Release 9.0.28.1¶

Enhancement: Validations Implemented for "Get Roles by Role Name" API¶

The Get Roles by Role Name API has been enhanced with additional validations. When a request is made for a non-existent role, the API now returns an appropriate HTTP response code and a clear error message. This improvement enhances error handling and makes the API behavior more predictable and user-friendly.

Introduced Time-level Filters for Audits Pages¶

Enhanced audit filtering with time-level precision for PolicySync and admin audit pages, allowing users to filter beyond date ranges with specific time selection. Improved debugging experience and audit trail granularity for better system monitoring and compliance reporting.

Updated Dataserver Dependencies¶

Upgraded dataserver dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

Dataserver Base Image Upgraded¶

Updated the dataserver base image to a newer Debian version to address known security vulnerabilities identified in CVE report.

OpenTelemetry (OTel) Support Added¶

Privacera Auditserver now supports OpenTelemetry tracing, enabling deeper visibility into API response times and database interactions. Traces are exported via OTLP and integrated with Grafana Tempo for end-to-end observability.

Updated Fluentd Dependencies¶

Upgraded fluentd dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report.

Unity Catalog Connector Improvements¶

• Enhanced the Unity Catalog connector to correctly load foreign catalog tables from Databricks Unity Catalog. Previously, these tables were visible in the Unity Catalog UI but were not being loaded by the connector.
• Improved audit logging accuracy by implementing proper exception handling for GRANT/REVOKE operations. Failed operations are now correctly reflected in the audit logs as failures, rather than being incorrectly logged as successful.

Updated Application Dependencies¶

Upgraded application dependencies to address known security vulnerabilities identified in CVE (Common Vulnerabilities and Exposures) report for following connectors:

• BigQuery
• Ops-Server
• Snowflake

Base Image Upgraded¶

Updated the base image to a newer Debian version to address known security vulnerabilities identified in CVE report for following connectors:

• BigQuery
• Ops-Server
• Snowflake

Post-Install-Job Base Image Upgraded¶

Upgraded the base image to a newer Debian version to address known security vulnerabilities identified in the CVE (Common Vulnerabilities and Exposures) report.

Monitoring Components Upgraded to Newer Versions¶

Upgraded the following monitoring components to newer versions to address known security vulnerabilities identified in the CVE (Common Vulnerabilities and Exposures) reports:

• Grafana
• Loki
• Pyroscope
• OpenTelemetry

Updated the Solr and Zookeeper Dependencies¶

Upgraded Solr from 9.7.0 to 9.8.1, updated Solr and Zookeeper dependencies to address known security vulnerabilities identified in the CVE (Common Vulnerabilities and Exposures) report.

Ranger Plugin NLB Annotaion¶

Added service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: "ip" annotation to the Ranger Plugin NLB to resolve target discovery issues.