Harness Release Notes Summaries
Explore release notes from the last 30 days across the Harness Platform and modules.
INFO
Please review the full module release notes by selecting a module in the sidebar, or using the View full release notes links beside each module summary.
Platform Release Notes
Platform
View full release notes →Security Improvements
- Enhanced authentication security by ensuring error messages do not disclose valid usernames.
Access Management
- Resolved an issue where user group permission checks were not being correctly enforced.
System Maintenance
- Updated internal library versions to ensure consistent platform stability.
Delegate
View full release notes →Cloud & Integration Services
- Enhanced support for modern authentication methods in cloud deployment steps.
- Resolved validation errors when connecting to external resources to improve stability.
- Improved compatibility with third-party automation tools by optimizing API request structures.
- Enhanced error messaging to provide clearer guidance on required permissions and tool installations.
Deployment & Workflow Management
- Refined deployment status monitoring for cloud services to filter out stale events.
- Prevented infinite retry loops for missing cloud resources during deployment phases.
- Updated step logic to ensure workflow conditions are re-evaluated during every retry attempt.
- Improved the accuracy of performance monitoring models to reduce false anomalies in low-data environments.
Security & System Updates
- Upgraded core dependencies to improve overall system security and stability.
- Added the ability to limit the number of container tags retrieved per image to optimize performance, with a default limit of 10,000 tags.
AI for DevOps & Automation
Continuous Delivery & GitOps
View full release notes →Deployment & GitOps
- Integrated the GitOps service with Open Policy Agent (OPA) to enable policy-based governance and validation for applications.
- Optimized how hydrated state is tracked in the source hydrator to improve repository cleanliness and reduce unnecessary commits.
- Updated ApplicationSet management to support Server-Side Apply, ensuring compatibility with larger manifest sizes that exceed standard limits.
Integrations & Connectivity
- Resolved an issue where OCI Helm connectors failed to fetch charts due to an extra slash in the repository URL construction.
- Fixed a failure in Azure resource provisioning steps by improving the handling of specific ARM template and parameter formats.
Pipeline Execution
- Ensured that output variables in PowerShell script steps correctly preserve multi-line strings and newline characters, matching Bash script behavior.
- Fixed a failure when creating service overrides for environments in projects that were previously deleted and recreated.
Templates & Notifications
- Improved the accuracy of template management by ensuring organization-level references and version comparisons load correctly.
- Resolved an issue where special characters in notification templates caused error messages to display incorrectly or fall back to default values.
Troubleshooting & User Experience
- Enhanced error messages for missing or misconfigured secrets to include the specific secret name and scope for faster resolution.
- Fixed navigation for status check links in custom stages to ensure they direct users to the correct execution page regardless of account licensing.
Continuous Integration
View full release notes →Security & Authentication
- Build and Push to Azure Container Registry now supports authentication using User Assigned Managed Identity.
- Added support for granular JWT claims when integrating with HashiCorp Vault for secret management.
- Resolved an issue where double quotes within secrets were not handled correctly in build steps.
- Improved security for Test Intelligence and Artifactory integrations by upgrading underlying runtimes and dependencies.
Cloud & Infrastructure
- Introduced new pipeline steps to save and restore build caches using Azure Blob Storage with Microsoft identity authentication.
- Harness Cloud execution logs now display machine size names instead of generic labels for better resource visibility.
- Corrected repository URL mapping for commit-based builds in Azure Repos.
- Resolved environment variable resolution issues for Docker Buildx Bake configurations across all runner types.
Visibility & Monitoring
- Added real-time CPU and memory usage metrics to Harness Cloud execution logs.
- Pipeline execution now provides real-time status updates for container-based step groups and GitLab merge requests.
- Improved error logging with actionable details when secret retrieval fails during build initialization.
Pipeline Orchestration
- Introduced branch-based version counters to allow independent build numbering for different branches.
- Fixed an issue where pipeline re-runs could fail when using delegate selectors for codebase tasks.
Infrastructure as Code Management
View full release notes →Infrastructure Frameworks
- Added native AWS CDK support for workspace creation and pipeline execution.
- Expanded Terragrunt capabilities to include JEXL expression support and automated PR comments for GitOps workflows.
- Introduced a new user interface for configuring Ansible inventory plugins.
Security & Secrets
- Integrated Vault connectors to automatically pull secrets during infrastructure runs, reducing manual overhead.
- Improved data privacy by sanitizing sensitive values in Terragrunt resource outputs.
- Enhanced security by integrating security testing orchestration for Terragrunt workflows.
Module Management
- Enabled the ability to retrospectively add templates to existing workspaces via API for better organization.
- Fixed issues in the module registry that caused errors during the edit workflow.
- Resolved errors preventing the successful creation of module test pipelines when specific Git settings were enabled.
- Fixed a script error that occurred when updating entries in the module registry.
User Experience Improvements
- Redesigned the workspace creation interface to provide a more streamlined and standardized setup experience.
- Enhanced the Terraform import process by adding dedicated interface fields for resource addresses and IDs.
- Fixed broken navigation links between pipeline executions and module details.
AI for Testing & Resilience
Chaos Engineering
View full release notes →Infrastructure & Fault Capabilities
- Introduced new machine chaos faults for Linux, covering network, API, JVM, process, DNS, and disk operations.
- Added support for specific egress rules within ECS network restriction faults.
- Enhanced ECS Fargate components with multi-architecture image support for broader compatibility.
- Added user interface support for experiment templates on Windows and Linux infrastructure.
Chaos Studio & User Experience
- Moved Action and Probe variables to a dedicated Inputs section in Chaos Studio for streamlined configuration.
- Added a Resource Selector to simplify the selection of probes, actions, and faults.
- Optimized the onboarding process by pausing background updates while users interact with Network Maps to ensure table stability.
- Enabled new platform navigation options within the web interface via feature flags.
Reliability & Monitoring
- Introduced Disaster Recovery support with new management APIs and test execution enhancements.
- Resolved an issue where load tasks could remain stuck in a pending state and fail to reach the infrastructure.
- Added live logging support for updated Linux and Windows infrastructure versions.
Security & Access Control
- Improved the backend secret management mechanism for Redis and VMware fault passwords.
- Addressed permission gaps and improved error handling across the user interface and API.
- Updated the installation script to include necessary permissions for network traffic analysis tools.
AI Test Automation
View full release notes →Jira & External Integrations
- Enabled Jira integration to streamline project tracking and collaboration.
- Added direct links to test runs within Jira tickets for better traceability.
Workflow & Task Management
- Improved task organization with support for nested task structures.
- Resolved an issue where duplicate Copilot tasks were displayed in the interface.
Test Authoring & AI Tools
- Introduced a new drag-and-drop command specifically for interacting with slider elements.
- Enhanced the Prompt Enhancer with support for parameters to provide more flexible AI-driven test creation.
AI for Security & Compliance
Security Testing Orchestration
View full release notes →Vulnerability Scanning
- Perform source code scans to identify security issues, exposed secrets, and vulnerable open-source dependencies.
- Analyze container images for operating system and library vulnerabilities with reachability-based risk prioritization.
Visibility & Reporting
- Resolved a display issue where file names were appearing incorrectly for Mend scanner results.
- Corrected the approval timestamp display on the security exemptions page to ensure accurate tracking.
Workflow & Integration
- Fixed an error that prevented users from successfully creating pull requests in the Harness Code Repository.
Supply Chain Security
View full release notes →Vulnerability & Dependency Management
- Added support to filter Software Bill of Materials (SBOM) components by dependency type for improved project traceability.
- Expanded vulnerability detection on the SBOM page to support results from all Security Testing Orchestration (STO) scanners.
- Resolved an issue where vulnerability filters on the SBOM page were not functioning correctly.
- Fixed a discrepancy where SBOM counts on the Overview page did not match the SBOM tab.
Infrastructure & Build Support
- Updated plugin compatibility to ensure reliable performance within Docker environments.
- Improved Java support to resolve configuration errors when generating SBOMs for code repositories.
- Standardized artifact naming conventions across all Supply Chain Security pipeline steps.
User Experience & API Improvements
- Fixed an issue where deployment events were missing from the Chain of Custody during artifact redeployments.
- Enhanced the responsiveness of the search bar and improved the visibility of image layer filters.
- Updated the SBOM Score API to correctly handle repository URLs containing the HTTPS prefix.
AI for Cost & Optimization
Cloud Cost Management
View full release notes →Security & Compliance
- Added support for AWS Instance Metadata Service Version 2 to provide more secure access to EC2 instance metadata.
- Enhanced security posture by utilizing hardened and optimized container images to reduce potential attack surfaces.
Resource Management
- Enabled resource adjustments for running pods without requiring restarts, reducing disruptions to active workloads.
- Added a refresh button to Cluster Orchestrator tables to quickly update the status of nodes, workloads, and logs.
Insights & Reporting
- Improved chart readability by automatically adjusting data aggregation to monthly or yearly views for long time ranges.
- Updated the spend widget to ensure anomaly data is only displayed when relevant cost metrics are selected.
- Fixed an issue where creation dates were not properly displayed for generated recommendations.
Usability & Logs
- Upgraded AutoStopping logs with pagination, 30-day retention, and flexible export options including timezone selection.
- Resolved an issue in the rule builder where perspective configurations would reset when renaming or moving folders.