Skip to main content

Release v0.7 (v0.7) Switch to the latest release

Published on: 01/07/2026

Features:

* Configured advanced Open Policy Agent (OPA) rules for context-brokering, enabling precise, group-based, and path-based authorisation for Trino queries using JWT payloads.
* Fortified system security by generating certificates for HTTPS connections between APISIX, Superset, and Trino, and established an ldt-indef realm in Keycloak for extended "infinite" access tokens.
* Implemented a dedicated logger_adapter to automate user context propagation across backend services and integrated OIDC workflows directly into the frontend and compose files.
* Mitigated Snyk vulnerabilities and addressed SonarQube code smells by preventing the logging of user-controlled data, injecting Keycloak endpoints via environment variables, and refactoring APISIX configurations to utilise Docker secrets securely.
* Optimised infrastructure and performance by merging consecutive RUN instructions in Dockerfiles, resolving historical data merge errors, and enabling application sections to function gracefully even with OIDC disabled.