Skip to content

chore(docs): update of OEL images#2540

Merged
adamwalach merged 3 commits into
masterfrom
oel-version-update
May 15, 2026
Merged

chore(docs): update of OEL images#2540
adamwalach merged 3 commits into
masterfrom
oel-version-update

Conversation

@ory-bot
Copy link
Copy Markdown
Collaborator

@ory-bot ory-bot commented May 4, 2026
edited by coderabbitai Bot
Loading

Update OEL images

Summary by CodeRabbit

  • Documentation

    • Added v26.2.9 changelog entries across self-hosted products summarizing security fixes and dependency patches
    • Updated self-hosted image tag tables with the 26.2.9 (and recent 26.2.10/26.2.11 where applicable) release dates

  • Bug Fixes

    • Kratos: Hardened identity-schema loading (limits, safer refs, regex validation), improved schema HTTP fetching and cache size limits to mitigate security risks

Review Change Stack

@ory-bot ory-bot self-assigned this May 4, 2026
@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented May 4, 2026
edited
Loading

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro Plus

Run ID: b2144f5a-eeb2-4b32-891f-8cda2a402393

📥 Commits

Reviewing files that changed from the base of the PR and between d8faaa9 and 6087070.

📒 Files selected for processing (15)
  • docs/self-hosted/oel/keto/changelog/v26.2.10.md
  • docs/self-hosted/oel/keto/changelog/v26.2.11.md
  • docs/self-hosted/oel/kratos/changelog/v26.2.10.md
  • docs/self-hosted/oel/kratos/changelog/v26.2.11.md
  • docs/self-hosted/oel/oathkeeper/changelog/v26.2.10.md
  • docs/self-hosted/oel/oathkeeper/changelog/v26.2.11.md
  • docs/self-hosted/oel/oauth2/changelog/v26.2.10.md
  • docs/self-hosted/oel/oauth2/changelog/v26.2.11.md
  • docs/self-hosted/oel/oel-hydra-image-tags.md
  • docs/self-hosted/oel/oel-keto-image-tags.md
  • docs/self-hosted/oel/oel-kratos-image-tags.md
  • docs/self-hosted/oel/oel-oathkeeper-image-tags.md
  • docs/self-hosted/oel/oel-polis-image-tags.md
  • docs/self-hosted/oel/polis/changelog/v26.2.10.md
  • docs/self-hosted/oel/polis/changelog/v26.2.11.md
✅ Files skipped from review due to trivial changes (13)
  • docs/self-hosted/oel/keto/changelog/v26.2.11.md
  • docs/self-hosted/oel/polis/changelog/v26.2.11.md
  • docs/self-hosted/oel/oel-oathkeeper-image-tags.md
  • docs/self-hosted/oel/polis/changelog/v26.2.10.md
  • docs/self-hosted/oel/oauth2/changelog/v26.2.11.md
  • docs/self-hosted/oel/oauth2/changelog/v26.2.10.md
  • docs/self-hosted/oel/oathkeeper/changelog/v26.2.10.md
  • docs/self-hosted/oel/oathkeeper/changelog/v26.2.11.md
  • docs/self-hosted/oel/kratos/changelog/v26.2.11.md
  • docs/self-hosted/oel/keto/changelog/v26.2.10.md
  • docs/self-hosted/oel/kratos/changelog/v26.2.10.md
  • docs/self-hosted/oel/oel-keto-image-tags.md
  • docs/self-hosted/oel/oel-kratos-image-tags.md
🚧 Files skipped from review as they are similar to previous changes (1)
  • docs/self-hosted/oel/oel-hydra-image-tags.md
📝 Walkthrough

Walkthrough

This PR adds v26.2.9 changelog entries (security dependency patches and Kratos identity-schema hardening), inserts new image-tag rows for v26.2.9 (and related tags), and adds “no changelog entries found” notices for v26.2.10/v26.2.11 across self-hosted OEL docs.

Changes

v26.2.9 Release Documentation

Layer / File(s) Summary
Changelog Entries: Core Security Updates
docs/self-hosted/oel/keto/changelog/v26.2.9.md, docs/self-hosted/oel/oathkeeper/changelog/v26.2.9.md, docs/self-hosted/oel/oauth2/changelog/v26.2.9.md, docs/self-hosted/oel/polis/changelog/v26.2.9.md		 Each product receives a v26.2.9 changelog entry documenting security patch dependency bumps (pgx, moby/spdystream, otel, postcss, uuid, @xmldom/xmldom, axios, and NestJS-related libraries).
Changelog Entry: Product-Specific Hardening
docs/self-hosted/oel/kratos/changelog/v26.2.9.md		 Kratos v26.2.9 entry additionally documents identity-schema loading hardening: structural limits (body size, nesting depth, key count, array elements, node count), rejection of root-resolving $ref pointers, regex pattern validation, default SSRF-guarded HTTP client, and 1 MiB cache response cap.
No-entry Notices: v26.2.10 / v26.2.11
docs/self-hosted/oel/keto/changelog/*, docs/self-hosted/oel/kratos/changelog/*, docs/self-hosted/oel/oathkeeper/changelog/*, docs/self-hosted/oel/oauth2/changelog/*, docs/self-hosted/oel/polis/changelog/*		 Added single-line notices stating no changelog entries were found for v26.2.10 and v26.2.11 where applicable.
Image Tag Table Updates
docs/self-hosted/oel/oel-hydra-image-tags.md, docs/self-hosted/oel/oel-keto-image-tags.md, docs/self-hosted/oel/oel-kratos-image-tags.md, docs/self-hosted/oel/oel-oathkeeper-image-tags.md, docs/self-hosted/oel/oel-polis-image-tags.md		 Image tag reference tables updated to prepend/insert new rows for v26.2.9 (and additional recent tags for kratos/polis) with corresponding release dates.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Suggested reviewers

  • vinckr
  • aeneasr
  • unatasha8
  • adamwalach

Poem

🐰 A patch so fine, dependencies aligned,
Schemas guarded, bad refs confined,
Image tags prepended, dates in view,
v26.2.9 lands tidy and true,
Hoppin' on updates — hooray for the crew!

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name Status Explanation Resolution
Description check ❓ Inconclusive The description 'Update OEL images' is vague and generic, providing no meaningful details about what was changed, why, or which versions were updated. Expand the description to explain the specific versions added (26.2.9, 26.2.10, 26.2.11), the types of changes (security patches, bug fixes, feature additions), and link any related issues or design documents.
✅ Passed checks (4 passed)
Check name Status Explanation
Title check ✅ Passed The title 'chore(docs): update of OEL images' directly and concisely describes the main change—updating documentation for OEL image versions across multiple changelog and tag files.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch oel-version-update

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@adamwalach adamwalach merged commit 3c51e51 into master May 15, 2026
11 checks passed
@adamwalach adamwalach deleted the oel-version-update branch May 15, 2026 11:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@deepakprabhakara deepakprabhakara deepakprabhakara approved these changes

@adamwalach adamwalach adamwalach approved these changes

@vinckr vinckr Awaiting requested review from vinckr vinckr is a code owner

@aeneasr aeneasr Awaiting requested review from aeneasr aeneasr is a code owner

@unatasha8 unatasha8 Awaiting requested review from unatasha8 unatasha8 is a code owner

Assignees

@ory-bot ory-bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ory-bot @deepakprabhakara @adamwalach