Centralised Config App Release Notes
The initial installation of ITRS Analytics includes all required app, such as the Web Console, bundled by default. No separate installation steps are required for individual apps. For installation guidance, refer to the Install ITRS Analytics apps documentation.
To stay informed about the most recent updates and packaging versions, you can refer to the ITRS Analytics Packaging Changelog. This resource provides direct links to release notes for each bundled version of the ITRS Analytics Platform and its apps, bill of materials listing all included components, and references to the published Docker images.
Centralised Config 2.4.0 Copied
Released: 5 November 2025
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-231 | Fixed minor icon misalignment issue in the resources table for improved visual consistency. |
Issues fixed Copied
These are the issues we have fixed in this release:
| Issue key | Release description |
|---|---|
| OACC-216 | The geneos-gw client now automatically generates a client secret. |
| OACC-218 | Improved multi-resource upload handling to reupload only failed items, enhancing efficiency and reducing unnecessary retries. |
| OACC-243 | Updated Spring Framework to version 3.5.6 to address a high-severity security vulnerability CVE-2025-41249. |
Centralised Config 2.3.1 Copied
Released: 30 October 2025
Issues fixed Copied
These are the issues we have fixed in this release:
| Issue key | Release description |
|---|---|
| OACC-243 | Updated Spring Framework to version 3.5.6 to address a high-severity security vulnerability CVE-2025-41249. |
Centralised Config 2.3.0 Copied
Released: 9 October 2025
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-217 | The Centralised Config app now supports Linux-x64 Gateway binaries. Support for el9-linux-x64 Gateway binaries has been discontinued, and any existing el9-linux-x64 binaries must be replaced with Linux-x64 versions. |
Issues fixed Copied
These are the issues we have fixed in this release:
| Issue key | Release description |
|---|---|
| OACC-199 | Updated to the latest base image to address the security vulnerability CVE-2024-26130. |
| OACC-200 | Updated to the latest base image to address the security vulnerability CVE-2025-22868. |
| OACC-201 | Updated to the latest base image to address the security vulnerability CVE-2025-7425. |
| OACC-202 | Updated to the latest base image to address the security vulnerability CVE-2025-6965. |
| OACC-203 | Updated to the latest base image to address the security vulnerability BDSA-2025-7426. |
| OACC-215 | Timestamps in the Last Changed On field are now displayed in a human-readable format instead of epoch values. |
Centralised Config 2.2.0 Copied
Released: 15 August 2025
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-176 | Updated the Centralised Config app to automatically restart whenever any of its configuration options are changed through a Helm upgrade. |
| OACC-183 | Updated the Centralised Config App to align with the latest UI framework. |
| OACC-196 | Fixed an issue where uploading an invalid Gateway binary could prevent subsequent uploads of valid binaries from succeeding. |
Known issues Copied
These are the known issues affecting this release:
| Issue key | Known issue description |
|---|---|
| OACC-199 | Fixed in Centralised Config version 2.3.0. The security vulnerability identified as CVE-2024-26130 has been flagged by Black Duck. The |
| OACC-200 | Fixed in Centralised Config version 2.3.0. The security vulnerability identified as CVE-2025-22868 has been flagged by Black Duck. An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing. |
| OACC-201 | Fixed in Centralised Config version 2.3.0. The security vulnerability identified as CVE-2025-7425 has been flagged by Twistlock. A flaw was found in libxslt, where the attribute type, |
| OACC-202 | Fixed in Centralised Config version 2.3.0. The security vulnerability identified as CVE-2025-6965 has been flagged by Twistlock. A vulnerability exists in SQLite versions prior to 3.50.2, where the number of aggregate terms can exceed the number of available columns. This may lead to memory corruption. Upgrading to version 3.50.2 or later is strongly recommended. |
| OACC-203 | Fixed in Centralised Config version 2.3.0. The security vulnerability identified as BDSA-2025-7426 has been flagged by Black Duck. The |
Legacy releases Copied
Centralised Config 2.1.1 Copied
Released: 13 August 2024
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-177 | Upgraded BusyBox to version 1.36.1 to resolve critical CVEs. |
| OACC-178 | Upgraded iam-tools to version 2.6.0 to resolve critical CVEs. |
Centralised Config 2.1.0 Copied
Released: 24 January 2024
Caution
Before upgrading, you must first uninstall all ITRS Analytics apps. Due to a breaking change in a core library (Spring Boot), you need to upgrade all ITRS Analytics apps at the same time. Make sure that you reinstall the latest mutually compatible versions of ITRS Analytics apps. See the ITRS Analytics Compatibility Matrix.
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-162 | Upgraded Spring Boot to version 3.2.1, which resolves the following reported security vulnerability: BDSA-2023-3298 or CVE-2023-46589. |
Centralised Config 2.0.0 Copied
Released: 8 December 2023
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-132 | Upgraded app for compatibility with ITRS Analytics Platform 2.0. |
Issues fixed Copied
These are the issues we have fixed in this release:
| Issue key | Release description |
|---|---|
| OACC-108 | Fixed incorrect order of API definitions in Swagger UI. |
Centralised Config 1.1.0 Copied
Released: 28 June 2023
Caution
Before upgrading to Centralised Config 1.1.0, you must first uninstall all ITRS Analytics apps. Due to Web Platform security changes, you need to upgrade all ITRS Analytics apps at the same time. Make sure that you reinstall the latest mutually compatible versions of ITRS Analytics apps. See the ITRS Analytics Compatibility Matrix.
New features and enhancements Copied
These are the new features and enhancements of this release:
| Issue key | Release description |
|---|---|
| OACC-125 | A security upgrade, migrating from Keycloak Spring Boot Starter to Spring Boot 3.x, has been implemented in the Web Platform. Improved session management also keeps you signed in as long as the browser remains open. |
Issues fixed Copied
These are the issues we have fixed in this release:
| Issue key | Release description |
|---|---|
| OACC-110 | The docker rewrite script has been fixed so it does not generate any errors when trying to rewrite Centralised Config images. |
Centralised Config 1.0.0 Copied
Released: 30 March 2023
Highlights Copied
These are the highlights of this release:
-
ITRS Analytics-centralised Gateways — The Centralised Config app provides an overview of the Gateway resource files stored in ITRS Analytics. See Centralised Config.
The app has the following sections:
- Gateways – displays a list of all centrally configured Gateways.
- Resources – displays a list of all Gateway setup files.
-
Gateway configuration — You can manage Gateway configuration, such as setting permissions, adding resources, and more. Uploading Gateway archives through the command line is also supported. See Gateway Configuration.
-
Gateway setup validation — To validate a full Gateway setup, the deployment runs a Gateway binary. Gateway setup validation can be further tuned. See Performance tuning.
-
Dashboard integration — The status and health of the Centralised Config app can also be tracked in the Dashboards app. See Centralised Config dashboard.
Disclaimer
The information contained in this document is for general information and guidance on our products, services, and other matters. It is only for information purposes and is not intended as advice which should be relied upon. We try to ensure that the content of this document is accurate and up-to-date, but this cannot be guaranteed. Changes may be made to our products, services, and other matters which are not noted or recorded herein. All liability for loss and damage arising from reliance on this document is excluded (except where death or personal injury arises from our negligence or loss or damage arises from any fraud on our part).