v1.4.4

  less than a minute  

Date: September 17, 2025

Security updates

  • Updated the Go module package xz to fix CVE-2025-58058.
  • Updated the distroless image to resolve glibc CVEs.

Bug fixes

  • Fixed an issue in handling context-related transient errors to prevent incorrect state reconciliation and unintended behavior.
  • Fixed an issue where the exclusiveMaximum field in the CRD was set incorrectly.
  • Fixed validation for gRPC routes with extension ref filters.
  • Fixed an issue where route status had dangling conditions and was not cleaned up.
  • Added missing patch annotations to the Compression struct for proper Merge.

Other changes

  • Updated Envoy Proxy to v1.34.7.
  • Updated Ratelimit tag version to e74a664a.

Last modified September 17, 2025: [release/v1.4] release notes and verion (#6971) (72981623)