TAS for VMs v2.11 Release Notes

Page last updated:

This topic contains release notes for VMware Tanzu Application Service for VMs (TAS for VMs) v2.11.

TAS for VMs is certified by the Cloud Foundry Foundation for 2023.

For more information about the Cloud Foundry Certified Provider Program, see How Do I Become a Certified Provider? on the Cloud Foundry website.

Because VMware uses the Percona Distribution for MySQL, expect a time lag between Oracle releasing a MySQL patch and VMware releasing TAS for VMs containing that patch.

Required Cloud Foundry Command-Line Interface (cf CLI) version: You must install cf CLI v7 when upgrading to or using TAS for VMs v2.11. For more information, see Upgrading to cf CLI v7.


Releases

v2.11.33

Release Date: 01/31/2023

  • Bump backup-and-restore-sdk to version 1.18.60
  • Bump cf-autoscaling to version 249.1.1
  • Bump cf-networking to version 3.19.0
  • Bump cflinuxfs3 to version 0.350.0
  • Bump garden-runc to version 1.22.9
  • Bump nats to version 56
  • Bump routing to version 0.254.0
  • Bump ruby-offline-buildpack to version 1.9.0
  • Bump silk to version 3.19.0
  • Bump uaa to version 74.5.62
Component Version Release Notes
ubuntu-xenial stemcell621.376
backup-and-restore-sdk1.18.60
v1.18.60
  ## Changes
  * Support postgres 15 (#785)
  * Update vendored package golang-1-linux (#800)
  * chore: remove usage of ioutil (#809)
  ## Dependencies
  * **storage:** Updated to v1.28.1.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **aws-sdk-go:** Updated to v1.44.157.
For more information, see [aws-sdk-go](https://github.com/aws/aws-sdk-go). * **mysql:** Updated to v1.7.0.
For more information, see [mysql](https://github.com/go-sql-driver/mysql). * **gomega:** Updated to v1.24.2.
For more information, see [gomega](https://github.com/onsi/gomega). * **net:** Updated to v0.4.0.
For more information, see [net](https://github.com/golang/net). * **api:** Updated to v0.104.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
binary-offline-buildpack1.1.0
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.28
bpm1.1.21
capi1.109.15
cf-autoscaling249.1.1
v249.1.1
  ## What's Changed
  * Bump golang to 1.19.5
  * Bump `org.apache.tomcat.embed:tomcat-embed-websocket` to 9.0.70 to address [CVE-2022-45143](https://nvd.nist.gov/vuln/detail/CVE-2022-45143)
  **Full Changelog**: https://github.com/pivotal-cf/cf-autoscaling-release/compare/v249.1.0...v249.1.1
          
v249.1.0
  * update dependencies.
  * add cflinux stack as a bosh property
          
cf-cli1.41.0
cf-networking3.19.0
cflinuxfs30.350.0
credhub2.12.18
diego2.71.0
dotnet-core-offline-buildpack2.4.5
garden-runc1.22.9
go-offline-buildpack1.10.2
haproxy9.8.0
java-offline-buildpack4.53
log-cache2.12.4
loggregator106.7.5
loggregator-agent6.5.6
mapfs1.2.12
metric-registrar1.1.22
metrics-discovery3.2.4
mysql-monitoring9.23.0
nats56
nfs-volume5.0.20
nginx-offline-buildpack1.1.45
nodejs-offline-buildpack1.8.4
notifications62
notifications-ui40
php-offline-buildpack4.5.0
push-apps-manager-release674.0.9
push-usage-service-release674.0.29
pxc0.50.0
python-offline-buildpack1.8.4
r-offline-buildpack1.1.36
routing0.254.0
v0.254.0
  ✨ Built with go 1.19.5
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.253.0...v0.254.0
          
v0.253.0
  ## What's Changed
  * Specs to make maxRetries configurable for endpoints and route-services by @domdom82 in https://github.com/cloudfoundry/routing-release/pull/298
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.252.0...v0.253.0
          
ruby-offline-buildpack1.9.0
1.9.0
  * Add support for cflinuxfs4 stack
  * Update default ruby version to 3.1
  * Remove deprecated bundler 1.x version line (#650)
  * supply: remove ruby.exe symlinking
  This seems to be from a heroku era effort to support windows.
  * openjdk8: update dependency
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bundler | 2.3.26 | cflinuxfs3, cflinuxfs4 |
  | jruby | 9.3.9.0 | cflinuxfs3 |
  | jruby | 9.3.9.0 | cflinuxfs4 |
  | jruby | 9.4.0.0 | cflinuxfs3 |
  | jruby | 9.4.0.0 | cflinuxfs4 |
  | node | 18.12.1 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs4 |
  | openjdk1.8-latest | 1.8.0 | cflinuxfs3, cflinuxfs4 |
  | ruby | 2.7.6 | cflinuxfs3 |
  | ruby | 2.7.7 | cflinuxfs3 |
  | ruby | 3.0.4 | cflinuxfs3 |
  | ruby | 3.0.5 | cflinuxfs3 |
  | ruby | 3.1.2 | cflinuxfs3 |
  | ruby | 3.1.3 | cflinuxfs3 |
  | ruby | 3.1.3 | cflinuxfs4 |
  | rubygems | 3.3.26 | cflinuxfs3, cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | ruby | 3.1.x |
  * Uncached buildpack SHA256: c0ecb20c3135d572deb13cccbd2b7a8065b2b355609d2ab5d4bb71cc5963c0b8
  * Uncached buildpack SHA256: ab48ac40a7fc03dd1511508f8aaafd788af5bf9f764cdd3127e40a6e12f84cd2
          
silk3.19.0
smb-volume3.1.6
smoke-tests4.8.2
staticfile-offline-buildpack1.5.36
statsd-injector1.11.26
syslog11.8.6
system-metrics-scraper3.3.4
uaa74.5.62
v74.5.62
  ### Dependency bumps
  - Various dependency bumps
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v74.5.61...v74.5.62
          

v2.11.32

Release Date: 01/17/2023

  • Bump capi to version 1.109.15
  • Bump cf-networking to version 3.17.0
  • Bump cflinuxfs3 to version 0.347.0
  • Bump credhub to version 2.12.18
  • Bump diego to version 2.71.0
  • Bump dotnet-core-offline-buildpack to version 2.4.5
  • Bump garden-runc to version 1.22.7
  • Bump loggregator-agent to version 6.5.6
  • Bump nats to version 54
  • Bump nodejs-offline-buildpack to version 1.8.4
  • Bump php-offline-buildpack to version 4.5.0
  • Bump pxc to version 0.50.0
  • Bump python-offline-buildpack to version 1.8.4
  • Bump r-offline-buildpack to version 1.1.36
  • Bump routing to version 0.252.0
  • Bump silk to version 3.17.0
  • Bump smoke-tests to version 4.8.2
  • Bump staticfile-offline-buildpack to version 1.5.36
  • Bump uaa to version 74.5.61
Component Version Release Notes
ubuntu-xenial stemcell621.364
backup-and-restore-sdk1.18.59
binary-offline-buildpack1.1.0
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.28
bpm1.1.21
capi1.109.15
cf-autoscaling249.0.25
cf-cli1.41.0
cf-networking3.17.0
cflinuxfs30.347.0
credhub2.12.18
2.12.18
  ### Security Fixes
  - Bump various dependencies
          
2.12.17
  ### Security Fixes
  - Bump various dependencies
          
diego2.71.0
dotnet-core-offline-buildpack2.4.5
2.4.5
  * Deprecate .Net (aspnetcore, runtime and sdk)  3.x
  * Add dotnet-aspnetcore 6.0.12, remove dotnet-aspnetcore 6.0.11 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 6.0.12, remove dotnet-runtime 6.0.11 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 6.0.404, remove dotnet-sdk 6.0.403 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 7.0.1, remove dotnet-aspnetcore 7.0.0 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 7.0.1, remove dotnet-runtime 7.0.0 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-sdk 7.0.101, remove dotnet-sdk 7.0.100 for stack(s) cflinuxfs4, cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 6.0.12 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 7.0.1 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 6.0.12 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 7.0.1 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 6.0.404 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 7.0.101 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.6.2 | cflinuxfs3 |
  | libunwind | 1.6.2 | cflinuxfs4 |
  | node | 18.12.1 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 6.0.x |
  | dotnet-aspnetcore | 6.0.x |
  | dotnet-sdk | 6.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: a5a6b1c0e919042835e7e1a2a444608c67023a5c675947171dfcbac4ed909fc5
  * Uncached buildpack SHA256: 3da2519e1db72575729d450dc0609dd58b219e381265ce2eb139a08183ca249d
          
garden-runc1.22.7
go-offline-buildpack1.10.2
haproxy9.8.0
java-offline-buildpack4.53
log-cache2.12.4
loggregator106.7.5
loggregator-agent6.5.6
v6.5.6
  ## What's Changed
  * fix scraping with non-positive intervals to preserve non-scraping behavior by @Benjamintf1 in https://github.com/cloudfoundry/loggregator-agent-release/pull/174
  * updated some dependencies.
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-agent-release/compare/v6.5.5...v6.5.6
          
mapfs1.2.12
metric-registrar1.1.22
metrics-discovery3.2.4
mysql-monitoring9.23.0
nats54
nfs-volume5.0.20
nginx-offline-buildpack1.1.45
nodejs-offline-buildpack1.8.4
1.8.4
  * Bumps default node version to 18
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | node | 14.20.1 | cflinuxfs3 |
  | node | 14.20.1 | cflinuxfs4 |
  | node | 14.21.1 | cflinuxfs3 |
  | node | 14.21.1 | cflinuxfs4 |
  | node | 16.18.0 | cflinuxfs3 |
  | node | 16.18.0 | cflinuxfs4 |
  | node | 16.18.1 | cflinuxfs3 |
  | node | 16.18.1 | cflinuxfs4 |
  | node | 18.10.0 | cflinuxfs3 |
  | node | 18.10.0 | cflinuxfs4 |
  | node | 18.12.1 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | node | 18.x |
  * Uncached buildpack SHA256: 1f18bab4acde32b9d919a938e863492a5bda090ac200a54aba68cb429f308423
  * Uncached buildpack SHA256: 7d1371c250ab2af98b0be2375f6e578a6fb1790c432ca6d6b64ed0465cf84a6e
          
notifications62
notifications-ui40
php-offline-buildpack4.5.0
4.5.0
  * Deprecate PHP 7.4.x
  * Remove CAAPM Agent not supported by PHP 8 (https://github.com/cloudfoundry/php-buildpack/issues/746)
  * Update default PHP Version to 8.1.13
  * Add appdynamics 22.12.0-667, remove appdynamics 22.10.0-627 for stack(s) cflinuxfs3
  * Add nginx 1.23.3, remove nginx 1.23.2 for stack(s) cflinuxfs3
  * Add php 8.0.26, remove php 8.0.24 for stack(s) cflinuxfs3
  * Add php 8.1.13, remove php 8.1.11 for stack(s) cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | appdynamics | 22.12.0-667 | cflinuxfs3 |  |
  | composer | 2.4.4 | cflinuxfs3 |  |
  | httpd | 2.4.54 | cflinuxfs3 |  |
  | newrelic | 9.20.0.310 | cflinuxfs3 |  |
  | nginx | 1.22.0 | cflinuxfs3 |  |
  | nginx | 1.23.3 | cflinuxfs3 |  |
  | php | 8.0.25 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.26 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.12 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.13 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 8.1.13 |
  | httpd | 2.4.54 |
  | newrelic | 9.20.0.310 |
  | nginx | 1.23.3 |
  | composer | 2.4.4 |
  * Uncached buildpack SHA256: a6fe40a80c5c3da8f9cb43127981b12150d0868437b3e2a3cd300b588c1dacd8
          
push-apps-manager-release674.0.9
push-usage-service-release674.0.29
pxc0.50.0
python-offline-buildpack1.8.4
1.8.4
  * Add python 3.11.1, remove python 3.11.0 (#665)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183976131)
  * Add python 3.10.9, remove python 3.10.8
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/183976637)
  * Add python 3.9.16, remove python 3.9.15 (#663)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183975707)
  * Add python 3.8.16, remove python 3.8.15 (#660)
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183975586)
  * Add python 3.7.16, remove python 3.7.15
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183975932)
  * Add pipenv 2022.11.30, remove pipenv 2022.11.5
  for stack(s) cflinuxfs4, cflinuxfs3
  * Add setuptools 65.6.3, remove setuptools 65.5.1
  for stack(s) cflinuxfs4, cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | libffi | 3.2.1 | cflinuxfs3, cflinuxfs4 |
  | libmemcache | 1.0.18 | cflinuxfs3, cflinuxfs4 |
  | miniconda3-py39 | 4.12.0 | cflinuxfs3, cflinuxfs4 |
  | pip | 22.3.1 | cflinuxfs3, cflinuxfs4 |
  | pipenv | 2022.11.30 | cflinuxfs3 |
  | pipenv | 2022.11.30 | cflinuxfs4 |
  | python | 3.7.16 | cflinuxfs3 |
  | python | 3.7.16 | cflinuxfs4 |
  | python | 3.8.16 | cflinuxfs3 |
  | python | 3.8.16 | cflinuxfs4 |
  | python | 3.9.16 | cflinuxfs3 |
  | python | 3.9.16 | cflinuxfs4 |
  | python | 3.10.9 | cflinuxfs3 |
  | python | 3.10.9 | cflinuxfs4 |
  | python | 3.11.1 | cflinuxfs3 |
  | python | 3.11.1 | cflinuxfs4 |
  | setuptools | 65.6.3 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | python | 3.10.x |
  * Uncached buildpack SHA256: 544f05133e30c82a490a59d68f27551e6370ef67df403a30c96496a490157a78
  * Uncached buildpack SHA256: 52120d40c3bd47904ae109e76849fd2a4a9829e36b0a9fda30b690a2ae884c0b
          
r-offline-buildpack1.1.36
1.1.36
  * Rebuild r 4.2.2
  for stack(s) cflinuxfs3
  with dependencies for stack cflinuxfs3: forecast 8.19, plumber 1.2.1, rserve 1.8.11, shiny 1.7.3
  (https://www.pivotaltracker.com/story/show/183897155)
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | r | 3.6.2 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 3.6.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.1 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.2 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  * Uncached buildpack SHA256: 0158a04a0597a9d22a319790ab1ed99422a406dc7a20f52102b4b2725cef740a
          
routing0.252.0
v0.252.0
  ## What's Changed
  - Improve random source for least connection pool to be thread safe. Thanks Daniel Lynch!
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.251.0...v0.252.0
          
ruby-offline-buildpack1.8.60
silk3.17.0
smb-volume3.1.6
smoke-tests4.8.2
4.8.2
  Port assets/ruby_simple to Ruby 3
          
staticfile-offline-buildpack1.5.36
1.5.36
  * Handle comma separated X-Forwarded-Proto
  (https://github.com/cloudfoundry/staticfile-buildpack/pull/318)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.22.1 | cflinuxfs3 |
  | nginx | 1.23.2 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.23.x |
  * Uncached buildpack SHA256: cfc15d472d16a03a2691b497b5387da9e18be1493cd89a9be5becdb1d63754b3
          
statsd-injector1.11.26
syslog11.8.6
system-metrics-scraper3.3.4
uaa74.5.61
v74.5.61
  ### Dependency bumps
  - Various dependency bumps
          

v2.11.31

Release Date: 12/15/2022

  • [Security Fix] Fix CVE-2022-31733: Unsecured Application Port
  • [Bug Fix] service_credential_bindings can bind inactive service plans in capi v3
  • Bump backup-and-restore-sdk to version 1.18.59
  • Bump binary-offline-buildpack to version 1.1.0
  • Bump bosh-system-metrics-forwarder to version 0.0.28
  • Bump bpm to version 1.1.21
  • Bump capi to version 1.109.13
  • Bump cf-autoscaling to version 249.0.25
  • Bump cf-networking to version 3.16.0
  • Bump cflinuxfs3 to version 0.345.0
  • Bump credhub to version 2.12.16
  • Bump diego to version 2.70.0
  • Bump dotnet-core-offline-buildpack to version 2.4.4
  • Bump go-offline-buildpack to version 1.10.2
  • Bump log-cache to version 2.12.4
  • Bump loggregator to version 106.7.5
  • Bump loggregator-agent to version 6.5.5
  • Bump metric-registrar to version 1.1.22
  • Bump metrics-discovery to version 3.2.4
  • Bump mysql-monitoring to version 9.23.0
  • Bump php-offline-buildpack to version 4.4.68
  • Bump push-usage-service-release to version 674.0.29
  • Bump pxc to version 0.49.0
  • Bump python-offline-buildpack to version 1.8.3
  • Bump r-offline-buildpack to version 1.1.35
  • Bump routing to version 0.251.0
  • Bump ruby-offline-buildpack to version 1.8.60
  • Bump silk to version 3.16.0
  • Bump statsd-injector to version 1.11.26
  • Bump syslog to version 11.8.6
  • Bump system-metrics-scraper to version 3.3.4
  • Bump uaa to version 74.5.60
Component Version Release Notes
ubuntu-xenial stemcell621.364
backup-and-restore-sdk1.18.59
v1.18.59
  ## Changes
  * Bump mariadb from 10.6.10 to 10.6.11 (#778)
  ## Dependencies
  * **aws-sdk-go:** Updated to v1.44.150.
For more information, see [aws-sdk-go](https://github.com/aws/aws-sdk-go). * **v2:** Updated to v2.5.1.
For more information, see [v2](https://github.com/onsi/ginkgo).
v1.18.58
  ## Changes
  * Bump postgres from 10.22 to 10.23 (#772)
  * Bump postgres from 11.17 to 11.18 (#773)
  * Bump postgres from 13.8 to 13.9 (#774)
  ## Dependencies
  * **google-cloud-go:** Updated to v1.28.0.
For more information, see [google-cloud-go](https://github.com/googleapis/google-cloud-go). * **aws-sdk-go:** Updated to v1.44.137.
For more information, see [aws-sdk-go](https://github.com/aws/aws-sdk-go). * **bosh-backup-and-restore:** Updated to v1.9.38.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **ginkgo:** Updated to v2.5.0.
For more information, see [ginkgo](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.24.1.
For more information, see [gomega](https://github.com/onsi/gomega). * **google-api-go-client:** Updated to v0.103.0.
For more information, see [google-api-go-client](https://github.com/googleapis/google-api-go-client).
binary-offline-buildpack1.1.0
1.1.0
  * Add support for cflinuxfs4 stack
  * Bumps go.mod go version to 1.19
  * Uncached buildpack SHA256: ccfe7b77068236753986f6425a00b960fa4edcb013f6c9e5a740de8aca52761d
  * Uncached buildpack SHA256: 0a493631418ab46f9efe527f6d1defd01566e031e81c6be56f82939e19cd3656
  * Uncached buildpack SHA256: b6a4f88f1180b03d476924368667457e45bea08dce584ff4ce4e967320d72b36
  * Uncached buildpack SHA256: c370f58b71c01ac6082d308b1ac51abefedcde0a2caeec47552965f3ff492de2
          
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.28
v0.0.28
  - bump-golang to v0.114.0 for golang 1.19.4
          
bpm1.1.21
capi1.109.13
cf-autoscaling249.0.25
v249.0.25
  ## What's Changed
  * Bump golang to 1.19.4
  * Check for race conditions in unit and repository tests by @ctlong in https://github.com/pivotal-cf/cf-autoscaling-release/pull/664
  * Bump kotlinVersion from 1.7.20 to 1.7.21 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/728
  * add quota events to the events stream by @Benjamintf1 in https://github.com/pivotal-cf/cf-autoscaling-release/pull/733
  * Bump jackson-module-kotlin from 2.13.4 to 2.14.1 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/732
  * Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 in /src by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/730
  * Bump kotlinVersion from 1.7.21 to 1.7.22 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/736
  * Bump github.com/go-sql-driver/mysql from 1.6.0 to 1.7.0 in /src by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/737
          
v249.0.24
  - Bump to go1.19.3
  - Bump to [spring-boot v2.7.5](https://github.com/spring-projects/spring-boot/releases/tag/v2.7.5)
          
cf-cli1.41.0
cf-networking3.16.0
cflinuxfs30.345.0
credhub2.12.16
2.12.16
  ## Bug Fixes
  * Fixes #74 (a known issue in CredHub release `2.12.4` and `2.12.5` where CredHub fails to connect to [postgres-release](https://github.com/cloudfoundry/postgres-release), and possibly other postgres servers, due to TLS handshake errors) by reverting the Java version bump to `jre8u352` in `2.12.4`. We will bring back this bump once the postgres TLS issue is addressed.
  * Fixes #71 where CredHub fails when deployed with a FIPS-enabled Bionic Stemcell.
  ## Security Fixes
  - Bump various dependencies
  ## New Contributors
  * @xandroc made their first contribution in https://github.com/pivotal/credhub-release/pull/75
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.15...2.12.16
          
2.12.15
  ## Security Fixes
  - [bump dependency-check-gradle from 7.3.0 to 7.3.2](https://github.com/cloudfoundry/credhub/commit/164f3803d661bbf3684f22f66ec696688d9e4322)
  - [bump grpcVersion from 1.50.2 to 1.51.0](https://github.com/cloudfoundry/credhub/commit/ee931e16e5be76b9c485cfde915962dc6bb644e5)
  - [bump: springRestDocsVersion from 2.0.6 to 2.0.7](https://github.com/cloudfoundry/credhub/commit/c8b47a94870d8b86a65dd8d39fc24ced0608b752)
  ## Known Issues
  - This release breaks compatibility with [postgres-release](https://github.com/cloudfoundry/postgres-release) (and possibly more postgres server) with a TLS handshake error. Do not use this release if you are using postgres. The fix is underway.
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.14...2.12.15
          
2.12.14
  ## Security Fixes
  - Bump various dependencies
  ## What's Changed
  * Update Java 1.8 to jre8u352
  ## Known Issues
  - This release breaks compatibility with [postgres-release](https://github.com/cloudfoundry/postgres-release) (and possibly more postgres server) with a TLS handshake error. Do not use this release if you are using postgres. The fix is underway.
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.13...2.12.14
          
diego2.70.0
dotnet-core-offline-buildpack2.4.4
2.4.4
  * Add dotnet-sdk 7.0.100
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183841988)
  * Add dotnet-aspnetcore 7.0.0
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183841985)
  * Add dotnet-runtime 7.0.0
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183841983)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 3.1.31 | cflinuxfs3 |
  | dotnet-aspnetcore | 6.0.11 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 7.0.0 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 3.1.31 | cflinuxfs3 |
  | dotnet-runtime | 6.0.11 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 7.0.0 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 3.1.425 | cflinuxfs3 |
  | dotnet-sdk | 6.0.403 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 7.0.100 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.6.2 | cflinuxfs3 |
  | libunwind | 1.6.2 | cflinuxfs4 |
  | node | 18.12.1 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 6.0.x |
  | dotnet-aspnetcore | 6.0.x |
  | dotnet-sdk | 6.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: 07448060b0127c98d9fc2cee2ad4f7da1c8a4d192a4d12276f38b287cc97bdc0
  * Uncached buildpack SHA256: 9f12d944e5f905ac90ce2185e8592b33c9231d99173416360b06c78bfbb5a462
          
2.4.3
  * Add dotnet-aspnetcore 3.1.31, remove dotnet-aspnetcore 3.1.30
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183751987)
  * Add dotnet-runtime 3.1.31, remove dotnet-runtime 3.1.30
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183751988)
  * Add dotnet-sdk 6.0.403, remove dotnet-sdk 6.0.402
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183751455)
  * Add dotnet-aspnetcore 6.0.11, remove dotnet-aspnetcore 6.0.10
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183751561)
  * Add dotnet-runtime 6.0.11, remove dotnet-runtime 6.0.10
  for stack(s) cflinuxfs4, cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183751459)
  * Set node to version 18 (current LTS)
  * Add node 18.12.1, remove node 16.18.0
  for stack(s) cflinuxfs3, cflinuxfs4
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 3.1.31 | cflinuxfs3 |
  | dotnet-aspnetcore | 6.0.11 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 3.1.31 | cflinuxfs3 |
  | dotnet-runtime | 6.0.11 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 3.1.425 | cflinuxfs3 |
  | dotnet-sdk | 6.0.403 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.6.2 | cflinuxfs3 |
  | libunwind | 1.6.2 | cflinuxfs4 |
  | node | 18.12.1 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 6.0.x |
  | dotnet-aspnetcore | 6.0.x |
  | dotnet-sdk | 6.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: a4822cfc6111a2242b3d121db576724888e1b8de9d211cbf487e1aa332732d7b
  * Uncached buildpack SHA256: f3a7ec75e95a02f4a97100555a730481dd65b1f9887a3ca65d014be3552eebaf
          
garden-runc1.22.5
go-offline-buildpack1.10.2
1.10.2
  * Add go 1.19.4, remove go 1.19.3 for stack(s) cflinuxfs4, cflinuxfs3
  * Add go 1.18.9, remove go 1.18.8 for stack(s) cflinuxfs4, cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | dep | 0.5.4 | cflinuxfs3 |
  | dep | 0.5.4 | cflinuxfs4 |
  | glide | 0.13.3 | cflinuxfs3 |
  | glide | 0.13.3 | cflinuxfs4 |
  | go | 1.18.9 | cflinuxfs3 |
  | go | 1.18.9 | cflinuxfs4 |
  | go | 1.19.4 | cflinuxfs3 |
  | go | 1.19.4 | cflinuxfs4 |
  | godep | 80 | cflinuxfs3 |
  | godep | 80 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | go | 1.18.x |
  * Uncached buildpack SHA256: 2058855e3a1a3ba2d68bb0b44c6d82084b8b00b6354b4350ff1c15ff2823dcde
  * Uncached buildpack SHA256: d3ac53055023dc81ff128d134ad0010827f2f4311772dc981957cebd1fe72a05
          
1.10.1
  * Add go 1.19.3, remove go 1.19.2
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/183690473)
  * Add go 1.18.8, remove go 1.18.7
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/183690496)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | dep | 0.5.4 | cflinuxfs3 |
  | dep | 0.5.4 | cflinuxfs4 |
  | glide | 0.13.3 | cflinuxfs3 |
  | glide | 0.13.3 | cflinuxfs4 |
  | go | 1.18.8 | cflinuxfs3 |
  | go | 1.18.8 | cflinuxfs4 |
  | go | 1.19.3 | cflinuxfs3 |
  | go | 1.19.3 | cflinuxfs4 |
  | godep | 80 | cflinuxfs3 |
  | godep | 80 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | go | 1.18.x |
  * Uncached buildpack SHA256: 511f34140c55d72e37e49bf27deab0f92ffc53c163cb063c5d9ee76b8e5ca2f8
  * Uncached buildpack SHA256: b343fc1ff8f5f0af887b9fcbdb4851fcd100f50facde4d33337459db0c376eb8
          
haproxy9.8.0
java-offline-buildpack4.53
log-cache2.12.4
v2.12.4
  ## What's Changed
  * update golang release to 1.19.4
  * dependency bumps
  **Full Changelog**: https://github.com/cloudfoundry/log-cache-release/compare/v2.12.3...v2.12.4
          
loggregator106.7.5
v106.7.5
  ## What's Changed
  * Dependency bumps
  * Update golang to 1.19.4
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-release/compare/v106.7.4...v106.7.5
          
v106.7.4
  ## What's Changed
  * Traffic controller no longer waits for log-cache to be available by @mkocher in https://github.com/cloudfoundry/loggregator-release/pull/482
  **Full Changelog**: https://github.com/cloudfoundry/loggregator-release/compare/v106.7.3...v106.7.4
          
loggregator-agent6.5.5
v6.5.5
  - bump-golang to v0.114.0 for golang 1.19.4
  - Bump google.golang.org/grpc from 1.50.1 to 1.51.0 in /src
  - Bump github.com/valyala/fasthttp from 1.41.0 to 1.43.0 in /src
  - Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1 in /src
  - Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 in /src
  - Bump github.com/prometheus/client_model from 0.2.0 to 0.3.0 in /src
  - Bump golangci/golangci-lint-action from 3.3.0 to 3.3.1
          
mapfs1.2.12
metric-registrar1.1.22
v1.1.22
  - bump-golang to v0.114.0 for golang 1.19.4
          
v1.1.21
  Bump to go1.19.3
          
metrics-discovery3.2.4
v3.2.4
  - bump-golang to v0.114.0 for golang 1.19.4
  - Bump github.com/nats-io/nats.go from 1.19.0 to 1.21.0 in /src
  - Bump google.golang.org/grpc from 1.50.1 to 1.51.0 in /src
  - Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1 in /src
  - Bump github.com/prometheus/client_golang from 1.13.1 to 1.14.0 in /src
  - Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 in /src
  - Bump golangci/golangci-lint-action from 3.3.0 to 3.3.1
          
mysql-monitoring9.23.0
9.23.0
  Final release 9.23.0
  - Build with Go 1.19.4
          
nats50
nfs-volume5.0.20
nginx-offline-buildpack1.1.45
nodejs-offline-buildpack1.8.3
notifications62
notifications-ui40
php-offline-buildpack4.4.68
4.4.68
  * Add php 7.4.33, remove php 7.4.30
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183708118)
  * Add php 8.1.12, remove php 8.1.10 (#728)
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183661829)
  * Add php 8.0.25, remove php 8.0.23 (#725)
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183659835)
  * Add composer 2.4.4, remove composer 2.4.2
  for stack(s) cflinuxfs3
  * Add appdynamics 22.10.0-627, remove appdynamics 22.8.0-588 (#723)
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183626767)
  * Update default Nginx version (#721)
  * Add nginx 1.23.2, remove nginx 1.23.1 (#720)
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183579482)
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | CAAPM | 20.11.0 | cflinuxfs3 |  |
  | appdynamics | 22.10.0-627 | cflinuxfs3 |  |
  | composer | 2.4.4 | cflinuxfs3 |  |
  | httpd | 2.4.54 | cflinuxfs3 |  |
  | newrelic | 9.20.0.310 | cflinuxfs3 |  |
  | nginx | 1.22.0 | cflinuxfs3 |  |
  | nginx | 1.23.2 | cflinuxfs3 |  |
  | php | 7.4.32 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lua, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, protobuf, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xmlrpc, xsl, yaf, yaml, zip, zlib |
  | php | 7.4.33 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lua, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, protobuf, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xmlrpc, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.24 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.25 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.11 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.12 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 7.4.32 |
  | httpd | 2.4.54 |
  | newrelic | 9.20.0.310 |
  | nginx | 1.23.2 |
  | composer | 2.4.4 |
  | CAAPM | 20.11.0 |
  * Uncached buildpack SHA256: 5a4c0e4333e015a0a33464eedecc15a666efb56e958e257d90c5fafe690b07bf
          
push-apps-manager-release674.0.9
push-usage-service-release674.0.29
v674.0.29
  ## Dependencies
  * **app-usage-service:** Updated to `v9035e15`.
For more information, see [app-usage-service](https://github.com/pivotal-cf/app-usage-service). * **metric-registrar-cli:** Updated to `v1.3.7`.
For more information, see [metric-registrar-cli](https://github.com/pivotal-cf/metric-registrar-cli/releases/tag/1.3.7).
pxc0.49.0
python-offline-buildpack1.8.3
1.8.3
  * Add python 3.11.0
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/183753096)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | libffi | 3.2.1 | cflinuxfs3, cflinuxfs4 |
  | libmemcache | 1.0.18 | cflinuxfs3, cflinuxfs4 |
  | miniconda3-py39 | 4.12.0 | cflinuxfs3, cflinuxfs4 |
  | pip | 22.3.1 | cflinuxfs3, cflinuxfs4 |
  | pipenv | 2022.11.5 | cflinuxfs3 |
  | pipenv | 2022.11.5 | cflinuxfs4 |
  | python | 3.7.15 | cflinuxfs3 |
  | python | 3.7.15 | cflinuxfs4 |
  | python | 3.8.15 | cflinuxfs3 |
  | python | 3.8.15 | cflinuxfs4 |
  | python | 3.9.15 | cflinuxfs3 |
  | python | 3.9.15 | cflinuxfs4 |
  | python | 3.10.8 | cflinuxfs3 |
  | python | 3.10.8 | cflinuxfs4 |
  | python | 3.11.0 | cflinuxfs3 |
  | python | 3.11.0 | cflinuxfs4 |
  | setuptools | 65.5.1 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | python | 3.10.x |
  * Uncached buildpack SHA256: a0e3d5872626d07a988b7648d56028ddb67f31cc14b9a937bcab6bb8cbed4249
  * Uncached buildpack SHA256: d203d81f9e5f7f672c48e6c65aca697e25b692d96f4da7f3b85ded1c8768e298
          
r-offline-buildpack1.1.35
1.1.35
  * Add r 4.2.2, remove r 4.2.0
  for stack(s) cflinuxfs3
  with dependencies for stack cflinuxfs3: forecast 8.18, plumber 1.2.1, rserve 1.8.10, shiny 1.7.3
  (https://www.pivotaltracker.com/story/show/183673027)
  * Rebuild r 4.2.1
  for stack(s) cflinuxfs3
  with dependencies for stack cflinuxfs3: forecast 8.18, plumber 1.2.1, rserve 1.8.10, shiny 1.7.3
  (https://www.pivotaltracker.com/story/show/183633457)
  * Bumps go.mod go version to 1.19
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | r | 3.6.2 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 3.6.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.1 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.2 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  * Uncached buildpack SHA256: 9f8baeeefe3c1d2dc00f08203670810795541eba1b1904a2b2d59b58c0b44489
          
routing0.251.0
v0.251.0
  ## What's Changed
  - When the `router.ca_certs` property switched from a multi-line string of certs, to an array of certs, gorouter started failing to start up if any of the certs provided were invalid. Previously they were ignored. This has been reverted, so that any invalid CA certs are ignored during startup. Thanks @ameowlia!
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.250.0...v0.251.0
          
v0.250.0
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.249.0...v0.250.0
  ## ✨  Built with go 1.19.4
          
v0.249.0
  ## What's Changed
  * Switch to healthecker package in cf-networking-helpers by @mariash in https://github.com/cloudfoundry/routing-release/pull/302
  * Add healthchecker package to sync-package-specs file by @mariash in https://github.com/cloudfoundry/routing-release/pull/303
  * **Potential Breaking Change:** In preperation for mtls between gorouter and routing api, add gorouter backends ca to routing-api. Rendering these certs depends on routing-api consuming a link from gorouter. If you have multiple gorouter instance groups (for example in the case of isolation segments), you will need to rename bosh links to prevent the error "Multiple link providers found. For an example of link renaming, see [this ops file](https://github.com/cloudfoundry/cf-deployment/blob/main/operations/test/add-persistent-isolation-segment-router.yml#L74) by @reneighbor in https://github.com/cloudfoundry/routing-release/pull/300
  * Ensure gorouter-healthchecker doesn't restart gorouter forever on failure by @geofffranks in https://github.com/cloudfoundry/routing-release/pull/305
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.248.0...v0.249.0
          
v0.248.0
  ## What's Changed
  * Handle nil ca cert in ca_certs property list
          
v0.247.0
  ## What's Changed
  * gorouter template cleans `router.ca_certs` property to remove empty certificates
          
v0.246.0
  ## What's Changed
  * Update `router.ca_certs` property to accept and array of certificates instead of a string block. Thanks @peanball!
          
ruby-offline-buildpack1.8.60
1.8.60
  * Add bundler 2.3.25, remove bundler 2.3.24
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183700877)
  * Add rubygems 3.3.25, remove rubygems 3.3.24
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183700127)
  * Add node 18.12.1, remove node 16.18.0
  for stack(s) cflinuxfs3
  * Add jruby 9.3.9.0, remove jruby 9.3.8.0
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183621295)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bundler | 1.17.3 | cflinuxfs3 |
  | bundler | 2.3.25 | cflinuxfs3 |
  | jruby | 9.2.21.0 | cflinuxfs3 |
  | jruby | 9.3.9.0 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs3 |
  | openjdk1.8-latest | 1.8.0 | cflinuxfs3 |
  | ruby | 2.7.5 | cflinuxfs3 |
  | ruby | 2.7.6 | cflinuxfs3 |
  | ruby | 3.0.3 | cflinuxfs3 |
  | ruby | 3.0.4 | cflinuxfs3 |
  | ruby | 3.1.1 | cflinuxfs3 |
  | ruby | 3.1.2 | cflinuxfs3 |
  | rubygems | 3.3.25 | cflinuxfs3 |
  | yarn | 1.22.19 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | ruby | 2.7.x |
  * Uncached buildpack SHA256: c5fd8da054202aa26d01516cf2ccb4c04b0f13fcc665abe7b5db3557e2956225
          
silk3.16.0
smb-volume3.1.6
smoke-tests4.8.1
staticfile-offline-buildpack1.5.35
statsd-injector1.11.26
v1.11.26
  - bump-golang to v0.114.0 for golang 1.19.4
  - Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 in /src
  - Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1 in /src
  - Bump google.golang.org/grpc from 1.50.1 to 1.51.0 in /src
          
syslog11.8.6
v11.8.6
  Update golang to 1.19.4
  **Full Changelog**: https://github.com/cloudfoundry/syslog-release/compare/v11.8.5...v11.8.6
          
system-metrics-scraper3.3.4
v3.3.4
  - bump-golang to v0.114.0
  - Bump github.com/nats-io/nats.go from 1.20.0 to 1.21.0 in /src
  - Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1 in /src
  - Bump github.com/nats-io/nats.go from 1.19.1 to 1.20.0 in /src
  - Bump google.golang.org/grpc from 1.50.1 to 1.51.0 in /src
  - Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 in /src
          
v3.3.3
  ## What's Changed
  - Bump to go1.19.3
  - Bump dependencies
  **Full Changelog**: https://github.com/cloudfoundry/system-metrics-scraper-release/compare/v3.3.2...v3.3.3
          
v3.3.2
  ## What's Changed
  * limits amount of scraping at a time by @Benjamintf1 @mkocher  in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/55
  * bump golang to 1.19.2
  **Full Changelog**: https://github.com/cloudfoundry/system-metrics-scraper-release/compare/v3.3.1...v3.3.2
          
v3.3.1
  ## What's Changed
  * Bump github.com/onsi/ginkgo/v2 from 2.1.6 to 2.2.0 in /src by @dependabot in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/43
  * Bump github.com/hashicorp/go-hclog from 1.3.0 to 1.3.1 in /src by @dependabot in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/44
  * Bump github.com/nats-io/nats.go from 1.16.0 to 1.17.0 in /src by @dependabot in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/42
  * Bump golang to 1.19.1 by @Benjamintf1 in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/45
  ## New Contributors
  * @rroberts2222 made their first contribution in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/46
  **Full Changelog**: https://github.com/cloudfoundry/system-metrics-scraper-release/compare/v3.3.0...v3.3.1
          
v3.3.0
  ## What's Changed
  * Add ReadHeaderTimeouts to all servers by @ctlong in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/35
  * Bump dependencies by @dependabot in https://github.com/cloudfoundry/system-metrics-scraper-release/pull/36
  * Bump to golang 1.18.6
  **Full Changelog**: https://github.com/cloudfoundry/system-metrics-scraper-release/compare/v3.2.8...v3.3.0
          
uaa74.5.60
v74.5.60
  ## What's Changed
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.342 to 0.0.343 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/451
  * Various dependency bumps in server source code.
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v74.5.59...v74.5.60
          
v74.5.59
  ## What's Changed
  * Bump versions.tomcatVersion from 9.0.68 to 9.0.69 by @dependabot in https://github.com/cloudfoundry/uaa/pull/2098
  * Bump zeitwerk from 2.6.5 to 2.6.6 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/449
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.341 to 0.0.342 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/448
  * Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/447
  * Upgrade Newrelic to [version 7.11.1](https://github.com/cloudfoundry/uaa-release/commit/39d50dff8e0618f1a78d23d7973bf3d81bbca39d)
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v74.5.58...v74.5.59
          

v2.11.30

Release Date: 12/01/2022

  • Bump credhub to version 2.12.13
  • Bump pxc to version 0.48.0
  • Bump routing to version 0.245.0
  • Bump syslog to version 11.8.5
  • Bump uaa to version 74.5.58
Component Version Release Notes
ubuntu-xenial stemcell621.305
backup-and-restore-sdk1.18.57
binary-offline-buildpack1.0.47
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.27
bpm1.1.19
capi1.109.12
cf-autoscaling249.0.23
cf-cli1.41.0
cf-networking3.12.0
cflinuxfs30.332.0
credhub2.12.13
2.12.13
  ### Security Fixes
  - Bump various dependencies
  ## What's Changed
  * Improve pre-start script error log in https://github.com/pivotal/credhub-release/pull/72
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.12...2.12.13
          
diego2.66.3
dotnet-core-offline-buildpack2.4.2
garden-runc1.22.5
go-offline-buildpack1.10.0
haproxy9.8.0
java-offline-buildpack4.53
log-cache2.12.3
loggregator106.7.3
loggregator-agent6.5.4
mapfs1.2.12
metric-registrar1.1.20
metrics-discovery3.2.3
mysql-monitoring9.22.0
nats50
nfs-volume5.0.20
nginx-offline-buildpack1.1.45
nodejs-offline-buildpack1.8.3
notifications62
notifications-ui40
php-offline-buildpack4.4.67
push-apps-manager-release674.0.9
push-usage-service-release674.0.25
pxc0.48.0
python-offline-buildpack1.8.0
r-offline-buildpack1.1.34
routing0.245.0
v0.245.0
  ## What's Changed
  * Gorouter's pre-start script now reserves ports used by other CF components when it increases the number of ephemeral ports available via `/proc/sys/net/ipv4/ip_local_reserved_ports`. This resolves issues when components fail to start up during deploys/monit restarts due to accidental port collisions with outbound traffic from the VM. Thanks @ameowlia !
  * Routing-release no longer makes use of the deprecated uaa-go-client, and uses go-uaa instead
  * The `routing_utils/nats_client` helper utility now supports saving + loading gorouter's routing tables! Thanks @domdom82 !
  * Fixed a memory leak with `gorouter` that resulted in HTTP request objects being held open if a client canceled the connection before the App responded.  Thanks @geofffranks !
  * **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.244.0...v0.245.0
  ## ✨  Built with go 1.19.3
          
ruby-offline-buildpack1.8.59
silk3.14.0
smb-volume3.1.6
smoke-tests4.8.1
staticfile-offline-buildpack1.5.35
statsd-injector1.11.25
syslog11.8.5
v11.8.5
  * update dependencies
  * update golang to 1.19.3
  **Full Changelog**: https://github.com/cloudfoundry/syslog-release/compare/v11.8.4...v11.8.5
          
system-metrics-scraper3.2.8
uaa74.5.58
v74.5.58
  ## What's Changed
  * Bump zeitwerk from 2.6.1 to 2.6.5 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/445
  * Bump github.com/onsi/gomega from 1.23.0 to 1.24.0 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/444
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v74.5.57...v74.5.58
          

v2.11.29

Release Date: 11/10/2022

  • [Security Fix] Bump of nodejs-offline-buildpack to version 1.8.3 fully addresses CVE-2022-3602 and CVE-2022-3786 in OpenSSL 3.x; impacted versions of OpenSSL are otherwise not used in this version line of TAS.
  • [Feature] Add “Max request header size in kb” property to Networking tab to allow operators to specify a limit on the aggregate size of request headers. Requests over this limit receive a 431 status code.
  • [Bug Fix] Bump java_buildpack_offline to version 4.53 to fix the known issue relating to Spring Auto Reconfiguration. This is once again enabled by default. For more information, see java-offline-buildpack v4.52 Disallows Spring Auto Reconfiguration by Default below.
  • Bump backup-and-restore-sdk to version 1.18.57
  • Bump binary-offline-buildpack to version 1.0.47
  • Bump bosh-system-metrics-forwarder to version 0.0.27
  • Bump cf-autoscaling to version 249.0.23
  • Bump cflinuxfs3 to version 0.332.0
  • Bump credhub to version 2.12.12
  • Bump dotnet-core-offline-buildpack to version 2.4.2
  • Bump garden-runc to version 1.22.5
  • Bump go-offline-buildpack to version 1.10.0
  • Bump java-offline-buildpack to version 4.53
  • Bump log-cache to version 2.12.3
  • Bump loggregator to version 106.7.3
  • Bump loggregator-agent to version 6.5.4
  • Bump mapfs to version 1.2.12
  • Bump metric-registrar to version 1.1.20
  • Bump metrics-discovery to version 3.2.3
  • Bump nginx-offline-buildpack to version 1.1.45
  • Bump nodejs-offline-buildpack to version 1.8.3
  • Bump php-offline-buildpack to version 4.4.67
  • Bump r-offline-buildpack to version 1.1.34
  • Bump routing to version 0.244.0
  • Bump ruby-offline-buildpack to version 1.8.59
  • Bump silk to version 3.14.0
  • Bump smb-volume to version 3.1.6
  • Bump smoke-tests to version 4.8.1
  • Bump staticfile-offline-buildpack to version 1.5.35
  • Bump statsd-injector to version 1.11.25
  • Bump syslog to version 11.8.4
  • Bump uaa to version 74.5.57
Component Version Release Notes
ubuntu-xenial stemcell621.305
backup-and-restore-sdk1.18.57
v1.18.57
  ## Changes
  * Add a script that the autobumper task can use for ncurses (#739)
  * Prep for a gomega upgrade (#743)
  * Support mysql-8.0 on ubuntu-xenial stemcells (#738)
  * Update vendored package golang-1-linux (#745)
  * Wire in the ncurses autobumper from PR 739 (#740)
  * chore(dockerize-release): compile BOSH packages concurrently (#741)
  ## Dependencies
  * **gomega:** Updated to v1.23.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **api:** Updated to v0.101.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client). * **rspec:** Updated to v3.12.0.
For more information, see [rspec](https://github.com/rspec/rspec-metagem).
binary-offline-buildpack1.0.47
1.0.47
  * Update libbuildpack
  * Uncached buildpack SHA256: 4dd3ba6d0802797fd8a27f2624660aa877d7d6990c977e37f6391e6592376ca8
  * Uncached buildpack SHA256: f7cec524cf452026823432b755e3acdffc39a0f498272d0be8bddec00ec16d67
  * Uncached buildpack SHA256: c65dae7aaa1e4744fcac88d48f6aac3c85012cb6f42b671798a7a50300e6a333
          
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.27
bpm1.1.19
capi1.109.12
cf-autoscaling249.0.23
cf-cli1.41.0
cf-networking3.12.0
cflinuxfs30.332.0
credhub2.12.12
2.12.12
  ### Fixes
  - Handles Postgres queries when there are more than 65535 certificates that the user has permission to access.
  ### Security Fixes
  - Bump various dependencies
  **Full Changelog**: https://github.com/pivotal/credhub-release/compare/2.12.11...2.12.12
          
diego2.66.3
dotnet-core-offline-buildpack2.4.2
2.4.2
  * Add node 16.18.0, remove node 16.17.0 for stack(s) cflinuxfs3, cflinuxfs4
  * Add dotnet-sdk 3.1.424, remove dotnet-sdk 3.1.423 for stack(s) cflinuxfs3
  * Add dotnet-runtime 3.1.30, remove dotnet-runtime 3.1.29 for stack(s) cflinuxfs3
  * Add dotnet-aspnetcore 3.1.30, remove dotnet-aspnetcore 3.1.29 for stack(s) cflinuxfs3
  * Add dotnet-sdk 6.0.402, remove dotnet-sdk 6.0.401 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-runtime 6.0.10, remove dotnet-runtime 6.0.9 for stack(s) cflinuxfs4, cflinuxfs3
  * Add dotnet-aspnetcore 6.0.10, remove dotnet-aspnetcore 6.0.9 for stack(s) cflinuxfs4, cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bower | 1.8.14 | cflinuxfs3, cflinuxfs4 |
  | dotnet-aspnetcore | 3.1.30 | cflinuxfs3 |
  | dotnet-aspnetcore | 6.0.10 | cflinuxfs3, cflinuxfs4 |
  | dotnet-runtime | 3.1.30 | cflinuxfs3 |
  | dotnet-runtime | 6.0.10 | cflinuxfs3, cflinuxfs4 |
  | dotnet-sdk | 3.1.424 | cflinuxfs3 |
  | dotnet-sdk | 6.0.402 | cflinuxfs3, cflinuxfs4 |
  | libgdiplus | 6.1 | cflinuxfs3 |
  | libgdiplus | 6.1 | cflinuxfs4 |
  | libunwind | 1.6.2 | cflinuxfs3 |
  | libunwind | 1.6.2 | cflinuxfs4 |
  | node | 16.18.0 | cflinuxfs3 |
  | node | 16.18.0 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | dotnet-runtime | 6.0.x |
  | dotnet-aspnetcore | 6.0.x |
  | dotnet-sdk | 6.0.x |
  | bower | 1.8.x |
  * Uncached buildpack SHA256: 6d39ad86c292780ffb933b17b9ea2b3dbf8dfc8a4051e6b8eee4a287a48fad89
  * Uncached buildpack SHA256: 19e73da01d2aa75447f8e77486222601fe0d88c92f3661e9646151c9ba49e814
          
garden-runc1.22.5
go-offline-buildpack1.10.0
1.10.0
  * Add support for cflinuxfs4 stack
  * Add go 1.19.2, remove go 1.19 for stack(s) cflinuxfs4, cflinuxfs3
  * Update Go Buildpack dependencies to only keep 1 of each patch version (latest)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | dep | 0.5.4 | cflinuxfs3 |
  | dep | 0.5.4 | cflinuxfs4 |
  | glide | 0.13.3 | cflinuxfs3 |
  | glide | 0.13.3 | cflinuxfs4 |
  | go | 1.18.7 | cflinuxfs3 |
  | go | 1.18.7 | cflinuxfs4 |
  | go | 1.19.2 | cflinuxfs3 |
  | go | 1.19.2 | cflinuxfs4 |
  | godep | 80 | cflinuxfs3 |
  | godep | 80 | cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | go | 1.18.x |
  * Uncached buildpack SHA256: 35f3b6b61c19104db056610fea83cc19b3c04788aec3772be4c0c9d4a46fc50f
  * Uncached buildpack SHA256: 802aa0da6b655ad5f05ccbba452d609a77a61a7daf4d7a05c1ce493a90de8256
          
haproxy9.8.0
java-offline-buildpack4.53
4.53
  I'm pleased to announce the release of the java-buildpack, version 4.53. It primarily includes new OpenJDK versions, which are based on the Oracle Java Quarterly Updates for Oct 2022.
  -  This release also includes an enhancement to the Sealights framework, more field are supported for a User-Provided service (Thanks to @alonweiss-sl via #964)
  ## 🚨 Deprecation of Spring Cloud Connectors & Spring Auto Reconfiguration 🚨
  This release reverts the change made in v4.51 which disabled the Spring Auto Reconfiguration framework by default. From this release, it will be enabled by default as per all versions < 4.51. This is to provide users with more time to migrate to the recommended alternative library, `java-cfenv`. The default of disabled will now happen in a release after March 2023, and the library will be completely removed in a release after March 2024. As before, you may [post feedback/comments to this issue](https://github.com/cloudfoundry/java-buildpack/issues/951).
  For a more detailed look at the changes in 4.53, please take a look at the [commit log](https://github.com/cloudfoundry/java-buildpack/compare/v4.52...v4.53). The packaged version of the buildpack, suitable for use with create-buildpack and update-buildpack, can be found attached to this release.
  | Dependency | Version | CVEs | Release Notes |
  | ---------- | ------- | ---- | ------------- |
  | AppDynamics Agent | `22.9.1_34265` | | [Release Notes](https://docs.appdynamics.com/4.5.x/en/product-and-release-announcements/release-notes/language-agent-notes/java-agent-notes) |
  | Azure Application Insights Agent | `2.6.2` | | [Release Notes](https://github.com/Microsoft/ApplicationInsights-Java/releases) |
  | CA Introscope APM Framework | `22.8.0_48` | |  |
  | Client Certificate Mapper | `1.11.0_RELEASE` |Included inline above | Included inline above |
  | Container Security Provider | `1.19.0_RELEASE` |Included inline above | Included inline above |
  | Contrast Security Agent | `3.18.1` | | [Release Notes](https://docs.contrastsecurity.com/en/java-agent-release-notes.html) |
  | Datadog APM Javaagent | `0.114.0` | | [Release Notes](https://github.com/DataDog/dd-trace-java/releases) |
  | Elastic APM Agent | `1.34.1` | | [Release Notes](https://www.elastic.co/guide/en/apm/agent/java/current/release-notes.html) |
  | Gemalto Luna Security Provider | `7.4.0` | | [Release Notes](https://www.thalesdocs.com/gphsm/luna/7/docs/network/Content/CRN/Luna/CRN_Luna.htm) |
  | Geode Tomcat Session Store | `1.12.5` | |  |
  | Google Stackdriver Debugger | `2.32.0` | | [Release Notes](https://cloud.google.com/debugger/docs/release-notes) |
  | Google Stackdriver Profiler | `0.1.0` | | [Release Notes](https://cloud.google.com/profiler/docs/release-notes) |
  | Groovy | `2.5.19` | | [Release Notes](http://www.groovy-lang.org/releases.html) |
  | JaCoCo Agent | `0.8.8` | | [Release Notes](https://github.com/jacoco/jacoco/releases) |
  | Java Memory Assistant Agent | `0.5.0` | |  |
  | Java Memory Assistant Clean Up | `0.1.0` | |  |
  | JProfiler Profiler | `12.0.4` | | [ChangeLog](https://www.ej-technologies.com/download/jprofiler/changelog.html) |
  | JRebel Agent | `2022.4.1` | | [ChangeLog](https://www.jrebel.com/products/jrebel/changelog) |
  | jvmkill Agent | `1.17.0_RELEASE` |Included inline above | Included inline above |
  | MariaDB JDBC Driver | `2.7.2` | | [Release Notes](https://mariadb.com/kb/en/mariadb-connector-j-274-release-notes/) |
  | Memory Calculator | `3.13.0_RELEASE` |Included inline above | Included inline above |
  | Metric Writer | `3.5.0_RELEASE` |Included inline above | Included inline above |
  | New Relic Agent | `7.11.0` | | [Release Notes](https://docs.newrelic.com/docs/release-notes/agent-release-notes/java-release-notes/) |
  | OpenJDK JRE 11 | `11.0.17_7` |[Risk Matrix](https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixJAVA) | [Release Notes](https://bell-sw.com/pages/liberica-release-notes-11.0.17/) |
  | OpenJDK JRE 17 | `17.0.5_8` |[Risk Matrix](https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixJAVA) | [Release Notes](https://bell-sw.com/pages/liberica-release-notes-17.0.5/) |
  | OpenJDK JRE 8 | `1.8.0_352` |[Risk Matrix](https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixJAVA) | [Release Notes](https://bell-sw.com/pages/liberica-release-notes-8u352/) |
  | PostgreSQL JDBC Driver | `42.5.0` | | [ChangeLog](https://jdbc.postgresql.org/documentation/changelog.html) |
  | Redis Session Store | `1.3.6_RELEASE` |Included inline above | Included inline above |
  | Riverbed Appinternals Agent | `11.8.5_BL527` | |  |
  | SeaLights Agent | `4.0.2145` | |  |
  | SkyWalking | `8.9.0` | | [ChangeLog](https://github.com/apache/skywalking/tree/master/changes) |
  | Spring Auto-reconfiguration | `2.12.0_RELEASE` |Included inline above | Included inline above |
  | Spring Boot CLI | `2.7.5` | |  |
  | Spring Boot Container Customizer | `2.6.0_RELEASE` |Included inline above | Included inline above |
  | Tomcat | `9.0.68` |[Security](https://tomcat.apache.org/security-9.html) | [ChangeLog](https://tomcat.apache.org/tomcat-9.0-doc/changelog.html) |
  | Tomcat Access Logging Support | `3.3.0_RELEASE` |Included inline above | Included inline above |
  | Tomcat Lifecycle Support | `3.3.0_RELEASE` |Included inline above | Included inline above |
  | Tomcat Logging Support | `3.3.0_RELEASE` |Included inline above | Included inline above |
  | YourKit Profiler | `2022.9.171` | | [Release Notes](https://www.yourkit.com/download/yjp_2022_3_builds.jsp) |
          
log-cache2.12.3
loggregator106.7.3
loggregator-agent6.5.4
mapfs1.2.12
v1.2.12
  ## Changes
  * Replace `go get` with `go install` (#23)
  * Update vendored package golang-1-linux (#26)
  * Update vendored package golang-1-linux (#27)
  ## Dependencies
  * **mapfs:** Updated to v`27f8711`.
For more information, see [mapfs](https://github.com/cloudfoundry/mapfs).
metric-registrar1.1.20
metrics-discovery3.2.3
mysql-monitoring9.22.0
nats50
nfs-volume5.0.20
nginx-offline-buildpack1.1.45
1.1.45
  * Add nginx 1.23.2, remove nginx 1.23.1 for stack(s) cflinuxfs3
  * Add nginx 1.22.1, remove nginx 1.22.0 for stack(s) cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.22.1 | cflinuxfs3 |
  | nginx | 1.23.2 | cflinuxfs3 |
  | openresty | 1.13.6.2 | cflinuxfs3 |
  | openresty | 1.15.8.3 | cflinuxfs3 |
  | openresty | 1.17.8.2 | cflinuxfs3 |
  | openresty | 1.19.9.1 | cflinuxfs3 |
  | openresty | 1.21.4.1 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.23.x |
  * Uncached buildpack SHA256: 59553ae241975530230e065f996a0434b7a85df061b3d79ec8f3073f3701c720
          
1.1.44
  * Update libbuildpack
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.22.0 | cflinuxfs3 |
  | nginx | 1.23.1 | cflinuxfs3 |
  | openresty | 1.13.6.2 | cflinuxfs3 |
  | openresty | 1.15.8.3 | cflinuxfs3 |
  | openresty | 1.17.8.2 | cflinuxfs3 |
  | openresty | 1.19.9.1 | cflinuxfs3 |
  | openresty | 1.21.4.1 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.23.x |
  * Uncached buildpack SHA256: 29cc1a2aea42cfb654f31ee6e0c7bdb14521679fab127b26fa396b055b9c8033
          
nodejs-offline-buildpack1.8.3
1.8.3
  * Add node 18.12.1, remove node 18.9.0
  for stack(s) cflinuxfs3, cflinuxfs4
  * Add node 14.21.1, remove node 14.20.0
  for stack(s) cflinuxfs3, cflinuxfs4
  * Add node 16.18.1, remove node 16.17.1
  for stack(s) cflinuxfs3, cflinuxfs4
  (https://www.pivotaltracker.com/story/show/183724805)
  * Bumps go.mod go version to 1.19
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | node | 14.20.1 | cflinuxfs3 |
  | node | 14.20.1 | cflinuxfs4 |
  | node | 14.21.1 | cflinuxfs3 |
  | node | 14.21.1 | cflinuxfs4 |
  | node | 16.18.0 | cflinuxfs3 |
  | node | 16.18.0 | cflinuxfs4 |
  | node | 16.18.1 | cflinuxfs3 |
  | node | 16.18.1 | cflinuxfs4 |
  | node | 18.10.0 | cflinuxfs3 |
  | node | 18.10.0 | cflinuxfs4 |
  | node | 18.12.1 | cflinuxfs3 |
  | node | 18.12.1 | cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | node | 16.x |
  * Uncached buildpack SHA256: 2891efd8d931f6e7c10253bc116cb90544a086a47966532eee13af60414f1ede
  * Uncached buildpack SHA256: cf64d739fafe8a94abff4573cccabf1873e96b923c6f744de14c2e5e106f5903
          
1.8.2
  * Add node 16.18.0, remove node 16.17.0 for stack(s) cflinuxfs4, cflinuxfs3
  * Adding error message when npm install fails (#522)
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | node | 14.20.0 | cflinuxfs3 |
  | node | 14.20.0 | cflinuxfs4 |
  | node | 14.20.1 | cflinuxfs3 |
  | node | 14.20.1 | cflinuxfs4 |
  | node | 16.17.1 | cflinuxfs3 |
  | node | 16.17.1 | cflinuxfs4 |
  | node | 16.18.0 | cflinuxfs4 |
  | node | 16.18.0 | cflinuxfs3 |
  | node | 18.9.0 | cflinuxfs3 |
  | node | 18.9.0 | cflinuxfs4 |
  | node | 18.10.0 | cflinuxfs3 |
  | node | 18.10.0 | cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | node | 16.x |
  * Uncached buildpack SHA256: fa3ba16a26ff03da9312e4717bbcd4640a8bf1d1d275193980075209a2c4cd62
  * Uncached buildpack SHA256: 65afb62e378e5d9ba02d1ca6184aca3fcc901d772464e4e254594b6ee7342136
          
1.8.0
  * Add support for cflinuxfs4 stack
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | node | 14.19.3 | cflinuxfs3 |
  | node | 14.20.0 | cflinuxfs3 |
  | node | 14.20.0 | cflinuxfs4 |
  | node | 16.16.0 | cflinuxfs3 |
  | node | 16.17.0 | cflinuxfs3 |
  | node | 16.17.0 | cflinuxfs4 |
  | node | 18.7.0 | cflinuxfs3 |
  | node | 18.9.0 | cflinuxfs3 |
  | node | 18.9.0 | cflinuxfs4 |
  | yarn | 1.22.19 | cflinuxfs3, cflinuxfs4 |
  Default binary versions:
  | name | version |
  |-|-|
  | node | 16.x |
  * Uncached buildpack SHA256: 9c916f1475c3ebfa8cb1531a31a6b70829b29e36380d3496dd105c2d8109c5de
  * Uncached buildpack SHA256: 7b59d44895ad526dd3f87bf176a5fd7a08f55f0cf4f91dcb8b2c1fa474292385
          
notifications62
notifications-ui40
php-offline-buildpack4.4.67
4.4.67
  * Add php 7.4.32, remove php 7.4.29 for stack(s) cflinuxfs3
  * Add php 8.1.11, remove php 8.1.9 for stack(s) cflinuxfs3
  * Add php 8.0.24, remove php 8.0.22 for stack(s) cflinuxfs3
  * Add composer 2.4.2, remove composer 2.4.1 for stack(s) cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | CAAPM | 20.11.0 | cflinuxfs3 |  |
  | appdynamics | 22.8.0-588 | cflinuxfs3 |  |
  | composer | 2.4.2 | cflinuxfs3 |  |
  | httpd | 2.4.54 | cflinuxfs3 |  |
  | newrelic | 9.20.0.310 | cflinuxfs3 |  |
  | nginx | 1.22.0 | cflinuxfs3 |  |
  | nginx | 1.23.1 | cflinuxfs3 |  |
  | php | 7.4.30 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lua, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, protobuf, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xmlrpc, xsl, yaf, yaml, zip, zlib |
  | php | 7.4.32 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lua, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, protobuf, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xmlrpc, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.23 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.24 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.10 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.11 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 7.4.32 |
  | httpd | 2.4.54 |
  | newrelic | 9.20.0.310 |
  | nginx | 1.23.1 |
  | composer | 2.4.2 |
  | CAAPM | 20.11.0 |
  * Uncached buildpack SHA256: 637cbc9daa642ce3d3f42377ea2d0555d3db0959e9fedd81fa1a2fc0e2097000
          
4.4.66
  * Add php 8.0.23, remove php 8.0.21
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183155275)
  * Add php 8.1.10, remove php 8.1.8
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183154369)
  * Add composer 2.4.1, remove composer 2.3.10
  for stack(s) cflinuxfs3
  (https://www.pivotaltracker.com/story/show/183038970)
  (https://www.pivotaltracker.com/story/show/183001218)
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | CAAPM | 20.11.0 | cflinuxfs3 |  |
  | appdynamics | 22.8.0-588 | cflinuxfs3 |  |
  | composer | 2.4.1 | cflinuxfs3 |  |
  | httpd | 2.4.54 | cflinuxfs3 |  |
  | newrelic | 9.20.0.310 | cflinuxfs3 |  |
  | nginx | 1.22.0 | cflinuxfs3 |  |
  | nginx | 1.23.1 | cflinuxfs3 |  |
  | php | 7.4.29 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lua, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, protobuf, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xmlrpc, xsl, yaf, yaml, zip, zlib |
  | php | 7.4.30 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ioncube, ldap, lua, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phalcon, phpiredis, protobuf, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, stomp, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xmlrpc, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.22 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.0.23 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pdo_sqlsrv, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, sqlsrv, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.9 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  | php | 8.1.10 | cflinuxfs3 | amqp, apcu, bz2, curl, dba, enchant, exif, fileinfo, ftp, gd, gettext, gmp, igbinary, imagick, imap, ldap, lzf, mailparse, maxminddb, mbstring, memcached, mongodb, msgpack, mysqli, oauth, opcache, openssl, pcntl, pdo, pdo_firebird, pdo_mysql, pdo_odbc, pdo_pgsql, pdo_sqlite, pgsql, phpiredis, pspell, psr, rdkafka, readline, redis, shmop, snmp, soap, sockets, sodium, solr, ssh2, sysvmsg, sysvsem, sysvshm, tideways_xhprof, tidy, xdebug, xsl, yaf, yaml, zip, zlib |
  Default binary versions:
  | name | version |
  |-|-|
  | php | 7.4.29 |
  | httpd | 2.4.54 |
  | newrelic | 9.20.0.310 |
  | nginx | 1.23.1 |
  | composer | 2.4.1 |
  | CAAPM | 20.11.0 |
  * Uncached buildpack SHA256: b0ab9a1a5c80a4a2cb7527fcdae9d9a34d2fc44ee599d9bc0019b4dd68b99517
          
push-apps-manager-release674.0.9
push-usage-service-release674.0.25
pxc0.47.0
python-offline-buildpack1.8.0
r-offline-buildpack1.1.34
1.1.34
  * Update r 4.2.1 dependencies for stack(s) cflinuxfs3:
  * forecast from 8.17.0 to 8.18.0
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | r | 3.6.2 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 3.6.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.0 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.1 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  * Uncached buildpack SHA256: f93a3cbfb21e159a96c84c61dec8911ea7c4337fe664da2dcc70ca5efe7ed13d
          
1.1.33
  * Rebuild r 4.2.1
  for stack(s) cflinuxfs3
  with dependencies for stack cflinuxfs3: forecast 8.17.0, plumber 1.2.1, rserve 1.8.10, shiny 1.7.2
  (https://www.pivotaltracker.com/story/show/183198485)
  Packaged binaries:
  | name | version | cf_stacks | modules |
  |-|-|-|-|
  | r | 3.6.2 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 3.6.3 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.0 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  | r | 4.2.1 | cflinuxfs3 | forecast, plumber, rserve, shiny |
  * Uncached buildpack SHA256: 8f92b5009b8208dbe146bb5085c6e6e0dd376b19d1d4eb3e2cef73dfa64eb039
          
routing0.244.0
v0.244.0
  ## What's Changed
  * Emit access logs for 431 responses to Loggegator [gorouter PR #331](https://github.com/cloudfoundry/gorouter/pull/331). Thanks @dsabeti !
  * Always suspend pruning when nats is down https://github.com/cloudfoundry/routing-release/pull/287. Thanks @ameowlia !
  * **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.243.0...v0.244.0
  ## ✨  Built with go 1.19.2
          
v0.243.0
  🎉 Bumped to go1.19.2
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.242.0...v0.243.0
          
v0.242.0
  ## What's Changed
  -  `tcp_router` is now more verbose when running `haproxy_reloader` to assist in diagnosting failed reloads. Thanks @geofffranks! 🎉 ([PR 9](https://github.com/cloudfoundry/cf-tcp-router/pull/9))
  - `gorouter` will now truncate access logs that exceed loggregator + UDP packet limits, so that we no longer drop access log messages sent to the firehose. Thanks @ameowlia @ebroberson! 😻 ([PR 328](https://github.com/cloudfoundry/gorouter/pull/328) and [PR 329](https://github.com/cloudfoundry/gorouter/pull/329))
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.241.0...v0.242.0
  ## ✨  Built with go 1.18
  * despite what the docs/go.version says
  * because the go 1.18 package is present
          
v0.241.0
  🎉 ~~Bumped to go1.19.1~~
  * Still using go 1.18
  * despite what the docs/go.version says
  * because the go 1.18 package is present
  * @plowin submitted [gorouter PR 327](https://github.com/cloudfoundry/gorouter/pull/327) to adjust endpoint-not-unregistered log-level to 'info'
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.240.0...v0.241.0
          
v0.240.0
  ## What's Changed
  * @geofffranks and @ameowlia added property `router.max_header_bytes` to the gorouter job.
  * This value controls the maximum number of bytes the gorouter will read parsing the request header's keys and values, including the request line.
  * It does not limit the size of the request body.
  * An additional padding of 4096 bytes is added to this value by go.
  * Requests with larger headers will result in a 431 status code.
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.239.0...v0.240.0
  ## Manifest Property Changes
  | Job | Property | 0.237.0 | 0.238.0 |
  | --- | --- | --- | --- |
  | `gorouter` | `router.max_header_bytes` | didn't exist | 1048576 (1MB) |
  ## ✨  Built with go 1.18.6
          
ruby-offline-buildpack1.8.59
1.8.59
  * Add bundler 2.3.24, remove bundler 2.3.22 for stack(s) cflinuxfs3
  * Add jruby 9.3.8.0, remove jruby 9.3.7.0 for stack(s) cflinuxfs3
  * Add node 16.18.0, remove node 16.16.0 for stack(s) cflinuxfs3
  * Add rubygems 3.3.24, remove rubygems 3.3.22 for stack(s) cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | bundler | 1.17.3 | cflinuxfs3 |
  | bundler | 2.3.24 | cflinuxfs3 |
  | jruby | 9.2.21.0 | cflinuxfs3 |
  | jruby | 9.3.8.0 | cflinuxfs3 |
  | node | 16.18.0 | cflinuxfs3 |
  | openjdk1.8-latest | 1.8.0 | cflinuxfs3 |
  | ruby | 2.7.5 | cflinuxfs3 |
  | ruby | 2.7.6 | cflinuxfs3 |
  | ruby | 3.0.3 | cflinuxfs3 |
  | ruby | 3.0.4 | cflinuxfs3 |
  | ruby | 3.1.1 | cflinuxfs3 |
  | ruby | 3.1.2 | cflinuxfs3 |
  | rubygems | 3.3.24 | cflinuxfs3 |
  | yarn | 1.22.19 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | ruby | 2.7.x |
  * Uncached buildpack SHA256: 30c6e52afd35ea30bc2fdf6a105dda864928bb7e8a68b7b2341e89bc9cb83e3c
          
silk3.14.0
smb-volume3.1.6
v3.1.6
  ## Changes
  * Update vendored package golang-1-linux (#67)
  * Update vendored package golang-1-linux (#70)
  ## Dependencies
  * **bosh-template:** Updated to v2.3.0.
For more information, see [bosh-template](https://github.com/cloudfoundry/bosh). * **smbbroker:** Updated to v`89a0251`.
For more information, see [smbbroker](https://github.com/cloudfoundry/smbbroker). * **smbdriver:** Updated to v`68ff9d8`.
For more information, see [smbdriver](https://github.com/cloudfoundry/smbdriver).
smoke-tests4.8.1
4.8.1
  Create bosh final release 4.8.1
          
staticfile-offline-buildpack1.5.35
1.5.35
  * Add nginx 1.23.2, remove nginx 1.23.1 for stack(s) cflinuxfs3
  * Add nginx 1.22.1, remove nginx 1.22.0 for stack(s) cflinuxfs3
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.22.1 | cflinuxfs3 |
  | nginx | 1.23.2 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.23.x |
  * Uncached buildpack SHA256: db23d06c3be3ac43c9dca5bd988ee1b6097d5896afa5309d684b446430ae65ab
          
1.5.34
  * Update libbuildpack
  Packaged binaries:
  | name | version | cf_stacks |
  |-|-|-|
  | nginx | 1.22.0 | cflinuxfs3 |
  | nginx | 1.23.1 | cflinuxfs3 |
  Default binary versions:
  | name | version |
  |-|-|
  | nginx | 1.23.x |
  * Uncached buildpack SHA256: 89420cdafed63dc8dae495c6fce445fb0c5262ad6d149a90cd0e32aa58d3c408
          
statsd-injector1.11.25
syslog11.8.4
system-metrics-scraper3.2.8
uaa74.5.57
v74.5.57
  ### Dependency bumps
  * [Upgrade Newrelic to version 7.11.0](https://github.com/cloudfoundry/uaa-release/commit/50df349712142ab93b937dd52a5041c58a772f65)
  * Bump rspec-mocks from 3.11.1 to 3.11.2 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/436
  * Bump rspec from 3.11.0 to 3.12.0 by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/437
  * Bump github.com/onsi/gomega from 1.22.1 to 1.23.0 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/438
  * Bump github.com/cloudfoundry/bosh-utils from 0.0.340 to 0.0.341 in /src/acceptance_tests by @dependabot in https://github.com/cloudfoundry/uaa-release/pull/439
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v74.5.56...v74.5.57
          
v74.5.56
  ### Dependency bumps
  - Various dependency bumps
  - Replace jaxb implementation library from Sun's to Glassfish's
          

v2.11.28

Release Date: 10/26/2022

  • [Known Issue] java-offline-buildpack v4.52 makes TAS for VMs incompatible with some service tiles and prevents apps that use java-offline-buildpack v4.52 from binding to service instances. For more information, see java-offline-buildpack v4.52 Disallows Spring Auto Reconfiguration by Default below.
  • Bump backup-and-restore-sdk to version 1.18.55
  • Bump binary-offline-buildpack to version 1.0.46
  • Bump bosh-system-metrics-forwarder to version 0.0.26
  • Bump cf-autoscaling to version 249.0.21
  • Bump credhub to version 2.12.11
  • Bump dotnet-core-offline-buildpack to version 2.4.1
  • Bump go-offline-buildpack to version 1.9.50
  • Bump java-offline-buildpack to version 4.52
  • Bump loggregator to version 106.7.2
  • Bump metric-registrar to version 1.1.19
  • Bump mysql-monitoring to version 9.22.0
  • Bump nfs-volume to version 5.0.20
  • Bump nginx-offline-buildpack to version 1.1.43
  • Bump pxc to version 0.47.0
  • Bump python-offline-buildpack to version 1.8.0
  • Bump ruby-offline-buildpack to version 1.8.58
  • Bump smoke-tests to version 4.8.0
  • Bump uaa to version 74.5.55
Component Version Release Notes
ubuntu-xenial stemcell621.296
backup-and-restore-sdk1.18.55
v1.18.55
  ## Changes
  * Bump mysql from 5.7.38 to 5.7.39 (#722)
  ## Dependencies
  * **gomega:** Updated to v1.22.1.
For more information, see [gomega](https://github.com/onsi/gomega).
v1.18.54
  ## Changes
  * Add a unit tests workflow for sdk-release-tests (#714)
  * Add airgap tests (#704)
  * Bump mariadb from 10.6.9 to 10.6.10 (#711)
  * Update vendored package golang-1-linux (#718)
  ## Dependencies
  * **storage:** Updated to v1.27.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **api:** Updated to v0.98.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.18.53
  ## Changes
  * Update vendored package golang-1-linux (#677)
  ## Dependencies
  * **bosh-backup-and-restore:** Updated to v1.9.38.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **pq:** Updated to v1.10.7.
For more information, see [pq](https://github.com/lib/pq). * **api:** Updated to v0.96.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.18.52
  ## Changes
  * Add final release 1.18.51 [ci skip]
  * Make the mysql8 packaging script work in airgapped environments (#703)
          
v1.18.51
  ## Changes
  * Add final release 1.18.50 [ci skip]
  * Feature/mysql 8 support (#702)
  ## Dependencies
  * **storage:** Updated to v1.26.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **gomega:** Updated to v1.20.2.
For more information, see [gomega](https://github.com/onsi/gomega).
binary-offline-buildpack1.0.46
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.26
bpm1.1.19
capi1.109.12
cf-autoscaling249.0.21
cf-cli1.41.0
cf-networking3.12.0
cflinuxfs30.319.0
credhub2.12.11
2.12.11
  ### Security Fixes
  - Bump various dependencies
          
2.12.10
  ### Security Fixes
  - Bump various dependencies
  - Bump Spring Boot from 2.7.3 to 2.7.4
          
2.12.9
  ### Security Fixes
  - Bump various dependencies
  ### Enhancements
  - Improve Find a Credential by Name-Like query performance
          
diego2.66.3
dotnet-core-offline-buildpack2.4.1
garden-runc1.22.0
go-offline-buildpack1.9.50
haproxy9.8.0
java-offline-buildpack4.52
log-cache2.11.13
loggregator106.7.2
loggregator-agent6.4.4
mapfs1.2.11
metric-registrar1.1.19
metrics-discovery3.1.2
mysql-monitoring9.22.0
9.22.0
  Final release 9.22.0
  - Build w/ go 1.19.2
          
nats50
nfs-volume5.0.20
v5.0.20
  ## Changes
  * Use the newer golang package, not the older one (#239)
  ## Dependencies
  * **mapfs-release:** Updated to v`db176d8`.
For more information, see [mapfs-release](https://github.com/cloudfoundry/mapfs-release).
v5.0.19
  ## Changes
  * Update vendored package golang-1-linux (#222)
  ## Dependencies
  * **gomega:** Updated to v1.22.1.
For more information, see [gomega](https://github.com/onsi/gomega). * **mapfs-release:** Updated to v`a43c92f`.
For more information, see [mapfs-release](https://github.com/cloudfoundry/mapfs-release).
nginx-offline-buildpack1.1.43
nodejs-offline-buildpack1.7.73
notifications62
notifications-ui40
php-offline-buildpack4.4.65
push-apps-manager-release674.0.9
push-usage-service-release674.0.25
pxc0.47.0
python-offline-buildpack1.8.0
r-offline-buildpack1.1.32
routing0.239.0
ruby-offline-buildpack1.8.58
silk3.12.0
smb-volume3.1.5
smoke-tests4.8.0
4.8.0
  Create bosh final release 4.8.0
          
4.7.0
  Create bosh final release 4.7.0
          
staticfile-offline-buildpack1.5.33
statsd-injector1.11.21
syslog11.8.2
system-metrics-scraper3.2.8
uaa74.5.55
v74.5.55
  ### Fixes
  - Fixes an issue where UAA server might crash (error: `java.io.IOException: Too many open files`) because the hung connections to an external LDAP server are not cleaned up.
  ### Dependency bumps
  - Various dependency bumps
  **Full Changelog**: https://github.com/cloudfoundry/uaa-release/compare/v74.5.54...v74.5.55
          
v74.5.54
  ### Dependency bumps
  - Bump Tomcat to version 9.0.68
          
v74.5.53
  ### Dependency bumps
  - Various dependency bumps
          
v74.5.52
  ### Dependency bumps
  - Various dependency bumps, including some dependencies with security fixes.
          

v2.11.27

Release Date: 10/12/2022

  • [Feature] Allow operators to specify isolation segments that should be routable through TAS routers
  • [Bug Fix] Fixes UAA’s compatibility with Amazon Aurora MySQL
  • Bump capi to version 1.109.12
  • Bump cf-cli to version 1.41.0
  • Bump mysql-monitoring to version 9.21.0
  • Bump push-usage-service-release to version 674.0.25
  • Bump routing to version 0.239.0
  • Bump uaa to version 74.5.49
Component Version Release Notes
ubuntu-xenial stemcell621.265
backup-and-restore-sdk1.18.50
binary-offline-buildpack1.0.45
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.24
bpm1.1.19
capi1.109.12
cf-autoscaling249.0.17
cf-cli1.41.0
v1.41.0
  ### This release contains the following versions of the CF CLI
  | Major version  | Prior version | Current version |
  | ------------- | ------------- | ------------- |
  | **v8** | **8.4.0** | [8.5.0](https://github.com/cloudfoundry/cli/releases/tag/v8.5.0) |
  | **v7**  | **7.5.0** | [7.5.0](https://github.com/cloudfoundry/cli/releases/tag/v7.5.0) |
  | **v6**  | **6.53.0**  | **[6.53.0](https://github.com/cloudfoundry/cli/releases/tag/v6.53.0)** |
          
v1.39.0
  ### This release contains the following versions of the CF CLI
  | Major version  | Prior version | Current version |
  | ------------- | ------------- | ------------- |
  | **v8** | **8.3.0** | [8.4.0](https://github.com/cloudfoundry/cli/releases/tag/v8.4.0) |
  |  **v7**  | **7.4.0** | [7.5.0](https://github.com/cloudfoundry/cli/releases/tag/v7.5.0) |
  | **v6**  | **6.53.0**  | **[6.53.0](https://github.com/cloudfoundry/cli/releases/tag/v6.53.0)** |
          
cf-networking3.12.0
cflinuxfs30.319.0
credhub2.12.8
diego2.66.3
dotnet-core-offline-buildpack2.4.0
garden-runc1.22.0
go-offline-buildpack1.9.49
haproxy9.8.0
java-offline-buildpack4.50
log-cache2.11.13
loggregator106.6.9
loggregator-agent6.4.4
mapfs1.2.11
metric-registrar1.1.16
metrics-discovery3.1.2
mysql-monitoring9.21.0
v9.21.0
  - Build with Go 1.19.1
          
v9.19.0
  **New Features**
  The `mysql-metrics` job now supports a `mysql-metrics.port` option to specify the MySQL port when scraping database metrics. This port defaults to 3306 but may be configured to a non-standard port.
          
nats50
nfs-volume5.0.18
nginx-offline-buildpack1.1.42
nodejs-offline-buildpack1.7.73
notifications62
notifications-ui40
php-offline-buildpack4.4.65
push-apps-manager-release674.0.9
push-usage-service-release674.0.25
v674.0.25
  ## Changes
  * Bump src/app-usage-service from [`99b5b7a`](https://github.com/pivotal-cf/app-usage-service/commit/99b5b7aa4e32a14293418f5b5237e54ec74ee07d) to [`aad81af`](https://github.com/pivotal-cf/app-usage-service/commit/aad81af5ada02ff2795e5ac69bba94e7591752ab)
  * Remove dependabot configs for legacy support branches (https://github.com/pivotal-cf/usage-service-release/pull/252)
          
pxc0.44.0
python-offline-buildpack1.7.57
r-offline-buildpack1.1.32
routing0.239.0
v0.239.0
  ## What's Changed
  - Bumped Golang to 1.18.6 to mitigate [CVE-2022-27664](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27664)
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.238.0...v0.239.0
  ## ✨  Built with go 1.18.6
          
v0.238.0
  ## What's Changed
  - Gorouter once again supports hairpinning for route-service requests, for more information, see [the proposed update.](https://github.com/cloudfoundry/routing-release/issues/281) `router.route_services_internal_lookup_allowlist` can be used to control which domains of route services can be hairpinned. Thanks @peanball!!
  - Gorouter has a new websocket-specific dial timeout (`websocket_dial_timeout`), configurable separately from the default endpoint dial timeout. Thanks @peanball  for this one too!!
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.237.0...v0.238.0
  ## Manifest Property Changes
  | Job | Property | 0.237.0 | 0.238.0 |
  | --- | --- | --- | --- |
  | `gorouter` | `websocket_dial_timeout_in_seconds` | didn't exist | Defaults to `endpoint_dial_timeout_in_seconds`'s value |
  | `gorouter` | `router.route_services_internal_lookup_allowlist` | didn't exist | No internal lookups allowed for route services. |
  ## ✨  Built with go 1.18.5
          
v0.237.0
  ## What's Changed
  - ⚠️ Bump to golang 1.18 🎉
  **Breaking Changes:** The routing components are now more strict about the protocols used in TLS communications, causing integrations with systems using older, insecure protocols to fail. These components have been updated to Go 1.18, and will no longer support TLS 1.0 and 1.1 connections or certificates with a SHA-1 checksum. This is most likely to affect connections with external databases.
  Please see this golang 1.18 release notes [section](https://tip.golang.org/doc/go1.18#tls10) for more information about the golang 1.18 change.
  ###
  * Update uaa-go-client; by @joergdw in https://github.com/cloudfoundry/routing-release/pull/277
  * updated spec files to match packages by @ebroberson in https://github.com/cloudfoundry/routing-release/pull/282
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/v0.236.0...v0.237.0
  ## New Contributors
  * @joergdw made their first contribution in https://github.com/cloudfoundry/routing-release/pull/277
  * @ebroberson made their first contribution in https://github.com/cloudfoundry/routing-release/pull/282
  ## ✨  Built with go 1.18.4
          
ruby-offline-buildpack1.8.57
silk3.12.0
smb-volume3.1.5
smoke-tests4.5.0
staticfile-offline-buildpack1.5.33
statsd-injector1.11.21
syslog11.8.2
system-metrics-scraper3.2.8
uaa74.5.49
v74.5.49
  ### Features
  - Add `uaa.database.additionalParameters` to set additional parameters in the database connection url. Operators can enable compatibility with Amazon Aurora for MySQL by adding this config:
  ```
  uaa:
  database:
  additionalParameters:
  usePipelineAuth: "false"
  useBatchMultiSend: "false"
  ```
  ### Dependency bumps
  - Various dependency bumps.
          

v2.11.26

Release Date: 09/20/2022

  • [Security Fix] Bump Cloud Controller Ruby version to 2.7.6 and Go to 1.18.5
  • [Security Fix] Bump golang to 1.17.12 in routing release
  • [Feature] As of TAS for VMs v2.13.9, you can jump upgrade to TAS for VMs v2.13 from TAS for VMs v2.11. For more information, see the TAS for VMs v2.13 documentation.
  • [Feature] Enables TLS for all internal MySQL galera and monitoring components
  • [Feature Improvement] Bump golang to 1.18.2+ for diego, garden-runc, mapfs, mysql-monitoring, cf-networking, and silk
  • [Feature Improvement] Use the latest version of nats-release (built on golang 1.18.5)
  • [Breaking Change] If you have configured an app log rate limit that measures app log rates in lines per second, Diego immediately drops app logs that exceed the app log rate limit. For more information, see Diego Drops App Logs That Exceed the App Log Rate Limit below.
  • Bump backup-and-restore-sdk to version 1.18.50
  • Bump bosh-system-metrics-forwarder to version 0.0.24
  • Bump bpm to version 1.1.19
  • Bump capi to version 1.109.11
  • Bump cf-networking to version 3.12.0
  • Bump cflinuxfs3 to version 0.319.0
  • Bump credhub to version 2.12.8
  • Bump diego to version 2.66.3
  • Bump dotnet-core-offline-buildpack to version 2.4.0
  • Bump garden-runc to version 1.22.0
  • Bump go-offline-buildpack to version 1.9.49
  • Bump java-offline-buildpack to version 4.50
  • Bump log-cache to version 2.11.13
  • Bump loggregator to version 106.6.9
  • Bump loggregator-agent to version 6.4.4
  • Bump mapfs to version 1.2.11
  • Bump metrics-discovery to version 3.1.2
  • Bump mysql-monitoring to version 9.18.0
  • Bump nats to version 50
  • Bump nfs-volume to version 5.0.18
  • Bump nginx-offline-buildpack to version 1.1.42
  • Bump nodejs-offline-buildpack to version 1.7.73
  • Bump php-offline-buildpack to version 4.4.65
  • Bump push-apps-manager-release to version 674.0.9
  • Bump python-offline-buildpack to version 1.7.57
  • Bump r-offline-buildpack to version 1.1.32
  • Bump ruby-offline-buildpack to version 1.8.57
  • Bump silk to version 3.12.0
  • Bump smb-volume to version 3.1.5
  • Bump staticfile-offline-buildpack to version 1.5.33
  • Bump statsd-injector to version 1.11.21
  • Bump syslog to version 11.8.2
  • Bump system-metrics-scraper to version 3.2.8
  • Bump uaa to version 74.5.48
Component Version Release Notes
ubuntu-xenial stemcell621.265
backup-and-restore-sdk1.18.50
v1.18.50
  ## Changes
  * Add final release 1.18.49 [ci skip]
  * Bump mariadb from 10.6.8 to 10.6.9 (#688)
  * Bump mysql from 5.7.37 to 5.7.38 (#674)
  * Bump postgres from 10.21 to 10.22 (#682)
  * Bump postgres from 11.16 to 11.17 (#683)
  * Bump postgres from 13.7 to 13.8 (#684)
  * Fix deploy postres ci job (#687)
  * [ci] Replace Xenial by Jammy (#689)
  ## Dependencies
  * **storage:** Updated to v1.25.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **bosh-backup-and-restore:** Updated to v1.9.37.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **api:** Updated to v0.94.0.
For more information, see [api](https://github.com/googleapis/google-api-go-client).
v1.18.49
  ## Changes
  * Add final release 1.18.47 [ci skip]
  ## Dependencies
  * **storage:** Updated to v1.24.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **bosh-backup-and-restore:** Updated to v1.9.35.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **gomega:** Updated to v1.20.0.
For more information, see [gomega](https://github.com/onsi/gomega).
v1.18.48
  ## Changes
  * Add final release 1.18.47 [ci skip]
  * Fix bpm-release download url
  * Parametrise minis-host and minio-port
  * Remove explicit port in BOSH_GW_HOST
  * Remove hardcoded port
  * Replace secrets in task definition
  ## Dependencies
  * **storage:** Updated to v1.24.0.
For more information, see [storage](https://github.com/googleapis/google-cloud-go). * **bosh-backup-and-restore:** Updated to v1.9.35.
For more information, see [bosh-backup-and-restore](https://github.com/cloudfoundry-incubator/bosh-backup-and-restore). * **gomega:** Updated to v1.20.0.
For more information, see [gomega](https://github.com/onsi/gomega).
binary-offline-buildpack1.0.45
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.24
bpm1.1.19
capi1.109.11
cf-autoscaling249.0.17
cf-cli1.38.0
cf-networking3.12.0
cflinuxfs30.319.0
credhub2.12.8
2.12.8
  ### Security Fixes
  - Bump various dependencies, including bumping postgresql from 42.4.0 to 42.4.1, which addresses [CVE-2022-31197](https://nvd.nist.gov/vuln/detail/CVE-2022-31197)
          
2.12.7
  ### Security Fixes
  - Bump various dependencies
  ### Bug Fixes
  - Improved test robustness on platforms with slow random number generation
  - Improved test robustness for several tests that handle database setup
          
diego2.66.3
dotnet-core-offline-buildpack2.4.0
garden-runc1.22.0
go-offline-buildpack1.9.49
haproxy9.8.0
java-offline-buildpack4.50
log-cache2.11.13
loggregator106.6.9
loggregator-agent6.4.4
mapfs1.2.11
v1.2.11
  ## Changes
  * Update vendored package golang-1-linux (#21)
          
v1.2.8
  ## What's Changed
  * Bump src/mapfs to `0ee84aa` #18
          
v1.2.7
  - [Bumps mapfs submodule to master@1600494](https://github.com/cloudfoundry/mapfs/commit/160049400a47577b0f3a8b2948974bc38ce76f18)
  - [Bump golang from 1.13 to 1.17](https://github.com/cloudfoundry/mapfs-release/commit/c287adda5cbdf345ff1b4985ae93cb72f1618f95)
          
metric-registrar1.1.16
metrics-discovery3.1.2
mysql-monitoring9.18.0
nats50
nfs-volume5.0.18
v5.0.18
  ## Changes
  * Update vendored package golang-1-linux (#215)
  ## Dependencies
  * **bosh-template:** Updated to v2.3.0.
For more information, see [bosh-template](https://github.com/cloudfoundry/bosh). * **gomega:** Updated to v1.20.2.
For more information, see [gomega](https://github.com/onsi/gomega). * **mapfs-release:** Updated to v`4413136`.
For more information, see [mapfs-release](https://github.com/cloudfoundry/mapfs-release).
v5.0.17
  ## Changes
  * Update vendored package golang-1-linux (#206)
  * [ci] Force use of iptables instead of nftables
  ## Dependencies
  * **ginkgo:** Updated to v1.16.5.
For more information, see [ginkgo](https://github.com/onsi/ginkgo). * **gomega:** Updated to v1.19.0.
For more information, see [gomega](https://github.com/onsi/gomega). * **mapfs-release:** Updated to v`90d2f31`.
For more information, see [mapfs-release](https://github.com/cloudfoundry/mapfs-release).
nginx-offline-buildpack1.1.42
nodejs-offline-buildpack1.7.73
notifications62
notifications-ui40
php-offline-buildpack4.4.65
push-apps-manager-release674.0.9
push-usage-service-release674.0.24
pxc0.44.0
python-offline-buildpack1.7.57
r-offline-buildpack1.1.32
routing0.236.0
ruby-offline-buildpack1.8.57
silk3.12.0
smb-volume3.1.5
v3.1.5
  ## Changes
  * Update vendored package golang-1-linux (#58)
          
v3.1.4
  ## Release Notes
  - Fix issue when multiple cf versions are included  (#55)
  ## Dependencies
  - The `smbbrokerpush` and `bbr-smbbroker` errands require either the `cf-cli-7-linux` or `cf-cli-6-linux` job from [cf-cli-release](https://bosh.io/releases/github.com/bosh-packages/cf-cli-release?all=1) to be colocated on the errand VM.
          
v3.1.3
  ## Release Notes
  - Added support for CF CLI v8 to errands (#45)
  - Fixed Jammy compilation issues (#53)
  ## Dependencies
  - Bump [src/code.cloudfoundry.org/smbbroker](https://github.com/cloudfoundry/smbbroker) (#41, #50)
  - Bump [src/code.cloudfoundry.org/smbdriver](https://github.com/cloudfoundry/smbdriver) (#47, #48, #51)
          
v3.1.2
  ## Release Notes
  - Support Bionic Stemcell #16
  - Add blobs for the `keyutils` package for both `bionic` and `jammy`.
  - We now install this package on any VM that runs the `smbdriver` bosh job iff that VM uses a `bionic` or `jammy` stemcell
  - This should allow the `smbdriver` to reliably mount SMB volumes on those stemcells, as discussed in #16
  ## Dependencies
  - The `smbbrokerpush` and `bbr-smbbroker` errands require either the `cf-cli-7-linux` or `cf-cli-6-linux` job from [cf-cli-release](https://bosh.io/releases/github.com/bosh-packages/cf-cli-release?all=1) to be colocated on the errand VM.
          
v3.1.1
  ## Release Notes
  * Bumps [bosh-template](https://github.com/cloudfoundry/bosh) from 2.2.0 to 2.2.1 (#22)
  * Bumps [rspec-its](https://github.com/rspec/rspec-its) from 1.2.0 to 1.3.0 (#23)
  * Bumps [rspec](https://github.com/rspec/rspec-metagem) to 3.11.0. (#37)
  * Bumps [src/code.cloudfoundry.org/smbdriver](https://github.com/cloudfoundry/smbdriver) to `1e97c5d` (#34)
  * Bumps [src/code.cloudfoundry.org/smbbroker](https://github.com/cloudfoundry/smbbroker) to `64ba567` (#36)
  * Bumps automake from 1.15 to 1.15.1 (#43 - fixes Bionic compilation)
  ## Dependencies
  - The `smbbrokerpush` and `bbr-smbbroker` errands require either the `cf-cli-7-linux` or `cf-cli-6-linux` job from [cf-cli-release](https://bosh.io/releases/github.com/bosh-packages/cf-cli-release?all=1) to be colocated on the errand VM.
          
smoke-tests4.5.0
staticfile-offline-buildpack1.5.33
statsd-injector1.11.21
syslog11.8.2
system-metrics-scraper3.2.8
uaa74.5.48
v74.5.48
  ### Dependency bumps
  - Various dependency bumps.
          
v74.5.47
  ### Fixes
  - Fixes a sporadic pre-start script failure due to a race condition of the `update-ca-certificates` commands [#391]
  ### Dependency bumps
  - Various dependency bumps.
          

v2.11.23

Release Date: 08/10/2022

  • Bump backup-and-restore-sdk to version 1.18.47
  • Bump bosh-system-metrics-forwarder to version 0.0.23
  • Bump cf-autoscaling to version 249.0.17
  • Bump cf-networking to version 3.11.0
  • Bump cflinuxfs3 to version 0.312.0
  • Bump dotnet-core-offline-buildpack to version 2.3.44
  • Bump go-offline-buildpack to version 1.9.48
  • Bump java-offline-buildpack to version 4.49.1
  • Bump log-cache to version 2.11.12
  • Bump loggregator to version 106.6.8
  • Bump loggregator-agent to version 6.4.3
  • Bump metric-registrar to version 1.1.16
  • Bump metrics-discovery to version 3.1.1
  • Bump nginx-offline-buildpack to version 1.1.41
  • Bump nodejs-offline-buildpack to version 1.7.72
  • Bump php-offline-buildpack to version 4.4.64
  • Bump pxc to version 0.44.0
  • Bump python-offline-buildpack to version 1.7.56
  • Bump r-offline-buildpack to version 1.1.31
  • Bump routing to version 0.236.0
  • Bump ruby-offline-buildpack to version 1.8.56
  • Bump silk to version 3.11.0
  • Bump staticfile-offline-buildpack to version 1.5.32
  • Bump statsd-injector to version 1.11.20
  • Bump syslog to version 11.8.1
  • Bump system-metrics-scraper to version 3.2.7
  • Bump uaa to version 74.5.46
Component Version Release Notes
ubuntu-xenial stemcell621.256
backup-and-restore-sdk1.18.47
binary-offline-buildpack1.0.45
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.23
bpm1.1.18
capi1.109.10
cf-autoscaling249.0.17
cf-cli1.38.0
cf-networking3.11.0
cflinuxfs30.312.0
credhub2.12.6
diego2.62.0
dotnet-core-offline-buildpack2.3.44
garden-runc1.20.8
go-offline-buildpack1.9.48
haproxy9.8.0
java-offline-buildpack4.49.1
log-cache2.11.12
loggregator106.6.8
loggregator-agent6.4.3
mapfs1.2.6
metric-registrar1.1.16
metrics-discovery3.1.1
mysql-monitoring9.15.0
nats42
nfs-volume5.0.16
nginx-offline-buildpack1.1.41
nodejs-offline-buildpack1.7.72
notifications62
notifications-ui40
php-offline-buildpack4.4.64
push-apps-manager-release674.0.8
push-usage-service-release674.0.24
pxc0.44.0
python-offline-buildpack1.7.56
r-offline-buildpack1.1.31
routing0.236.0
v0.236.0
  ## What's Changed
  * Gorouter restart script waits for the gorouter to be running before reloading monit
  ## ✨  Built with go 1.17.12
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.235.0...0.236.0
          
ruby-offline-buildpack1.8.56
silk3.11.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.32
statsd-injector1.11.20
syslog11.8.1
system-metrics-scraper3.2.7
uaa74.5.46

v2.11.22

Release Date: 07/18/2022

  • [Security Fix] Update Content-Security-Policy
  • [Feature] Enable telemetry for iptables rules on Diego cells
  • [Feature] User has the ability to manage step up scaling app instances using Apps Manager
  • [Feature Improvement] Deprecate Spring Cloud Connectors & Spring Auto Configuration support in Java Buildpack.
  • [Bug Fix] Add health check script for Bosh DNS for Cloud Controller
  • [Bug Fix] Do not disable metadata on Log Cache aggregate drain
  • [Bug Fix] Fix dummy routes showing in the User Interface
  • [Bug Fix] Fix role assignment when users are created through the CLI
  • [Bug Fix] Fix share domain with organization screen from erroring out
  • [Bug Fix] Use Content-Disposition header as heapdump filename
  • [Bug Fix] When Autoscaler is configured to use the RabbitMQ Queue Depth scaling metric in an autoscaling rule, you can specify a RabbitMQ service instance. If you specify a service instance, Autoscaler only requests metrics from that service instance.
  • [Bug Fix] Autoscaler migration correctly handles manually-created service bindings index.
  • [Bug Fix] Fixes Autoscaler edge case when using http_throughput rules with scaling factor larger than 1.
  • Bump backup-and-restore-sdk to version 1.18.46
  • Bump cf-autoscaling to version 249.0.13
  • Bump cf-cli to version 1.38.0
  • Bump cf-networking to version 3.9.0
  • Bump cflinuxfs3 to version 0.309.0
  • Bump credhub to version 2.12.6
  • Bump diego to version 2.62.0
  • Bump dotnet-core-offline-buildpack to version 2.3.43
  • Bump garden-runc to version 1.20.8
  • Bump go-offline-buildpack to version 1.9.47
  • Bump loggregator-agent to version 6.4.2
  • Bump metrics-discovery to version 3.1.0
  • Bump nginx-offline-buildpack to version 1.1.39
  • Bump nodejs-offline-buildpack to version 1.7.71
  • Bump php-offline-buildpack to version 4.4.63
  • Bump push-apps-manager-release to version 674.0.8
  • Bump pxc to version 0.43.0
  • Bump r-offline-buildpack to version 1.1.30
  • Bump routing to version 0.235.0
  • Bump ruby-offline-buildpack to version 1.8.55
  • Bump silk to version 3.9.0
  • Bump staticfile-offline-buildpack to version 1.5.31
  • Bump syslog to version 11.8.0
  • Bump system-metrics-scraper to version 3.2.6
  • Bump uaa to version 74.5.44
Component Version Release Notes
ubuntu-xenial stemcell621.252
backup-and-restore-sdk1.18.46
binary-offline-buildpack1.0.45
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.22
bpm1.1.18
capi1.109.10
cf-autoscaling249.0.13
cf-cli1.38.0
cf-networking3.9.0
cflinuxfs30.309.0
credhub2.12.6
2.12.6
  ### Security Fixes
  - Bump various dependencies
          
2.12.5
  ### Security Fixes
  - Bump various dependencies
  ### Bug Fixes
  - Fix for URL path handling on Windows ([cloudfoundry/credhub issue 266](https://github.com/cloudfoundry/credhub/issues/266))
  ### Features
  - CredHub now logs as info instead of error when a credential isn't found
  - Added support for jammy-based stemcells that have openssl 3 ([pivotal/credhub-release issue 65](https://github.com/pivotal/credhub-release/issues/65))
          
diego2.62.0
dotnet-core-offline-buildpack2.3.43
garden-runc1.20.8
go-offline-buildpack1.9.47
haproxy9.8.0
java-offline-buildpack4.49
log-cache2.11.11
loggregator106.6.7
loggregator-agent6.4.2
mapfs1.2.6
metric-registrar1.1.13
metrics-discovery3.1.0
mysql-monitoring9.15.0
nats42
nfs-volume5.0.16
nginx-offline-buildpack1.1.39
nodejs-offline-buildpack1.7.71
notifications62
notifications-ui40
php-offline-buildpack4.4.63
push-apps-manager-release674.0.8
push-usage-service-release674.0.24
pxc0.43.0
python-offline-buildpack1.7.54
r-offline-buildpack1.1.30
routing0.235.0
0.235.0
  ## What's Changed
  * Gorouter healthchecker retries connection instead of monit (https://github.com/cloudfoundry/routing-release/pull/275)
  ## ✨  Built with go 1.17.11
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.234.0...0.235.0
          
0.234.0
  ## What's Changed
  * Gorouter: the metrics package now uses `lsof` to monitor file descriptors on MacOS @domdom82 https://github.com/cloudfoundry/gorouter/pull/312
  * 🐛 Bumped the `lager` dependency to resolve issues where the timeFormat flag was not honored, resulting in epoch timestamps vs human readable. Thanks @ameowlia!
  * Now tested with the bionic stemcell in CI
  ## ✨  Built with go 1.17.11
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.233.0...0.234.0
          
ruby-offline-buildpack1.8.55
silk3.9.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.31
statsd-injector1.11.19
syslog11.8.0
system-metrics-scraper3.2.6
uaa74.5.44

v2.11.21

Release Date: 06/23/2022

  • Bump diego to version 2.62.0
Component Version
ubuntu-xenial stemcell621.244
backup-and-restore-sdk1.18.42
binary-offline-buildpack1.0.45
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.22
bpm1.1.18
capi1.109.10
cf-autoscaling249.0.7
cf-cli1.32.0
cf-networking3.6.0
cflinuxfs30.301.0
credhub2.12.4
diego2.62.0
dotnet-core-offline-buildpack2.3.42
garden-runc1.20.6
go-offline-buildpack1.9.46
haproxy9.8.0
java-offline-buildpack4.49
log-cache2.11.11
loggregator106.6.7
loggregator-agent6.4.1
mapfs1.2.6
metric-registrar1.1.13
metrics-discovery3.0.13
mysql-monitoring9.15.0
nats42
nfs-volume5.0.16
nginx-offline-buildpack1.1.38
nodejs-offline-buildpack1.7.70
notifications62
notifications-ui40
php-offline-buildpack4.4.61
push-apps-manager-release674.0.7
push-usage-service-release674.0.24
pxc0.42.0
python-offline-buildpack1.7.54
r-offline-buildpack1.1.29
routing0.233.0
ruby-offline-buildpack1.8.54
silk3.6.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.30
statsd-injector1.11.19
syslog11.7.10
system-metrics-scraper3.2.5
uaa74.5.41

v2.11.20

Release Date: 06/09/2022

Warning: Breaking change This version contains Diego 2.64.0, which bumps to Go 1.18. Go 1.18 no longer supports TLS 1.0 and 1.1 connections or certificates with a SHA-1 checksum. This is most likely to affect connections with external databases. We stated earlier that we wouldn’t bump to Go 1.18 until July 1, 2022. This TAS for VMs release with Diego 2.64.0 breaks that promise. We apologize. We are rolling back to Diego 2.62.0. If you already successfully deployed to this TAS for VMs release with Diego 2.64.0, then you are safe to continue using it.

  • [Security Fix] Added Content-Security-Policy headers in UAA responses
  • [Bug Fix] Sticky sessions no longer break when used with route-services that return HTTP 4xx/5xx responses
  • [Bug Fix/Improvement] Stop emitting debug metrics for agents and log-cache by default. Reduces load on logging system by >=720 metrics per vm per minute
  • [Breaking Change] If you followed the procedure in Autoscale application fails with MySQL Deadlock errors to manually add an index to an Autoscale database, and the index is not dropped before you upgrade to TAS for VMs v2.11.20, upgrading causes an error.
  • Bump backup-and-restore-sdk to version 1.18.42
  • Bump binary-offline-buildpack to version 1.0.45
  • Bump bosh-system-metrics-forwarder to version 0.0.22
  • Bump bpm to version 1.1.18
  • Bump capi to version 1.109.10
  • Bump cf-autoscaling to version 249.0.7
  • Bump cf-networking to version 3.6.0
  • Bump cflinuxfs3 to version 0.301.0
  • Bump diego to version 2.64.0
  • Bump dotnet-core-offline-buildpack to version 2.3.42
  • Bump garden-runc to version 1.20.6
  • Bump go-offline-buildpack to version 1.9.46
  • Bump java-offline-buildpack to version 4.49
  • Bump log-cache to version 2.11.11
  • Bump loggregator to version 106.6.7
  • Bump loggregator-agent to version 6.4.1
  • Bump metric-registrar to version 1.1.13
  • Bump metrics-discovery to version 3.0.13
  • Bump nfs-volume to version 5.0.16
  • Bump nginx-offline-buildpack to version 1.1.38
  • Bump nodejs-offline-buildpack to version 1.7.70
  • Bump php-offline-buildpack to version 4.4.61
  • Bump push-usage-service-release to version 674.0.24
  • Bump python-offline-buildpack to version 1.7.54
  • Bump r-offline-buildpack to version 1.1.29
  • Bump routing to version 0.233.0
  • Bump ruby-offline-buildpack to version 1.8.54
  • Bump silk to version 3.6.0
  • Bump staticfile-offline-buildpack to version 1.5.30
  • Bump statsd-injector to version 1.11.19
  • Bump syslog to version 11.7.10
  • Bump system-metrics-scraper to version 3.2.5
  • Bump uaa to version 74.5.41
Component Version Release Notes
ubuntu-xenial stemcell621.244
backup-and-restore-sdk1.18.42
binary-offline-buildpack1.0.45
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.22
bpm1.1.18
capi1.109.10
cf-autoscaling249.0.7
cf-cli1.32.0
cf-networking3.6.0
cflinuxfs30.301.0
credhub2.12.4
diego2.64.0
dotnet-core-offline-buildpack2.3.42
garden-runc1.20.6
go-offline-buildpack1.9.46
haproxy9.8.0
java-offline-buildpack4.49
log-cache2.11.11
loggregator106.6.7
loggregator-agent6.4.1
mapfs1.2.6
metric-registrar1.1.13
metrics-discovery3.0.13
mysql-monitoring9.15.0
nats42
nfs-volume5.0.16
nginx-offline-buildpack1.1.38
nodejs-offline-buildpack1.7.70
notifications62
notifications-ui40
php-offline-buildpack4.4.61
push-apps-manager-release674.0.7
push-usage-service-release674.0.24
pxc0.42.0
python-offline-buildpack1.7.54
r-offline-buildpack1.1.29
routing0.233.0
0.233.0
  ## What's Changed
  * TCP Router: Add locking to the haproxy_reloader script to avoid haproxy reload/restart race conditions by @geofffranks in https://github.com/cloudfoundry/routing-release/pull/269
  * TCP Router: Bump HAProxy from 1.8.13 to 2.5.4 by @cunnie in https://github.com/cloudfoundry/routing-release/pull/266
  * Gorouter: fix proxy round tripper race condition by @ameowlia and @geofffranks  in https://github.com/cloudfoundry/gorouter/pull/318
  * Routing API: fix timestamp precision issue that caused routes to be pruned unexpectedly by @geofffranks in https://github.com/cloudfoundry/routing-api/pull/24
  *  Routing API: remove `golang.x509ignoreCN` bosh property by @geofffranks and @mariash
  * Routing API: fix bug that caused TCP Router's HAProxy to reload every minute by @jrussett in https://github.com/cloudfoundry/routing-api/pull/26.
  ## Manifest Property Changes
  | Job | Property  | Notes |
  | --- | --- | --- |
  | `routing-api` | `golang.x509ignoreCN` | This property exposed a go debug flag for go version 1.15. Since go 1.16 this go debug flag has had no affect. Removing this bosh property is part of our effort to keep our code base free of cruft. |
  ## ✨  Built with go 1.17.10
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.232.0...0.233.0
          
0.232.0
  ## What's Changed
  * Fixing issue #250: Return a 503 not a 404 when all instances down by @kecirlotfi in https://github.com/cloudfoundry/routing-release/pull/268 and https://github.com/cloudfoundry/gorouter/pull/314
  * Fixing issue https://github.com/cloudfoundry/gorouter/pull/315: Fix route service pruning by @geofffranks
  ## Manifest Property Changes
  | Job | Property | default | notes |
  | --- | --- | --- | --- |
  | `gorouter` | `for_backwards_compatibility_only.empty_pool_response_code_503` | `0s` | This property was added to enable https://github.com/cloudfoundry/routing-release/pull/268 |
  ## New Contributors 🎉
  * @kecirlotfi made their first contribution! Thanks so much!
  ## ✨  Built with go 1.17.9
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.231.0...0.232.0
          
ruby-offline-buildpack1.8.54
silk3.6.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.30
statsd-injector1.11.19
syslog11.7.10
system-metrics-scraper3.2.5
uaa74.5.41

v2.11.19

Release Date: 04/20/2022

  • [Feature Improvement] Add option to configure CC BBR health check timeout
  • [Feature Improvement] Enforce service name uniqueness in shared services in spaces
  • [Bug Fix] Service offerings now appear to users in orgs/spaces with the appropriate service access
  • [Breaking Change] Syslog drains configured to use TLS now reject certificates signed with the SHA-1 hash function.
  • Bump backup-and-restore-sdk to version 1.18.39
  • Bump binary-offline-buildpack to version 1.0.43
  • Bump capi to version 1.109.9
  • Bump cf-autoscaling to version 249.0.2
  • Bump cflinuxfs3 to version 0.285.0
  • Bump credhub to version 2.12.4
  • Bump diego to version 2.62.0
  • Bump dotnet-core-offline-buildpack to version 2.3.41
  • Bump go-offline-buildpack to version 1.9.42
  • Bump java-offline-buildpack to version 4.48.2
  • Bump log-cache to version 2.11.8
  • Bump loggregator to version 106.6.4
  • Bump loggregator-agent to version 6.3.11
  • Bump metrics-discovery to version 3.0.10
  • Bump nginx-offline-buildpack to version 1.1.37
  • Bump nodejs-offline-buildpack to version 1.7.69
  • Bump php-offline-buildpack to version 4.4.59
  • Bump push-apps-manager-release to version 674.0.7
  • Bump pxc to version 0.42.0
  • Bump python-offline-buildpack to version 1.7.53
  • Bump r-offline-buildpack to version 1.1.28
  • Bump ruby-offline-buildpack to version 1.8.53
  • Bump uaa to version 74.5.37
Component Version Release Notes
ubuntu-xenial stemcell621.224
backup-and-restore-sdk1.18.39
binary-offline-buildpack1.0.43
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.21
bpm1.1.16
capi1.109.9
cf-autoscaling249.0.2
v249.0.2
  ## What's Changed
  * Bump github.com/onsi/gomega from 1.18.1 to 1.19.0 in /src by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/640
  * bump spring boot for cve CVE-2022-22965 by @Benjamintf1 in https://github.com/pivotal-cf/cf-autoscaling-release/pull/646
  * Bump log4j-to-slf4j from 2.17.1 to 2.17.2 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/619
  * Bump log4j-api from 2.17.1 to 2.17.2 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/618
  * Bump gson from 2.8.6 to 2.9.0 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/611
  * Bump spock-core from 2.0-groovy-3.0 to 2.1-groovy-3.0 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/613
  * Bump objenesis from 3.1 to 3.2 in /src/cf-autoscaling/api by @dependabot in https://github.com/pivotal-cf/cf-autoscaling-release/pull/479
  **Full Changelog**: https://github.com/pivotal-cf/cf-autoscaling-release/compare/v249.0.1...v249.0.2
          
v249.0.1
  ## What's Changed
  * Pin jackson-databind to 2.13.2.2 to address [CVE-2020-36518](https://nvd.nist.gov/vuln/detail/CVE-2020-36518)
  * Unpin tomcat dependencies in autoscale API in https://github.com/pivotal-cf/cf-autoscaling-release/pull/636
  * Bump autoscale API dependencies in https://github.com/pivotal-cf/cf-autoscaling-release/pull/612, https://github.com/pivotal-cf/cf-autoscaling-release/pull/625, https://github.com/pivotal-cf/cf-autoscaling-release/pull/525, https://github.com/pivotal-cf/cf-autoscaling-release/pull/634
  **Full Changelog**: https://github.com/pivotal-cf/cf-autoscaling-release/compare/v249...v249.0.1
          
cf-cli1.32.0
cf-networking3.3.0
cflinuxfs30.285.0
credhub2.12.4
2.12.4
  ### Security Fixes
  - Bump various dependencies.
          
2.12.3
  ### Security Fixes
  - Bump various dependencies.
          
diego2.62.0
dotnet-core-offline-buildpack2.3.41
garden-runc1.20.3
go-offline-buildpack1.9.42
haproxy9.8.0
java-offline-buildpack4.48.2
log-cache2.11.8
v2.11.8
  ## Release Highlights
  Pin Go back to go1.17.
  [Go 1.18 includes changes to memory management](https://tip.golang.org/doc/go1.18#runtime) and we'd like to get more familiarity with these changes and their impact before bumping.
  ### ✨ Built with golang 1.17.8
          
v2.11.7
  - fix bug with large messages (#58)
  - bump-golang to v0.100.0(now 1.18)
          
loggregator106.6.4
v106.6.4
  - fix bug with large messages (#430)
  - bump-golang to v0.100.0(now 1.18)
          
loggregator-agent6.3.11
v6.3.11
  - fix bug with large messages (#89)
  - bump-golang to v0.100.0(now 1.18)
          
mapfs1.2.6
metric-registrar1.1.12
metrics-discovery3.0.10
v3.0.10
  - fix bug with large messages (#22)
  - bump-golang to v0.100.0(now 1.18)
          
mysql-monitoring9.15.0
nats42
nfs-volume5.0.12
nginx-offline-buildpack1.1.37
nodejs-offline-buildpack1.7.69
notifications62
notifications-ui40
php-offline-buildpack4.4.59
push-apps-manager-release674.0.7
push-usage-service-release674.0.23
pxc0.42.0
python-offline-buildpack1.7.53
r-offline-buildpack1.1.28
routing0.231.0
ruby-offline-buildpack1.8.53
silk3.3.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.29
statsd-injector1.11.18
syslog11.7.7
system-metrics-scraper3.2.4
uaa74.5.37

v2.11.18

Release Date: 04/06/2022

  • [Security Fix] This release fixes CVE-2022-22965; note that the “fix” in the immediately prior version did not actually address the vulnerability, as Spring framework dependencies in UAA that should have been updated, were not. We have confirmed this version actually contains the dependency bumps, and that it is no longer vulnerable to our confirmed exploit. We consider this patch necessary for secure operation; see the VMware Security Advisory here for more details. This release also includes a new version of the Java Buildpack.
  • Bump java-offline-buildpack to version 4.48.2
  • Bump uaa to version 74.5.37
Component Version
ubuntu-xenial stemcell621.224
backup-and-restore-sdk1.18.34
binary-offline-buildpack1.0.42
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.21
bpm1.1.16
capi1.109.7
cf-autoscaling249
cf-cli1.32.0
cf-networking3.3.0
cflinuxfs30.279.0
credhub2.12.1
diego2.61.0
dotnet-core-offline-buildpack2.3.40
garden-runc1.20.3
go-offline-buildpack1.9.41
haproxy9.8.0
java-offline-buildpack4.48.2
log-cache2.11.6
loggregator106.6.3
loggregator-agent6.3.10
mapfs1.2.6
metric-registrar1.1.12
metrics-discovery3.0.9
mysql-monitoring9.15.0
nats42
nfs-volume5.0.12
nginx-offline-buildpack1.1.36
nodejs-offline-buildpack1.7.67
notifications62
notifications-ui40
php-offline-buildpack4.4.57
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.41.0
python-offline-buildpack1.7.51
r-offline-buildpack1.1.27
routing0.231.0
ruby-offline-buildpack1.8.52
silk3.3.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.29
statsd-injector1.11.18
syslog11.7.7
system-metrics-scraper3.2.4
uaa74.5.37

v2.11.17

Release Date: 03/31/2022

  • [Security Fix] This release was intended to address CVE-2022-22965, but did not actually update the vulnerable dependencies. Upgrade to a more recent patch version instead. See the VMware Security Advisory here for more details.
  • Bump uaa to version 74.5.36
Component Version
ubuntu-xenial stemcell621.224
backup-and-restore-sdk1.18.34
binary-offline-buildpack1.0.42
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.21
bpm1.1.16
capi1.109.7
cf-autoscaling249
cf-cli1.32.0
cf-networking3.3.0
cflinuxfs30.279.0
credhub2.12.1
diego2.61.0
dotnet-core-offline-buildpack2.3.40
garden-runc1.20.3
go-offline-buildpack1.9.41
haproxy9.8.0
java-offline-buildpack4.48.1
log-cache2.11.6
loggregator106.6.3
loggregator-agent6.3.10
mapfs1.2.6
metric-registrar1.1.12
metrics-discovery3.0.9
mysql-monitoring9.15.0
nats42
nfs-volume5.0.12
nginx-offline-buildpack1.1.36
nodejs-offline-buildpack1.7.67
notifications62
notifications-ui40
php-offline-buildpack4.4.57
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.41.0
python-offline-buildpack1.7.51
r-offline-buildpack1.1.27
routing0.231.0
ruby-offline-buildpack1.8.52
silk3.3.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.29
statsd-injector1.11.18
syslog11.7.7
system-metrics-scraper3.2.4
uaa74.5.36

v2.11.16

Release Date: 03/31/2022

  • [Feature Improvement] Move aggregate drains to the syslog-binding cache to improve deploy speed and reduce errors.
  • [Security Fix] This release fixes CVE-2022-23806 and CVE-2022-23772.
  • [Bug Fix] Assign cloud_controller.read and cloud_controller.write scopes to service brokers created using CF CLI v8
  • [Bug Fix] CAPI: Quota metrics are no longer filtered when syslog ingress is turned on
  • [Bug Fix] Propagate updated user provided service environment variables to bound applications for CF CLI v8
  • [Bug Fix] Resolve an issue resulting in tcp-router repeatedly respawning haproxy until it hits a forked process limit
  • [Bug Fix] Resolves an issue where invalid seeded router group values should caused breaking changes
  • [Bug fix] Remove x509ignoreCN option in Gorouter
  • Bump capi to version 1.109.7
  • Bump cf-autoscaling to version 249
  • Bump cf-networking to version 3.3.0
  • Bump cflinuxfs3 to version 0.279.0
  • Bump credhub to version 2.12.1
  • Bump diego to version 2.61.0
  • Bump dotnet-core-offline-buildpack to version 2.3.40
  • Bump garden-runc to version 1.20.3
  • Bump go-offline-buildpack to version 1.9.41
  • Bump java-offline-buildpack to version 4.48.1
  • Bump log-cache to version 2.11.6
  • Bump loggregator to version 106.6.3
  • Bump loggregator-agent to version 6.3.10
  • Bump metric-registrar to version 1.1.12
  • Bump metrics-discovery to version 3.0.9
  • Bump nginx-offline-buildpack to version 1.1.36
  • Bump nodejs-offline-buildpack to version 1.7.67
  • Bump php-offline-buildpack to version 4.4.57
  • Bump python-offline-buildpack to version 1.7.51
  • Bump r-offline-buildpack to version 1.1.27
  • Bump routing to version 0.231.0
  • Bump ruby-offline-buildpack to version 1.8.52
  • Bump silk to version 3.3.0
  • Bump staticfile-offline-buildpack to version 1.5.29
  • Bump uaa to version 74.5.35
Component Version Release Notes
ubuntu-xenial stemcell621.224
backup-and-restore-sdk1.18.34
binary-offline-buildpack1.0.42
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.21
bpm1.1.16
capi1.109.7
cf-autoscaling249
cf-cli1.32.0
cf-networking3.3.0
cflinuxfs30.279.0
credhub2.12.1
2.12.1
  ### Security Fixes
  - Bump various dependencies.
          
2.12.0
  ### Security Fixes
  - Bump various dependencies.
  ### Bug Fixes
  - Fixes an issue where CredHub experiences downtime during certificate rotation process by making CredHub properly load concatenated mTLS CA certificates.
  ### Features
  - CredHub is now compatible with Postgres 13, 14.
          
2.11.1
  ### Dependency Bumps
  - Bumps log4j2 to 2.17.1
          
2.11.0
  ### Security Fixes
  - Further addresses [CVE with Log4j library](https://github.com/advisories/GHSA-jfh8-c2jp-5v3q) and [its prior incomplete fix](https://github.com/advisories/GHSA-7rjr-3q55-vv33) by bumping to log4j2 2.16.0.
          
2.10.0
  ### Security Fixes
  - Addresses [CVE with Log4j library](https://github.com/advisories/GHSA-jfh8-c2jp-5v3q)
  ### Features
  - Adds a minimum duration server-level configuration fields for leaf and CA certificates: `certificates.leaf_minimum_duration_in_days` and `certificates.ca_minimum_duration_in_days`. When these fields are configured, if a request to generate or regenerate a certificate has a duration lower than the minimum, then the minimum duration is used instead. (https://github.com/cloudfoundry/credhub/pull/201)
          
diego2.61.0
dotnet-core-offline-buildpack2.3.40
garden-runc1.20.3
go-offline-buildpack1.9.41
haproxy9.8.0
java-offline-buildpack4.48.1
log-cache2.11.6
loggregator106.6.3
loggregator-agent6.3.10
mapfs1.2.6
metric-registrar1.1.12
metrics-discovery3.0.9
mysql-monitoring9.15.0
nats42
nfs-volume5.0.12
nginx-offline-buildpack1.1.36
nodejs-offline-buildpack1.7.67
notifications62
notifications-ui40
php-offline-buildpack4.4.57
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.41.0
python-offline-buildpack1.7.51
r-offline-buildpack1.1.27
routing0.231.0
0.231.0
  ## Bug Fixes
  - Removed the x509ignoreCN property. Now that `gorouter` is built on golang 1.17, it
no longer has any effect on gorouter behavior, and was only adding to confusion in
the properties
  - Resolve an issue with route-registrar using the same TTL as it's RegistrationInterval
for tcp routes, leading to unnecessary churn of pruned + re-registered routes.
  - Resolve an issue with Routing API where upserts to tcp routes were causing change
events to be emitted when the only change was a bump in TTL. This led to an issue
where tcp-router was constantly reloading haproxy with every route's heartbeat
registration call.
  ## Manifest Property Changes
  | Job | Property | 0.230.0 | 0.231.0 |
  | --- | --- | --- | --- |
  | `gorouter` | `golang.x509ignoreCN` | false | No longer exists |
  |  `route_registrar` | `golang.x509ignoreCN` | false | No longer exists |
  | `tcp_router` | `golang.x509ignoreCN` | false | No longer exists |
  ### ✨ Built with golang 1.17.8
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.230.0...0.231.0
          
0.230.0
  ## Feature
  * update gorouter for prometheus scraping by @Benjamintf1 in https://github.com/cloudfoundry/routing-release/pull/258
  ## Bug Fix
  * Invalid seeded router group manifest values should no longer cause breaking changes by default by @ameowlia in https://github.com/cloudfoundry/routing-release/pull/261
  ### ✨ Built with golang 1.17.7
  **Full Changelog**: https://github.com/cloudfoundry/routing-release/compare/0.229.0...0.230.0
          
ruby-offline-buildpack1.8.52
silk3.3.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.29
statsd-injector1.11.18
syslog11.7.7
system-metrics-scraper3.2.4
uaa74.5.35

v2.11.15

Release Date: 02/28/2022

  • [Feature Improvement] Due to routing-release now being built with Golang 1.17, all certificates provided must contain SAN entries on them. The previous workaround of setting “Enable temporary workaround for certs without SANs” no longer functions.
  • [Feature Improvement] Per Golang 1.17’s new and stricter IP parsing standards, any IP addrs with leading zeros in any octets will result in a BOSH template failure to allow operators to remove the leading zeros and try again (affects properties fed into diego-release, garden-runc-release, winc-release, nats-release, and routing-release),.
  • [Feature Improvement] UAA is compatible with MySQL 8
  • [Feature Improvement] You can configure container-to-container traffic to use TLS. For more information, see Securing Container-to-Container Traffic in Container-to-Container Networking.

    Warning: This feature introduces a migration to the BBS database. Rolling your TAS for VMs deployment back to v2.11.14 or earlier causes database issues.

  • [Bug Fix] Cloud Controller Worker - PruneExcessAppRevisions job is more memory efficient
  • [Bug Fix] Fix default metric registrar blocked tags to include ‘ip’ and remove 'id’
  • [Bug Fix] Fixes an issue related to the parsing of the X-B3-TraceId and X-B3-SpanId HTTP headers
  • [Bug Fix] Restore missing networking and garden metrics
  • [Bug Fix] Smoke tests support for TLSv1.3 only option
  • Bump backup-and-restore-sdk to version 1.18.34
  • Bump cf-autoscaling to version 248
  • Bump cflinuxfs3 to version 0.274.0
  • Bump credhub to version 2.9.9
  • Bump diego to version 2.58.1
  • Bump garden-runc to version 1.20.0
  • Bump loggregator-agent to version 6.3.8
  • Bump metric-registrar to version 1.1.11
  • Bump metrics-discovery to version 3.0.8
  • Bump nats to version 42
  • Bump routing to version 0.229.0
  • Bump smoke-tests to version 4.5.0
  • Bump uaa to version 74.5.34
Component Version
ubuntu-xenial stemcell621.211
backup-and-restore-sdk1.18.34
binary-offline-buildpack1.0.42
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.21
bpm1.1.16
capi1.109.5
cf-autoscaling248
cf-cli (v7/v8)*1.32.0
cf-networking2.43.0
cflinuxfs30.274.0
credhub2.9.9
diego2.58.1
dotnet-core-offline-buildpack2.3.38
garden-runc1.20.0
go-offline-buildpack1.9.38
haproxy9.8.0
java-offline-buildpack4.48
log-cache2.11.5
loggregator106.6.2
loggregator-agent6.3.8
mapfs1.2.6
metric-registrar1.1.11
metrics-discovery3.0.8
mysql-monitoring9.15.0
nats42
nfs-volume5.0.12
nginx-offline-buildpack1.1.34
nodejs-offline-buildpack1.7.66
notifications62
notifications-ui40
php-offline-buildpack4.4.55
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.41.0
python-offline-buildpack1.7.49
r-offline-buildpack1.1.25
routing0.229.0
ruby-offline-buildpack1.8.50
silk2.43.0
smb-volume3.1.0
smoke-tests4.5.0
staticfile-offline-buildpack1.5.28
statsd-injector1.11.18
syslog11.7.7
system-metrics-scraper3.2.4
uaa74.5.34

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.14

Release Date: 02/07/2022

Note: This version of TAS for VMs contains a known issue that can cause application traces to break. See Gorouter Sets an Invalid X-B3-SpanID Header in Known Issues.

  • [Security Fix] Diego - Bump containerd to v1.5.9 to address (CVE-2021-43816)
  • [Security Fix] Bump routing release to 0.228.0 to address (CVE-2021-44716)
  • [Feature] Monit thresholds for the Cloud Controller worker are configurable
  • [Feature] Apps can be step-scaled up or down in Autoscaler. See About App Autoscaler.
  • [Feature Improvement] Golang v1.17 contains stricter IP parsing standards, so IP addresses with leading zeros in any octets cause a BOSH template failure. Operators can remove the leading zeros and try deploying again. This affects properties that feed into cf-networking-release, silk-release, loggregator-agent-release, and syslog-release. Syslog drains and metric registrar endpoints registered using user-provided services might also be affected.
  • [Bug Fix] Cloud Controller worker PruneExcessAppRevisions job is more memory efficient
  • [Bug Fix] Fix race conditions that could cause Autoscaler to crash
  • Bump backup-and-restore-sdk to version 1.18.32
  • Bump binary-offline-buildpack to version 1.0.42
  • Bump bosh-system-metrics-forwarder to version 0.0.21
  • Bump bpm to version 1.1.16
  • Bump capi to version 1.109.5
  • Bump cf-autoscaling to version 247
  • Bump cf-networking to version 2.43.0
  • Bump cflinuxfs3 to version 0.272.0
  • Bump diego to version 2.57.0
  • Bump dotnet-core-offline-buildpack to version 2.3.38
  • Bump go-offline-buildpack to version 1.9.38
  • Bump java-offline-buildpack to version 4.48
  • Bump log-cache to version 2.11.5
  • Bump loggregator to version 106.6.2
  • Bump loggregator-agent to version 6.3.7
  • Bump metric-registrar to version 1.1.10
  • Bump metrics-discovery to version 3.0.7
  • Bump nats to version 41
  • Bump nginx-offline-buildpack to version 1.1.34
  • Bump nodejs-offline-buildpack to version 1.7.66
  • Bump php-offline-buildpack to version 4.4.55
  • Bump pxc to version 0.41.0
  • Bump python-offline-buildpack to version 1.7.49
  • Bump r-offline-buildpack to version 1.1.25
  • Bump routing to version 0.228.0
  • Bump ruby-offline-buildpack to version 1.8.50
  • Bump silk to version 2.43.0
  • Bump smoke-tests to version 4.4.0
  • Bump staticfile-offline-buildpack to version 1.5.28
  • Bump statsd-injector to version 1.11.18
  • Bump syslog to version 11.7.7
  • Bump system-metrics-scraper to version 3.2.4
  • Bump uaa to version 74.5.31
Component Version
ubuntu-xenial stemcell621.198
backup-and-restore-sdk1.18.32
binary-offline-buildpack1.0.42
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.21
bpm1.1.16
capi1.109.5
cf-autoscaling247
cf-cli (v7/v8)*1.32.0
cf-networking2.43.0
cflinuxfs30.272.0
credhub2.9.8
diego2.57.0
dotnet-core-offline-buildpack2.3.38
garden-runc1.19.30
go-offline-buildpack1.9.38
haproxy9.8.0
java-offline-buildpack4.48
log-cache2.11.5
loggregator106.6.2
loggregator-agent6.3.7
mapfs1.2.6
metric-registrar1.1.10
metrics-discovery3.0.7
mysql-monitoring9.15.0
nats41
nfs-volume5.0.12
nginx-offline-buildpack1.1.34
nodejs-offline-buildpack1.7.66
notifications62
notifications-ui40
php-offline-buildpack4.4.55
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.41.0
python-offline-buildpack1.7.49
r-offline-buildpack1.1.25
routing0.228.0
ruby-offline-buildpack1.8.50
silk2.43.0
smb-volume3.1.0
smoke-tests4.4.0
staticfile-offline-buildpack1.5.28
statsd-injector1.11.18
syslog11.7.7
system-metrics-scraper3.2.4
uaa74.5.31

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.13

Release Date: 12/21/2021

Warning:

Note: This version of TAS for VMs contains a known issue that can cause application traces to break. See Gorouter Sets an Invalid X-B3-SpanID Header in Known Issues.

  • [Security Fix] Fix uncontrolled recursion related to Log4j (CVE-2021-45105)
  • Bump credhub to version 2.9.8 which has Log4j 2.17.0
  • Bump java-offline-buildpack to version 4.47
  • Bump uaa to version 74.5.30 which has Log4j 2.17.0
Component Version
ubuntu-xenial stemcell~621
backup-and-restore-sdk1.18.28
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.15
capi1.109.4
cf-autoscaling242
cf-cli (v7/v8)*1.32.0
cf-networking2.42.0
cflinuxfs30.268.0
credhub2.9.8
diego2.54.0
dotnet-core-offline-buildpack2.3.36
garden-runc1.19.30
go-offline-buildpack1.9.37
haproxy9.8.0
java-offline-buildpack4.47
log-cache2.11.4
loggregator106.6.1
loggregator-agent6.3.5
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.32
nodejs-offline-buildpack1.7.63
notifications62
notifications-ui40
php-offline-buildpack4.4.53
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.39.0
python-offline-buildpack1.7.47
r-offline-buildpack1.1.23
routing0.227.0
ruby-offline-buildpack1.8.48
silk2.41.0
smb-volume3.1.0
smoke-tests4.3.1
staticfile-offline-buildpack1.5.26
statsd-injector1.11.16
syslog11.7.6
system-metrics-scraper3.2.3
uaa74.5.30

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.12

Release Date: 12/16/2021

Warning:

Note: This version of TAS for VMs contains a known issue that can cause application traces to break. See Gorouter Sets an Invalid X-B3-SpanID Header in Known Issues.

  • [Security Fix] Fix remote code execution vulnerability related to Log4j (CVE-2021-45046)
  • Bump credhub to version 2.9.7 which has Log4j 2.16.0
  • Bump java-offline-buildpack to version 4.45
  • Bump php-offline-buildpack to version 4.4.53
  • Bump uaa to version 74.5.29 which has Log4j 2.16.0
Component Version
ubuntu-xenial stemcell~621
backup-and-restore-sdk1.18.28
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.15
capi1.109.4
cf-autoscaling242
cf-cli (v7/v8)*1.32.0
cf-networking2.42.0
cflinuxfs30.268.0
credhub2.9.7
diego2.54.0
dotnet-core-offline-buildpack2.3.36
garden-runc1.19.30
go-offline-buildpack1.9.37
haproxy9.8.0
java-offline-buildpack4.45
log-cache2.11.4
loggregator106.6.1
loggregator-agent6.3.5
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.32
nodejs-offline-buildpack1.7.63
notifications62
notifications-ui40
php-offline-buildpack4.4.53
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.39.0
python-offline-buildpack1.7.47
r-offline-buildpack1.1.23
routing0.227.0
ruby-offline-buildpack1.8.48
silk2.41.0
smb-volume3.1.0
smoke-tests4.3.1
staticfile-offline-buildpack1.5.26
statsd-injector1.11.16
syslog11.7.6
system-metrics-scraper3.2.3
uaa74.5.29

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.11

Release Date: 12/15/2021

Warning:

Note: This version of TAS for VMs contains a known issue that can cause application traces to break. See Gorouter Sets an Invalid X-B3-SpanID Header in Known Issues.

  • [Security Fix] Java and PHP Buildpacks - Fix remote code execution vulnerability related to Log4j (CVE-2021-44228)
  • [Bug Fix] Fix “pre-start scripts failed. Failed Jobs: policy-server” error Upgrading to CF Networking Release 2.40.0
  • [Bug Fix] Enable audit logging file rotation to reduce I/O load during log rotation
  • [Bug Fix] Smoke Tests uses specified domain for Isolation Segments
  • Bump backup-and-restore-sdk to version 1.18.28
  • Bump cf-networking to version 2.42.0
  • Bump cflinuxfs3 to version 0.268.0
  • Bump java-offline-buildpack to version 4.44
  • Bump loggregator-agent to version 6.3.5
  • Bump php-offline-buildpack to version 4.4.52
  • Bump routing to version 0.227.0
  • Bump silk to version 2.41.0
  • Bump smoke-tests to version 4.3.1
  • Bump syslog to version 11.7.6
Component Version
ubuntu-xenial stemcell~621
backup-and-restore-sdk1.18.28
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.15
capi1.109.4
cf-autoscaling242
cf-cli (v7/v8)*1.32.0
cf-networking2.42.0
cflinuxfs30.268.0
credhub2.9.6
diego2.54.0
dotnet-core-offline-buildpack2.3.36
garden-runc1.19.30
go-offline-buildpack1.9.37
haproxy9.8.0
java-offline-buildpack4.44
log-cache2.11.4
loggregator106.6.1
loggregator-agent6.3.5
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.32
nodejs-offline-buildpack1.7.63
notifications62
notifications-ui40
php-offline-buildpack4.4.52
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.39.0
python-offline-buildpack1.7.47
r-offline-buildpack1.1.23
routing0.227.0
ruby-offline-buildpack1.8.48
silk2.41.0
smb-volume3.1.0
smoke-tests4.3.1
staticfile-offline-buildpack1.5.26
statsd-injector1.11.16
syslog11.7.6
system-metrics-scraper3.2.3
uaa74.5.28

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.10

Release Date: 12/13/2021

Warning:

Note: This version of TAS for VMs contains a known issue that can cause application traces to break. See Gorouter Sets an Invalid X-B3-SpanID Header in Known Issues.

  • [Security Fix] UAA and CredHub - Fix remote code execution vulnerability related to Log4j (CVE-2021-44228)
  • [Bug Fix] Diego - Envoy v1.19 uses the original TCP connection pool so that it can accept more than 1024 downstream connections
  • [Breaking Change] Gorouter - zipkin trace-id size complies with w3 standard of 16 bytes instead of the previous 8 bytes
  • Bump credhub to version 2.9.6 which has Log4j 2.15.0
  • Bump diego to version 2.54.0
  • Bump routing to version 0.227.0
  • Bump uaa to version 74.5.28 which has Log4j 2.15.0
Component Version
ubuntu-xenial stemcell621.176
backup-and-restore-sdk1.18.26
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.15
capi1.109.4
cf-autoscaling242
cf-cli (v7/v8)*1.32.0
cf-networking2.40.0
cflinuxfs30.264.0
credhub2.9.6
diego2.54.0
dotnet-core-offline-buildpack2.3.36
garden-runc1.19.30
go-offline-buildpack1.9.37
haproxy9.8.0
java-offline-buildpack4.42
log-cache2.11.4
loggregator106.6.1
loggregator-agent6.3.4
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.32
nodejs-offline-buildpack1.7.63
notifications62
notifications-ui40
php-offline-buildpack4.4.48
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.39.0
python-offline-buildpack1.7.47
r-offline-buildpack1.1.23
routing0.227.0
ruby-offline-buildpack1.8.48
silk2.40.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.26
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.28

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.9

Release Date: 11/23/2021

  • [Bug Fix] Fix log cache nozzle metrics
  • [Breaking Change] All Gorouter certificates require a SubjectAltName extension. If any Gorouter certificates lack a SubjectAltName, deployment fails. If you need to complete a deployment before configuring new Gorouter certificates, select Enable temporary workaround for certs without SANs in the Networking pane of the TAS for VMs tile. For more information about updating certificates, see Routing and Golang 1.15 X.509 CommonName deprecation in the Knowledge Base.
  • [Bug Fix] Cloud Controller - Ensure app lifecycle_type is not nil when determining app lifecycle
  • Bump backup-and-restore-sdk to version 1.18.26
  • Bump bpm to version 1.1.15
  • Bump cf-autoscaling to version 242
  • Bump cf-networking to version 2.40.0
  • Bump cflinuxfs3 to version 0.264.0
  • Bump dotnet-core-offline-buildpack to version 2.3.36
  • Bump go-offline-buildpack to version 1.9.37
  • Bump loggregator to version 106.6.1
  • Bump nodejs-offline-buildpack to version 1.7.63
  • Bump php-offline-buildpack to version 4.4.48
  • Bump push-usage-service-release to version 674.0.23
  • Bump python-offline-buildpack to version 1.7.47
  • Bump r-offline-buildpack to version 1.1.23
  • Bump routing to version 0.226.0
  • Bump ruby-offline-buildpack to version 1.8.48
  • Bump silk to version 2.40.0
  • Bump staticfile-offline-buildpack to version 1.5.26
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.26
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.15
capi1.109.4
cf-autoscaling242
cf-cli (v7/v8)*1.32.0
cf-networking2.40.0
cflinuxfs30.264.0
credhub2.9.4
diego2.53.0
dotnet-core-offline-buildpack2.3.36
garden-runc1.19.30
go-offline-buildpack1.9.37
haproxy9.8.0
java-offline-buildpack4.42
log-cache2.11.4
loggregator-agent6.3.4
loggregator106.6.1
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.32
nodejs-offline-buildpack1.7.63
notifications-ui40
notifications62
php-offline-buildpack4.4.48
push-apps-manager-release674.0.6
push-usage-service-release674.0.23
pxc0.39.0
python-offline-buildpack1.7.47
r-offline-buildpack1.1.23
routing0.226.0
ruby-offline-buildpack1.8.48
silk2.40.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.26
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.26

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.8

Release Date: 10/19/2021

  • [Security Fix] CAPI - Address service broker SSRF CVE-2021-22099
  • [Security Fix] CAPI - Cap label selectors at 50 in queries and improve label selector performance to mitigate DOS vulnerability CVE-2021-22101
  • [Feature Improvement] Set default for System metrics scrape interval to 15s
  • [Bug Fix] Fix certificate rotation by fixing CredHub’s import of concatenated certificates
  • [Bug Fix] Fix “System metrics scrape interval” configuration in manifest
  • Bump backup-and-restore-sdk to version 1.18.21
  • Bump bpm to version 1.1.14
  • Bump capi to version 1.109.4
  • Bump cf-networking to version 2.39.0
  • Bump cflinuxfs3 to version 0.262.0
  • Bump credhub to version 2.9.4
  • Bump log-cache to version 2.11.4
  • Bump nginx-offline-buildpack to version 1.1.32
  • Bump nodejs-offline-buildpack to version 1.7.62
  • Bump php-offline-buildpack to version 4.4.46
  • Bump push-usage-service-release to version 674.0.22
  • Bump pxc to version 0.39.0
  • Bump python-offline-buildpack to version 1.7.46
  • Bump silk to version 2.39.0
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.21
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.14
capi1.109.4
cf-autoscaling239
cf-cli (v7/v8)*1.32.0
cf-networking2.39.0
cflinuxfs30.262.0
credhub2.9.4
diego2.53.0
dotnet-core-offline-buildpack2.3.34
garden-runc1.19.30
go-offline-buildpack1.9.34
haproxy9.8.0
java-offline-buildpack4.42
log-cache2.11.4
loggregator-agent6.3.4
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.32
nodejs-offline-buildpack1.7.62
notifications-ui40
notifications62
php-offline-buildpack4.4.46
push-apps-manager-release674.0.6
push-usage-service-release674.0.22
pxc0.39.0
python-offline-buildpack1.7.46
r-offline-buildpack1.1.21
routing0.224.0
ruby-offline-buildpack1.8.46
silk2.39.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.24
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.26

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.7

Release Date: 09/30/2021

  • [Security Fix] Fixes an issue where BBS socket connections could be kept alive unnecessarily
  • [Feature Improvement] Disable Diego container proxy ALPN
  • Bump backup-and-restore-sdk to version 1.18.19
  • Bump binary-offline-buildpack to version 1.0.40
  • Bump cflinuxfs3 to version 0.259.0
  • Bump diego to version 2.53.0
  • Bump dotnet-core-offline-buildpack to version 2.3.34
  • Bump java-offline-buildpack to version 4.42
  • Bump nginx-offline-buildpack to version 1.1.31
  • Bump nodejs-offline-buildpack to version 1.7.61
  • Bump php-offline-buildpack to version 4.4.45
  • Bump python-offline-buildpack to version 1.7.45
  • Bump r-offline-buildpack to version 1.1.21
  • Bump ruby-offline-buildpack to version 1.8.46
  • Bump uaa to version 74.5.26
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.19
binary-offline-buildpack1.0.40
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.13
capi1.109.1
cf-autoscaling239
cf-cli (v7/v8)*1.32.0
cf-networking2.38.0
cflinuxfs30.259.0
credhub2.9.1
diego2.53.0
dotnet-core-offline-buildpack2.3.34
garden-runc1.19.30
go-offline-buildpack1.9.34
haproxy9.8.0
java-offline-buildpack4.42
log-cache2.11.2
loggregator-agent6.3.4
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.31
nodejs-offline-buildpack1.7.61
notifications-ui40
notifications62
php-offline-buildpack4.4.45
push-apps-manager-release674.0.6
push-usage-service-release674.0.20
pxc0.37.0
python-offline-buildpack1.7.45
r-offline-buildpack1.1.21
routing0.224.0
ruby-offline-buildpack1.8.46
silk2.38.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.24
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.26

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.6

Release Date: 09/16/2021

  • [Security Fix] Usage Service - Bump rails dependency to address CVE-2021-22942
  • [Bug Fix] garden-runc - Fix handling reserved space on ext4 and generating bundle mounts when SMB volumes are present
  • Bump backup-and-restore-sdk to version 1.18.18
  • Bump cf-autoscaling to version 239
  • Bump cflinuxfs3 to version 0.256.0
  • Bump garden-runc to version 1.19.30
  • Bump log-cache to version 2.11.2
  • Bump push-usage-service-release to version 674.0.20
  • Bump routing to version 0.224.0
  • Bump uaa to version 74.5.25
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.18
binary-offline-buildpack1.0.39
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.13
capi1.109.1
cf-autoscaling239
cf-cli (v7/v8)*1.32.0
cf-networking2.38.0
cflinuxfs30.256.0
credhub2.9.1
diego2.50.0
dotnet-core-offline-buildpack2.3.32
garden-runc1.19.30
go-offline-buildpack1.9.34
haproxy9.8.0
java-offline-buildpack4.40
log-cache2.11.2
loggregator-agent6.3.4
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.30
nodejs-offline-buildpack1.7.57
notifications-ui40
notifications62
php-offline-buildpack4.4.44
push-apps-manager-release674.0.6
push-usage-service-release674.0.20
pxc0.37.0
python-offline-buildpack1.7.43
r-offline-buildpack1.1.20
routing0.224.0
ruby-offline-buildpack1.8.42
silk2.38.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.24
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.25

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.5

Release Date: 09/09/2021

  • [Security Fix] Gorouter built with Go 1.16.7 to address CVE-2021-36221
  • [Bug Fix] CAPI - Some metrics for CAPI were not being properly emitted
  • [Bug Fix] Usage Service - Address performance of /system_report/task_usages endpoint on large foundations
  • Bump backup-and-restore-sdk to version 1.18.15
  • Bump bpm to version 1.1.13
  • Bump cflinuxfs3 to version 0.252.0
  • Bump credhub to version 2.9.1
  • Bump go-offline-buildpack to version 1.9.34
  • Bump java-offline-buildpack to version 4.40
  • Bump log-cache to version 2.11.1
  • Bump loggregator-agent to version 6.3.4
  • Bump push-usage-service-release to version 674.0.18
  • Bump pxc to version 0.37.0
  • Bump routing to version 0.221.0
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.15
binary-offline-buildpack1.0.39
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.13
capi1.109.1
cf-autoscaling238
cf-cli (v7/v8)*1.32.0
cf-networking2.38.0
cflinuxfs30.252.0
credhub2.9.1
diego2.50.0
dotnet-core-offline-buildpack2.3.32
garden-runc1.19.29
go-offline-buildpack1.9.34
haproxy9.8.0
java-offline-buildpack4.40
log-cache2.11.1
loggregator-agent6.3.4
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.30
nodejs-offline-buildpack1.7.57
notifications-ui40
notifications62
php-offline-buildpack4.4.44
push-apps-manager-release674.0.6
push-usage-service-release674.0.18
pxc0.37.0
python-offline-buildpack1.7.43
r-offline-buildpack1.1.20
routing0.221.0
ruby-offline-buildpack1.8.42
silk2.38.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.24
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.24

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.4

Release Date: 07/20/2021

  • [Bug Fix] Ensure Cloud Controller organization and space quota validations include limit for tasks run against an app that has been exceeded
  • [Bug Fix] Garden recovers after a machine restarts
  • Bump capi to version 1.109.1
  • Bump dotnet-core-offline-buildpack to version 2.3.32
  • Bump garden-runc to version 1.19.29
  • Bump nginx-offline-buildpack to version 1.1.30
  • Bump nodejs-offline-buildpack to version 1.7.57
  • Bump php-offline-buildpack to version 4.4.44
  • Bump python-offline-buildpack to version 1.7.43
  • Bump r-offline-buildpack to version 1.1.20
  • Bump staticfile-offline-buildpack to version 1.5.24
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.2
binary-offline-buildpack1.0.39
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.12
capi1.109.1
cf-autoscaling238
cf-cli (v7/v8)*1.32.0
cf-networking2.38.0
cflinuxfs30.249.0
credhub2.9.0
diego2.50.0
dotnet-core-offline-buildpack2.3.32
garden-runc1.19.29
go-offline-buildpack1.9.33
haproxy9.8.0
java-offline-buildpack4.39
log-cache2.11.0
loggregator-agent6.3.3
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.30
nodejs-offline-buildpack1.7.57
notifications-ui40
notifications62
php-offline-buildpack4.4.44
push-apps-manager-release674.0.6
push-usage-service-release674.0.13
pxc0.36.0
python-offline-buildpack1.7.43
r-offline-buildpack1.1.20
routing0.216.0
ruby-offline-buildpack1.8.42
silk2.38.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.24
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.24

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.3

Release Date: 07/15/2021

  • [Security Fix] Fixed context path 404 vulnerability
  • [Security Fix] UAA - Bump dependencies and address CVEs
  • [Bug Fix] Prevent TCP routes from using system component ports. For more information, see TCP Routes Stop Working in the Knowledge Base. If you try to create or update a router group to include system component ports, the Routing API returns an error. Current invalid router groups that include system component ports are not changed, but a warning is logged. In TAS for VMs v2.12.0, invalid router groups cause a deploy failure. For more information, see Check and fix invalid router groups before TAS 2.12 in the Knowledge Base.
  • [Bug Fix] Fix metric-registrar crashing when non-url formatted drains exist
  • [Bug Fix] Add an option to remove extra metadata from syslog drains
  • [Breaking Change] Gorouter sends all responses with transfer-encoded chunks. Some responses that were not chunked in previous versions now use transfer-encoded chunks. For more information, see Clients receive responses with no Content-Length header and a chunked encoded body after upgrading Tanzu Application Service for VMs in the Knowledge Base. (edited 20 Oct 2021)
  • Bump binary-offline-buildpack to version 1.0.39
  • Bump cf-networking to version 2.38.0
  • Bump cflinuxfs3 to version 0.249.0
  • Bump dotnet-core-offline-buildpack to version 2.3.31
  • Bump garden-runc to version 1.19.28
  • Bump go-offline-buildpack to version 1.9.33
  • Bump metric-registrar to version 1.1.9
  • Bump metrics-discovery to version 3.0.6
  • Bump nginx-offline-buildpack to version 1.1.29
  • Bump nodejs-offline-buildpack to version 1.7.56
  • Bump php-offline-buildpack to version 4.4.43
  • Bump push-apps-manager-release to version 674.0.6
  • Bump pxc to version 0.36.0
  • Bump python-offline-buildpack to version 1.7.42
  • Bump r-offline-buildpack to version 1.1.19
  • Bump routing to version 0.216.0
  • Bump ruby-offline-buildpack to version 1.8.42
  • Bump silk to version 2.38.0
  • Bump staticfile-offline-buildpack to version 1.5.23
  • Bump syslog to version 11.7.5
  • Bump system-metrics-scraper to version 3.2.3
  • Bump uaa to version 74.5.24
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.2
binary-offline-buildpack1.0.39
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.12
capi1.109.0
cf-autoscaling238
cf-cli (v7/v8)*1.32.0
cf-networking2.38.0
cflinuxfs30.249.0
credhub2.9.0
diego2.50.0
dotnet-core-offline-buildpack2.3.31
garden-runc1.19.28
go-offline-buildpack1.9.33
haproxy9.8.0
java-offline-buildpack4.39
log-cache2.11.0
loggregator-agent6.3.3
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.9
metrics-discovery3.0.6
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.29
nodejs-offline-buildpack1.7.56
notifications-ui40
notifications62
php-offline-buildpack4.4.43
push-apps-manager-release674.0.6
push-usage-service-release674.0.13
pxc0.36.0
python-offline-buildpack1.7.42
r-offline-buildpack1.1.19
routing0.216.0
ruby-offline-buildpack1.8.42
silk2.38.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.23
statsd-injector1.11.16
syslog11.7.5
system-metrics-scraper3.2.3
uaa74.5.24

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.2

Release Date: 06/22/2021

  • [Security Fix] Bump some dependencies to resolve security vulnerabilities
  • Bump bpm to version 1.1.12
  • Bump cf-autoscaling to version 238
  • Bump cf-networking to version 2.37.0
  • Bump cflinuxfs3 to version 0.239.0
  • Bump java-offline-buildpack to version 4.39
  • Bump loggregator-agent to version 6.3.3
  • Bump metric-registrar to version 1.1.6
  • Bump metrics-discovery to version 3.0.5
  • Bump nats to version 40
  • Bump nodejs-offline-buildpack to version 1.7.52
  • Bump php-offline-buildpack to version 4.4.40
  • Bump push-apps-manager-release to version 674.0.5
  • Bump silk to version 2.37.0
  • Bump statsd-injector to version 1.11.16
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.2
binary-offline-buildpack1.0.38
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.12
capi1.109.0
cf-autoscaling238
cf-cli (v7/v8)*1.32.0
cf-networking2.37.0
cflinuxfs30.239.0
credhub2.9.0
diego2.50.0
dotnet-core-offline-buildpack2.3.28
garden-runc1.19.25
go-offline-buildpack1.9.31
haproxy9.8.0
java-offline-buildpack4.39
log-cache2.11.0
loggregator-agent6.3.3
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.6
metrics-discovery3.0.5
mysql-monitoring9.15.0
nats40
nfs-volume5.0.12
nginx-offline-buildpack1.1.26
nodejs-offline-buildpack1.7.52
notifications-ui40
notifications62
php-offline-buildpack4.4.40
push-apps-manager-release674.0.5
push-usage-service-release674.0.13
pxc0.35.0
python-offline-buildpack1.7.39
r-offline-buildpack1.1.17
routing0.213.0
ruby-offline-buildpack1.8.39
silk2.37.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.21
statsd-injector1.11.16
syslog11.7.0
system-metrics-scraper3.2.2
uaa74.5.22

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.1

Release Date: 05/27/2021

  • [Security Fix] Usage Service - Upgrade Rails gem to address CVE-2021-22880
  • [Feature Improvement] Patch versions can be upgraded without a stemcell upgrade. See Looser Stemcell Version Requirements when Upgrading TAS for VMs v2.11.1 and Later.
  • [Feature Improvement] MySQL binlogs volume is capped at 33% of available disk storage
  • [Feature Improvement] Improve metric-registrar to handle unreachable CC more gracefully, delete smoke-test app in the case of failure, and integrate CUPS caching
  • [Feature Improvement] Adds support for SNI routes
  • [Feature Improvement] Adds per request metrics reporting, which makes metric frequency proportional to request frequency
  • [Bug Fix] Smoke Test allows the operator to provide the apps_domain property when deploying TAS for VMs and also properly configures user provided space when deploying an isolation segment
  • [Bug Fix] Fix race condition and prevent network policy MySQL database from being able to get into an invalid state.
  • Bump binary-offline-buildpack to version 1.0.38
  • Bump bpm to version 1.1.11
  • Bump cf-autoscaling to version 237
  • Bump cf-networking to version 2.36.0
  • Bump cflinuxfs3 to version 0.238.0
  • Bump diego to version 2.50.0
  • Bump dotnet-core-offline-buildpack to version 2.3.28
  • Bump garden-runc to version 1.19.25
  • Bump go-offline-buildpack to version 1.9.31
  • Bump log-cache to version 2.11.0
  • Bump loggregator to version 106.6.0
  • Bump nginx-offline-buildpack to version 1.1.26
  • Bump nodejs-offline-buildpack to version 1.7.51
  • Bump notifications to version 62
  • Bump php-offline-buildpack to version 4.4.39
  • Bump push-usage-service-release to version 674.0.13
  • Bump pxc to version 0.35.0
  • Bump python-offline-buildpack to version 1.7.39
  • Bump r-offline-buildpack to version 1.1.17
  • Bump routing to version 0.213.0
  • Bump ruby-offline-buildpack to version 1.8.39
  • Bump silk to version 2.36.0
  • Bump smoke-tests to version 4.3.0
  • Bump staticfile-offline-buildpack to version 1.5.21
Component Version
ubuntu-xenial stemcell621.0
backup-and-restore-sdk1.18.2
binary-offline-buildpack1.0.38
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.11
capi1.109.0
cf-autoscaling237
cf-cli (v7/v8)*1.32.0
cf-networking2.36.0
cflinuxfs30.238.0
credhub2.9.0
diego2.50.0
dotnet-core-offline-buildpack2.3.28
garden-runc1.19.25
go-offline-buildpack1.9.31
haproxy9.8.0
java-offline-buildpack4.36
log-cache2.11.0
loggregator-agent6.2.0
loggregator106.6.0
mapfs1.2.6
metric-registrar1.1.1
metrics-discovery3.0.3
mysql-monitoring9.15.0
nats39
nfs-volume5.0.12
nginx-offline-buildpack1.1.26
nodejs-offline-buildpack1.7.51
notifications-ui40
notifications62
php-offline-buildpack4.4.39
push-apps-manager-release674.0.2
push-usage-service-release674.0.13
pxc0.35.0
python-offline-buildpack1.7.39
r-offline-buildpack1.1.17
routing0.213.0
ruby-offline-buildpack1.8.39
silk2.36.0
smb-volume3.1.0
smoke-tests4.3.0
staticfile-offline-buildpack1.5.21
statsd-injector1.11.15
syslog11.7.0
system-metrics-scraper3.2.2
uaa74.5.22

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

v2.11.0

Release Date: March 30, 2021

Component Version
ubuntu-xenial stemcell621.117
backup-and-restore-sdk1.18.2
binary-offline-buildpack1.0.36
bosh-dns-aliases0.0.3
bosh-system-metrics-forwarder0.0.20
bpm1.1.7
capi1.109.0
cf-autoscaling235
cf-cli (v7/v8)*1.32.0
cf-networking2.35.0
cflinuxfs30.231.0
credhub2.9.0
diego2.49.0
dotnet-core-offline-buildpack2.3.24
garden-runc1.19.18
go-offline-buildpack1.9.26
haproxy9.8.0
java-offline-buildpack4.36
log-cache2.10.0
loggregator-agent6.2.0
loggregator106.4.0
mapfs1.2.6
metric-registrar1.1.1
metrics-discovery3.0.3
mysql-monitoring9.15.0
nats39
nfs-volume5.0.12
nginx-offline-buildpack1.1.20
nodejs-offline-buildpack1.7.42
notifications-ui40
notifications61
php-offline-buildpack4.4.31
push-apps-manager-release674.0.2
push-usage-service-release674.0.11
pxc0.32.0
python-offline-buildpack1.7.30
r-offline-buildpack1.1.12
routing0.211.0
ruby-offline-buildpack1.8.31
silk2.35.0
smb-volume3.1.0
smoke-tests4.2.0
staticfile-offline-buildpack1.5.15
statsd-injector1.11.15
syslog11.7.0
system-metrics-scraper3.2.2
uaa74.5.22

* The cf-cli version corresponds to the commercial distribution on VMware Tanzu Network.

How to Upgrade

To upgrade to TAS for VMs v2.11, see Configuring TAS for VMs for Upgrades.

When upgrading to TAS for VMs v2.11, be aware of the following upgrade considerations:

  • TAS for VMs v2.11 is compatible with Ops Manager v2.10. If you are using a previous version of Ops Manager, you must upgrade to Ops Manager v2.10 before you upgrade to TAS for VMs v2.11.

  • Upgrade the cf CLI to either the latest cf CLI v7 release or the commercial cf CLI distribution available on VMware Tanzu Network.

  • If you are upgrading from Pivotal Application Service (PAS) v2.7 or TAS for VMs v2.9 and later, you can upgrade directly to TAS for VMs v2.11. TAS for VMs v2.11 is a long-term support (LTS) version of TAS for VMs. For more information, see Long-Term Support for TAS for VMs v2.11 below.

  • To minimize downtime for developers pushing apps, upgrade from PAS v2.7.41 or later or TAS for VMs v2.10.21 or later. Upgrading from earlier patch versions can result in an Unknown Error when pushing apps.

  • If you are upgrading from PAS v2.6 or earlier, you must upgrade to PAS v2.7 before you upgrade to TAS for VMs v2.11.

  • Some partner service tiles may be incompatible with TAS for VMs v2.11. VMware is working with partners to ensure that their tiles are updated to work with the latest versions of TAS for VMs. For information about which partner service releases are currently compatible with TAS for VMs v2.11, review the appropriate partners services release documentation at https://docs.pivotal.io or contact the partner organization that produces the tile.

  • In TAS for VMs v2.11, app containers use port 61002 for inbound SSH traffic. In PAS v2.7 and earlier, apps use port 2222 for inbound SSH traffic. If you are upgrading from PAS v2.7, you may need to adjust the NSX-T firewall rules for your apps.

New Features in TAS for VMs v2.11

TAS for VMs v2.11 includes the following major features:

Long-Term Support for TAS for VMs v2.11

TAS for VMs v2.11 is a long-term support (LTS) version of TAS for VMs. TAS for VMs v2.11 is to be supported through April 2024.

Over the lifecycle of TAS for VMs v2.11, VMware will release security patches that occasionally include feature enhancements and maintenance updates. VMware will also continue to release new versions of TAS for VMs.

You can jump upgrade directly from previous versions of TAS for VMs to the LTS version of TAS for VMs. For more information, see Jump Upgrading to TAS for VMs v2.11.

Deployment on VMware Cloud Foundation

TAS for VMs v2.11 can be deployed on VMware Cloud Foundation (VCF) v4.1. For instructions and more information, see Deploying TAS for VMs to VCF.

Deployment on VMware Cloud on Amazon Web Services

TAS for VMs v2.11 can be deployed to VMware Cloud (VMC) on Amazon Web Services (AWS). For instructions and more information, see Deploying TAS for VMs to VMC.

Timestamp Format for Component Logs Replaces Timestamp Format for Diego Logs

TAS for VMs v2.11 introduces RFC3339 log format support for several TAS for VMs components. You can configure these components to produce logs with human-readable RFC3339 timestamps with the Timestamp format for component logs configuration option in the System Logging pane of the TAS for VMs tile. Logs that use human-readable timestamps are often easier to debug.

RFC3339-formatted timestamps follow the RFC3339 spec, include nine points of precision where possible, and are in UTC. For example:

  • 2019-11-21T22:16:18.750673404Z

  • 2019-11-21T22:16:18.750000000Z

For more information about configuring the Timestamp format for component logs field, see (Optional) Configure System Logging in Configuring TAS for VMs.

In TAS for VMs v2.11, if you select the Converge to human-readable RFC3339 format option under Timestamp format for component logs, then the following components and related jobs use RFC3339 timestamps:

Component Jobs
Logging log-cache-nozzle, loggregator_agent, loggr-forwarder-agent, loggr-syslog-agent, prom_scraper, doppler, loggregator_trafficcontroller, reverse_log_proxy, reverse_log_proxy_gateway, log-cache-cf-auth-proxy, log-cache-gateway, log-cache-syslog-server, log-cache, loggr-syslog-binding-cache, loggr-upd-forwarder, syslog_forwarder
CAPI cc_deployment_updater, cc_uploader, cloud_controller_clock, cloud_controller_ng, cloud_controller_worker, rotate_cc_database_key, tps
UAA uaa

This new feature is related to a breaking change. For more information, see Timestamps for Component Logs in Diego Logs When Upgrading below.

Cloud Foundry V3 APIs Availability

TAS for VMs v2.11 supports Cloud Foundry V3 APIs. This feature improves response time when working with services. Use the Cloud Foundry V3 API endpoints when listing, creating, or modifying any service that works with TAS for VMs v2.11 and later.

Stemcell Version Requirements Less Strict When Upgrading TAS for VMs v2.11.1 and Later

TAS for VMs v2.11.1 and later have fewer minor version restrictions for stemcells. This allows you to upgrade to a newer TAS for VMs patch without upgrading the stemcell.

When you stage TAS for VMs for deployment, Ops Manager installs TAS for VMs using the latest stemcell by default.

In TAS for VMs v2.11.0 and earlier, if the latest stemcell was different from the stemcell that was used when installing TAS for VMs previously, then Ops Manager re-created all of the VMs in your TAS for VMs deployment during an upgrade.

In TAS for VMs v2.11.1 and later, you can upgrade to later patches of TAS for VMs without upgrading the stemcell or re-creating all VMs.

Breaking Changes

TAS for VMs v2.11 includes the following breaking changes:

Option Removed: Disable SSL Certificate Verification for this Environment

In TAS for VMs v2.11, the Disable SSL certificate verification for this environment checkbox is removed.

Before you upgrade to TAS for VMs v2.11, you must deactivate the Disable SSL certificate verification for this environment checkbox in the Networking pane of the TAS for VMs tile. For more information, see Configure Networking in Configuring TAS for VMs.

If the Disable SSL certificate verification for this environment checkbox is activated when you try to upgrade to TAS for VMs, the upgrade fails with the following error:

attempt to upgrade to PAS 2.11+ with Skip SSL Verification enabled, please disable
Skip SSL Verification prior to upgrade by un-checking "Disable SSL certificate
verification for this environment" under "Networking"

If you plan to automate the installation of TAS for VMs v2.11, you must remove references to the corresponding property .ha_proxy.skip_cert_verify.

Diego Drops App Logs That Exceed the App Log Rate Limit

As of TAS for VMs v2.11.26, if you have configured an app log rate limit that measures app log rates in lines per second, Diego immediately drops app logs that exceed the app log rate limit.

In TAS for VMs v2.11.25 and earlier, Diego buffers and releases approximately 5 MB to 10 MB of app logs that exceed the app log rate limit. This behavior has changed in TAS for VMs v2.11.26 because Diego has been upgraded to a newer version.

If this change in behavior causes parts of your deployment to fail, VMware recommends that you either modify any automated scripts that rely on app log output or increase the app log rate limit.

For more information about app log rate limits, see App Log Rate Limiting.

Gorouter Update to Golang v1.15 Introduces Stricter Transfer-Encoding Header Standards

In TAS for VMs v2.11 and later, stricter header standards break Spring apps that incorrectly set the header.

To avoid this breaking change, see Applications on TAS for VMs get 502 chunked response error in the Knowledge Base. You must complete the resolution procedure described in this Knowledge Base article before you upgrade to TAS for VMs v2.11 or later.

Note: This breaking change is also present in PAS v2.7.30, PAS v2.8.24, TAS for VMs v2.9.18, and TAS for VMs v2.10.10. If you are using any of these versions or earlier, you must upgrade to PAS v2.7.31, PAS v2.8.25, TAS for VMs v2.9.21, or TAS for VMs v2.10.11 before upgrading or jump upgrading to TAS for VMs v2.11. For more information, see Applications on TAS for VMs get 502 chunked response error in the Knowledge Base.

Timestamps for Component Logs in Diego Logs When Upgrading

The Timestamp format for component logs feature replaces the Format of timestamps in Diego logs feature in the App Containers pane of the TAS for VMs tile. However, when you upgrade to TAS for VMs v2.11, the option that was selected under Format of timestamps in Diego logs in your previous deployment is applied to Timestamp format for component logs.

For more information, see Timestamp Format for Component Logs Replaces Timestamp Format for Diego Logs above.

Dynamic Egress Policies Are Removed

You cannot upgrade to TAS for VMs v2.11 if you are using dynamic egress policies.

To see if you have dynamic egress policies, see List Egress Policies in the TAS for VMs v2.10 documentation.

To delete each of your policies, see Delete an Egress Policy in the TAS for VMs v2.10 documentation.

Cloud Controller Enforces Uniqueness of Service Bindings

When you upgrade to TAS for VMs v2.11, Cloud Controller introduces a database migration that forces service bindings between service instances and apps to be unique. If duplicate service bindings exist when you upgrade, the migration fails.

To work around this issue, you must delete any duplicate bindings before you upgrade.

Known Issues

TAS for VMs v2.11 includes the following known issues:

Rolling App Deployment Does Not Timeout

Rolling app deployments do not properly timeout when the startup timeout is reached. You may experience a rolling app deployment process that hangs indefinitely.

If you experience a hanging rolling app deployment, you can manually terminate the process. For more information about terminating the rolling app deployment process, see the cf CLI v7 procedure in Cancel a Deployment.

Pre-Start Scripts Fail on the policy-server Job

When upgrading to TAS for VMs v2.11.9, the policy-server pre-start script runs a database migration that drops a stored procedure that is no longer needed. If your networkpolicyserver database does not have the stored procedure, you might see the following error in diego_database policy-server stdout logs:

PROCEDURE networkpolicyserver.drop_destination_index does not exist handling 66

To work around this error, add the migration to your networkpolicyserver.gorp_migrations table and skip the migration.

For more information, see “pre-start scripts failed. Failed Jobs: policy-server” error Upgrading to CF Networking Release 2.40.0 in Tanzu Application Service for VMs in the Knowledge Base.

Gorouter Sets an Invalid X-B3-SpanID Header

An issue with the Gorouter’s implementation of X-B3-SpanId and X-B3-TraceId headers can cause invalid span IDs to be set after updating the X-B3-TraceId header to the new 16-byte standard. As a result, some applications and libraries invalidate the X-B3-SpanId value, breaking traces of the application.

This issue affects versions of TAS for VMs that contain routing-release v0.227.0 and v0.228.0.

java-offline-buildpack v4.52 Disallows Spring Auto Reconfiguration by Default

TAS for VMs v2.11.28 includes java-offline-buildpack v4.52, which disallows Spring Auto Reconfiguration by default. This change creates the following issues:

  • TAS for VMs v2.11.28 is incompatible with some service tiles, including Spring Cloud Data Flow (SCDF).

  • TAS for VMs cannot bind apps that use java-offline-buildpack v4.52 to service instances.

This known issue does not affect apps until you re-stage them.

Because the effects of this change are so disruptive, a patch release to fix this known issue is currently in development.

To temporarily restore the previous functionality of Spring Auto Reconfiguration for your apps:

  1. Set the JBP_CONFIG_SPRING_AUTO_RECONFIGURATION environment variable for your apps by running one of the following commands:

    • To restore the previous functionality of Spring Auto Reconfiguration on a per-app basis, run:
      cf set-env APP-NAME JBP_CONFIG_SPRING_AUTO_RECONFIGURATION '{enabled: true}'
    

    Where APP-NAME is the name of your app. * To restore the previous functionality of Spring Auto Reconfiguration for all apps in your TAS for VMs deployment, run:

      cf set-staging-environment-variable-group '{"JBP_CONFIG_SPRING_AUTO_RECONFIGURATION ":"{enabled: true}"}'
    

For more information about the deprecation of Spring Cloud Connectors and Spring Auto Reconfiguration in java-offline-buildpack v4.52, see Java Buildpack - Deprecation of Spring Cloud Connectors & Spring Auto Reconfiguration in the VMware Tanzu Knowledge Base.

Resolved Issues

TAS for VMs v2.11 includes the following resolved issues:

CredHub Primary Encryption Key Verification

When you configure the CredHub server for TAS for VMs, you must select a primary encryption key. In TAS for VMs v2.11, if you do not select a primary encryption key, or if you mark more than one key as the primary encryption key, deployment fails more quickly than in previous releases of TAS for VMs.

For more information, see Configure CredHub in Configuring TAS for VMs.

Apps Manager Uses the CAPI V2 Endpoint

For greater stability, Apps Manager uses the Cloud Controller API (CAPI) V2 endpoint instead of the experimental V3 endpoint.

Improved Handling for Disabled Service Plans in Apps Manager

In TAS for VMs, disabled service plans are handled gracefully in the Apps Manager UI.

Improved App Autoscaler Handling of RabbitMQ-Based Autoscaling Rules

In TAS for VMs v2.11, App Autoscaler uses fewer resource-intensive RabbitMQ endpoints when possible, in order to reduce load on RabbitMQ.