Skip to content

build(deps): bump kcadm to 26.4.2 #1189

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 27, 2025
Merged

build(deps): bump kcadm to 26.4.2 #1189

merged 1 commit into from
Oct 27, 2025

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Oct 27, 2025

bump kcadm to 26.4.2

GitHub Releases Update

Update version

change detected: * key "$.runs.steps[0].env.DEFAULT_KEYCLOAK_VERSION" updated from "26.4.1" to "26.4.2", in file ".github/actions/setup-kcadm/action.yml"

26.4.1 
<div>

<h2>Upgrading</h2>
<p>Before upgrading refer to <a href="https://www.keycloak.org/docs/latest/upgrading/#migration-changes">the migration guide</a> for a complete list of changes.</p>

<h2>All resolved issues</h2>


<h3>New features</h3>
<ul>
<li><a href="https://github.com/keycloak/keycloak/issues/43020">#43020</a> Secure Client-Initiated Renegotiation - disable by default <code>dist/quarkus</code></li>
</ul>

<h3>Enhancements</h3>
<ul>
<li><a href="https://github.com/keycloak/keycloak/issues/42990">#42990</a> Hide read-only email attribute in update profile context with update email enabled <code>user-profile</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43357">#43357</a> JDBC_PING should publish its physical address on startup </li>
</ul>

<h3>Bugs</h3>
<ul>
<li><a href="https://github.com/keycloak/keycloak/issues/40965">#40965</a> Group permission denies to view user <code>admin/fine-grained-permissions</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/41292">#41292</a> openid-connect flow is missing response type on language change <code>authentication</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/42565">#42565</a> Standard Token Exchange: chain of exchanges eventually fails <code>token-exchange</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/42676">#42676</a> Security Defenses realm settings lost when switching between Headers and Brute Force Detection tabs (v25+) <code>admin/ui</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/42907">#42907</a> Race condition in authorization service leads to NullPointerException when evaluating permissions during concurrent resource deletion <code>authorization-services</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43042">#43042</a> Avoid NPE in FederatedJWTClientAuthenticator when checking for supported assertion types <code>core</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43070">#43070</a> Update email page with pending verification email messages prefilled with old email <code>user-profile</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43096">#43096</a> keycloak-operator 26.4.0 missing clusterrole permissions <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43104">#43104</a> Release notes fix for update email <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43161">#43161</a> Restarting an user session broken for persistent sessions <code>infinispan</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43164">#43164</a> Keycloak docs state that only TLSv1.3 is used <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43218">#43218</a> Cannot revoke access token generated by Standard Token Exchange <code>oidc</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43254">#43254</a> Make sure username and email attributes are lower cased when fetching their values from LDAP object <code>ldap</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43269">#43269</a> Keycloak 26.4 returns a different error response on a token request without Client Assertion (private_key_jwt client authentication) from Keycloak 26.3 does <code>oidc</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43270">#43270</a> Keycloak 26.4 returns a different error response on a CIBA backchannel authentication request without Client Assertion (private_key_jwt client authentication) from Keycloak 26.3 does <code>oidc</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43286">#43286</a> Broken links on DB server configuration guide <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43304">#43304</a> SAML Client - Encrypt assertions toggle shows wrong dialog text (Client signature required) <code>saml</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43328">#43328</a> "Remember me" user sessions remain valid after "remember me" realm setting is disabled <code>authentication</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43335">#43335</a> First JDBC_PING initialization happens in the JTA transaction context <code>infinispan</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43349">#43349</a> Client session may be lost during session restart <code>infinispan</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43394">#43394</a> SPIFFE client authentication does not work when JWT SVID includes `iss` claim </li>
<li><a href="https://github.com/keycloak/keycloak/issues/43459">#43459</a> Invalid YAML in advanced Operator configurations <code>docs</code></li>
</ul>

</div>
26.4.2 
<div>

<h2>Upgrading</h2>
<p>Before upgrading refer to <a href="https://www.keycloak.org/docs/latest/upgrading/#migration-changes">the migration guide</a> for a complete list of changes.</p>

<h2>All resolved issues</h2>



<h3>Enhancements</h3>
<ul>
<li><a href="https://github.com/keycloak/keycloak/issues/42991">#42991</a> Final review and update for UPDATE_EMAIL documentation <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43351">#43351</a> Make pending email verification attribute removable by admin <code>user-profile</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43650">#43650</a> SPIFFE should support OIDC JWK endpoint </li>
</ul>

<h3>Bugs</h3>
<ul>
<li><a href="https://github.com/keycloak/keycloak/issues/26374">#26374</a> Workflow failure: Quarkus IT - FipsDistTest#testUnsupportedHttpsPkcs12KeyStoreInStrictMode <code>ci</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/30939">#30939</a> Vulnerability in brute force detection settings <code>authentication</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43022">#43022</a> Incorrect Basic Auth encoding for OIDC IDentity Provider when Client ID contains colon <code>identity-brokering</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43191">#43191</a> Upgrade guide for 26.4.0 should mention new minimal PostgreSQL server version 13 requirement <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43244">#43244</a> UI crash on admin `/users/add-user` since 26.4.0 <code>admin/ui</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43544">#43544</a> Intra-document links not rendered in downstream <code>docs</code></li>
<li><a href="https://github.com/keycloak/keycloak/issues/43561">#43561</a> Server does not shutdown gracefully when started with --optimized <code>core</code></li>
</ul>

</div>
GitHub Action workflow link
Updatecli logo

Created automatically by Updatecli

Options:

Most of Updatecli configuration is done via its manifest(s).

  • If you close this pull request, Updatecli will automatically reopen it, the next time it runs.
  • If you close this pull request and delete the base branch, Updatecli will automatically recreate it, erasing all previous commits made.

Feel free to report any issues at github.com/updatecli/updatecli.
If you find this tool useful, do not hesitate to star our GitHub repository as a sign of appreciation, and/or to tell us directly on our chat!

@alfresco-build
build(deps): Update version
aa3ab51 
Made with ❤️️ by updatecli
@github-actions github-actions bot requested a review from a team as a code owner October 27, 2025 06:05
@github-actions github-actions bot added the dependencies Pull requests that update a dependency file label Oct 27, 2025
@github-actions github-actions bot enabled auto-merge (squash) October 27, 2025 06:05
@github-actions github-actions bot merged commit 3956e3c into master Oct 27, 2025
3 checks passed
@github-actions github-actions bot deleted the updatecli_master_keycloak branch October 27, 2025 11:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dsibilio dsibilio dsibilio approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dsibilio @alfresco-build