Releases: IABTechLab/uid2-admin
Releases · IABTechLab/uid2-admin
Release list
v6.16.0
📦 Uncategorized
- [CI Pipeline] Released Snapshot version: 6.14.1-alpha-251-SNAPSHOT - ( PR: #654 )
- [CI Pipeline] Released Snapshot version: 6.15.1-alpha-254-SNAPSHOT - ( PR: #658 )
- UID2-7364: Suppress CVE-2026-54512 / CVE-2026-54513 (jackson-databind) - ( PR: #661 )
- UID2-7271: add CREATE role for Claude admin automation - ( PR: #653 )
- [CI Pipeline] Released Minor version: 6.16.0 - ( PR: #662 )
Installation
docker pull ghcr.io/iabtechlab/uid2-admin:6.16.0
ghcr.io/iabtechlab/uid2-admin:latest
Image reference to deploy:
6.16.0
Changelog
- [CI Pipeline] Released Snapshot version: 6.14.1-alpha-251-SNAPSHOT - ( PR: #654 )
- [CI Pipeline] Released Snapshot version: 6.15.1-alpha-254-SNAPSHOT - ( PR: #658 )
- UID2-7364: Suppress CVE-2026-54512 / CVE-2026-54513 (jackson-databind) - ( PR: #661 )
- UID2-7271: add CREATE role for Claude admin automation - ( PR: #653 )
- [CI Pipeline] Released Minor version: 6.16.0 - ( PR: #662 )
v6.15.3
📦 Uncategorized
- [CI Pipeline] Released Snapshot version: 6.9.1-alpha-202-SNAPSHOT - ( PR: #550 )
- sch-UID2-5444 added feature switch for default min ages in salt rotation - ( PR: #549 )
- [CI Pipeline] Released Patch version: 6.9.8 - ( PR: #551 )
- additional admin participant summary work adding grafana links - ( PR: #552 )
- [CI Pipeline] Released Minor version: 6.10.0 - ( PR: #553 )
- Update .trivyignore - ( PR: #557 )
- Cleaned up refresh from and salt age threshold flags - ( PR: #562 )
- [CI Pipeline] Released Patch version: 6.10.7 - ( PR: #563 )
- upgrade vertx from 4.5.13 to 4.5.18 due to CVE-2025-55163 - ( PR: #564 )
- [CI Pipeline] Released Patch version: 6.10.10 - ( PR: #565 )
- Wzh UI d2 5765 enclave id registration authorization - ( PR: #554 )
- [CI Pipeline] Released Patch version: 6.10.17 - ( PR: #566 )
- [CI Pipeline] Released Snapshot version: 6.10.18-alpha-213-SNAPSHOT - ( PR: #569 )
- sch-UID2-5853 Added logs for key bucket count in salt rotation - ( PR: #568 )
- [CI Pipeline] Released Snapshot version: 6.10.19-alpha-214-SNAPSHOT - ( PR: #571 )
- sch-UID2-5851 migration from salt to key rotation - ( PR: #567 )
- [CI Pipeline] Released Minor version: 6.11.0 - ( PR: #572 )
- Made refreshFrom not nullable - ( PR: #570 )
- Update vertx version to 4.5.21 - ( PR: #578 )
- xuy-UID2-6055-upgrade-awsjavasdk - ( PR: #579 )
- [CI Pipeline] Released Minor version: 6.12.0 - ( PR: #580 )
- Salt rotation fixes - ( PR: #581 )
- [CI Pipeline] Released Patch version: 6.12.3 - ( PR: #582 )
- Fixed vulnerabilities - ( PR: #583 )
- xuy-UID2-5873-remove-gcp-vmid - ( PR: #584 )
- [CI Pipeline] Released Patch version: 6.12.11 - ( PR: #585 )
- Temporarily Suppress libpng CVE-2025-64720 and CVE-2025-65018 - ( PR: #586 )
- fix libpng vulnerability for docker - ( PR: #589 )
- Update base image to python alpine 3.23 - ( PR: #591 )
- Update docker base image - ( PR: #592 )
- Add CVE-2025-68973 to trivyignore - ( PR: #593 )
- initialize kms for localstack 4.x - ( PR: #594 )
- Upgrade libpng to fix CVE vulnerability - ( PR: #595 )
- Update eclipse-temurin base image to fix SSL CVE - ( PR: #596 )
- UID2-6550: Add CVE-2026-24515 to trivyignore - ( PR: #597 )
- Update base image, .trivyignore - ( PR: #598 )
- Fix Docker image digest - ( PR: #599 )
- [CI Pipeline] Released Snapshot version: 6.12.12-alpha-221-SNAPSHOT - ( PR: #601 )
- [CI Pipeline] Released Snapshot version: 6.12.13-alpha-222-SNAPSHOT - ( PR: #602 )
- [CI Pipeline] Released Snapshot version: 6.12.14-alpha-223-SNAPSHOT - ( PR: #603 )
- UID2-2885 Optout UI Improvement - ( PR: #600 )
- [CI Pipeline] Released Minor version: 6.13.0 - ( PR: #604 )
- UID2-6655: Suppress CVE-2026-1584 (gnutls) in .trivyignore - ( PR: #605 )
- [UID2-6670] Suppress GHSA-72hv-8253-57qq: jackson-core async parser not used - ( PR: #606 )
- UID2-6806: suppress CVE-2026-32776 (libexpat) in .trivyignore - ( PR: #608 )
- UID2-6837: Upgrade Netty to 4.1.132.Final (CVE-2026-33870, CVE-2026-33871) - ( PR: #612 )
- [CI Pipeline] Released Patch version: 6.13.9 - ( PR: #613 )
- UID2-1750: add explicit Lombok dependency (was relying on transitive) - ( PR: #615 )
- UID2-6905: upgrade libcrypto3/libssl3 to fix CVE-2026-28390 (HIGH) - ( PR: #616 )
- UID2-6929: CVE-2026-40200 upgrade musl/musl-utils to 1.2.5-r23 - ( PR: #617 )
- UID2-6799 Use ci-auto-merge environment in Release Admin Image workflow - ( PR: #618 )
- [CI Pipeline] Released Patch version: 6.13.18 - ( PR: #620 )
- [CI Pipeline] Released Patch version: 6.13.20 - ( PR: #622 )
- [CI Pipeline] Released Patch version: 6.13.21 - ( PR: #624 )
- UID2-7008: Suppress CVE-2026-33845 in .trivyignore — gnutls not used by our service - ( PR: #627 )
- suppress CVE-2026-33846: gnutls DTLS heap overflow DoS in Alpine base image - ( PR: #628 )
- UID2-7030: Upgrade gnutls + netty (CVE-2026-3833 + 4 netty CVEs) - ( PR: #631 )
- UID2-6764: enable SLSA provenance attestation - ( PR: #632 )
- [CI Pipeline] Released Patch version: 6.13.34 - ( PR: #633 )
- [CI Pipeline] Released Patch version: 6.13.35 - ( PR: #634 )
- docs: clarify in attestation verify command (UID2-6764) - ( PR: #635 )
- [CI Pipeline] Released Patch version: 6.13.38 - ( PR: #641 )
- UID2-XXXX: accept euid.admin.ss-portal Okta scope - ( PR: #645 )
- [CI Pipeline] Released Snapshot version: 6.13.39-alpha-248-SNAPSHOT - ( PR: #648 )
- UID2-7235 Add disabled operator key to mock data - ( PR: #647 )
- UID2-7035/UID2-7297: .trivyignore cleanup + netty upgrade to 4.1.135.Final - ( PR: #650 )
- UID2-7271: add Role.READ_ONLY to admin service - ( PR: #649 )
- [CI Pipeline] Released Minor version: 6.14.0 - ( PR: #651 )
- [CI Pipeline] Released Snapshot version: 6.14.1-alpha-252-SNAPSHOT - ( PR: #655 )
- UID2-7335: upgrade libexpat to patch CVE-2026-45186 (DoS) - ( PR: #656 )
- sch-UID2-7270 updated shared jar to allow eks pod identity - ( PR: #652 )
- [CI Pipeline] Released Minor version: 6.15.0 - ( PR: #657 )
- UID2-7335: bump base image to sha256:3f08b138 (retire explicit libexpat upgrade) - ( PR: #659 )
- [CI Pipeline] Released Patch version: 6.15.3 - ( PR: #660 )
Installation
docker pull ghcr.io/iabtechlab/uid2-admin:6.15.3
ghcr.io/iabtechlab/uid2-admin:latest
Image reference to deploy:
6.15.3
Changelog
- [CI Pipeline] Released Snapshot version: 6.9.1-alpha-202-SNAPSHOT - ( PR: #550 )
- sch-UID2-5444 added feature switch for default min ages in salt rotation - ( PR: #549 )
- [CI Pipeline] Released Patch version: 6.9.8 - ( PR: #551 )
- additional admin participant summary work adding grafana links - ( PR: #552 )
- [CI Pipeline] Released Minor version: 6.10.0 - ( PR: #553 )
- Update .trivyignore - ( PR: #557 )
- Cleaned up refresh from and salt age threshold flags - ( PR: #562 )
- [CI Pipeline] Released Patch version: 6.10.7 - ( PR: #563 )
- upgrade vertx from 4.5.13 to 4.5.18 due to CVE-2025-55163 - ( PR: #564 )
- [CI Pipeline] Released Patch version: 6.10.10 - ( PR: #565 )
- Wzh UI d2 5765 enclave id registration authorization - ( PR: #554 )
- [CI Pipeline] Released Patch version: 6.10.17 - ( PR: #566 )
- [CI Pipeline] Released Snapshot version: 6.10.18-alpha-213-SNAPSHOT - ( PR: #569 )
- sch-UID2-5853 Added logs for key bucket count in salt rotation - ( PR: #568 )
- [CI Pipeline] Released Snapshot version: 6.10.19-alpha-214-SNAPSHOT - ( PR: #571 )
- sch-UID2-5851 migration from salt to key rotation - ( PR: #567 )
- [CI Pipeline] Released Minor version: 6.11.0 - ( PR: #572 )
- Made refreshFrom not nullable - ( PR: #570 )
- Update vertx version to 4.5.21 - ( PR: #578 )
- xuy-UID2-6055-upgrade-awsjavasdk - ( PR: #579 )
- [CI Pipeline] Released Minor version: 6.12.0 - ( PR: #580 )
- Salt rotation fixes - ( PR: #581 )
- [CI Pipeline] Released Patch version: 6.12.3 - ( PR: #582 )
- Fixed vulnerabilities - ( PR: #583 )
- xuy-UID2-5873-remove-gcp-vmid - ( PR: #584 )
- [CI Pipeline] Released Patch version: 6.12.11 - ( PR: #585 )
- Temporarily Suppress libpng CVE-2025-64720 and CVE-2025-65018 - ( PR: #586 )
- fix libpng vulnerability for docker - ( PR: #589 )
- Update base image to python alpine 3.23 - ( PR: #591 )
- Update docker base image - ( PR: #592 )
- Add CVE-2025-68973 to trivyignore - ( PR: #593 )
- initialize kms for localstack 4.x - ( PR: #594 )
- Upgrade libpng to fix CVE vulnerability - ( PR: #595 )
- Update eclipse-temurin base image to fix SSL CVE - ( PR: #596 )
- UID2-6550: Add CVE-2026-24515 to trivyignore - ( PR: #597 )
- Update base image, .trivyignore - ( PR: #598 )
- Fix Docker image digest - ( PR: #599 )
- [CI Pipeline] Released Snapshot version: 6.12.12-alpha-221-SNAPSHOT - ( PR: #601 )
- [CI Pipeline] Released Snapshot version: 6.12.13-alpha-222-SNAPSHOT - ( PR: #602 )
- [CI Pipeline] Released Snapshot version: 6.12.14-alpha-223-SNAPSHOT - ( PR: #603 )
- UID2-2885 Optout UI Improvement - ( PR: #600 )
- [CI Pipeline] Released Minor version: 6.13.0 - ( PR: #604 )
- UID2-6655: Suppress CVE-2026-1584 (gnutls) in .trivyignore - ( PR: #605 )
- [UID2-6670] Suppress GHSA-72hv-8253-57qq: jackson-core async parser not used - ( PR: #606 )
- UID2-6806: suppress CVE-2026-32776 (libexpat) in .trivyignore - ( PR: #608 )
- UID2-6837: Upgrade Netty to 4.1.132.Final (CVE-2026-33870, CVE-2026-33871) - ( PR: #612 )
- [CI Pipeline] Released Patch version: 6.13.9 - ( PR: #613 )
- UID2-1750: add explicit Lombok dependency (was relying on transitive) - ( PR: #615 )
- UID2-6905: upgrade libcrypto3/libssl3 to fix CVE-2026-28390 (HIGH) - ( PR: #616 )
- UID2-6929: CVE-2026-40200 upgrade musl/musl-utils to 1.2.5-r23 - ( PR: #617 )
- UID2-6799 Use ci-auto-merge environment in Release Admin Image workflow - ( PR: #618 )
- [CI Pipeline] Released Patch version: 6.13.18 - ( PR: #620 )
- [CI Pipeline] Released Patch version: 6.13.20 - ( PR: #622 )
- [CI Pipeline] Released Patch version: 6.13.21 - ( PR: #624 )
- UID2-7008: Suppress CVE-2026-33845 in .trivyignore — gnutls not used by our service - ( PR: #627 )
- suppress CVE-2026-33846: gnutls DTLS heap overflow DoS in Alpine base image - ( PR: #628 )
- UID2-7030: Upgrade gnutls + netty (CVE-2026-3833 + 4 netty CVEs) - ( PR: #631 )
- UID2-6764: enable SLSA provenance attestation - ( PR: #632 )
- [CI Pipeline] Released Patch version: 6.13.34 - ( PR: #633 )
- [CI Pipeline] Released Patch version: 6.13.35 - ( PR: #634 )
- docs: clarify in attestation verify command (UID2-6764) - ( PR: #635 )
- [CI Pipeline] Released Patch version: 6.13.38 - ( PR: #641 )
- UID2-XXXX: accept euid.admin.ss-portal Okta scope - ( PR: #645 )
- [CI Pipeline] Released Snapshot version: 6.13.39-alpha-248-SNAPSHOT - ( PR: #648 )
- UID2-7235 Add disabled operator key to mock data - ( PR: #647 )
- UID2-7035/UID2-7297: .trivyignore cleanup + netty upgrade to 4.1.135.Final - ( PR: #650 )
- UID2-7271: add Role.READ_ONLY to admin service - ( PR: #649 )
- [CI Pipeline] Released Minor version: 6.14.0 - ( PR: #651 )
- [CI ...
v6.9.0
What's Changed
- add disabled field to services and service links by @Ian-Nara in #536
- [CI Pipeline] Released Minor version: 6.9.0 by @github-actions in #548
Full Changelog: v6.8.9...v6.9.0
Contributors
Ian-Nara
Assets 2
v6.6.0
📦 Uncategorized
What's Changed
- Update uid2-shared version by @caroline-ttd in #527
- [CI Pipeline] Released Minor version: 6.6.0 by @github-actions in #528
Full Changelog: v6.5.7...v6.6.0
Contributors
caroline-ttd
Assets 2
v6.5.0
What's Changed
- validate link_id's against per-service regex by @Ian-Nara in #515
- [CI Pipeline] Released Minor version: 6.5.0 by @github-actions in #519
Full Changelog: v6.4.0...v6.5.0
Contributors
Ian-Nara
Assets 2
v6.4.0
What's Changed
- add link-id-regex field to services by @Ian-Nara in #514
- [CI Pipeline] Released Minor version: 6.4.0 by @github-actions in #518
Full Changelog: v6.3.0...v6.4.0
Contributors
Ian-Nara
Assets 2
5.14.3
5.14.0
5.6.4
Improvements & Bug Fixes
- Remove encoding for keypair name for oncall flow
- PR: #288
5.6.0
What's Changed
- UID2-1983 ensure first key in a keyset is immediately active by @jon8787 in #278
- On call improvements to admin by @thomasm-ttd in #280
- Added oncall support workflow by @gmsdelmundo in #272
- added text to create site for ctsg by @thomasm-ttd in #286
- [CI Pipeline] Released Minor version: 5.6.0 by @github-actions in #287
Full Changelog: v5.5.0...v5.6.0
Contributors
gmsdelmundo, jon8787, and thomasm-ttd