Trez/ultima-ai
4
0
Fork 0
Code Issues 1 Pull Requests 2 Actions Activity

🔧 Renovate: Update (patch) regex/hashicorp/vault to 1.21.3 to v1.21.3 #145

Merged
renovate-bot merged 1 commits from renovate/regex-hashicorp-vault-1-21-3 into main 2026-03-04 18:03:12 -05:00
Conversation 0 Commits 1 Files Changed 3
+3 -3
renovate-bot commented 2026-03-04 18:02:30 -05:00
Member
Copy Link
Copy Source

This PR contains the following updates:

Package Update Change
hashicorp/vault patch 1.21.21.21.3

Renovate Update Info

  • Update Type: patch

  • Automerge: 🛑 This update requires manual approval

Release Notes

hashicorp/vault (hashicorp/vault)

v1.21.3

Compare Source

February 05, 2026

SECURITY:

  • auth/cert: ensure that the certificate being renewed matches the certificate attached to the session.

CHANGES:

  • core: Bump Go version to 1.25.6

FEATURES:

  • UI: Hashi-Built External Plugin Support: Recognize and support Hashi-built plugins when run as external binaries

IMPROVEMENTS:

  • core/managed-keys (enterprise): Allow GCP managed keys to leverage workload identity federation credentials
  • sdk: Add alias_metadata to tokenutil fields that auth method roles use.
  • secret-sync (enterprise): Added telemetry counters for reconciliation loop operations, including the number of corrections detected, retry attempts, and operation outcomes (success or failure with internal/external cause labels).
  • secret-sync (enterprise): Added telemetry counters for sync/unsync operations with status breakdown by destination type, and exposed operation counters in the destinations list API response.

BUG FIXES:

  • agent: Fix Vault Agent discarding cached tokens on transient server errors instead of retrying
  • core (enterprise): Fix crash when seal HSM is disconnected
  • default-auth: Fix issue when specifying "root" explicitly in Default Auth UI
  • identity: Fix issue where Vault may consume more memory than intended under heavy authentication load.
  • secrets/pki (enterprise): Fix SCEP related digest errors when requests contained compound octet strings
  • ui: Fixes login form so ?with=<path> query param correctly displays only the specified mount when multiple mounts of the same auth type are configured with listing_visibility="unauth"
  • ui: Reverts Kubernetes CA Certificate auth method configuration form field type to file selector

Configuration

📅 Schedule: Branch creation - At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday ( * 0-4,22-23 * * 1-5 ), Only on Sunday and Saturday ( * * * * 0,6 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [hashicorp/vault](https://github.com/hashicorp/vault) | patch | `1.21.2` → `1.21.3` | ### ⚡ Renovate Update Info - **Update Type:** patch - **Automerge:** 🛑 This update requires manual approval --- ### Release Notes <details> <summary>hashicorp/vault (hashicorp/vault)</summary> ### [`v1.21.3`](https://github.com/hashicorp/vault/blob/HEAD/CHANGELOG.md#1213) [Compare Source](https://github.com/hashicorp/vault/compare/v1.21.2...v1.21.3) ##### February 05, 2026 SECURITY: - auth/cert: ensure that the certificate being renewed matches the certificate attached to the session. CHANGES: - core: Bump Go version to 1.25.6 FEATURES: - **UI: Hashi-Built External Plugin Support**: Recognize and support Hashi-built plugins when run as external binaries IMPROVEMENTS: - core/managed-keys (enterprise): Allow GCP managed keys to leverage workload identity federation credentials - sdk: Add alias\_metadata to tokenutil fields that auth method roles use. - secret-sync (enterprise): Added telemetry counters for reconciliation loop operations, including the number of corrections detected, retry attempts, and operation outcomes (success or failure with internal/external cause labels). - secret-sync (enterprise): Added telemetry counters for sync/unsync operations with status breakdown by destination type, and exposed operation counters in the destinations list API response. BUG FIXES: - agent: Fix Vault Agent discarding cached tokens on transient server errors instead of retrying - core (enterprise): Fix crash when seal HSM is disconnected - default-auth: Fix issue when specifying "root" explicitly in Default Auth UI - identity: Fix issue where Vault may consume more memory than intended under heavy authentication load. - secrets/pki (enterprise): Fix SCEP related digest errors when requests contained compound octet strings - ui: Fixes login form so `?with=<path>` query param correctly displays only the specified mount when multiple mounts of the same auth type are configured with `listing_visibility="unauth"` - ui: Reverts Kubernetes CA Certificate auth method configuration form field type to file selector </details> --- ### Configuration 📅 **Schedule**: Branch creation - At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday ( * 0-4,22-23 * * 1-5 ), Only on Sunday and Saturday ( * * * * 0,6 ) (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi44NC4yIiwidXBkYXRlZEluVmVyIjoiNDIuODQuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiZGVwZW5kZW5jaWVzIiwicmVub3ZhdGUiXX0=-->
renovate-bot added the dependenciesrenovate labels 2026-03-04 18:02:31 -05:00
renovate-bot added 1 commit 2026-03-04 18:02:35 -05:00
🔧 Renovate: Update (patch) regex/hashicorp/vault to 1.21.3 to v1.21.3 e8fac97d52
renovate-bot scheduled this pull request to auto merge when all checks succeed 2026-03-04 18:02:58 -05:00
renovate-bot merged commit 06ee6b27ae into main 2026-03-04 18:03:12 -05:00
renovate-bot deleted branch renovate/regex-hashicorp-vault-1-21-3 2026-03-04 18:03:34 -05:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
dependencies
docker-compose
manual
renovate
No Label dependencies renovate
Milestone
No items
No Milestone
Assignees
Clear assignees
gitea-sonarqube-bot renovate-bot root Trez.One
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Trez/ultima-ai#145
Delete Branch "renovate/regex-hashicorp-vault-1-21-3"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?