Istio is an open-source service mesh platform that helps developers connect, secure, and manage microservices-based applications. With features such as traffic management, security policies, and observability tools, Istio simplifies the complexities of microservices architecture, enabling developers to build resilient and scalable applications. Through documentation, tutorials, and community support, Istio provides developers with the tools and resources needed to implement service mesh patterns and improve the reliability and performance of their distributed systems.

Istio

Istio 1.28.4 patch release addresses two CVEs (CVE-2025-61732 with CVSS 8.6 and CVE-2025-68121 with CVSS 4.8) related to Go code parsing and TLS session resumption. The release includes bug fixes for robustness, adds opt-in features for istio-cni in ambient mode to prevent traffic bypassing on node restart, implements namespace-based authorization for debug endpoints, and fixes issues with BackendTLSPolicy status tracking, NodeAffinity handling, and multicluster configuration stability.

Announcing Istio 1.28.4