The Kroxylicious project is very pleased to announce the release of Kroxylicious 0.10.0. See the Changelog for a list of changes and summary of Deprecations, Changes and Removals.
This release introduces initial support for using Fortanix Data Security Manager as a Key Management System provider within the Kroxylicious Record Encryption filter (#1672).
Fortanix and Data Security Manager are trademarks of Fortanix, Inc.
We’ve introduced some changes in this release to Encryption DEK invalidation logic to improve coordination between threads (#1643), and added the ability to restrict which TLS protocols/cipher suites are available for Kafka connections (upstream and downstream) as well as the TLS connections made to KMS providers (#1743.
This release introduces the advertisedBrokerAddressPattern property for Server Name Indication (SNI) routing proxy configurations, allowing greater customisation for proxies using SNI (#1761).
We would like to thank Alan Robinson for his contributions to this release.
Please let us know, through Slack, GitHub or even bsky), if you find the project interesting or helpful and especially if you have deployed it in production.