).
v1.19.9
  ## Dependencies
  * **storage:** Updated to v1.40.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **bosh-backup-and-restore:** Updated to v1.9.62.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **mysql:** Updated to v1.8.1.
For more information, see [mysql](https://github.com/go-sql-driver/mysql). * **v2:** Updated to v2.17.1.
For more information, see [v2](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.32.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **api:** Updated to v0.172.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
binary-offline-buildpack 1.1.10
bosh-dns-aliases 0.0.4
bpm 1.2.18
capi 1.177.0
cf-autoscaling 250.2.2
cf-cli 1.60.0
cf-networking 3.45.0
cflinuxfs3 0.387.0
cflinuxfs4 1.82.0
count-cores-indicator 2.0.0
credhub 2.12.66
diego 2.97.0
v2.97.0
  ## Changes
  - Adds support for comma-delimited destinations in ASGs
  - See: https://github.com/cloudfoundry/executor/pull/96 and https://github.com/cloudfoundry/bbs/pull/94
  - Bump bosh package blobs
  - Bumps `jq` to `1.7.1`
  - Bumps `tar`
  - Bump go.mod dependencies
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/diego-release/compare/v2.96.0...v2.97.0
  ## Resources
  - [Download release 2.97.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/diego-release?version=2.97.0).
          
dotnet-core-offline-buildpack 2.4.26
garden-runc 1.51.0
go-offline-buildpack 1.10.17
java-offline-buildpack 4.67.1
java-native-image-cnb-buildpack 0.10.2
0.10.2
  Components:
  * [buildpack v0.12.2](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.2)
          
0.10.1
  Components:
  * [buildpack v0.12.1](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.1)
          
log-cache 3.0.12
v3.0.12
  ## What's Changed
  * Bump dependencies
  * Bump packaged Golang to go1.21.9
  **Full Changelog**: https://github.com/cloudfoundry/log-cache-release/compare/v3.0.11...v3.0.12
          
loggregator 107.0.14
v107.0.14
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-release/compare/v107.0.13...v107.0.14
          
loggregator-agent 8.0.3
v8.0.3
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-agent-release/compare/v8.0.2...v8.0.3
          
mapfs 1.2.66
v1.2.66
  ## Dependencies
  * **mapfs:** Updated to v`b0b6bfa`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
v1.2.65
  ## Changes
  * Golang: Updated to v1.22.2. (#241)
  ## Dependencies
  * **mapfs:** Updated to v`a80b833`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
v1.2.64
  ## Dependencies
  * **v2:** Updated to v2.17.1.
For more information, see [v2](https://github.com/onsi/ginkgo). * **mapfs:** Updated to v`cd8e7e6`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
metric-registrar 3.0.3
v3.0.3
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/pivotal-cf/metric-registrar-release/compare/v3.0.2...v3.0.3
          
mysql-monitoring 10.13.0
v10.13.0
  - Updates golang to 1.22.2
  - Updates dependencies
          
nats 56.18.0
v56.18.0
  ## Changes
  - Bump golang package dependencies
  ## ✨  Built with go 1.21.9
  **Full Changelog**: https://github.com/cloudfoundry/nats-release/compare/v56.17.0...v56.18.0
  ## Resources
  - [Download release 56.18.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/nats-release?version=56.18.0).
          
v56.17.0
  ## Changes
  - Bump dependencies
  ## ✨  Built with go 1.21.9
  **Full Changelog**: https://github.com/cloudfoundry/nats-release/compare/v56.16.0...v56.17.0
  ## Resources
  - [Download release 56.17.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/nats-release?version=56.17.0).
          
v56.16.0
  ## Changes
  * Add staticcheck config by @geofffranks in https://github.com/cloudfoundry/nats-release/pull/75
  * Bump dependancies
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/nats-release/compare/v56.15.0...v56.16.0
  ## Resources
  - [Download release 56.16.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/nats-release?version=56.16.0).
          
nfs-volume 7.1.61
v7.1.61
  ## Changes
  * Golang: Updated to v1.22.2 (#860)
  * Bump openssl- from 3.2.1 to 3.3.0 (#871)
  ## Dependencies
  * **nfsbroker:** Updated to v`1a70719`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`35b8c6f`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
v7.1.60
  ## Dependencies
  * **nfsbroker:** Updated to v`8aec99d`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`fb67285`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
nginx-offline-buildpack 1.2.12
nodejs-offline-buildpack 1.8.23
notifications 69.0.0
notifications-ui 47.0.0
otel-collector 0.4.1
v0.4.1
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/cloudfoundry/otel-collector-release/compare/v0.4.0...v0.4.1
          
php-offline-buildpack 4.6.17
push-apps-manager-release 677.0.42
677.0.42
  * improve performance of the search-server in making capi queries
  * New autoscaler rule editing workflow
          
push-offline-docs-release 6.0.169
push-usage-service-release 674.0.96
v674.0.96
  ## Dependencies
  * **app-usage-service:** Updated to v`f2c8a3c`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.95
  ## Dependencies
  * **app-usage-service:** Updated to v`193129e`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
pxc 1.0.26
v1.0.26
  **Dependency bumps**
  - Updates golang to 1.22.2
  - Bumps Percona XtraDB Cluster to v8.0.36-28
  **Bugs fixed**
  - `engine_config.binlog.enabled = false` now correctly disables binary logs for MySQL 8.0
          
python-offline-buildpack 1.8.22
r-offline-buildpack 1.2.10
routing 0.295.0
ruby-offline-buildpack 1.10.11
web-servers-cnb-buildpack 0.11.1
0.11.1
  Components:
  * [buildpack v0.14.1](https://github.com/pivotal-cf/web-servers-cnb-buildpack/releases/tag/v0.14.1)
          
silk 3.45.0
smb-volume 3.1.64
v3.1.64
  ## Dependencies
  * **smbbroker:** Updated to v`02f340b`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`fb88dd0`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
v3.1.63
  ## Changes
  * Golang: Updated to v1.22.2 (#381)
  ## Dependencies
  * **smbbroker:** Updated to v`b380e77`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`0c36c10`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
v3.1.62
  ## Dependencies
  * **v2:** Updated to v2.17.1.
For more information, see [v2](https://github.com/onsi/ginkgo). * **smbbroker:** Updated to v`f176916`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`5ee16dc`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
smoke-tests 4.10.0
4.10.0
  Create bosh final release 4.10.0
          
4.9.5
  Create bosh final release 4.9.5
  ## What's Changed
  * Upgrade Golang to 1.22 by @tas-operability-bot in https://github.com/pivotal/smoke-tests/pull/138
  **Full Changelog**: https://github.com/pivotal/smoke-tests/compare/4.9.5...4.9.5
          
staticfile-offline-buildpack 1.6.11
statsd-injector 1.11.40
v1.11.40
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/cloudfoundry/statsd-injector-release/compare/v1.11.39...v1.11.40
          
syslog 12.2.4
v12.2.4
  ## What's Changed
  * Bump dependencies
  * Bump packaged Golang to go1.21.9
  **Full Changelog**: https://github.com/cloudfoundry/syslog-release/compare/v12.2.3...v12.2.4
          
system-metrics-scraper 4.0.8
v4.0.8
  ## What's Changed
  * Bump dependencies
  * Bump to [go1.21.9](https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M/m/khALNYGdAAAJ)
  **Full Changelog**: https://github.com/cloudfoundry/system-metrics-scraper-release/compare/v4.0.7...v4.0.8
          
uaa 77.5.0
v77.5.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.5.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.5.0)
  * Spring Framework update from 5.3.33 to 5.3.34 by @dependabot in https://github.com/cloudfoundry/uaa/pull/2822, solves https://spring.io/security/cve-2024-22262
  ### Misc
  * Improve doc on proxy-related spec fields by @peterhaochen47 in https://github.com/cloudfoundry/uaa-release/pull/835
  ### Dependency Bumps
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.453 to 0.0.454 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/836
  * Bump rake from 13.1.0 to 13.2.0 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/837
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.454 to 0.0.455 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/838
  * Bump rake from 13.2.0 to 13.2.1 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/839
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.455 to 0.0.456 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/840
  * Bump nokogiri from 1.16.3 to 1.16.4 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/843
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.4.0...v77.5.0
          
tanzu-jammy-stack 1.0.1

6.0.0

Release Date: 04/09/2024

Caution This release is susceptible to a known issue where Gorouter returns an incorrect HTTP status code in response to requests with an "HTTP 100 Continue" interim status header. To resolve this issue, see the Broadcom Knowledge Base article Gorouter Returns wrong HTTP response code to client when the request flow uses HTTP 100-continue.

  • [Breaking Change] Remove Developer Portal from TAS
  • [Breaking Change] Change default internal route service port to 7070
  • [Breaking Change] No longer install cflinuxfs3 by default
  • [Breaking Change] Replace cpu entitlement counters with cpu_entitlement percentage gauge
  • [Breaking Change] Remove (deprecated) Metrics Agent and Metrics Discovery Release
  • [Breaking Change]: Move and adapt UAA password complexity policies
  • [Breaking Change]: Remove ability of UAA to serve as a native SAML identity provider (operators can continue to configure UAA to connect to an external SAML identity provider, using the Authentication and Enterprise SSO pane of the TAS for VMs tile configuration)
  • [Breaking Change] Gorouter’s deprecated /varz and /healthz endpoints on port 8080 have been removed
  • [Breaking Change] Absolute CPU Entitlement metrics no longer available. See details.
  • [Breaking Change] App Autoscaler introduces incompatibility with load balancers that reject POST requests without a Content-Length header.
  • [Feature] New form option and migration to opt-into allowing Small Footprint TAS to ‘full’ TAS upgrade.
  • [Feature] Add support for NTLM authentication in Gorouter
  • [Feature] CAPI Enable legacy MD5 buildpack paths
  • [Feature] Adds Diego support for Docker workloads using OCI images
  • [Feature]: Gorouters can be configured to prefer routing to app instances in the same AZ as the router
  • [Feature] Operators can now turn off non-TLS load balancer health check endpoints for Gorouter and TCP Router via the “Enable HTTP load balancer health checks” properties in the “Networking” tab
  • [Feature] dopplers can be scaled to zero
  • [Feature] Gorouter now supports LB Health Checks over TLS on port 8443
  • [Feature] Operators can set the property “Maximum number of network policies per app source” in the “App Developer Controls”
  • [Feature] CF API now includes routability status from App Readiness checks in the /processes/:id/stats endpoint.
  • [Feature] Expose a custom environment identifier on component logs forwarded via syslog
  • [Feature] Advanced Configuration: Do not deploy Diego cells
  • [Feature Improvement] Make database “encrypt key” setting more intentional, to avoid password-manager autofilling of the field
  • [Feature Improvement] Reintroduce global log rate limit
  • [Feature Improvement] OTel Collector marks OTLP Sums as monotonic if they originate from a Loggregator counter
  • [Feature Improvement] Stop logging out of external OIDC provider when logging out of TAS
  • [Feature Improvement] Operators can select which protocols Routing API will accept via the “Routing API Endpoint Protocol” property in the Networking tab. This property defaults to the backwards compatible option “both” that works with all tile integrations.
  • [Feature Improvement] Allow to configure w3c tracing headers in router
  • [Feature Improvement] [Cloud Controller] Add option to configure Instance File Descriptor Limit
  • [Feature Improvement] Apps using readiness health checks will now see audit.app.process.notready and audit.app.process.ready events reported to cf events
  • [Feature Improvement] Garden now emits an UnkillableContainers metric to help identify cells that will be unable to redeploy successfully without operator intervention
  • [Feature Improvement] Adds opt-in support for NTLM + other challenge-response based authentication using Authorization: Negotiate flows by automatically enabling sticky sessions for those requests.
  • [Feature Improvement] Adds support for Partitioned cookies to allow for sticky sessions in embedded contexts.
Component Version Release Notes
ubuntu-jammy stemcell 1.406
backup-and-restore-sdk 1.19.8
v1.19.8
  ## Dependencies
  * **v2:** Updated to v2.17.0.
For more information, see [v2](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.32.0.
For more information, see [gomega](https://github.com/onsi/gomega).
binary-offline-buildpack 1.1.10
bosh-dns-aliases 0.0.4
bpm 1.2.17
capi 1.175.0
cf-autoscaling 250.2.2
v250.2.2
  ## What's Changed
  * Bump dependencies
  **Full Changelog**: https://github.com/pivotal-cf/cf-autoscaling-release/compare/v250.2.2...v250.2.2
          
cf-cli 1.60.0
cf-networking 3.45.0
v3.45.0
  ## Changes
  - Go dependency bumps
  - Added config for staticcheck
  - Removed references to consul from documentation
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/policy-server-asg-syncer/spec b/jobs/policy-server-asg-syncer/spec
  index 748c39a7..4c6c9a4e 100644
  --- a/jobs/policy-server-asg-syncer/spec
  +++ b/jobs/policy-server-asg-syncer/spec
  @@ -109,7 +109,7 @@ properties:
  description: "Trusted CA for UAA server."
  uaa_hostname:
  -    description: "Host name for the UAA server.  E.g. the service advertised via Consul DNS.  Must match common name in the UAA server cert. Must be listed in `uaa.zones.internal.hostnames`."
  +    description: "Host name for the UAA server.  E.g. the service advertised via Bosh DNS.  Must match common name in the UAA server cert. Must be listed in `uaa.zones.internal.hostnames`."
  default: uaa.service.cf.internal
  uaa_port:
  diff --git a/jobs/policy-server-internal/spec b/jobs/policy-server-internal/spec
  index 7095775d..029e723f 100644
  --- a/jobs/policy-server-internal/spec
  +++ b/jobs/policy-server-internal/spec
  @@ -41,7 +41,7 @@ properties:
  default: 31946
  health_check_timeout_seconds:
  -    description: "Health check timeout for Consul DNS."
  +    description: "Health check timeout"
  default: 5
  internal_listen_port:
  @@ -52,7 +52,7 @@ properties:
  description: "Trusted CA certificate that was used to sign the vxlan policy agent's client cert and key."
  server_cert:
  -    description: "Server certificate for TLS. Must have common name that matches the Consul DNS name of the policy server, eg `policy-server.service.cf.internal`."
  +    description: "Server certificate for TLS. Must have common name that matches the Bosh DNS name of the policy server, eg `policy-server.service.cf.internal`."
  server_key:
  description: "Server key for TLS."
  diff --git a/jobs/policy-server/spec b/jobs/policy-server/spec
  index 0d9f5157..8e2ccfa8 100644
  --- a/jobs/policy-server/spec
  +++ b/jobs/policy-server/spec
  @@ -101,7 +101,7 @@ properties:
  description: "Trusted CA for UAA server."
  uaa_hostname:
  -    description: "Host name for the UAA server.  E.g. the service advertised via Consul DNS.  Must match common name in the UAA server cert. Must be listed in `uaa.zones.internal.hostnames`."
  +    description: "Host name for the UAA server.  E.g. the service advertised via Bosh DNS.  Must match common name in the UAA server cert. Must be listed in `uaa.zones.internal.hostnames`."
  default: uaa.service.cf.internal
  uaa_port:
  ```
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/cf-networking-release/compare/v3.44.0...v3.45.0
  ## Resources
  - [Download release 3.45.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/cf-networking-release?version=3.45.0).
          
cflinuxfs3 0.387.0
cflinuxfs4 1.82.0
count-cores-indicator 2.0.0
credhub 2.12.66
diego 2.96.0
v2.96.0
  ## Changes
  - Bump to golang 1.21.8
  - Golang package dependency bumps
  - Includes moving from docker v20 to docker v26
  - Includes moving from pgx v3 to pgx v5
  - Remove references to Consul from boshrelease + documentation
  - Many fixes to remove deprecated code and otherwise fix linter violations.
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/diego-release/compare/v2.95.0...v2.96.0
  ## Resources
  - [Download release 2.96.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/diego-release?version=2.96.0).
          
dotnet-core-offline-buildpack 2.4.26
garden-runc 1.51.0
v1.51.0
  ## Changes
  - Bumped Golang to 1.21.8
  - Golang package dependency bumps
  - Many updates to get codebase passing the staticcheck linker
  - Updated garden-integration-tests to be a little less flakey
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/garden-runc-release/compare/v1.50.0...v1.51.0
  ## Resources
  - [Download release 1.51.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/garden-runc-release?version=1.51.0).
          
go-offline-buildpack 1.10.17
java-offline-buildpack 4.67.1
java-native-image-cnb-buildpack 0.10.0
0.10.0
  Components:
  * [buildpack v0.12.0](https://github.com/pivotal-cf/java-native-image-cnb-buildpack/releases/tag/v0.12.0)
          
log-cache 3.0.11
loggregator 107.0.13
loggregator-agent 8.0.2
mapfs 1.2.63
v1.2.63
  ## Dependencies
  * **v2:** Updated to v2.17.0.
For more information, see [v2](https://github.com/onsi/ginkgo). * **mapfs:** Updated to v`5381efc`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
metric-registrar 3.0.2
mysql-monitoring 10.12.0
v10.12.0
  - Updates golang to 1.22.1
  - Updates packages and dependencies
  - #186647418 - mysql-diag should report cluster status and disk metrics more concisely
          
nats 56.15.0
nfs-volume 7.1.59
v7.1.59
  ## Changes
  * Bump util-linux from 2.39.3 to 2.40 (#853)
  ## Dependencies
  * **nfsbroker:** Updated to v`7bc7bb0`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`15c152b`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
v7.1.58
  ## Dependencies
  * **nfsbroker:** Updated to v`e850d95`.
For more information, see [nfsbroker](https://github.com/cloudfoundry/nfsbroker). * **nfsv3driver:** Updated to v`8af81b5`.
For more information, see [nfsv3driver](https://github.com/cloudfoundry/nfsv3driver).
nginx-offline-buildpack 1.2.12
nodejs-offline-buildpack 1.8.23
notifications 69.0.0
notifications-ui 47.0.0
otel-collector 0.4.0
php-offline-buildpack 4.6.17
push-apps-manager-release 677.0.41
push-offline-docs-release 6.0.169
push-usage-service-release 674.0.94
v674.0.94
  ## Dependencies
  * **app-usage-service:** Updated to v`9af4b6b`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
v674.0.93
  ## Changes
  ## Dependencies
  * **app-usage-service:** Updated to v`4c2a77a`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service).
pxc 1.0.25
v1.0.25
  - Updates golang to 1.22.1
  - Modifies bootstrap errand behavior; bootstrap now only executes on a single pxc node, removing the need for the user to designate the specific node for execution.
  - Introduces property `engine_config.log_slow_verbosity` increasing the information reported in slow query logs
  - Updates packages and dependencies
          
python-offline-buildpack 1.8.22
r-offline-buildpack 1.2.10
routing 0.295.0
v0.295.0
  ## Changes
  - Resolves #401 by reverting the removal of the deprecated BuildNameToCertificate() call
  - Bumps to golang 1.21.9 + golang.org/x/net 0.23.0 to patch CVE-2023-45288
  ## ✨  Built with go 1.21.9
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.294.0...v0.295.0
  ## Resources
  - [Download release 0.295.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.295.0).
          
v0.294.0
  ⚠️ This release contains a known issue: gorouter will no longer present the most specific certificate match but rather the first certificate that matches. See https://github.com/cloudfoundry/routing-release/issues/401 for details. Upgrading to routing-release 0.295.0 is advised. ⚠️
  ## Changes
  - [Bump haproxy to 2.8.7](https://github.com/cloudfoundry/routing-release/commit/13b39eb5185656c3557c1ab15b5b13752b2ff6d8)
  - [update templates to not refer to consul](https://github.com/cloudfoundry/routing-release/commit/8216c056b1463bd1d7bf636a749568f70cb924d2)
  - [Default the routing_api.enabled_api_endpoints to mtls](https://github.com/cloudfoundry/routing-release/commit/2e96c2c932f7f945c3c7c15a768d0affc80de446)
  - [Update template test for mTLS routing api default](https://github.com/cloudfoundry/routing-release/commit/469d9e0a4eb0ac6015695ba27c6da80576b29801)
  - [Upgrade cf-cli-8-linux](https://github.com/cloudfoundry/routing-release/commit/b19a25052ed7982c83524ac87d22ed2f316201a2)
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/routing-api/spec b/jobs/routing-api/spec
  index 1d7efe3c..2e5cd361 100644
  --- a/jobs/routing-api/spec
  +++ b/jobs/routing-api/spec
  @@ -95,7 +95,7 @@ properties:
  routing_api.enabled_api_endpoints:
  description: "Protocols that the routing api will listen on. Possible values: 'mtls', or 'both' (mTLS + HTTP)"
  -    default: "both"
  +    default: "mtls"
  routing_api.mtls_port:
  description: "Port on which Routing API is running, listening with mTLS."
  default: 3001
  ```
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.293.0...v0.294.0
  ## Resources
  - [Download release 0.294.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/routing-release?version=0.294.0).
          
ruby-offline-buildpack 1.10.11
web-servers-cnb-buildpack 0.11.0
silk 3.45.0
v3.45.0
  ## Changes
  - Fixes to stop using deprecated code in tests (`net.Error.Temporary()`)
  - Remove consul references from documentation
  - Fix issues bumping the code.cloudfoundry.org/executor package
  - Go package bumps
  ## Bosh Job Spec changes:
  ```diff
  diff --git a/jobs/silk-controller/spec b/jobs/silk-controller/spec
  index a0966a01..cc7529a8 100644
  --- a/jobs/silk-controller/spec
  +++ b/jobs/silk-controller/spec
  @@ -45,11 +45,11 @@ properties:
  default: 46455
  health_check_port:
  -    description: "Health check port for silk controller. Used by the Consul DNS health check."
  +    description: "Health check port for silk controller. Used by the Bosh DNS health check."
  default: 19683
  health_check_timeout_seconds:
  -    description: "Health check timeout for Consul DNS."
  +    description: "Health check timeout"
  default: 5
  listen_ip:
  @@ -64,7 +64,7 @@ properties:
  description: "Trusted CA certificate that was used to sign the silk daemon client cert and key."
  server_cert:
  -    description: "Server certificate for TLS. Must have common name that matches the Consul DNS name of the silk controller, eg silk-controller.service.cf.internal"
  +    description: "Server certificate for TLS. Must have common name that matches the Bosh DNS name of the silk controller, eg silk-controller.service.cf.internal"
  server_key:
  description: "Server key for TLS."
  diff --git a/jobs/silk-daemon/spec b/jobs/silk-daemon/spec
  index 7a1525b3..e3786357 100644
  --- a/jobs/silk-daemon/spec
  +++ b/jobs/silk-daemon/spec
  @@ -70,7 +70,7 @@ properties:
  default: 3457
  silk_controller.hostname:
  -    description: "Host name for the silk controller.  E.g. the service advertised via Consul DNS.  Must match common name in the silk_controller.server_cert"
  +    description: "Host name for the silk controller.  E.g. the service advertised via Bosh DNS.  Must match common name in the silk_controller.server_cert"
  default: "silk-controller.service.cf.internal"
  silk_controller.listen_port:
  diff --git a/jobs/vxlan-policy-agent/spec b/jobs/vxlan-policy-agent/spec
  index 3118022b..802f04bb 100644
  --- a/jobs/vxlan-policy-agent/spec
  +++ b/jobs/vxlan-policy-agent/spec
  @@ -41,7 +41,7 @@ properties:
  default: false
  policy_server.hostname:
  -    description: "Host name for the policy server.  E.g. the service advertised via Consul DNS.  Must match common name in the policy_server.server_cert"
  +    description: "Host name for the policy server.  E.g. the service advertised via Bosh DNS.  Must match common name in the policy_server.server_cert"
  default: "policy-server.service.cf.internal"
  policy_server.internal_listen_port:
  ```
  ## ✨  Built with go 1.21.8
  **Full Changelog**: https://github.com/cloudfoundry/silk-release/compare/v3.44.0...v3.45.0
  ## Resources
  - [Download release 3.45.0 from bosh.io](https://bosh.io/releases/github.com/cloudfoundry/silk-release?version=3.45.0).
          
smb-volume 3.1.61
v3.1.61
  ## Dependencies
  * **v2:** Updated to v2.17.0.
For more information, see [v2](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.32.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **smbbroker:** Updated to v`bab4864`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`7f3242d`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
smoke-tests 4.8.5
staticfile-offline-buildpack 1.6.11
statsd-injector 1.11.39
syslog 12.2.3
system-metrics-scraper 4.0.7
uaa 77.4.0
v77.4.0
  ## What's Changed
  ### New UAA
  * Bump to [UAA v77.4.0](https://github.com/cloudfoundry/uaa/releases/tag/v77.4.0)
  ### Dependency Bumps
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.452 to 0.0.453 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/834
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v77.3.0...v77.4.0
          
tanzu-jammy-stack 1.0.1

New features in VMware Tanzu Application Service for VMs v6.0

These are the new features for VMware Tanzu Application Service for VMs v6.0.

Updates to GenAI for Tanzu Application Service (beta)

  • Improved vSphere Support: Platform engineers can now deploy large language models on larger GPUs, such as the Nvidia A100, on VMware vSphere-backed deployments. This allows for larger models to be deployed and for improved inferencing times

  • Azure Support: GenAI for Tanzu Application Service, has been validated to work with Azure as a support IaaS destination in addition to AWS, GCP, and vSphere, providing customers with more choices across cloud providers

  • Multi-Model Support: GenAI for Tanzu Application Service now supports multiple worker models running simultaneously, which expands the types of applications that can use this service. This enables platform engineers to deploy multiple types of LLMs optimized for different use cases. For instance, a platform engineer can deploy a model optimized for chatbots and models optimized for code completion

  • Improved inferencing speeds with vLLM support: In addition to the fastchat deployment option, platform engineers can serve LLMs via vLLM, optimized for inference throughput. This improves overall model response times and preparation for running models in production

Improved Autoscaling based on Application CPU Usage

  • Managing CPU-based autoscaling rules for their apps with less tuning and fewer errors:App Autoscaler has been updated to use CPU entitlement metrics, which greatly improves the overall autoscaling of applications based on CPU usage. App Autoscaler provides a new rule that monitors an app’s average usage of its CPU entitlement and scales the app up or down accordingly.

    • Unlike with the previous CPU processor utilization rule, the scaling thresholds for this rule do not need to change when developers adjust the memory allocation for the app or when the platform engineers adjust the size of the underlying Diego cell container-host VMs. When configured through the improved autoscaling UI in Apps Manager, developers get sensible default values of 30% and 80% for the low and high scaling thresholds, which should be a good starting point for most apps. Developers should have an easier and more intuitive experience configuring this new autoscaling rule for their apps.

Improved Platform Footprint and Enhanced Operations

  • Small footprint now supports an in-place upgrade to a full Tanzu Application Service Installation: Small footprint for Tanzu Application Service now supports customers that want to upgrade to a “full” Tanzu Application Service installation. Small footprint Tanzu Application Service was generally considered to be used for proof of concept or sandbox environments, but this upgrade path will allow platform engineers to migrate to full installation without having to reinstall the platform. This should allow organizations to start with an overall smaller footprint (~4-6 virtual machines) at a lower cost and gives them the option to grow their platform footprint in their own time. The small footprint for Tanzu Application Service is also fully supported for production use and can be utilized in locations with limited infrastructure footprint, such as an edge location.

  • Availability Zone Aware routing for Gorouter: The Gorouter has a new, opt-in feature to prefer local routing within an Availability Zone. When this option is enabled, the Gorouters will attempt to route all application traffic to application instances running on Diego cells within their local availability zone. This will improve the overall network traffic path and reduce overall round-trip latency to improve application performance. Gorouters will prefer not to send traffic to traffic to application instances running on other Availability Zones, but will in the event that no application instances are running in their zone.

  • Scale your dopplers and traffic controllers all the way to 0: For Tanzu Application Service installations using aggregate syslog drains to send app logs and metrics via the syslog protocol, platform engineers can now completely turn off the doppler and traffic controller VMs at the core of the loggregator subsystem. This optimization represents another step forward in the transition towards the new, more efficient “shared-nothing” observability architecture that is incrementally replacing earlier generations of observability subsystems, and helps platform engineers further reduce their infrastructure costs. Note: To completely scale down to 0, platform engineers must stop the use of firehose nozzles and other tiles that utilize nozzles, such as Healthwatch and App Metrics.

  • Human-readable foundation names in the platform log stream: Platform engineers can configure a human-readable foundation tag in their outgoing platform log stream. This will improve the overall experience when sending multiple foundation log streams to a log aggregation platform, as platform engineers will be able to identify what foundation is sending logs, ultimately avoiding mistakes and eliminating the need to re-work.

  • Certificate Rotation Dashboard for internal certificate management: Tanzu Operations Manager has been updated to include a Certificate Rotation Dashboard to continuously improve the internal platform certification rotation and management process. The dashboard allows platform engineers to track certification rotation status to easily understand the next step for the certificate rotation process within their Tanzu Application Service environments.

  • Configurable App File descriptor limits: Tanzu Application Service allows platform engineers to change the default Linux file descriptor limits for applications running on the platform. This feature enables applications to move to the platform that requires larger than normal numbers of Unix file descriptors. This allows for more application types to be migrated onto the Tanzu Application Service platform.

Enhancements to Enable Improved Platform Security Postures

  • Early access to FIPS-compliant stemcells: Tanzu Application Service now supports the use of FIPS-compliant Jammy stemcells through early access to federal customers for their TAS foundations. Please reach out to the Tanzu team if interested in testing out this feature.

  • Manage local User Account and Authentication (UAA) Password policies when external identity providers are configured: Local UAA password policies can be set and maintained in conjunction with an external identity provider. This change enables better security posture for platform engineers who are managing local platform accounts.

Tanzu Application Service Ecosystem Optimizations

Enhancements to the AWS Cloud Service Broker

  • Support for the AWS Simple Queue Service (SQS): Platform engineers can now add production-ready plans for the AWS SQS service to their Tanzu Application Service marketplace offerings. Developers can easily deploy and use the AWS SQS service to expand upon their application use cases just like any other service supported by the Cloud Service Broker.

  • Support for AWS GovCloud Regions: The Cloud Service Broker for AWS is now supported for use in AWS GovCloud Regions. Customers who wish to use these regions can now begin to migrate off the legacy AWS service broker and take advantage of all the new features and functionality of the Cloud Service Broker, allowing them with more options across cloud providers.

Reduced logging and metric infrastructure requirements

If you do not use the legacy V1 and V2 Loggregator Firehoses, you now can scale Doppler and Traffic Controller VMs down to zero. This can significantly reduce costs or free up resources for running additional workloads on the platform. You might not be able to scale down to zero if you use integrations or other features that depend on the Firehose, such as log and metric nozzles or Metric Registrar.

Reintroduction of global log rate limit

TAS for VMs v3.0 introduced granular app log rate limits for fine-grained control over application log rates.

TAS for VMs v4.0 removed the older global log rate limit feature App log rate limit (deprecated) under App Containers. This was problematic for operators who were performing a jump upgrade to TAS for VMs v4.0 (skipping v3.0), as logs would not be rate limited until application-based log rate limits were applied.

TAS for VMs v6.0 restores the global log rate limit, so that operators can perform upgrades while retaining log rate limits. Operators must configure the same setting separately for both Isolation Segment and TAS for VMs [Windows].

If you had previously set a global log rate limit, this limit is re-applied following the upgrade to VMware Tanzu Application Service for VMs v6.0.

App Autoscaler supports scaling on CPU entitlement

VMware Tanzu Application Service for VMs v6.0 introduces support for autoscaling on CPU entitlement. This improves App Autoscaler support for scaling on CPU. Previously, App Autoscaler CPU rules could be brittle due to their dependency on the underlying Diego Cell configuration. With this feature, apps can autoscale on the CPU entitlement available, calculated appropriately based on the memory allocated.

Breaking changes

These are the breaking changes for VMware Tanzu Application Service for VMs v6.0.

Default stacks no longer include cflinuxfs3

New installations of TAS for VMs v6.0 no longer default to include cflinuxfs3 in the list of stacks. Operators can continue to Configure Cloud Controller to install cflinuxfs3, if desired.

Upgrading an existing foundation to TAS for VMs v6.0 does not remove cflinuxfs3. Apps running on cflinuxfs3 continue to run as normal, and developers can continue to push applications using the cflinuxfs3 stack. However, if operators remove cflinuxfs3 from an existing foundation, then cflinuxfs3 is no longer installed when deploying TAS for VMs, unless the default stack list is configured to include cflinuxfs3 (see above).

Support for the cflinuxfs3 stack is deprecated and will be removed in a future release of TAS for VMs. If you have not already, migrate all applications off of cflinuxfs3 and remove the stack from your foundations.

Absolute CPU Entitlement metrics no longer available

The absolute_entitlement and absolute_usage metrics are no longer emitted for each container. They are replaced by the cpu_entitlement metric. If you have any dashboards that reference the absolute_entitlement and absolute_usage metrics, update the dashboards to use the new metric.

Due to the removal of these metrics, the experimental CPU Entitlement Plug-in no longer functions. If you use this plug-in to view CPU entitlement usage, you can instead view the cpu_entitlement metric, for example using the Log Cache cf CLI plug-in.

Breaking changes if you are starting from TAS 5.0

If you are upgrading from TAS 5.0 to TAS 6.0, review the following breaking changes to ensure a smooth upgrade.

App Autoscaler requires JRE 17

If you have customized the Java offline buildback to use a JRE other than OpenJDK and the default JRE version in the buildpack or defined by an environment variable group is not JRE 17, then you might see errors when deploying the App Autoscaler API. For example:

ERR     java.lang.UnsupportedClassVersionError: org/springframework/boot/loader/JarLauncher has been compiled by a more recent version of the Java Runtime (class file version 61.0), this version of the Java Runtime only recognizes class file versions up to 55.0

Ensure that JRE 17 us available in your Java Offline Buildpack. If the Java Runtime you are using is the Oracle JRE, then upgrade to a version of TAS that ships with cf-autoscaling version 249.2.6. As of that version of cf-autoscaling, the autoscale-api application configures JBP_CONFIG_ORACLE_JRE to self-select Oracle JRE 17. Alternatively, you can temporarily override your buildpack defaults to run the deploy-autoscaler errand:

  1. Set an environment variable group that changes the default version of Java to 17 across all applications in a foundation. For example:

    $ cf set-staging-environment-variable-group '{"JBP_DEFAULT_OPEN_JDK_JRE":"{jre: {version: 17.+ }}"}'
    
  2. Generate the correct parameters for your java runtime by viewing the options available in the java buildpack. Also be careful to merge your new parameters with any parameters already set in the environment variable group.

  3. Trigger the deploy-autoscaler errand and see it succeed.
  4. Remove the parameters that you added to the environment variable group and re-set the remaining parameters to undo your changes.

Spring AutoReconfiguration library supplied by the buildpack is deprecated

The Spring AutoReconfiguration library supplied by the buildpack is deprecated, as well as the Spring Cloud Connectors project. It is recommended that you use the java-cfenv library instead for accessing bound services in Spring Boot apps. To make it easier to migrate to this library, the Java Buildpack will now install the Java CfEnv library for Spring Boot 3 apps only, and the Spring AutoReconfiguration library will no longer be installed for these apps.

Apps may be affected if they have already been migrated to Spring Boot 3 and are relying on Spring Autoreconfiguration; that is:

  1. You have not set the variable JBP_CONFIG_SPRING_AUTO_RECONFIGURATION '{enabled: false}'.
  2. The app is bound to a service of one of these types:
    • Cassandra
    • Relational Database
    • RabbitMQ
    • Mongo DB
    • Redis
    • SMTP
  3. The startup logs for the app will show a log entry such as dataSource bean of type with javax.sql.DataSource reconfigured with mysql bean.

Apps using Spring Boot 2.x will continue to receive the Spring AutoReconfiguration library and should not be affected by this change.

In most cases, the Java CfEnv library should replace the functionality of the Spring Autoreconfiguration library for Spring Boot 3 apps. The Java CfEnv library examines bound services of the above types (except SMTP) and sets well-known Spring Boot properties so that Spring Boot’s Autoconfiguration can kick-in.

The UAA SAML IdP functionality has been removed

UAA’s ability to act as a SAML identity provider has been removed in preparation for replacing its dependency on Spring SAML Extension with Spring Security SAML 2 support. You can no longer use UAA as your SAML IdP.

Spring SAML Extension has reached the end of support. UAA is replacing it with Spring Security SAML 2 support to keep the SAML feature compatible with latest Spring versions. Since Spring Security does not provide Identity Provider support, UAA is dropping its SAML IdP functionality.

Note that UAA’s ability to integrate with an upstream SAML identity provider as a SAML service provider is unaffected by this change.

If you use UAA as a SAML IdP, you will be affected. If you are unsure, get the list of registered SAML service providers from UAA’s /saml/service-providers endpoint. (See https://docs.cloudfoundry.org/api/uaa/version/76.31.0/#list.) If you get a non-empty list in response, then you are using UAA as a SAML IdP.

Note that /saml/service-providers endpoint has been also removed from the latest UAA version as part of the SAML IdP functionality removal.

UAA now supports acting as an identity provider over OIDC. If the system that acts as a SAML service provider can also integrate with OIDC identity providers, switch to use that protocol instead.

Local UAA password policy configuration changed

If you have customized the password policy settings for local UAA users, these settings will be restored to the default policy unless you take action.

In previous TAS versions, the local UAA password policies could be configured only if you selected the Internal user store option in the Authentication and Enterprise SSO pane. The local UAA password policy configuration option is now moved to the UAA pane, where you can customize the settings regardless of the Authentication and Enterprise SSO option you chose.

If you currently have configured the local UAA user password policy by setting the fields under the Internal user store option in the Authentication and Enterprise SSO pane, then your existing settings will be affected.

To prevent problems, you can instead configure the password policies for local UAA users in a new section on the UAA pane of the TAS tile. This configuration section is available in TAS 4.0 and 5.0 and will be preserved in the upgrade to 6.0.

Gorouter uses port 7070 by default for internal route services

See this section for details.

Breaking changes if you are starting from TAS 4.0

If you are upgrading from TAS 4.0 to TAS 6.0, review the following breaking changes to ensure a smooth upgrade.

MySQL 5.7 external system database support removed

Your TAS for VMs deployment will fail or become insecure if you are using MySQL 5.7 as TAS’s external system database because MySQL 5.7 has reached its End-Of-Life (31 Oct 2023).

If you have configured a MySQL 5.7 database instance as the external system database for your TAS deployment, this change will affect you. You can check your current system database settings by going to the Databases pane in the TAS for VMs tile. Check the System databases location section. If the External database server option is selected and the configured database server is based on MySQL 5.7, you will have to upgrade your external system database to a supported MySQL version (such as MySQL 8.0).

This change was triggered by the fact that MySQL 5.7 has reached its official End-Of-Life date (31 Oct 2023), and many TAS components and the database client libraries they depend on will follow suit by removing support and testing for MySQL 5.7.

NATS intentionally fails deployment in post-start in v1

Operators can ensure successful deployment of NATS servers, which propagate routes from services and apps to Gorouter, by confirming that their nats-release instances have successfully migrated to NATS v2.

If your TAS environment is already on v2.11.26 or greater, make sure that your NATS instances have successfully migrated by checking that NATS 2.0 is running. See How to confirm your nats servers are running NATs v2.

If your deployment fails, check the NATS instance logs. Migration details, including any possible error messages, can be found under /var/vcap/sys/log/nats-tls/nats-tls-wrapper.stdout.log.

In TAS v2.11.26, nats-release upgraded its underlying software package from NATS 1.0 (package name gnatsd) to NATS 2.0 (package name nats-server). The nats-release contains NATS 1.0, which will start as a fallback in case the migration to NATS 2.0 fails. In preparation for the future removal of NATS 1.0, nats-release will fail in post-start if it detects that NATS 1.0 is running instead of NATS 2.0.

App Autoscaler API no longer accepts trailing slashes

Existing clients of the App Autoscaler API may break if they make resource requests that include trailing slashes.

If you have written code that makes requests to the App Autoscaler API with trailing slashes or if you have documentation that describes making requests with trailing slashes you will be affected.

Requests that specify trailing slashes will now receive a 404 response. This does not affect users who are using the Autoscaler cf CLI plug-in.

This is a Spring Framework default change to improve security posture.

To prevent or solve this problem, modify your client or documentation to no longer make requests with trailing slashes.

See also the TAS for VMs 5.0 release notes.

Logging timestamp format changed for some TAS for VMs [Windows] jobs

Existing automation that parses logs from TAS for VMs [Windows] components may break if it is still expecting timestamps formatted as epoch time. Specifically, logs from groot and garden_windows have been converted to RFC 3339 timestamps.

This will affect you if you have log parsing for TAS for VMs [Windows]’s groot and garden_windows jobs that rely on timestamps being in epoch format.

If it was necessary to adjust log parsing for TAS and TAS for VMs [Windows] 4.0 to account for the change in timestamp format, update log parsing in the same manner, but for the TAS for VMs [Windows] groot and garden_windows jobs.

The logging timestamp format was changed for some TAS for VMs [Windows] jobs because non-standardized and non-human readable timestamps in logs make debugging TAS more difficult. Starting in TAS/TASW 4.0, timestamps have been logged using RFC 3339 format in all cases but groot and garden_windows.

See also the TAS for VMs 5.0 release notes.

Logging timestamp format property removed

Existing automation that configures a log timestamp format will break if product config is not updated.

You are affected if you set the logging_timestamp_format product config property.

This property has had no effect since TAS 4.0. Update your configuration to no longer specify the property.

The logging timestamp format property was removed because non-standardized and non-human readable timestamps in logs make debugging TAS more difficult.

See also the TAS for VMs 5.0 release notes.

Syslog Aggregate Drains property changes

You will be affected by this change if you have configured aggregate syslog drains with the syslog_agent_aggregate_drains property. Existing automation that configures aggregate syslog drains will break if the product config is not updated.

References to the old property should be updated to refer to the new mtls_syslog_agent_aggregate_drains property. This property is used to define aggregate syslog drains with keys and certificates for Mutual TLS, and to define aggregate drains that are not using Mutual TLS. From TAS 5.0, operators can configure aggregate drains that support Mutual TLS for improved security. This necessitated changing the structure of the syslog aggregate drains property to allow these new fields to be specified.

Comma-separated strings are no longer accepted, instead pass an array of aggregate drains:

.properties.mtls_syslog_agent_aggregate_drains:
  value:
  - url: syslog-tls://HOSTNAME:PORT
  - url: syslog-tls://ANOTHER-HOSTNAME:PORT

Additionally, consider if your syslog aggregate drains should be updated to use Mutual TLS.

See also the TAS for VMs 5.0 release notes.

Metrics Agent deprecated and defaults to off

The behavior of any custom integration using Prometheus to scrape the Metrics Agent will change. The Metrics Agent is protected by mutual TLS, and for access, it would require using a certificate issued by TAS. We do not know of any products or integrations that use this agent.

You will see this change if you have built a custom integration that scrapes all VMs usingPprometheus on port 14726. See the TAS for VMs 5.0 release notes for more information.

The Metrics Agent was designed as a way for Healthwatch and other components to retrieve metrics without using the Loggregator Firehose. No components ended up adopting it, and with the introduction of the OpenTelemetry Collector, there are now much more flexible options for egressing metrics. For this reason, we are slating it for removal rather than driving adoption towards it.

If you are using the Metrics Agent, it is possible in TAS 5.0 to reenable it by unselecting the check box in the System Logging configuration page. A better solution is to switch to using the Prometheus Exporter in the OpenTelemetry Collector. If you are unable to migrate to the Prometheus Exporter, contact Support; the Metrics Agent is slated for removal in TAS 6.0.

Breaking changes if you are starting from TAS for VMs 2.13

If you are upgrading from TAS 4.0 to TAS 6.0, review the following breaking changes to ensure a smooth upgrade.

App logs that exceed rate limit are dropped immediately

The behavior of line-based application log rate limiting has changed. Previously application logs would be buffered to some extent and then released at the configured rate. Now application logs that exceed the rate limit are dropped immediately. For more information, see the TAS for VMs 2.13 release notes.

You will encounter this behavior if you have configured the deprecated line-based application log rate limiting and have applications that emit logs in excess of the configured limit. This is expected behavior and helps ensure that logs that are output are timely. VMware recommends use of quota-based log rate limits for fine-grained control over application log rates.

This behavior was modified as part of changes to Diego to support granular log rate limits on orgs, spaces and individual apps in TAS for VMs 3.0.

Syslog Drains reject SHA-1 certificates

Logging components provided by loggregator-agent-release have been upgraded to Go 1.18. From Go 1.18 the treatment of certificates is stricter and certificates signed with the SHA-1 hash function will be rejected. Go stopped accepting certificates signed with the SHA-1 hash function because of security concerns.

Review your configured application syslog drains. If you have a certificate for a syslog drain configured with a SHA-1 hash, your deployment will be affected.

If older SHA-1 hash funtion certificates are used, regenerate the old certificates so that they don’t use the SHA-1 hash function.

For more information, see the TAS for VMs 2.12 release notes for v2.2.12, and https://go.dev/doc/go1.18#sha1.

Application log rate limit default

Applications pushed to TAS 3.0+ will inherit a default operator-configurable log rate limit if one is not specified. The ability to set the log rate limit in a granular way is intended to allow operators to protect both the logging system within TAS and external integrations that receive logs. Setting a platform default limit for new applications makes it more likely that applications will have a log rate limit set allowing quotas to be imposed.

If you are upgrading to TAS 3.0+ and are pushing applications to the platform, applications that already exist on the platform prior to upgrade will default to not being log rate limited.

Determine if the default log rate for new applications (16 K/s) is appropriate for your needs. If you have applications with verbose logs exceeding the default limit and do not want their logs to be dropped for exceeding the limit, then consider:

  • pushing your applications with a specified app log rate limit
  • modifying the platform default log rate limit

The default log rate limit for new applications is configurable in the App Developer Controls tab in the TAS for VMs product configuration. The corresponding property is .properties.cloud_controller_default_log_rate_limit_app.

See also the TAS for VMs 3.0 release notes.

Autoscaler service bindings duplicate index

Upgrading to a version of TAS that introduces a new database index for App Autoscaler on the service bindings table may result in errors if you have previously manually created the same index.

If you have previously manually added a database index following the instructions in the knowledge base article “Autoscale application fails with MySQL Deadlock errors” and you are upgrading to TAS for VMs 2.13.5 or 2.13.6, you need to upgrade to a newer patch release of TAS that does not have this limitation.

See also:

BOSH System Metrics Forwarder Removed

The BOSH System Metrics Forwarder is removed from TAS for VMs in favor of System Metrics server and scraper.

If you have been using the deprecated BOSH System Metrics Server and Forwarder, you will be affected by this change. You are using the BOSH System Metrics Server if you selected the Enable BOSH System Metrics Server (deprecated) option in the Ops Manager Director product configuration.

To continue receiving system metrics, you must select the Enable System Metrics check box in the Director Config pane of the BOSH Director tile.

To avoid deployment, platform automation, or data collection failures, you must update any queries that reference bosh-system-metrics-forwarder as the source_id for metrics to reference system_metrics_agent instead.

Additionally, metric names now include underscores instead of periods. For example, the metric named system.cpu.sys in previous versions of TAS for VMs is named system_cpu_sys in TAS for VMs v3.0+.

See also:

HAProxy removed

If your environment is running an HAProxy instance group, you must reconfigure your networking configurations. Otherwise, you will get a deployment error when upgrading to TAS 3.0. HAProxy was previously supported as an instance group in front of Gorouter to support features not offered by Gorouter. Now that Gorouter supports TLS termination, HAProxy is no longer needed.

To check if you are running HAProxy, open the Networking tab in Tanzu Operations Manager. Under the field Routing TLS Termination, if you see HAProxy, you must change your networking and resource configurations to point directly to Gorouter.

See also the TAS for VMs 3.0 documentation.

Log Cache nozzle ingess removed

Starting from TAS for VMs 3.0.0, Log Cache uses syslog ingress, and the option to use nozzle ingress has been removed. This is because Log Cache ingestion using the Reverse Log Proxy (RLP) has been removed.

If you have not selected the Enable Log Cache syslog ingestion option, or set the corresponding .properties.enable_log_cache_syslog_ingestion product property to false, you are affected. From TAS 3.0.0, this is no longer a supported configuration. In addition, Diego Cells with high logging volume might experience higher CPU usage than they did prior to this change.

Confirm that your instances, including those within isolation segments, are permitted to establish connections to Log Cache nodes on port 6067. You may need to update firewall rules to allow logs to flow directly from your instances to the Log Cache syslog server.

Consider scaling your Diego Cells if you have applications with high logging volume due to the increased load from the syslog agent on the Diego Cell.

See also the TAS for VMs 3.0 release notes.

ActiveLocks removed from Key Performance Indicators

If you are monitoring ActiveLocks on your environment, upgrading to TAS 3.0.0 will increase your metric by 1 if your environment Key Performance Indicators includes Locket ActiveLocks.

For a successful upgrade, you must remove this metric from any KPI monitoring you maintain.

ActiveLocks is a metric emitted by Locket, a distributed locking service used by multiple services in CloudFoundry. With the introduction of a new, opt-in service that uses Locket, the expected number of active locks increased by 1. Our community noted that a feature-dependent was a smell of a bad performance indicator; while the information is useful in debugging, it is not useful as a performance indicator and we no longer recommend monitoring it as an environment health metric.

cflinuxfs4 as default stack may cause failures to push apps

cflinuxfs3 (backed by Ubuntu Bionic) has been deprecated in favor of cflinuxfs4 (backed by Ubuntu Jammy). If apps are configured to use the latest stack, upgrading TAS for VMs will upgrade the app stacks and may cause a push failure.

You can see what stack your apps are configured to use by running:

cf audit-stack

If the apps are followed by cflinuxfs3, they are running an outdated stack. You should re-stage your app to use cflinuxfs4 before upgrading TAS for VMs. This may entail updating the buildpack that your app uses. If fixing app staging is not possible before the TAS upgrade, you can configure apps to run on cflinuxfs3 as a temporary workaround. Resolve any push errors before doing the upgrade.

cf push <APP_NAME> -s cflinuxfs4

“Stacks” are the pre-built root file system that Cloud Foundry uses to create app containers. Keeping these up-to-date with operating system updates is key to updating security vulerabilities and other issues.

See also: * Managing apps and their stacks * TAS cflinuxfs4 Migration Proposal discusses stack change behaviors for each TAS for VMs release

Diego and Routing Components More Strict With TLS Protocols

Diego and Routing components have been updated to be stricter with TLS protocols. External services and databases, end users, and services making requests to Gorouter should be using TLS 1.2 and have certificates signed with a hash that is newer and more secure than SHA-1, or else they will experience TLS errors.

For services communicating with Diego components, if your environment is affected, they will not be able to successfully make a connection to Diego. For external user services talking to Gorouter, you should see TLS errors in your access logs.

If you are using an external database, Diego will throw errors trying to start processes like Locket and BBS.

You can check the Signature Algorithm of your external database and external services with the following command:

echo '' | openssl s_client -connect <HOSTNAME>:<PORT> -servername <HOSTNAME> 2>/dev/null | openssl x509 -noout -text | grep 'Signature Algorithm'

You can check that TLS 1.2 is supported with the following command:

echo openssl s_client -connect google.com:443 -servername google.com -tls1_2 || echo "TLS 1.2 unsupported"

If you see no output, TLS 1.2 is supported. If you see the TLS 1.2 unsupported message, it is unsupported and will need to be updated.

Make sure that services talking to your Diego components and services talking to gorouter are not using TLS 1.0 or 1.1, or using SHA-1 certificates.

Diego and Routing components, including gorouter, use an up-to-date version of Golang. As of Golang 1.18, TLS requirements have been made more strict in two major ways. First, TLS 1.0 and 1.1 disabled in favor of TLS 1.2. Second, crypto/x509 will now reject certificates signed with the SHA-1 hash function. See Golang release notes for details.

See also https://tip.golang.org/doc/go1.18.

Breaking changes if you are starting from TAS for VMs 2.11

Log Cache aggregate drain metadata missing

TAS 2.11.16 moved aggregate drain configuration to the syslog binding cache to improve deploy speed. Depending on your configuration, this could cause the Smoke Test errand to fail.

If Enable Log Cache syslog ingestion is selected and Default loggregator drain metadata is unselected, and you attempt to upgrade to a version of TAS for VMs from 2.11.16 to 2.11.21, this will affect you.

The corresponding product properties are: * .properties.enable_log_cache_syslog_ingestion * .properties.default_loggregator_drain_metadata

To avoid this problem, upgrade to TAS 2.11.22 or greater.

Operators may configure aggregate drains to send all application logs to a syslog destination. The same mechanism may be used within TAS for VMs to populate Log Cache. If metadata is not enabled for the Log Cache aggregate drain, then Log Cache will not have the metadata expected to function correctly.

See also the TAS for VMs 2.11 release notes:

Minimize user downtime when upgrading from 2.11 to 2.12

To minimize downtime for developers pushing apps, upgrade from TAS for VMs v2.11.9 or later. Upgrading from earlier patch versions can result in an Unknown Error when pushing apps. With Cloud Controller in affected versions, there is a possibility that app lifecycle_type could be nil when determining app lifecycle.

If your current version of TAS is 2.11.0 through 2.11.8 and you are upgrading to TAS for VMs 2.12 or higher, this could cause a problem for you. To prevent problems, upgrade to TAS 2.11.9 or higher before upgrading to 2.12 or higher.

For more information, see the Upgrade section in the TAS for VMs 2.12 release notes.

Envoy advertises HTTP2 support over ALPN

If applications do not support HTTP/2 when using Container-to-Container (C2C) communication through the Envoy proxy (ports 61001 or 61443), requests between these apps will fail.

You may be affected if you are using container-to-container networking, and you have network policies that allow apps to talk to other apps on ports 61001 or 61443. Use the cf network-policies command to list the policies, and look for those ports.

To find out if you have this situation, investigate the destination applications for these policies to determine if they support HTTP/2 requests. If not, the client applications must be updated to negotiate down to HTTP/1.1 when making their requests.

Background details: * ALPN is the Application-Layer Protocol Negotiation that allows HTTP connections to negotiate what protocols are supported. * Envoy is a proxy sitting alongside each application container to facilitate TLS termination.

Zipkin Trace-ID is now 16 Bytes

There is a possibility that your apps are not capable of processing the longer 8-byte Trace-ID header. If so, you may receive 400-level errors after Gorouter forwards requests to your app.

Foundations that do not enable Zipkin are not affected. To see if Zipkin is enabled, look at the Networking tab of the TAS tile in Tanzu Operations Manager, and see if Enable Zipkin is selected.

If Zipkin is enabled, applications incompatible with this change will throw errors related to Zipkin header length in their application or access logs.

The header size was increased from 8-bytes to 16-byes in accordance to the W3 standard; to resolve this, you must update your app to be able to handle 16-byte request headers.

Zipkin is a library that allows users to trace a request through mutliple componenets, with the help of a Trace-ID that is the same for the lifecycle of one request. Having a longer Trace-ID is in compliance with W3 standards and also decreases the chance of generating duplicate IDs.

For more information, see: * https://zipkin.io/pages/instrumenting.html * https://www.w3.org/TR/trace-context/#trace-id * https://docs.cloudfoundry.org/adminguide/zipkin_tracing.html

Breaking changes for TAS for VMs Ecosystem tiles (including ISV Partner tiles)

If your team is building a tile (integration) to be used with a compatible TAS version, you need to be aware of the following key changes in TAS 6.0 that might affect these tiles. Depending on the nature of the offering, not all of the changes might be applicable.

Partners who have a pre-release binary agreement on file can test the compatibility of their offering by claiming a TAS 6.0 environment. We encourage ecosystem and partner teams to test and declare compatibility with TAS 6.0 in a timely manner so that our mutual customers can have a smooth upgrade experience.

Gorouter uses port 7070 by default for internal route services instead of a random available port

Check if your foundation is affected:

  1. SSH into a router VM.
  2. Run lsof -Pi to find out if port 7070 is being used.
  3. Next, check any routers deployed by IST, to find out if they are affected.

If your foundation is affected, use Tanzu Operations Manager to configure use of a different port.

For TAS for VMs, go to the Networking tab and scroll down to the Route Services section. If route services are enabled, you will see a text box labeled The port used for internal route services requests. Set the value to a known available port, or set the value to 0 to allow the operating system to choose an available port at deploy time.

For IST, go to the Networking tab and scroll down to the text box labeled The port used for internal route services requests. Set the value to a known available port, or set the value to 0 to allow the operating system to choose an available port at deploy time.

Known issues

Here are the known issues for VMware Tanzu Application Service for VMs v6.0.

Loggregator Agents in other products may log failure when Dopplers are scaled to zero

Service tile products can use Loggregator Agent to egress metrics for service instances. If the Doppler instance group is scaled to zero, then Loggregator Agent jobs deployed by these products may repeatedly log a failure to connect to Doppler:

failed to connect: unable to lookup a log consumer

UAA causes database overload (for VMware Tanzu Application Service for VMs 6.0.0 and 6.0.1)

The UAA can cause and experience slowness in its database when attempting to hit its /Users endpoint. The issue is especially noticeable when the UAA contains a large number of users; for example, in the millions. This only happens when using a MySQL database. VMware Tanzu Application Service for VMs 6.0.2 fixes the issue.

check-circle-line exclamation-circle-line close-line
Scroll to top icon