v1.5.0
Release Notes
✨ New Features & Enhancements
Falco Plugin Published & Open-Sourced
The Edera Falco plugin is now published as part of formal Edera releases and is fully open-sourced. The plugin now exposes the same queryable fields on zone-level events that Falco exposes for host events. Supported field classes include: evt evt (syscalls) process fd fs.path fdlist This enables first-class Falco rule support for zones without requiring kernel access or host-level privileges.
Switched to astral-tokio-tar
Replaced krata-tokio-tar with astral-tokio-tar for more robust and actively maintained async tar handling.
Styrolite Split Into Its Own Repository
Styrolite has been moved into a dedicated repo and is now consumed as an independent crate. This reduces cross-repo coupling and improves build graph clarity.
GPU Scrub Daemon Added
Added protect-gpu-scrub, a temporary but important stopgap before full GPU device lifecycle management lands. It ensures GPU memory is scrubbed between workloads.
Zone-BPF Kernel Flavor Merged Into Default Kernel
The previously separate zone-bpf kernel flavor has been merged into the baseline zone kernel. Users no longer need a custom kernel to run in-zone eBPF tooling. This simplifies operational workflows and reduces kernel variant fragmentation.
🐛 Bug Fixes
Lower-Latency Pod Destruction
A large portion of zone destruction has been moved into StopPodSandbox, significantly reducing Kubernetes pod teardown latency.
Correct Handling of Start Time = 0
Added logic to ensure containers reporting a start time of 0 are not treated as Running while StartContainer is still in progress.
Fixed Unsafe Locking Post-Fork
Resolved potentially unsafe locking interactions after a process fork.
Corrected kubelet override.conf Generation
Fixed a bug causing incorrect generation of kubelet’s override.conf.
IDM Client Blocking Zone Launch
Fixed an issue where IDM clients could unintentionally block zone creation.
Corrected Version Reporting in protect-ctl
Fixed a bug that caused protect-ctl to report the wrong Edera version.
Known issues
None reported in this release.
Upgrade notes
There are no known breaking changes in this release from the previous release v1.4.0.