Traefik v3.6.23 is now available, primarily focusing on bug fixes and documentation improvements. This release resolves critical issues in the Kubernetes provider, middleware components, and dependency updates, enhancing stability and reliability for production deployments.
- ACME: Bumped
software.sslmate.com/src/go-pkcs12to v0.7.3 (#13477). - Kubernetes: Fixed a panic when
EndpointSliceport value or name isnil(#13481). - Kubernetes CRD: Fixed cross-provider ref check for TCP ServersTransport in the Kubernetes CRD provider (#13458).
- Middleware: Fixed handling of empty unknown-length bodies in mirroring middleware (#13399).
- Middleware: Sanitized replaced path in
ReplacePathRegexmiddleware to prevent injection (#13466). - OpenTelemetry: Bumped
go.opentelemetry.io/otelto v1.44.0 (#13478). - Documentation: Clarified buffering middleware defaults (#13401), added new maintainers @amazon7737 and @nandorKollar, fixed various docs errors including grammar, function names, and migration guide.
For developers using Traefik with Kubernetes, fixing the panic when EndpointSlice ports are nil is crucial to avoid crashes in clusters where services might have incomplete port definitions. The ReplacePathRegex sanitization prevents potential security issues when rewriting paths. The mirroring middleware fix ensures correct behavior with streaming or zero-length payloads. Additionally, updating OpenTelemetry and ACME dependencies keeps Traefik compatible with the latest observability and certificate management standards. Documentation fixes improve clarity for configuring buffering, TLS, TCP services, and routing.
Source: https://github.com/traefik/traefik/releases/tag/v3.6.23