v1.77.0

🆕 What's new:

• Delta tables export: support change data feed (#10127)
• Web UI: Responsive collapsible breadcrumb for URI navigation (#10078)
• Web UI: LRU caching for recently accessed refs (#10093)
• Web UI: Improved discoverability of refs (#10090)
• Web UI: Lock commit/merge inputs during API calls (#10103)
• Add tracing regions to KV store operations (#10023)
• Trace all lakeFS API and gateway tasks (#10016)

🐛 Bugs Fixed

• CVE: Path traversal vulnerabilities in local block adapter allow cross-namespace and sibling directory access
• Fix: Replace per-task heartbeat with instance-level heartbeat in cataloger (#10118)
• Fix: Return 400 instead of 500 for DeleteObjects size limit (#10097)
• Fix: Report per-object errors correctly in lakectl recursive rm and batch deletions (#10095)
• Fix: Expired status override on completed cataloger tasks (#10080)
• Fix: Handle special characters in file paths for DuckDB queries in WebUI (#10076)
• Fix: Stuck goroutines in cataloger (#10055)

v1.76.0

🆕 What's new:

• Report pre-signed URL expiry time for Azure (#9986)
• Add external principals management commands to lakectl (#9978)
• Prepare gc commits: Reduce memory usage (#9996)
• Copy logging fields to background task context (#9995)

🐛 Bugs Fixed

• Fix: lakectl gc check-async print a usable URL (#9994)

v1.75.0

Security Fixes

• S3 Gateway: Fixed timestamp validation vulnerability allowing replay attacks. See GHSA-f2ph-gc9m-q55f.

🆕 What's new:

• Report pre-signed URL expiry for GCS (#9927)
• Add --all and --repo flags to kv dump command (#9874)
• Add heartbeat to catalog background tasks (#9868)
• Add lakectl support for prepare GC commits (#9951)
• WebUI: Show tag badges in commit log with paginated tag fetching (#9953)

🐛 Bugs Fixed

• Fix: Return 404 instead of 500 for non-existent API endpoints (#9877)
• Fix: Incorrect date for uncommitted objects in webui (#9939)
• Fix: S3 CreateBucket error response for non-existent repositories (#9945)
• Fix: ObjectCopy for imported objects (#9943)
• Fix: WebUI object list sorting to use lexicographic order (#9955)

v1.74.4

Changelog

🐛 Bugs Fixed

• UI: Branch not found error on tag selection (#9903)
• Improve file handling and concurrency in local metadata cache (#9879)

v1.74.3

Changelog

🏢 Includes only changes for Enterprise.

v1.74.2

This release fixes a panic introduced in v1.74.1 when using new lakectl with older lakeFS servers

Changelog

🐛 Bugs Fixed

• Fix lakectl commit/merge panic (#9888)

v1.74.1

🆕 What's new:

UI:

• Pull Request/Compare Navigation: Added Pull Request button to Compare tab and Compare button to Branches tab (#9795)
• Branch Management: Added multi-branch deletion with checkbox selection (#9796)
• Revert Actions: Introduced Branch revert UI (#9807)
• Visibility: Added ability to show hidden branches (#9812)
• Added message for bare repositories (#9817)
• Added warnings for empty paths in Web UI (#9797)

lakectl:

• If lakectl is not configured, running lakectl login now runs a
  dialogue to configure the server endpoint URL. On Enterprise, this allows
  running lakectl login zero configuration. (#9659)
• Remove default configuration of server.endpoint_url in lakectl. Its value
  was http://localhost:8000/ which is not generally useful. (#9659)
  This is technically a breaking change. It may affect some CI
  workflows, or some configurations relying on port forwarding. As one
  workaround, the environment variable LAKECTL_SERVER_ENDPOINT_URL
• Identity Display: lakectl now shows names instead of IDs for externally-defined users and groups (#9806)

S3 Gateway:

• Validation: Added expiry validation for S3 gateway requests (#9710)
• Operations: Added prefix to ListBuckets operation (#9798)
• Error Handling: Use correct error for mismatched Sig V4 credential date (#9813)

Garbage Collection (GC)

• Feature: Added a CLI runner for prepare gc commits (#9768)

Core Logic & API:

• Add Capabilities Property In Config (#9876)
• Validation: Enforce non-empty metadata keys in forms (#9650)
• Observability: Propagate X-Request-ID header to external auth services (#9816)
• GC Performance: Reduced memory consumption of prepare gc active commits (#9779)
• GC Logic: Added duration check during GC prepare uncommitted (#9763)

🐛 Bugs Fixed

UI:

• Display Fixes: Fixed name display on the Pull Request page (#9821) and in the path view (#9818)
• Login: Fixed missing error message in UI after a failed login attempt (#9775)

Core Logic & API:

• Headers: Now returns Content-Range header on ErrUnsatisfiableRange (#9743)
• Stability: Fixed 500 error on preconditions (#9804)
• Logging: Fixed logging for requests from remote addresses without port numbers (#9825)
• GC Logic: Fixed issue where lakeFS would skip "branch not found" during gc prepare uncommitted (#9792)

S3 Gateway:

• Handle s3 context cancellation error in s3gw (#9856)

Backend:

• Race Conditions: Fixed import start race condition (#9808)
• Storage: Fixed local adapter error when no space is left on device (#9827)

v1.73.0

🆕 What's new:

• Graveler: parallel delete using workpool (#9716)
• Deprecate disable usage report (#9675)

🐛 Bugs fixed:

• Fix UI showing wrong field removed when deleting metadata field (#9669)

v1.72.0

🆕 What's new:

• API: prepare GC commits async (#9643)
• Improve download robustness with retry logic for body operations (#9629)

🐛 Bugs fixed:

• WebUI: Making PRs (Pull Requests) with no changes closable (#9294)
• Allow non-ASCII values in S3 PutObject user metadata (#9604)
• Support multiple template colors in lakectl console output (#9642)

v1.71.0

🆕 What's new:

• API: copy object will clone object metadata when possible (#9500)
• lakectl improve download by reducing the number of calls to stat object (#9555)

🐛 Bugs fixed:

• WebUI: Wrap duckDB cells content (#9584)
• UpdateMetadata when we have a tombstone in staging should return 404 (#9566)
• Fix unauthenticated access to API usage metrics (GHSA-h238-5mwf-8xw8)