Overview All releases

Version History

v0.63.0 v0.62.1 v0.62.0 v0.61.0 v0.60.0 v0.59.0 v0.58.0 v0.57.1 v0.57.0 v0.56.0 v0.55.0 v0.54.0 v0.53.1 v0.53.0 v0.52.0 v0.51.0 v0.50.2 v0.50.1 v0.50.0 v0.49.2 v0.49.1 v0.49.0 v0.48.0 v0.47.4 v0.47.3 v0.47.2 v0.47.1 v0.47.0 v0.46.3 v0.46.2 v0.46.1 v0.45.0 v0.44.0

v0.43.1

v0.43.0 v0.42.2 v0.42.1 v0.42.0 v0.41.0 v0.40.0 v0.39.0 v0.38.1 v0.38.0 v0.37.2 v0.37.1 v0.37.0 v0.36.1 v0.36.0

v0.35.0

v0.34.2

v0.34.1

v0.34.0

v0.33.1

v0.33.0

v0.32.1

v0.32.0

v0.31.0

v0.30.2

v0.30.1

v0.30.0

v0.29.4

v0.29.3

v0.29.2

v0.29.1

v0.28.0

v0.27.1

v0.27.0

v0.26.0

v0.25.2

v0.25.1

v0.25.0

v0.24.0

v0.23.2

v0.23.1

v0.23.0

v0.22.0

v0.21.1

v0.21.0

v0.20.5

v0.20.4

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.2

v0.19.1

v0.19.0

v0.19.0-rc1

v0.18.0

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.2

v0.16.1

v0.16.0

v0.15.1

v0.15.0

v0.14.2

v0.14.1

v0.14.0

v0.13.5

v0.13.4

v0.13.3

v0.13.2

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.0

v0.10.7

v0.10.6

v0.10.5

v0.10.4

v0.10.3

v0.10.2

v0.10.1

v0.10.0

v0.9.2

v0.9.1

v0.9.0

v0.8.2

v0.8.1

v0.8.0

v0.7.1

v0.7.0

v0.6.0

v0.5.13

v0.5.12

v0.5.11

v0.5.10

v0.5.9

v0.5.8

v0.5.7

v0.5.6

v0.5.5

v0.5.4

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.10

v0.4.9

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.1

v0.3.0

v0.2.2

v0.2.1

v0.2.0

v0.1.0

Open Policy Agent - v0.43.1

Security

This is a security release fixing the following vulnerabilities:

CVE-2022-36085: Respect unsafeBuiltinMap for 'with' replacements in the compiler

See https://github.com/open-policy-agent/opa/security/advisories/GHSA-f524-rf33-2jjr for all details.

CVE-2022-27664 and CVE-2022-32190.

Fixed by updating the Go version used in our builds to 1.18.6,
see https://groups.google.com/g/golang-announce/c/x49AQzIVX-s.
Note that CVE-2022-32190 is most likely not relevant for OPA's usage of net/url.
But since these CVEs tend to come up in security assessment tooling regardless,
it's better to get it out of the way.

Security

Details

date

Sept. 7, 2022, 6:10 p.m.

name

v0.43.1

type

Patch

official page

https://github.com/open-policy-agent/opa/releases/tag/v0.43.1

👇

🔍View and search all Open Policy Agent releases.
🛠️Create and share lists to track your tools.
🚨Setup notifications for major, security, feature or patch updates.
🚀Much more coming soon!

Continue with GitHub

Continue with Google

Username

Password

Password (again)

leave this field blank to prove your humanity