- Update to version 7.3.6:
* fixes for saml vulnerability
* [v7.3.x] Fix: Correct panel edit uistate migration (#29413) (#29711)
* PanelEdit: Prevent the preview pane to be resized further than window height (#28370) (#29726)
* Fix: Migrate Panel edit uiState percentage strings to number (#29412) (#29723)
* "Release: Updated versions in package to 7.3.5" (#29710)
* Chore: upgrading y18n to 4.0.1 for security reasons (#29523) (#29709)
* Panel: making sure we support all versions of chrome when detecting position of click event. (#29544) (#29708)
* PanelEdit: making sure the correct datasource query editor is being rendered. (#29500) (#29707)
* [v7.3.x] Auth: Add SigV4 header allowlist to reduce chances of verification issues (#29705)
* Alerting: Use correct time series name override from frame fields (#29693) (#29698)
* CloudWatch: namespace in search expression should be quoted if match exact is enabled #29109 (#29563) (#29687)
* Adds go dep used by an Enterprise feature. (#29645) (#29690)
* instrumentation: align label name with our other projects (#29514) (#29685)
* Instrumentation: Add examplars for request histograms (#29357) (#29682)
* Login: Fixes typo in tooltip (#29604) (#29606)
* fixes bug with invalid handler name for metrics (#29529) (#29532)
* AzureMonitor: Unit MilliSeconds naming (#29399) (#29526)
* Alarting: fix alarm messages in dingding (Fixes#29470) (#29482) (#29527)
* Bug: trace viewer doesn't show more than 300 spans (#29377) (#29504)
* Prometheus: don't override displayName property (#29441) (#29488)
* resolve conflicts (#29415)
* Drone: Upgrade build pipeline tool (#29365) (#29368)
* Drone: Upload artifacts for release branch builds (#29297) (#29364)
* Drone: Execute artifact publishing for both editions in parallel during release (#29362) (#29363)
* Drone: Publish NPM packages after Storybook to avoid race condition (#29340) (#29343)
* Docs: Fix editor role and alert notification channel description (#29301) (#29337)
* "Release: Updated versions in package to 7.3.4" (#29336)
* Security: Fixes minor security issue with alert notification webhooks that allowed GET & DELETE requests #29330 (#29335)
* Backport of InfluxDB: update flux library and support boolean label values #29333
OBS-URL: https://build.opensuse.org/request/show/860337
OBS-URL: https://build.opensuse.org/package/show/server:monitoring/grafana?expand=0&rev=50
- This version fixes bsc#1170557 and its corresponding CVE-2020-12245
- Update to version 6.7.3
- Admin: Fix Synced via LDAP message for non-LDAP external users. #23477, @alexanderzobnin
- Alerting: Fixes notifications for alerts with empty message in Google Hangouts notifier. #23559, @hugohaggmark
- AuthProxy: Fixes bug where long username could not be cached.. #22926, @jcmcken
- Dashboard: Fix saving dashboard when editing raw dashboard JSON model. #23314, @peterholmberg
- Dashboard: Try to parse 8 and 15 digit numbers as timestamps if parsing of time range as date fails. #21694, @jessetan
- DashboardListPanel: Fixed problem with empty panel after going into edit mode (General folder filter being automatically added) . #23426, @torkelo
- Data source: Handle datasource withCredentials option properly. #23380, @hvtuananh
- Security: Fix annotation popup XSS vulnerability. #23813, @torkelo
- Server: Exit Grafana with status code 0 if no error. #23312, @aknuds1
- TablePanel: Fix XSS issue in header column rename (backport). #23814, @torkelo
- Variables: Fixes error when setting adhoc variable values. #23580, @hugohaggmark
- Update to version 6.7.2:
(see installed changelog for the full list of changes)
- BackendSrv: Adds config to response to fix issue for external plugins that used this property . #23032, @torkelo
- Dashboard: Fixed issue with saving new dashboard after changing title . #23104, @dprokop
- DataLinks: make sure we use the correct datapoint when dataset contains null value.. #22981, @mckn
- Plugins: Fixed issue for plugins that imported dateMath util . #23069, @mckn
- Security: Fix for dashboard snapshot original dashboard link could contain XSS vulnerability in url. #23254, @torkelo
- Variables: Fixes issue with too many queries being issued for nested template variables after value change. #23220, @torkelo
- Plugins: Expose promiseToDigest. #23249, @torkelo
- Reporting (Enterprise): Fixes issue updating a report created by someone else
OBS-URL: https://build.opensuse.org/request/show/799304
OBS-URL: https://build.opensuse.org/package/show/server:monitoring/grafana?expand=0&rev=34
- Update to version 6.1.6 (bsc#1115960, CVE-2018-19039):
See https://community.grafana.com/t/release-notes-v6-1-x/15772
Security: Bump jQuery to 3.4.0
File Exfiltration vulnerability Security fix
- Update to version 6.0.2:
* Fixed issue with alert links in alert list panel causing panel not found errors, fixes#15680
* Improved error handling when rendering dashboard panels, fixes#15913
* fix allow anonymous server bind for ldap search
* add nil/length check when delete old login attempts
* fix discord notifier so it doesn't crash when there are no image generated
* fix only users that can edit a dashboard should be able to update panel json
* move to new component to handle focus
* added state to not set focus on search every render
* Snapshots update
* Use app config directly in ButtonRow instead of passing datasources page URL via prop
* Update snapshots
* Fixed url of back button in datasource edit page, when root_url configured
* release: Bumped version
OBS-URL: https://build.opensuse.org/request/show/703969
OBS-URL: https://build.opensuse.org/package/show/server:monitoring/grafana?expand=0&rev=12
- Update to version 6.0.1:
* Bug Fixes:
+ utils: show string errors
+ Viewers with viewers_can_edit should be able to access /explore
+ log phantomjs output even if it timeout and include orgId when render alert
- Update to version 6.0.0:
* Breaking Changes:
+ Text Panel: The text panel does no longer by default allow unsantizied
HTML. This means that if you have text panels with scripts tags they will no
longer work as before. To enable unsafe javascript execution in text panels
enable the settings disable_sanitize_html under the section [panels] in your
Grafana ini file, or set env variable GF_PANELS_DISABLE_SANITIZE_HTML=true.
+ Dashboard: Panel property minSpan replaced by maxPerRow. Dashboard
migration will automatically migrate all dashboard panels using the minSpan
property to the new maxPerRow property
+ Internal Metrics Edition has been added to the build_info metric. This will break any Graphite queries using this metric. Edition will be a new label for the Prometheus metric.
* New Features:
+ Alerting: Adds support for Google Hangouts Chat notifications
+ Elasticsearch: Support bucket script pipeline aggregations
+ Influxdb: Add support for time zone (tz) clause
+ Snapshots: Enable deletion of public snapshot
+ Provisioning: Provisioning support for alert notifiers
+ Explore: A whole new way to do ad-hoc metric queries and exploration. Split view in half and compare metrics & logs and much much more. Read more here
+ Auth: Replace remember me cookie solution for Grafana's builtin, LDAP and OAuth authentication with a solution based on short-lived tokens
+ AzureMonitor: Enable alerting by converting Azure Monitor API to Go
+ Explore A new query focused workflow for ad-hoc data exploration and troubleshooting.
+ Grafana Loki Integration with the new open source log aggregation system from Grafana Labs.
+ Gauge Panel A new standalone panel for gauges.
+ New Panel Editor UX improves panel editing and enables easy switching between different visualizations.
+ Google Stackdriver Datasource is out of beta and is officially released.
+ React Plugin support enables an easier way to build plugins.
+ Named Colors in our new improved color picker.
+ Removal of user session storage makes Grafana easier to deploy & improves security.
* Bug Fixes:
+ Metrics: Fixes broken usagestats metrics for /metrics
+ Dashboard: Fixes kiosk mode should have &kiosk appended to the url
+ Dashboard: Fixes kiosk=tv mode with autofitpanels should respect header
+ Image rendering: Fixed image rendering issue for dashboards with auto refresh,
+ Dashboard: Fix only users that can edit a dashboard should be able to update panel json.
+ LDAP: fix allow anonymous initial bind for ldap search.
+ UX: Fixed scrollbar not visible initially (only after manual scroll).
+ Datasource admin TestData
+ Dashboard: Fixed scrolling issue that caused scroll to be locked to bottom.
+ Explore: Viewers with viewers_can_edit should be able to access /explore.
+ Security fix: limit access to org admin and alerting pages.
+ Panel Edit minInterval changes did not persist
+ Teams: Fixed bug when getting teams for user.
+ Stackdriver: fix for float64 bounds for distribution metrics
+ Stackdriver: no reducers available for distribution type
+ Influxdb: Add support for alerting on InfluxDB queries that use the non_negative_difference function
+ Alerting: Fix percent_diff calculation when points are nulls
+ Alerting: Fixed handling of alert urls with true flags
+ Gauge: Fix issue with gauge requests being cancelled
+ Gauge: Accept decimal inputs for thresholds
+ UI: Fix error caused by named colors that are not part of named colors palette
+ Search: Bug pressing special regexp chars in input fields
+ Permissions: No need to have edit permissions to be able to "Save as"
+ Search: Fix for issue with scrolling the "tags filter" dropdown
+ Prometheus: Query for annotation always uses 60s step regardless of dashboard range
+ Annotations: Fix creating annotation when graph panel has no data points position the popup outside viewport
+ Piechart/Flot: Fixes multiple piechart instances with donut bug
+ plus many minor changes and fixes
- Update to version 5.4.3:
* Fixes:
+ Alerting Invalid frequency causes division by zero in alert scheduler
+ Dashboard Dashboard links do not update when time range changes
+ Limits Support more than 1000 datasources per org
+ Backend fix signed in user for orgId=0 result should return active org id
+ Provisioning Adds orgId to user dto for provisioned dashboards
- Update to version 5.4.2:
* Fixes:
+ Datasource admin: Fix for issue creating new data source when same name exists
+ OAuth: Fix for oauth auto login setting, can now be set using env variable
+ Dashboard search: Fix for searching tags in tags filter dropdown.
- Update to version 5.4.1:
* Fixes:
+ Stackdriver: Fixes issue with data proxy and Authorization header
+ Units: fixedUnit for Flow:l/min and mL/min
+ Logging: Fix for issue where data proxy logged a secret when debug logging was enabled, now redacted.
+ InfluxDB: Add support for alerting on InfluxDB queries that use the cumulative_sum function.
+ Plugins: Panel plugins should no receive the panel-initialized event again as usual.
+ Embedded Graphs: Iframe graph panels should now work as usual.
+ Postgres: Improve PostgreSQL Query Editor if using different Schemas,
+ Quotas: Fixed for updating org & user quotas.
+ Cloudwatch: Add the AWS/SES Cloudwatch metrics of BounceRate and ComplaintRate to auto complete list.
+ Dashboard Search: Fixed filtering by tag issues.
+ Graph: Fixed time region issues,
+ Graph: Fixed issue with series color picker popover being placed outside window.
- Update to version 5.4.0:
* Breaking Changes:
+ Postgres/MySQL/MSSQL datasources now per default uses max open connections = unlimited (earlier 10), max idle connections = 2 (earlier 10) and connection max lifetime = 4 hours (earlier unlimited).
* Features:
+ Alerting: Introduce alert debouncing with the FOR setting.
+ Alerting: Option to disable OK alert notifications
+ Postgres/MySQL/MSSQL: Adds support for configuration of max open/idle connections and connection max lifetime. Also, panels with multiple SQL queries will now be executed concurrently
+ MySQL: Graphical query builder
+ MySQL: Support connecting thru Unix socket for MySQL datasource
+ MSSQL: Add encrypt setting to allow configuration of how data sent between client and server are encrypted
+ Stackdriver: Not possible to authenticate using GCE metadata server
+ Teams: Team preferences (theme, home dashboard, timezone) support
+ Graph: Time regions support enabling highlight of weekdays and/or certain timespans
+ OAuth: Automatic redirect to sign-in with OAuth
+ Stackdriver: Template query editor
* Fixes:
+ Cloudwatch: Fix invalid time range causes segmentation fault
+ Cloudwatch: AWS/CodeBuild metrics and dimensions
+ MySQL: Fix $__timeFrom() and $__timeTo() should respect local time zone
+ Graph: Fix legend always visible even if configured to be hidden
+ Elasticsearch: Fix regression when using datasource version 6.0+ and alerting
- Update to version 5.3.4:
* minor bug fixes
- Update to version 5.3.3:
* fix potential security issue https://community.grafana.com/t/grafana-5-3-3-and-4-6-5-security-update/11961
OBS-URL: https://build.opensuse.org/request/show/683876
OBS-URL: https://build.opensuse.org/package/show/server:monitoring/grafana?expand=0&rev=10
- Update to version 5.1.3:
* Heatmap support for Prometheus
* Align Zero-Line for Right and Left Y-axes
* allow setting the database
* MSSQL Data Source
* support multiple histogram series
* support cloudwatch high resolution query
* Added radiation units
* Modify Grafana Pagerduty notifier to use Pagerduty API V2
* prometheus editor: variable autocomplete support
* Use net.SplitHostPort to support IPv6
* See /usr/share/doc/packages/grafana/CHANGELOG.md for more details
- remove unknown build flag -s
need working phantomjs and new go
OBS-URL: https://build.opensuse.org/request/show/617300
OBS-URL: https://build.opensuse.org/package/show/server:monitoring/grafana?expand=0&rev=7