Skip to content

Release notes

Releases follow MAJOR.MINOR.PATCH. Read each entry top-to-bottom; the Breaking subsection is always called out before features.

For the upgrade procedure see Operator → Operations → Upgrades.

1.4.0 — 2026-04-26

Phase 19 (Tranche 3) and Phase 21 — GitOps + Federation + authoring ergonomics + live metrics.

Breaking

None. Every existing setting and API endpoint behaves as before.

New

  • GitOps configuration sync — register a Git repo as a read-only configuration source. Polling in this tranche; webhooks Tranche 2. See GitOps tutorial and ADR-049.
  • Federation (read-only aggregation) — bilateral mTLS + shared secret trust between Ampora servers; aggregated Fleet view across peers. See Federation tutorial and ADR-050.
  • Federated rollouts — single rollout fans out to multiple peers, each applying with their own audit trail. See Federated rollouts and ADR-051.
  • Cross-cluster handover — move an agent between Ampora servers with identity continuity.
  • Live metrics — per-pipeline volume and latency in the UI, fed by ReportsOwnMetrics-capable agents. ADR-055, ADR-056.
  • Service settings schema — typed tenant defaults UI. ADR-054.

Improved

  • Bulk move and bulk revoke on the Fleet page.
  • Drift dashboard surfacing on the Dashboard.
  • Audit-log filtering by entity ID.

Fixed

  • A race in cross-instance dispatch where a session ownership renewal could lose to a concurrent reconnect.
  • A YAML normalisation bug on multi-line strings inside arrays.

1.3.0 — 2026-03-15

Phase 17 — Enterprise crypto hardening.

New

  • OCSP responder with stapling. ADR-043.
  • KMS / HSM adapter matrix: AWS KMS, Azure Key Vault, GCP KMS, PKCS#11, Vault Transit. ADR-044.
  • Real-time CRL/OCSP revocation enforcement at the OpAMP listener. ADR-045.
  • RFC 3161 timestamping for audit events (opt-in). ADR-046.

Breaking

  • CertificateAuthority:CrlDistributionPoint is now required for productionising CRL — leaves issued without it cannot be revoked via CRL. Existing leaves continue to work; new ones need the setting.

1.2.0 — 2026-02-20

Phase 16 — Authoring maturity.

New

  • Drag-from-palette with mini-map in the visual editor. ADR-022.
  • 3-way merge for concurrent draft edits. ADR-022.
  • Tenant-scoped lint rules in the policy DSL. ADR-041.
  • Soft-delete extension to configurations and identities. ADR-042.

Improved

  • Visual editor performance on configurations with > 50 components.

1.1.0 — 2026-01-25

Phase 15 — Operations feedback loop.

New

  • Drift dashboard. ADR-039.
  • Bootstrap token pools for high-throughput onboarding. ADR-040.
  • Dark mode preference per tenant.
  • Line-level diff in Configurations.

Breaking

  • OpAmp:RequireMtls defaults to true (was implicit true before but can now be set explicitly). Dev deployments using BootstrapPlaintextAllowed are unaffected.

1.0.0 — 2025-12-10

General availability. Phases 1–14 are shipped:

  • OpAMP core, persistence, Blazor UI, Cytoscape visualiser.
  • Packages, credential rotation, policy governance, semantic diff, percentage rollouts, dynamic groups.
  • Production hardening: canary step-up, package signing, multi-tenant hard isolation.
  • HA scale-out: dispatch backplane, SignalR scale-out, JSONB indexes.
  • PKI: CRL/OCSP, signing-key rotation, HSM/KMS abstraction.
  • Self-observability, audit retention, custom policy DSL.
  • Editor maturity, RLS, tenant theming.

Adopt with KeyProtection:MasterKey set, OpAmp:RequireMtls=true, and Authentication:Oidc:* configured.

Pre-1.0 history

The phase-by-phase history before 1.0 is preserved in the repository's docs/roadmap.md and docs/adr/. The doc set you are reading covers ≥ 1.0 only.