• 342310f fix(FindInBatches): throw err if pk not exists (#5868)
• b6836c2 fix bug in windows (#5844)
• cef3de6 cleanup(prepare_stmt.go): unnecessary map delete (#5849)
• 1b9cd56 doc(README.md): add contributors (#5847)
• 871f1de fix logger path bug (#5836)
• fb640cf test(utils): add utils unit test (#5834)
• 5c8ecc3 feat: golangci add goimports and whitespace (#5835)
• f82e9cf test(clause/joins): add join unit test (#5832)
• b2f4252 fix(Joins): args with select and omit (#5790)
• 9d82aa5 test: invalid cache plan with prepare stmt (#5778)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• b2f4252 fix(Joins): args with select and omit (#5790)
• 9d82aa5 test: invalid cache plan with prepare stmt (#5778)
• 5dd2bb4 feat(PreparedStmtDB): support reset (#5782)
• 3f20a54 Support use clause.Interface as query params
• 62593cf add test: TestAutoMigrateInt8PG: shouldn't execute ALTER COLUMN TYPE smallint...
• a0f4d3f Save as empty string for not nullable nil field serialized into json
• ab5f80a Save as NULL for nil object serialized into json
• 186e8a9 fix: association without pks (#5779)
• 2a788fb Upgrade tests go.mod
• aa4312e Don't display any GORM related package path as source
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 35e3f98 fix: reset prepared stmts when table changed (#138)
• e6551c7 Fix autoincrement check, close #88
• d3403e4 Allow disable returning from dialector config, close #88
• 0d0e3a2 Fix possible panic when comment not quoted, close #134
• af97cb4 Fix migrate columns with default value
• a4858c5 add USING ?::? to AlterColumn (#105)
• 096c357 Only enable simple protocal for pgx
• e6ed2df AutoMigrate fails with sql: expected 0 arguments, got 1 (#131)
• 6145461 feat: support type alias (#133)
• 9e7a2bb fix: use oid replace relfilenode in check column type (#129)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/hashicorp/vault/api's releases.

v1.8.1

1.8.1

August 5th, 2021

CHANGES:

• go: Update go version to 1.16.6 [GH-12245]

IMPROVEMENTS:

• serviceregistration: add external-source: "vault" metadata value for Consul registration. [GH-12163]

BUG FIXES:

• auth/aws: Remove warning stating AWS Token TTL will be capped by the Default Lease TTL. [GH-12026]
• auth/jwt: Fixes OIDC auth from the Vault UI when using form_post as the oidc_response_mode. [GH-12258]
• core (enterprise): Disallow autogenerated licenses to be used in diagnose even when config is specified
• core: fix byte printing for diagnose disk checks [GH-12229]
• identity: do not allow a role's token_ttl to be longer than the signing key's verification_ttl [GH-12151]

v1.8.0

1.8.0

July 28th, 2021

CHANGES:

• agent: Errors in the template engine will no longer cause agent to exit unless explicitly defined to do so. A new configuration parameter, exit_on_retry_failure, within the new top-level stanza, template_config, can be set to true in order to cause agent to exit. Note that for agent to exit if template.error_on_missing_key is set to true, exit_on_retry_failure must be also set to true. Otherwise, the template engine will log an error but then restart its internal runner. [GH-11775]
• agent: Update to use IAM Service Account Credentials endpoint for signing JWTs when using GCP Auto-Auth method [GH-11473]
• core (enterprise): License/EULA changes that ensure the presence of a valid HashiCorp license to start Vault. More information is available in the Vault License FAQ

FEATURES:

• GCP Secrets Engine Static Accounts: Adds ability to use existing service accounts for generation of service account keys and access tokens. [GH-12023]
• Key Management Secrets Engine (Enterprise): Adds general availability for distributing and managing keys in AWS KMS. [GH-11958]
• License Autoloading (Enterprise): Licenses may now be automatically loaded from the environment or disk.
• MySQL Database UI: The UI now supports adding and editing MySQL connections in the database secret engine [GH-11532]
• Vault Diagnose: A new vault operator command to detect common issues with vault server setups.

IMPROVEMENTS:

• agent/template: Added static_secret_render_interval to specify how often to fetch non-leased secrets [GH-11934]

... (truncated)

Sourced from github.com/hashicorp/vault/api's changelog.

1.8.12

June 10, 2022

BUG FIXES:

• agent: Redact auto auth token from renew endpoints [GH-15380]
• core: Prevent changing file permissions of audit logs when mode 0000 is used. [GH-15759]
• core: fixed systemd reloading notification [GH-15041]
• core: pre-calculate namespace specific paths when tainting a route during postUnseal [GH-15067]
• storage/raft (enterprise): Auto-snapshot configuration now forbids slashes in file prefixes for all types, and "/" in path prefix for local storage type. Strip leading prefix in path prefix for AWS. Improve error handling/reporting.
• transform (enterprise): Fix non-overridable column default value causing tokenization tokens to expire prematurely when using the MySQL storage backend.

1.8.11

April 29, 2022

BUG FIXES:

• raft: fix Raft TLS key rotation panic that occurs if active key is more than 24 hours old [GH-15156]
• sdk: Fix OpenApi spec generator to properly convert TypeInt64 to OAS supported int64 [GH-15104]

1.8.10

April 22, 2022

CHANGES:

• core: A request that fails path validation due to relative path check will now be responded to with a 400 rather than 500. [GH-14328]
• core: Bump Go version to 1.16.15. [GH-go-ver-1810]

IMPROVEMENTS:

• auth/ldap: Add username_as_alias configurable to change how aliases are named [GH-14324]
• core: Systemd unit file included with the Linux packages now sets the service type to notify. [GH-14385]
• sentinel (enterprise): Upgrade sentinel to v0.18.5 to avoid potential naming collisions in the remote installer

BUG FIXES:

• api/sys/raft: Update RaftSnapshotRestore to use net/http client allowing bodies larger than allocated memory to be streamed [GH-14269]
• auth/approle: Add maximum length for input values that result in SHA56 HMAC calculation [GH-14746]
• cassandra: Update gocql Cassandra client to fix "no hosts available in the pool" error [GH-14973]
• cli: Fix panic caused by parsing key=value fields whose value is a single backslash [GH-14523]
• core: Fix panic caused by parsing JSON integers for fields defined as comma-delimited integers [GH-15072]
• core: Fix panic caused by parsing JSON integers for fields defined as comma-delimited strings [GH-14522]
• core: Fix panic caused by parsing policies with empty slice values. [GH-14501]
• core: Fix panic for help request URL paths without /v1/ prefix [GH-14704]
• core: fixing excessive unix file permissions [GH-14791]
• core: fixing excessive unix file permissions on dir, files and archive created by vault debug command [GH-14846]
• core: report unused or redundant keys in server configuration [GH-14752]
• core: time.After() used in a select statement can lead to memory leak [GH-14814]
• metrics/autosnapshots (enterprise) : Fix bug that could cause vault.autosnapshots.save.errors to not be incremented when there is an

... (truncated)

• 4b0264f Updates vault-plugin-auth-jwt to v0.10.1 (#12258)
• 21ecd7d Backport 1.8.1: identity: allow creating a role with a non-existent key (#122...
• d4269f3 [VAULT-1986] Cap AWS Token TTL based on Default Lease TTL (#12026) (#12252)
• 062842a Updating SDK version for 1.8.1 (#12247)
• bd35cc7 Updating go version to 1.16.6 for security fix (#12245) (#12249)
• c48b322 Forward cert signing requests to the primary on perf secondaries as well as p...
• 436d893 serviceregistration: add external-source meta value (#12163) (#12241)
• 7f2cfd0 Backport: Don't use autogenerated licenses in diagnose when config is specifi...
• 6748c7d backport disk usage print fixes (#12232)
• f882564 identity: do not allow a role's token_ttl to be longer than verification_ttl ...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/spf13/cobra's releases.

v1.6.0

Summer 2022 Release

Some exciting changes make their way to Cobra! Command completions continue to get better and better (including adding --help and --version automatic flags to the completions list). Grouping is now possible in your help output as well! And you can now use the OnFinalize method to cleanup things when all "work" is done. Checkout the full changelog below:

---

Features 🌠

• Add groups for commands in help: @​aawsome @​marckhouzam #1003
• Support for case-insensitive command names: @​YuviGold #1802
• Expose ValidateRequiredFlags and ValidateFlagGroups: @​skeetwu #1760
• Add --version flag to help output: @​fnickels #1707
• Add --help and --version flag in completions: @​marckhouzam #1813
• Add OnFinalize method: @​yann-soubeyrand #1788
• Allow user to add completion for powershell alias: @​marckhouzam #1621
• Make InitDefaultcompletionCmd public: @​gssbzn #1467

Deprecation 👎🏼

• ExactValidArgs is deprecated (but not being removed entirely). This is abit nuanced, so checkout #1643 for further information and the updated user_guide.md on how this may affect you (and how you can take advantage of the correct behavior in the validators): @​umarcor #1643

Bug fixes 🐛

• Fix (bash-v2) activeHelp length check syntax: @​scop #1762
• Fix correct command path in see_also for yaml documentation: @​zregvart #1771
• Fix showing flags that shadow parent persistent flag in child help messaging: @​brianpursley #1776

Dependencies 🗳️

• Upgrade to use gopkg.in/yaml.v3: @​tklauser #1766

Testing 🤔

• Test on Golang 1.19: @​umarcor & @​jpmcb #1782
• Renamed powershell completion tests: @​marckhouzam #1803
• Use action/setup-go cache: @​umarcor #1783
• Add workflow_dispatch to CI actions: @​umarcor #1387
• Add minimum GitHub token permissions for workflows: @​varunsh-coder #1792

Docs ✏️

• Fixup spelling for GitHub CLI: @​eltociear #1744
• Clarify SetContext documentation: @​katexochen #1748
• Instruct user to go install for binary: @​marckhouzam #1726
• User guide cleanup: @​marckhouzam #1656
• Document option to hide the default completion command: @​marckhouzam #1779

Misc 💭

• Add KubeVirt, CloudQuery, Cilium, Okteto, Zitadel, Allero to projects using cobra: @​maiqueb #1741, @​yevgenypats #1742, @​tklauser #1745, @​jLopezbarb #1759, @​fforootd #1772, @​dimabru #1819
• Use correct stale action exempt yaml keys: @​jpmcb #1800
• Add missing license headers: @​umarcor #1809

Note: Per #1804, we will be moving away from "seasonal" releases and doing more generic point release targets. Continue to track the milestones and issues in the spf13/cobra GitHub repository for more information!

Great work everyone! Cobra would never be possible without your contributions! 🐍

... (truncated)

• 8607918 feat: make InitDefaultCompletionCmd public (#1467)
• 2169adb Add groups for commands in help (#1003)
• 212ea40 Include --help and --version flag in completion (#1813)
• d4040ad Allow user to add completion for powershell alias (#1621)
• 23fc5e0 ci: add minimum GitHub token permissions for workflows (#1792)
• 93d1913 Add OnFinalize method (#1788)
• 07034fe build(deps): bump actions/stale from 5 to 6 (#1815)
• 3dc9761 Add allero to list of projects using cobra (#1819)
• 7039e1f Add '--version' flag to Help output (#1707)
• fce8d8a Expose ValidateRequiredFlags and ValidateFlagGroups (#1760)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• e6551c7 Fix autoincrement check, close #88
• d3403e4 Allow disable returning from dialector config, close #88
• 0d0e3a2 Fix possible panic when comment not quoted, close #134
• af97cb4 Fix migrate columns with default value
• a4858c5 add USING ?::? to AlterColumn (#105)
• 096c357 Only enable simple protocal for pgx
• e6ed2df AutoMigrate fails with sql: expected 0 arguments, got 1 (#131)
• 6145461 feat: support type alias (#133)
• 9e7a2bb fix: use oid replace relfilenode in check column type (#129)
• 56e9b94 fix cockroachdb index name inspection (#122)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 34fbe84 Add TableName with NamingStrategy support, close #5726
• e8f48b5 fix: limit=0 results (#5735) (#5736)
• 4b22a55 fix: primaryFields are overwritten (#5721)
• 9564b82 Fix OnConstraint builder (#5738)
• 0b7113b fix: prepare deadlock (#5568)
• a3cc6c6 Fix: wrong value when Find with Join with same column name, close #5723, #5711
• be440e7 fix possible nil panic in tests (#5720)
• e1dd0dc chore(deps): bump actions/stale from 5 to 6 (#5717)
• 328f301 add some test case which related the logic (#5477)
• 1223745 fix: use preparestmt in trasaction will use new conn, close #5508
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 096c357 Only enable simple protocal for pgx
• e6ed2df AutoMigrate fails with sql: expected 0 arguments, got 1 (#131)
• 6145461 feat: support type alias (#133)
• 9e7a2bb fix: use oid replace relfilenode in check column type (#129)
• 56e9b94 fix cockroachdb index name inspection (#122)
• 3ffd6ab Bump github.com/jackc/pgx/v4 from 4.17.1 to 4.17.2 (#128)
• eab8f5c Bump github.com/jackc/pgx/v4 from 4.16.1 to 4.17.1 (#126)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 328f301 add some test case which related the logic (#5477)
• 1223745 fix: use preparestmt in trasaction will use new conn, close #5508
• 73bc53f feat: migrator support type aliases (#5627)
• 101a7c7 fix: scan array (#5624)
• 3a72ba1 Allow shared foreign key for many2many jointable
• 1f634c3 support scan assign slice cap (#5634)
• 5ed7b1a fix: same embedded filed name (#5705)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/hashicorp/vault/api's releases.

v1.8.0

1.8.0

July 28th, 2021

CHANGES:

• agent: Errors in the template engine will no longer cause agent to exit unless explicitly defined to do so. A new configuration parameter, exit_on_retry_failure, within the new top-level stanza, template_config, can be set to true in order to cause agent to exit. Note that for agent to exit if template.error_on_missing_key is set to true, exit_on_retry_failure must be also set to true. Otherwise, the template engine will log an error but then restart its internal runner. [GH-11775]
• agent: Update to use IAM Service Account Credentials endpoint for signing JWTs when using GCP Auto-Auth method [GH-11473]
• core (enterprise): License/EULA changes that ensure the presence of a valid HashiCorp license to start Vault. More information is available in the Vault License FAQ

FEATURES:

• GCP Secrets Engine Static Accounts: Adds ability to use existing service accounts for generation of service account keys and access tokens. [GH-12023]
• Key Management Secrets Engine (Enterprise): Adds general availability for distributing and managing keys in AWS KMS. [GH-11958]
• License Autoloading (Enterprise): Licenses may now be automatically loaded from the environment or disk.
• MySQL Database UI: The UI now supports adding and editing MySQL connections in the database secret engine [GH-11532]
• Vault Diagnose: A new vault operator command to detect common issues with vault server setups.

IMPROVEMENTS:

• agent/template: Added static_secret_render_interval to specify how often to fetch non-leased secrets [GH-11934]
• agent: Allow Agent auto auth to read symlinked JWT files [GH-11502]
• api: Allow a leveled logger to be provided to api.Client through SetLogger. [GH-11696]
• auth/aws: Underlying error included in validation failure message. [GH-11638]
• cli/api: Add lease lookup command [GH-11129]
• core: Add prefix_filter to telemetry config [GH-12025]
• core: Add a darwin/arm64 binary release supporting the Apple M1 CPU [GH-12071]
• core: Add a small (<1s) exponential backoff to failed TCP listener Accept failures. [GH-11588]
• core (enterprise): Add controlled capabilities to control group policy stanza
• core: Add metrics for standby node forwarding. [GH-11366]
• core: Add metrics to report if a node is a perf standby, if a node is a dr secondary or primary, and if a node is a perf secondary or primary. [GH-11472]
• core: Send notifications to systemd on start, stop, and configuration reload. [GH-11517]
• core: add irrevocable lease list and count apis [GH-11607]
• core: allow arbitrary length stack traces upon receiving SIGUSR2 (was 32MB) [GH-11364]
• db/cassandra: Added tls_server_name to specify server name for TLS validation [GH-11820]
• go: Update to Go 1.16.5 [GH-11802]
• raft: Improve raft batch size selection [GH-11907]
• raft: change freelist type to map and set nofreelistsync to true [GH-11895]
• replication: Delay evaluation of X-Vault-Index headers until merkle sync completes.
• secrets/rabbitmq: Add ability to customize dynamic usernames [GH-11899]
• secrets/ad: Add rotate-role endpoint to allow rotations of service accounts. [GH-11942]

... (truncated)

Sourced from github.com/hashicorp/vault/api's changelog.

1.8.0

July 28th, 2021

CHANGES:

• agent: Errors in the template engine will no longer cause agent to exit unless explicitly defined to do so. A new configuration parameter, exit_on_retry_failure, within the new top-level stanza, template_config, can be set to true in order to cause agent to exit. Note that for agent to exit if template.error_on_missing_key is set to true, exit_on_retry_failure must be also set to true. Otherwise, the template engine will log an error but then restart its internal runner. [GH-11775]
• agent: Update to use IAM Service Account Credentials endpoint for signing JWTs when using GCP Auto-Auth method [GH-11473]
• core (enterprise): License/EULA changes that ensure the presence of a valid HashiCorp license to start Vault. More information is available in the Vault License FAQ

FEATURES:

• GCP Secrets Engine Static Accounts: Adds ability to use existing service accounts for generation of service account keys and access tokens. [GH-12023]
• Key Management Secrets Engine (Enterprise): Adds general availability for distributing and managing keys in AWS KMS. [GH-11958]
• License Autoloading (Enterprise): Licenses may now be automatically loaded from the environment or disk.
• MySQL Database UI: The UI now supports adding and editing MySQL connections in the database secret engine [GH-11532]
• Vault Diagnose: A new vault operator command to detect common issues with vault server setups.

SECURITY:

• storage/raft: When initializing Vault’s Integrated Storage backend, excessively broad filesystem permissions may be set for the underlying Bolt database used by Vault’s Raft implementation. This vulnerability, CVE-2021-38553, was fixed in Vault 1.8.0.
• ui: The Vault UI erroneously cached and exposed user-viewed secrets between authenticated sessions in a single shared browser, if the browser window / tab was not refreshed or closed between logout and a subsequent login. This vulnerability, CVE-2021-38554, was fixed in Vault 1.8.0 and will be addressed in pending 1.7.4 / 1.6.6 releases.

IMPROVEMENTS:

• agent/template: Added static_secret_render_interval to specify how often to fetch non-leased secrets [GH-11934]
• agent: Allow Agent auto auth to read symlinked JWT files [GH-11502]
• api: Allow a leveled logger to be provided to api.Client through SetLogger. [GH-11696]
• auth/aws: Underlying error included in validation failure message. [GH-11638]
• cli/api: Add lease lookup command [GH-11129]
• core: Add prefix_filter to telemetry config [GH-12025]
• core: Add a darwin/arm64 binary release supporting the Apple M1 CPU [GH-12071]
• core: Add a small (<1s) exponential backoff to failed TCP listener Accept failures. [GH-11588]
• core (enterprise): Add controlled capabilities to control group policy stanza
• core: Add metrics for standby node forwarding. [GH-11366]
• core: Add metrics to report if a node is a perf standby, if a node is a dr secondary or primary, and if a node is a perf secondary or primary. [GH-11472]
• core: Send notifications to systemd on start, stop, and configuration reload. [GH-11517]
• core: add irrevocable lease list and count apis [GH-11607]
• core: allow arbitrary length stack traces upon receiving SIGUSR2 (was 32MB) [GH-11364]
• core: Improve renew/revoke performance using per-lease locks [GH-11122]
• db/cassandra: Added tls_server_name to specify server name for TLS validation [GH-11820]
• go: Update to Go 1.16.5 [GH-11802]

... (truncated)

• 82a99f1 Use a mode when opening the db file that won't result in excessive perms. (#1...
• 43cfab4 Add fallback font for masked-input (#12152) (#12158)
• ca2ad70 Update node to latest stable version (#12049) (#12154)
• 9f77f5a Re-adding deleted changelog note (#12141)
• c3855d7 Backport: 1.8.x UI/database cg read role (#12111) (#12136)
• 5c7e855 Fix KV Version History queryParams on the component LinkedBlock (#12079) (#12...
• 4ffff3a changelog: update feature formatting for gcp and key management secrets (#121...
• 46ed883 Change changelog type for openldap bug fix (#12112) (#12114)
• ed8d36b UI: Automatically refresh page on logout (#12035) (#12082)
• df0c8d3 Backport recent diagnose fixes to 1.8.x (#12108)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 9e7a2bb fix: use oid replace relfilenode in check column type (#129)
• 56e9b94 fix cockroachdb index name inspection (#122)
• 3ffd6ab Bump github.com/jackc/pgx/v4 from 4.17.1 to 4.17.2 (#128)
• eab8f5c Bump github.com/jackc/pgx/v4 from 4.16.1 to 4.17.1 (#126)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• d857acc Fix alter column with default value
• 1dd9747 [CockroachDB] Fixing how it handle fields DEFAULT values and column types (#143)
• 915abc3 Disable add existing constraint (#145)
• 1d65db6 fix migrator default value regexp (#148)
• 4343642 fix: receiver names of dialector are different (#149)
• 6629ecf Bump github.com/jackc/pgx/v5 from 5.0.4 to 5.2.0 (#150)
• 321c8fd Upgrade pgx driver, close #139
• 5eb6308 Upgrade go.mod, close #140
• 35e3f98 fix: reset prepared stmts when table changed (#138)
• e6551c7 Fix autoincrement check, close #88
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 4b768c8 Upgrade tests deps
• 16a2722 fix(migrator): Tag default:'null' always causes field migration #5953 (#5954)
• da2b286 fix(migrator): ignore relationships when migrating #5913 (#5946)
• 7da24d1 chore(deps): bump actions/stale from 6 to 7 (#5945)
• ddd3cc2 Add ParameterizedQueries option support for logger, close #5288
• 794edad test(MigrateColumn): mock alter column to improve field compare (#5499)
• 1935eb0 feat: support inner join (#5583)
• 775fa70 DryRun for migrator (#5689)
• bbd2bbe fix:Issue migrating field with CURRENT_TIMESTAMP (#5906)
• f3c6fc2 Update func comments in chainable_api and FirstOr_ (#5935)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/hashicorp/vault/api's releases.

v1.8.2

1.8.2

26 August 2021

CHANGES:

• go: Update go version to 1.16.7 [GH-12408]

BUG FIXES:

• auth/aws: Fixes ec2 login no longer supporting DSA signature verification [GH-12340]
• cli: vault debug now puts newlines after every captured log line. [GH-12175]
• database/couchbase: change default template to truncate username at 128 characters [GH-12300]
• identity: Fix a panic on arm64 platform when doing identity I/O. [GH-12371]
• physical/raft: Fix safeio.Rename error when restoring snapshots on windows [GH-12377]
• plugin/snowflake: Fixed bug where plugin would crash on 32 bit systems [GH-12378]
• sdk/database: Fix a DeleteUser error message on the gRPC client. [GH-12351]
• secrets/gcp: Fixes a potential panic in the service account policy rollback for rolesets. [GH-12379]
• ui: Fixed api explorer routing bug [GH-12354]
• ui: Fixes metrics page when read on counter config not allowed [GH-12348]
• ui: fix issue where on MaskedInput on auth methods if tab it would clear the value. [GH-12409]

v1.8.1

1.8.1

August 5th, 2021

CHANGES:

• go: Update go version to 1.16.6 [GH-12245]

IMPROVEMENTS:

• serviceregistration: add external-source: "vault" metadata value for Consul registration. [GH-12163]

BUG FIXES:

• auth/aws: Remove warning stating AWS Token TTL will be capped by the Default Lease TTL. [GH-12026]
• auth/jwt: Fixes OIDC auth from the Vault UI when using form_post as the oidc_response_mode. [GH-12258]
• core (enterprise): Disallow autogenerated licenses to be used in diagnose even when config is specified
• core: fix byte printing for diagnose disk checks [GH-12229]
• identity: do not allow a role's token_ttl to be longer than the signing key's verification_ttl [GH-12151]

v1.8.0

1.8.0

July 28th, 2021

CHANGES:

• agent: Errors in the template engine will no longer cause agent to exit unless explicitly defined to do so. A new configuration parameter,

... (truncated)

Sourced from github.com/hashicorp/vault/api's changelog.

1.8.2

26 August 2021

CHANGES:

• Alpine: Docker images for Vault 1.6.6+, 1.7.4+, and 1.8.2+ are built with Alpine 3.14, due to CVE-2021-36159
• go: Update go version to 1.16.7 [GH-12408]

BUG FIXES:

• auth/aws: Fixes ec2 login no longer supporting DSA signature verification [GH-12340]
• cli: vault debug now puts newlines after every captured log line. [GH-12175]
• database/couchbase: change default template to truncate username at 128 characters [GH-12300]
• identity: Fix a panic on arm64 platform when doing identity I/O. [GH-12371]
• physical/raft: Fix safeio.Rename error when restoring snapshots on windows [GH-12377]
• plugin/snowflake: Fixed bug where plugin would crash on 32 bit systems [GH-12378]
• sdk/database: Fix a DeleteUser error message on the gRPC client. [GH-12351]
• secrets/gcp: Fixes a potential panic in the service account policy rollback for rolesets. [GH-12379]
• ui: Fixed api explorer routing bug [GH-12354]
• ui: Fixes metrics page when read on counter config not allowed [GH-12348]
• ui: fix issue where on MaskedInput on auth methods if tab it would clear the value. [GH-12409]

1.8.1

August 5th, 2021

CHANGES:

• go: Update go version to 1.16.6 [GH-12245]

IMPROVEMENTS:

• serviceregistration: add external-source: "vault" metadata value for Consul registration. [GH-12163]

BUG FIXES:

• auth/aws: Remove warning stating AWS Token TTL will be capped by the Default Lease TTL. [GH-12026]
• auth/jwt: Fixes OIDC auth from the Vault UI when using form_post as the oidc_response_mode. [GH-12258]
• core (enterprise): Disallow autogenerated licenses to be used in diagnose even when config is specified
• core: fix byte printing for diagnose disk checks [GH-12229]
• identity: do not allow a role's token_ttl to be longer than the signing key's verification_ttl [GH-12151]

1.8.0

July 28th, 2021

CHANGES:

• agent: Errors in the template engine will no longer cause agent to exit unless explicitly defined to do so. A new configuration parameter, exit_on_retry_failure, within the new top-level stanza, template_config, can be set to true in order to cause agent to exit. Note that for agent to exit if

... (truncated)

• aca76f6 update go mod with new sdk version (#12440)
• 9b1f4d4 packagespec upgrade -version 0.2.8 (#12433)
• 11a17da Update version to 1.8.2 (#12407)
• 914a320 Backport 12408 (#12419)
• 6e61a61 Bug Fix: tab on MaskedInput for GeneratedItems it was clearing the value (#12...
• c29aee7 UI: Allow metrics view without config read (#12348) (#12363)
• 407532f creds/aws: Add support for DSA signature verification for EC2 (#12340) (#12361)
• b882dde Handle api explorer routing error (#12354) (#12385)
• 0818886 Backport 1.8.2: update snowflake plugin to v0.2.1 (#12389)
• 10be989 Fix vault debug so that captured logs include newlines. (#12175) (#12201)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github.com/spf13/cobra's releases.

v1.6.1

Bug fixes 🐛

• Fixes a panic when AddGroup isn't called before AddCommand(my-sub-command) is executed. This can happen within more complex cobra file structures that have many different inits to be executed. Now, the check for groups has been moved to ExecuteC and provides more flexibility when working with grouped commands - @​marckhouzam (and shout out to @​aawsome, @​andig and @​KINGSABRI for a deep investigation into this! 👏🏼)

v1.6.0

Summer 2022 Release

Some exciting changes make their way to Cobra! Command completions continue to get better and better (including adding --help and --version automatic flags to the completions list). Grouping is now possible in your help output as well! And you can now use the OnFinalize method to cleanup things when all "work" is done. Checkout the full changelog below:

---

Features 🌠

• Add groups for commands in help: @​aawsome @​marckhouzam #1003
• Support for case-insensitive command names: @​YuviGold #1802
• Expose ValidateRequiredFlags and ValidateFlagGroups: @​skeetwu #1760
• Add --version flag to help output: @​fnickels #1707
• Add --help and --version flag in completions: @​marckhouzam #1813
• Add OnFinalize method: @​yann-soubeyrand #1788
• Allow user to add completion for powershell alias: @​marckhouzam #1621
• Make InitDefaultcompletionCmd public: @​gssbzn #1467

Deprecation 👎🏼

• ExactValidArgs is deprecated (but not being removed entirely). This is abit nuanced, so checkout #1643 for further information and the updated user_guide.md on how this may affect you (and how you can take advantage of the correct behavior in the validators): @​umarcor #1643

Bug fixes 🐛

• Fix (bash-v2) activeHelp length check syntax: @​scop #1762
• Fix correct command path in see_also for yaml documentation: @​zregvart #1771
• Fix showing flags that shadow parent persistent flag in child help messaging: @​brianpursley #1776

Dependencies 🗳️

• Upgrade to use gopkg.in/yaml.v3: @​tklauser #1766

Testing 🤔

• Test on Golang 1.19: @​umarcor & @​jpmcb #1782
• Renamed powershell completion tests: @​marckhouzam #1803
• Use action/setup-go cache: @​umarcor #1783
• Add workflow_dispatch to CI actions: @​umarcor #1387
• Add minimum GitHub token permissions for workflows: @​varunsh-coder #1792

Docs ✏️

• Fixup spelling for GitHub CLI: @​eltociear #1744
• Clarify SetContext documentation: @​katexochen #1748
• Instruct user to go install for binary: @​marckhouzam #1726
• User guide cleanup: @​marckhouzam #1656
• Document option to hide the default completion command: @​marckhouzam #1779

Misc 💭

• Add KubeVirt, CloudQuery, Cilium, Okteto, Zitadel, Allero to projects using cobra: @​maiqueb #1741, @​yevgenypats #1742, @​tklauser #1745, @​jLopezbarb #1759, @​fforootd #1772, @​dimabru #1819
• Use correct stale action exempt yaml keys: @​jpmcb #1800

... (truncated)

• b43be99 Check for group presence after full initialization (#1839) (#1841)
• 8607918 feat: make InitDefaultCompletionCmd public (#1467)
• 2169adb Add groups for commands in help (#1003)
• 212ea40 Include --help and --version flag in completion (#1813)
• d4040ad Allow user to add completion for powershell alias (#1621)
• 23fc5e0 ci: add minimum GitHub token permissions for workflows (#1792)
• 93d1913 Add OnFinalize method (#1788)
• 07034fe build(deps): bump actions/stale from 5 to 6 (#1815)
• 3dc9761 Add allero to list of projects using cobra (#1819)
• 7039e1f Add '--version' flag to Help output (#1707)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• b122c68 Merge pull request #4 from corverroos/corver/iteroption
• bfaf103 panic if t nil
• b3b12ac feedback
• 4a0bfc3 Add cost option
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)