OpenFGA
v1.12.0SecurityOpenFGA v1.12.0 improves operational reliability with automatic TLS certificate rotation, enhanced input validation, and critical race condition fixes.
enhancementConfigure gRPC message size limits
Review your current message sizes and set appropriate limits using the new configuration option to prevent resource exhaustion attacks and improve system stability.
securityUpgrade for Go stdlib vulnerability fixes
This release addresses two Go standard library vulnerabilities (GO-2026-4603 and GO-2026-4601). Plan your upgrade to eliminate these security risks in production deployments.
enhancementBenefit from automatic certificate rotation
If you're using cert-manager or similar certificate rotation tools, this release eliminates connection failures during certificate updates. Test your certificate rotation process after upgrading to verify the improvement.
主な変更 (5)
- gRPC message size limits now configurable for better resource control
- HTTP gateway automatically handles TLS certificate rotation without connection failures
- Tuple validation rejects unicode control characters and null bytes for security
- Race condition in check reducers fixed to prevent non-deterministic execution
- Cache metrics corrected to prevent indefinite upward drift on overwrites