1.53.0 (2026-05-15)

🎉 GO Feature Flag v1.53.0

This is an important release for GO Feature Flag, it brings a lot of improvement to the performance of GOFF, 1st we've improved the caching of your rules in order to be faster to evaluate your targeting rules, and if you are using the exporters, we have rework the locking mechanism to speedup your evaluations.

But this is not it, we've adding some new features too.

🚀 New Features

If you are using the OpenFeature cli, you can now use the new manifest endpoint defined to work with the cli.
You can now pull your configuration using the cli directly by doing

openfeature pull --provider-url http://localhost:1031

it will download directly the manifest from the relay-proxy.

Real-time flag change streaming (SSE)

The relay proxy now supports Server-Sent Events (SSE) for flag change notifications, powered by r3labs/sse. Clients can subscribe to flag change events in real time without polling, which is a foundational building block for responsive feature flag SDKs.

This SSE will also allow GOFF to work with the latest spec changes from the OFREP protocol.

⚡ Performance (modules/core v0.7.1)

Targeting rule evaluation caching
Parsed nikunjy targeting query evaluators are now cached at the rule level. Previously, each evaluation would re-parse the targeting expression from scratch. This significantly reduces CPU overhead in high-throughput scenarios where the same rules are evaluated repeatedly across many requests.

Other changes

As usual we are also increasing security in the repo, doing dependency updates, and ensuring that we deliver the best quality as usual.

🚀 New Features

• relayproxy: add GET /openfeature/v0/manifest endpoint (#5210) (95c8e76)
• relayproxy: SSE flag change streaming with r3labs/sse (#5216) (49f03ca)

🐛 Bug Fixes

• exporter: reduce mutex hold time in process pending events (#5134) (a510291)
• fix vulnerabilities in JS dependencies for OpenFeature web examples (#5235) (8b2effc)
• relayproxy: graceful shutdown on Ctrl+C so the port is freed (#5217) (1722030)
• sonar: remove redundant test.inclusions causing false positives (#5261) (d97d3aa)

🔧 Chores

• Bump @jest/globals (#5274) (0835c04)
• Bump @openfeature/react-sdk (#5187) (c8ee590)
• Bump @openfeature/server-sdk (#5175) (cb128fe)
• Bump @openfeature/web-sdk (#5183) (eb71b08)
• Bump @openfeature/web-sdk in /examples/openfeature_web/webapp (#5186) (e19ef05)
• Bump @typescript-eslint/eslint-plugin (#5150) (4ad4438)
• Bump @typescript-eslint/eslint-plugin (#5190) (4bb44e2)
• Bump @typescript-eslint/eslint-plugin (#5248) (c3b39b8)
• Bump @typescript-eslint/eslint-plugin (#5273) (72bb3b4)
• Bump acifani/setup-tinygo from 2.0.1 to 3.0.0 (#5158) (7bc8d5b)
• Bump actions/cache from 5.0.4 to 5.0.5 (#5161) (a9d4f90)
• Bump actions/setup-node from 6.3.0 to 6.4.0 + fix risk of node cache poisoinning (#5196) (38d4e45)
• Bump actions/upload-artifact from 7.0.0 to 7.0.1 (#5131) (7831baa)
• Bump astral-sh/setup-uv from 8.0.0 to 8.1.0 (#5160) (4c04fad)
• Bump autoprefixer in /examples/openfeature_react/react-app (#5151) (cb84efc)
• Bump autoprefixer in /examples/openfeature_web/webapp (#5148) (659f090)
• Bump babel-plugin-transform-class-properties (#5243) (957800d)
• Bump babel-preset-env in /examples/openfeature_web/webapp (#5245) (97ae24e)
• Bump cloud.google.com/go/pubsub/v2 from 2.5.1 to 2.6.0 (#5140) (5722a72)
• Bump cloud.google.com/go/storage from 1.62.0 to 1.62.1 (#5137) (db5a51d)
• Bump coverlet.collector from 8.0.1 to 10.0.0 (#5173) (00c6fe9)
• Bump dev.openfeature.contrib.providers:go-feature-flag (#5219) (3ead6b1)
• Bump dev.openfeature.contrib.providers:go-feature-flag (#5246) (9bbd24e)
• Bump eslint in /examples/openfeature_react/react-app (#5193) (da3e4a0)
• Bump eslint in /examples/openfeature_react/react-app (#5271) (c4a567b)
• Bump eslint in /examples/openfeature_web/webapp (#5181) (c4d6f4e)
• Bump eslint-plugin-react-hooks (#5155) (cff53e2)
• Bump eslint-plugin-react-hooks (#5185) (f39eacf)
• Bump github.com/apache/thrift from 0.21.0 to 0.23.0 (#5232) (638b9ad)
• Bump github.com/aws/aws-sdk-go-v2/config from 1.32.15 to 1.32.16 (#5167) (bcb8211)
• Bump github.com/aws/aws-sdk-go-v2/credentials (#5223) (d8bbf82)
• Bump github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager (#5147) (c684549)
• Bump github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager (#5169) (abf4871)
• Bump github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager (#5200) (0f088c8)
• Bump github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager (#5224) (fffa829)
• Bump github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager (#5240) (bccd93c)
• Bump github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager (#5267) (c77d2b5)
• Bump github.com/aws/aws-sdk-go-v2/service/kinesis (#5165) (2fcf709)
• Bump github.com/aws/aws-sdk-go-v2/service/kinesis (#5227) (920fca6)
• Bump github.com/aws/aws-sdk-go-v2/service/s3 (#5166) (d2eb4e1)
• Bump github.com/aws/aws-sdk-go-v2/service/s3 (#5199) (2e2197b)
• Bump github.com/aws/aws-sdk-go-v2/service/s3 (#5266) (7342c40)
• Bump github.com/aws/aws-sdk-go-v2/service/sqs (#5172) (e56f532)
• Bump github.com/aws/aws-sdk-go-v2/service/sqs (#5229) (67b2a50)
• Bump github.com/aws/smithy-go from 1.24.3 to 1.25.0 (#5142) (fa32cdd)
• Bump github.com/aws/smithy-go from 1.25.0 to 1.25.1 (#5205) (34e746c)
• Bump github.com/IBM/sarama from 1.47.0 to 1.48.0 (#5204) (3d63492)
• Bump github.com/invopop/jsonschema from 0.13.0 to 0.14.0 (#5206) (bd22b58)
• Bump github.com/jackc/pgx/v5 from 5.9.1 to 5.9.2 (#5168) (de1769e)
• Bump github.com/labstack/echo/v4 from 4.15.1 to 4.15.2 (#5258) (acb472b)
• Bump github.com/redis/go-redis/v9 from 9.18.0 to 9.19.0 (#5221) (e6f0478)
• Bump github.com/samber/slog-zap/v2 from 2.6.4 to 2.7.0 (#5179) (f0b301a)
• Bump github.com/thomaspoignant/go-feature-flag/modules/core (#5180) (c6322eb)
• Bump github/codeql-action from 4.35.1 to 4.35.2 (#5162) (6117caa)
• Bump github/codeql-action from 4.35.2 to 4.35.3 (#5253) (8a110d4)
• Bump github/codeql-action from 4.35.3 to 4.35.4 (#5276) (474ef07)
• Bump GO minor to 1.25.10 (#5257) (0cc7b44)
• Bump go.uber.org/zap from 1.27.1 to 1.28.0 (#5220) (539870a)
• Bump google.golang.org/api from 0.275.0 to 0.276.0 (#5138) (0b05381)
• Bump google.golang.org/api from 0.276.0 to 0.277.0 (#5230) (c8e1abb)
• Bump google.golang.org/api from 0.277.0 to 0.278.0 (#5265) (a032a3a)
• Bump google.golang.org/grpc from 1.80.0 to 1.81.0 (#5263) (dbed329)
• Bump googleapis/release-please-action from 4.4.0 to 4.4.1 (#5129) (d556d80)
• Bump googleapis/release-please-action from 4.4.1 to 5.0.0 (#5195) (0ca330d)
• Bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0 (#5197) (fe18eb2)
• Bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 (#5251) (ab9387f)
• Bump gradle-wrapper (#5244) (6eceb3a)
• Bump htmlnano in /examples/openfeature_web/webapp (#5184) (94a521a)
• Bump jest in /openfeature/provider_tests/js-integration-tests (#5275) (a4a4856)
• Bump jvm in /examples/openfeature_kotlin_server/kotlin-app (#5191) (1d70f3c)
• Bump k8s.io/api from 0.35.3 to 0.35.4 (#5141) (846a5e3)
• Bump k8s.io/apimachinery from 0.35.3 to 0.35.4 (#5139) (09a41df)
• Bump k8s.io/client-go from 0.35.3 to 0.35.4 (#5143) (96ee0bf)
• Bump marocchino/sticky-pull-request-comment from 3.0.3 to 3.0.4 (#5163) (d35a39b)
• Bump Microsoft.NET.Test.Sdk from 18.4.0 to 18.5.1 (#5222) (eb11385)
• Bump NUnit from 4.5.1 to 4.6.0 (#5259) (3c5587d)
• Bump NUnit.Analyzers from 4.12.0 to 4.13.0 (#5260) (d92727b)
• Bump OpenFeature from 2.12.0 to 2.13.0 (#5252) (557ca89)
• Bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 (#5130) (533ac1e)
• Bump postcss in /examples/openfeature_react/react-app (#5153) (3bab2d5)
• Bump postcss in /examples/openfeature_react/react-app (#5249) (270ecf4)
• Bump postcss in /examples/openfeature_react/react-app (#5269) (97a3e07)
• Bump posthtml-cli in /examples/openfeature_web/webapp (#5241) (0d9b773)
• Bump pozil/auto-assign-issue from 2.2.0 to 3.0.0 (#5209) (7890c89)
• Bump react in /examples/openfeature_react/react-app (#5270) (3e15c07)
• Bump react-dom in /examples/openfeature_react/react-app (#5272) (822e2fc)
• Bump rhysd/github-action-benchmark from 1.22.0 to 1.22.1 (#5277) (a6165d3)
• Bump softprops/action-gh-release from 2.6.1 to 3.0.0 (#5159) (3d519ad)
• Bump stylelint in /examples/openfeature_web/webapp (#5149) (068d411)
• Bump stylelint in /examples/openfeature_web/webapp (#5207) (0bb9144)
• Bump tailwindcss in /examples/openfeature_react/react-app (#5189) (0d0d3eb)
• Bump typescript in /examples/openfeature_nodejs/nodejs-app (#5145) (0663c86)
• Bump typescript in /examples/openfeature_react/react-app (#5154) (790ac78)
• Bump uuid in /examples/openfeature_web/webapp (#5188) (9c74d83)
• Bump vite in /examples/openfeature_react/react-app (#5182) (7f4de11)
• Bump vite in /examples/openfeature_react/react-app (#5208) (10e84bf)
• Bump vite in /examples/openfeature_react/react-app (#5268) (62de3d3)
• Bump webpack in /examples/openfeature_web/webapp (#5146) (9a761f8)
• Bump zizmorcore/zizmor-action from 0.5.2 to 0.5.3 (#5157) (696d02c)
• dependency: Bump module modules/core 0.7.1 (#5283) (ea0c5e5)
• fix golangci-lint configuration and lint violations (#5211) (baf0f41)
• python-provider: drop Python 3.9 support (#5237) (0e0ff41)

📚 Documentation

• add Buzzvil to ADOPTERS.md (#5284) (4addc23)
• document Rust support via OpenFeature OFREP provider (#5212) (6f4b2cc)
• fix dockerhub for linting in cli (#5164) (58a4c77)

⚙️ CI/CD

• dependabot: Adding exclusion to cooldown for dependabot (#5178) (9e77f46)
• fix zizmor issue (#5254) (a184111)
• persit-crendential and cache removal in GHA (#5256) (9512653)
• set token to upload artifact wasm (#5285) (89bd2b9)
• zizmor: fix zizmor security warnings (#5239) (08185cb)