v0.4.7

🛠 Maintenance

• Bumps harmonizer to v2.0.0-preview.7 - @EverlastingBugstopper, #1037

  rover fed2 supergraph compose now uses rust: [email protected] and js: @apollo/[email protected].

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.6

🐛 Maintenance

• Bumps harmonizer to v2.0.0-preview.5 - @EverlastingBugstopper, #1033

  rover fed2 supergraph compose now uses rust: [email protected] and js: @apollo/[email protected].

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.5

🐛 Fixes

• Fixes "output from rover-fed2 was malformed" serialization errors - @EverlastingBugstopper, #1030

  Federation 2 was broken in 0.4.4, every rover fed2 supergraph compose command would return "output from rover-fed2 was malformed" which was not helpful.

  rover fed2 supergraph compose now uses [email protected]/@apollo/[email protected] under the hood and the data passed between rover and rover-fed2 is matched up properly. Happy federating!

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.4

🛠 Maintenance

• Updates the version of the underlying composition packages - @EverlastingBugstopper, #1025

  rover supergraph compose now uses [email protected]/@apollo/[email protected] and rover fed2 supergraph compose now uses [email protected]/@apollo/[email protected].

• Updates README badges - @EverlastingBugstopper, #1016

  Replaced the stability: experimental badge with a badge showing Rover's total download count, and replaced the outdated GitHub workflow badge with the appropriate CircleCI badge.

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.3

🐛 Fixes

• Fix npm installer logic for detecting glibc compatibility - @EverlastingBugstopper, #1006 fixes #1004

  Our npm installer had a dependency that updated to v2.0 which included some breaking changes. These changes made our npm installer always return false when checking if the operating system has an appropriate version of glibc installed (in order to download the version of Rover with supergraph compose functionality). We have now moved to the appropriate API and installs of v0.4.3 should work as expected.

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.2

🚀 Features

• Adds launch URL feedback to rover subgraph publish - @Y-Guo, #989

  If a rover subgraph publish invocation kicks off a launch, it will now output the URL associated with the launch so you can go right to it in Studio.

• Improve messaging for rover subgraph check - @david-castaneda, #980

  In the case where the API schema does not change after a subgraph check but the core schema was modified, you are now notified as such rather than being displayed a confusing "there were no changes detected" message.

🐛 Fixes

• Omit Float scalars from introspection result - @lrlna, #988 fixes #985

  Since Float is a built-in GraphQL scalar type, it is no longer included in Rover's introspection results.

• Fix configuration error messages when there are no profiles - @EverlastingBugstopper, #995 fixes #783

  Rover had a hard time detecting when there were no configured profiles, so it never actually emitted error E020. Now it does, and we also get some performance improvements by only parsing environment variables on startup rather than on every time they are needed.

• No longer panic when printing large output - @EverlastingBugstopper, #955 fixes #842

  Migrate away from the println and eprintln macros that can cause panics from time to time and instead use calm_io to gracefully handle output.

• Lowers the maximum required glibc version from 2.18 to 2.17 - @EverlastingBugstopper, #990 fixes #991

  We build Rover in Docker with the centos:7 base image, which has glibc v2.17 installed. This means we can lower our installer requirements to 2.17, allowing folks on older machines like centos to install Rover. Thanks to @theJC for the report and help with testing!

• Removes unused --profile argument from rover subgraph introspect - @EverlastingBugstopper, #950 fixes #948

🛠 Maintenance

• Use apollo-encoder in rover-client - @lrlna, #939

  sdl-encoder has been replaced with the official apollo-encoder from the apollo-rs ecosystem.

• Add PR template - @EverlastingBugstopper, #488

  Now folks who are kind enough to contribute pull requests to Rover's repository will have a helpful template to fill out.

• Fix mechanism for building old versions of Rover - @EverlastingBugstopper, #973 fixes #967

  If a build is executed via cargo xtask dist --version vx.x.x, it will now actually download the schema it needs from the GitHub release artifacts page in order to build for the exact types that were built at that tagged version.

• Allow Rover to be installed alongside Node.js v17 - @EverlastingBugstopper, #999 fixes #993

• Run plugin tests and lints in xtask - @EverlastingBugstopper, #977 fixes #909

• Adds new unused input type to check mutations - @EverlastingBugstopper, #969 fixes #967

  Update the inputs to our check mutations to always send null for the excludedOperationNames field.

📚 Documentation

• Add docs for rover supergraph fetch - @StephenBarlow, #971 fixes #952

• Miscellaneous documentation polish - @StephenBarlow, #965, #963

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.1

🚀 Features

• Track WSL as a separate operating system from Linux - @ptondereau, #921 fixes #511

🐛 Fixes

• Properly indent multiline field comments in introspection output - @lrlna, #919 fixes #884

• Properly encode string values with single quotes instead of always using triple quotes - @lrlna, #930

🛠 Maintenance

• Updates rover supergraph compose to use @apollo/[email protected] - @EverlastingBugstopper, #929 fixes #924

  This adds support for users of v16 of the graphql library in addition to fixing a bug in directive merging logic.

• Expand valid node runtime range to >=14 <17 for npm installs - @EverlastingBugstopper #900 fixes #912

📚 Documentation

• Miscellaneous copy edits - @StephenBarlow, #923

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.4.0

🚀 Features

• Federation 2 Support - EverlastingBugstopper, pull/887

  The alpha version of Federation 2 has been released!

  In Rover, you can use the Federation 2 composition model by running rover fed2 supergraph compose --config <supergraph.yaml> after installing the rover-fed2 binary.. You must install rover-fed2 before you can run rover fed2 supergraph compose, and they must be the same version in order to be compatible with each other.

• Graph lifecycle management - EverlastingBugstopper, issue/722 pull/861

  Rover now supports the rover graph delete command, which will delete all subgraphs in a federated variant, or delete the schema for a non-federated variant.

  There is also new documentation on how rover graph publish and rover subgraph publish create new variants.

  Additionally, you no longer need to pass --convert to subgraph publish when publishing a subgraph to a new variant, though you will still need it when converting a non-federated variant to a federated variant.

• Fetch the subgraph's routing_url from the graph registry if it isn't specified in a supergraph.yaml file - EverlastingBugstopper, pull/873

  Now, whenever routing_url is not specified for a subgraph in supergraph.yaml and the source is a graphref (which fetches a subgraph from the graph registry), the composed supergraph will use the routing URL from the graph registry for that subgraph instead of an empty string.

🐛 Fixes

• Output enum descriptions in introspection results - lrlna, issue/878 pull/879

  Now, any introspection result that contains descriptions for enums will include them in the output.

• Output directive arguments in introspection results - lrlna, pull/858

  Now, any introspection results that contain directive arguments will include them in the output.

🛠 Maintenance

• Refactor HTTP client configuration - ptondereau, issue/844 pull/890

  When Rover first introduced options to configure the HTTP client, there was a function that took configuration arguments, and returned a client. This has now been refactored to use a more idiomatic builder approach. Thanks @ptondereau!

• Updates workspace to the 2021 Rust edition - EverlastingBugstopper, pull/886

📚 Documentation

• Replace 'data graph' with 'graph' in all of the docs - trevorblades, pull/860

• Add a missing backtick to $PATH in the CI install docs - EverlastingBugstopper, pull/874

• Clarify the drawbacks of publishing introspection results to the graph registry - EverlastingBugstopper, pull/866

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.3.0

Important: 1 breaking change below, indicated by ❗ BREAKING ❗

❗ BREAKING ❗

• rover supergraph compose uses a newer composition function that is incompatible with older versions of @apollo/gateway - EverlastingBugstopper, issue/801 pull/832

  The rover supergraph compose command produces a supergraph schema by using composition functions from the @apollo/federation package. Because that library is still in pre-1.0 releases (as are Rover and Apollo Gateway), this update to Rover means rover supergraph compose will create a supergraph schema with new functionality. In turn, this requires that you update your @apollo/gateway version to >= v0.39.x.

🚀 Features

• Adds options to bypass TLS validation - EverlastingBugstopper, issue/720 pull/837

  In some configurations, often on internal networks, you might need Rover to communicate over encrypted channels (e.g., HTTPS) but avoid the more stringent digital certificate verifications that validate hostnames. You might even need to bypass the digital certificate validation entirely. This is generally not recommended and considered to be much less secure but for cases where it's necessary, but now there are two flags you can use to configure how Rover validates HTTPS requests:

  • The --insecure-accept-invalid-hostnames flag disables hostname validation. If hostname verification is not used, any valid certificate for any site is trusted for use from any other. This introduces a significant vulnerability to person-in-the-middle attacks.

  • The --insecure-accept-invalid-certs flag disables certificate validation. If invalid certificates are trusted, any certificate for any site is trusted for use. This includes expired certificates. This introduces significant vulnerabilities, and should only be used as a last resort.

• Adds option to increase rover's request timeout - EverlastingBugstopper, issue/792 pull/838

  By default, Rover times out requests to the Apollo Studio API and your graph endpoints after 30 seconds. Now, if you're executing a command that might take longer than 30 seconds to process, you can increase this timeout with the --client-timeout option like so:

  rover subgraph check my-graph --validation-period 1m --client-timeout=60

🛠 Maintenance

• Simplify error formatting - EverlastingBugstopper, pull/845

  Now, Rover always indents the suggestion by 8 spaces instead of determining its length based on the length of the error descriptor, and the underlying cause of request errors will only be printed once.

📚 Documentation

• Clarify --output json support in migration guide, and provide an example jq script - EverlastingBugstopper, issue/839 pull/840

  The Apollo CLI migration guide now mentions Rover's support for --output json, and our --output json docs now link to an example bash script for converting a check response to markdown.

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.

v0.2.1

🐛 Fixes

• Properly swallow unparseable git remotes - EverlastingBugstopper, issue/670 pull/760

  In v0.2.0, we fixed a crash that occurred for users with non-standard git remotes. While the crash
  itself no longer occurred, the crash report itself was still generated - this is no longer the case.

🛠 Maintenance

• Move markdown link checker to cargo xtask lint - EverlastingBugstopper, issue/774 pull/778

  We now check for broken markdown links through xtask, meaning you can more accurately check if CI will pass locally.

• Migrate lints/tests from GitHub Actions to CircleCI - EverlastingBugstopper, issue/774 pull/781

• Run tests on centos 7 and ensure the binary only depends on glibc <= 2.18 - EverlastingBugstopper, pull/800

• Migrate release process from GitHub Actions to CircleCI - EverlastingBugstopper, issue/795 pull/808

📚 Documentation

• Clarifies setting HEAD SHA for GitHub Actions - StephenBarlow, pull/763

  Extended the section in the docs for configuring GitHub Actions
  to include instructions for properly configuring the git context.

• Fix a typo in the docs - SaintMalik, pull/762

---

This release was automatically created by CircleCI.

If you would like to verify that the binary you have downloaded was built from the source code in this repository, you can compute a checksum of the zipped tarball and compare it to the checksums that are included as release artifacts.

Binaries built for MacOS are signed, notarized, and automatically verified with Gatekeeper.