| title | Tyk Pump Release Notes |
|---|---|
| description | Release notes documenting updates, enhancements and changes for Tyk Pump versions within the 1.X.X series. |
| keywords | Tyk Pump, Release notes, v1.11, v1.12, v1.13, changelog |
| sidebarTitle | Pump |
Open Source (Mozilla Public License)
This page contains all release notes for Pump displayed in a reverse chronological order
Our minor releases are supported until our next minor comes out.
In this release, we have updated Tyk Pump to Golang 1.25 for enhanced security and performance. For a comprehensive list of changes, please refer to the detailed changelog.
This release has no breaking changes.
| Third Party Dependency | Tested Versions | Compatible Versions |
|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x |
| Redis | 6.x - 7.0 | 6.x - 7.x |
| Valkey | 8.0.x, 8.1.x | 7.2.x, 8.0.x, 8.1.x |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.14.0, we strongly recommend promptly upgrading to the latest release. Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.14.1
-
docker pull tykio/tyk-pump-docker-pub:v1.14.1
-
- Source code tarball for OSS - GH Tyk Pump Repo
- CVE-2026-25679
- CVE-2025-32286
- CVE-2026-27139
- CVE-2026-32280
- CVE-2026-32281
- CVE-2026-32288
- CVE-2026-32289
- CVE-2026-32282
- CVE-2026-32283
In this release, we've enhanced Tyk Pump's security capabilities by introducing support for custom CA certificates for Kafka, Elasticsearch, and Splunk pumps. For a comprehensive list of changes, please refer to the detailed changelog.
This release has no breaking changes.
| Third Party Dependency | Tested Versions | Compatible Versions |
|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x |
| Redis | 6.x - 7.0 | 6.x - 7.x |
| Valkey | 8.0.x, 8.1.x | 7.2.x, 8.0.x, 8.1.x |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.13.3, we strongly recommend promptly upgrading to the latest release. Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.14.0
-
docker pull tykio/tyk-pump-docker-pub:v1.14.0
-
- Source code tarball for OSS - GH Tyk Pump Repo
To configure this, set the path to the PEM file containing the CA certificate using the ssl_ca_file option or the TYK_PMP_PUMPS_<PUMP_NAME>_META_SSLCAFILE environment variable.
In this release, we have fixed some priority CVEs. For a comprehensive list of changes, please refer to the detailed changelog.
This release has no breaking changes.
| Third Party Dependency | Tested Versions | Compatible Versions |
|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x |
| Redis | 6.x - 7.0 | 6.x - 7.x |
| Valkey | 8.0.x, 8.1.x | 7.2.x, 8.0.x, 8.1.x |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.13.2, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.13.2 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.13.3
-
docker pull tykio/tyk-pump-docker-pub:v1.13.3
-
- Source code tarball for OSS - GH Tyk Pump Repo
In this patch release, we've resolved SQL Pump schema migration issues for sharded tables. For a comprehensive list of changes, please refer to the detailed changelog.
No breaking changes. However, please note that first startup may be slower due to database schema migration if the new migrate_sharded_tables configuration is set. See changelog for details.
| Third Party Dependency | Tested Versions | Compatible Versions |
|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x |
| Redis | 6.x - 7.0 | 6.x - 7.x |
| Valkey | 8.0.x, 8.1.x | 7.2.x, 8.0.x, 8.1.x |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release. For further information, please check the changelog below.
For users currently on v1.13.1, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.13.0 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.13.2
-
docker pull tykio/tyk-pump-docker-pub:v1.13.2
-
- Source code tarball for OSS - GH Tyk Pump Repo
We have added a new configuration option migrate_sharded_tables, which will update all pre-existing tables in the SQL database to match the latest schema. This will be a one-time operation when the Pump starts up, but could take some time to complete if there is a large history in the database, so it has been made an optional activity via this configuration option.
In this patch release, we fixed high-priority CVEs. For a comprehensive list of changes, please refer to the detailed changelog.
| Third Party Dependency | Tested Versions | Compatible Versions |
|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x |
| Redis | 6.x - 7.0 | 6.x - 7.x |
| Valkey | 8.0.x, 8.1.x | 7.2.x, 8.0.x, 8.1.x |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release. For further information, please check the changelog below.
For users currently on v1.13.0, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.13.0 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.13.1
-
docker pull tykio/tyk-pump-docker-pub:v1.13.1
-
- Source code tarball for OSS - GH Tyk Pump Repo
- CVE-2025-47912
- CVE-2025-58183
- CVE-2025-58185
- CVE-2025-58186
- CVE-2025-58187
- CVE-2025-58188
- CVE-2025-58189
- CVE-2025-61723
- CVE-2025-61724
- CVE-2025-61725
This release has no breaking changes, but does include the deprecation of two global configuration options (DecodeRawRequest and DecodeRawResponse) that did not previously work. There is no change to functionality from these deprecations.
| Third Party Dependency | Tested Versions | Compatible Versions |
|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x |
| Redis | 6.x - 7.0 | 6.x - 7.x |
| Valkey | 8.0.x, 8.1.x | 7.2.x, 8.0.x, 8.1.x |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
Deprecated the global configuration options DecodeRawRequest and DecodeRawResponse. For further information, please check the changelog below.
For users currently on v1.12.2, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.12.2 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.13.0
-
docker pull tykio/tyk-pump-docker-pub:v1.13.0
-
- Source code tarball for OSS - GH Tyk Pump Repo
This enhancement enables compliance with strict regulatory requirements and security needs by automatically encrypting data before it's written to Kinesis storage and decrypting it when retrieved. The feature is backward compatible, with server-side encryption disabled by default for existing deployments.
Added two new fields to the traffic logs transferred using the InfluxDB2 pump.Latency.Total: Represents the total time taken to process a request.Latency.Upstream: Represents the time taken to communicate with the upstream.
These metrics can be used to calculate the Gateway processing time (Latency.Total - Latency.Upstream), which is essential for monitoring API performance and diagnosing bottlenecks. This enhancement enables customers to perform comprehensive latency analysis and identify performance bottlenecks in their API infrastructure.
This enhancement resolves issues where batched analytics data exceeded Kafka's default 1MB message size limit, causing "Message Size Too Large" errors and resulting in missing analytics data. Users can now optimize the batch size to match their Kafka topic configurations, with backward compatibility maintained through the default 1MB limit.
This release strengthens Tyk Pump's security foundation with updates, including an upgrade to Golang 1.24 for enhanced runtime security and the resolution of two CVEs (CVE-2025-22871 and CVE-2025-22869), ensuring robust protection against identified security vulnerabilities.
For a comprehensive list of changes, please refer to the detailed changelog below.
This release has no breaking changes
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Pump and Tyk Dashboard |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x | Used by Tyk Pump and Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.12.1, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.12.1 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.12.2
-
docker pull tykio/tyk-pump-docker-pub:v1.12.2
-
- Source code tarball for OSS - GH Tyk Pump Repo
- CVE-2025-22871
- CVE-2025-22869
This release improves log reliability in the Syslog Pump by ensuring that raw request and response data are no longer fragmented into multiple entries. Logs are now consolidated into a single entry per API request, making analysis easier while preserving compatibility with existing log parsers.
For a comprehensive list of changes, please refer to the detailed changelog below.
This release has no breaking changes
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Pump and Tyk Dashboard |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x | Used by Tyk Pump and Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.12.0, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.12.0 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.12.1
-
docker pull tykio/tyk-pump-docker-pub:v1.12.1
-
- Source code tarball for OSS - GH Tyk Pump Repo
This release enhances Pump's database compatibility and security by adding support for PostgreSQL 17, removing SQLite support, and addressing critical security vulnerabilities (CVEs). These improvements ensure better performance, long-term stability, and overall enhanced security.
For a comprehensive list of changes, please refer to the detailed changelog below.
This release removes support for SQLite in Pump, aligning with the broader removal of SQLite from the Tyk Dashboard. This change improves compatibility with enterprise environments and addresses implementation issues related to SQLite.
With PostgreSQL v11 reaching EOL in November 2023, we can no longer guarantee full compatibility with this version of the database. If you are using PostgreSQL we recommend that you upgrade to a version that we have tested with, as indicated below.
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Pump and Tyk Dashboard |
| PostgreSQL | 13.x - 17.x | 13.x - 17.x | Used by Tyk Pump and Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.11.0, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.11.0 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.12.0
-
docker pull tykio/tyk-pump-docker-pub:v1.12.0
-
- Source code tarball for OSS - GH Tyk Pump Repo
This patch release focuses on improving the robustness of SQL-Pump in scenarios involving table sharding and analytics data, ensuring smoother operations and better compatibility with PostgreSQL-based environments.
This release has no breaking changes.
With PostgreSQL v11 reaching EOL in November 2023, we can no longer guarantee full compatibility with this version of the database. If you are using PostgreSQL we recommend that you upgrade to a version that we have tested with, as indicated below.
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Pump and Tyk Dashboard |
| PostgreSQL | 12.x - 16.x | 12.x - 16.x | Used by Tyk Pump and Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.11.0, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.11.0 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.11.2
-
docker pull tykio/tyk-pump-docker-pub:v1.11.2
-
- Source code tarball for OSS - GH Tyk Pump Repo
This patch release focuses on critical dependency updates to address security vulnerabilities and maintain compatibility with the latest tools. Users are encouraged to upgrade to benefit from enhanced security and improved stability.
This release has no breaking changes.
With PostgreSQL v11 reaching EOL in November 2023, we can no longer guarantee full compatibility with this version of the database. If you are using PostgreSQL we recommend that you upgrade to a version that we have tested with, as indicated below.
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Dashboard |
| PostgreSQL | 12.x - 16.x | 12.x - 16.x | Used by Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.11.0, we strongly recommend promptly upgrading to the latest release. If you are working with an older version (lower major), it is advisable to bypass version 1.11.0 and proceed directly to this latest patch release.
Go to the Upgrading Tyk section for detailed upgrade Instructions.
- Docker Image v1.11.1
-
docker pull tykio/tyk-pump-docker-pub:v1.11.1
-
- Source code tarball for OSS - GH Tyk Pump Repo
- Fixed the following CVEs:
This release has no breaking changes.
With PostgreSQL v11 reaching EOL in November 2023, we can no longer guarantee full compatibility with this version of the database. If you are using PostgreSQL we recommend that you upgrade to a version that we have tested with, as indicated below.
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| GoLang | 1.19, 1.20, 1.21 | 1.19, 1.20, 1.21 | All our binaries |
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Dashboard |
| PostgreSQL | 12.x - 16.x | 12.x - 16.x | Used by Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.10.X, we strongly recommend promptly upgrading to the latest release. If you are working with an older version, it is advisable to bypass version 1.10 and proceed directly to this latest release.
This release focuses on improving security and compliance, enhancing integration capabilities, and ensuring robust performance in secure environments.
- Docker Image v1.11.0
-
docker pull tykio/tyk-pump-docker-pub:v1.11.0
- Source code tarball for OSS - GH Tyk Pump Repo
This release has no breaking changes.
With PostgreSQL v11 reaching EOL in November 2023, we can no longer guarantee full compatibility with this version of the database. If you are using PostgreSQL we recommend that you upgrade to a version that we have tested with, as indicated below.
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| GoLang | 1.19, 1.20, 1.21 | 1.19, 1.20, 1.21 | All our binaries |
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Dashboard |
| PostgreSQL | 12.x - 16.x | 12.x - 16.x | Used by Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.9.X, we strongly recommend promptly upgrading to the latest release. If you are working with an older version, it is advisable to bypass version 1.9 and proceed directly to this latest release.
Tyk Pump now offers FIPS 140-2 compliance. For further details please consult Tyk API Management FIPS support
This release focuses on improving security and compliance, enhancing integration capabilities, and ensuring robust performance in secure environments.
- Docker Image v1.10.0
-
docker pull tykio/tyk-pump-docker-pub:v1.10.0
- Source code tarball for OSS - GH Tyk Pump Repo
PRISMA-2021-0108 PRISMA-2023-0056 CVE-2024-27304 CVE-2023-45288
MongoDB v4.4 will reach its end of life support at the end of February 2024. In order to support newer versions of MongoDB and align with newer versions of Tyk, we have changed the default MongoDB driver from mgo to mongo-go. The mongo-go driver supports MongoDB versions greater or equal to v4. If you are using a version of MongoDB less than v4, please follow this guide to update the driver type to mgo.
Users are strongly advised to follow the recommended upgrade instructions provided by Tyk before applying any updates.
| Third Party Dependency | Tested Versions | Compatible Versions | Comments |
|---|---|---|---|
| GoLang | 1.19, 1.20, 1.21 | 1.19, 1.20, 1.21 | All our binaries |
| MongoDB | 5.x, 6.x, and 7.0 | 4.4.x, 5.x, 6.x, and 7.0 | Used by Tyk Dashboard |
| PostgreSQL | 11.x - 15.x LTS | 11.x - 15.x | Used by Tyk Dashboard |
| Redis | 6.x - 7.0 | 6.x - 7.x | Used by all Tyk components |
Given the time difference between your upgrade and the release of this version, we recommend customers verify the ongoing support of third-party dependencies they install, as their status may have changed since the release.
There are no deprecations in this release.
For users currently on v1.8.X, we strongly recommend promptly upgrading to the latest release. If you are working with an older version, it is advisable to bypass version 1.8 and proceed directly to this latest release.
Tyk Pump now supports Redis v7, utilizing our storage library v1.2.0.
As of v1.9, the default MongoDB driver has been changed from mgo to mongo-go.
Thanks to a community contribution by masoudhaghbin, Tyk Pump can now pump logs to an AWS SQS instance.
There has been a significant enhancement in Tyk Graph Pump with the removal of the dependency on the enable_detailed_recording setting. This change is designed to streamline operations, reduce storage requirements and enhance overall performance in production environments. By decoupling detailed recording from specific configuration options, Tyk Graph Pump now provides greater flexibility and control over data storage.
- Docker Image v1.9.0
-
docker pull tykio/tyk-pump-docker-pub:v1.9.0
- Source code tarball for OSS - GH Tyk Pump Repo
- Upgrade
logger-godependency to version 3.3.1, which includes improvements in goroutine management, as well as a newStopmethod for graceful shutdown. - Add support for async data writing, by adding a bounded channel to buffer data records and process them concurrently in the background.
- Add
Shutdownmethod for graceful shutdown ofResurfacePumpbackend.
Thanks to community member Ramón Márquez for updating this pump.
Tyk Pump now has an expontential backoff retry mechanism for sending logs to Splunk. This mechanism mitigates the chance of losing logs if Pump should fail to send logs to Splunk. This fixes a bug where Splunk responses were not being checked correctly and fixes a bug where Pump was not closing connections after receiving responses. For SQL databases, the GraphQL aggregated analytics record will now have a new `api_value` field so that analytics will be shown in the Dashboard correctly. Fixed a bug where any `TYK_PMP_PUMPS_AGGREGATE_*` environment variables didn't correctly correspond to definitions in the pump.conf file. For SQL databases, the GraphQL aggregated analytics record will now have a new `api_id` field so that analytics will be shown in the Dashboard correctly. Fixed a bug causing Tyk Pump not to connect when Redis Sentinel was deployed using TLS.Special thanks to the following members of the Tyk community for their contributions to this release:
Pump can now [send logs](TykTechnologies/tyk-pump#740) to an Amazon SQS instance. Thanks to [masoudhaghbin](https://github.com/masoudhaghbin) for creating this pump. Please follow [this guide](https://github.com/asdf) to set up an SQS pump. The Resurface Pump has been updated with the [following improvements](TykTechnologies/tyk-pump#731).- Upgrade
logger-godependency to version 3.3.1, which includes improvements in goroutine management, as well as a newStopmethod for graceful shutdown. - Add support for async data writing, by adding a bounded channel to buffer data records and process them concurrently in the background.
- Add
Shutdownmethod for graceful shutdown ofResurfacePumpbackend.
Thanks to community member Ramón Márquez for updating this pump.
- Corrected configuration for pumps.kafka.meta.timeout to be interpreted as the number of seconds (Type: int) instead of a duration requiring a unit (Type: Duration).
- Fixed an issue where Graph SQL Pump couldn't restart correctly when analytics storage table name was changed in Pump config. Some relations were not torn down and migrated correctly.
- Resolved performance issue where SQL Aggregate analytics failed to load on the Dashboard during heavy traffic by introducing a new index on the sql_aggregate Pump called idx_dimension.
- Fixed Prometheus Pump crashes on non UTF-8 URLs by updating to prometheus-client v1.16.
- Fixed MongoDB connection string issues related to certain characters ("?" and "@"), recommending URL-encoded values in usernames and passwords. This ensures compatibility with both mgo and mongo-go drivers.
- Fixed security vulnerabilities: CVE-2022-36640, CVE-2022-21698, GO-2022-0322 and GHSA-cg3q-j54f-5p7p.
- Add
track_all_pathsconfiguration for Prometheus Pump. If enabled, all APIs will have path in thetyk_http_status_per_pathmetric. Otherwise, only endpoint that have "track" plugin set with have path shown in the metric. Endpoints without “track” plugin set will have “unknown” path shown in the metric.
- Improved security by obfuscating Mongo Pump credentials in log outputs.
For MongoDB v5 and v6 users, please set mongo driver type to mongo-go.
From pump v1.8.1, the default MongoDB driver it uses is mgo. This is to align with the default MongoDB driver of other Tyk components. This driver supports MongoDB versions up to v4. If you are using a later version of MongoDB v5 or MongoDB v6, please follow this guide to update the driver type to mongo-go.
- GraphQL analytics records were being excluded from the tyk_analytics collection for Mongo Pump. This has been fixed so that GraphQL analytic records are now included as expected.
- Fixed MongoDB connection issue when using a password with URL escape characters (with mongo-go driver)
- Fixed an issue in Prometheus pump when filtering fields , e.g. API Name, that contain
--in their value. For example,test--name. Prometheus Pump filtered the field as two separate instances, e.g.test&name, instead of the expectedtest--name. - When
omit_configfileis set totrue, Pump will not try to load the config file and spit out error logs
- Updated the default Hybrid Pump RPC pool size from 20 to 5 connections in order to reduce default CPU and memory footprint. See Pump configurations
- Import and use latest storage library v1.0.5
- Updated default MongoDB driver to
mgo. Follow this guide to update the driver type - Pump name is now case-insensitive. It will override two or more pumps with the same name but in different cases (e.g. Mongo / mongo)
Release date: 2023-05-04
Pump 1.8 introduces two new pumps: The GraphQL SQL Aggregate Pump - which allows you to transfer GraphQL transaction logs to SQL; and Resurface Pump - which allows you to transfer data to Resurface.io for context based security analysis.
We have changed the default MongoDB driver from mgo to mongo-go. The new driver supports MongoDB versions greater or equal to v4. If you are using older version of MongoDB v3.x, please follow this guide to update the driver type.
We have also added a config option that allow you to decode the raw requests and responses for all pumps so you don't need to worry about processing them in your data pipeline. For demo mode, there is now an option to generate future data for your convenience.
In this release, we are using a new Tyk storage library to connect to Mongo DB. This would allow us to switch to use the official Mongo Driver very easily in the future.
#### Notes on MongoDB v3.x compatibilityIn 1.8.0, the default MongoDB driver it use is mongo-go. This driver supports MongoDB versions greater or equal to v4. If you are using older version of MongoDB v3.x, please follow this guide to update the driver type.
- Added GraphQL SQL Aggregate Pump.
- Added Resurface Pump - Resurface can provide context-based security analysis for attack and failure triage, root cause, threat and risk identification based on detailed API logs sent from Tyk Pump.
- Add config option raw_request_decoded and raw_response_decoded for decoding from base64 the raw requests/responses fields before writing to Pump. This is useful if you want to search for specific values in the raw request/response. Both are disabled by default. This setting is not available for Mongo and SQL pumps, since the dashboard will decode the raw request/response.
- Add the ability to generate future data in demo mode using --demo-future-data flag.
- Remove critical CVE go.uuid vulnerability
- Use the latest Tyk storage library to connect to Mongo
- Hybrid Pump refactoring - we now have better RPC connection control, testability, and documentation
- Std pump does not log accurate time when set to json format
- GraphPump doesn’t include names of queries/mutation and subscriptions called
- Mongo Pump’s connection hangs forever if misconfigured
Please refer to the upgrading Tyk page for further guidance on the upgrade strategy.
Please visit our Developer Support page for further information relating to reporting bugs, upgrading Tyk, technical support and how to contribute.