October 2022
Airbyte v0.40.13 to v0.40.17
This page includes new features and improvements to the Airbyte Cloud and Airbyte Open Source platforms.
New features
- Added the low-code connector builder UI to Airbyte OSS. It includes an embedded YAML editor and significantly reduces the time and complexity of building and maintaining connectors. #17482
- Added Datadog Real User Monitoring (RUM) support to the webapp, which helps us monitor frontend performance in Airbyte Cloud. #17821
- Added Nginx and Basic Auth to ensure security when using Airbyte Open Source. #17694
- Now when you start the Airbyte server and go to localhost:8000, you’ll be prompted to log in before accessing your Airbyte workspace.
- You should change the default username (airbyte) and password (password) before you deploy Airbyte. If you do not want a username or password, you can remove them by setting
BASIC_AUTH_USERNAMEandBASIC_AUTH_PASSWORDto empty values (" ") in your.envfile. - Our CLI and docs have been updated to reflect this change.
Improvements
- Since adding Basic Auth to Airbyte Open Source, we improved the
load_testscript to reflect this change. Now when theload_testscript sources the.envfile, it includesBASIC_AUTH_USERNAMEandBASIC_AUTH_PASSWORDwhen calling the API. #18273 - Improved the Airbyte platform by updating the Apache Commons Text from 1.9 to 1.10.0 because version 1.9 was affected by CVE 2022-42889 (Text4Shell). #18273
- We do not intend to update older versions of Airbyte because we were not affected by the vulnerable behavior:
- Our direct usages of
commons-texteither do not use the vulnerable class or are pinned to an unaffected version. - Almost all of our transitive dependencies on
commons-textare limited to test code. Runtime code has no vulnerable transitive dependencies oncommons-text.
- Our direct usages of
- We do not intend to update older versions of Airbyte because we were not affected by the vulnerable behavior: