Native Node Artifact Versions and Changelog¶

This document lists available versions of the Native Wallarm Node 0.14.x in various form factors, helping you track releases and plan upgrades.

All-in-one installer¶

The all-in-one installer for the Native Node is used for TCP traffic mirror analysis and self-hosted node deployment with the MuleSoft, CloudFront, Cloudflare, Istio, Broadcom Layer7 API Gateway, Fastly, IBM API Connect connectors.

History of all-in-one installer updates simultaneously applies to it's x86_64 and ARM64 (beta) versions.

Added support for enumeration mitigation controls
Added support for Rate abuse protection mitigation control
Added support for the IBM API Connect connector
Fixed the CVE-2024-56406, CVE-2025-31115 vulnerabilities
Added support for external health check endpoint in the connector-server mode

This is controlled by the new connector.external_health_check configuration section.
Fixed a recurring intermittent bug that could cause occasional corruption of request and response bodies
The following fixes and updates were made in tcp-capture mode:
- GoReplay is now built with Go 1.24
- Fixed: go-node process no longer hangs when the goreplay process crashes
- Fixed a crash caused by a slice out-of-bounds error during header parsing in GoReplay
- Fixed incorrect display of Native Node versions in Wallarm Console → Nodes

Wallarm Node now uses wstore, a Wallarm-developed service, instead of Tarantool for local postanalytics processing
The collectd service, previously installed on all filtering nodes, has been removed along with its related plugins

Metrics are now collected and sent using Wallarm's built-in mechanisms, reducing dependencies on external tools.

The Helm chart for the Native Node is used for self-hosted node deployments with the MuleSoft, CloudFront, Cloudflare, Broadcom Layer7 API Gateway, Fastly, IBM API Connect, Kong API Gateway, and Istio connectors.

Added support for the IBM API Connect connector
Fixed the CVE-2025-22871 vulnerability
Fixed handling of clusterIP: None in Helm chart headless service
Fixed a recurring intermittent bug that could cause occasional corruption of request and response bodies
Fixed incorrect display of Native Node versions in Wallarm Console → Nodes

Wallarm Node now uses wstore, a Wallarm-developed service, instead of Tarantool for local postanalytics processing
All tarantool references in values.yaml (including container names and parameter keys) have been renamed to wstore

If you override these parameters in your configuration, update their names accordingly.
The collectd service, previously installed on all filtering nodes, has been removed along with its related plugins

Metrics are now collected and sent using Wallarm's built-in mechanisms, reducing dependencies on external tools.
Renamed the container label to type in all Prometheus metrics matching *_container_* to prevent conflicts with Kubernetes system labels

The Docker image for the Native Node is used for self-hosted node deployment with the MuleSoft, CloudFront, Cloudflare, Istio, Broadcom Layer7 API Gateway, Fastly, IBM API Connect connectors.

Added support for the IBM API Connect connector
Fixed the CVE-2025-22871 vulnerability
Added support for external health check endpoint

This is controlled by the new connector.external_health_check configuration section.
Fixed a recurring intermittent bug that could cause occasional corruption of request and response bodies
Fixed incorrect display of Native Node versions in Wallarm Console → Nodes

Wallarm Node now uses wstore, a Wallarm-developed service, instead of Tarantool for local postanalytics processing
The collectd service, previously installed on all filtering nodes, has been removed along with its related plugins

Metrics are now collected and sent using Wallarm's built-in mechanisms, reducing dependencies on external tools.