components/egress 1.1.4
Pre-releaseWhat's New
⚠️ Breaking Changes
-
Credential Vault requires
dns+nftenforcement. Credential-bound destinations can no longer be reached via direct-IP connections that bypass DNS. Deployments using DNS-only enforcement must migrate tomode = "dns+nft"in the[egress]config.defaultAction: allowstill works but is deprecated for Credential Vault (emits a security warning);defaultAction: denywith explicit allow rules is recommended. (#1136) -
X-Forwarded-Protono longer trusted from arbitrary peers. Only trusted from IPs/CIDRs listed inOPENSANDBOX_EGRESS_CREDENTIAL_VAULT_TRUSTED_PROXY_CIDRS. Client-supplied forwarded headers are stripped and rebuilt from the observed connection. Deployments that terminate TLS in front of the egress sidecar must configure the trusted proxy CIDRs, otherwise Credential Vault will reject requests as non-HTTPS. (#1138) -
Match.Portsremoved from Credential Vault bindings. Port is now derived from scheme (http→80,https→443) — the only ports the intercept layer redirects. Remove theportsfield from existing binding configs; SDK models regenerated. (#1189)
🔒 Security
- Path traversal rejected before credential injection. When a vault is active, requests with raw
../, percent-encoded dot-segments (%2e%2e, mixed-case), or encoded path separators (%2f) now return 403 before binding match, preventing credential-scope escape via ambiguous paths. Legitimate clients resolve dot-segments before sending, so this is a strong evasion signal. When no vault is active, requests pass through unchanged. (#1192)
✨ Features
- Credential Vault placeholder substitutions. Opt-in placeholder substitution for
path,query,header, andbodysurfaces (includingpassthroughauth bindings), with request-side encoding rules and placeholder/value redaction. API contract, SDK models, docs, and e2e coverage updated. (#1251)
🐛 Bug Fixes
- Fallback to native
nftfor DNS redirect. In some K8s pod netns,iptables-nftcan list thenattable but fails onnat OUTPUTappend (RULE_APPEND failed), causing the egress sidecar to crashloop. Now falls back to nativenftDNS redirect rules, retries setup without dropping the table when it doesn't exist yet, and uses a plaindropfor the default-deny fallback. (#1146)
🔧 Improvements
-
OTel metrics normalized. Attribute keys
.→_(http_method,http_status_code,routing_result) and OTLP export switched to delta temporality. Update dashboards/alerts accordingly. (#1209) -
CredentialSourceprovider interface. Credential source resolution now goes through aCredentialSourceinterface +SourceRegistry, enabling future secret manager integrations (HashiCorp Vault, AWS SM, etc.) without touching wire format or SDK models. (#1186)
📦 Misc
- GHCR image publishing. egress images now also published to
ghcr.io. (#1161)
👥 Contributors
Thanks to these contributors ❤️
- Docker Hub: opensandbox/egress:v1.1.4
- Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/egress:v1.1.4
- GHCR: ghcr.io/opensandbox-group/opensandbox/egress:v1.1.4