Subscribe to our RSS Feed or by email to receive automatic notifications when new releases are published. Get notified when we ship new features and improvements.

Gateway 5.5.0

Gateway 5.5.0 is a minor release that introduces external secrets management, Gateway Manager database import and export, and FlowAI execution capabilities. This release also includes bug fixes and enhancements.

For more information on new features included in this release, see Gateway 5.5.0 feature announcement.

minor-releasenew-featurebug-fixenhancement

Gateway 5.4.1

Itential Gateway 5.4.1 is a maintenance release containing a bug fix.

IssueDescription
Incorrect error and discarded results on send-config and send-command tasks (ENG-23916)Fixed an issue where Gateway responded with an incorrect connection error and discarded all per-node results when executing send-config and send-command tasks. Gateway now responds with the correct connection error and continues processing remaining devices.
maintenance-releasebug-fixgateway

Gateway Manager 1.0.10

Gateway Manager 1.0.10 is a maintenance release containing enhancements, bug fixes, and security updates.

FeatureDescription
Inspect cluster commands (ENG-22987)Added inspectCluster task that provides visibility into a gateway cluster’s activity and health.
FeatureDescription
sendCommand and sendConfig task status (ENG-19453)Fixed an issue where sendCommand and sendConfig tasks incorrectly returned an error status on successful execution.
FeatureDescription
Uncontrolled recursion (ENG-23039)Resolved an uncontrolled recursion security vulnerability.
Dynamically-determined object attribute modification (ENG-23037)Resolved a security vulnerability related to improperly controlled modification of dynamically-determined object attributes.
Prototype pollution (ENG-23035)Resolved a prototype pollution security vulnerability.
HTTP response splitting (ENG-23026)Updated axios to resolve an HTTP response splitting security vulnerability.
Unintended proxy behavior in axios (ENG-22842)Updated axios to resolve a security vulnerability related to unintended proxy behavior.
HTTP response splitting in axios (ENG-22896)Updated axios to resolve an HTTP response splitting security vulnerability.
Arbitrary code injection in lodash (ENG-22846)Updated lodash to resolve an arbitrary code injection security vulnerability.
Sensitive information exposure (ENG-22731)Updated follow-redirect package to resolve a security vulnerability related to improper removal of sensitive information before storage or transfer.
Unintended proxy behavior (ENG-22603)Updated itential-utils to resolve a security vulnerability related to unintended proxy behavior.
Arbitrary code injection (ENG-22377, ENG-22338, ENG-22336)Updated lodash and rodeo to resolve arbitrary code injection security vulnerabilities.
Infinite loop in brace-expansion (ENG-22239, ENG-22179, ENG-22120)Updated brace-expansion to resolve infinite loop security vulnerabilities.
maintenance-releaseenhancementbug-fixsecuritygateway-manager

Gateway 5.4.0

Gateway 5.4.0 is a minor release introducing new operational visibility commands, automated virtual environment lifecycle management, integration execution on gateway clusters, and targeted improvements for Python service authors and multi-cluster operators.

For an overview of the key features in this release, see the Gateway 5.4.0 feature announcement.

minor-releaseenhancementbug-fixgateway

Gateway Manager 1.0.8

Gateway Manager 1.0.8 is a maintenance release containing quality improvements to Gateway Manager’s functionality and security updates.

FeatureDescription
Cluster ID dropdown for Automation Studio tasks (ENG-21261)The clusterId field in the sendConfig and sendCommand tasks in Studio has been changed from a freeform text field to a dropdown selector.
Version-based inventory population (ENG-20228)Implemented version-based inventory population.
IssueDescription
Updated axios to resolve Snyk vulnerability (ENG-22097)Bumped axios from version 1.13.4 to 1.13.5 to resolve a Snyk-reported vulnerability.
maintenance-releasesecuritygateway-manager

Gateway 5.3.2

Gateway 5.3.2 is a maintenance release containing bug fixes and security updates.

IssueDescription
Proxy settings not applied to Gateway Manager connectivity check (ENG-21908)Fixed an issue where the websocket connection to Gateway Manager was not being established through the proxy server because the initial connectivity check was not using the configured proxy settings.
Command quoting issues on send command task (ENG-21778)Fixed an issue that was causing quoting errors with certain commands executed via the sendCommand task.
IssueDescription
Updated golang gRPC package (ENG-21910)Resolved a high-severity security vulnerability (CVE-2026-33186) in the google.golang.org/grpc package.
maintenance-releasebug-fixsecuritygateway

Gateway Manager 1.0.7

Gateway Manager 1.0.7 is a maintenance release that includes security hardening and access control improvements for Gateway Manager. Key updates include resolution of multiple security vulnerabilities including ReDoS, prototype pollution, XSS, and algorithmic complexity issues. This release also enhances user access filtering for groups and tags, and fixes certificate management functionality in the UI.

maintenance-releasebug-fixsecuritygateway-manager

Gateway 5.3.1

Gateway 5.3.1 is a maintenance release containing enhancements, bug fixes, and security updates.

FeatureDescription
mTLS support via explicit web proxy (ENG-18944)Added support for routing connections to Gateway Manager through HTTP/HTTPS proxy server. For more information, see Configure proxy for Gateway Manager connections.
FeatureDescription
Secret description field (ENG-19078)Fixed an issue where the --description flag when creating a secret in torero was silently ignored, ensuring descriptions are now properly saved and displayed.
iagctl flag parsing with equals signs (ENG-19249)Fixed iagctl parsing issue where --set flag values containing equals signs (=) were incorrectly parsed, preventing users from passing key-value pairs with = in the value.
FeatureDescription
High-severity CVE resolutions (ENG-18049)Resolved three high-severity security vulnerabilities (CVE-2025-8959, CVE-2025-22868, CVE-2023-46402) affecting the tofu and iagctl binaries, addressing symlink attack, memory exhaustion, and ReDoS risks.
Go-Git security vulnerability (ENG-19325)Resolved go-git security vulnerability.
maintenance-releasebug-fixsecuritygateway

Gateway Manager 1.0.5

Gateway Manager 1.0.5 is a maintenance release that includes performance improvements and enhanced reliability for Gateway Manager. Key updates include optimized Inventory Manager query performance, improved error handling for Redis operations, and validation checks to prevent duplicate gateway connections. This release also includes UI improvements for better usability in development and production environments.

maintenance-releasebug-fixgateway-manager

Gateway 5.3.0

Gateway 5.3.0 is a minor release that introduces support for Inventory Manager integration and HTTP basic authentication for Git repositories.

FeatureDescription
Inventory data ingestion via stdin (ENG-17017)Added capability for Gateway to ingest inventory data via standard input (stdin), providing a new method for importing and managing device inventory information. This enhancement supports the Inventory Manager core functionality and enables more flexible inventory data workflows. For more information, see Inventory Manager.
HTTP basic authentication for Git clone and service execution (ENG-15494)Added HTTP basic authentication support for Git clone operations and service execution. This feature enables Gateway to clone repositories from Git over HTTP using credentials, expanding options for secure Git integration and automated playbook deployment. Fore more information, see Configure access to private repositories.
feature-releasegateway

Gateway 5.2.1

Gateway 5.2.1 is a maintenance release containing security updates.

FeatureDescription
go-git go-crypto dependency vulnerability (ENG-16161)Resolved a high-severity vulnerability in go-git by updating the go-crypto dependency version.
spf13/viper log handling vulnerability (ENG-16162)Updated the spf13/viper dependency to address a medium-severity improper output neutralization vulnerability in log handling.
openssl/libcrypto3 vulnerabilities (ENG-16163)Fixed three low-severity vulnerabilities in openssl/libcrypto3.
expat/libexpat vulnerability (ENG-16164)Fixed a low-severity vulnerability in expat/libexpat.
curl/libcurl vulnerabilities (ENG-16165)Fixed two low-severity vulnerabilities in curl/libcurl.
maintenance-releasesecuritygateway

Gateway 5.2.0

Gateway 5.2.0 is a minor release that includes support to securely inject sensitive information into services and security updates. /

FeatureDescription
Inject secrets into services (ENG-13737)Added support for injecting secrets into services. For more information, see Inject secrets into services.
FeatureDescription
Path traversal security vulnerability (ENG-13805)Resolved a potential path traversal security vulnerability detected by Snyk’s code analysis.
feature-releasesecuritygateway

Gateway Manager 1.0.3

Gateway Manager 1.0.3 is a maintenance release containing quality improvements to Gateway Manager’s functionality and bug fixes.

FeatureDescription
Duplicate gateway connection prevention on cluster ID collision (ENG-13928)Added validation to prevent duplicate gateway connections when cluster IDs collide due to misconfiguration.
FeatureDescription
RPM deployment Nexus repository path URL encoding (ENG-14393)Fixed RPM deployment targeting an incorrect Nexus repository path due to URL encoding issues.
maintenance-releasegateway-manager

Gateway Manager 1.0.4

Gateway Manager 1.0.4 is a maintenance release containing quality improvements to Gateway Manager’s functionality.

FeatureDescription
Redis node swap error handling (ENG-14473)Gateway Manager now cleanly handles errors related to Redis nodes being swapped.
maintenance-releasegateway-manager

Gateway Manager 1.0.2

Gateway Manager 1.0.2 is a maintenance release containing quality improvements to Gateway Manager’s functionality.

FeatureDescription
Service lifecycle timestamps (ENG-13654)Added timestamps for service creation on gateway, service discovery by Gateway Manager, and last service execution.
Gateway-level authorization for service group creation (ENG-13351)Service group creation now requires gateway-level authorization — users must have the service-group:create role assigned through a group with access to the target gateway.
Immediate gateway disconnection on certificate revocation (ENG-12788)Gateways now immediately disconnect if their active certificate is no longer allowed.
maintenance-releasegateway-manager

Gateway 5.1.2

Gateway 5.1.2 is a maintenance release containing enhancements, bug fixes, and security updates.

FeatureDescription
GATEWAY_CONNECT_HOSTS multiple host support (ENG-11849)Updated the GATEWAY_CONNECT_HOSTS configuration variable to support multiple Gateway Manager host values, enabling more flexible connectivity configurations.
etcd setup error log readability (ENG-13434)Enhanced error log messages for etcd setup failures and issues, providing more user-friendly output for improved troubleshooting.
FeatureDescription
CLI —config parameter description clarity (ENG-9879)Updated the --config parameter description to clearly state that it expects a path to the configuration file, improving usability on the CLI.
CLI private key flag naming and prompt clarity (ENG-13339)Changed the private-key-name flag to private-key and updated the parameter prompt to clearly indicate that it expects the private key file path, reducing confusion during configuration.
FeatureDescription
go-viper/mapstructure dependency vulnerability (ENG-13228)Resolved a torero/gateway security vulnerability related to github.com/go-viper/mapstructure/v2.
maintenance-releasebug-fixsecuritygateway

Gateway 5.1.1

Gateway 5.1.1 is a maintenance release contianing enhancements and bug fixes.

FeatureDescription
iagctl service command log messages (ENG-12022)Improved log messages for the iagctl get services, iagctl describe service, and iagctl delete service commands, providing clearer output and better troubleshooting support.
FeatureDescription
Configuration variable reading for Python script requirements and registry defaults (ENG-12496)Fixed an issue where the system did not correctly read the GATEWAY_PYTHON_SCRIPT_REQUIREMENTS_FILE and GATEWAY_REGISTRY_DEFAULT_OVERRIDABLE configuration variables. The system now reads these variables as expected.
Configuration file loading via GATEWAY_CONFIG environment variable (ENG-12508)Resolved an issue where configuration files were not correctly read when specified via the GATEWAY_CONFIG environment variable. Configuration files specified through this variable are now loaded properly.
Python virtual environment SHA hash generation with pyproject.toml (ENG-13281)Fixed an issue where Python virtual environments generated incorrect SHA hashes when using GATEWAY_PYTHON_SCRIPT_REQUIREMENTS_FILE=pyproject.toml without specifying a --req-file parameter. SHA hashes are now computed correctly under this configuration.
DynamoDB store backend modification notifications (ENG-13304)Resolved an issue where service and decorator modification notifications did not send when using a DynamoDB store backend. Notifications now trigger as expected.
maintenance-releasebug-fixgateway

Gateway Manager 1.0.1

Gateway Manager 1.0.1 is a maintenance release containing quality improvements to Gateway Manager’s functionality.

FeatureDescription
Platform startup without expressProps key/cert configuration (ENG-12718)Gateway Manager can now start even when Itential Platform does not have expressProps key/cert configured.
Internal file import refactoring (ENG-12541)Improved internal file imports by removing the use of the @itential/network discover.require module.
Disabled gateway handling and automatic disconnection (ENG-12236)Improved handling of disabled gateways so that gateways are automatically disconnected when disabled or when their certificate is deleted.
BullMQ interaction dependency update (ENG-6981)Gateway Manager now uses @itential/network for BullMQ interactions, replacing the free-tier npm package.
maintenance-releasegateway-manager