8.6-alpha1

More info about the release is in the mono repo: 8.6.0-alpha1

8.3.11

Zeebe

Release 8.3.11

Bug Fixes

Misc

• Broken job stream aggregation (#17513)
• Potential duplicate PI creation across partitions in case of request timeouts (#17333)

Maintenance

• Make Snapshot Store IO bounded instead of CPU (#17717)

Merged Pull Requests

• fix: do not retry create instance on closed connection (#18264)
• test: disable flake BackupUploadIT.shouldSaveBackupWithManyFiles (#18205)
• test: fix flaky test by buffering possibly chunked content (#17923)
• fix: Make SnapshotStore IO bounded. (#17718)
• Fix broken job stream aggregation across stream restarts (#17545)
• ci: cancel outdated ci runs (#17315)
• ci: rely on automatic setup of CodeQL (#17313)
• ci: never time out during release jobs (#17271)
• Exporter can soft pause and resume (#16345)

Operate

🚀 New Features

• backend: Updates to mitigate security vulnerabilities (#6710)

💊 Bugfixes

• remove external domains from CSP in self-managed (#6741)
• allowed for empty POST request bodies [Backport stable/8.3] (#6726)
• log: log all exceptions in SchemaStartup (#6728)
• backend: Handle index value of null in PostImporter (#6717)
• INCIDENT state is not returned in Public API (#6720)
• API error message for invalid size parameters (#6676)

🧹 Chore

• pom: update Zeebe and Identity to 8.3.11 (#6745)

Tasklist

🚀 New Features

• adapting tasklist to Auth0 claim changes [Backport stable/8.3] (#4903)

💊 Bugfixes

• remove ES and OS healthcheck [Backport 8.5] [Backport stable/8.3] (#4908)
• Add ism dynamic update for ES Indices [Backport 8.3] (#4897)
• Tasklist importer does not import new Zeebe records when import-position points to old sequence (#4878)

🧹 Chore

• Bump to 8.3.11 (#4928)
• git ignore build files under tasklist subfolder when switching between master and stable branches [Backport stable/8.3] (#4841)

Identity

💊 Bugfixes

• upgrade alpine to 3.19.1 (#2822) (#2825)

🧹 Chore

• upgrade org.springframework.security:spring-security-web from 6.2.3 to 6.2.4 (#2783)
• revert include package.json and yarn.lock in docker image (#2846) (#2849)
• update spring boot to 3.2.5 (#2830)
• backport-2636-to-v8.3 (#2680)

Optimize

🚀 New Features

• email: allow check server identity to be skipped in start/tls (#12467)

💊 Bugfixes

• apply running instance filter to currently running instance adoption report (#12867)
• notifications: update C3 props
• objVars: handle null entries in list object vars
• release: use correct app actor for release job

🧹 Chore

• deps: update actions/checkout digest to 0ad4b8f (#12666)
• deps: update patch dependencies (maintenance/3.11) (patch) (#12821)
• deps: update eclipse-temurin:17 docker digest to a30e573 (#12831)
• release: rename release job
• deps: update patch dependencies (maintenance/3.11) (patch) (#12657)
• keycloak: Change to a working version of keycloak (#12707)
• deps: update eclipse-temurin:17 docker digest to de7b9bf (#12713)
• deps: update eclipse-temurin:17 docker digest to 9303030 (#12673)
• deps: update patch dependencies (maintenance/3.11) (patch) (#12648)
• release workflow: generate changelog before pushing new tag
• release workflow: fix branches checkouts
• deps: update actions/upload-artifact digest to 6546280 (#12630)
• deps: update actions/checkout digest to 1d96c77 (#12629)
• deps: update actions/upload-artifact digest to 1746f4a (#12597)
• deps: update hashicorp/vault-action digest to 47dbc64 (#12532)
• deps: update eclipse-temurin:17 docker digest to 83192a0 (#12535)
• deps: update patch dependencies to v2.0.13 (#12528)
• deps: update patch dependencies
• release workflow: fix changelog generation (#12501)
• deps: update patch dependencies (#12442)
• deps: update eclipse-temurin:17 docker digest to 22e6378 (#12461)
• identityService: return all users in saas when searchterm empty
• ci: update slack status channel usage to new name (#12452)
• deps: update patch dependencies (#12424)
• release: use the actor id in gha github email
• Release: add next upgrade plan
• deps: update dependency @types/react to v18.2.72
• release workflow: remove 0 version check

8.2.27

Zeebe

Release 8.2.27

Bug Fixes

Misc

• Potential duplicate PI creation across partitions in case of request timeouts (#17333)

Merged Pull Requests

• test: disable flake BackupUploadIT.shouldSaveBackupWithManyFiles (#18205)
• test: fix flaky test by buffering possibly chunked content (#17923)
• ci: cancel outdated ci runs (#17315)
• ci: rely on automatic setup of CodeQL (#17313)
• ci: never time out during release jobs (#17271)
• Exporter can soft pause and resume (#16345)

Operate

🚀 New Features

• backend: Updates to mitigate security vulnerabilities (#6709)

💊 Bugfixes

• allowed for empty POST request bodies [Backport stable/8.2] (#6727)
• INCIDENT state is not returned in Public API (#6723)
• backend: Handle index value of null in PostImporter (#6716)
• API error message for invalid size parameters (#6677)

🧹 Chore

• pom: update Zeebe and Identity to 8.2.27 (#6744)

Tasklist

🚀 New Features

• adapting tasklist to Auth0 claim changes [Backport stable/8.2] (#4904)

💊 Bugfixes

• add dynamic ISM on ES existent indexes [Backport 8.2] (#4894)
• Tasklist importer does not import new Zeebe records when import-position points to old sequence (#4879)

🧹 Chore

• Bump to 8.2.27 (#4927)

Identity

💊 Bugfixes

• upgrade alpine to 3.19.1 (#2822) (#2824)

🧹 Chore

• upgrade org.springframework.security:spring-security-web from 6.2.3 to 6.2.4 (#2781)
• revert include package.json and yarn.lock in docker image (#2846) (#2848)
• upgrade spring boot to 3.2.5 (#2831)

Optimize

🚀 New Features

• email: allow check server identity to be skipped in start/tls (#12466)

💊 Bugfixes

• objVars: handle null entries in list object vars
• release: use correct app actor for release job

🧹 Chore

• deps: update browser-actions/setup-chrome digest to 361a23f (#12929)
• deps: update bitnami/keycloak:24.0.3 docker digest to a6ef846 (#12747)
• deps: update patch dependencies (maintenance/3.10) (patch) (#12938)
• release: rename release job (#12878)
• deps: update patch dependencies (maintenance/3.10) (patch) (#12822)
• deps: update eclipse-temurin:17 docker digest to a30e573 (#12832)
• deps: update patch dependencies (maintenance/3.10) (patch) (#12658)
• keycloak: Change to a working version of keycloak (#12708)
• deps: update actions/checkout digest to 0ad4b8f (#12702)
• deps: update eclipse-temurin:17 docker digest to de7b9bf (#12714)
• deps: update actions/checkout digest to 1d96c77 (#12686)
• deps: update eclipse-temurin:17 docker digest to 9303030 (#12674)
• deps: update patch dependencies (maintenance/3.10) (patch) (#12649)
• release workflow: generate changelog before pushing new tag
• release workflow: fix branches checkouts
• deps: update actions/upload-artifact digest to 6546280 (#12633)
• deps: update actions/checkout digest to 1d96c77 (#12632)
• deps: update browser-actions/setup-chrome digest to 82b9ce6 (#12613)
• deps: update actions/upload-artifact digest to 1746f4a (#12598)
• deps: update eclipse-temurin:17 docker digest to 83192a0 (#12462)
• deps: update patch dependencies (#12396)
• deps: update hashicorp/vault-action digest to 47dbc64 (#12533)
• release workflow: fix changelog generation (#12501)
• identityService: return all users in saas when searchterm empty
• release: use the actor id in gha github email
• release: add new upgrade plan
• release workflow: remove 0 version check

8.5.0

Zeebe

Enhancements

Broker

• Subscribe to a message boundary event on process instance migration (#16384)
• Data Recovery in Zeebe (#5310)
• Increase job timeout resolution / reject requests below resolution threshold (#5073)
• ActivateJobsRequest doesn't specify units for timeout and requestTimeout (#3944)
• Define the job retries statically or as expression (#3803)
• I can query broker status using zbctl (#2612)
• The job payload is propagated on completion to the task scope (#1860)
• Non-strict JsonPath conditions (#1751)
• Write dedicated payload events (#1619)
• Align bpmn xml handling in client API (#382)
• Client should throw proper exception when reading bad property values (#375)

Java Client

• Zeebe Java Client can not be used to build Native Image with GraalVM (#6054)
• Reactive client for a Zeebe (#5892)
• custom serializer configuration for zeebe Java client (#5578)
• Job handler interface should declare throws Exception (#397)

Go Client

• go-client: Job worker polling backoff mechanism (#6150)
• zbctl: tell the user to use the --insecure flag when it's needed (#3822)
• Migrate update payload to set variables in zbctl (#2136)

Misc

• Reject process deployment with compensation start event (#16970)
• Remove compensation subscription when terminating subprocess (#16808)
• Support Azure UAMI for backup storage authentication (#16736)
• I can use a multi-instance activity as compensation handler (#16602)
• I can use a call activity as compensation handler (#16600)
• I can trigger compensation from an event subprocess (#15465)
• Wait until the compensation handlers are completed (#15066)
• Cancel compensation handlers on process instance termination (#15065)
• Remove compensation subscriptions when the process instance ends (#15064)
• Invoke compensation handler attached to a compensation boundary event (#14970)
• Zeebe worker api support specifying process id(s) to avoid job type conflict (#5054)
• I can fail a job without activating it (#3757)
• Java client: add ability to recreate job from json (#3017)
• Add TLS support to zbctl (#2885)

Bug Fixes

Broker

• I can't activate a job with payload larger then maxMessageSize/2 (#6207)
• KryoException: java.nio.BufferUnderflowException Serialization trace: data (io.atomix.raft.zeebe.ZeebeEntry) (#5495)
• ModelParseException: SAXException while parsing input stream (#5490)
• Workers broken as gRPC connections fail (quickly after registering workers) in versions >23.1 in some configurations (#5187)
• Restart takes too long or never completes when snapshot contains many files (#5135)
• Rolling update from 0.23 to 0.24 is not possible (#5102)
• Benchmark 0.24.0-RC1 stopped making progress (#4871)
• Parallel multi-instance call activity cannot collect output (#4860)
• Possible regression in job activation (#4524)
• Unexpected non-empty log failed to read the last block (#3543)
• Replicated snapshots contain no last processed position (possibly) (#3485)
• Restarting a broker with many segments causes broker timeout (#3456)
• Buffered messages are correlated out of order (#3397)
• Engine tests degrade in test execution time (#3007)
• WorkflowInstanceCreationRecordValue does not extends RecordValueWithVariables (#2532)
• No leader services installed on any node for a partition (#2465)
• Investigate why create workflow instance requests are not evenly distributed across all partitions (#2187)
• Unset field when cancelling timer causes event processing error (#2114)
• Success response for push deployment is send before it is persistently written to logstorage (#2110)
• Wrapping Records in States can interfere with the TypedStreamProcessor TypedRecords (#1916)
• Wrong BPMN Element Type after Event-Based Gateway (#1889)
• ExporterIntegrationRule always start since recording exporter is configured (#1840)
• Task Custom Header Value can't be longer than 128 (#1823)
• Docker run of 0.1.0 breaks with java.lang.OutOfMemoryError: Direct buffer memory (#390)

Gateway

• Gateway fails to connect to broker after broker restarts (#5362)
• Workers broken as gRPC connections fail (quickly after registering workers) in versions >23.1 in some configurations (#5187)
• Standalone gateway returns out-of-date topology when brokers go away (#2501)

Java Client

• Openapi code generation failed on zeebe-client-java (#16759)

Go Client

• zbctl emits usage help when I got it right (#3776)

Misc

• Potential bug in timer due date checker scheduling (#17227)
• Opensearch Retention policy is not applied to existing zeebe indices when enabled (#17186)
• Broker scaling up is stuck in the operation adding a new broker (#16870)
• Retention policy is not applied to existing zeebe indices when enabled (#16720)
• Endless processing state machine error loop (#16107)
• Job backoff migration causes duplicate incidents (#15954)
• After cancellation, a completed change operation should not overwrite updated topology (#15726)
• NoSuchElementException: null while recovering from a snapshot (#15721)
• Intermediate signal throw event should not send a response out (#15649)
• Restore from backup should validate partition count (#15411)
• Failure to delete pending snapshot leads to inactive partition until restart (#14670)
• Failed jobs are not reactivate after backoff (#14329)
• Re-processing detects inconsistency due to Deployment rejection (#5610)
• Nullpointer on ZeebeStateMachine (#4086)
• Unable to start broker on windows with Java 13 via launcher (#3979)
• Follower restart causes fail over and stops processing (#3389)
• ActiveRole the onLeaderHeartbeat uses wrong context for transition (#4164)
• NPE in FsLogStorage#getSize (#3343)
• AsyncSnapshotDirector is not removed cleanly on failover (#3274)
• Broker Stops working with the Too many files open exception. (#3091)
• Broker get OutOfMemory after a while (#3090)
• Server throws at long-poll deadline timeout if client has already timed out deadl...

8.4.6

Zeebe

Bug Fixes

Broker

• Stream is spammed by duplicate Timer TRIGGER commands (#17128)

Misc

• Potential bug in timer due date checker scheduling (#17227)
• Opensearch Retention policy is not applied to existing zeebe indices when enabled (#17186)
• Failed jobs are not activated again (#16884)
• Broker scaling up is stuck in the operation adding a new broker (#16870)
• Retention policy is not applied to existing zeebe indices when enabled (#16720)
• NPE in PendingProcessMessageSubscriptionChecker (#16609)
• Job backoff migration causes duplicate incidents (#15954)
• Possible inconsistency of job not found in DbJobState#visitJob (#15733)
• Failed jobs are not reactivate after backoff (#14329)
• Scheduler Tasks can't be canceled on the ProcessingScheduleService (#10541)

Maintenance

• Respect quiet period before shutting down the gateway (#16024)

Merged Pull Requests

• fix: avoid race between scheduling and execution of due date checker (#17251)
• fix: opensearch exporter - update ISM policy for existing indices when retention config changes on rerun (#17187)
• [Backport release-8.5.0] Fix duplicate timer schedules (#17171)
• fix: update lifecycle policy for existing indices when retention config changes on elasticsearch exporter re-run. (#17124)
• ci: don't cache results of building zeebe docker image (#17064)
• test: stabilize flaky test by increasing timeout (#17001)
• feat: gracefully shut down gRPC server (#16956)
• fix: do not fail retry of member join operation (#16907)
• Add warning to checkers (#16873)
• deps: Update dependency org.apache.commons:commons-compress to v1.26.1 (stable/8.4) (#16861)
• deps: Update dependency io.projectreactor:reactor-core to v3.6.4 (stable/8.4) (#16859)
• deps: Update dependency io.projectreactor.netty:reactor-netty-http to v1.1.17 (stable/8.4) (#16858)
• deps: Update dependency io.micrometer:micrometer-bom to v1.12.4 (stable/8.4) (#16857)
• test: await identity readiness (#16843)
• [Backport stable/8.4] Ensure lastProcessesPosition is set when StreamProcessor is paused (#16840)
• deps(maven): Update dependency org.testcontainers:testcontainers-bom to v1.19.7 (stable/8.4) (#16799)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.168 (stable/8.4) (#16798)
• deps(docker): Update ubuntu:jammy Docker digest to 77906da (stable/8.4) (#16797)
• [Backport stable/8.4] Adjust condition of auto-merge (#16793)
• deps(docker): Update eclipse-temurin:21-jdk-jammy Docker digest to feeeb86 (stable/8.4) (#16789)
• [Backport stable/8.4] fix: respect offset and length on DbBytes#wrap (#16773)
• [Backport stable/8.4] docs: Remove the ExperimentalApi annotation from the Java client CommandWithTenantStep interface (#16771)
• Release 8.4.5 (#16740)
• Clean Backoff column family from wrong jobs (#16508)

Operate

🚀 New Features

• backend: Implement OpensearchBackupRepository with REST (#6614)

💊 Bugfixes

• backend: use raw requests for OpenSearch pipeline requests
• decision table scrolling behavior [Backport stable/8.4] (#6664)
• backend: Delete parent pi fails on archived instances (#6658)
• remove opensearchClient from elasticsearch file (#6659)
• elasticsearch/opensearch archiverrepository: fix applying ILM policy to non-existing index) (#6642)
• Error calling Prometheus endpoint with multitenancy enabled (#6645)
• PermissionsService: check for null authentication (#6635)

🧹 Chore

• update zeebe and identity to 8.4.6 (#6690)
• Jenkins: Revert temporary switch main pipelines to sable nodes (#6575) (#6622)

Tasklist

🚀 New Features

• adding support for changes in number_of_replicas for ES/OS [Backport stable/8.4] (#4721)

💊 Bugfixes

• rename build tasklist docker (#4825)
• backport extension user task restrictions (#4730)
• racing condition for deployments with forms and tasks at the same time [Backport stable/8.4] (#4720)
• Tasklist returns empty schema for an embedded form [Backport stable/8.4] (#4716)
• Prevent Mixpanel block starting UI
• use the right alpine:3.19.1 digest [Backport stable/8.4] (#4671)

🧹 Chore

• bump deps for v8.4.6 release (#4816)
• set action.destructive_requires_name to false for E2E ES [stable/8.4] (#4774)
• upgrade springboot to 3.1.10 to fix CVE-2024-22259 (#4744)
• update helm release camunda-platform to v9.3.0 (#4688)
• update CHANGELOG.md

Identity

💊 Bugfixes

• upgrade spring-security to fix cve-2024-22257 (#2696) (#2698)

🧹 Chore

• upgrade org.springframework.boot:spring-boot-starter-web from 3.1.9 to 3.1.10 (#2704)
• backport-2664-to-v8.4 (#2666)

Optimize

💊 Bugfixes

• sharing: embedded reports and dashboards sometimes fail to load (#12263)
• docs: Remove -rc# and -alpha from docs link, also use base version (#12112)
• chart: disable zoom in plugin when no datapoints presented (#12039)

🧹 Chore

• deps: update korthout/backport-action digest to ef20d86 (#12391)
• deps: update patch dependencies (#12423)
• release: add new upgrade plan
• release: update zeebe/identity deps
• deps: update bitnami/keycloak:23.0.7 docker digest to 9596e39 (#12390)
• deps: update patch dependencies to v18.2.73
• deps: update dependency org.elasticsearch.client:elasticsearch-rest-high-level-client to v7.17.19 ([#12371](https://github.com/camunda/camunda-optimize/issues/12371))
• deps: update eclipse-temurin:21 docker digest to 1f64d3e (#12355)
• deps: update patch dependencies ([#12238](https://github.com/camunda/camunda-optimize/issues/12238))
• deps: update dependency io.netty:netty-codec-http to v4.1.108.final [security]
• e2e: fix pipeline
• release: update C8 footer version
• deps: update bitnami/keycloak:23.0.7 docker digest to c4a2bf0 (#12275)
• deps: update spring security to 6.2.3 (#12280)
• GHA: update docker compose github action organisation (#12273)
• ci: rename tests to match status checks (#12245) (#12247)
• deps: update patch dependencies (#12184)
• deps: update actions/setup-java digest to 99b8673 (#12133)
• deps: ...

8.3.10

Zeebe

Enhancements

Broker

• Increase job timeout resolution / reject requests below resolution threshold (#5073)

Bug Fixes

Broker

• Stream is spammed by duplicate Timer TRIGGER commands (#17128)

Java Client

• Failed to activate jobs for worker xxx and job type xxx (#15507)

Misc

• Potential bug in timer due date checker scheduling (#17227)
• Failed jobs are not activated again (#16884)
• Retention policy is not applied to existing zeebe indices when enabled (#16720)
• NPE in PendingProcessMessageSubscriptionChecker (#16609)
• Possible inconsistency of job not found in DbJobState#visitJob (#15733)

Merged Pull Requests

• fix: avoid race between scheduling and execution of due date checker (#17251)
• [Backport stable/8.4] Fix duplicate timer schedules (#17178)
• [Backport release-8.5.0] Fix duplicate timer schedules (#17171)
• Fix duplicate timer schedules (#17136)
• fix: update lifecycle policy for existing indices when retention config changes on elasticsearch exporter re-run. (#17124)
• ci: don't cache results of building zeebe docker image (#17064)
• [Backport stable/8.4] feat: makes job timeout resolution configurable (#17004)
• Add warning to checkers (#16873)
• deps: Update dependency org.apache.commons:commons-compress to v1.26.1 (stable/8.3) (#16856)
• deps: Update dependency io.projectreactor.netty:reactor-netty-http to v1.1.17 (stable/8.3) (#16854)
• test: await identity readiness (#16843)
• [Backport stable/8.3] Ensure lastProcessesPosition is set when StreamProcessor is paused (#16839)
• [Backport stable/8.3] Adjust condition of auto-merge (#16792)
• deps(maven): Update dependency org.testcontainers:testcontainers-bom to v1.19.7 (stable/8.3) (#16788)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.168 (stable/8.3) (#16787)
• deps(docker): Update ubuntu:jammy Docker digest to 77906da (stable/8.3) (#16786)
• deps(docker): Update eclipse-temurin:17-jdk-jammy Docker digest to 721e57d (stable/8.3) (#16785)
• [Backport stable/8.3] fix: respect offset and length on DbBytes#wrap (#16774)
• [Backport stable/8.3] docs: Remove the ExperimentalApi annotation from the Java client CommandWithTenantStep interface (#16770)
• Release 8.3.9 (#16742)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.167 (stable/8.3) (#16730)
• [Backport stable/8.3] test: fix waiting for activated jobs (#16702)

Operate

🚀 New Features

• backend: port ILM fix for 5921 (#6662)

💊 Bugfixes

• decision table scrolling behavior [Backport stable/8.3] (#6665)
• backend: Delete parent pi fails on archived instances (#6657)
• PermissionsService: check for null authentication (#6646)
• Error calling Prometheus endpoint with multitenancy enabled (#6643)

🧹 Chore

• update zeebe and identity to 8.3.10 (#6689)
• add SecurityWrapperContext to SprintBootTest (#6661)

Tasklist

💊 Bugfixes

• Rename build-tasklist-docker tasklist (#4822)
• rename build tasklist docker folder (#4823)
• use the right alpine:3.19.1 digest [Backport stable/8.3] (#4668)

🧹 Chore

• bump deps for v8.3.10 release (#4815)
• upgrade springboot to 3.1.10 to fix CVE-2024-22259 (#4745)
• switch keycloak docker to quay.io/keycloak (#4741)
• update CHANGELOG.md

Identity

💊 Bugfixes

• upgrade spring-security to fix cve-2024-22257 (#2699)
• axios and follow-redirects cve issue (#2664)

🧹 Chore

• bump postgresql version to resolve CVE (#2713)

Optimize

💊 Bugfixes

• sharing: embedded reports and dashboards sometimes fail to load (#12262)
• chart: disable zoom in plugin when no datapoints presented (#12038)
• digest: digest email link targets incorrect page (#12054)

🧹 Chore

• Release: add next upgrade plan
• release: update zeebe/identity deps
• deps: update korthout/backport-action digest to ef20d86 (#12393)
• deps: update dependency @types/react to v18.2.72
• deps: update dependency org.elasticsearch.client:elasticsearch-rest-high-level-client to v7.17.19 (#12379)
• deps: update eclipse-temurin:17 docker digest to 05723aa (#12357)
• deps: update dependency org.aspectj:aspectjweaver to v1.9.22 ([#12343](https://github.com/camunda/camunda-optimize/issues/12343))
• deps: update patch dependencies (#12237)
• e2e: fix pipeline (#12299)
• release: update C8 footer version
• deps: update spring security to 6.2.3 (#12279)
• GHA: update docker compose github action organisation (#12272)
• deps: update docker/build-push-action digest to 2cdde99 (#12154)
• ci: rename tests to match status checks (#12245)
• deps: update actions/setup-java digest to 99b8673 ([#12136](https://github.com/camunda/camunda-optimize/issues/12136))
• style: Apply Google Code Style (#12146)
• deps: update patch dependencies (#12185)
• deps: update docker/login-action digest to e92390c ([#12137](https://github.com/camunda/camunda-optimize/issues/12137))
• deps: update patch dependencies (#12177)
• deps: update dependency @types/react to v18.2.62 (#12061)
• deps: update eclipse-temurin:17 docker digest to e8d451f (#12121)
• ci: prefix unit test workflow job (#12092)
• deps: update docker/build-push-action digest to af5a7ed (#12068)
• upgrade: add upgrade plan for 3.11.8 (#12058)

8.2.26

Zeebe

Bug Fixes

Misc

• Potential bug in timer due date checker scheduling (#17227)
• Retention policy is not applied to existing zeebe indices when enabled (#16720)

Merged Pull Requests

• fix: avoid race between scheduling and execution of due date checker (#17251)
• fix: update lifecycle policy for existing indices when retention config changes on elasticsearch exporter re-run. (#17124)
• ci: don't cache results of building zeebe docker image (#17064)
• [Backport stable/8.2] Ensure lastProcessesPosition is set when StreamProcessor is paused (#16838)
• deps(maven): Update dependency org.apache.commons:commons-compress to v1.26.1 (stable/8.2) (#16824)
• [Backport stable/8.2] Adjust condition of auto-merge (#16791)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.168 (stable/8.2) (#16784)
• deps(docker): Update ubuntu:jammy Docker digest to 77906da (stable/8.2) (#16781)
• [Backport stable/8.2] fix: respect offset and length on DbBytes#wrap (#16775)
• deps(docker): Update eclipse-temurin:17-jdk-jammy Docker digest to 721e57d (stable/8.2) (#16763)
• Release 8.2.25 (#16743)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.167 (stable/8.2) (#16729)
• [Backport stable/8.2] test: fix waiting for activated jobs (#16701)

Operate

💊 Bugfixes

• backend: Delete parent pi fails on archived instances (#6656)
• PermissionsService: check for null authentication (#6647)
• backend: Delete process instance operation is not retried (backport) (#6624)

🧹 Chore

• update zeebe and identity to 8.2.26 (#6688)

Tasklist

💊 Bugfixes

• Rename defaultconfigjson changelog (#4818)
• rename build-docker folder to build-tasklist-docker (#4821)
• use the right alpine:3.19.1 digest [Backport stable/8.2] (#4669)

🧹 Chore

• bump deps for v8.2.26 release (#4814)
• upgrade springboot to 3.1.10 to fix CVE-2024-22259 (#4744) (#4746)
• bump spring version to 3.1.9 to fix CVE-2024-24549 and CVE-2024-23672 - 8.2 (#4727)
• bump nimbus-jose-jwt to fix CVE-2023-52428 [Backport stable/8.2] (#4677)
• update CHANGELOG.md

Identity

💊 Bugfixes

• upgrade spring-security to fix cve-2024-22257 (#2696) (#2700)

🧹 Chore

• bump postgresql version to resolve CVE (#2712)
• backport-2664-to-v8.2 (#2665)

Optimize

💊 Bugfixes

• sharing: embedded reports and dashboards sometimes fail to load (#12249) (#12264)
• chart: disable zoom in plugin when no datapoints presented (#12037)

🧹 Chore

• release: add new upgrade plan
• release: update zeebe and identity deps
• deps: update korthout/backport-action digest to ef20d86 (#12394)
• deps: update dependency org.elasticsearch.client:elasticsearch-rest-high-level-client to v7.17.19 (#12380)
• deps: update eclipse-temurin:17 docker digest to 05723aa (#12358)
• deps: update patch dependencies (#12062)
• deps: update dependency io.netty:netty-codec-http to v4.1.108.final [security]
• e2e: fix pipeline ([#12301](https://github.com/camunda/camunda-optimize/issues/12301))
• deps: update Spring version to 6.1.5 (#12285)
• deps: update spring security to 6.2.3 (#12278)
• GHA: update docker compose github action organisation (#12271)
• ci: rename tests to match status checks (#12245) (#12248)
• deps: update docker/login-action digest to e92390c (#12140)
• style: Apply Google Code Style (#12148)
• deps: update docker/build-push-action digest to 2cdde99 (#12156)
• deps: update actions/setup-java digest to 99b8673 (#12139)
• deps: update eclipse-temurin:17 docker digest to e8d451f (#12122)
• ci: prefix unit test workflow job (#12093)
• deps: update docker/build-push-action digest to af5a7ed (#12070)
• upgrade: add upgrade plan for 3.10.9 (#12057)

8.1.27

Zeebe

Bug Fixes

Misc

• Potential bug in timer due date checker scheduling (#17227)

Merged Pull Requests

• fix: avoid race between scheduling and execution of due date checker (#17251)
• Fix duplicate timer schedules (#17136)
• ci: don't cache results of building zeebe docker image (#17064)
• [Backport stable/8.1] Adjust condition of auto-merge (#16790)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.168 (stable/8.1) (#16783)
• [Backport stable/8.1] fix: respect offset and length on DbBytes#wrap (#16776)
• deps(docker): Update ubuntu:jammy Docker digest to 77906da (stable/8.1) (#16762)
• deps(docker): Update eclipse-temurin:17-jdk-jammy Docker digest to 721e57d (stable/8.1) (#16761)
• Release 8.1.26 (#16741)
• deps(maven): Update dependency io.github.classgraph:classgraph to v4.8.167 (stable/8.1) (#16728)
• [Backport stable/8.1] test: fix waiting for activated jobs (#16700)

Operate

🧹 Chore

• update zeebe and identity to 8.1.27 (#6687)

Tasklist

💊 Bugfixes

• rename defaultChangelogConfig.json (#4817)
• use the right alpine:3.19.1 digest [Backport stable/8.1] (#4670)

🧹 Chore

• bump deps for v8.1.27 release (#4813)
• upgrade tomcat to 9.0.86 to fix CVE-2024-24549 and CVE-2024-23672 [stable/8.1] (#4761)
• set spring-security-core version to fix CVE-2024-22257 [stable/8.1] (#4760)
• update CHANGELOG.md

Identity

No changes

8.5.0-alpha2

Zeebe

Enhancements

Broker

• Unsubscribe from a message boundary event on process instance migration (#16383)
• Support I/O mapping variables starting with _ (#11397)

Java Client

• An Apache HttpClient 5 can be created in the Zeebe Java client (#16538)

Misc

• Migrate element instances with incidents in the processor (#16620)
• Introduce fold method to Either interface for unified value transformation (#16561)
• Decision Instance Key field from evaluation response (#15916)
• Invoke compensation handlers in an embedded subprocess (#15068)

Bug Fixes

Broker

• New event applier versions could lead to data inconsistencies (#15833)

Go Client

• Zbctl (latest) is not working with SaaS (#15524)

zbctl

• Zbctl (latest) is not working with SaaS (#15524)

Misc

• Partition Transition reported as stuck even if it doesn't take long (#16633)
• Missing resourceKey property when deleting a resource causes an endless error loop (#16429)
• Failed to correct prefix of column family [49] (#16406)
• Metrics Exporter leads to OOM (#16405)
• Forms Linked to User Tasks Are Sometimes Wrong (#16311)
• Endless processing state machine error loop (#16107)
• Job backoff not respected if ACTIVATABLE job is FAILED (#16084)
• MultiTenancySignalSubscriptionStateMigration fails with IndexOutOfBoundsException (#15804)

Maintenance

• Remove user task reference from element instance after task completion (#16455)
• Actuator date-time values are not compliant with rfc3339 (#16256)
• Stream processor is not able to detect nor handle records of different versions gracefully (#7449)

Merged Pull Requests

• deps(maven): Update dependency org.mockito:mockito-bom to v5.11.0 (main) (#16672)
• deps(go): Update module github.com/stretchr/testify to v1.9.0 (main) (#16671)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.25.1 (main) (#16670)
• Support Assign task user task action (#16667)
• feat(gateway-rest): error responses are content type problem+json (#16665)
• ci: use renamed workflow files for stable branches (#16659)
• test(zeebe): Verify clean state after triggering compensation (#16658)
• deps(maven): Update dependency com.google.api.grpc:proto-google-common-protos to v2.36.0 (main) (#16654)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.25.0 (main) (#16652)
• deps(maven): Update dependency jakarta.activation:jakarta.activation-api to v2.1.3 (main) (#16651)
• deps(maven): Update dependency com.github.docker-java:docker-java-api to v3.3.6 (main) (#16650)
• test(qa): add rest-based topology request qa coverage (#16649)
• Add endpoint for removing a set of brokers forcefully (#16648)
• Support Complete task user task action in Zeebe client (#16641)
• test(qa): ignore exception while waiting for updated topology (#16637)
• fix(broker): transition is stuck only if too much time elapses (#16634)
• refactor: rm samples directory (#16632)
• test(zeebe): Verify incident handling for compensation handler (#16631)
• test(zeebe): Verify variable mappings of compensation handlers (#16629)
• deps(maven): Update dependency org.rocksdb:rocksdbjni to v8.11.3 (main) (#16628)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.24.13 (main) (#16627)
• deps(maven): Update dependency com.puppycrawl.tools:checkstyle to v10.14.0 (main) (#16626)
• deps(github-tags): Update actions/setup-java action to v4.1.0 (main) (#16625)
• Migrate element instances with incidents in the processor (#16624)
• ci(daily-qa): invoke qa workflow on stable branch (#16623)
• test(qa): wait until topology is updated (#16615)
• test(journal): ensure journal is closed always (#16612)
• test(qa): parameterize RollingUpdateTest over versions (#16610)
• deps(maven): Update version.zpt to v8.4.4 (main) (#16597)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.24.12 (main) (#16596)
• deps(maven): Update dependency com.google.cloud.tools:jib-maven-plugin to v3.4.1 (main) (#16595)
• Add http client to the Zeebe java client (#16592)
• Client communication API configuration (#16591)
• Add unassign task rest endpoint (#16590)
• ci: path filters for Zeebe-only GHA workflows to ignore (future) Operate-only changes (#16589)
• deps(maven): Update dependency io.grpc:grpc-bom to v1.62.2 (main) (#16575)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.24.11 (main) (#16574)
• deps(maven): Update dependency com.azure:azure-sdk-bom to v1.2.21 (main) (#16573)
• deps(github-tags): Update actions/add-to-project action to v0.6.0 (main) (#16571)
• deps(maven): Update version.identity to v8.4.4 (main) (#16570)
• Unsubscribe from message boundary event on migration (#16567)
• Introduce fold method for Either (#16566)
• build: fix configurations for moved benchmarks folder (#16560)
• ci: prefix Zeebe GHA workflows to avoid name collisions in monorepo (#16559)
• test(dmn): fix flaky EvaluateDecisionTest (#16549)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.24.10 (main) (#16547)
• deps(maven): Update dependency org.rocksdb:rocksdbjni to v8.10.2 (main) (#16546)
• Adjust condition of auto-merge (#16544)
• deps(maven): Update version.jqwik to v1.8.3 (main) (#16540)
• deps(maven): Update dependency org.wiremock:wiremock to v3.4.2 (main) (#16539)
• Add Update task REST endpoint (#16537)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.24.9 (main) (#16528)
• deps(maven): Update spring boot to v3.2.3 (main) (#16526)
• Transport task headers in Zeebe user task record (#16524)
• Create zeebe sub folder in repo (#16522)
• Add assign task rest endpoint (#16521)
• Reset error phase only after processing current record is completed (#16520)
• feat: Support ELs definition (#16519)
• deps(maven): Update dependency org.codehaus.mojo:exec-maven-plugin to v3.2.0 (main) (#16516)
• deps(maven): Update dependency software.amazon.awssdk:bom to v2.24.8 (main) (#16515)
• deps(go): Update module google.golang.org/grpc to v1.62.0 (main) (#16514)
• deps(maven): ...

8.4.5

Zeebe

version:8.4.5

Enhancements

Misc

• Introduce fold method to Either interface for unified value transformation (#16561)
• During incidents as an Operator of a Zeebe cluster I need a way of skipping records on processing or exporting (#16177)

Bug Fixes

Misc

• GrpcClientRule leaks http clients (#16698)
• Partition Transition reported as stuck even if it doesn't take long (#16633)

Maintenance

• Actuator date-time values are not compliant with rfc3339 (#16256)

Merged Pull Requests

• [Backport stable/8.4] test: reduce scope of ruleChain on LargeMessageSizeTest (#16715)
• [Backport stable/8.4] Skip Exporting Specific Records (#16711)
• [Backport stable/8.4] test: fix waiting for activated jobs (#16703)
• deps(maven): Update dependency jakarta.activation:jakarta.activation-api to v2.1.3 (stable/8.4) (#16657)
• deps(maven): Update dependency com.github.docker-java:docker-java-api to v3.3.6 (stable/8.4) (#16656)
• [Backport stable/8.4] fix(broker): transition is stuck only if too much time elapses (#16645)
• [Backport 8.4]: Rename workflows (#16639)
• [Backport stable/8.4] test(journal): ensure journal is closed always (#16618)
• deps(maven): Update dependency com.google.cloud.tools:jib-maven-plugin to v3.4.1 (stable/8.4) (#16599)
• [Backport stable/8.4] Improve Either type (#16586)
• [Backport stable/8.4] Add default value for lastUpdatedAt in Broker State (#16585)
• Release 8.4.4 (#16578)
• deps(maven): Update version.identity to v8.4.4 (stable/8.4) (#16572)
• ci: prefix Zeebe GHA workflows to avoid name collisions in monorepo (#16559)

Operate

💊 Bugfixes

• use operate-release-reusable from master (#6571)

🧹 Chore

• Jenkins: Temporary switch main pipelines to sable nodes (#6575)
• update zeebe and identity to 8.4.5 (#6560)
• pom: update Spring Boot and Nimbus library (#6474)
• increase timeout for filters tests (#6514) (#6523)
• fix flaky ProcessInstanceHeader tests (#6526)
• update visual regression snapshot for login page, fix test [Backport stable/8.4] (#6530)

Tasklist

💊 Bugfixes

• decode JWT for EntraID [Backport stable/8.4] (#4627)
• Fix Failed STATE Job Tasks importer (#4594)

🧹 Chore

• bumping identity and zeebe versions for release - 8.4 (#4640)
• Bump to form-js 1.7.3 (#4639)
• Update form js (#4628)
• bump nimbus-jose-jwt to fix CVE-2023-52428 [Backport stable/8.4] (#4607)
• bump spring version to fix CVE-2024-22243 - 8.4 (#4580)
• update CHANGELOG.md
• Use fake timers to reduce test execution time (#4236)

Identity

💊 Bugfixes

• upgrade spring-security-core (#2610) (#2618)

🧹 Chore

• upgrade org.postgresql:postgresql from 42.7.0 to 42.7.2 (#2607)

Optimize

💊 Bugfixes

• kpi: do not try to evaluate invalid kpi reports - maint/3.12 (#11993)
• task analysis: pass missing filter to the download button (#11825)
• report: make sorting consistent across multi-measure values (#11819)
• home: add mising translations to entitylist columns
• report: hide table body when display pagination error
• aggregation type: use proper toggle id type (#11726)
• notifications: fix dashboard link in notifications
• deps: identity spring boot dependencies take precedence (#11619)
• docs: properly use docs.version and link to most recent docs version (#11604)

🧹 Chore

• deps: pin dependencies (#11880)
• ci: add failsafe retries to ci (#11874)
• task analysis: readd download instances button (#11744)