Note: please note that Liferay has renamed its Liferay Experience
Could offerings to Liferay SaaS (formerly LXC) and
Liferay PaaS (formerly LXC-SM).
Bug Fixes
- Restricted GET Environment Variable Access for Guests: Enhanced security on the Liferay Cloud API by restricting guest users from accessing specific environment variable values. This change prevents unauthorized access to sensitive information, thereby safeguarding your project's security.
- Fixed Search Service Shell for ECK: Fixed the Search Service Shell for Liferay PaaS projects using the ECK operator, ensuring that the shell tab now functions correctly. This update enhances usability and reliability for users managing search services on Liferay SaaS clusters.
Tasks
- MongoDB Sanitizer Dependency Updates: Updated MongoDB Sanitizer dependencies to enhance security and system stability, ensuring a more reliable and secure experience for users.
- Removed Sensitive Information from Admin-Server Repository: Enhanced security by removing sensitive information from the admin-server repository and rotating passwords and tokens, ensuring improved data protection for our users.
- ECK Operator Version Update for Security: Updated the eck-operator to a newer version to address multiple high severity and critical security vulnerabilities, enhancing the security and reliability of Liferay Cloud services.
- Upgrade of @kubernetes/client-node: Upgraded the @kubernetes/client-node to v0.19 to ensure full compatibility with Kubernetes server 1.27, enhancing feature availability and stability for users.