Releases: hasura/graphql-engine
v2.42.0
Changelog
Behaviour changes
-
In certain circumstances, all HTTP headers were included in the set of session variables. This has now been reduced to only the session variables. This change affects a number of areas, including the HTTP logs, query validation, JWT claims, rate limiting, and accessing session variables in Kriti code.
-
When
update_*_many
is given an empty list of updates, the result will now be an empty list, rather than an object. Previously, this meant that an empty list of updates would result in a result of the wrong type. -
In rare cases, sensitive headers were written to the GraphQL Engine logs. These cases are now handled correctly to avoid logging sensitive information.
Bug fixes and improvements
Server
-
Add field
ignored_client_headers
to Action definition to specify an explicit list of client headers to ignore when forwarding headers to the webhook handler. -
Add an experimental feature flag
remove_empty_subscription_responses
to filter empty responses in subscription queries for Postgres data sources. This should reduce Hasura-to-database and Hasura-to-client network overhead for users with many streaming subscriptions seeing empty results. -
Add an experimental feature flag
no_null_unbound_variable_default
to remove unbound nullable variables with no defaults from the query, as per the spec.For example, if
$unbound: String
is not given a variable assignment, the queryupdate_table({ _set: { column: $unbound }})
will not update any columns. -
Quote Postgres custom scalar types in SQL. This enables using custom type names that are not just lowercase identifiers.
-
Add missing
trace_id
andspan_id
fields to logs for Enterprise Classic edition (Enterprise edition only)
v2.42.0-beta.1
Changelog
Behaviour changes
-
In certain circumstances, all HTTP headers were included in the set of session variables. This has now been reduced to only the session variables. This change affects a number of areas, including the HTTP logs, query validation, JWT claims, rate limiting, and accessing session variables in Kriti code.
-
When
update_*_many
is given an empty list of updates, the result will now be an empty list, rather than an object. Previously, this meant that an empty list of updates would result in a result of the wrong type. -
In rare cases, sensitive headers were written to the GraphQL Engine logs. These cases are now handled correctly to avoid logging sensitive information.
Bug fixes and improvements
Server
-
Add field
ignored_client_headers
to Action definition to specify an explicit list of client headers to ignore when forwarding headers to the webhook handler. -
Add an experimental feature flag
remove_empty_subscription_responses
to filter empty responses in subscription queries for Postgres data sources. This should reduce Hasura-to-database and Hasura-to-client network overhead for users with many streaming subscriptions seeing empty results. -
Add an experimental feature flag
no_null_unbound_variable_default
to remove unbound nullable variables with no defaults from the query, as per the spec.For example, if
$unbound: String
is not given a variable assignment, the queryupdate_table({ _set: { column: $unbound }})
will not update any columns. -
Quote Postgres custom scalar types in SQL. This enables using custom type names that are not just lowercase identifiers.
v2.36.7
Changelog
This is a patch release for v2.36
Behaviour changes
- In certain circumstances, all HTTP headers were included in the set of session variables. This has now been reduced to only the session variables. This change affects a number of areas, including the HTTP logs, query validation, JWT claims, rate limiting, and accessing session variables in Kriti code.
- In rare cases, sensitive headers were written to the GraphQL Engine logs. These cases are now handled correctly to avoid logging sensitive information.
Build
- Updates ubuntu jammy base image to get the latest security updates.
v2.40.3
Changelog
This is a patch release for v2.40
Bug fixes and improvements
Data Connectors
- Update RedHat base image to get the latest security updates.
v2.41.0
Changelog
Bug fixes and improvements
Server
- For JWT key servers that do not implement caching, keys will now refresh every 60 seconds instead of every second.
- Gracefully handle and log certain unexpected internal exceptions.
- Fix an intermittent bug triggered when clearing the cache, which results in an internal error. (Cloud / Enterprise edition only)
- Add
session_variables
attribute to GraphQL spans in OpenTelemetry traces. (Cloud / Enterprise edition only) - Add a new OpenTelemetry span for the auth webhook. (Cloud / Enterprise edition only)
- Enhance
SpanKind
for server and client spans according to the OpenTelemetry specification (Cloud / Enterprise edition only)
Console
- Add VPC collaborators feature for Cloud Enterprise users. (Cloud only)
Build
- Updates ubuntu jammy base image to get the latest security updates.
v2.41.0-beta.1
Changelog
Bug fixes and improvements
Server
- For JWT key servers that do not implement caching, only refresh keys every 60 seconds rather than ever single second.
- Gracefully handle and log certain unexpected internal exceptions.
Build
- Updates ubuntu jammy base image to get the latest security updates
v2.40.2
Changelog
This is a patch release for v2.40
.
Bug fixes and improvements
Server
- Add
HASURA_GRAPHQL_DISABLE_NATIVE_QUERY_VALIDATION
env var /--disable-native-query-validation
flag to disable validation of Native Queries against the database.
v2.40.1
Changelog
This is a patch release for v2.40
Bug fixes and improvements
Server
- Add
HASURA_GRAPHQL_ENABLE_QUERY_TRACING
env var to enable adding Postgres SQL queries to the OTLP traces. (Cloud / Enterprise edition only) - Add GraphQL queries to the OTLP traces if the
HASURA_GRAPHQL_ENABLE_QUERY_TRACING
config option is enabled. (Cloud / Enterprise edition only) - Fix missing overflow bucket in OTLP histogram export. Data points in the "+inf" bucket will now be sent, just as in Prometheus export. (Cloud / Enterprise edition only)
Data Connectors
- Update Redshift JDBC driver to latest version. (Cloud / Enterprise edition only)
v2.36.6
Changelog
This is a patch release for v2.36
Bug fixes and improvements
Server
- Add GraphQL queries to the OTLP traces if the
HASURA_GRAPHQL_ENABLE_QUERY_TRACING
config option is enabled. (Cloud / Enterprise edition only) - Add
operation_name
andparameterized_query_hash
labels to thehasura_graphql_requests_total
Prometheus metric. (Cloud / Enterprise edition only)
v2.36.5
Changelog
This is a patch release for v2.36
Bug fixes and improvements
Server
- Add
HASURA_GRAPHQL_ENABLE_QUERY_TRACING
env var to enable adding Postgres SQL queries to the OTLP traces. (Cloud / Enterprise edition only)
Build
- Update the Ubuntu base image to receive the latest security updates.