☁️ Apache CloudStack – Daily Status Report
Date: June 4, 2026
🚀 Latest Release
Apache CloudStack 4.22.1.0 (LTS) — released May 26, 2026 🎉
Maintenance update with full release notes, install and upgrade guides available at [docs.cloudstack.apache.org]((docs.cloudstack.apache.org/redacted)
🔀 Recently Merged PRs
| PR |
Title |
Author |
#13320 |
Stop role from auto-changing when user manually selects a role during account creation |
@gp-santos |
#13210 |
Fix snapshot command timeout unit conversion (seconds→ms for qemu-img) |
@erikbocks |
#13050 |
FlashArray: fall back to array capacity when pod has no quota |
@genegr |
#13238 |
Docs: note MariaDB support in README |
@robertsilen |
#13078 |
fix(linstor): surface ambiguous template fallbacks and legacy orphan cleanup |
@jmsperu |
#13021 |
Fix validation of CPVM states in multiple zones |
@Tonitzpp |
#12961 |
Refactor Quota balance |
@winterhazel |
🔥 Active PRs to Watch (updated today)
| PR |
Title |
Author |
#13349 |
Optimize DB updates: bulk UPDATE instead of row-level locks |
@sureshanaparti |
#13345 |
Indirect agent connection improvements |
@sureshanaparti |
#13346 |
systemvm: fix VPC VPN issue when network ID > 1000 on Netris |
@weizhouapache |
#13330 |
Fix VM migration with attached ISO |
@hsato03 |
#13032 |
Network Extension: Orchestrate external network devices |
@weizhouapache |
#13074 |
feat(backup): incremental NAS backup support for KVM |
@jmsperu |
#12711 |
Feature: Key Management Service (KMS) |
@vishesh92 |
#12124 |
New Dell EMC ECS Object Storage Plugin |
@mhkadhum |
#13293 |
Add draft project security threat-model document |
@potiuk |
#12321 |
Deal with Storage Manager tech debt |
@DaanHoogland |
🐛 New Issues This Week (June 1–4)
A very active week for issue reporting! Highlights:
🔒 Security Hardening Series
Contributor @davift filed a detailed batch of hardening requests:
#13343 – Block abusers by IP (rate limiting/IP banning)#13342 – Request limits and throttling defaults#13341 – Weak default passwords & DB encryption key#13340 – Per-account/user source CIDR allowlist#13339 – 2FA required before destructive operations#13338 – Email alerts for security-relevant events#13335–#13337 – 2FA configuration improvements
Contributor @YLChen-007 filed several sensitive log exposure vulnerability reports:
#13311 – ApiServlet logs duplicate sensitive query params#13309 – Script.java command sanitization vulnerability#13308 – Plaintext passwords in OVM3 config#13307 – Plaintext VM user-data & SSH keys in logs#13306 – Keystore credentials exposed in logs#13305 – SSL private key exposure#13304 – Auth credentials exposed in system logs#13303 – Credential exposure via param serialization
📋 Other Notable Issues
#13347 – Persistent routes on Virtual Router lost after reboot#13331 – Blank volume snapshots list (bug)#13329 – Zone wizard: can't re-add host if initial add fails#13328 – No option to delete the SystemVM template#13326 – No option to update the Bucket region#13324 – Missing ErrorinPrepareForMaintenance event#13313 – Show VM name in backup events
📊 Milestone Progress
4.23.0 (Next Major Release)
- ✅ Closed: 136 issues/PRs
- 🔧 Open: 186 issues/PRs
- Keep up the momentum — the pipeline is flowing well! 💪
✅ Actionable Next Steps for Maintainers
- 🔒 Security review needed: The large batch of security hardening issues (
#13303–#13343) requires triage — many touch sensitive defaults and log exposure. Consider assigning dedicated security-focused reviewers.
- 👀 Review ready PRs:
#13349 (bulk DB UPDATE optimization), #13345 (agent connection improvements), and #13346 (VPN fix) all need attention.
- 🗺️ Big features in flight: KMS (
#12711), incremental NAS backup (#13074), Network Extension (#13032), and Dell EMC ECS plugin (#12124) are all actively updated — these deserve review bandwidth.
- 🧹 Tech debt: PR
#12321 (Storage Manager cleanup) has been open a while — worth prioritizing to reduce long-term maintenance cost.
- 📝 Threat model:
#13293 (draft security threat model) is a great initiative — community input and review is encouraged!
Generated automatically on June 4, 2026. Keep building amazing cloud infrastructure! ☁️⚡
Generated by Repo Status · sonnet46 833.2K · ◷
Add this agentic workflows to your repo
To install this agentic workflow, run
gh aw add githubnext/agentics/workflows/repo-status.md@main
☁️ Apache CloudStack – Daily Status Report
Date: June 4, 2026
🚀 Latest Release
Apache CloudStack 4.22.1.0 (LTS) — released May 26, 2026 🎉
Maintenance update with full release notes, install and upgrade guides available at [docs.cloudstack.apache.org]((docs.cloudstack.apache.org/redacted)
🔀 Recently Merged PRs
#13320@gp-santos#13210@erikbocks#13050@genegr#13238@robertsilen#13078@jmsperu#13021@Tonitzpp#12961@winterhazel🔥 Active PRs to Watch (updated today)
#13349@sureshanaparti#13345@sureshanaparti#13346@weizhouapache#13330@hsato03#13032@weizhouapache#13074@jmsperu#12711@vishesh92#12124@mhkadhum#13293@potiuk#12321@DaanHoogland🐛 New Issues This Week (June 1–4)
A very active week for issue reporting! Highlights:
🔒 Security Hardening Series
Contributor
@daviftfiled a detailed batch of hardening requests:#13343– Block abusers by IP (rate limiting/IP banning)#13342– Request limits and throttling defaults#13341– Weak default passwords & DB encryption key#13340– Per-account/user source CIDR allowlist#13339– 2FA required before destructive operations#13338– Email alerts for security-relevant events#13335–#13337– 2FA configuration improvementsContributor
@YLChen-007filed several sensitive log exposure vulnerability reports:#13311– ApiServlet logs duplicate sensitive query params#13309– Script.java command sanitization vulnerability#13308– Plaintext passwords in OVM3 config#13307– Plaintext VM user-data & SSH keys in logs#13306– Keystore credentials exposed in logs#13305– SSL private key exposure#13304– Auth credentials exposed in system logs#13303– Credential exposure via param serialization📋 Other Notable Issues
#13347– Persistent routes on Virtual Router lost after reboot#13331– Blank volume snapshots list (bug)#13329– Zone wizard: can't re-add host if initial add fails#13328– No option to delete the SystemVM template#13326– No option to update the Bucket region#13324– MissingErrorinPrepareForMaintenanceevent#13313– Show VM name in backup events📊 Milestone Progress
4.23.0 (Next Major Release)
✅ Actionable Next Steps for Maintainers
#13303–#13343) requires triage — many touch sensitive defaults and log exposure. Consider assigning dedicated security-focused reviewers.#13349(bulk DB UPDATE optimization),#13345(agent connection improvements), and#13346(VPN fix) all need attention.#12711), incremental NAS backup (#13074), Network Extension (#13032), and Dell EMC ECS plugin (#12124) are all actively updated — these deserve review bandwidth.#12321(Storage Manager cleanup) has been open a while — worth prioritizing to reduce long-term maintenance cost.#13293(draft security threat model) is a great initiative — community input and review is encouraged!Generated automatically on June 4, 2026. Keep building amazing cloud infrastructure! ☁️⚡
Add this agentic workflows to your repo
To install this agentic workflow, run