Istio is an open-source service mesh platform that helps developers connect, secure, and manage microservices-based applications. With features such as traffic management, security policies, and observability tools, Istio simplifies the complexities of microservices architecture, enabling developers to build resilient and scalable applications. Through documentation, tutorials, and community support, Istio provides developers with the tools and resources needed to implement service mesh patterns and improve the reliability and performance of their distributed systems.

Istio

Istio 1.29.3 is a patch release addressing bug fixes and a security vulnerability. Key changes include support for Gateway API v1.4.1, new HBONE window size feature flags for ambient mesh, and several fixes: a certificate expiration boundary issue in Istiod, a multicluster secret controller deadlock, kubelet health probe failures on AWS EKS with branch ENI, and a missing field in ztunnel-config output. A notable security fix addresses an authorization bypass in AuthorizationPolicy where unescaped regex metacharacters in SPIFFE identity fields (source.principals and source.namespaces) could allow unintended identities to match policy rules. XDS debug endpoints now enforce same-namespace authorization to prevent cross-namespace configuration enumeration.

Announcing Istio 1.29.3