Skip to content

Cardea

v1.8.0 Feature

This release adds 1 notable feature for engineering teams evaluating rollout.

Published 4d Network Security
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

audit bastion firewall networking security ssh
+1 more
tpm

Affected surfaces

auth rbac

Summary

AI summary

Revalidate active connections and close sessions when a key is deauthorized.

Changes in this release

Feature Low

Rate-limit IPv6 clients by `/64` prefix

Rate-limit IPv6 clients by `/64` prefix

Source: llm_adapter@2026-05-30

Confidence: high
Dependency Low

Bump golang from `d08bf3e` to `0f6b034` in the docker-all group

Bump golang from `d08bf3e` to `0f6b034` in the docker-all group

Source: llm_adapter@2026-05-30

Confidence: high
Dependency Low

Update multiple dependency groups: gomod-minor-patch, github-actions-all, docker-compose-all via Dependabot PRs 66‑69

Update multiple dependency groups: gomod-minor-patch, github-actions-all, docker-compose-all via Dependabot PRs 66‑69

Source: llm_adapter@2026-05-30

Confidence: high
Bugfix Medium

Revalidate active connections and close sessions when a key is deauthorized

Revalidate active connections and close sessions when a key is deauthorized

Source: llm_adapter@2026-05-30

Confidence: high
Full changelog

What's Changed

  • Revalidate active connections and close sessions when a key is deauthorized
  • Rate-limit IPv6 clients by /64 prefix

Dependencies

  • Bump golang from d08bf3e to a085df6 in the docker-all group by @dependabot[bot] in https://github.com/hectorm/cardea/pull/66
  • Bump the gomod-minor-patch group with 2 updates by @dependabot[bot] in https://github.com/hectorm/cardea/pull/67
  • Bump the github-actions-all group with 3 updates by @dependabot[bot] in https://github.com/hectorm/cardea/pull/68
  • Bump the docker-compose-all group with 2 updates by @dependabot[bot] in https://github.com/hectorm/cardea/pull/69
  • Bump golang from a085df6 to 0f6b034 in the docker-all group by @dependabot[bot] in https://github.com/hectorm/cardea/pull/70

Full Changelog: https://github.com/hectorm/cardea/compare/v1.7.0...v1.8.0

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Cardea

Get notified when new releases ship.

Sign up free

About Cardea

SSH bastion server with access control, session recording, and optional TPM-backed key protection. `EUPL-1.2` `Go/Docker`

All releases →

Related context

Beta — feedback welcome: [email protected]