Wallarm Ingress Versions Save

• Added the controller.wallarm.container_name.extraEnvs chart values to allow passing additional environment variables to Docker containers utilized by the solution

• Enhanced OpenAPI data type detection by the API Discovery module

• Introduced the wallarm_http_v2_stream_max_len directive to control the maximum length of HTTP/2 streams, helping prevent excessive memory consumption in long-lived gRPC connections

  To apply this directive during Ingress controller deployment, include it in the controller.config.http-snippet, server-snippet, or location-snippet values. Alternatively, use the nginx.ingress.kubernetes.io/server-snippet Ingress annotation.

• Resolved a memory leak issue where memory continued to be consumed after an overlimit attack was triggered, even when no further attack checks were conducted

• Fixed the API Abuse Prevention module logging issues

• Added support for applying limits on GraphQL requests
• API specifications enforcement
• New APIFW v0.7.2

Fixed performance issue

• Update of appstructure package
• Improved node sync logic

• Fixed an issue where partially downloaded custom ruleset files were mistakenly validated as complete. Chunked downloading has been implemented to address this issue

• Restored OpenTracing

• Updated the appstructure package

• Internal enhancements and optimizations:

  • Implemented labels and annotations for the Tarantool pod
  • Transitioned Wallarm helper container to supervisord

• Fix CVEs in Wallarm helper image:

  • CVE-2021-41816
  • CVE-2021-41819
  • CVE-2021-33621
  • CVE-2020-14343
  • CVE-2021-33503
  • CVE-2023-37920
  • CVE-2023-28755
  • CVE-2020-36327
  • CVE-2020-25613
  • CVE-2021-28965
  • CVE-2021-31799
  • CVE-2021-41817

• Restored OpenTracing for 4.8 versions

• Upgrade the Wallarm node module to version 4.10
• Fixed CVE-2024-21626