Nomad
Mon
Wed
Fri
JulAugSepOctNovDecJanFebMarAprMayJunJul
LessMore
Releases16Avg5/moVersionsv2.0.4
Last Checked
2h ago
SECURITY:
allowed_modes or allow_privileged requirement to set host namespace modes in task. This is CVE-2026-14891. [GH-28190]host-volume-delete in one namespace could delete claims from another namespace [GH-28205]IMPROVEMENTS:
-kv-path flag to nomad setup vault to configure the Vault KV mount used by the generated workload policy [GH-28183]-json and -t options to the operator autopilot get-config command. [GH-27991]Init function for task driver plugins [GH-28104]Shutdown function for task driver plugins [GH-28102]DEPRECATIONS:
BUG FIXES:
sticky on a static host volume could fail the evaluation instead of being rejected during feasibility checking [GH-28097]/v1/jobs/statuses endpoint [GH-28132]FEATURES:
SECURITY:
IMPROVEMENTS:
BUG FIXES:
job dispatch and job periodic force failing with a paginator error against servers older than the CLI [GH-27680]change_mode=noop would stop monitoring templates that fatally fail after initial rendering [GH-28016]BUG FIXES:
BREAKING CHANGES:
SECURITY:
IMPROVEMENTS:
nomad exec -it to -i -t [GH-27906]job plan now propagates -hcl2-strict=false into the suggested nomad job run -check-index invocation when the user passed it on the plan command line [GH-23656]BUG FIXES:
FEATURES:
SECURITY:
IMPROVEMENTS:
BUG FIXES:
SECURITY:
allowed_modes or allow_privileged requirement to set host namespace modes in task. This is CVE-2026-14891. [GH-28190]host-volume-delete in one namespace could delete claims from another namespace [GH-28205]IMPROVEMENTS:
Init function for task driver plugins [GH-28104]Shutdown function for task driver plugins [GH-28102]BUG FIXES:
sticky on a static host volume could fail the evaluation instead of being rejected during feasibility checking [GH-28097]/v1/jobs/statuses endpoint [GH-28132]SECURITY:
IMPROVEMENTS:
BUG FIXES:
change_mode=noop would stop monitoring templates that fatally fail after initial rendering [GH-28016]BUG FIXES:
BREAKING CHANGES:
SECURITY:
IMPROVEMENTS:
BUG FIXES:
FEATURES:
SECURITY:
IMPROVEMENTS:
BUG FIXES:
SECURITY:
IMPROVEMENTS:
sentinel policy block to allow managing Sentinel policies without a management token [GH-27556]agent.tls.cert.expiration_seconds and agent.tls.ca.expiration_seconds telemetry data points to track TLS certificate expiration. [GH-27538]BUG FIXES:
file mode [GH-27552]task_identity [GH-27595]SECURITY:
IMPROVEMENTS:
sentinel apply command [GH-27335]/usr/libexec/cni as an additional default path within the client.cni_path configuration option [GH-27336]github.com/mitchellh/mapstructure to github.com/go-viper/mapstructure/v2 [GH-27444]nomad_var built-in import for fetching Nomad variables under the nomad/sentinel path for use in policy evaluationhttp module via the sentinel.additional_enabled_modules configurationBUG FIXES:
fingerprint configuration block which allows users to specify retry behavior for the env_aws, env_azure, env_digitalocean and env_gcp fingerprinters. [GH-27161]disconnect.lost_after > 0 and replace = true will now follow the reschedule block instead of immediately being replaced. [GH-27053]iss parameter is required [GH-27248]BREAKING CHANGES:
SECURITY:
IMPROVEMENTS:
BUG FIXES:
var get command which was incorrectly displaying the variable modify time as the create time [GH-27208]leave_on_terminate or leave_on_interrupt and drain_on_shutdown would receive a permission denied error when attempting to leave the cluster and drain themselves [GH-27115]