Skip to content

Flipt

v2.9.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 1mo Developer Productivity
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

cloudnative ci-cd devops devtools feature-flags feature-toggles
+9 more
gitops go grpc grpc-gateway observability opentelemetry react redux typescript

Summary

AI summary

Add AWS Secrets Manager, Azure Key Vault, GCP Secret Manager providers and SSE for real‑time UI.

Full changelog

Changelog

Features

  • 2917a7423df5eb1a1a95f8d3aa5ac29171c18368: feat(license): support configurable machine fingerprint for containers (#5427) (@markphelps)
  • 7507f24400b12fb568e4dbb81c9ccb84d0c1070c: feat(secrets): add AWS Secrets Manager provider (#5411) (@markphelps)
  • 0d039fd76b20653923c26ceb32dcbc2600e240d7: feat(secrets): add Azure Key Vault provider (#5428) (@markphelps)
  • 0b246464a76dfc6a086ba265a84b67c0f3a2eb6f: feat(secrets): add GCP Secret Manager provider (#5404) (@markphelps)
  • 78d53c3254147c1351f7d2a6fb3bd91d2c85b99b: feat: add devcontainer setup for Flipt v2 development (#5542) (@markphelps)
  • 0f8b6d0a0796820b6c1a2261d96753b87f8cf5c2: feat: implement SSE for real-time UI and ofrep evaluation updates (#5617) (@erka)
  • dd02c146cae768aa14e293695b7a0fb3e3c1c418: feat: normalize rollout distribution buckets (#5581) (@erka)
  • eddfb5483852facc7393027c9f87f8cab293037d: feat: publish v2 protobufs to buf.io/v2 (#5589) (@markphelps)

Bug Fixes

  • 3462b64e9d652e6495e71fe77d73ffd6675dfcba: fix(authn): add HttpOnly and Secure attrs when clearing auth cookies (#5655) (@erka)
  • 787fb07332365840b450c7748b6fe18e6b794594: fix(authn): forward state and token cookies to distinct metadata keys (#5479) (@erka)
  • a146a1c86093de96aaf85dfcad4195538c4cf0c5: fix(authn): oauth pcke challenge for github and a correct oidc nonce (#5647) (@erka)
  • 5f76d221e81d21a4834af47a8725eece64739a76: fix(authn): use UserInfo claims as fallback for missing OIDC fields (#5692) (@erka)
  • 2b10714924486aa35c7671af147c9ecd6192ad0b: fix(ci): bump Go version to 1.26 in nightly release workflow (#5407) (@markphelps)
  • 2048b013c51dea3f1532f4d65b785a8d1a971829: fix(config): relax schema to allow installation_id from environment vars (#5425) (@erka)
  • 4403ac450d75b2c864e95e43581822b219758d16: fix(sdk): add Content-Type header and improve error messages in generated HTTP client (#5560) (@erka)
  • ac78eea841492db02a330520dd1e4aaa6235bd65: fix(ui): Toggle remove bg-brand class for unchecked state (#5430) (@naftali100)
  • 660efb99afe9ac107ba3440026a46f76350a25ba: fix(ui): sanitize generated keys and show key validation errors on first edit (#5434) (@erka)
  • 1dbb1613a6bf0b3a07080e5802856a8544347eb5: fix(ui): skip API environments calls and SSE stream when user is not authenticated (#5670) (@erka)
  • 2a8dc05e0bd0771709e439358b969e2ef9964345: fix(ui): use 0 as default threshold percentage in quick edit form (#5408) (@erka)
  • 047693e1a3c43a3d4ec027ca141ab55dd7a5ed3f: fix: address CodeQL warning about insecure TLS configuration (#5614) (@erka)
  • fc7fec7cc56e0f31368e24dd4c10115dd0daa2bc: fix: bump node version from 18 to 20 in CI workflows (#5501) (@markphelps)
  • c970ef1282b95565b79331378bb1ac2b16bb079b: fix: preserve trailing separators in key generation (#5594) (@markphelps)
  • 04a99ca882c0c357ba22ae6fe058966322c1fc02: fix: set EnvironmentKey on evaluation requests in environment integration tests (#5499) (@markphelps)
  • c18567945ca584f74e42a65c27494fb44348e946: fix: snapshot publisher subs and correct constraint short-circuiting (#5565) (@erka)

Other

  • c4dd7643138aca6fc9238726673fe80d5bff593b: Revise pricing for licenses in README (@markphelps)
  • aecd740ade5878b93f5b49557635ddd2ad3baa4b: build: update goreleaser to v2.14 and fix quill/dockerfile paths (#5588) (@erka)
  • ee21988f9cf382ad0665fb414835662229b9539f: chore(deps): bump @codemirror/lint from 6.9.4 to 6.9.5 in /ui (#5607) (@dependabot[bot])
  • 09fa42b46de0a14f0d7b0fde977e2660fd0f1d17: chore(deps): bump @codemirror/view from 6.39.11 to 6.39.15 in /ui (#5417) (@dependabot[bot])
  • a0f07da59ca5d30bc92be2e7c40290d579b9be1c: chore(deps): bump @codemirror/view from 6.39.15 to 6.39.16 in /ui (#5532) (@dependabot[bot])
  • d57ef4554c8eb611a9e3b4fb86f78d512e441214: chore(deps): bump @codemirror/view from 6.39.16 to 6.40.0 in /ui (#5574) (@dependabot[bot])
  • dcac0053fccf15fd8e240dc4117842d13fc2d058: chore(deps): bump @codemirror/view from 6.40.0 to 6.41.0 in /ui (#5680) (@dependabot[bot])
  • 2aa34b31c2cf6bd8057ae795f358175ef7657a15: chore(deps): bump @codemirror/view from 6.41.0 to 6.41.1 in /ui (#5757) (@dependabot[bot])
  • e8b746f66b4e0ee2a67e9954cc21df98bfa086de: chore(deps): bump @mui/material from 7.3.8 to 7.3.9 in /ui (#5525) (@dependabot[bot])
  • b22c35f722d1a2610534cad478635fb9d0dd0be2: chore(deps): bump @mui/x-charts from 8.27.0 to 8.27.4 in /ui (#5526) (@dependabot[bot])
  • 650f89e697ccf34649ff0a1e181c35986550ff8f: chore(deps): bump @mui/x-charts from 8.27.4 to 8.27.5 in /ui (#5572) (@dependabot[bot])
  • 4a5dcaf94c75c5f3b716d4c63c67674e218bc1b9: chore(deps): bump @mui/x-charts from 8.27.5 to 8.28.0 in /ui (#5606) (@dependabot[bot])
  • c2c288bd3eadbd62d05be30c6ba3a31da1afcca3: chore(deps): bump @mui/x-charts from 8.28.0 to 8.28.2 in /ui (#5681) (@dependabot[bot])
  • 99d6101c2022627cd630026b71e6f813b9bab4e3: chore(deps): bump @tootallnate/once and jest-environment-jsdom in /ui (#5478) (@dependabot[bot])
  • 6fec5f3205d3b05a6943a7621114d9929e80c424: chore(deps): bump @uiw/codemirror-theme-tokyo-night in /ui (#5470) (@dependabot[bot])
  • 792e85a4f0e15e49b56fc8f8b430365d6f72c1fc: chore(deps): bump @uiw/codemirror-theme-tokyo-night in /ui (#5571) (@dependabot[bot])
  • 2e0e3ed3d92ac9dc6ba6514b88872070cc5ce083: chore(deps): bump @uiw/codemirror-theme-tokyo-night in /ui (#5636) (@dependabot[bot])
  • 538d8a778a8eed5b9eec80570a7873e257be4fa0: chore(deps): bump @uiw/react-codemirror from 4.25.4 to 4.25.5 in /ui (#5469) (@dependabot[bot])
  • d3cdea101c05999cf67faaeecc914a763b407985: chore(deps): bump @uiw/react-codemirror from 4.25.5 to 4.25.8 in /ui (#5573) (@dependabot[bot])
  • 0aea5d543a78f3c9d5ffd4b0a92524b0516989bd: chore(deps): bump @uiw/react-codemirror from 4.25.8 to 4.25.9 in /ui (#5634) (@dependabot[bot])
  • 29442dc1e5768618b0ac34fb3c5fc078a9f5e211: chore(deps): bump actions/create-github-app-token from 2 to 3 (#5566) (@dependabot[bot])
  • 35dbdb6dc977fd7dd19e1b20297418f992fea100: chore(deps): bump actions/download-artifact from 7 to 8 (#5463) (@dependabot[bot])
  • 62110586254dea8cf9e52f3b2c237990502a3086: chore(deps): bump actions/github-script from 8 to 9 (#5720) (@dependabot[bot])
  • e5925775596efd3dc3401783bed2c774ab05f9df: chore(deps): bump actions/upload-artifact from 6 to 7 (#5462) (@dependabot[bot])
  • c7e04e60dfa07c2bb56ae1a77532925ac68413e4: chore(deps): bump alpine from 3.23.3 to 3.23.4 in /build (#5751) (@dependabot[bot])
  • eb0cb71dbc3435aaf7496729b8625ee5496dc4d3: chore(deps): bump cloud.google.com/go/secretmanager (#5677) (@dependabot[bot])
  • f77c7d0e249a3559fa67862f9d77228ea5abdd04: chore(deps): bump code.gitea.io/sdk/gitea from 0.23.2 to 0.24.1 (#5630) (@dependabot[bot])
  • 45d98a5580e34dae48c456ee784d2d3f010cd384: chore(deps): bump codecov/codecov-action from 5 to 6 (#5628) (@dependabot[bot])
  • 4c5504051bed166cf04dfe913e28a81059cf507b: chore(deps): bump cuelang.org/go from 0.15.4 to 0.16.0 (#5530) (@dependabot[bot])
  • db200c71679f0cd56763896ce263a84c03645a9c: chore(deps): bump cuelang.org/go from 0.16.0 to 0.16.1 (#5726) (@dependabot[bot])
  • 2ebdf22a376a21ddea0046277f04aaf1dd1865fe: chore(deps): bump docker/login-action from 3 to 4 (#5522) (@dependabot[bot])
  • a07b735c5370914bbb04c836f671701e96d9af74: chore(deps): bump docker/setup-buildx-action from 3 to 4 (#5521) (@dependabot[bot])
  • 847e33dca1aa826b99d18955489ac0f38b484c9f: chore(deps): bump docker/setup-qemu-action from 3 to 4 (#5523) (@dependabot[bot])
  • f4b8694b15a353f09c4dcf6395665ddc348f1812: chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore (#5467) (@dependabot[bot])
  • 831b5acf95fbcbc2cb795d4e34f6e3b02d283a6a: chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azcore (#5758) (@dependabot[bot])
  • 69cf928aa80da31cf81e24f03111525931c8d8b3: chore(deps): bump github.com/ProtonMail/go-crypto from 1.3.0 to 1.4.0 (#5465) (@dependabot[bot])
  • 54c0736ecd4bb3125de4a91396336ca64978f680: chore(deps): bump github.com/ProtonMail/go-crypto from 1.4.0 to 1.4.1 (#5629) (@dependabot[bot])
  • d940f167c967fa27c5aac334ad7df6f1437df79e: chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.41.3 to 1.41.4 (#5575) (@dependabot[bot])
  • 0d004b9b11500b4e17ecb8b9b9ba67b2c4e7d5e5: chore(deps): bump github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream (#5694) (@dependabot[bot])
  • 9560dd3d380482d702c092f955f74572400e17fd: chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#5466) (@dependabot[bot])
  • 4c1a19c4b3a9a8ccbb079315111b76a7ac932d98: chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#5610) (@dependabot[bot])
  • b1280c98245d34900e4afeca1e6eea1726587f90: chore(deps): bump github.com/aws/aws-sdk-go-v2/config (#5637) (@dependabot[bot])
  • dcc8395b823d477def8f7e6e35705a016ba42480: chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (#5533) (@dependabot[bot])
  • ffac1f99e687bf44f1826a4e0eba0508fdb09fa0: chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (#5701) (@dependabot[bot])
  • b4901168fb337203cd9f04b381fbaf02e54dbf34: chore(deps): bump github.com/aws/aws-sdk-go-v2/service/secretsmanager (#5464) (@dependabot[bot])
  • b97da9da9eed1e550a4fb69b9c787714d826c7d4: chore(deps): bump github.com/coreos/go-oidc/v3 from 3.17.0 to 3.18.0 (#5752) (@dependabot[bot])
  • 25005a88a82f1f260f1cdda049db96130546ee42: chore(deps): bump github.com/docker/cli (#5481) (@dependabot[bot])
  • a46c7eb70055ad2d4fc9dbfd38d4ed8b2d71e231: chore(deps): bump github.com/docker/go-connections from 0.6.0 to 0.7.0 (#5756) (@dependabot[bot])
  • 1c199c1886d212c235c8b7711048b2f73acfeeee: chore(deps): bump github.com/fatih/color from 1.18.0 to 1.19.0 (#5611) (@dependabot[bot])
  • 838efea65ba1bae44efe0eba195d715465f5304c: chore(deps): bump github.com/go-git/go-git/v6 from 6.0.0-20260216160506-e6a3f881772f to 6.0.0-alpha.1 (#5675) (@dependabot[bot])
  • ee47d2fc21bd34d98ed64d9ee90a3c6d2af00b4d: chore(deps): bump github.com/go-git/go-git/v6 from 6.0.0-alpha.1 to 6.0.0-alpha.2 (#5746) (@dependabot[bot])
  • ac4c4786522805d2de480f61c2078ee8f43cfa97: chore(deps): bump github.com/go-jose/go-jose/v3 from 3.0.4 to 3.0.5 (#5657) (@dependabot[bot])
  • f783b946a4137ac8f15482c9d7c9fc0b3600ec79: chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#5662) (@dependabot[bot])
  • b03870ed42866786f86723175efed1b9ade29e7b: chore(deps): bump github.com/go-openapi/jsonpointer (#5529) (@dependabot[bot])
  • ca340bfa623c763684c816da176b137d64e28a54: chore(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 (#5422) (@dependabot[bot])
  • 11f2189ed1fd7331d8d73fea22c8b0b4d3aaaa02: chore(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 (#5755) (@dependabot[bot])
  • d28e1bc162112d7899d67dbb90e9c56c68ee075e: chore(deps): bump github.com/hashicorp/vault/api from 1.22.0 to 1.23.0 (#5753) (@dependabot[bot])
  • 22bf024013b8a60655ea9698f8350d340aca7862: chore(deps): bump github.com/keygen-sh/machineid from 1.1.2 to 1.1.3 (#5678) (@dependabot[bot])
  • 602d823f0b22c5f838ecb0d18dcf8e2d6e7b4f47: chore(deps): bump github.com/ktrysmt/go-bitbucket from 0.9.91 to 0.9.93 (#5419) (@dependabot[bot])
  • cafe15be209fd01a6b0c379e671100597ff5e8c1: chore(deps): bump github.com/ktrysmt/go-bitbucket from 0.9.93 to 0.9.94 (#5461) (@dependabot[bot])
  • 5abf6d1655f15e8d14ba99c07ebbbdd76dc2e849: chore(deps): bump github.com/ktrysmt/go-bitbucket from 0.9.94 to 0.9.95 (#5679) (@dependabot[bot])
  • 9041f9f425cf922368eceae799716295ac041b9f: chore(deps): bump github.com/mattn/go-isatty from 0.0.20 to 0.0.21 (#5728) (@dependabot[bot])
  • 4dde011723fef69b18ac5b7ab8942a150ab78628: chore(deps): bump github.com/open-policy-agent/opa from 1.13.1 to 1.13.2 (#5415) (@dependabot[bot])
  • 386ab0f109756f813f19ae7bb49b5ea7bd79a931: chore(deps): bump github.com/open-policy-agent/opa from 1.13.2 to 1.14.1 (#5568) (@dependabot[bot])
  • 129add5a6cd175ed1b2a278adba6ec7aae4b8989: chore(deps): bump github.com/redis/go-redis/extra/redisotel/v9 (#5421) (@dependabot[bot])
  • 4405de72299e31cabfb7566d105c7c014b140648: chore(deps): bump github.com/redis/go-redis/v9 from 9.17.3 to 9.18.0 (#5418) (@dependabot[bot])
  • f956590594f24ee3fbe1d3a5922079a6c16a118d: chore(deps): bump github.com/samber/lo from 1.52.0 to 1.53.0 (#5577) (@dependabot[bot])
  • 1e2094395e0d7173d063a48177f91c01dbd6f0ac: chore(deps): bump github.com/testcontainers/testcontainers-go (#5569) (@dependabot[bot])
  • f2f5598683c6de54a384b8f9112ab3aaf6c653d0: chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp (#5702) (@dependabot[bot])
  • a7eed94bec252f01585be6d036cc65ce3d066054: chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp (#5703) (@dependabot[bot])
  • 19725ffd8d8f583fef5df5b551617fbadeec45ad: chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp (#5704) (@dependabot[bot])
  • eac1bb0d2cfba2cdb49cb056154cc76d88916b13: chore(deps): bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 in /sdk/go/v2 (#5436) (@dependabot[bot])
  • d52a9d0acec53760c6b024e99b61019106718983: chore(deps): bump gocloud.dev from 0.44.0 to 0.45.0 (#5602) (@dependabot[bot])
  • d9bbb2be0d2484b68d79a4ac19c56202a4a08a0c: chore(deps): bump golang.org/x/crypto from 0.48.0 to 0.49.0 (#5576) (@dependabot[bot])
  • 10b978b3d3772e6059ae1442df8a5b207c168d88: chore(deps): bump golang.org/x/oauth2 from 0.35.0 to 0.36.0 (#5604) (@dependabot[bot])
  • d0e223e645af40e7b85136dbc2b551790aaf0112: chore(deps): bump golang.org/x/sync from 0.19.0 to 0.20.0 (#5534) (@dependabot[bot])
  • dfcdbac2af33ad12c555dd3666fa46a6f1a1e5d4: chore(deps): bump golang.org/x/term from 0.41.0 to 0.42.0 (#5724) (@dependabot[bot])
  • 3d45e87c7d592ca25edf59628c675a5ccc719e8e: chore(deps): bump google.golang.org/api from 0.267.0 to 0.272.0 (#5603) (@dependabot[bot])
  • 906118162e51b11e839cc0f41c71fe5b60bc3a4a: chore(deps): bump google.golang.org/api from 0.272.0 to 0.273.0 (#5631) (@dependabot[bot])
  • 3e3a3b66423fa868b9b490d4dfd6358be5c21626: chore(deps): bump google.golang.org/api from 0.273.1 to 0.275.0 (#5725) (@dependabot[bot])
  • dde228e01bcc46b6d0df19db276dc95dc85a9203: chore(deps): bump google.golang.org/grpc from 1.73.0 to 1.79.3 in /rpc/flipt (#5585) (@dependabot[bot])
  • 894551cbacdbd8f8e45bc7b87db4b0ed29a38bb1: chore(deps): bump google.golang.org/grpc from 1.79.2 to 1.79.3 (#5587) (@dependabot[bot])
  • 5d358d27cc7d1a505ec344de6f68c8705f1f59ed: chore(deps): bump google.golang.org/grpc in /rpc/v2/environments (#5583) (@dependabot[bot])
  • da00ee12540b32d3da1d236e6594023567564147: chore(deps): bump google.golang.org/grpc in /rpc/v2/evaluation (#5592) (@dependabot[bot])
  • ffb4a67aaa8fa296e840436cd19969d3174baf67: chore(deps): bump google.golang.org/protobuf v1.36.9 to v1.36.11 (#5412) (@erka)
  • 927e347077639aa10db5d32067d8a4b537f52a52: chore(deps): bump goreleaser/goreleaser-action from 6 to 7 (#5414) (@dependabot[bot])
  • 117475503a735c736960f14e2bde4279d7551d1c: chore(deps): bump jdx/mise-action from 2 to 3 (#5520) (@dependabot[bot])
  • bcd86a3ae58e47148a84de5b6639cf7c0dd0f048: chore(deps): bump jdx/mise-action from 3 to 4 (#5567) (@dependabot[bot])
  • f67ee5f5b0cae347936cd9f03d50377f3ea04795: chore(deps): bump lodash from 4.17.23 to 4.18.1 in /ui (#5654) (@dependabot[bot])
  • 604bd4f986984f261f896c0969259e8c0e1c9e0c: chore(deps): bump lodash-es from 4.17.23 to 4.18.1 in /ui (#5653) (@dependabot[bot])
  • 0f1741ae3bf48ba9004f1d7f84309653041a94b7: chore(deps): bump lucide-react from 0.564.0 to 0.575.0 in /ui (#5416) (@dependabot[bot])
  • 41b6f19661e48267fd9cfbfe36bc43dffa69222a: chore(deps): bump lucide-react from 0.575.0 to 0.577.0 in /ui (#5609) (@dependabot[bot])
  • 80943ecf373ecb07039c4dd46a92680806d4825f: chore(deps): bump picomatch in /ui (#5620) (@dependabot[bot])
  • 1afaaf223c2aa99c6447cb6f2732a313a6503be0: chore(deps): bump react-dom from 19.2.4 to 19.2.5 in /ui (#5729) (@dependabot[bot])
  • d6db2df9a4a7dc960f863f64f9ca67fec0e54779: chore(deps): bump react-router from 7.13.0 to 7.13.1 in /ui (#5471) (@dependabot[bot])
  • 7f43cf478b1a0df357ab16847b2d2bc3411e16ea: chore(deps): bump react-router from 7.13.1 to 7.13.2 in /ui (#5632) (@dependabot[bot])
  • 783a9a0d3d4d6f0d7f71f703234a316c1509b148: chore(deps): bump react-router from 7.13.2 to 7.14.0 in /ui (#5723) (@dependabot[bot])
  • e72f1880814609c403c37918c5252d20e4b29962: chore(deps): bump react-router from 7.14.0 to 7.14.1 in /ui (#5760) (@dependabot[bot])
  • 4fc0b6581266421bba82bca1721c0bccb1484a3a: chore(deps): bump rollup from 4.41.1 to 4.59.0 in /ui (#5431) (@dependabot[bot])
  • dd0f6292492c628320db4d73b61e50eec0c35958: chore(deps): bump the opentelemetry group with 14 updates (#5527) (@dependabot[bot])
  • e181d8a4f6b110af3097ecbc84739f9516aea607: chore(deps): bump the opentelemetry group with 6 updates (#5722) (@dependabot[bot])
  • fcc0d415666c101a100c95617c4f5935b069fb17: chore(deps): bump the opentelemetry group with 8 updates (#5673) (@dependabot[bot])
  • dca6d04cf77ca3b35bce65c5539ec25b3c8edca8: chore(deps): bump yaml in /ui (#5619) (@dependabot[bot])
  • cbb5543382d88da27015154441a543117aa178dd: chore(deps): security updates in build/go and sdk/go modules (#5438) (@erka)
  • dd4f59d903dd579a327903036206201f01f253b2: chore(deps-dev): bump @playwright/test from 1.58.2 to 1.59.1 in /ui (#5674) (@dependabot[bot])
  • 30d966bb14caf7f5431e25024daf77ddefad12a0: chore(deps-dev): bump @tailwindcss/vite from 4.1.18 to 4.2.0 in /ui (#5424) (@dependabot[bot])
  • 8839e1abd28dd66b01e16279282a8eeb6933e0a5: chore(deps-dev): bump @tailwindcss/vite from 4.2.1 to 4.2.2 in /ui (#5633) (@dependabot[bot])
  • 88e046386b1b5a4706f9a8f6024baeffe82d5a1f: chore(deps-dev): bump flatted from 3.3.2 to 3.4.2 in /ui (#5593) (@dependabot[bot])
  • 556cdbef9bd4713826f8092f04094bc92bd66333: chore(deps-dev): bump handlebars from 4.7.8 to 4.7.9 in /ui (#5623) (@dependabot[bot])
  • e71cbb3e161432bb456d0f1604e7491801a5d7bb: chore(deps-dev): bump jest-environment-jsdom in /ui (#5570) (@dependabot[bot])
  • 687a3588b109d151dea8ca493a34859cc60db125: chore(deps-dev): bump knip from 5.83.1 to 5.85.0 in /ui (#5423) (@dependabot[bot])
  • 212fd417f5f28932e12224d0d58c9f1769aa048c: chore(deps-dev): bump knip from 5.85.0 to 5.86.0 in /ui (#5524) (@dependabot[bot])
  • f223f17927dedd3054b0320f4777f7b6587d8aef: chore(deps-dev): bump knip from 5.86.0 to 5.88.1 in /ui (#5605) (@dependabot[bot])
  • b6de9055f6c572b216d3295a371cc8853cc457b9: chore(deps-dev): bump minimatch from 3.1.2 to 3.1.5 in /ui (#5437) (@dependabot[bot])
  • ec023336c6936a745b9454dbb893b750e03589b9: chore(deps-dev): bump playwright from 1.58.2 to 1.59.1 in /ui (#5676) (@dependabot[bot])
  • 9b15e31953d28a0b3a123e059b2fe3f627b8a116: chore(deps-dev): bump postcss from 8.5.6 to 8.5.8 in /ui (#5528) (@dependabot[bot])
  • 1eda8d99968a82d23705b51818a6ab4709bb79c0: chore(deps-dev): bump postcss from 8.5.8 to 8.5.9 in /ui (#5730) (@dependabot[bot])
  • 0365d4ac1d403fbb8bbdc09539d5ef8e8a8313f9: chore(deps-dev): bump postcss from 8.5.9 to 8.5.10 in /ui (#5759) (@dependabot[bot])
  • b6abdc80fd5cb01fd08dd1821e3ec573682c9b84: chore(deps-dev): bump prettier from 3.8.1 to 3.8.2 in /ui (#5721) (@dependabot[bot])
  • bd26066da76f65ec587ef3db885ad334032283f5: chore(deps-dev): bump prettier from 3.8.2 to 3.8.3 in /ui (#5754) (@dependabot[bot])
  • 83ff56c917322368e89d7783d2cfa701db9c492b: chore(deps-dev): bump tailwindcss from 4.1.18 to 4.2.0 in /ui (#5420) (@dependabot[bot])
  • f276cdc3f05c2d94b1f33abebe879d0ec9cde08c: chore(deps-dev): bump tailwindcss from 4.2.1 to 4.2.2 in /ui (#5608) (@dependabot[bot])
  • e0df5429bd9cd3a7942eeeb0acc6107df167c81d: chore(deps-dev): bump ts-jest from 29.4.6 to 29.4.9 in /ui (#5672) (@dependabot[bot])
  • 383277ecfa536b5af0a07893384229f19eff8472: chore(deps-dev): bump vite from 6.4.1 to 6.4.2 in /ui (#5684) (@dependabot[bot])
  • 641754c6ae0b495f036aa781df611b27164c10a9: chore(ui): migrate to React.ComponentRef and cleanup (#5435) (@erka)
  • 65bd6da97cab81f492f1fc51985b9728ee1ee17f: chore: fix missing part with new mise action (#5537) (@erka)
  • 2464e87e172e566fea59bcd789dfa936d148ba36: chore: gitignore beads (@markphelps)
  • 20d0a0a3fbf25d5409da3a68ce68a9e137f2a6ef: chore: migrate CI workflows from mage to mise (#5519) (@markphelps)
  • 215207314be3beed7fd745ebc8f5db7299221710: chore: migrate build tooling from mage to mise (#5504) (@markphelps)
  • af4f40e90d291b633ba6eb88cd731b726966b38a: chore: migrate goreleaser configs to dockers_v2 and homebrew_casks (#5508) (@costajohnt)
  • 581430e2c899d15c5ca4d669d1f3e779492f1fb8: chore: refresh tooling and regenerated mocks (#5535) (@erka)
  • fd02462464be418617748c47ca47efef8c8c10e8: chore: release v2.8.0 (#5497) (@markphelps)
  • 126853e5de5e7a3aa66c28190319d37e2a1d18bc: chore: release v2.9.0 (@markphelps)
  • bcccf15f00ca138614504bf34f5f5c1bda47583c: chore: simplify devcontainer setup by removing Dockerfile (#5558) (@markphelps)
  • 8b34486bd09e47d40e37a68ec39f2e411de83c25: ci: add minimal permissions to proto-push workflow (#5613) (@erka)
  • e5c0a87bdd4aa98bebd443ac471bc754fa5580ae: ci: add permissions to workflows (#5595) (@erka)
  • 9b9757f418ed8e753c75b01bf703e431582a341a: ci: use golangci-lint to format the code (#5693) (@erka)
  • 0c936d16e78479a08c7a5fa8d3c8b1b82bda7186: docs: migrate agent commands to .agents (@markphelps)
  • 44c80ce1c80a6e06e5cc2395a205ab05d2a804ad: refactor(ui): optimize bundle size and remove heavy dependencies (#5682) (@erka)
  • bb2575452d10e38d533febec6a8de2177ed28492: refactor: migrate grpc-middleware from v1 to v2 (#5668) (@erka)

Installation

Docker Images :whale:

  docker pull docker.flipt.io/flipt/flipt:v2.9.0

  docker pull ghcr.io/flipt-io/flipt:v2.9.0

Thank you!

We hope you :heart: this release! Feel free to open issues/discussions or reach out to us on Discord if you have any questions or feedback.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Flipt

Get notified when new releases ship.

Sign up free

About Flipt

Feature flag solution with support for multiple data backends (alternative to LaunchDarkly).

All releases →

Related context

Beta — feedback welcome: [email protected]