diff --git a/release-notes/opensearch-security.release-notes-2.11.0.0.md b/release-notes/opensearch-security.release-notes-2.11.0.0.md new file mode 100644 index 0000000000..d236513022 --- /dev/null +++ b/release-notes/opensearch-security.release-notes-2.11.0.0.md @@ -0,0 +1,35 @@ +## 2023-10-18 Version 2.11.0.0 + +Compatible with OpenSearch 2.11.0 + +### Enhancements +* Demo configuration script requires admin password ([#3329](https://github.com/opensearch-project/security/pull/3329)) +* Improve serialization speeds ([#2802](https://github.com/opensearch-project/security/pull/2802)) +* Integration tests framework ([#3388](https://github.com/opensearch-project/security/pull/3388)) +* Allow for automatic merging of dependabot changes after checks pass ([#3409](https://github.com/opensearch-project/security/pull/3409)) + +### Bug Fixes +* Removing opendistro-job-scheduler-lock from list of protected indices ([#3383](https://github.com/opensearch-project/security/pull/3383)) + +### Maintenance +* Refactors reRequestAuthentication to call notifyIpAuthFailureListener before sending the response to the channel ([#3411](https://github.com/opensearch-project/security/pull/3411)) +* Change log message from warning to trace on WWW-Authenticate challenge ([#3446](https://github.com/opensearch-project/security/pull/3446)) +* Disable codecov from failing CI if there is an upload issue ([#3379](https://github.com/opensearch-project/security/pull/3379)) +* [Refactor] Change HTTP routes for Audit and Config PUT methods ([#3407](https://github.com/opensearch-project/security/pull/3407)) +* dependabot: bump org.apache.camel:camel-xmlsecurity from 3.21.0 to 3.21.1 ([#3436](https://github.com/opensearch-project/security/pull/3436)) +* dependabot: bump com.github.wnameless.json:json-base from 2.4.2 to 2.4.3 ([#3437](https://github.com/opensearch-project/security/pull/3437)) +* dependabot: bump org.xerial.snappy:snappy-java from 1.1.10.4 to 1.1.10.5 ([#3438](https://github.com/opensearch-project/security/pull/3438)) +* dependabot: bump org.ow2.asm:asm from 9.5 to 9.6 ([#3439](https://github.com/opensearch-project/security/pull/3439)) +* dependabot: bump org.xerial.snappy:snappy-java from 1.1.10.3 to 1.1.10.4 ([#3396](https://github.com/opensearch-project/security/pull/3396)) +* dependabot: bump com.google.errorprone:error_prone_annotations from 2.21.1 to 2.22.0 ([#3400](https://github.com/opensearch-project/security/pull/3400)) +* dependabot: bump org.passay:passay from 1.6.3 to 1.6.4 ([#3397](https://github.com/opensearch-project/security/pull/3397)) +* dependabot: bump org.gradle.test-retry from 1.5.4 to 1.5.5 ([#3399](https://github.com/opensearch-project/security/pull/3399)) +* dependabot: bump org.springframework:spring-core from 5.3.29 to 5.3.30 ([#3398](https://github.com/opensearch-project/security/pull/3398)) +* dependabot: bump tibdex/github-app-token from 2.0.0 to 2.1.0 ([#3395](https://github.com/opensearch-project/security/pull/3395)) +* dependabot: bump org.apache.ws.xmlschema:xmlschema-core from 2.3.0 to 2.3.1 ([#3374](https://github.com/opensearch-project/security/pull/3374)) +* dependabot: bump apache_cxf_version from 4.0.2 to 4.0.3 ([#3376](https://github.com/opensearch-project/security/pull/3376)) +* dependabot: bump org.springframework:spring-beans from 5.3.29 to 5.3.30 ([#3375](https://github.com/opensearch-project/security/pull/3375)) +* dependabot: bump com.github.wnameless.json:json-flattener from 0.16.5 to 0.16.6 ([#3371](https://github.com/opensearch-project/security/pull/3371)) +* dependabot: bump aws-actions/configure-aws-credentials from 3 to 4 ([#3373](https://github.com/opensearch-project/security/pull/3373)) +* dependabot: bump org.checkerframework:checker-qual from 3.36.0 to 3.38.0 ([#3378](https://github.com/opensearch-project/security/pull/3378)) +* dependabot: bump com.nulab-inc:zxcvbn from 1.8.0 to 1.8.2 ([#3357](https://github.com/opensearch-project/security/pull/3357)) \ No newline at end of file