OpenSearch and OpenSearch Dashboards 2.10.0 Release Notes
OpenSearch 2.10.0 includes a number of new features for search, security, and machine learning applications, as well as user interface improvements and new options for durable data storage. This release also includes new experimental tools to boost search performance and build conversational search applications.
- Remote-backed storage is now generally available, offering a production-ready alternative to snapshots or replica copies for durable data backup.
- Segment replication is now fully integrated with remote-backed storage. This allows users to select remote-backed storage as the source for replication, with the potential to reduce compute resources on ingest.
- New hybrid query functionality and a built-in normalization processor offer a way to improve relevance for search results. Now, you can combine and normalize the relevance scores of lexical queries with natural language-based k-NN vector search queries within OpenSearch.
- You can now define custom log types with Security Analytics and use them as you would other log data to build detectors, create custom rules, provide additional mappings, and more.
- A new visual theme for OpenSearch Dashboards includes changes to typography, colors, and actions for light mode and dark mode designs, providing an updated user experience.
- Updates to the Discover tool in OpenSearch Dashboards include usability improvements designed to make the tool more intuitive and cohesive.
- A new IP2Geo processor accesses location data based on IP addresses using external databases, allowing OpenSearch to enrich data with up-to-date geographical location information.
- With this release, OpenSearch Dashboards is upgraded to version 18 of Node.js, with backward-compatible support for Node.js versions 14 and 16. Users have the flexibility to choose from these versions to run the web application. As a result of this update, the Docker images for OpenSearch and OpenSearch Dashboards now use Amazon Linux 2023 as the base image, changed from Amazon Linux 2.
OpenSearch 2.10.0 includes the following experimental features. Experimental features are disabled by default. For instructions on how to enable them, refer to the documentation for the feature.
- Build conversational search applications with new tools as part of ML Commons, including new APIs that enable conversational search and conversational memory as well as integrations with search pipelines that allow the use of conversational memory and large language models (LLMs) to answer questions.
- Concurrent segment search gives you the option to query index segments in parallel at the shard level. This can deliver improved latency for many types of search queries.
OpenSearch and OpenSearch Dashboards 2.10.0 includes the following features, enhancements, bug fixes, infrastructure, documentation, maintenance and refactoring updates.
OpenSearch Release Notes.
OpenSearch Dashboards Release Notes.
- Add workflowIds field in getAlerts API (#1014)
- Add alertId parameter in get chained alert API and paginate associated alerts if alertId param is mentioned (#1071)
- Chained Alert Behaviour Changes (#1079)
- Common utils to support Microsoft teams in notifications (#428)
- Support list of monitor ids in Chained Monitor Findings (#514)
- Moving ZSTD codec support from OpenSearch core to standalone plugin
custom-codecs
- Allow filtering geo_shape fields around map extent (#452)
- Support dark mode in maps-dashboards(#455)
- Add microsoft teams support (#44)
- Integrations Improve label handling (#936)
- IP2Geo processor implementation (#362)
Add Clear Cache API (#740)Feature was mistakenly added to the release notes, although it was not included in the release.
- Conversations and Generative AI in OpenSearch (#1150)
- Add source field to distinguish local and external model. (#239)
- Support external models in deployed model list. (#248)
- Support external models in model preview panel. (#252)
- Improved Hybrid Search relevancy by Score Normalization and Combination (#241)
- Support SNS FIFO queues(#716)
- Supuport Microsoft teams(#676,#746)
- Support auto upgrade mapping logic(#699)
- Custom log type implementation (#500)
- Add mitre attack based auto-correlations support in correlation engine (#532)
- Using alerting workflows in detectors (#541)
- Added new log type for vpc flow. (#653)
- [Custom log types] Show log types table, Log type creation workflow (#674)
- [Custom log types] CRUD operations for log types. (#675)
- [Custom log types] Support custom log types in detection rule creation and detector creation. (#676)
- Make tags hyperlinks to mitre attack web pages in detection rules. (#692)
- Added CIDR modifier for detection fields. (#693)
- Setting JobSweeper search preference against primary shard (#483) (#485)
- Converts .opendistro-job-scheduler-lock index into a system index (#478)
- Public snapshots on all release branches (#475) (#476)
- Defaults anomaly grade to 0 if negative. (#977)
- Update RCF to v3.8 and Enable Auto AD with 'Alert Once' Option (#979)
- Revert "Enforce DOCUMENT Replication for AD Indices" (#1006)
- Enabled the IVF algorithm to work with Filters of K-NN Query. (#1013)
- Improved the logic to switch to exact search for restrictive filters search for better recall. (#1059)
- Added max distance computation logic to enhance the switch to exact search in filtered Nearest Neighbor Search. (#1066)
- Add feature flags for remote inference (#1223)
- Add eligible node role settings (#1197)
- Add more stats: connector count, connector/config index status (#1180)
- Mitigate styles to oui variables. (#227)
- Changed format for hybrid query results to a single list of scores with delimiter (#259)
- Added validations for score combination weights in Hybrid Search (#265)
- Made hybrid search active by default (#274)
- Add Search Back Pressure Autotune Pipeline #517
- SearchBackPressure Service Node/Cluster RCA #437
- SearchBackPressure Policy/Decider Generic Framework Added #461
- Handle Reader thread termination gracefully #476
- Add .plugins-ml-config to the demo configuration system indices (#2993)
- Add workflow cluster permissions to alerting roles (#2994)
- Include password regex for Dashboardsinfo to display to users (#2999)
- Add geospatial ip2geo to the demo configuration system indices and roles (#3051)
- Make invalid password message clearer (#3057)
- Service Accounts password is randomly generated (#3077)
- Exclude sensitive info from the jackson serialization stacktraces (#3195)
- Prevent raw request body as output in serialization error messages (#3205)
- Command cat/indices will filter results per the Do Not Fail On Forbidden setting (#3236)
- Generate new demo certs with IPv6 loopback added to SAN in node certificate (#3268)
- System index permissions (#2887)
- Security Getting Started page follows Dashboard themes (#1538)
- Security Roles and Audit Log Settings follow Dashboard themes (#1558)
- Support OpenSearch logo theming for light / dark modes (#1568)
- Added support of timestamp/date/time using curly brackets by @matthewryanwells in opensearch-project/sql#1908
- Fix get alerts alertState query filter (#1064)
- Settings are synced before syncing mapping (#994)
- Handled OpenSearchRejectExecuteException, introduced new setting
plugins.replication.follower.concurrent_writers_per_shard. (#1004) - Fixed tests relying on wait_for_active_shards, fixed test for single Node and consume numNodes (#1091)
- Excessive logging avoided during certain exception types such as OpensearchTimeoutException (#1114)
- Trace Analytics Fix trace-groups query and update UI (#514)
- Bump word-wrap from 1.2.3 to 1.2.4 (#99)
- Upgrade tough-cookie and semver (#135)
- Update breadcrumb title of isDashboardNavMenu (#146)
- Bump word-wrap for cve fix (#157)
- Add @cypress/request resolution to fix CVE-2023-28155 (#175)
- Make the generated report use the correct background color (#170)
- Fix debug log for missing ISM config index. (#846)
- Handle NPE in isRollupIndex. (#855)
- Fix for max & min aggregations when no metric property exist. (#870)
- Fix intelliJ IDEA gradle sync error (#916)
- Fix exports is undefined. (#826)
- Update Faiss parameter construction to allow HNSW+PQ to work (#1074)
- Fixing metrics (#1194)
- Fix null pointer exception when input parameter is null. (#1192)
- Fix admin with no backend role on AOS unable to create restricted model group (#1188)
- Fix parameter parsing bug for create connector input (#1185)
- Handle escaping string parameters explicitly (#1174)
- Fix model count bug (#1180)
- Fix core package name to address compilation errors (#1157)
- Fix no model show up when search a model. (#238)
- Migrate style to oui attributes and add fallback dash. (#254)
- Replace dash with em dash. (#255)
- Fix for mappings of custom log types & other bug fixes (#505)
- Fixes detectorType incompatibility with detector rules (#524)
- Prevent raw request body as output in serialization error messages (#3205)
- Prevent flaky behavior when determining if an request will be executed on the current node. (#3066)
- Resolve a class of ConcurrentModificationException from during bulk requests (#3094)
- Fix Document GET with DLS terms query (#3136)
- Send log messages to log4j systems instead of system out / error (#3231)
- Fix roles verification for roles mapping and internal users (#3278)
- Prevent raw request body as output in serialization error messages (#3205)
- Fix permissions issues while reading keys in PKCS#1 format (#3289)
- When following a link that prompts sign in through SAML or Multi-Auth the destination page is not lost (#1557)
- [2.x] bump okhttp to 4.10.0 (#2043) by @joshuali925 in opensearch-project/sql#2044
- Okio upgrade to 3.5.0 by @opensearch-trigger-bot in opensearch-project/sql#1963
- Fixed response codes For Requests With security exception. by @opensearch-trigger-bot in opensearch-project/sql#2029
- Backport breaking changes by @opensearch-trigger-bot in opensearch-project/sql#1920
- [Manual Backport #1943] Fixing string format change #1943 by @MitchellGale in opensearch-project/sql#1946
- Fix CVE by @opensearch-trigger-bot in opensearch-project/sql#1944
- Breaking change OpenSearch main project - Action movement (#1958) by @MitchellGale in opensearch-project/sql#1965
- Update backport CI, add PR merged condition by @ps48 in opensearch-project/sql#1970
- Fixed exception when datasource is updated with existing configuration. by @opensearch-trigger-bot in opensearch-project/sql#2008
- Adds auto release workflow (#1003)
- Upgrading commons-lang3 version to fix conflict issue (#1014)
- Updates demo certs for integ tests (#1021)
- Upgrade AD's bwc baseline version to 1.3.2 to resolve cluster join issue (#1029)
- Remove version dependency in cypress workflow (#554)
- Bumped semver to latest legacy version (#565)
- Cypress workflow improvements (#560)
- Updates demo certs used in rest tests (#341)
- Adding release workflow for the asynchronous search (#330)
- Refactoring changes in main (#328)
- Update backport CI, add PR merged condition (#113)
- Changing anomaly-detection Dependency Back to search-processor (#258)(#259)
- Resolve tough-cookie to 4.1.3 (#271) (#272)
- Remove Cypress dependency (#277)
- Update backport CI, add PR merged condition (#228)
- Update search bar snapshot according to upstream change (#242)
- Make jacoco report to be generated faster in local (#267)
- Exclude lombok generated code from jacoco coverage report (#268)
- Add auto github release workflow. (#691)
- Fixed the publish maven workflow to execute after pushes to release branches. (#837)
- Upgrade the backport workflow. (#862)
- Updates demo certs used in integ tests. (#921)
- Upgrade the backport workflow. (#821)
- Fix core refactor: StreamIO from common to core.common(#707)
- Fix core XcontentFactory refactor(#732)
- Fix actions components after core(#739)
- Add auto release workflow(#731)
- Onboarding system and hidden index(#742)
- Updates demo certs used in integ tests(#756)
- Update backport CI, add PR merged condition in opensearch-project/observability#1587
- Update BWC version to 2.9.0 #529
- Update performance-analyzer-commons library version #537
- Upgrade gRPC protobug to mitigate connection termination issue #471
- Add _primary preference only for segment replication enabled indices by @opensearch-trigger-bot in Https://github.com/opensearch-project/sql/pull/2036
- Revert "Guarantee datasource read api is strong consistent read (#1815)" by @opensearch-trigger-bot in
- [Spotless] Adds new line at end of java files by @opensearch-trigger-bot in opensearch-project/sql#1925
- (#1506) Remove reservedSymbolTable and replace with HIDDEN_FIELD_NAME… by @acarbonetto in opensearch-project/sql#1964
- Added 2.10 release notes (#1117)
- Add 2.10.0 release notes (#707)
- Add 2.10.0 release notes (#353)
- Added 2.10.0.0 release notes (#531)
- 2.10 release notes. (#109)
- Added 2.10 release notes. (#925)
- Added 2.10 release notes. (#864)
- Updating cohere blueprint doc (#1213)
- Fixing docs (#1193)
- Add model auto redeploy tutorial (#1175)
- Add remote inference tutorial (#1158)
- Adding blueprint examples for remote inference (#1155)
- Updating developer guide for CCI contributors (#1049)
- Add 2.10.0 release notes (#755)
- Added 2.10.0 release notes. (#555)
- Fix doctest data by @opensearch-trigger-bot in opensearch-project/sql#1998
- Increment version to 2.10.0-SNAPSHOT. (#1018)
- Exclude < v32 version of google guava dependency from google java format and add google guava 32.0.1 to resolve CVE CVE-2023-2976 (#1094)
- Bump cypress version to ^13.1.0 (#462)
- Bump semver from 5.7.1 to 5.7.2 (#74)
- Fix: CVE of tough-cookie and work-wrap (#79)
- Stabilize cypress test case (#89)
- [AUTO] Increment version to 2.10.0.0 (#96)
- Add auto release workflow (#97)
- Fix: bump @cypress/request to 3.0.0 (#106)
- Remove unused semver version 6.x and 7.x (#108)
- Increment version to 2.10.0.0 (#100)
- Update searchbar snapshots according to upstream changes (#119)
- Increment version to 2.10.0.0 (#152)
- Upgrade tough-cookie to fix CVE-2023-26136 (#198)
- Update word-wrap (#217)
- Update semver (#218)
- Add @cypress/request resolution to fix CVE-2023-28155 (#245)
- Change package for Strings.hasText (#314)
- Fixed compilation errors after refactoring in core foundation classes (#380)
- Version bump for spotlss and apache commons(#400)
- Increment version to 2.10.0-SNAPSHOT. (#852)
- Update packages according to a change in OpenSearch core (#422) (#431)
- Xcontent changes to ODFERestTestCase (#440)
- Update LifecycleListener import (#445)
- Bump slf4j-api to 2.0.7, ospackage to 11.4.0, google-java-format to 1.17.0, guava to 32.1.2-jre and spotless to 6.20.0 (#453)
- Fixing Strings import (#459)
- Bump com.cronutils:cron-utils from 9.2.0 to 9.2.1 (#458)
- React to changes in ActionListener and ActionFuture (#467)
- Bump com.diffplug.spotless from 6.20.0 to 6.21.0 (#484)
- Update Guava Version to 32.0.1 (#1019)
- Bump checkstyle version for CVE fix (#1216)
- Correct imports for new location with regard to core refactoring (#1206)
- Fix breaking change caused by opensearch core (#1187)
- Bump OpenSearch snapshot version to 2.10 (#1157)
- Bump aws-encryption-sdk-java to fix CVE-2023-33201 (#1309)
- [AUTO] Increment version to 2.10.0-SNAPSHOT(#706)
- Address core refactor changes for Task foundation classes and StreamIO #522
- Address xcontent changes in core #526
- Remove usage of deprecated "master" APIs #513
- Update docker-compose.yml #465
- Bump version to 2.10 and resolve compile issues (#521)
- Bumped tough-cookie, and semver versions. (#658)
- Update version of word-wrap (#695)
- Bump @cypress/request to 3.0.0 due to CVE-2023-28155. (#702)
- [Build Break] Update imports for files refactored in core PR #8157 (#3003)
- [Build Break] Fix build after Lucene upgrade and breaking XContentFactory changes (#3069)
- [Build Break] Update CircuitBreakerService and LifecycleComponent after core refactor in #9006 (#3082)
- [Build Break] React to changes in ActionListener and ActionResponse from #9082 (#3153)
- [Build Break] Disable gradlew build cache to ensure most up-to-date dependencies (#3186)
- Bump com.carrotsearch.randomizedtesting:randomizedtesting-runner from 2.7.1 to 2.8.1 (#3109)
- Bump com.diffplug.spotless from 6.19.0 to 6.21.0 (#3108)
- Bump com.fasterxml.woodstox:woodstox-core from 6.4.0 to 6.5.1 (#3148)
- Bump com.github.spotbugs from 5.0.14 to 5.1.3 (#3251)
- Bump com.github.wnameless.json:json-base from 2.4.0 to 2.4.2 (#3062)
- Bump com.github.wnameless.json:json-flattener from 0.16.4 to 0.16.5 (#3296)
- Bump com.google.errorprone:error_prone_annotations from 2.3.4 to 2.20.0 (#3023)
- Bump com.google.guava:guava from 32.1.1-jre to 32.1.2-jre (#3149)
- Bump commons-io:commons-io from 2.11.0 to 2.13.0 (#3074)
- Bump com.netflix.nebula.ospackage from 11.1.0 to 11.3.0 (#3023)
- Bump com.nulab-inc:zxcvbn from 1.7.0 to 1.8.0 (#3023)
- Bump com.unboundid:unboundid-ldapsdk from 4.0.9 to 4.0.14 (#3143)
- Bump io.dropwizard.metrics:metrics-core from 3.1.2 to 4.2.19 (#3073)
- Bump kafka_version from 3.5.0 to 3.5.1 (#3041)
- Bump net.minidev:json-smart from 2.4.11 to 2.5.0 (#3120)
- Bump org.apache.camel:camel-xmlsecurity from 3.14.2 to 3.21.0 (#3023)
- Bump org.apache.santuario:xmlsec from 2.2.3 to 2.3.3 (#3210)
- Bump org.checkerframework:checker-qual from 3.5.0 to 3.36.0 (#3023)
- Bump org.cryptacular:cryptacular from 1.2.4 to 1.2.5 (#3071)
- Bump org.gradle.test-retry from 1.5.2 to 1.5.4 (#3072)
- Bump org.junit.jupiter:junit-jupiter from 5.8.2 to 5.10.0 (#3146)
- Bump org.ow2.asm:asm from 9.1 to 9.5 (#3121)
- Bump org.scala-lang:scala-library from 2.13.9 to 2.13.11 (#3119)
- Bump org.slf4j:slf4j-api from 1.7.30 to 1.7.36 (#3249)
- Bump org.xerial.snappy:snappy-java from 1.1.10.1 to 1.1.10.3 (#3106)
- Bump actions/create-release from 1.0.0 to 1.1.4 (#3141)
- Bump actions/setup-java from 1 to 3 (#3142)
- Bump actions/upload-release-asset from 1.0.1 to 1.0.2 (#3144)
- Bump fernandrone/linelint from 0.0.4 to 0.0.6 (#3211)
- Bump tibdex/github-app-token from 1.5.0 to 1.8.0 (#3147)
- Remove log spam for files that are cleaned up (#3118)
- Updates integTestRemote task to dynamically fetch common-utils version from build.gradle (#3122)
- Switch CodeQL to assemble artifacts using the same build as the rest of CI (#3132)
- Only run the backport job on merged pull requests (#3134)
- Add code coverage exclusions on false positives (#3196)
- Enable jarhell check (#3227)
- Retry code coverage upload on failure (#3242)
- [Refactor] Adopt request builder patterns for SecurityRestApiActions for consistency and clarity (#3123)
- [Refactor] Remove json-path from deps and use JsonPointer instead (#3262)
- Use version of org.apache.commons:commons-lang3 defined in core (#3306)
- Fix checkstyle #3283
- Demo Configuration changes (#3330)
- Force resolution of selenium-webdriver to 4.10.0 (#1541)
- Change the regex command in install dashboard GHA (#1533)
- Update actionGet to SuspendUntil for ClusterMetrics (#1067)
- Resolve compile issues from core changes and update CIs (#1100)
- Refactor due to core updates: Replace and modify classes and methods. (#974)
- Refactor LifecycleComponent package path (#377)
- Refactor Strings utility methods to core library (#379)
- Fix after core #8157. (#886)
- Fix breaking change by core refactor. (#888)
- Handle core breaking change. (#895)
- Set preference to _primary when searching control-center index. (#911)
- Add primary first preference to all search requests. (#912)
- Fix TransportAddress Refactoring Changes in Core (#1020)
- Renaming metrics (#1224)
- Changing messaging for IllegalArgumentException on duplicate model groups (#1294)
- Fixing some error message handeling (#1222)
- Fix from upstream core.action changes in opensearch-project/observability#1590
- Pull jackson,mockito versions from upstream in opensearch-project/observability#1598
- Updates demo certs used in integ tests in opensearch-project/observability#1600
- Fix google-java-format-1.17.0.jar: 1 vulnerabilities (#526)
- Segment replication changes (#529)
- Use core OpenSearch version of commons-lang3 (#535)
- Force google guava to 32.0.1 (#536)
- Updates demo certs used in integ tests (#543)
- UI polish for correlations and custom log types. (#683)
- [Correlations] Update node size and cursor in correlations graph (#687)
- Updates to log types related UX. (#694)
- Applied formatting improvements to Antlr files based on spotless changes (#2017) by @MitchellGale in
- Statically init
typeActionMapinOpenSearchExprValueFactory. by @opensearch-trigger-bot in opensearch-project/sql#1901 - (#1536) Refactor OpenSearchQueryRequest and move includes to builder by @opensearch-trigger-bot in opensearch-project/sql#1948
- [Spotless] Applying Google Code Format for core/src/main files #3 (#1932) by @MitchellGale in opensearch-project/sql#1994
- Developer guide update with Spotless details by @opensearch-trigger-bot in opensearch-project/sql#2004
- [Spotless] Applying Google Code Format for core/src/main files #4 #1933 by @MitchellGale in opensearch-project/sql#1995
- [Spotless] Applying Google Code Format for core/src/main files #2 #1931 by @MitchellGale in opensearch-project/sql#1993
- [Spotless] Applying Google Code Format for core/src/main files #1 #1930 by @MitchellGale in opensearch-project/sql#1992
- [Spotless] Applying Google Code Format for core #5 (#1951) by @MitchellGale in opensearch-project/sql#1996
- [spotless] Removes Checkstyle in favor of spotless by @MitchellGale in opensearch-project/sql#2018
- [Spotless] Entire project running spotless by @MitchellGale in opensearch-project/sql#2016