Skip to main content

Release notes

1.4.0 | Jan 20, 2026

Enhancements

  • Added a new replicator.enabled flag to the Helm chart: You can now enable or disable the replicator feature via configuration.
  • Added Docker Colima support: For local development.

1.3.0 | Jan 07, 2026

Enhancements

  • Added support for system event types: You can now track and audit system-level events.
  • Added support for Redis Sentinel: You can now deploy Redis in a high-availability configuration.
  • Added support for Redis authentication: You can now secure Redis connections using authentication credentials.

1.2.0 | Nov 06, 2025

New features

  • Configurable workspace behavior: You can now manually set the workspace associated with an event rather than relying only on defaults.

Enhancements

  • Improved defaults and permissions: Default value descriptions have been clarified, and required S3 permissions have been updated.

1.1.0 | Oct 10, 2025

New features

  • Expanded audit event coverage: Audit Trail now collects both user and admin Keycloak events.
  • Event replication to S3: You can now replicate audit events to S3-compatible storage.
  • gRPC load balancing support: The gRPC and HTTP services have been separated, with added support for gRPC load balancing.

Enhancements

  • Improved event metadata: Audit events now include a login_principal, derived from the user ID and fetched via the Authz user server.
  • Read-only SEARCH events: The SEARCH event type has been updated to be read-only.
  • Configurable replication behavior: Event replication has been enhanced with configurable delays, buffering, query limits, and support for replication by time range or batch size.

Availability and reliability

  • Leader election added for collectors and replicators.
  • Buffered replication to handle high event volumes.
  • Persisted replication progress to prevent duplicate processing.
  • Redis OOM prevention and stability improvements.

Improved documentation

  • Initial Audit Trail documentation and design overview.
  • Python client documentation.
  • Improved GitHub Pages content and fixes.
  • New examples for cloud and local development.

Other improvements

  • Health checks added for improved observability.
  • Loki integration enhanced and optional MinIO-backed S3 storage supported.
  • Improved logging, IP format validation, and Keycloak pagination handling.
  • Dependency updates and Helm chart fixes.

1.0.1 | Aug 05, 2025

Enhancements

  • Audit Search events now captured: Audit Trail now submits SEARCH events to the audit trail, improving visibility into query activity.
  • Improved stability for Authz events: Fixed an issue that could cause an infinite loop when processing Authz-related events.

IP address handling

  • IP addresses are now validated and masked before storage.
  • Private IP ranges are stored as "private" to improve privacy and consistency.
  • Added safeguards and test coverage for IP address validation.

Event processing and limits

  • Search event handling now respects Loki's MaxEntriesLimitPerQuery.
  • Improved batching and JSON encoding/decoding for audit events.
  • Configurable Redis event ID expiration to prevent unnecessary growth.

Service behavior

  • Disabled gRPC Gateway event creation where not required.
  • Removed unnecessary write access to Authz.
  • Ensured full resource names are consistently used in audit records.

Other improvements

  • Improved handling and reporting of audit events during search.
  • Dependency and version updates.
  • General fixes and internal refinements.

1.0.0 | Jul 16, 2025

Initial Release

H2O.ai Audit Trail is now available.

New features

Audit event collection and querying:

  • Capture and store audit events generated by platform services.
  • Query events with pagination support for efficient navigation of large datasets.

Flexible filtering:

  • Filter audit events by action to quickly narrow down relevant activity.
  • Validate filters during pagination to ensure consistent and reliable results.

Enhancements

  • Refactored pagination logic and re-enabled automated tests.
  • Improved handling of pointer overrides and internal references.
Feedback