Skip to content

Releases: newrelic/newrelic-java-agent

Version 8.14.0

19 Aug 16:38
@jasonjkeller jasonjkeller
v8.14.0
d35ffd6
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.14.0 Latest
Latest

New features and improvements

Fixes

Deprecations

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

IAST

Full Changelog: v8.13.0...v8.14.0

Contributors

jasonjkeller, jtduffy, and 4 other contributors
Assets 2
Loading

Version 8.13.0

08 Jul 18:22
@kanderson250 kanderson250
v8.13.0
6bb98c4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.13.0

New features and improvements

  • Add attributes to AWS SQS spans that allow linking to SQS entities 1954
  • Add support for Graphql 22.0+ 1912
  • Add support for JSP v4 1951
  • Add instrumentation for HikariCP 2.4.0 to replace existing extension module.1964
    • Note: If the New Relic HikariCP incubator module is currently in use, delete it from the new relic jar’s extension folder before upgrading to this version of the Java Agent.
  • Enhance CompletableFuture instrumentation for JDK11+ 1908
  • Enable RUM script injection via JSP v3 Tag library 1943
  • Fetch the docker container ID for ECS Fargate instances 1952

Fixes

  • Fix R2dbc postgresql 0.9.2 instrumentation to prevent memory leaks 1916
  • Update vertx-web instrumentation to start transactions for HTTP/2 requests 1959
  • Update JFR Instance Naming to display correct number of JVMs 1928
  • Close instrumentation gap for akka-http 10.2.0+ 1955
  • Start transactions in the Jetty12 core server 1950
  • Clean up dtTracers and externalTracers after exceptions to prevent memory leaks 1902
  • Add security-related class excludes during normal class transformer creation 1918
  • Add null checks to vertx 4.5.1 instrumentation 1927

IAST

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

Full Changelog: v8.12.0...v8.13.0

Assets 2
Loading

Version 8.12.0

20 May 23:58
@deleonenriqueta deleonenriqueta
v8.12.0
c20f632
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.12.0

New features and improvements

  • Add support for Java 22 1819
  • Add AI Monitoring support for AWS SDK for Java v2 Bedrock Runtime Client versions 2.20.157 and above 1837
  • Enhance log forwarding to include "caused by" section 1857
  • Add support for Pekko Http #1850
  • Add local decorating for Log4j 2 users utilizing JsonTemplateLayout 1866
  • Performance improvements on SQL checks 1887

Fixes

  • Resolve various thread hopping issues with Spring Reactor call chains 1883
  • Refactor the daily logfile rolling job to support all platforms 1888
  • Fix Ning memory leak 1903

IAST

Update Security Agent to Public Release version 1.3.0 1896

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

  • The following instrumentation modules are deprecated and will be removed in the next major release:

    • aws-wrap-0.7.0
    • java.completable-future-jdk8
    • play-2.3
    • spring-3.0.0
    • netty-3.4
    • Struts v1

Full Changelog: v8.11.0...v8.12.0

Assets 2
Loading

Version 8.11.1

23 Apr 15:00
@jbedell-newrelic jbedell-newrelic
v8.11.1
8e1be1f
Compare
Choose a tag to compare
Version 8.11.1

Features

  • Update Security Agent to Public Release version 1.2.1

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

IAST

Full Changelog: v8.11.0...v8.11.1

Assets 2
Loading

Version 8.11.0

09 Apr 15:29
@obenkenobi obenkenobi
v8.11.0
8e37e44
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.11.0

New features and improvements

  • Add HTTP/2 support for Netty 4.1.16.Final + 1815

  • Support external calls inside Spring Reactor call chains 1828

  • Support for Apache Pekko (i.e. the pekko-actor library). Support for Pekko HTTP coming soon. 1811

  • Add configuration to allow the OTel SDK integration to be completely disabled 1821

    Configuration via yaml:

    opentelemetry:
  sdk: 
    autoconfigure:
      enabled: false

    Configuration via system property:

      -Dnewrelic.config.opentelemetry.sdk.autoconfigure.enabled=false

  • Treat OpenTelemetry @WithSpan annotation as @Trace in the Java Agent API 1841

Fixes

  • Fix high CPU usage with HttpURLConnection by reverting InboundWrapper changes introduced in 8.10.0 1840
  • Prevent duplicate HTTP external calls when using the DynamoDB SDK 1827

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

IAST

Changes

  • Json Version bump to 1.2.0 207
  • IAST replay header decryption due to Security Findings 207

Fixes

  • Fix issue related to the instrumentation of the Rhino JavaScript Engine that occurred while reading the script 211

Full Changelog: v8.10.0...v8.11.0

Assets 2
Loading

Version 8.10.0

25 Mar 22:36
@meiao meiao
v8.10.0
d8be190
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.10.0

⚠️ CAUTION
This agent version introduced a bug that may cause significant increases in CPU and memory usage and potential deadlock if your application uses HttpUrlConnection (or any libraries that use it under the hood). This issue has been resolved in the 8.11.0 agent. Alternatively, disabling the HttpUrlConnection instrumentation would prevent the issue
(for example -Dnewrelic.config.class_transformer.com.newrelic.instrumentation.httpurlconnection.enabled=false).

PLEASE NOTE: Disabling this instrumentation will result in external calls made by the client no longer getting recorded. We strongly recommend using the latest agent versions, which include all recent code fixes and provide access to the latest platform features.

New features and improvements

  • Support for Spring Webflux 6.1.x 1761
  • Support for Spring Batch v4.0+ 1792
  • Scala 3 API 1772
  • Zio 1 instrumentation improvements 1739
  • Support for Zio 2 1778
  • Enhanced clustered Solr JMX metrics 1812
  • Add transaction GUID to Errors 1813

Fixes

  • Prevent NullPointerException when setting the user id outside of a transaction 1762
  • Disallow Real Time Profiling when High Security Mode is enabled 1764
  • Prevent ClassCircularityErrors in some specific circumstances 1763
  • Properly removing files when log_daily is enabled 1754
  • Decreased memory held by the agent when HTTP calls are made 1775
  • Prevent duplicate DT headers for gRPC 1783
  • Properly updating how many log messages are sent after configuration change 1784
  • Prevent exceptions when reading lambda bytecode 1794
  • Reduce interval for JDBC caches 1809

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

IAST

Changes

  • Ning Async HTTP client Support: The security agent now also supports com.ning:async-http-client 1.0.0 and above 152, 118, 116
  • Jersey Support: The security agent now also supports Jersey 2.0 and above 150, 149
  • Mule Support: The security agent now also supports Mule server version 3.6 to 3.9.x 144, 143
  • Jetty v12 Support: The security agent now also support Jetty version 12 and above 106
  • Lettuce Support: The security agent now also supports Lettuce 4.4.0.Final and above 125

Fixes

  • Extract Server Configuration to resolve IAST localhost connection with application for Wildfly server 192
  • Trustboundary events now will have list of string as parameter schema

Full Changelog: v8.9.1...v8.10.0

Assets 2
Loading

Version 8.9.1

06 Feb 14:51
@jtduffy jtduffy
v8.9.1
01e9074
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.9.1

Fixes

  • Check HttpHost instance for null prior to dereferencing it when certain execute() methods are called 1722
  • Do an instanceof check in the complete() method prior to class cast 1719
  • Null check on the response object prior to trying to report an external call 1719

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

Full Changelog: v8.9.0...v8.9.1

Assets 2
Loading

Version 8.9.0

30 Jan 17:17
@jasonjkeller jasonjkeller
v8.9.0
a16c459
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.9.0

New features and improvements

  • Instrumentation for Spring Webclient 5/6 now captures http status code and http status message 1658
  • Add status code to grpc-1.40.0 client instrumentation 1673
  • Add config to set the size limit of attributes on custom events (i.e. newrelic.config.custom_insights_events.max_attribute_value). Default size is 255 characters and the max is 4095. 1683
  • Add Spring instrumentation modules to support proper transaction naming (route + HTTP method) of traditional annotated spring controllers as well as controllers that inherit annotations from interfaces, super classes or custom annotations. Note that because the new instrumentation can change transaction names, enabling this "enhanced transaction naming" is gated by the newrelic.config.class_transformer.enhanced_spring_transaction_naming agent configuration option, which is false by default. Thanks to @mgr32 for their help with validating the naming changes. 1675
  • Add instrumentation for Vert.x 4.5.x web client and futures 1704

Fixes

  • Remove erroneous printing of stack trace in SlowTransactionManager 1684
  • Convert the ProcessPointCut over to a weaver instrumentation module to better handle cases where it is used in a multi-threaded environment. 1685

Removals

  • Remove support for setting agent config with rarely used lower-case, dotted environment variable names (e.g. newrelic.config.labels). Customers relying on lower-case, dotted environment variables should switch to the standard upper-case, underscore names (e.g. NEW_RELIC_CONFIG_LABELS). There are no changes to documented system property behavior (via newrelic.config., server-side config, YAML, or standard environment variable (via NEW_RELIC_). 1598

Deprecations

  • The browser footer injection APIs have been deprecated and will be removed in a future agent release. The header injection API now adds both the header and footer scripts. 1679

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

IAST

Full Changelog: v8.8.0...v8.9.0

Contributors

mgr32
Assets 2
Loading

Version 8.8.1

18 Jan 17:45
@kanderson250 kanderson250
v8.8.1
c8906a9
Compare
Choose a tag to compare
Version 8.8.1

Fixes

  • Fixed a NullPointerException when working with Synthetics headers 1690

Deprecations

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

Full Changelog: v8.8.0...8.8.1

Assets 2
Loading

Version 8.8.0

19 Dec 19:19
@deleonenriqueta deleonenriqueta
v8.8.0
de83f4c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 8.8.0

New features and improvements

  • Add support for Jetty 12, including Jetty’s implementation of the Jakarta EE 8, 9, and 10 specs. 1621

  • Add support for Vert.x versions 4.0.0 through 4.4.x 1588

  • Add instrumentation for graphql-java 21 1454

  • Instrument r2dbc-postgresql 0.9.2 till latest 1413

  • Reintroduce the legacy HTTP Attributes that were removed in v8.0.0 to support customers with alerts and dashboards that require them 1671
    The attributes are:

    • httpResponseCode
    • httpResponseMessage
    • response.status
    • response.statusMessage

    Attribute reporting is configurable via the following means.

    YAML:

    attributes:
  http_attribute_mode: both

    System property:

    -Dnewrelic.config.attributes.http_attribute_mode=both

    Environment variable:

    NEW_RELIC_ATTRIBUTES_HTTP_ATTRIBUTE=both

    The configuration options are:

    • standard : The agent will send new standard attributes. This configuration is recommended but requires that any alerts or dashboards using attributes be updated to use these new attributes. This setting will reduce the amount of ingest used for attribute reporting.
    • legacy : The agent will send the legacy attributes referenced above. Customers with alerts or dashboard requiring these attributes can continue to be used as-is. This setting will reduce the amount of ingest used for attribute reporting.
    • both : This is the default configuration, the agent will send BOTH legacy AND standard HTTP attributes. This configuration was intended to support customers that are unable to modify their alerts or dashboards but this configuration will increase data ingest.

  • Add an interface for our error API. Our error API can now be called via the code NewRelic.getAgent().getErrorApi() 1577

  • Add log4j2 JsonLayout support and support log4j2 till latest. 1545

  • Add httpstatus in the external segment for Spring Webclient 1610

  • Enable slow transaction detection by default and bump the threshold to 10 minutes 1629

  • Add support for string formatting with JBoss Logging. 1650

  • Add logic to remove specific classes from being excluded from being weaved if the IAST security feature is enabled. 1453

    The affected classes belong in the following formats:

    • ^java/security/.*
    • ^javax/crypto/.* These are crypto classes which can cause class circularity errors if they get too far along in the class transformer.
    • ^net/sf/saxon.*

    If you wish to re-include these excluded rules, you can do so via the following means.

    YAML:

      class_transformer:
    excludes: ^javax/crypto/.*,^java/security/.*,^net/sf/saxon.*

    System property:

    -Dnewrelic.config.class_transformer.excludes=^javax/crypto/.*,^java/security/.*,^net/sf/saxon.*

    Environment variable:

    NEW_RELIC_CLASS_TRANSFORMER_EXCLUDES=^javax/crypto/.*,^java/security/.*,^net/sf/saxon.*

  • Prevent license_key value from being written to the agent logs when using debug and/or audit_mode logging 1653

IAST

  • The IAST feature now also supports Async HTTP client version 2 and above 142
  • Added support for Sun Net HTTP Server 142
  • JSON version bump to 1.1.1 142
  • Add critical error logging via LogMessage event 142

Fixes

  • Fix transaction naming in Spring controllers with a CGLIB proxy. Transactions now use the actual class name as opposed to the proxied class name. 1574

  • Fix a NullPointerException caused by ServletContext in servlet instrumentation modules. 1636

  • Fix a memory leak caused by Lettuce instrumentation. Duplicate code for transaction linking has been removed from the Lettuce instrumentation and is handled by netty-reactor instead. 1608

  • Fix a bug where invalidating a license key causes a memory leak. Reconnection tasks are now capped in the event of a LicenseException. 1606

  • Fix a NullPointerException caused by RPMServiceManager 1604

  • Add a workaround for a memory leak that may occur in rare scenarios with instrumentation using the legacy async API in the Java Agent (which async servlets and Jetty Continuations use). 1555

    The option can be configured via the following means:

    Agent config file (this will update dynamically if the config file is changed)

    common: &default_settings
  legacy_async_api_skip_suspend: true

    System Property

    -Dnewrelic.config.legacy_async_api_skip_suspend=true

    Environment Variable

    NEW_RELIC_LEGACY_ASYNC_API_SKIP_SUSPEND=true

IAST

  • DynamoDB v2 issue: missing attribute values for conditionCheck method in case of transactWriteItems operation on DynamoDB 142

  • Fixed an Insecure cookie attack vulnerability. 142

  • Never print LicenseKey 142

Deprecations

The following instrumentation modules are deprecated and will be removed in the next major release:

  • aws-wrap-0.7.0
  • java.completable-future-jdk8
  • play-2.3
  • spring-3.0.0
  • netty-3.4
  • Struts v1

Full Changelog: v8.7.0...v8.8.0

Assets 2
Loading