βοΈ Apache CloudStack β Daily Status Report
Date: June 4, 2026
π Latest Release
Apache CloudStack 4.22.1.0 (LTS) β released May 26, 2026 π
Maintenance update with full release notes, install and upgrade guides available at [docs.cloudstack.apache.org]((docs.cloudstack.apache.org/redacted)
π Recently Merged PRs
| PR |
Title |
Author |
#13320 |
Stop role from auto-changing when user manually selects a role during account creation |
@gp-santos |
#13210 |
Fix snapshot command timeout unit conversion (secondsβms for qemu-img) |
@erikbocks |
#13050 |
FlashArray: fall back to array capacity when pod has no quota |
@genegr |
#13238 |
Docs: note MariaDB support in README |
@robertsilen |
#13078 |
fix(linstor): surface ambiguous template fallbacks and legacy orphan cleanup |
@jmsperu |
#13021 |
Fix validation of CPVM states in multiple zones |
@Tonitzpp |
#12961 |
Refactor Quota balance |
@winterhazel |
π₯ Active PRs to Watch (updated today)
| PR |
Title |
Author |
#13349 |
Optimize DB updates: bulk UPDATE instead of row-level locks |
@sureshanaparti |
#13345 |
Indirect agent connection improvements |
@sureshanaparti |
#13346 |
systemvm: fix VPC VPN issue when network ID > 1000 on Netris |
@weizhouapache |
#13330 |
Fix VM migration with attached ISO |
@hsato03 |
#13032 |
Network Extension: Orchestrate external network devices |
@weizhouapache |
#13074 |
feat(backup): incremental NAS backup support for KVM |
@jmsperu |
#12711 |
Feature: Key Management Service (KMS) |
@vishesh92 |
#12124 |
New Dell EMC ECS Object Storage Plugin |
@mhkadhum |
#13293 |
Add draft project security threat-model document |
@potiuk |
#12321 |
Deal with Storage Manager tech debt |
@DaanHoogland |
π New Issues This Week (June 1β4)
A very active week for issue reporting! Highlights:
π Security Hardening Series
Contributor @davift filed a detailed batch of hardening requests:
#13343 β Block abusers by IP (rate limiting/IP banning)#13342 β Request limits and throttling defaults#13341 β Weak default passwords & DB encryption key#13340 β Per-account/user source CIDR allowlist#13339 β 2FA required before destructive operations#13338 β Email alerts for security-relevant events#13335β#13337 β 2FA configuration improvements
Contributor @YLChen-007 filed several sensitive log exposure vulnerability reports:
#13311 β ApiServlet logs duplicate sensitive query params#13309 β Script.java command sanitization vulnerability#13308 β Plaintext passwords in OVM3 config#13307 β Plaintext VM user-data & SSH keys in logs#13306 β Keystore credentials exposed in logs#13305 β SSL private key exposure#13304 β Auth credentials exposed in system logs#13303 β Credential exposure via param serialization
π Other Notable Issues
#13347 β Persistent routes on Virtual Router lost after reboot#13331 β Blank volume snapshots list (bug)#13329 β Zone wizard: can't re-add host if initial add fails#13328 β No option to delete the SystemVM template#13326 β No option to update the Bucket region#13324 β Missing ErrorinPrepareForMaintenance event#13313 β Show VM name in backup events
π Milestone Progress
4.23.0 (Next Major Release)
- β
Closed: 136 issues/PRs
- π§ Open: 186 issues/PRs
- Keep up the momentum β the pipeline is flowing well! πͺ
β
Actionable Next Steps for Maintainers
- π Security review needed: The large batch of security hardening issues (
#13303β#13343) requires triage β many touch sensitive defaults and log exposure. Consider assigning dedicated security-focused reviewers.
- π Review ready PRs:
#13349 (bulk DB UPDATE optimization), #13345 (agent connection improvements), and #13346 (VPN fix) all need attention.
- πΊοΈ Big features in flight: KMS (
#12711), incremental NAS backup (#13074), Network Extension (#13032), and Dell EMC ECS plugin (#12124) are all actively updated β these deserve review bandwidth.
- π§Ή Tech debt: PR
#12321 (Storage Manager cleanup) has been open a while β worth prioritizing to reduce long-term maintenance cost.
- π Threat model:
#13293 (draft security threat model) is a great initiative β community input and review is encouraged!
Generated automatically on June 4, 2026. Keep building amazing cloud infrastructure! βοΈβ‘
Generated by Repo Status Β· sonnet46 833.2K Β· β·
Add this agentic workflows to your repo
To install this agentic workflow, run
gh aw add githubnext/agentics/workflows/repo-status.md@main
βοΈ Apache CloudStack β Daily Status Report
Date: June 4, 2026
π Latest Release
Apache CloudStack 4.22.1.0 (LTS) β released May 26, 2026 π
Maintenance update with full release notes, install and upgrade guides available at [docs.cloudstack.apache.org]((docs.cloudstack.apache.org/redacted)
π Recently Merged PRs
#13320@gp-santos#13210@erikbocks#13050@genegr#13238@robertsilen#13078@jmsperu#13021@Tonitzpp#12961@winterhazelπ₯ Active PRs to Watch (updated today)
#13349@sureshanaparti#13345@sureshanaparti#13346@weizhouapache#13330@hsato03#13032@weizhouapache#13074@jmsperu#12711@vishesh92#12124@mhkadhum#13293@potiuk#12321@DaanHooglandπ New Issues This Week (June 1β4)
A very active week for issue reporting! Highlights:
π Security Hardening Series
Contributor
@daviftfiled a detailed batch of hardening requests:#13343β Block abusers by IP (rate limiting/IP banning)#13342β Request limits and throttling defaults#13341β Weak default passwords & DB encryption key#13340β Per-account/user source CIDR allowlist#13339β 2FA required before destructive operations#13338β Email alerts for security-relevant events#13335β#13337β 2FA configuration improvementsContributor
@YLChen-007filed several sensitive log exposure vulnerability reports:#13311β ApiServlet logs duplicate sensitive query params#13309β Script.java command sanitization vulnerability#13308β Plaintext passwords in OVM3 config#13307β Plaintext VM user-data & SSH keys in logs#13306β Keystore credentials exposed in logs#13305β SSL private key exposure#13304β Auth credentials exposed in system logs#13303β Credential exposure via param serializationπ Other Notable Issues
#13347β Persistent routes on Virtual Router lost after reboot#13331β Blank volume snapshots list (bug)#13329β Zone wizard: can't re-add host if initial add fails#13328β No option to delete the SystemVM template#13326β No option to update the Bucket region#13324β MissingErrorinPrepareForMaintenanceevent#13313β Show VM name in backup eventsπ Milestone Progress
4.23.0 (Next Major Release)
β Actionable Next Steps for Maintainers
#13303β#13343) requires triage β many touch sensitive defaults and log exposure. Consider assigning dedicated security-focused reviewers.#13349(bulk DB UPDATE optimization),#13345(agent connection improvements), and#13346(VPN fix) all need attention.#12711), incremental NAS backup (#13074), Network Extension (#13032), and Dell EMC ECS plugin (#12124) are all actively updated β these deserve review bandwidth.#12321(Storage Manager cleanup) has been open a while β worth prioritizing to reduce long-term maintenance cost.#13293(draft security threat model) is a great initiative β community input and review is encouraged!Generated automatically on June 4, 2026. Keep building amazing cloud infrastructure! βοΈβ‘
Add this agentic workflows to your repo
To install this agentic workflow, run