|
| 1 | +--- |
| 2 | +title: Bytebase 3.11.0 - Oct 10, 2025 |
| 3 | +author: Adela |
| 4 | +updated_at: 2025/10/10 18:00:00 |
| 5 | +description: 'Environment rollout policy update' |
| 6 | +--- |
| 7 | + |
| 8 | +import InstallUpgrade from '/snippets/install/install-upgrade.mdx'; |
| 9 | + |
| 10 | +### 🔔 Notable Changes |
| 11 | + |
| 12 | +- **Environment rollout policy update** |
| 13 | + - **Issue Creators** and **Last Issue Approvers** can no longer roll out issues. Manual rollouts now require specifying workspace/project roles or users with the `bb.taskRuns.create` permission. |
| 14 | + - The force rollout mechanism has been replaced by configurable rollout requirements: |
| 15 | + - **Require Issue Approval** – ensures issues must be approved before rollout can proceed (default: enabled). |
| 16 | + - **Plan Check Enforcement** – controls rollout behavior based on plan check results (default: block on errors only). |
| 17 | + |
| 18 | +- Deprecate `bb.sql.export` permission and `roles/projectExporter` role. |
| 19 | +- Deprecate `request.row_limit` in the project IAM policy. Use `maximum_result_rows` in `QueryDataPolicy` instead. |
| 20 | + |
| 21 | +- **API** |
| 22 | + |
| 23 | + - Standardize CEL attribute naming with prefixes: `resource.*`, `statement.*`, `request.*` (e.g., environment_id → resource.environment_id) |
| 24 | + - Unify risk levels to single `RiskLevel` enum; changed from integers (`100`, `200`, `300`) to strings (`LOW`, `MODERATE`, `HIGH`); CEL expressions migrate from `format level == 300` to `level == "HIGH"` |
| 25 | + - Simplify approval template to singleton with flat role array; replace `approval_finding_done`/`approval_finding_error` with `approval_status` enum |
| 26 | + - Consolidate task types into `DATABASE_MIGRATE` (with `migrate_type`: DDL/DML/GHOST) and `DATABASE_SDL`. Split changelog Type into `Type` and `MigrationType` enums. Merged `DatabaseSchemaUpdate` and `DatabaseDataUpdate` into `DatabaseUpdate`. |
| 27 | + |
| 28 | +- **Terraform** (provider version: 3.11.1) |
| 29 | + |
| 30 | + - Use `RiskLevel` enum instead of numeric values for level in `bytebase_risk`. Example: [risk.tf](https://github.com/bytebase/terraform-provider-bytebase/blob/main/examples/setup/risk.tf) |
| 31 | + - Remove `disable_copy_data_policy`; moved into `query_data_policy` as the `disable_copy_data` field. Example: [environment.tf](https://github.com/bytebase/terraform-provider-bytebase/blob/main/examples/setup/environment.tf#L60) |
| 32 | + - Update structure of the `approval_flow` setting. Example: [approval_flow.tf](https://github.com/bytebase/terraform-provider-bytebase/blob/main/examples/setup/approval_flow.tf) |
| 33 | + - Remove `row_limit` from `bytebase_iam_policy` setting. |
| 34 | + |
| 35 | +- Remove `Format on Save` feature from **SQL Editor**. |
| 36 | + |
| 37 | +### 🎄 Enhancements |
| 38 | + |
| 39 | +- Support key-value instance labels. |
| 40 | +- Optimize **Schema Editor** performance. |
| 41 | +- Add pre-flight validation and circuit breaker to **gh-ost workflow**. |
| 42 | +- **AWS Elasticsearch** – Add cross-account support. |
| 43 | + |
| 44 | +### 🐞 Bug Fixes |
| 45 | + |
| 46 | +- Add fallback behavior for **PostgreSQL** dump topological sorting to prevent blocking dump functionality. |
| 47 | + |
| 48 | +<InstallUpgrade /> |
0 commit comments