Skip to content

v1.8.0
Compare
Choose a tag to compare
@mativm02 mativm02 released this 04 May 16:27
· 98 commits to master since this release
v1.8.0
fc7f04b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Summary

Pump 1.8 introduces two new pumps: The GraphQL SQL Aggregate Pump - which allows you to transfer GraphQL transaction logs to SQL; and Resurface Pump - which allows you to transfer data to Resurface.io for context based security analysis.

We have changed the default MongoDB driver from mgo to mongo-go. The new driver supports MongoDB versions greater or equal to v4. If you are using older version of MongoDB v3.x, please update the driver type here.

We have also added a config option that allow you to decode the raw requests and responses for all pumps so you don't need to worry about processing them in your data pipeline. For demo mode, there is now an option to generate future data for your convenience.

In this release, we are using a new Tyk storage library to connect to Mongo DB. This would allow us to switch to use the official Mongo Driver very easily in the future.

Notes on MongoDB v3.x compatibility

We have changed the default MongoDB driver from mgo to mongo-go. The new driver supports MongoDB versions greater or equal to v4. If you are using older version of MongoDB v3.x, please update the driver type here.

Changelog

Added

  • Added GraphQL SQL Aggregate Pump. (#566)
  • Added Resurface Pump - Resurface can provide context-based security analysis for attack and failure triage, root cause, threat and risk identification based on detailed API logs sent from Tyk Pump. (#531)
  • Add config option raw_request_decoded and raw_response_decoded for decoding from base64 the raw requests/responses fields before writing to Pump. This is useful if you want to search for specific values in the raw request/response. Both are disabled by default. This setting is not available for Mongo and SQL pumps, since the dashboard will decode the raw request/response. (#558)
  • Add the ability to generate future data in demo mode using --demo-future-data flag. (#549)
  • Remove critical CVE go.uuid vulnerability (#582)
  • Use the latest Tyk storage library to connect to Mongo (#597)
  • Hybrid Pump refactoring - we now have better RPC connection control, testability, and documentation (#588)

Fixed

  • Std pump does not log accurate time when set to json format (#574)
  • GraphPump doesn’t include names of queries/mutation and subscriptions called (#571)
  • Mongo Pump’s connection hangs forever if misconfigured (#597)
Assets 2
Loading