Skip to content

Bump github.com/hashicorp/vault from 1.20.0 to 1.21.0#3

Merged
cedws merged 1 commit intomasterfrom
dependabot/go_modules/github.com/hashicorp/vault-1.21.0
Apr 11, 2026
Merged

Bump github.com/hashicorp/vault from 1.20.0 to 1.21.0#3
cedws merged 1 commit intomasterfrom
dependabot/go_modules/github.com/hashicorp/vault-1.21.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 11, 2026
edited
Loading

Bumps github.com/hashicorp/vault from 1.20.0 to 1.21.0.

Release notes

Sourced from github.com/hashicorp/vault's releases.

v1.21.0

No release notes provided.

v1.21.0-rc1

No release notes provided.

v1.20.4

No release notes provided.

v1.20.3

No release notes provided.

v1.20.2

August 06, 2025

SECURITY:

BUG FIXES:

  • agent/template: Fixed issue where templates would not render correctly if namespaces was provided by config, and the namespace and mount path of the secret were the same. [GH-31392]
  • identity/mfa: revert cache entry change from #31217 and document cache entry values [GH-31421]

v1.20.1

No release notes provided.

Changelog

Sourced from github.com/hashicorp/vault's changelog.

1.21.0

October 22, 2025

SECURITY:

  • auth/aws: fix an issue where a user may be able to bypass authentication to Vault due to incorrect caching of the AWS client
  • auth/ldap: fix MFA/TOTP enforcement bypass when username_as_alias is enabled.
  • core: Update github.com/hashicorp/go-getter to fix security vulnerability GHSA-wjrx-6529-hcj3.
  • core: Update github.com/ulikunitz/xz to fix security vulnerability GHSA-25xm-hr59-7c27.
  • ui: disable scarf analytics for ui builds

CHANGES:

  • Secrets Recovery (enterprise): Deprecate the recover_snapshot_id query parameter to pass the snapshot ID for recover operations, in favor of a X-Vault-Recover-Snapshot-Id header. Vault will still accept the query parameter for backward compatibility. Also support setting the HTTP method to RECOVER for recover operations, in addition to POST and PUT.
  • activity: Renamed timestamp in export API response to token_creation_time.
  • auth/alicloud: Update plugin to v0.22.0
  • auth/azure: Update plugin to v0.22.0
  • auth/cf: Update plugin to v0.22.0
  • auth/gcp: Update plugin to v0.22.0
  • auth/jwt: Update plugin to v0.25.0
  • auth/kerberos: Update plugin to v0.16.0
  • auth/kubernetes: Update plugin to v0.23.0
  • auth/oci: Update plugin to v0.20.0
  • auth/saml: Update plugin to v0.7.0
  • core: Updates post-install script to print updated license information
  • database/couchbase: Update plugin to v0.15.0
  • database/elasticsearch: Update plugin to v0.19.0
  • database/mongodbatlas: Update plugin to v0.16.0
  • database/redis-elasticache: Update plugin to v0.8.0
  • database/redis: Update plugin to v0.7.0
  • database/snowflake: Update plugin to v0.15.0
  • http: Add JSON configurable limits to HTTP handling for JSON payloads: max_json_depth, max_json_string_value_length, max_json_object_entry_count, max_json_array_element_count.
  • http: Evaluate rate limit quotas before checking JSON limits during request handling.
  • policies: change list comparison to allowed_parameters and denied_parameters from "exact match" to "contains all"
  • sdk: Upgrade to go-secure-stdlib/plugincontainer@v0.4.2, which also bumps github.com/docker/docker to v28.3.3+incompatible
  • secrets/alicloud: Update plugin to v0.21.0
  • secrets/azure: Update azure enterprise secrets plugin to include static roles.
  • secrets/azure: Update plugin to v0.23.0
  • secrets/gcp: Update plugin to v0.23.0
  • secrets/kubernetes: Update plugin to v0.12.0
  • secrets/kv: Update plugin to v0.25.0
  • secrets/mongodbatlas: Update plugin to v0.16.0
  • secrets/openldap: Update plugin to v0.17.0
  • secrets/terraform: Update plugin to v0.13.0
  • ui/client-counts: removes tabs for each client count type and adds split view for counts per type in overview stacked bar chart
  • ui: Add client count attribution for the full billing period to the client counts overview table
  • ui: Remove namespace context filter for activity in client count dashboard

FEATURES:

... (truncated)

Commits
  • 818ca8b [VAULT-40260] This is an automated pull request to build all artifacts for a ...
  • b5deaa0 Merge remote-tracking branch 'remotes/from/ce/release/1.21.x' into release/1....
  • a20f035 Backport [VAULT-40033] Migrate Slack notifications to ibm-hashicorp workspace...
  • 58e59e6 Backport license: update headers to IBM Corp. into release/1.21.x+ent (#10234...
  • 59a526a Merge remote-tracking branch 'remotes/from/ce/release/1.21.x' into release/1....
  • 1c05b39 pipeline(changed-files): one more small false positive fix (#10247) (#10263) ...
  • 29892ad Merge remote-tracking branch 'remotes/from/ce/release/1.21.x' into release/1....
  • 054c35d fix: cache aws auth client by account id (#9981) (#10111) (#10125)
  • 921938f Merge remote-tracking branch 'remotes/from/ce/release/1.21.x' into release/1....
  • fabb0da Backport Backport pipeline(changed-files): fix false positives for some files...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Apr 11, 2026
@cedws
Copy link
Copy Markdown
Owner

cedws commented Apr 11, 2026

@dependabot rebase

@dependabot
Bump github.com/hashicorp/vault from 1.20.0 to 1.21.0
51d1754 
Bumps [github.com/hashicorp/vault](https://github.com/hashicorp/vault) from 1.20.0 to 1.21.0.
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md)
- [Commits](hashicorp/vault@v1.20.0...v1.21.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault
  dependency-version: 1.21.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/hashicorp/vault-1.21.0 branch from 570f6a8 to 51d1754 Compare April 11, 2026 09:04
@cedws cedws merged commit 00841c1 into master Apr 11, 2026
1 check passed
@cedws cedws deleted the dependabot/go_modules/github.com/hashicorp/vault-1.21.0 branch April 11, 2026 09:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cedws