Skip to main content

69.0.0

· 5 min read

Added

  • all services: Introduce the "a9s Data Services Experimental Features". This will allow Platform Operators to test out new and upcoming functionality alongside the default anynines-deployment release. For more information, see Experimental Features.
  • docs: Application Developer: a9s Search: Add an explanation about why the backup size of an a9s Search Service Instance always shows 0 B. For more information, see a9s Search - Backups and Restores Considerations.

Changed

  • a9s Messaging: Add legacy templates messaging41-* which contain the latest version of RabbitMQ 4.1. Once RabbitMQ 4.3 is supported, these legacy templates will be removed and new templates messaging42-* will be created. These templates provide a last resort rollback to the previous minor version of RabbitMQ, in case there are problems with the latest version of a9s Messaging. For more information, see a9s Messaging - Rollback to Legacy Version.
  • a9s MongoDB: a9s Backup Agent: Extend the logging of the backup process for Single Service Instances to make information more accessible for debugging purposes.
  • a9s PostgreSQL: Extend the stop process to execute CHECKPOINT before stopping replication, in order to facilitate the conditions for a graceful shutdown during an update. For more information, see CHECKPOINT.
  • docs: Application Developer: a9s MariaDB: Update the a9s MariaDB metric table to only include the custom metrics, with an admonition pointing towards the official MariaDB documentation for a detailed description of the available metrics. The full list of available metrics has been added to the "Metrics" summary under said table. For more information, see Service Instance Metrics
  • docs: Application Developer: a9s Messaging: Add rabbitmq_event_exchange to the available plugins list. For more information, see a9s Messaging - Custom Parameters.
  • docs: Application Developer: a9s Messaging: Update links on the Metrics page, explain metric formats and remove references to Ghost Queues. For more information, see a9s Messaging - Metrics.
  • docs: Application Developer: a9s Search: Extend documentation regarding the available plugins, and how any of the bundled plugins of the vendored OpenSearch can be enabled at the discretion of the Platform Operator. For more information, see a9s Search - Custom Parameters.
  • docs: Platform Operator: a9s LogMe2: Add a "Bundled Plugins" section to the "Resource Considerations" page, describing the imposed restrictions on the Data Service's available plugins. For more information, see a9s LogMe2 - Resource Considerations.
  • docs: Platform Operator: a9s Search: Extend documentation regarding the bundled plugins of the vendored OpenSearch, specify the ones enabled by default, how all are actually available to be enabled by the Platform Operator, and clarify the limitations and caveats surrounding their use. For more information, see a9s Search - SPI Configuration.
  • docs: Platform Operator: a9s Search: Refactor the backup size admonition to be reusable across the Application Developer documentation. For more information, see a9s Search - Backups and Restores Considerations.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.1028 for internal tests of all supported services.

Updated Dependencies

  • all services:
    • a9s Backup Agent: Bump Ruby gem dependencies.
    • a9s BOSH Deployer: Bump Ruby gem dependencies.
    • a9s Deployment Updater Errand: Bump Ruby gem dependencies.
    • a9s Logstash: a9s Logstash 8: Bump Ruby gem dependencies.
    • a9s Public API:
      • krakend-custom-plugins to v2.12.1.
      • krakend to v2.12.1.
      • Update internal dependencies.
    • a9s Service Broker: Bump Ruby gem dependencies.
    • a9s Service Dashboard:
      • Node.JS to v22.22.0.
      • Update internal dependencies.
    • a9s Smoke Tests: Bump Ruby gem dependencies.
    • a9s SPIs:
      • Bump Ruby gem dependencies.
    • a9s SSO Proxy: Bump Ruby gem dependencies.
    • a9s Template Uploader Errand: Bump Ruby gem dependencies.
    • bpm to v1.4.24.
    • logstash to v8.19.10.
    • routing to v0.362.0.
  • a9s-pg: a9s Logstash: a9s Logstash 8: Bump Ruby gem dependencies.
  • a9s Backup Services:
    • a9s Backup Agent: Bump Ruby gem dependencies.
    • a9s Backup Monit: Bump Ruby gem dependencies.
    • a9s Logstash: a9s Logstash 8: Bump Ruby gem dependencies.
  • a9s CF Service Guard: Bump Ruby gem dependencies.
  • a9s Messaging:
    • a9s Messaging 4:
      • erlang to v27.3.4.6.
      • rabbitmq to v4.2.3.
  • a9s MongoDB:
    • a9s MongoDB 5:
      • mongodb to v7.0.28.
    • a9s MongoDB 7:
      • mongodb to v5.0.32.
      • mongosh to v2.6.0.
  • a9s Prometheus:
    • prometheus2:
      • alertmanager to v0.30.1.
      • cadvisor to v0.56.2.
    • prometheus-legacy:
      • alertmanager to v0.30.1.
      • cadvisor to v0.56.2.
      • memcached_exporter to v0.15.5.
    • promgraf2:
      • alertmanager to v0.30.1.
      • cadvisor to v0.56.2.
      • memcached_exporter to v0.15.5.

Fixed

  • a9s Backup Services: a9s Backup Manager: Fix the task-handler process to avoid deadlocking single Service Instances. This prevents it from immediately rescheduling a backup that is already running, ensuring continuous processing without repeatedly picking the same Service Instance.
  • a9s MariaDB: a9s Backup Agent: Fix the LOCK TABLES error when restoring an a9s MariaDB backup, by adding --skip-add-locks to the backup's creation command. The function of LOCK TABLES is already covered by the internal restore-prepare step already ensures that no connections are made to MariaDB, which protects the tables as they are being restored.
  • a9s MongoDB: Set 'no' as default value for the i_agree_with_the_underlying_license_agreement property. Although the license agreement must be accepted in order to deploy the Data Service deployment, a default value is necessary to properly output the error for not accepting the license.
  • docs: Platform Operator: a9s LogMe2: Fix minor typos. For more information, see a9s LogMe2 - SPI Configuration.

Security

  • all services:
    • a9s Backup Agent: Fix CVE-2025-68696.
    • a9s BOSH Deployer: Fix CVE-2025-68696.
    • a9s Deployment Updater Errand: Fix CVE-2025-68696.
    • a9s Logstash: a9s Logstash 8: Fix CVE-2025-68696.
    • a9s Public API: Fix CVEs:
      • CVE-2025-15284
      • CVE-2025-68696
    • a9s Service Broker: Fix CVE-2025-68696.
    • a9s Service Dashboard: Fix CVEs:
      • CVE-2025-15284
      • CVE-2025-55130
      • CVE-2025-55131
      • CVE-2025-59465
    • a9s Smoke Tests: Fix CVE-2025-68696.
    • a9s SPIs: Fix CVE-2025-68696.
    • a9s SSO Proxy: Fix CVE-2025-68696.
    • a9s Template Uploader Errand: Fix CVE-2025-68696.
  • a9s-pg: a9s Logstash: a9s Logstash 8: Fix CVE-2025-68696.
  • a9s Backup Services:
    • a9s Backup Agent: Fix CVE-2025-68696.
    • a9s Backup Monit: Fix CVE-2025-68696.
    • a9s Logstash: a9s Logstash 8: Fix CVE-2025-68696.
  • a9s CF Service Guard: Fix CVE-2025-68696.
  • a9s MongoDB: Fix CVE-2025-14847.