Vault 1.18.0, 1.17.7, 1.16.11, 1.15.16 released

Release Notifications
1

Vault 1.18.0, 1.17.7, 1.16.11, and 1.15.16 are released!

Hi all,

The Vault team is announcing the general availability of 1.18, as well as Vault Enterprise 1.17.7, 1.16.11, and 1.15.16.

Community Edition binary can be downloaded at [1]. Enterprise binaries are available to customers as well.

As a reminder, if you believe you have found a security issue in Vault, please responsibly disclose by emailing security@hashicorp.com and do not use the public issue tracker. Our security policy and our PGP key can be found at [2].

The major features and improvements in these releases are:

  • PKI Certificate Management Protocol - Version 2 (CMPv2) (Enterprise) to enable 5G wireless providers address 3GPP standards requirements related to automated certificate enrollment.
  • Workload Identity Federation UI for AWS (Enterprise) allows configuration through the Vault UI.
  • Rootless rotation for PostgreSQL static roles (Enterprise) enables credential rotation without requiring a privileged account.
  • Inline TLS configuration for the PostgreSQL Database Secrets Engine allows a Vault admin to protect the connection between Vault and database server, relieving the dependency on sysadmins.
  • Adaptive Overload Protection GA (Enterprise): Actively limits the length of Vault’s storage queue to handle Vault cluster overload scenarios. (Enabled by default for Integrated Storage)
  • Client Count Export API Enhancements: The export API for client counts will now return identity information when it is available.
  • Vault Audit Entry Exclusion (Enterprise): Vault Audit devices can now be configured to exclude fields using expression-based rules.
  • UI Support for KVv2 Patch and Subkey (Enterprise): The Vault UI can now be used to show and selectively update KVv2 subkeys.

See the Changelog at [3] for the full list of improvements and bug fixes.

See the Feature Deprecation Notice and Plans page [8] for our upcoming feature deprecation plans.

Community [6] and Enterprise [7] Docker images will be available soon.

Upgrading

See [4] for general upgrade instructions and [5] for upgrade instructions and known issues.

As always, we recommend upgrading and testing this release in an isolated environment. If you experience any non-security issues, please report them on the Vault GitHub issue tracker or post to the Vault Discuss Forum at [9].

We hope you enjoy Vault 1.18.0!

Sincerely, The Vault Team

[1] Vault v1.18.0 Binaries | HashiCorp Releases

[2] Security at HashiCorp

[3] vault/CHANGELOG.md at main · hashicorp/vault · GitHub

[4] Upgrading Vault - Guides | Vault | HashiCorp Developer

[5] Release Notes | Vault | HashiCorp Developer

[6] https://hub.docker.com/r/hashicorp/vault

[7] https://hub.docker.com/r/hashicorp/vault-enterprise

[8] Deprecation notices | Vault | HashiCorp Developer

[9] Vault - HashiCorp Discuss