NGINX Node Artifact Versions and Changelog¶
This document lists available versions of the NGINX Wallarm Node 6.x in various form factors, helping you track releases and plan upgrades.
All-in-one installer¶
Since version 4.10, installation and upgrading of Wallarm nodes is performed only with all all-in-one installer. Manual upgrade with individual Linux packages is not supported any more.
History of all-in-one installer updates simultaneously applies to it's x86_64 and ARM64 (beta) versions.
How to migrate from DEB/RPM packages
How to migrate from previous all-in-one installer version
6.3.0 (2025-07-08)¶
-
In rules, the separator used in xml_tag values that combine a URI, namespace, and tag name has been changed from
:
to|
-
Internal improvements
6.2.1 (2025-06-23)¶
- Minor internal file structure change
6.2.0 (2025-06-20)¶
-
Optimized stream handling for gRPC traffic
-
Introduced the
wallarm_max_request_stream_message_size
andwallarm_max_request_stream_size
NGINX directives to control the maximum size of a single message payload and an entire stream body, respectively, in gRPC and WebSocket traffic -
Added the
streams
andmessages
parameters to the/wallarm-status
service output to report the number of processed gRPC/WebSocket streams and messages -
Introduced the
wallarm_max_request_body_size
NGINX directive to control the maximum size of an HTTP request body analyzed by the Node -
Added support for SSL/TLS and mTLS between the NGINX-Wallarm module and the postanalytics module when they are installed separately
-
Fixed wstore ports binding: now bound to
127.0.0.1
instead of0.0.0.0
-
Minor bug fixes
6.1.0 (2025-05-09)¶
-
Added support for enumeration mitigation controls
-
Added support for Rate abuse protection mitigation control
-
Bugfix: Attacks originated from allowlisted sources are no longer shown in the Attacks section
-
wstore logs now include
"component": "wstore"
for easier identification
6.0.3 (2025-05-07)¶
-
Added support for Amazon Linux 2
-
Fixed the installation issues with custom NGINX
6.0.2 (2025-04-29)¶
-
Added support for NGINX stable 1.28.0
-
Added support for NGINX mainline 1.27.5
6.0.1 (2025-04-22)¶
- Fixed the CVE-2024-56406, CVE-2025-31115 vulnerabilities
6.0.0 (2025-04-03)¶
- Initial release 6.0, see changelog
Helm chart for Wallarm NGINX Ingress controller¶
6.3.0 (2025-07-08)¶
-
Added the
validation.forbidDangerousAnnotations
chart value to toggle the CEL rule that blocks the dangerousserver-snippet
andconfiguration-snippet
annotationsBy default, it is set to
false
- dangerous annotations are not blocked.Behaviour in Node 6.2.0- unchanged (annotations are blocked by default when
validation.enableCel
istrue
). -
Added support for the
controller.wallarm.postanalytics.serviceAddress
parameter to customize the address and port for incoming wstore connections -
In rules, the separator used in xml_tag values that combine a URI, namespace, and tag name has been changed from
:
to|
-
Internal improvements
6.2.0 (2025-06-20)¶
-
Optimized stream handling for gRPC traffic
-
Introduced the
wallarm_max_request_stream_message_size
andwallarm_max_request_stream_size
NGINX directives to control the maximum size of a single message payload and an entire stream body, respectively, in gRPC and WebSocket traffic -
Added the
streams
andmessages
parameters to the/wallarm-status
service output to report the number of processed gRPC/WebSocket streams and messages -
Introduced the
wallarm_max_request_body_size
NGINX directive to control the maximum size of an HTTP request body analyzed by the Node -
Added support for SSL/TLS and mTLS between the Filtering Node and the postanalytics module
-
Split the unified
controller.wallarm.wcli
component invalues.yaml
into 2 separately configurable units:wcliController
andwcliPostanalytics
, allowing fine-grained control over containers -
Minor bug fixes
6.1.0 (2025-05-09)¶
-
Bugfix: Attacks originated from allowlisted sources are no longer shown in the Attacks section
-
wstore logs now include
"component": "wstore"
for easier identification
6.0.2 (2025-04-25)¶
- Added the
validation.enableCel
parameter to enable validation of Ingress resources via Validating Admission Policies
6.0.1 (2025-04-22)¶
- Fixed the CVE-2025-22871 vulnerability
6.0.0 (2025-04-03)¶
- Initial release 6.0, see changelog
Helm chart for Sidecar¶
6.3.0 (2025-07-08)¶
-
Added support for the
postanalytics.wstore.config.serviceAddress
parameter to customize the address and port for incoming wstore connections -
In rules, the separator used in xml_tag values that combine a URI, namespace, and tag name has been changed from
:
to|
-
Internal improvements
6.2.0 (2025-06-20)¶
-
Optimized stream handling for gRPC traffic
-
Added support for SSL/TLS and mTLS between the Filtering Node and the postanalytics module
-
Bump Alpine version to 3.22
-
Upgrade NGINX to version 1.28.0
-
Minor bug fixes
6.1.0 (2025-05-09)¶
-
Bugfix: Attacks originated from allowlisted sources are no longer shown in the Attacks section
-
wstore logs now include
"component": "wstore"
for easier identification
6.0.1 (2025-04-22)¶
- Fixed the CVE-2024-56406, CVE-2025-31115 vulnerabilities
6.0.0 (2025-04-03)¶
- Initial release 6.0, see changelog
NGINX-based Docker image¶
6.3.0 (2025-07-08)¶
-
In rules, the separator used in xml_tag values that combine a URI, namespace, and tag name has been changed from
:
to|
-
Internal improvements
6.2.0 (2025-06-20)¶
-
Optimized stream handling for gRPC traffic
-
Added the
streams
andmessages
parameters to the/wallarm-status
service output to report the number of processed gRPC/WebSocket streams and messages -
Added support for SSL/TLS and mTLS between the NGINX-Wallarm module and the postanalytics module when they are installed separately
-
Fixed wstore ports binding: now bound to
127.0.0.1
instead of0.0.0.0
-
Bump Alpine version to 3.22
-
Upgrade NGINX to version 1.28.0
-
Minor bug fixes
6.1.0 (2025-05-09)¶
-
Bugfix: Attacks originated from allowlisted sources are no longer shown in the Attacks section
-
wstore logs now include
"component": "wstore"
for easier identification
6.0.1 (2025-04-22)¶
- Fixed the CVE-2024-56406, CVE-2025-31115 vulnerabilities
6.0.0 (2025-04-03)¶
- Initial release 6.0, see changelog
Amazon Machine Image (AMI)¶
6.3.0 (2025-07-08)¶
-
In rules, the separator used in xml_tag values that combine a URI, namespace, and tag name has been changed from
:
to|
-
Internal improvements
6.2.0 (2025-06-20)¶
-
Optimized stream handling for gRPC traffic
-
Added the
streams
andmessages
parameters to the/wallarm-status
service output to report the number of processed gRPC/WebSocket streams and messages -
Added support for SSL/TLS and mTLS between the NGINX-Wallarm module and the postanalytics module when they are installed separately
-
Fixed wstore ports binding: now bound to
127.0.0.1
instead of0.0.0.0
-
Minor bug fixes
6.1.0 (2025-05-09)¶
-
Bugfix: Attacks originated from allowlisted sources are no longer shown in the Attacks section
-
wstore logs now include
"component": "wstore"
for easier identification
6.0.1 (2025-04-22)¶
- Fixed the CVE-2024-56406, CVE-2025-31115 vulnerabilities
6.0.0 (2025-04-03)¶
- Initial release 6.0, see changelog
Google Cloud Platform Image¶
wallarm-node-6-3-0-20250708-175541 (2025-07-08)¶
-
In rules, the separator used in xml_tag values that combine a URI, namespace, and tag name has been changed from
:
to|
-
Internal improvements
wallarm-node-6-2-0-20250618-150224 (2025-06-20)¶
-
Optimized stream handling for gRPC traffic
-
Added the
streams
andmessages
parameters to the/wallarm-status
service output to report the number of processed gRPC/WebSocket streams and messages -
Added support for SSL/TLS and mTLS between the NGINX-Wallarm module and the postanalytics module when they are installed separately
-
Fixed wstore ports binding: now bound to
127.0.0.1
instead of0.0.0.0
-
Minor bug fixes
wallarm-node-6-1-0-20250508-144827 (2025-05-09)¶
-
Bugfix: Attacks originated from allowlisted sources are no longer shown in the Attacks section
-
wstore logs now include
"component": "wstore"
for easier identification
wallarm-node-6-0-1-20250422-104749 (2025-04-22)¶
- Fixed the CVE-2024-56406, CVE-2025-31115 vulnerabilities
wallarm-node-6-0-0-20250403-102125 (2025-04-03)¶
- Initial release 6.0, see changelog