Flux
v2.8.2CI/CD & App DeliveryFlux v2.8.2 delivers critical fixes for reconciliation loops, Azure Container Registry authentication, and includes a security patch for CVE-2026-27138. The release focuses on operational stability improvements.
securityApply CVE-2026-27138 patch immediately
This release fixes a potential Denial of Service vulnerability during TLS handshakes. Schedule your upgrade to v2.8.2 as soon as possible, especially if your Flux installation handles external TLS connections or operates in environments with security compliance requirements.
enhancementEnable DefaultToRetryOnFailure for better HelmRelease reliability
If you use CancelHealthCheckOnNewRevision and have experienced stuck HelmReleases, enable the new DefaultToRetryOnFailure feature gate. This prevents canceled releases without retry strategies from hanging indefinitely, improving deployment reliability.
enhancementVerify Azure Container Registry authentication after upgrade
The ACR authentication scope fix may resolve intermittent authentication failures you've experienced with Azure registries. After upgrading, monitor your image pulls and source operations to confirm improved reliability with ACR repositories.
主な変更 (5)
- Fixed unnecessary reconciliation requests when source objects are already processing the current revision
- Resolved Helm template YAML separator bug by upgrading to Helm 4.1.3
- Added DefaultToRetryOnFailure feature gate to prevent HelmReleases from getting stuck when canceled
- Corrected Azure Container Registry authentication scope for proper access
- Patched CVE-2026-27138 TLS handshake DoS vulnerability by building with Go 1.26.1