Traefik v3.6.23 Fixes Panic in Kubernetes Provider, Enhances Middleware

Traefik · 8 Jul 2026 · 2 min read

#traefik

Traefik v3.6.23 is now available, primarily focusing on bug fixes and documentation improvements. This release resolves critical issues in the Kubernetes provider, middleware components, and dependency updates, enhancing stability and reliability for production deployments.

  • ACME: Bumped software.sslmate.com/src/go-pkcs12 to v0.7.3 (#13477).
  • Kubernetes: Fixed a panic when EndpointSlice port value or name is nil (#13481).
  • Kubernetes CRD: Fixed cross-provider ref check for TCP ServersTransport in the Kubernetes CRD provider (#13458).
  • Middleware: Fixed handling of empty unknown-length bodies in mirroring middleware (#13399).
  • Middleware: Sanitized replaced path in ReplacePathRegex middleware to prevent injection (#13466).
  • OpenTelemetry: Bumped go.opentelemetry.io/otel to v1.44.0 (#13478).
  • Documentation: Clarified buffering middleware defaults (#13401), added new maintainers @amazon7737 and @nandorKollar, fixed various docs errors including grammar, function names, and migration guide.

For developers using Traefik with Kubernetes, fixing the panic when EndpointSlice ports are nil is crucial to avoid crashes in clusters where services might have incomplete port definitions. The ReplacePathRegex sanitization prevents potential security issues when rewriting paths. The mirroring middleware fix ensures correct behavior with streaming or zero-length payloads. Additionally, updating OpenTelemetry and ACME dependencies keeps Traefik compatible with the latest observability and certificate management standards. Documentation fixes improve clarity for configuring buffering, TLS, TCP services, and routing.

Source: https://github.com/traefik/traefik/releases/tag/v3.6.23

Related

auto-curated · source linked above ← all news