Camunda Platform 8.1.11

Zeebe

Enhancements

Misc

• Remove the default un-overridable -Xms128m value (#12416)

Bug Fixes

Misc

• MessageTTL checking fails with deserialization errors (#12509)
• Zeebe node sends messages to wrong node (#12173)
• Unhandled NoSuchElementException when looking for executable process while deploying BPMN resource (#11414)

Maintenance

• Fetching constantly static information (#12034)
• Build and test pipeline takes too long (#12028)

Merged Pull Requests

• fix(engine): prevent record corruption during message TTL checking (#12510)
• ci(test): skip test artifact upload on success (#12497)
• feat(dist): Remove the -xms parameter (#12482)
• Introduce cache for process versions (#12475)
• test(qa): save logs of zeebe containers if the test fails (#12428)
• ci(integration): split module and integration test jobs (#12406)
• Remove spy/mock usage from NettyMessagingService channel pool related tests (#12397)
• More resilient network operations in CI (#12367)
• Revert jacoco version update (#12358)
• fix(engine): skip unnecessary blacklist check (#12306)
• fix(cluster): do no use channel created for a different address (#12305)
• Cut TCC provisioning by half (#12304)
• [Backport stable/8.1] deps(maven): bump testcontainers-bom from 1.17.6 to 1.18.0 (#12300)
• deps(maven): bump reactive-streams from 1.0.3 to 1.0.4 (#12263)
• Omit RocksDB musl check from Docker image (#12256)
• refactor(engine): specify an error message when deployed process id not found in state (#12196)
• fix(clients/go): update linter (#12106)

Operate

💊 Bugfixes

• backend: Fix marked high level vulnerabilities by Snyk (#4382)

🧹 Chore

• backend: Update Zeebe and Identity to 8.1.11 (#4427)
• Dockerfile: update hashsum of base images (#4399)
• qa: Fix flaky tests (#4350)

Tasklist

🧹 Chore

• bumping version to 8.1.11

Identity

🧹 Chore

• remove dependency on zeebe in release

Camunda Platform 8.2.2

Zeebe

Bug Fixes

Misc

• Zeebe node sends messages to wrong node (#12173)

Merged Pull Requests

• [Backport stable/8.2] deps(maven): bump identity to 8.2.2 (#12453)
• test(qa): relax timeout for taking backups on GCS (#12419)
• ci(integration): split module and integration test jobs (#12406)
• test(backup-store): close store and client after each test (#12405)
• Remove spy/mock usage from NettyMessagingService channel pool related tests (#12397)
• More resilient network operations in CI (#12367)
• Revert jacoco version update (#12358)
• fix(cluster): do no use channel created for a different address (#12305)
• deps(maven): bump reactive-streams from 1.0.3 to 1.0.4 (#12263)
• fix(clients/go): update linter (#12106)
• chore(deps): bump netty-handler from 4.1.39.Final to 4.1.41.Final (#3081)

Operate

🧹 Chore

• update zeebe and identity to 8.2.2 (#4381)
• update CHANGELOG.md

Tasklist

💊 Bugfixes

• authentication rest api (#2796)

🧹 Chore

• updating to 8.2.2 (#2797)
• update CHANGELOG.md

Identity

No Changes

Camunda Platform 8.2.1

Zeebe

Bug Fixes

Misc

• Cannot disable Raft flush without specifying a delay (#12328)
• The newThrowErrorCommand incorrectly handled in 8.2.0 (#12326)

Merged Pull Requests

• deps(maven): bump version.identity to 8.2.1 (#12351)
• Allow disabling flush without specifying a delay (#12329)
• Support numbers as error/escalation codes (#12327)
• chore(spotless): adhere to formatting (#12303)
• docs(gateway): remove invalid BROKER from env var name (#12285)
• Omit RocksDB musl check from Docker image (#12256)

Operate

🧹 Chore

• update zeebe and identity to 8.2.1 (#4355)
• Update Browserlist DB

Tasklist

💊 Bugfixes

• adding identity check (#2763)
• adding extra exception for identity configuration (#2761)
• identity resources enabled (#2760)

🧹 Chore

• update snapshot versions to 8.2.1 (#2768)
• update zeebe and identity to 8.2.1 (#2764)

Identity

no changes

Camunda Platform 8.2.0

Zeebe

Enhancements

Broker

• I can access a nested property of a variable by using a dynamic path (#11293)
• Export escalation records to ElasticSearch (#10767)
• Catch escalation on a call activity boundary event (#10763)
• Create EscalationRecord and EscalationIntent (#10762)
• Support link events (#10563)
• Support undefined tasks (#10562)
• In the process instance record, I can distinguish the type of an event (#9548)
• Allow unsupported BPMN elements in non executable pools (#9542)
• Export missing records to ES (#8337)
• Configure disk watermarks with absolute values (#8149)
• Improve error message in case of uncovered BPMN features (#7282)
• Make state directory configurable (#6044)
• Support for BPMN Script Tasks (#4213)
• Update variables on BPMN error (#4080)
• Define an error code statically or as expression (#3801)

Go Client

• Throw error with variables from go client (#11019)
• Set variables on Fail Job via Go client (#10788)

Misc

• Zeebe Support Elastic Search 8 (#12132)
• Intercept requests to OpenSearch and sign them according to AWS instructions (#12013)
• Add AWS configuration options (#12012)
• Copy ElasticSearchExporter and switch to OpenSearch libraries (#12011)
• OAuth Auth Token authentication support in Zeebe Gateway (#12000)
• Support broadcast signal in the Go client (#11913)
• Support broadcast signal in the Java client (#11912)
• Create a new gRPC API for signal broadcast command (#11878)
• Docker: Allow running zeebe with a read-only root filesystem (#11876)
• Add state and ColumnFamilies for command distributions (#11868)
• User task due and follow-up dates are validated on deployment (#11809)
• Due and follow-up dates are included in user task activation (#11797)
• User task due and follow-up dates are transformed by the workflow engine (#11796)
• Support due and follow-up dates on user tasks in the BPMN Model API (#11795)
• Docker: Running the zeebe process with an unprivileged user by default (#11784)
• Process signal broadcast command (#11777)
• Create decisionRequirementsKeyAndVersionByDecisionRequirementsId ColumnFamily in DbDecisionState (#11541)
• Create decisionKeyAndVersionByDecisionId ColumnFamily in DbDecisionState (#11540)
• Disable Rockdb WAL by default (#11455)
• Create SignalRecord and Signalntent (#11295)
• Support catch-all and code-specific Escalation catch events on the same scope (#11265)
• Create signal subscription record when deployed a process with top-level signal start events (#11209)
• Export signal subscription records to ElasticSearch (#11208)
• Create SignalSubscriptionRecord and SignalSubscriptionIntent (#11202)
• Supports all errors caught by error start events or boundary events (#11126)
• Support standalone Decision evaluation through zbctl (#11053)
• Standalone Decision evaluation returns intermediate results (#11050)
• Support standalone Decision evaluation in the Go client (#11049)
• Support standalone Decision evaluation in the Java client (#11048)
• Expose standalone Decision evaluation in the Gateway (#11047)
• Enable standalone Decision execution in the engine (#11039)
• FolderPrefixes for Hot Backups (#11018)
• Define an escalation code statically or as expression (#10973)
• Enable compression of backup contents (#10846)
• A user can list all available backups (#10712)
• Needs to transfer the variables when failing a job has variables (#10700)
• Needs to set the variables locally when failing a job with variables (#10698)
• I can use bpmn model api to create a script task with feel expression (#10692)
• Catch an escalation in an event subprocess start event (#10690)
• I can deploy a process definition with escalation event (#10688)
• Throw escalation end event (#10686)
• Throw escalation intermediate event (#10685)
• Catch an escalation on sub process boundary event (#10684)
• None end events calculation of output parameters (#10613)
• Add signal events support in the bpmn model api (#10530)
• Support user task candidate users (#10346)
• Create resource delete intents (#9767)
• Create resource delete record (#9766)
• I can set variables when failing a job (#9404)
• As a user, I want to be able to override Zeebe client properties in the gatewayResponsive health check (#9346)
• Introduce a less pessimistic backpressure algorithm (#8298)
• Improve error message for SAXExceptions on deployment (#8026)

Bug Fixes

Broker

• MessageTimeToLiveChecker clogs the log stream with commands (#11762)
• MessageTimeToLiveChecker blocks Stream Processor (#11761)
• Possible to open multiple message subscriptions for the same event (#11308)
• ProcessExecutionRandomizedPropertyTest failed to complete a process with a terminate end event (#11072)
• NPE in ProcessInstanceModifiedEventApplier (#10878)
• I can use link events in different flow scopes (#10854)
• Fail to export the process instance modification record to Elasticsearch (#10732)
• Terminate end event does not terminate process when waiting at parallel gateway (#10590)
• RetryStrategies do not yield (#10539)
• NPE terminating both multi-instance body and child elements during PI modification (#10537)
• Using modification, I can't activate a parallel gateway (#10518)
• Using modification, I can't activate an element if an interrupting event subprocess was triggered (#10477)
• I can activate a failed job that has no remaining retries (#10308)
• NPE: Cannot invoke ExecutableActivity.getFlowScope() because innerActivity is null (#9400)
• NPE at ExpressionProcessor.evaluateIntervalExpression (#5934)
• Deployments are stored in state even when one workflow is rejected (#5723)
• ModelParseException: SAXException while parsing input stream (#5490)

Go Cl...

Camunda Platform 8.1.10

Zeebe

Bug Fixes

Misc

• Batch processing might drop responses (#11848)

Merged Pull Requests

• Add QA tests that verify CreateProcessInstanceWithResult responses (#11993)

Operate

🚀 New Features

• chore: Change dockerfile (#4253)

💊 Bugfixes

• load more flow node instances when MAX_INSTANCES_STORED is reached (#4271)
• backend: use static logger in TokenAuthentication (#4249)

🧹 Chore

• backend: update Zeebe and Identity to 8.1.10 (#4347)
• update CHANGELOG.md

Tasklist

🧹 Chore

• backend: update Zeebe and Identity to 8.1.10 (#2749)
• update CHANGELOG.md

Identity

💊 Bugfixes

• management-api/pom.xml to reduce vulnerabilities (#1732)

🧹 Chore

• upgrade alpine base image (#1743)

Camunda Platform 8.0.13

Zeebe

Bug Fixes

Misc

• Batch processing might drop responses (#11848)

Maintenance

• Backport fix to preserve output of flaky test runs to stable/8.0 (#10637)

Merged Pull Requests

• Add QA tests that verify CreateProcessInstanceWithResult responses (#11993)

Operate

🚀 New Features

• chore: create docker images for specified architecture (#4254)

💊 Bugfixes

• backend: use static logger in TokenAuthentication (#4250)
• backend: fix security issues in dependencies (#4135)
• fix migrator startup 8.0 (#4089)

🧹 Chore

• backend: update Zeebe and Identity to 8.0.13 (#4346)
• backend: update Zeebe and Identity to 8.0.12 (#4231)
• update CHANGELOG.md
• preview-environment: move to cheaper preemptible nodepool (#3100)

Tasklist

🧹 Chore

• backend: update Zeebe and Identity to 8.0.13 (#2748)
• backend: update Zeebe and Identity to 8.0.12 (#2606)
• update CHANGELOG.md

Identity

💊 Bugfixes

• management-api/pom.xml to reduce vulnerabilities (#1731)

🧹 Chore

• upgrade alpine base image (#1744)

Camunda Platform 8.2.0-alpha5

Zeebe

Enhancements

Misc

• Docker: Running the zeebe process with an unprivileged user by default (#11784)
• Create decisionRequirementsKeyAndVersionByDecisionRequirementsId ColumnFamily in DbDecisionState (#11541)
• Create decisionKeyAndVersionByDecisionId ColumnFamily in DbDecisionState (#11540)
• Disable Rockdb WAL by default (#11455)
• Support standalone Decision evaluation through zbctl (#11053)

Bug Fixes

Misc

• Improper handling of ExceededBatchRecordSizeException (#11681)
• Two raft nodes caught in an election loop (#11665)
• GatewayResposive health checks are broken (#11598)
• NPE during transformation of BPMN model (#11392)
• Message column families are not cleaned up and can cause outages (#10643)

Maintenance

• Introduce a new RecordDistribution record (#11657)
• Fix journal metrics (#11556)
• Add new metrics for Batch processing (#11546)
• Add broker configuration for batch processing (#11545)
• Promote disable raft flush flag to non-experimental (#11519)
• Remove experimental flag for hot backups and make it stable (#11500)
• Add additional performance metrics (#11418)
• Add sequencer/log storage metrics to dashboard (#11370)
• Additional log storage metrics (#11369)
• Streamline Testbench based workflows (#11021)
• Backport dependency updates (#10553)
• Increase test coverage for recovery from dataloss (#9960)
• Extend RandomizedRaftTest with snapshot and data loss operations (#9837)
• Move verification of lastWrittenIndex from the writer to the segment loader (#7652)

Merged Pull Requests

• Support minor versions for 18 months (#11666)
• ci: fix duplicate workflow name (#11543)
• deps(.github): bump hashicorp/vault-action from 2.4.3 to 2.5.0 (#11491)

Operate

🚀 New Features

• backend: REST API - Return permissions for process instance (#4223)
• backend: use zeebe sequence field for import position (#3930)
• backend: REST API - Return permissions for decision definitions (#4201)
• check resource based permissions in process instance detail page (#4189)
• check resource based permissions for process definition deletion (#4180)
• backend: Add bpmnProcessId and processDefinitionKey to indices (#4217)
• backend: Add bpmnProcessId and processDefinitionKey to indices (#4163)
• feature-flagged: disable delete button and show spinner on delete (#4193)
• backend: Expose statistics in process instance public API (#4205)
• backend: Expose sequence flows in process instance public API (#4199)
• backend: REST API - Return permissions for process definitions (#4192)
• feature-flagged: move delete button along with operations panel (#4173)
• backend: read resource based permissions from Identity (#4165)
• feature-flagged: add process definition deletion flow (#4172)
• feature-flagged: display warning in process definition deletion modal (#4171)
• backend: resourcePermissionsEnabled flag in client-config.js (#4169)
• backend: Expose sequence flows in process instance public API (#4148)
• feature-flagged: create definition deletion detail table and reuse (#4162)
• feature-flagged: support new tokens with ancestor selection in instance history panel (#4078)
• feature-flagged: add decision definition deletion flow (#4159)
• backend: add configuration parameter to enable and disable resource based permissions (#4158)
• feature-flagged: add confirmation checkbox for definition deletion modal (#4152)
• feature-flagged: add support for definition deletion operations (#4153)
• feature-flagged: Add operations panel to decisions view (#4138)
• feature-flagged: add drd name to deletion modal (#4093)
• feature-flagged: display process definition deletion button and modal (#4128)
• backend: Add flowNodeName to flow node public API (#4117)
• backend: Add processDefinitionKey to flow node public API (#4119)
• backend: Use Elasticsearch client compatibility mode (#3981)
• feature-flagged: support add token with ancestor key (#4063)
• feature-flagged: display information bar when adding token to a flow node that has multiple running scopes (#4057)
• hide add token option when flow node instance is selected (#4054)
• feature-flagged: enable add token modification for flow nodes that has multiple running scopes (#4053)
• backend: Add flowNodeName to flow node public API (#4068)
• feature-flagged: add decision definition modal (#4072)
• feature-flagged: add delete decision definition button (#4067)

💊 Bugfixes

• backend: ClusterMetadata cannot be created (#4211)
• fix skeleton row logic for variables panel (#4188)
• deps: update dependency sass to v1.58.3 (#4156)
• deps: update dependency @floating-ui/react-dom to v1.3.0 (#4145)
• deps: update dependency @carbon/react to v1.23.1 (#4155)
• backend: change type of backupId to Integer (#4136)
• deps: update dependency react-textarea-autosize to v8.4.0 (#4147)
• deps: update dependency @carbon/elements to v11.19.0 (#4095)
• deps: update dependency @carbon/react to v1.22.0 (#4096)
• deps: update dependency mobx-react to v7.6.0 (#4097)
• backend: messageName and correlationKey shown after message (#4105)
• backend-test: change versions (#4121)
• deps: update dependency @floating-ui/react-dom to v1.2.2 (#3964)
• deps: update dependency @devbookhq/splitter to v1.4.0 (#3963)
• deps: update dependency final-form-arrays to v3.1.0 (#3965)
• deps: update dependency mobx to v6.8.0 (#3967)
• hide date picker when date range popover is hidden (#4055)

🧹 Chore

• backend: update Zeebe and Identity to 8.2.0-alpha5 (#4230)
• OCI and OpenShift labels as part of Docker image metadata (#4081)
• Update Browserlist DB
• deps: bump maven-failsafe-plugin from 3.0.0-M8 to 3.0.0-...

Camunda Platform 8.1.9

Zeebe

Enhancements

Misc

• Docker: Allow running zeebe with a read-only root filesystem (#11876)
• Docker: Running the zeebe process with an unprivileged user by default (#11784)
• Introduce a less pessimistic backpressure algorithm (#8298)

Bug Fixes

Broker

• MessageTimeToLiveChecker clogs the log stream with commands (#11762)

Misc

• MessageTTLChecker isn't idle for configured interval (#11958)
• Zeebe java client didn't get the region from the configuration (#11846)
• ZeebeCallCredentials#applyRequestMetadata should not block a thread (#11816)
• Two raft nodes caught in an election loop (#11665)

Maintenance

• Allow configuring the MessageTimeToLiveChecker (#11922)

Merged Pull Requests

• feat(db): convenient fallback behavior when no startAt is provided (#11937)
• feat(docker): read only root filesystem support (#11877)
• added region property to client properties (#11870)
• Disable flaky shouldRunAsyncSchedulingEvenIfProcessingIsBlocked test (#11851)
• Add warning for even replication factor (#11831)
• fix(clients/java): make a ZeebeCallCredentials#applyRequestMetadatacall non-blocking (#11817)
• fix(docker): data and logs mount for unprivileged user (#11800)
• feat: run message TTL checker concurrently to processing (#11792)
• chore(release): use new 8 core runner (#11791)
• fix(journal): check for null while closing (#11781)
• Make resource deployments atomic (#11776)
• Candidate steps down if election timesout with out success or failure (#11743)
• chore(ci): resolve non camunda artifacts via central (#11656)
• build: docker image can be built from sources (#11495)

Operate

🧹 Chore

• backend: update Zeebe and Identity to 8.1.9 (#4229)
• update CHANGELOG.md

Tasklist

💊 Bugfixes

• cherry-picking invalid token issues
• invalid operate token (#2571)
• upgrade-insecure-requests (#2542)

🧹 Chore

• backend: update Zeebe and Identity to 8.1.9 (#2604)
• pom: fix Maven filtering (#2577)
• update CHANGELOG.md

Identity

🚀 New Features

• support GCP logging format (#1593)

💊 Bugfixes

• frontend/package.json & frontend/yarn.lock to reduce vulnerabilities (#1653)
• set content security policy header (#1620) (#1643)
• set + as post logout redirect uri for clients (#1618) (#1635)
• management-api/pom.xml to reduce vulnerabilities (#1616)
• set secure attribute for cookies [Backport v8.1] (#1619)
• set HSTS header with recommended params (#1610)
• security - upgrade alpine base image to fix CVEs (#1599)
• define max size for string properties (#1594) (#1600)
• upgrade action versions to remove deprecation warnings (#1580)

Camunda Platform 8.0.12

Zeebe

Enhancements

Misc

• Docker: Allow running zeebe with a read-only root filesystem (#11876)
• Docker: Running the zeebe process with an unprivileged user by default (#11784)

Bug Fixes

Misc

• Zeebe java client didn't get the region from the configuration (#11846)
• ZeebeCallCredentials#applyRequestMetadata should not block a thread (#11816)
• Two raft nodes caught in an election loop (#11665)

Merged Pull Requests

• feat(docker): read only root filesystem support (#11877)
• added region property to client properties (#11870)
• Add warning for even replication factor (#11831)
• fix(clients/java): make a ZeebeCallCredentials#applyRequestMetadatacall non-blocking (#11817)
• fix(docker): data and logs mount for unprivileged user (#11800)
• [Backport stable/8.0] chore(release): use new 8 core runner (#11793)
• chore(docker): update eclipse-temurin docker tag (stable/8.0) (#11754)
• Candidate steps down if election timesout with out success or failure (#11743)
• deps(maven): bump byte-buddy from 1.12.8 to 1.12.23 (#11727)
• deps(maven): bump dmn-engine from 1.7.2 to 1.7.4 (#11725)
• chore(ci): resolve non camunda artifacts via central (#11656)
• fix(ci): backport action from main to stable branch (#11653)
• fix(ci): use input branches to run qa/e2e tests (#11651)

Operate

No changes

Tasklist

No changes

Identity

💊 Bugfixes

• security upgrade styled-components from 5.3.5 to 5.3.7 (#1652)
• set content security policy header (#1620) (#1644)
• define max size for string properties (#1594) (#1629)
• set secure attribute for cookies (#1596) (#1627)
• set HSTS header with recommended params (#1605) (#1628)
• management-api/pom.xml to reduce vulnerabilities (#1615)
• security - upgrade alpine base image to fix CVEs (#1598)
• upgrade action versions to remove deprecation warnings (#1580) (#1591)

🧹 Chore

• identity team GHA workflow to use the CI Nexus instead of connecting to Artifactory directly (#1552) (#1583)

Camunda Platform 8.1.8

Zeebe

Bug Fixes

Misc

• Message column families are not cleaned up and can cause outages (#10643)

Maintenance

• Backport Batch processing to 8.1 (#11539)

Merged Pull Requests

• fix(ci): use input branches to run qa/e2e tests (#11651)

Operate

🚀 New Features

• backend: Add flowNodeName to flow node public API (#4106)
• backend: Add processDefinitionKey to flow node public API (#4099)

💊 Bugfixes

• backend-test: change versions (#4121)
• fix migrator startup (#4088)

🧹 Chore

• backend: update Zeebe and Identity to 8.1.8 (#4137)
• update CHANGELOG.md

Tasklist

🚀 New Features

• cherry pick of 2408 and 2407 tasks (#2505)

🧹 Chore

• backend: update Zeebe and Identity to 8.1.8 (#2516)
• update CHANGELOG.md

Identity

🧹 Chore

• identity team GHA workflow to use the CI Nexus instead of connecting to Artifactory directly (camunda-cloud/identity#1552) (camunda-cloud/identity#1584)