Product Updates

Platform Changelog

A complete record of every feature, improvement, fix, and security patch shipped to the Novastraxis platform. Subscribe to our RSS feed to stay notified.

RSS Feed Available
FeatureImprovementFixSecurity
v4.12.0FeatureMarch 15, 2026

Compliance Automation Engine: NIS2 & DORA Support

Extended the Compliance Automation Engine with full support for the EU NIS2 Directive and Digital Operational Resilience Act (DORA) frameworks.

  • Pre-built policy packs for NIS2 essential and important entity classifications
  • DORA ICT risk management framework mapping with automated evidence collection
  • Incident reporting workflow templates aligned with NIS2 24-hour notification requirements
  • Automated third-party ICT provider risk assessment for DORA Article 28 compliance
  • New compliance dashboard with real-time drift detection across all supported frameworks
v4.11.2SecurityMarch 8, 2026

TLS 1.3 Cipher Suite Update

Updated the default TLS cipher suite configuration across all edge nodes and internal service mesh communication.

  • Removed TLS_AES_128_CCM_SHA256 from the default cipher suite due to reduced security margin
  • Added X25519Kyber768 hybrid key exchange for post-quantum forward secrecy on supported clients
  • Updated certificate rotation schedule to 90-day intervals for all internal mTLS certificates
  • No customer action required — changes applied automatically via rolling deployment
v4.11.1FixMarch 1, 2026

Data Mesh CDC Pipeline Stability

Resolved an edge case in the Change Data Capture pipeline that could cause delayed event propagation under specific conditions.

  • Fixed race condition in the CDC offset manager when a source database performs a schema migration during active replication
  • Improved backpressure handling for high-throughput CDC streams exceeding 500K events/second
  • Added automatic retry with exponential backoff for transient downstream consumer failures
  • Affected customers: approximately 3% of Data Mesh Engine users with schema-evolving sources
v4.11.0FeatureFebruary 22, 2026

Observability Suite: OpenTelemetry Collector v2

Major upgrade to the built-in OpenTelemetry Collector with improved performance and new data pipeline capabilities.

  • 2.3x throughput improvement for trace ingestion pipelines compared to v1
  • Native support for OpenTelemetry Logs (previously beta), including structured log correlation with traces
  • New tail-based sampling processor with configurable policies for cost-effective trace retention
  • Built-in Prometheus remote write receiver for seamless migration from existing Prometheus deployments
  • Custom transform processor for in-pipeline metric aggregation and attribute enrichment
v4.10.3ImprovementFebruary 15, 2026

Kubernetes Scheduler Performance

Optimized the managed Kubernetes scheduler for faster pod placement and improved bin packing efficiency.

  • Reduced average scheduling latency from 8.2ms to 3.1ms for clusters with 5,000+ nodes
  • Improved bin packing efficiency by 18%, reducing wasted compute resources across large clusters
  • New scheduler extender plugin for topology-aware placement that respects data locality constraints
  • Backported to v4.9.x for customers on the previous stable release channel
v4.10.2SecurityFebruary 8, 2026

CVE-2026-0847 Patch: Compute Node Kernel Update

Emergency kernel patch for CVE-2026-0847, a privilege escalation vulnerability in the Linux kernel affecting compute node isolation.

  • Patched kernel vulnerability that could allow container escape under specific conditions (CVSS 8.1)
  • All 48 regions fully patched within 4 hours of CVE publication via live kernel patching
  • Zero customer-facing downtime — patches applied using kpatch without node reboot
  • Customers running custom kernel modules should review compatibility notes in the advisory
v4.10.1FixFebruary 1, 2026

Alert Routing Rules with Complex Conditions

Fixed a bug in the alerting engine where routing rules with nested boolean conditions could produce incorrect routing decisions.

  • Corrected operator precedence evaluation for rules combining AND, OR, and NOT conditions
  • Added validation to prevent creation of logically contradictory routing rules
  • Existing rules with affected patterns have been automatically re-evaluated and corrected
  • New unit test suite with 847 test cases covering all boolean condition permutations
v4.10.0FeatureJanuary 25, 2026

Zero-Trust Fabric: SPIFFE Federation

Added support for SPIFFE Federation, enabling cross-cluster and cross-organization workload identity trust.

  • Federated trust bundles allow workloads in different Novastraxis clusters to authenticate each other
  • Support for external SPIFFE trust domain federation with third-party SPIRE deployments
  • New federation admin API for managing trust relationships, bundle rotation, and revocation
  • Automatic bundle refresh with configurable TTL and JWKS endpoint publishing
  • Compatible with Istio, Envoy, and gRPC native SPIFFE credential plugins
v4.9.4ImprovementJanuary 18, 2026

Dashboard Loading Performance (40% faster)

Significant performance improvement to the Novastraxis Management Console dashboard loading times.

  • Reduced initial dashboard render time from 2.4s to 1.4s (40% improvement)
  • Implemented server-side rendering for critical dashboard widgets
  • Lazy-loaded non-critical chart components to reduce initial JavaScript bundle by 320KB
  • Added edge caching for frequently accessed metric aggregations with 5-second TTL
v4.9.3SecurityJanuary 11, 2026

Dependency Updates: Q1 2026 Security Patch

Quarterly security patch updating third-party dependencies across the platform stack.

  • Updated 47 direct dependencies and 183 transitive dependencies to latest secure versions
  • Resolved 3 high-severity and 12 medium-severity CVEs in third-party libraries
  • Regenerated all SBOM (Software Bill of Materials) artifacts for customer audit compliance
  • No breaking changes — all updates are backward-compatible with existing API contracts
v4.9.2FixJanuary 4, 2026

Metric Aggregation Edge Case

Resolved an edge case in the metric aggregation pipeline that could produce incorrect percentile calculations under specific conditions.

  • Fixed t-digest compression factor calculation when merging sparse histogram buckets across regions
  • Improved accuracy of p99 and p99.9 calculations for metrics with highly skewed distributions
  • Added automated regression tests using synthetic metric datasets with known statistical properties
  • Retroactively corrected historical aggregations for affected time windows (December 28-January 3)
v4.9.0FeatureDecember 20, 2025

Threat Analytics: Adversary Simulation v3

Third-generation adversary simulation engine with expanded attack techniques and automated purple team exercises.

  • 130+ new attack simulation techniques mapped to MITRE ATT&CK v14 framework
  • Automated purple team exercises that continuously validate detection and response coverage
  • New adversary profile editor for creating custom threat actor models based on sector-specific intelligence
  • Integration with the Compliance Automation Engine to map simulation results to compliance control gaps
  • Detailed remediation guidance with prioritized recommendations ranked by risk reduction impact

Related Resources

System Status

Real-time operational status for all platform services across 48 global regions.

Check status

Core Infrastructure

Explore the distributed systems and architecture that powers the Novastraxis platform.

Explore platform

Documentation

API references, integration guides, and technical documentation for every platform capability.

View docs