wasmCloud
v2.1.0Orchestration & ManagementwasmCloud v2.1.0 delivers operator reliability fixes, plugin support in services, and a wave of CI security hardening — a solid incremental release with a few operator-side changes worth watching.
breakingOperator readiness behavior changed — review your health checks
The operator now only marks WorkloadDeployment as Ready when replicas are actually available. If your CI/CD pipelines or monitoring poll readiness status, they'll behave more correctly — but any tooling that relied on the previous optimistic Ready state may see deployments appear 'stuck' longer. Validate your rollout timeout thresholds after upgrading.
securityBump wasmtime and run cargo audit in your own builds
wasmtime was bumped alongside the removal of rustls-pemfile and the addition of cargo audit to the build pipeline. If you build wasmCloud components from source or maintain forks, add cargo audit to your own CI now. The dependency surface for WASM runtimes shifts fast, and catching advisories early matters.
enhancementPlugin support in services opens new extension patterns
Services now support plugins, which means you can attach custom behavior at the service layer without forking core components. If you've been waiting to extend service behavior in a maintainable way, this is the release to experiment with. Start by reviewing the updated service plugin API in the docs before designing new integrations.
Key changes (5)
- WorkloadDeployment readiness now gates on actual replica availability, fixing misleading 'Ready' states in the operator
- NATS subscription workload readiness fixed — previously reported ready before subscriptions were actually established
- Plugin support added to services, expanding extensibility for service-layer customization
- wasmtime bumped and cargo audit added for ongoing supply chain security hygiene
- OpenSSF Scorecard and CodeQL workflows added to CI, alongside broader zizmor-based hardening