Compare releases

• 5892 - Fix for duplicate key exception when cleaning up build information/package metadata
• 5897 - UI performance boost for Octopus instances with lots of projects doing lots of deployments
• 5899 - On the project process view, the step list overlaps if the step name has long words
• 5912 - Fix issue where project switcher would open a new tab when clicking away
• 5913 - Fixed issue with Build Information upgrade script that would block if it couldn't find expected old indexes
• 5917 - UI rendering performance improvements to the projects list screen for customers operating at scale
• 5918 - Fix for handling of deployment processes where a null package collection may result in a Value cannot be null error during deployment
• 5919 - Fix an issue where adding a project group would result in an empty page being shown

• 4270 - Allow deferring the package selection until the step template is added to a project
• 5601 - Release filter dropdown will now show a few options when clicked on
• 5604 - Added a new deployment variable for changes, and a Deployment Notes template on the project settings to control its content
• 5606 - Build Information search and view added to the Library
• 5848 - "Stop a Docker Resource" step will not remove the containers unless "Stop and remove" action is explicitly selected
• 5860 - Package selection dropdown will now show a few options when clicked on
• 5881 - Adds support for PowerShell Core deployment scripts on all platforms. Breaking Change: PowerShell scripts (for example, .ps1 files embedded in packages) will be run on non-windows targets
• 5885 - Package Metadata renamed to Build Information (Branch is now included too)
• 5886 - Fixed bug with child project version comparisons during release creation
• 5888 - Introducing Runbooks for Operations Teams (EAP feature)
• 5893 - Create User action can now add external logins, due to a bug was only available in editing existing users
• 5895 - Fixes rare crash in editing a package deployment step if a large amount of feeds are present
• 5900 - Fix for upgrade error unable to find id in Script0206 - affecting case sensitive SQL server installations
• 5903 - Fixed an issue where a project was not able to be cloned when the logo file was missing, the cloned project will now use the default logo

• 5905 - Fixed an issue where a project was not able to be cloned when the logo file was missing, the cloned project will now use the default logo

• 5901 - Fix for upgrade error unable to find id in Script0206 - affecting case sensitive SQL server instllations

• 5894 - Create User action can now add external logins, due to a bug was only available in editing existing users
• 5896 - Fixes rare crash in editing a package deployment step if a large amount of feeds are present

• 5755 - Added informational message on how to work around PowerShell terminating processes on Win2019 and .NET 4.7.2 when an error is output
• 5824 - Project logos are now copied when a project is cloned
• 5880 - helm init in the Helm Upgrade step no longer refreshes the local repository cache
• 5883 - Fix for Kubernetes node affinity not being set during deployment
• 5889 - Project overview screen is no longer dependant on LibraryVariableSetView permission for Tenanted projects

• 5797 - Fixed how manual interventions are handled when they occur during a deploy release step
• 5835 - Account parameters used in Step Templates are now expanded, making them easier to use
• 5851 - Shows cleaner exception message when executable is not found in steps with script logic
• 5866 - Fixed an issue that caused certain steps to now show in the channel version rule selector
• 5868 - Fixed comparison of package ids between build information and steps to be case insensitive
• 5872 - Improved validation and error messsages for Automatic Release Creation package steps
• 5874 - Improve reliability of temp file handling on Linux targets and avoid silent failure of "Deploy to NGINX" steps
• 5878 - Removed duplicate email validation when modifying or registering users

• 5846 - Show a nicer error instead of crashing when a bad value is passed to the command line for the --dependOn argument on the service command
• 5849 - Handle bad Auto Release Creation configuration better and allow users to resolve it
• 5852 - New installations of Octopus Server will have the built-in package repository re-index feature disabled by default
• 5853 - Fix for incorrect Isolation Mutex causing deployments to block/hang
• 5855 - Resolved issue saving deploy kubernetes containers step when memory requirements set but not cpu
• 5857 - Made a data migration script more robust when faced with Auto Release Creation referencing a channel that has been deleted
• 5858 - Description support on teams
• 5859 - Fix a timing issue in deployment process overview page which was causing intermittent failures

• 5837 - Fixed issue where step delete silently fails when step is used in the versioning strategy
• 5838 - Fixed replace option for Upload Package dialog and client backwards compatibility
• 5841 - Fixed issue with tenant variable editing, which occurred if a team the user was in had a role scoped to an environment
• 5844 - Fixed Octopus ID authentication provider's default configuration to stop warnings appearing in the server logs unnecessarily
• 5847 - fix for NullReferenceException in CheckForOctopusUpgrade reported in server dignostic errors
• 5833 - Added retry logic and configurable timeout to initial connection to SMTP host

• 5832 - Improved startup performance when many files exist in the Octopus Server directory
• 5836 - Empty annotation, label, secret and configmap values are now passed through to K8S
• 5839 - Includes bundled Tentacle 5.0.4 which includes the new Linux Tentacle

• 5647 - Package acquisition now runs after manual intervention for steps with additional packages
• 5803 - Automatic redirect to secure WebUI binding now works for localhost binding
• 5820 - Fix misaligned deployment process chips
• 5825 - Certificates without a private key can now be installed into another user's key store on windows
• 5826 - Fixed the User edit page so the Reset Password button is only enabled based on the same permissions checks logic the API is using
• 5830 - Updated bundle Tentacle to 5.0.3 to fix crash when launching Tentacle Manager
• 5834 - Includes bundled Tentacle 5.0.3 with fix for memory leak with Listening Tentacles

• 5813 - Jira comment parser RegEx updated to simplify and also remove some false positive cases
• 5814 - Machine policy health check no longer runs at startup when health check policy is set to Never
• 5815 - Fixed a performance problem where looking at a deployment paused by manual intervention would cause high CPU usage on the Octopus Server, but only if the manual intervention was not restricted to specific teams and you have a LOT of teams
• 5816 - UI fix for accessing Project Templates menu for multi-tenancy
• 5817 - UI fix for cloning steps across different projects
• 5818 - Fixed a bug preventing new variable values from being added to a project or library variable set where there is already another variable value with the same name
• 5819 - Made CTRL+Click work in the project switch again, so it opens the selected project in a new browser tab just like it did before 2019.7.13

• 5213 - Fix issue where Calamari doesn't respect the setting to bypass the default proxy in windows
• 5726 - System.IO.IOException: The process cannot access the file 'xxx' because it is being used by another process during Calamari package extraction
• 5727 - Add the ability to clone a Tenant
• 5784 - Demote logging level for "Setting Proxy Environment Variables" to VERBOSE
• 5793 - Moved --ServerNodeName from the configure command to the create-instance command
• 5798 - Fixed a bug in ProjectSwitcher that was redirecting to the wrong projects after filtering results
• 5805 - Fixed a null reference exception that occurred on login in some AD configurations after upgrade beyond 2019.5.0
• 5806 - Allow configuration of a specific domain for cookies issued by server, to allow custom web UIs to call the API
• 5811 - Add a description field to each Tenant
• 5812 - Add UriEscape, UriDataEscape, Substring, Trim and Truncate filters for variable substitutions

• 5497 - Fixed a bug that prevent upgrades when malformed artifact documents exist
• 5500 - Fix for scheduled release creation for variable package feeds
• 5771 - Add connectivity verification buttons for Jira issue tracker settings
• 5788 - Consecutive spaces in Projects and Spaces are now ignored during the "type the name to confirm" delete validation
• 5792 - Force Upgrade option will create a new Service Fabric deployment if none exists
• 5795 - The WebUI HTTP listener now retries if there is a network error that causes it to terminate
• 5796 - Fix linking of Projects to Channels in Audit Log
• 5800 - Module imports are now timed and printed as verbose log messages
• 5804 - UI adding a side-by-side step-editing experience and filters

• 5789 - Resolved an issue that prevented deployments to Cloud Regions

• 5776 - Fix flakey DateTime issue in Scheduling a Release - Now or Later
• 5783 - Fixed warnings displayed when Wildfly apps are deployed with Java 9+
• 5785 - Fixed an issue deploying a docker image that does not have labels

• 5674 - Fixed error creating release when using a Step Template that uses an Azure account parameter
• 4232 - Fixed an issue where, in certain circumstances, sensitive variables could be exposed in the variable preview - CVE: CVE-2019-15698

• 5772 - Metadata button only expands/collapses its own section
• 5773 - Expose Docker Image labels as Project Variables
• 5774 - Adds additional validation to the deployment process API to guard against PackageReference.Properties from accepting null values
• 5777 - Fixed a memory leak with listening Tentacles
• 5779 - Creating a space no longer requires AdministerSystem. SpaceCreate should be sufficient

• 5722 - Fix for slow performing release and deployment queries
• 5762 - Added more information about target's status in the deployment preview screen
• 5763 - Fixed issue where Tentacle Upgrades fail on servers that do not have .Net Framework 4.7.2
• 5766 - Reduce the set of users editable with the UserEdit permission, such that this responsibility can be delegated to less privileged users
• 5767 - Prevents multiple spaces being flagged as the default space via the API
• 5768 - fix search boxes on Safari

• 5590 - Allow overriding namespace in Kubernetes steps
• 5607 - Internal mapping improvements to increase tenant variable set endpoint
• 5750 - Tentacle TentacleProxyPassword logged in clear text when OctopusPrintVariables is set
• 5751 - Fix for partialName parameter searching on the artifacts API endpoint
• 5761 - TentacleProxyPassword logged in clear text if $env:HTTP_PROXY is printed and password contains special characters
• 5764 - Support providing certificates via porta by directly pasting as text

• 4418 - Deploy a Release steps can now be used in rolling deployments
• 5620 - UI fixing anchor-links in the task summary list
• 5713 - Automatic health checks can now be disabled or scheduled using a cron expression
• 5729 - Fix issue with "all nodes offline" when a new instance is setup against an existing database
• 5754 - Fixed some sensitive value handling in the server config API/portal UI - CVE: CVE-2019-14525

• 5709 - S3 Special Header Content-Type not being set properly
• 5723 - Improved parsing of Jira issue references, and only display Jira issues that exist in the configured Jira instance
• 5725 - Updates to Audit Filtering
• 5744 - Fixed an issue where UI feature toggles were misbehaving
• The following issues were rolled forward from 2019.7.4 release (that was pulled due to a feature toggle issue):
• 5406 - Migrator import command won't load variable sets associated with deployments
• 5732 - Update Dashboard to fix bug in configuring limited rows
• 5734 - Library Variables Sets are now displayed again
• 5735 - Fix an issue where multiple overflow menus can be open at the same time
• 5740 - Fixed a bug where you could not search for Docker images using DockerHub external feeds

• 4394 - Improved the variable preview screen to make it clearer how it works and ensured all variable types were displayed correctly
• 5634 - Fixed disposing of leases for external workers with packages
• 5652 - Added default roles for build servers
• 5704 - Fixed license check code to deduplicate tentacles and ssh endpoints
• 5707 - Create correct commit links in Octopus when using git@<host>: URLs in the VCS root in package metadata
• 5710 - Fix for project and project-group scoped permission UI issues
• 5714 - Fix for DeploymentQueued event not being created with ARC
• 5720 - Fix for Project Deploy Release page appears to hang with a large number of tenants
• 5739 - Fixed issue where proxy password was in certain circumstances rendered as clear text in deployment log - CVE: CVE-2019-14268

• 5617 - Increased timeout for downloading external NuGet feeds from 60s to 1hr
• 5668 - Prompted variables are now ordered alphabetically when creating a deployment
• 5681 - Allow library step templates to be deleted when referenced in releases
• 5686 - In some cases the task progress percentage was not reported in the log
• 5689 - Resolved issue where extracting template from deployment step could result in ‘Given key not present in dictionary’ error
• 5692 - Fix issue where changing tabs in a library step template based on a script step would error when choosing to to use a script in a package
• 5696 - Added helper functions to write progress bar messages to the deployment log
• 5698 - Update UI and calculation of matched records on dashboard
• 5699 - Sensitive variables in step properties are no longer cleared when a step is enabled
• 5701 - Fix for incorrectly migrated user roles that could not be saved due to validation error
• 5716 - Upgrading from 2018.10 to 2019.3+ fails when package configuration contains forward slashes
• 5718 - Tenant variablesmissing endpoint is slow to load with a project/tenant filter when there are many tenants variables

• 5509 - Adding friendly landing page for users with no permissions to see Environments
• 5667 - UI adding configuration to control features of the help sidebar
• 5678 - Hidden folders are now ignored when migrating to Spaces new packages folder structure
• 5679 - Fixed an issue where server would fail to start due to incompatibility checks after upgrading from older versions
• 5684 - Update msi installer to check for .NET 4.7.2
• 5685 - UI adding actions to add another target/worker for easier data entry

• 4802 - Added validation to the IIS configuration to ensure a hostname is entered when SNI is enabled
• 5503 - Show error message when kubectl returns error message
• 5504 - Fixed issue where historical feed data in database caused primary key violation when creating a new space
• 5602 - Fixed paging on the user activity feed
• 5642 - Clarified error message shown when a recursive variable definition is detected
• 5645 - Fix for team deletion issue with email steps
• 5646 - Removed ProjectGroupId from Deployment as this was not being kept in sync during Project moves (to other project groups), and causing octo.exe to fail to import
• 5653 - Accounts referenced by targets used in a deployment manifest are now shown in account usage
• 5654 - Made displaying usage more consistent and performant
• 5656 - Fixed dirty state checking on Deploy an ARM Template step
• 5657 - Fixed the logic in Azure Service Fabric deployments to determine if upgrades are available
• 5658 - Account usage for Token, Username/Password and SSH Key Pair account types now show all available usage types, not just usage in targets
• 5659 - Consolidated release usages and release snapshot usages for account types for clarity
• 5660 - Added the ability to delete a specific deployment
• 5664 - Fix an issue where it was not possible to select a certificate or account when using tenant variables
• 5666 - Deployments awaiting manual intervention will no longer block other deployments to the environment by default. This behavior can now be controlled by a switch on the manual intervention step
• 5669 - Fixed an issue where the UI would prevent you from selecting an environment to deploy to if your DeploymentCreate permissions were scoped to tenants

• 5850 - Handle bad Auto Release Creation configuration better and allow users to resolve it
• 5856 - Resolved issue saving deploy kubernetes containers step when memory requirements set but not cpu

• 5765 - Resolved issue where extracting template from deployment step could result in 'Given key not present in dictionary' error
• 5786 - Fixed a bug that prevent upgrades when malformed artifact documents exist
• 5809 - Fixed a null reference exception that occurred on login in some AD configurations after upgrade beyond 2019.5.0

• 5749 - Tentacle TentacleProxyPassword logged in clear text when OctopusPrintVariables is set
• 5760 - TentacleProxyPassword logged in clear text if $env:HTTP_PROXY is printed and password contains special characters

• 5724 - Improved parsing of Jira issue references, and only display Jira issues that exist in the configured Jira instance (requires a username and password to be configured on the Jira issue tracker settings page)
• 5753 - Fixed some sensitive value handling in the server config API/portal UI - CVE: CVE-2019-14525

• 5703 - Fix for Project Deploy Release page appears to hang with a large number of tenants
• 5705 - Fix for incorrectly migrated user roles that could not be saved due to validation error
• 5708 - Create correct commit links in Octopus when using git@<host>: URLs in the VCS root in package metadata
• 5715 - Fix for project and project-group scoped permission UI issues
• 5717 - Fix for Upgrading from 2018.10 to 2019.3+ fails when package configuration contains forward slashes
• 5719 - Fix for Tenant variablesmissing endpoint is slow to load with a project/tenant filter when there are many tenants variables
• 5738 - Fixed issue where proxy password was in certain circumstances rendered as clear text in deployment log - CVE: CVE-2019-14268

• 5682 - Fixed an issue where server would fail to start due to incompatibility checks after upgrading from older versions
• 5697 - Wildfly deployments working again

• 5671 - Fixed issue where historical feed data in database caused primary key violation when creating a new space
• 5673 - Fixed an issue where the UI would prevent you from selecting an environment to deploy to if your DeploymentCreate permissions were scoped to tenants
• 5675 - Deployments awaiting manual intervention will no longer block other deployments to the environment by default. This behavior can now be controlled by a switch on the manual intervention step

• 5665 - Fix an issue where it was not possible to select a certificate or account when using tenant variables

• 5663 - Fixed the logic in Azure Service Fabric deployments to determine if upgrades are available

• 5651 - Added validation to the IIS configuration to ensure a hostname is entered when SNI is enabled
• 5650 - Show error message when kubectl returns error message

• 4964 - Added special variable OctopusUseBundledAwsCLI to allow opting out of using the bundled AWS CLI
• 5360 - Added special variable OctopusUseBundledAwsPowerShellModules to allow opting out of using the bundled AWS PowerShell modules
• 5395 - Update bundled AWS CLI to 1.16.178
• 5466 - Variable selector on tenant variables now includes variables from the selected project
• 5467 - Variables supplied from parent to child projects with Deploy Release steps will correctly have a higher specificity score now allowing them to always overwrite child variables
• 5474 - Added an option to merge instead of replace IIS bindings
• 5575 - Fix for TypeError on certificate search, when certificate data was in an unexpected state
• 5584 - If SMTP is configured to use SSL/TLS and initial connection using SSL fails, we try to connect using TLS instead. If SMTP is not configured to use SSL/TLS we intially try to connect using TLS but if that fails we connect using an insecure connection
• 5589 - Fix for audit entries on variables where no changes were made
• 5608 - Fixed bug that was preventing Automatic Release Creation from running when an unrelated package was of a higher version than the package specified for ARC
• 5621 - Fix issue where filter in dropdown can’t be focused
• 5624 - Bugfix paging through docker registry results
• 5626 - Tentacle has wriggled into the Linux category for deployment targets and workers
• 5630 - Fixed issue where usage of Token account variables was not shown correctly in the UI
• 5631 - Updated bundled Tentacle which has improved connection retry logic and certificate import improvements
• 5632 - Fixed an issue with boolean handling in the Azure Resource Group template step's code editor
• 5637 - Service Fabric profile flag to disable upgrades is now honoured
• 5638 - Added report about executing threads stacks as part of Diagnostics zip
• 5641 - Fixed a bug where Octopus can take a long time to connect to deployment targets

• 4227 - Fixed a memory leak that occurs when WebSocket polling tentacles do not trust the server's certificate
• 4822 - Allow updating worker pool on child steps
• 5619 - Scheduled, Triggered and Auto-Promoted deployments now always respect the guided failure setting on the project and environment

• 4209 - Show "Update variables" button on a release even if it doesn't have existing variables
• 4836 - Fix error on Scheduled Triggers if user doesn't have access to all environments for project
• 5372 - Fix for auto-deploy machines becoming available during a deployment
• 5484 - Add support for dynamic project IDs in Deploy Release steps when working with package metadata in releases
• 5577 - Add support for dynamic package IDs when working with package metadata in releases
• 5584 - If SMTP is configured to use SSL/TLS and initial connection using SSL fails, we try to connect using TLS instead. If SMTP is not configured to use SSL/TLS we intially try to connect using TLS but if that fails we connect using an insecure connection
• 5600 - Display escape characters in log if an Azure account can't be found by ID
• 5609 - Fix for Object reference not set to an instance of an object. when saving ARC, project settings, Life Cycles, Library Variable Sets when ARC is configured with a step that doesn't have a primary package
• 5611 - Incorrect permission elevation error when saving a team
• 5612 - UI introducing a help sidebar to provide more context
• 5613 - Improved handling of login identity checks when using Directory Services, to accommodate cases where users have ended up with multiple attached identities
• 5614 - Redeployments now include package metadata for the releases used the first time the deployment's release was deployed to the given environment/tenant
• 5616 - Use native kubectl config masking for verbose logs
• 5618 - Active directory group search now works on the group name containing the entered value, rather than only starting with the entered value

• 4564 - Deployments awaiting manual intervention block other deployments to the same environment
• 4619 - Update Calamari to .Net Core 2.2
• 4781 - When deleting or purging a directory, once the retry limit has been exceeded once, subsequent deletes will only be tried once
• 5197 - The CertificateReplace, TaskState, and VersionRuleTest endpoints no longer treat the requests JSON properties as case sensitive
• 5566 - Fixed order of tenant tagset tags on Infrastructure dashboard
• 5578 - Server configuration files can now be referenced using a UNC path
• 5599 - Expanded the input fields for command parameters
• 5603 - Fix an issue where tabs pushed onto the browser history a number of times causing issues when navigating back

• 5592 - Labels in custom resources now take precedence over the global labels defined in the container deployment step
• 5596 - Projects with no alpha-numeric characters will now generate a non-blank slug
• 5598 - Fixes a bug introduced in 2019.5.4 that prevented most API requests from being handled in parallel, causing slow downs of the API and UI

• 3859 - IIS bindings with upper case protocols are now show correctly in the IIS Manager
• 3903 - The IIS binding list on the step edit now shows the value of the enabled flag
• 4735 - Provide warning if email body fails to evaluate variables
• 4779 - API keys are now immediately removed from the server cache when a user is disabled or deleted
• 5228 - Offline drops now escape Windows and Linux special characters on all platforms
• 5264 - UI fix for dialog overflow and scrolling issues
• 5342 - Support escaped quotes in octostache variable filter parameters
• 5558 - Now when a Tentacle is deleted from Octopus all connections to that machine will be closed
• 5568 - Fix for the migration API pushing packages to a destination server
• 5572 - Fixed bug that caused automatic release creation failures to return 400 and 500 on package push
• 5579 - Fix for API key not being copied to the clipboard in the generate new API key dialog
• 5581 - Fix an issue where autocomplete popover does not close after selecting an item
• 5582 - Fix an issue where autocomplete and multi selects would not select an item when pressing enter after focusing an item in the list
• 5584 - Fixed bug where emails fail due to certificate error when SSL/TLS is disabled in SMTP configuration
• 5586 - Guest authentication provider now supports automatic logins
• 5588 - Allow all feed types to select non acquisition option during script steps
• 5464 - Cleanup tasks are no longer scheduled when the task queue for a space is stopped
• 5583 - Package build metadata, e.g. VcsCommitNumber, is now included in deployment variables
• 5587 - Label validation in K8S steps does not allow for prefixes
• 5591 - Editing a space is now validated and space name length validation messages improved

• 5476 - Fixed high CPU usage on deployment task page
• 5512 - Prompted variables without a label can now only be scoped to environments
• 5513 - Fix an issue where multiple error panels will be displayed when server is unreachable
• 5538 - Updates and usage telemetry settings were moved from the setup wizard to the Portal
• 5545 - Fixed an issue where the Tentacle poll-server command was unable to successfully configure polling on second and subsequent HA nodes
• 5547 - ARM template parsing handles parameter types in a case insensitive manner
• 5560 - Fix terraform commands not generating any output during deployments
• 5562 - Update CloudFormation change set fields to be bindable
• 5564 - Automatic release creation can no longer be configured to use a package sourced from an external feed
• 5569 - Adds a summary view of variable set usage in projects and releases
• 5570 - UI adding a typed confirmation to the delete project action for additional safety
• 5573 - Added ability to turn off variable substitution for Terraform default files in package

• 5567 - Rolled back the logging changes in 2019.4.3 that are likely causing deployments, tasks and server shutdown to hang

• 5539 - Fixed missing navigation menus when creating a new Deployment Target or Worker

• 5550 - Fixed an issue where multi-select and auto completion fields would render popovers partially offscreen when close to the edge
• 5551 - Deployment retention no longer requires exclusive access to the tentacle (this bug was introduced in 2019.4.5)
• 5555 - Fixed "Sequence contains no elements" error when viewing releases that don't match the current project release versioning settings
• 5556 - Fix terraform steps unable to asume AWS service roles
• 5557 - Only load script module usage on demand
• 5559 - Include monthly active user count in usage statistics

• 3590 - Choosing a certificate no longer shows the binding expression toggle in the UI
• 5462 - Added variables for trigger which caused a deployment
• 5486 - UI improving delta highlighting on the audit screen
• 5499 - Script modules are now supported for Bash, C#, F# and Python
• 5502 - Fixed an issue where the file picker window would not trigger from the replace certificate dialog
• 5507 - UI improving onboarding for new users and team membership and including a list of teams on the users page
• 5508 - Can now step into script modules while debugging PowerShell script steps
• 5520 - UI Dashboard screen search bar will no longer render if there are no Environments in the instance
• 5522 - Release notes evaluation now also happens for automatic release creation and scheduled release triggers
• 5523 - Fixed an issue where Deploy CloudFormation template step would fail when using the change sets feature and no changes need to be applied
• 5524 - Fixed bug where retrieving release notes from GitHub would throw an exception if the VcsRoot ended with .git
• 5526 - Improved how the Portal retries connecting when the Octopus Server is not contactable
• 5533 - Health check may fail on windows machines with failure to load TimeZoneInfo type
• 5534 - The Test button on the Create Feed screen no longer crashes when invalid data entered
• 5536 - Fixed error when attempting to delete an Octopus Server node
• 5537 - Modifying teams and roles enforces all permissions and scoping in elevation checks
• 5540 - Added confirmation dialog before deleting an API Key
• 5542 - Fixed an issue preventing the selection of the Specific Version radio button when using variables for the package feed
• 5544 - Breaking change Some machine policy properties have been renamed to better accommodate Linux Tentacle
• 5546 - Fixed TypeError on Kubernetes step when adding a volume
• 5549 - Octopus no longer enforces email uniqueness across users, in order to support Active Directory scenarios where users can share an email address

• 4567 - Automatic Release Creation now creates releases after a step rename
• 5394 - K8S deploy step supports external secrets to be used for ingress TLS
• 5458 - Improved the speed of the automatic release creation after a package upload
• 5488 - Release note accumulation honors the Discrete Channel release setting on the project
• 5494 - Raw commit details as an Octopus variable for release notes
• 5495 - Work item release notes from GitHub / Jira
• 5498 - Improved error message when attempting to acquire helm charts but helm is missing
• 5501 - Fixed an issue preventing the cloning of a step into the current project
• 5506 - Fixed issue with creating releases when multiple packages exist on the versioning step

• 5483 - Changed all popover components to use the new MUI component which is reported to fix the positioning delay
• 5487 - Return a more helpful error message on the release page if a package / version combination cannot be found in the built-in repository
• 5490 - Make package published date format in UI consistent and include tooltip with timezone info
• 5491 - Fixed exception on Project settings page if auto release creation is enabled and a package step is configured to use a versioning template instead of package step
• 5493 - BugFix: DockerHub feeds fail to authenticate during acquisition

• 5223 - Fixed an issue where redeploying a SF application of the same app/type/version would fail regardless of override behavior
• 5386 - UI adding categories to make step template selection more intuitive
• 5402 - Related to 5468, Azure Resource Group template parser updated to handle non-string types
• 5415 - Added warning when user is creating/editing an Email Step or a Subscription and SMTP hasn't been configured yet
• 5431 - Prevented disabled steps from being used for release versioning and automatic release creation
• 5437 - Updated health check messages to better reflect plural and singular
• 5444 - Octopus Server can no longer be started against a database with a newer schema
• 5468 - Azure Resource Group step fixed to handle the templates correctly when bool and integer types are used
• 5472 - Corrected read-only summary label for container volume mount in k8s deploy containers step
• 5473 - Ensure only distinct package versions are included when running package metadata retention
• 5475 - Button styling has been updated to improve accessibility
• 5478 - Resolved spurious validation failure related to secret volume on deploy k8s containers step
• 5480 - Add certificate variable validation for HTTPS binding on the Deploy to IIS step
• 5481 - Bug: Unable to pull docker image on some ssh targets
• 5485 - Kubernetes step resource validation is over-eager and not allowing variables

• 5159 - Add Octo.exe argument --noDeployAfter to set QueueTimeExpiry
• 5419 - An event is now logged to the audit log when a task is cancelled due to the server shutting down unexpectedly
• 5426 - Certificate with private-key being displayed as not having private-key
• 5427 - UI adding default role chips to the variable editor when no target roles exist yet
• 5429 - Adding project group filtering for events/subscriptions
• 5430 - Fixed an issue where an excessive amount of requests were being made for tenant tag sets when on the deployment target settings page
• 5435 - UI show the step type while editing a step
• 5436 - Tenant tag selection now shows an appropriate message when all tag sets are empty
• 5440 - Prevented duplicate validation messages
• 5452 - Improve Performance of Dashboard by indexing temp table
• 5455 - Improved the performance the Projects API when many projects use features that are based on step names
• 5461 - UI adding form expander animations

• 4236 - Auto Release Creation and Scheduled Triggers now evaluate variables in package names
• 5412 - Auto Release Creation and Scheduled Triggers can now create releases for projects using Step Templates that reference packages other than the one uploaded
• 5421 - Improved the speed of the Machine status triggered AutoDeploy
• 5424 - UI trimming roles on data-entry to avoid white-space issues during machine scoping
• 5445 - Package push with overwrite now updates metadata
• 5447 - Swagger file should use string for enums
• 5449 - Integrate Octopus with Jira to get deployment feedback on your Jira work items
• 5450 - Projects can now specify a release notes template, complete with variable binding, that gets applied during release creation
• 5465 - Fixed bug in release creation when steps are scoped to channels

• 5747 - Tentacle TentacleProxyPassword logged in clear text when OctopusPrintVariables is set
• 5759 - TentacleProxyPassword logged in clear text if $env:HTTP_PROXY is printed and password contains special characters

• 5737 - Fixed issue where proxy password was in certain circumstances rendered as clear text in deployment log CVE-2019-14268

• 5453 - Introduced table caching of user details in server, to address performance issues
• 5627 - Fix for TypeError on certificate search, when certificate data was in an unexpected state
• 5633 - Further fixes for boolean handling in the Azure Resource Group template step UI
• 5670 - Fixed issue where historical feed data in database caused primary key violation when creating a new space
• 5690 - Fix for Tenant variablesmissing endpoint is slow to load with a project/tenant filter when there are many tenants variables
• 5700 - Fix for Upgrading from 2018.10 to 2019.3+ fails when package configuration contains forward slashes
• 5702 - Fix for incorrectly migrated user roles that could not be saved due to validation error

• 5615 - More defensive error handling when docker acquisition fails

• 5553 - Improve Performance of Dashboard by indexing temp table
• 5565 - Azure Resource Group step fixed to handle the templates correctly when bool and integer types are used
• 5571 - Fixed bug that caused automatic release creation failures to return 400 and 500 on package push
• 5576 - Fixed high CPU usage on deployment task page
• 5580 - Resolved issue where certificates with private keys were being shown as not having a private key

• 5531 - Fixed a bug preventing deployment target triggers from working when any project has more than one deployment target trigger defined

• 5457 - Improved the speed of the automatic release creation after a package upload
• 5516 - Automatic Release Creation now creates releases after a step rename
• 5517 - Fix up some UserRoles that were not set up correctly in 2019.1 and could not be saved
• 5433 - Update to Halibut to ignore unnecessary ACL failures that were causing deployments to fail
• 5529 - Fixed an access control bug where project scoping was not being applied for VariableViewUnscoped and VariableEditUnscoped permissions (CVE-2019-11632)

• 5446 - Fix for users seeing a blank screen when they were set up with no permissions
• 5454 - Improved the performance the Projects API when many projects use features that are based on step names
• 5459 - Auto Release Creation and Scheduled Triggers can now create releases for projects using Step Templates that reference packages other than the one uploaded. Improved the speed of the Machine status triggered AutoDeploy

2019.3 LTS

• 3748 - Fix for editing a release with a package that doesn't match channel rules
• 5272 - Octopus Cloud Octopus Manager team doesn't have permissions to export users permission structure
• 5404 - Fix for broken Project settings page if project was cloned from another project that's not available due to permission/deletion/migration
• 5422 - Made the getting started guidance available to hosted customers and space managers
• 5423 - Adding null checking around database upgrade script
• 5425 - Docker acquisition script moved from Server to Calamari

• 5285 - Added validation to ensure machine policy timeouts
• 5407 - Added ability to supply additional arguments in Upgrade Helm Chart step
• 5409 - Tags entered but not added are now auto-added when saving a tenant tag set
• 5413 - Added the ability to filter by project and environment on the tenants overview
• 5417 - Removed unnecessary Tenant Preview buton on Tenant Overview page
• 5418 - Fix issue where side bar navigation was missing on the Create Subscription page
• 5420 - Improved the processing speed of the auto-deploy triggers background process

• 5410 - Fixed crash on node --drain command
• 5411 - Fixed issue with subscription webhooks using wrong http header type
• 5414 - Fixed startup issue for a subset of customers by a data consistency script in 2019.2.5

Changes in 2019.2.5 (release was disabled/hidden due to a bug found)

• 4821 - Fixed issue where expired cron expressions for scheduled deployments were throwing exceptions
• 4916 - Renamed 'Run a Helm Update' step to 'Upgrade Helm Chart'
• 5140 - Fixed issue where worker health checks run for deployment targets instead
• 5370 - Cleaned up callouts in Space Edit screen to improve UX
• 5379 - fixes scoping for projects when a different project group is scoped on the user role
• 5381 - Environment section text only shows up if there are environments created on that Octopus instance
• 5387 - fixes project scoping for user roles when scoped to the projects' group
• 5391 - fixes dashboard bug when accessing projects in a group the user doesn't have access to
• 5400 - Added target name to Calamari/Tentacle upgrade task name
• 5401 - Fix for permission errors when trying to view another users permissions if you do not have access in another space
• 5405 - Improved cross document links for ScopedUserRoles to Teams and UserRoles in Audit

• 5208 - Fixed an issue where guided failure does not fail a deployment on the first attempt
• 5356 - Re-wording message that shows up when a task is suspended because the space queue was stopped
• 5373 - Added client side input validation for retry attempts in external feeds
• 5375 - Filter in Teams page should only render after all teams have loaded
• 5380 - UsernamePassword authentication now accepts email address
• 5383 - Fixed feed refresh button crashes in several built-in steps
• 5392 - Sorted the output of show-configuration and the root api responder to make it easier to find things
• 5393 - fixes an exception during some upgrades due to incorrect assumptions in the UserRole data model
• 5396 - Migrator.exe no longer fails when importing snapshot VariableSet referencing deleted certificate
• 5397 - Migrator now remaps deployment action worker pool ID when importing

• 4243 - Cloning a project now copies all project settings correctly
• 4349 - Reduce confusion around the select and deselect options for steps excluded from a deployment
• 4685 - Fixed issue where the "new server version" notification was not appearing
• 5322 - Fixed issue where Check Tentacle Health summary was not showing details when all targets ended up as HasWarnings or Unhealthy
• 5357 - Modified the tooltip text for Space and System team chips to make it easier to understand
• 5363 - Re-indexing the in-built package repository can now run on any node in a multi-node cluster
• 5364 - Fixed an issue where users without TeamView could not view the configuration for a Space
• 5366 - Allow deployment of raw YAML to K8S Cluster
• 5367 - Corrected an issue where the certificate archive would show incorrect results when loading the second and subsequent pages
• 5368 - Updated the Space Switcher to highlight the active Space
• 5369 - Added a link to the Space Switcher to allow easy space creation
• 5371 - Fixed a bug where you could not fetch artifacts for releases with a large number of deployments
• 5374 - Fixed an issue where the AWS Account variable selector wasn't being displayed
• 5377 - Allow collapsing environment variables for project variable templates when browsing project variables on a tenant
• 5378 - Task Queue startup code handles now exceptions correctly

• 2852 - Added warning to Sensitive text fields regarding ##{ characters escaping
• 4373 - The environments drop down now updates when selecting a different channel on the variable preview
• 5340 - No longer logging warnings when private keys are not available when doing a Service Fabric deployment
• 5344 - UI adding a confirmation to all "Upgrade Tentacle/Calamari" bulk actions
• 5345 - Resolved issue with HCL templates failing validation in Apply Terraform step
• 5358 - Fixed "Object reference not set to an instance of an object" when calling /api/projects/all
• 5359 - Invalid certificates already present before 2018.2.0 release may cause /api/certificates/all request to fail
• 5362 - Fixed a bug where upgrading from old versions of Octopus (pre 3.15.0) would fail

• 4897 - Add validation for drop down options for variable templates of type "select"
• 5303 - 2100 SQL parameter limit hit when updating usages of step templates fixed
• 5325 - Fixed the api/reporting/deployments/xml endpoint, a bug introduced in 2019.1.0
• 5338 - Corrupt builtinrepositoryconfigurations-single configuration json column fixed
• 5343 - Delete project error message does now display the teams blocking the deletion
• 5346 - Automatic lifecycle promotion after automatic release creation works regardless of the permissions of the user that pushed the package, fixing an issue introduced in 2019.1.0
• 5349 - Expose ephemeral storage requests and limits in K8S
• 5351 - Using Tentacle Manager to configure a polling Tentacle does not authenticate with username/password has been fixed
• 5352 - Fixed an issue where nodes with very long names would show StringTooLongException warnings in the log and were unable to elect a Leader node
• 5354 - Improve user experience adding a worker when at license limit

• 5332 - Fix for release promotion being blocked when user could not see complete set of environments that are part of the phases
• 5334 - JSON formatted output broken by non-formatted message

• 4384 - Fix for error in Variable Preview when a Tenant is connected to multiple environments
• 4396 - Render Subject Alternate Names on certificates correctly
• 4864 - Octopus instance management no longer relies on the Windows registry
• 5150 - Added validation to make sure releases cannot be created without version numbers for all packages
• 5299 - Fixed an issue where ACR as a docker feed would not resolve to the latest version when the number of tags exceed the default page limit
• 5302 - Fix an issue where S3 step would not properly set special headers such as Cache-Control when provided as metadata
• 5318 - Fixed bad link on Web Request Proxy settings page
• 5321 - Improved validation messages for creating an SSH Connection target
• 5323 - Fix an issue with S3 where the file metadata would not be updated if file contents did not change
• 5324 - Resolved a High CPU issues triggered by retrieving package notes
• 5326 - Incorrect load more and search inside Library Variable Sets and Script Modules
• 5330 - Add additional logging when a K8S deployment fails

• 4515 - Certificate filter doesn't work when there is more than 1 page or results
• 5307 - Run Condition and Start Trigger sections no longer disappear when a validation error happens when saving a step
• 5308 - Fix for audit screen and audit shortcuts reporting incorrect lack of permission for users who have EventView scoped
• 5309 - Expose the K8S Pod termination grace period field
• 5310 - Allow K8S TLS certificate to be empty
• 5316 - UI fixing route issues that were causing pages to re-render when filtering
• 5317 - Fix for server startup error (Error converting value “TaskViewLog”)
• 5319 - Can't save previously created K8S container definitions

Changes in 2019.1.8 (release was disabled/hidden due to a bug found)

• 4392 - Fixed the variable preview grid to expand columns to all available space
• 5295 - Prevent SQL timeouts for auto-deploy triggers
• 5298 - Fixed "Unbound variable" error when using set_octopusvariable with set -euo pipefail
• 5305 - Rename "machine name" field on deployment targets to "display name"
• 5306 - Show type (Polling Tentacle/Listening Tentacle/Cloud Region/etc) when viewing a deployment target
• 5311 - Removed extraneous slashes in placeholder text for offline drop targets
• 5313 - Outdated OctopusClient warnings now include user and agent type
• 5315 - Save terraform sensitive values as Octopus sensitive values (CVE-2019-8944)
• 4873 - Fix an escaping issue causing Authentication issues with Azure CLI when an Azure Service Principal Account key contains special characters such as those generated by the new Azure App registrations preview blade.

Changes in 2019.1.7 (release was disabled/hidden due to a bug found)

• 5261 - Fix for Tenant scoped users who were incorrectly blocked from exporting certificates
• 5280 - "Deploy a Release" steps now collect output variables from failed child deployments
• 5289 - Fixed a bug where Project Viewers could not assign and submit interruptions
• 5290 - Fixed error "This SqlTransaction has completed; it is no longer usable"
• 5291 - Added warning logs for situations where an IIS web site deployment will fail to start the web site
• 5293 - The built-in repository settings are now retained correctly when upgrading from versions prior to 2019.1.x
• 5294 - Fixed a bug where Packages could be cleaned up by retention policies while still in use by Releases
• 5296 - No longer leaving orphaned DeploymentActionId when deleting a step as part of deleting a channel
• 5297 - Resolved performance problem writing to log files introduced in 2019.1.2
• 5304 - Breaking change Removed the TaskViewLog permission. Any user that has been granted access to a Task through the TaskView permission can also view that Task's logs

• 3198 - Added support for variable substitution in ARM templates for complex types including array types
• 4469 - Links in AWS error messages are now rendered as proper links
• 4618 - Better error handling for Azure steps that display information from Azure
• 5207 - Prevented infinite polling loop when navigation happens while request is in flight
• 5243 - Add CAPABILITYAUTOEXPAND to CloudFormation step and ability to choose multiple IAM capabilities
• 5265 - The correct artifacts now show on the release screen, fixing a bug introduced in 2019.1.0
• 5269 - Fixed a bug where members of teams with no permissions could not assign interruption to themselves, even if that team was designated the responsible team for the interruption
• 5271 - Fix an issue where deleting a CloudFormation stack would not wait until completion
• 5278 - Allow ingress rules to be reordered
• 5279 - Support Downward API for environment variables in Deploy Kubernetes Containers step
• 5282 - Create release via Client API now works for .net standard
• 5283 - Fix for Task screen incorrectly reporting lack of TaskView permission when it was granted only at the Space level
• 5284 - Fixed various issues around permissions that allows access to projects through connected tenants

• 5267 - Resolved error when cloning a channel-scoped step to another project
• 5273 - Fix a bug when navigating to a community action template
• 5275 - Fix for scheduled deployments that contain a deploy a release step failing with a permission exception

• 5266 - Fixed error when health checking Tenant scoped targets in 2019.1.0 and later
• 5268 - Fixed UI bug with exclude unhealthy targets setting

• 5258 - Fix for update deployment process returning incorrect error for missing ProcessEdit permission when it's Tenant scoped
• 5259 - Resolved migrator issue where attachments were causing '$' to be left in IDs
• 5260 - Fix for Tenant scoped ProcessEdit permission warning when updating Action Templates
• 5262 - Fixes errors during upgrade for instances that cannot access the package roots parent directory

• 5247 - Fixed a bug where the Feeds endpoints would not return a backwards compatible FeedResource for old versions of octo.exe
• 5253 - AWS now correctly uses the EC2 instance role metadata
• 5254 - Package upload dates are now shown again (when available) on the previous versions dialog
• 5255 - The refresh feed list button on the Run a Helm Update step no longer crashes
• 5256 - Stopped showing the (unsupported) built in feed for the Run a Helm Update step
• 5257 - Fix for permission error on Releases screen when user had valid Tenant scoped ReleaseView and ProcessView permissions

• 4562 - Added option to exclude unhealthy targets at the beginning of a deployment
• 5141 - Allow overriding namespace in Helm Upgrade step
• 5234 - Added Python 3 support for script steps, ad-hoc scripts and custom deployment scripts
• 5238 - Steps that are skipped due to not finding any deployment targets to run on are now marked as skipped rather than successful, resolving an issue where the incorrect run time was shown
• 5240 - UI fix for package version rendering issues on Create Release screen
• 5241 - Octopus.Migrator.exe now uses the ID to name exported certificate files to ensure all certifcates are exported correctly, even superseded certificates
• 5244 - New-OctopusAzureWebAppTarget command slot name parameter is now honoured
• 5245 - Variable expressions that reference a non existent JSON property now evaluate to an empty string
• 5248 - The server now completes it startup sequence before processing a shutdown request
• 5249 - Fix for a user with Tenant scoped ProcessEdit would prevent UI from showing Create Release action
• 5250 - Fix for ProcessEdit permission correctly operating with Tenant dimension to show add channel button
• 5251 - Fix for ProjectEdit permission correctly operating with Project Group dimension to allow settings editing and tenant linking
• 5252 - Fix to ensure post installation scripts correctly refresh views

• 5226 - Breaking change Increased the speed of artifact retrieval and cascade deletion when there are many artifacts
• 6084 - Breaking change TeamResource structure change - improved scoping ability per team
• 5239 - Added Tentacle support for spaces. Breaking change Deregister commands no longer remove trust for the server
• 3055 - Fix for inconsistencies in EventView permission calculations.
• 4362 - Tentacle Manager no longer overwrites Tentacle instances with the same name.
• 4831 - Tentacle Manager now properly handles selecting and creating of Roles that include spaces

• 2521 - Polling Tentacle timeout can now be configured via the machine policy, replacing the Octopus.Server.exe.config settings. If you are using those settings, open each machine policy, check the settings and save the policy
• 5124 - Added support for touch screens when reordering lists (e.g. when re-ordering steps)
• 5174 - Attempt to cancel any running tasks when shutting down the Octopus service
• 5204 - SSH and Tentacle connection timeouts and limits can now be configured via the machine policy
• 5229 - External feed URLs are now trimmed to prevent validation errors
• 5231 - Squashed null reference error in Deploy Kubernetes Containers step when secret has no data
• 5233 - Added support for AWS S3 and CloudFormation steps to run on ssh Linux targets
• 5237 - Fix for incorrect permission warning on Project overview screen if user only had ProjectView scoped on group dimension

• 5045 - Reduced the key size of the index IXServerTask_Common so it no longer exceeds the maximum key size
• 5205 - Upgrade to latest version of Azure libraries in Octopus Server means breaking some management certificate support
• 5216 - Turn off context autosave in AzureRM powershell scripts
• 5219 - Allow step templates to be created from a step
• 5222 - Server can now download all NuGet packages created with the latest version of NuGet
• 5227 - Bugfix - Referencing PackageVersion variable from another step is not evaluating correctly
• 4287 - Fix for TaskView check incorrectly operating on health check tasks when scoped.

• 5210 - Resolved JSON encoding issue with k8s config maps and secrets
• 5215 - Improved handling of transient I/O errors when writing server logs
• 5217 - Steps can now be cloned to a different project
• 5218 - Fix for resource searching that incorrectly escaped left square brace, resulting in incomplete query results
• 5221 - Downgraded Octopus.Dependencies.AzureCmdlets to v6.8.1

• 4891 - Fix an issue meaning Infrastructure tab didn't load correctly for some permission scoping combinations
• 4929 - TLS certificates can now be configured on Kubernetes Ingress
• 5118 - Resolved issue preventing Kubernetes custom resource YAML containing variable expression from being saved
• 5146 - Bugfix: Support additional values file sourced from helm chart package
• 5177 - Fix and issue where deployments to cloud services would fail to authenticate after migrating from old versions of octopus
• 5179 - Squashed bug resulting from removing package references from cloned steps
• 5199 - Made the capitalization of headings on the project settings page consistent
• 5200 - Fixed an issue on slow connections where attempting to edit a newly cloned step caused a page refresh rather than navigating to the edit step page
• 5201 - Made the Machine Policy field on a new deployment target always visible to reduce confusion
• 5202 - Kubernetes Service fields now displayed before Ingress fields on Deploy Kubernetes Containers step
• 5203 - Ensure K8S lifecycle hooks encode each command line as a string
• 5209 - Fixed an issue preventing new steps from being added and or modified when a step uses an account variable selector such as AWS and Terraform steps
• 5212 - Fix grammar in the summary text for a child step when used in a rolling deployment

• 5194 - UI wording updates to SSH target and .NET framework options
• 5195 - Fixed a bug where deleting an unsaved step from the overflow menu would delete the last step in the deployment process instead

• 5128 - Provide support for --tiller-namespace, --tiller-connection-timeout and --timeout on helm upgrade command
• 5134 - Added --user as an alias for --username to the command line interface
• 5138 - Improved how the task log is displayed, most notably when conditions are used and in failure scenarios
• 5162 - Added an overflow menu to the step edit page to delete and enable/disable the step
• 5168 - Corrected the order of Tenant Tags in the summary text for step conditions to match the order defined on the Tenant Tag Set
• 5169 - Updated the task list task type filter to support the full range of task types
• 5172 - Improved the UI layout for checkbox validation messages and fixed overlapping validation and actions on tenant variables
• 5176 - Flag HA server node as offline when shutting down
• 5178 - Fixed an issue that prevented script types other than PowerShell from running during Azure steps
• 5180 - Okta authentication provider now allows override of the claim used to determine the user's username
• 5181 - Fragmented database indexes are automatically rebuilt or reorganized after other upgrade script have run
• 5182 - Included a link to the project group on the project edit screen
• 5183 - Added code folding support to the code editor
• 5184 - Task re-run permission corrected in user interface, now operates same as the original adhoc-task run
• 5185 - Cloned K8S deployment steps no longer delete K8S resources deployed by other projects
• 5186 - Fixed an issue where the incorrect radio button for certificates on a HTTPS binding was selected by default
• 5188 - Remove ability to use old (pre 4.0) portal
• 5189 - Added missing validation for packages to the Deploy to NGINX step
• 5190 - UI fix for variable editor popover menus being visually cut off
• 5193 - Updated a number of dev dependencies and run-time dependencies including moment and lodash
• 5012 - Updated Web App deployments to use XML publish endpoint enabling deployments for Linux based Web Apps using web deploy

• 5126 - Fix for error saying unable to delete a step template that's in use

• 5133 - UI Simplifying the Getting Started / Onboarding guides
• 5144 - Resolved issue with migrator partial-export command exceeding 2100 SQL parameters
• 5145 - Added the ability to choose how inlined scripts in deployment processes are exported by Octopus.Migrator.exe including CopyInlineScripts (current behaviour), ExtractInlineScripts, and LeaveInline - learn more
• 5147 - Fixed issue where editing an offline drop removes the encryption password
• 5154 - Updated task logs for subscription processing and auto-deploy to use nesting and add links to the related project / trigger / release
• 5163 - Fix error on project process screen when user does not have LifecyleView permissions
• 5164 - Show empty state info boxes when connecting a tenant to a project or tag set and none exist
• 5165 - Made the Azure account type expander look and work in the same way as other expanders
• 5166 - Improved layout of Upload Package dialog
• 5170 - OctopusClient updated to include information in it's calls that allow filtering in the audit log
• 5171 - Octopus Cloud instances can now be licensed by deployment target just like self-hosted Octopus Server licenses
• 5167 - Gracefully stop Octopus Server if running in terminal and process terminated

• 5143 - Added the Strict-Transport-Security HTTP header to the page shown when Octopus Tentacle is accessed from a Web Browser
• 5148 - migrator.exe import will no longer fail with a unique constraint violation on name when it mistakenly tried to insert a new MachinePolicy or Subscription or Account or Feed with the same name, now it will correctly overwrite the existing document
• 5149 - Clicking on a step in the task summary now navigates you to the correct element in the task log
• 5152 - Added a new update-trust command for Tentacle, this command allows you to update a server thumbprint, without having to remove and then add a new thumbprint which doesn't work for polling Tentacles
• 5153 - Fixed a regression in Octopus.Migrator.exe partial-export introduced in 2018.9.13 which would incorrectly fail to validate the arguments related to exporting releases
• 5155 - Support for Kubernetes Container Lifecycle Events

• 5135 - Resolved script step package references being incorrectly deleted by retention policy
• 5136 - Create release page shows project ID rather than name for Deploy Release steps
• 5139 - Extend brute force login protection to cover API keys

• 5137 - We fixed how the database collation is calculated while upgrading Octopus Server, which was previously reported to fail under certain circumstances using Azure SQL Database

• 4156 - Fixed highlighting of the selected element in drop downs that allowed filtering (e.g. the Add Member to Team dialog)
• 5116 - Fixed validation around Java package steps that could be saved without selecting a package
• 5117 - migrator.exe now correctly exports all dependencies used by a project and any of its releases, where beforehand any dependencies removed from the project would not be exported subsequently causing the import to fail
• 5119 - migrator.exe now correctly exports all versions of any action templates used by a project and any of its releases, where beforehand only the specific versions in use were exported causing potential errors after import
• 5122 - Tweaked shortcut menu for package feeds to make common actions more discoverable
• 5125 - Long project names will now wrap in the project quick search dropdown
• 5127 - migrator.exe partial-export now supports exporting multiple projects by specifying the --project="MyProjectName argument multiple times, or by project groups using the new --projectGroup="MyProjectGroup1" argument or in any combination of the two
• 5132 - The count of releases and deployments sent to octopus.com as telemetry has been corrected to use the DeploymentHistory table

• 4411 - Fix text color of Tenant Tag tooltip so description is visible
• 4672 - Fix an issue where enter causes the variable editor to save when adding a new variable
• 4947 - Fix an issue where bottom action buttons for lists would be duplicated or constantly appear and disappear
• 5060 - Changing a projects lifecycle now correctly re-renders the phases and environments
• 5091 - Fix F# compatibility with mono version 5.16
• 5103 - Improved summary text for subscription filters
• 5104 - Added Octopus.Machine.Hostname to automatic variable completion list
• 5105 - Added help text for User Profile -> Api Keys
• 5106 - Ensure deployment target icons are shown at smaller screen resolutions
• 5107 - The icon on disabled chips is now grayed out in the same way as the text
• 5108 - Infrastructure page now correctly shows worker pools and workers tabs when user has permission
• 5109 - Fixed missing variable icon overlapping the project name on the tenant variable screen
• 5111 - Long project names no longer overlap the selected environments on the tenant variable screen
• 5112 - Fix an issue where default ports were not provided for ssh and listening tentacles during creation
• 5113 - Helm deployments fail with target using cloud account
• 5114 - API key creation now creates an audit log, regardless of who you create the key for
• 5120 - New NGINX feature available when deploying a package to SSH Deployment targets

• 5095 - Resolved issue where project versioning-strategy was being cleared when upgrading from Octopus 2018.8.x to 2018.9
• 5097 - Fix a bug where VariableSet cannot be retrieved through Deployment.ManifestVariableSetId when there is variable scoped to channel
• 5098 - Fix for Service Fabric targets API failing to retrieve store location/name override
• 5100 - migrator.exe now correctly exports library variable sets used by a project and any of its releases, where beforehand any library variable sets removed from the project would not be exported subsequently causing the import to fail
• 5101 - Migrator now correctly remaps tenant tag references when the tag-set exists on the destination

• 4817 - Subscription emails now display events in ascending order by the time the event occurred
• 4846 - Reduced queue time in some instances for tasks resuming from manual intervention
• 4941 - Guided failure for required steps no longer presents the option to skip the step or exclude a machine from the step
• 5077 - Exposed image pull policy settings for K8S containers
• 5078 - Standalone ingress rules now accept variable host names
• 5080 - Fix a bug where wrong permission is used when try changing lifecycle for a project
• 5082 - migrator.exe now correctly handles importing accounts restricted to environments or tenants where some of those environments or tenants do not exist in the target
• 5084 - migrator.exe now correctly handles importing project triggers which filter events for certain environments where some of those environments do not exist in the target
• 5085 - migrator.exe now correctly handles importing deployment targets belonging to certain environments or tenants where some of those environments or tenants do not exist in the target
• 5086 - migrator.exe now correctly handles importing account variables, where before the account variable was not remapped correctly from source to target
• 5090 - Fixed issue with subscription webhooks using wrong http header type
• 5093 - Octopus Cloud licenses are excluded from compliance pre-condition checks when upgrading the database or applying a new license
• 5094 - If a database upgrade script is running for a long time without showing any progress messages, we now log a "still working" message every minute until the script completes

• 5021 - Kubernetes target certificates now reported in certificate usage
• 5052 - User accounts for Octopus Support Staff can now be added to an Octopus Server regardless of license limits
• 5054 - Resolved issue introduced in 2018.9.0 where updating step template usages was causing exception when viewing project
• 5079 - Resolved logging format exception when executing database upgrade script
• 5080 - Fix a bug where wrong permission is used when try changing lifecycle for a project
• 5087 - migrator.exe now correctly handles importing variable values scoped to tenants via tenant tags

• 4920 - Fixed issue with packages not being listed when using TeamCity 2018.1.x legacy NuGet feeds
• 5066 - Fixed an issue with the S3 step where invalid bucket keys were being used when using multiple file selections
• 5072 - migrator.exe now gracefully handles the importing tenant + project + environment connections when the project or environment does not exist in the target
• 5081 - migrator.exe now correctly handles importing subscriptions which are filtered by tenant tags

• 5020 - fixed some rare cases of certificate read failures after upgrading to 2018.8.7
• 5032 - Fix a bug where IE 11 does not render artifacts URL correctly
• 5056 - UI legacy toggle on Azure steps to access older template functionality
• 5058 - Fixed issue with Deploy Release step not always failing when the release fails
• 5061 - Enable full screen mode for the variable editor dialog
• 5065 - migrator.exe now correctly handles the default worker pool selected by certain deployment targets, where the selection would have been dropped during the import process
• 5068 - Folders with Junctions can now be deleted again
• 5069 - migrator.exe now correctly handles the worker pool selected for actions in a deployment process, where the selection would have been dropped during the import process
• 5070 - kubectl config file is now displayed in the verbose logs
• 5071 - The package cache and working directory can now be configured
• 5076 - Fixed up integration with http://Quay.io|Quay.io docker repo

• 5013 - Significant decrease in the amount of data persisted with deployments, especially when using a large number of certificates
• 5059 - Increased the database connection timeout and transaction commit/rollback timeout for database upgrades to 3 minutes, just like it was before 2018.9.0
• 5063 - Fixed validation for kubernetes volumes that referenced external configmaps or secrets

• 5024 - Database upgrade scripts now consistently roll back to the last known good state regardless of which specific kind of upgrade script fails
• 5038 - Database upgrade scripts now use an infinite SQL command timeout consistently - we really want the upgrade to complete even if a particular command takes a longer time than expected
• 5055 - K8S standalone Secret and ConfigMap steps deploy as expected now

• 4849 - Deployments are now removed from the dashboard again when they or their release is deleted
• 4957 - The dashboard now correctly shows the updated version number of a release again when it is changed
• 5054 - Resolved issue introduced in 2018.9.0 where updating step template usages was causing exception when viewing project

• 4969 - Dashboard can be cached longer than 2 seconds
• 5037 - Step template usages are now sorted alphabetically
• 5043 - Show more informative summary text for an Active Directory identity when the specified account has no email address set
• 5048 - Added pod and node affinity settings to the k8s container deployment step
• 5050 - Only show the channel chip on the task summary page if the project has more than one channel
• 5051 - Migrator now remaps Deploy Release step projects

• 5029 - UI improve the lifecycles list for long lifecycles
• 5039 - Updated the UI design and user-experience when adding new deployment targets/workers
• 5041 - The task summary page now shows the channel chip
• 5044 - Resolved issue with multiple channel rules introduced in 2018.9.0
• 5046 - Instead of limiting workers and worker pools by licensing, we now only limit workers themselves, allowing you to create as many worker pools as you want
• 5047 - Sensitive output variables are now masked in the task logs of child steps (CVE-2018-18900)

• 5023 - User accounts from certain email domains can be excluded from billing at the discretion of the service provider
• 5025 - Improvements to concurrency protection on variable sets
• 5026 - Call to api/projects?name=[test] fails because of the special chars
• 5027 - Sensitive Template Project variables on a Tenant will now show "value required" warning when they are empty
• 5028 - Now preventing the SQL Database connection string from containing both Integrated Security and SQL Authentication with User ID or Password to prevent confusion
• 5035 - Bundled Tentacle 3.23.2 which fixes a bug in the Tentacle Manager that was preventing showing instances
• 5036 - 2018.9.0 introduced an issue where upgrading was converting offline-package-drop targets to use artifact mode
• 5042 - 2018.8.0 introduced an RCE flaw in YAML parsing (CVE-2018-18850) which is now rectified

• 4302 - The built-in worker command-line interface handles machine\user and domain\user formats more gracefully
• 4574 - Updated the Azure PS bundle to 6.8.1 and the Azure CLI to 2.0.45
• 4774 - Offline-Drop targets can now store the bundle as an Octopus Artifact
• 4871 - The interruption and artifact APIs now have an ETag, lessening the load on the database
• 4953 - In 2018.8 it was possible to corrupt auto-release-creation and channel rules by renaming package references on script steps
• 4954 - Allow script step package references to be used for project versioning
• 4970 - Updated the AWS PS bundle to 3.3.343.0 and the AWS CLI to 1.16.15
• 4971 - Updated Terraform to 0.11.8, the AzureRM plugin to 1.16.0, and the AWS plugin to 1.39.0
• 4989 - Fix for error reporting missing variable set snapshot NullReferenceException during deployments and variable set editing
• 4990 - Built-In Worker settings are now displayed on the Configuration->Nodes->Server Settings page
• 4995 - Exposed annotations for the pod resources created by the Kubernetes deployment resource
• 4997 - The path command-line interface now validates paths and tries to create the path if it does not exist
• 5017 - The Octopus.Server.exe database --upgrade --skipLicenseCheck command actually skips the license check properly now
• 5018 - Fixed a bug with auto login when only the Active Directory provider was enabled
• 5019 - K8S service annotations now exposed like Ingress and Deployment annotations

• 4958 - Fixed an issue with NuGet feeds when migrating from 2.6 to versions later than 2018.8.0
• 4973 - Machines that trigger an auto deploy event while a tenanted deployment is in progress will now receive that deployment when it finishes
• 4975 - Fixed a rare crash that occurred when attempting to write log files
• 4991 - Add backwards support to deploy Service Fabric applications using CloudRegion targets
• 4998 - Terraform Apply step now supports multi-line output variables
• 4999 - Added a null check for a missing ActionName in GetPackageVersionsUsedInReleases
• 5005 - Bugfix: Kubernetes volume mount validation when using raw YAML

• 4949 - Allow additional Kubernetes resources to participate in the Deploy Containers lifecycle
• 4994 - Validation rules now prevent creating an Ingress without a Service in the Deploy Kubernetes containers step
• 4996 - Fixed a race condition in the UI during onboarding
• 5001 - Fix for tenant variable loading issues with > 2100 tenants

• 4982 - Search field on “Include a Script Module” is now case-insensitive
• 4983 - K8S Secret and ConfigMap resources no longer deployed when the feature is disabled
• 4984 - K8S suggestion lists are now case insensitive
• 4985 - K8S Ingress host allowed variable substitution
• 4986 - Exposed annotations on the K8S deployment resource
• 4987 - Added extra help to the OpenID Connect authentication providers
• 4988 - BugFix: Acquisition of Helm charts fails when the username is empty
• 4992 - Fix for migrator importing proxies

• 4404 - Fixed issue with running scriptcs on mono version 5.10 or newer
• 4620 - Fixed exception when using Tentacle show-configuration command when no certificate is configured
• 4703 - Made the license command more resilient and added a command-line switch to --skipLicenseCheck
• 4875 - Improved how the license command handles encodings with the --licenseBase64 parameter
• 4900 - Fixed proxy environment variables for authenticated proxies
• 4903 - Fix a bug where project cannot be cloned when it has a scheduled trigger
• 4918 - Fixed issue with application assembly references clashing with Azure PS references
• 4924 - UI fix for Library Certificates paging issue
• 4927 - Added add\refresh button to feed selection
• 4931 - Ensure Helm values supplied by the Key/Value option are properly exploded
• 4932 - Variable Sets used by a large number of snapshots no longer produce an error when deletion is attempted
• 4934 - Exposed pod and container security context options for Kubernetes steps
• 4935 - Tenant tags and tag sets are now correctly displayed in the order defined in the tag set
• 4943 - Okta authentication provider updated so SSO now triggers login in Octopus portal
• 4945 - The --instance command line argument is now case insensitive and required in fewer circumstances
• 4946 - Multi-select drop downs (as used on the Manage Tenant Tags dialog) no longer open by default
• 4950 - Fix a bug where project setting and create deployment page should not require TenantView permission for untenanted project
• 4951 - Fixed a bug where onboarding would make duplicate requests after navigating around the UI
• 4952 - Kubernetes authentication options are now more clearly defined
• 4955 - Added better error message when kubectl could not be found
• 4960 - Fixed backwards compatibility in Octopus.Client ProjectEditor.CreateOrModify function
• 4961 - Azure and AWS logins supported for K8S targets
• 4962 - The license command now allows licence as an alias
• 4963 - The license command can now accept the license via a file
• 4965 - SSH health checks no longer block other scripts from running on the same target
• 4972 - Added filters to the api/reporting/deployments/xml endpoint
• 4974 - Fixed an edge case where the ETag would not update
• 4977 - The Configuration->Nodes page can now be filtered if there are multiple nodes
• 4978 - New-OctopusKubernetesTarget can now be used to create new K8S targets
• 4980 - Remove support for Ssl3.0
• 4981 - Allowed Recreate and Rolling Update strategies to wait for the K8S deployment to finish

• 4785 - Added ability to run script console on workers or worker pools
• 4917 - Fix to show some missing usage reporting of Azure accounts in release snapshots
• 4923 - Fix an issue where editing a lifecycle does not show correctly if the phase does not override the default retention policy
• 4926 - Fix an issue where default worker pool wasn't selected by default for some steps when first created
• 4936 - Kubernetes liveness probe scheme selection fixed
• 4937 - Added additional validation for the Kubernetes target cluster URL
• 4938 - Resolved issue with channel version rules for script step package references being lost when modifying deployment process
• 4939 - Fix for incorrect warnings from migrator about missing machines

• 4616 - Log additional detail for failure messages on ARM deployments
• 4764 - Encrypt and write output variables to a file instead of passing them as a base64 encoded string for offline drop targets
• 4894 - Resolved issue with absolute paths to staged packages in offline-drops
• 4905 - Enable the ECR feed type for use in the kubernetes steps
• 4909 - Fix a bug where WorkerPool and Environment is not populated when adding Worker and Deployment Target
• 4912 - Newly added environments now appear on the dashboard correctly
• 4913 - Resolved issue with terraform steps not working through a proxy
• 4914 - Kubernetes Ingress host now accepts plain subdomains (e.g. http://example.org|example.org)
• 4916 - Reword 'Helm Update' command as 'Helm Upgrade'
• 4919 - Fixed an bug that stopped deployments from completing when an error occurred writing to the system log
• 4921 - Fixed "forcibly closed" error occurring in tentacle communications
• 4922 - Resolved issue migrating releases which contain named package references
• 4933 - Resolved issue where packages were not being displayed in release for Deploy a Release steps