Skip to main content

2 posts tagged with "infrastructure"

View All Tags

2025.11

Versioncalendar icon Release Date
2025.11.0November 19, 2025

System Requirements Update

Ensure your infrastructure meets the latest requirements for optimal performance and security:

ComponentMinimum VersionRecommended Version
KOTS1.117.3Latest
Kubernetes1.281.33
PostgreSQL1517
Redis67
ggscout0.19.0Latest

Helm & Upgrade Considerations

To ensure compatibility, please review Helm values updates from the previous version. Air gap deployment? Find all the images and tag names in the air gap install page.

Helm v4 Support

Helm v4 is not yet supported. Please use Helm v3.13+. Learn more.

Secrets Detection Engine

  • v2.150 — 1 new detector (Coveo API Key), 1 improved (Resend), 1 new checker, 1 analyzer upgrade, 1 engine enhancement.

Enhancements

  • Large occurrence patches display. See SaaS release: Oct 28.
  • Incident list source links, API change_type field. See SaaS release: Nov 7.
  • Dev-in-the-Loop incident ID display and dashboard navigation. See SaaS release: Nov 17.
  • Self-Hosted:
    • Added official support for PostgreSQL 18 and Redis 8.
    • Added terms and conditions acceptance requirement during business workspace sign-up and trial activation for improved legal compliance.
    • Replicated now inherits global image pull secrets, simplifying Helm configuration by removing the need for separate imagePullSecrets in the replicated section. Learn more.

Fixes

  • Perimeter scan button visibility, SSO IDP configuration, sources tooltips and health checks, incidents commit info and code fixing section. See SaaS release: Oct 25.
  • GitLab PAT updates 403 error, SharePoint health-check error 9999. See SaaS release: Oct 28.
  • Microsoft Teams notifier client secret update, incident feedback registration. See SaaS release: Nov 7.
  • Container Registry automatic monitoring, Jira Data Center webhook version. See SaaS release: Nov 17.
  • Fixed an issue where filepath exclusions failed to apply when selecting individual repositories, while working correctly with select all repositories.
  • Self-Hosted:
    • Dashboard access now blocked when ReplicatedSDK is not running to enforce proper license validation.
    • Fixed PostgreSQL and Redis preflights failing when CA certificate was provided without client certificate and key.

2025.10 - Required

Versioncalendar icon Release Date
2025.10.0October 27, 2025

System Requirements Update

Ensure your infrastructure meets the latest requirements for optimal performance and security:

ComponentMinimum VersionRecommended Version
KOTS1.117.3Latest
Kubernetes1.281.32
PostgreSQL1516
Redis67
ggscout0.19.0Latest

Helm & Upgrade Considerations

To ensure compatibility, please review Helm values updates from the previous version. Air gap deployment? Find all the images and tag names in the air gap install page.

⚠️ Important: This is a required release and cannot be skipped.

Upgrading to 2025.10

Helm installations: This release changes the MinIO image used in the log collector and requires updates to your Helm values file. See Upgrade Helm > Upgrading to 2025.10.

Feature highlights

  • Secret Revocation — revoke supported secrets directly from incidents. Learn more
  • Context preview for non‑VCS incidents — see surrounding content for leaks in SharePoint, OneDrive, Slack, Confluence. Learn more
  • Microsoft Teams attachment scanning — detect secrets in files shared in Teams. Learn more
  • ggshield: vault name and path — show secret manager details for vaulted secrets. Learn more
  • Unified graph with public leak intelligence — correlate internal and public exposures in one view. Learn more

Secrets Detection Engine

  • v2.147 — 2 new detectors, 4 improved, 4 new checkers.
  • v2.148 — 21 new detectors, 3 improved, multiple new checkers.
  • v2.149 — 4 new detectors, 1 improved, 4 new checkers, 2 analyzer upgrades.

Enhancements

  • Pattern exclusion performance. See SaaS release: Sep 23.
  • Base64 token decoding, new ignore reasons. See SaaS release: Sep 26.
  • Generic Secret Enricher v2, Jira auto-assignment. See SaaS release: Oct 9.
  • Incident developer identity. See SaaS release: Oct 17.
  • GitLab integration performance, Public API perimeter editing. See SaaS release: Oct 25.
  • Playbooks: Updated the Playbooks settings page with a refreshed, modern interface design.
  • Self-Hosted:
    • All GitGuardian images are now multi-arch. Helm deployments now support ARM64 clusters in addition to AMD64. KOTS and Embedded Cluster installations remain AMD64-only. See system requirements.
    • Added support for read-only root filesystem constraint to meet security compliance requirements and enhance container runtime protection.

Fixes

  • Google Artifact Registry auth. See SaaS release: Sep 23.
  • Weekly summary email dates, Jira DC admin detection, historical scan duplicates. See SaaS release: Oct 9.
  • Incident search filters, secret view links. See SaaS release: Oct 17.
  • Occurrence commit info, perimeter scan button visibility. See SaaS release: Oct 25.
  • Self-Hosted:
    • Updated KOTS embedded cluster installation requirements to match documented system requirements.
    • Added missing toleration configuration for secretEngine deployment.
    • Fixed license verification when using a proxy by adding the NO_PROXY to replicated.extraEnv default values.

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status