Istio is an open-source service mesh platform that helps developers connect, secure, and manage microservices-based applications. With features such as traffic management, security policies, and observability tools, Istio simplifies the complexities of microservices architecture, enabling developers to build resilient and scalable applications. Through documentation, tutorials, and community support, Istio provides developers with the tools and resources needed to implement service mesh patterns and improve the reliability and performance of their distributed systems.

Istio

Istio 1.28.7 is a patch release with bug fixes and a security update. Key changes include support for Gateway API v1.4.1, new feature flags for HBONE connection window sizes, and fixes for waypoint TLS inspector issues, certificate expiration edge cases, and kubelet health probe failures on AWS EKS with branch ENI. A security fix addresses an authorization bypass in AuthorizationPolicy where unescaped regex metacharacters in identity fields (source.principals and source.namespaces) could allow unintended identities to match policies. Additionally, XDS debug endpoints now enforce same-namespace authorization to prevent cross-namespace configuration enumeration.

Announcing Istio 1.28.7