Firefly Releases¶

Learn about current and past releases of the Firefly distributed component.

Supported Releases¶

Release 1.3.4¶

Firefly 1.3.4 was released on April 16, 2024. Key features include:

• Firefly now supports requesting certificates using Unix Domain Sockets: gRPC and REST clients can now request certificates from Firefly using a Unix Domain Socket (UDS) to forgo the overhead of TLS and authentication for use cases where clients are co-hosted with Firefly.

• Firefly now has a method specifically for downloading trust chain CA certificates: Trust Manager clients can obtain the CA certificates applicable to Firefly trust without having to request a certificate.

• Helm charts for Firefly now support configuring API servers: Support for configuring gRPC, GraphQL, and REST servers has been added to Helm charts.

• Firefly image now includes OCI annotions: Introduced standard OCI annotations (labels) to the Firefly container image.

• Firefly instances may now derive parts of their name from environment variables: Environment variable substitution is now supported for Firefly instance names when using Venafi Control Plane.

v1.3.4¶

Docker Image¶

docker pull registry.venafi.cloud/public/venafi-images/firefly@v1.3.4

Helm Chart¶

helm pull oci://registry.venafi.cloud/public/venafi-images/helm/firefly \
    --version v1.3.4

Changelog¶

1. Clients can request certificates using a Unix Domain Socket (UDS) with gRPC and REST. (VC-27929)
2. Clients can obtain the CA certificates in the Firefly trust chain without requesting a certificate. (VC-27930)
3. Timeout for Firefly to Venafi Control Plane increased to 30 seconds.
4. Helm charts enhanced to support configuration of gRPC, GraphQL, and REST API servers.
5. OCI annotations (labels) added to Firefly container image. (VC-31094)
6. Support for environment variable substitution when naming Firefly instances. (VC-31747)

Release 1.2.1¶

Firefly 1.2.1 was released on November 1, 2023. Key features include:

• Firefly now supports requesting certificates using a public key: gRPC clients can now request certificates from Firefly using a public key and Subject/SAN values for use cases where workloads generate keypairs but orchestrators request certificates for them.

• Firefly now supports Instance Identity Documents from Azure and Google (in addition to AWS): Clients can now authenticate and get signed certificates from Firefly using Instance Identity Documents from Azure and Google. This builds on the AWS IID support in Firefly 1.1 and means that Firefly now supports all three major cloud providers.

• Updated Terms of Use / EULA: The Firefly Terms of Use have been updated and are now available at a new URL. Please read the Venafi End User License Agreement before upgrading.

v1.2.1¶

Docker Image¶

docker pull registry.venafi.cloud/public/venafi-images/firefly@v1.2.1

Helm Chart¶

helm pull oci://registry.venafi.cloud/public/venafi-images/helm/firefly \
    --version v1.2.1

Changelog¶

1. Clients can request certificates with a public key and Subject/SAN values using gRPC. (VC-27928)
2. Clients can now authenticate to Firefly using Azure workload identity documents. (VC-24321)
3. Clients can now authenticate to Firefly using Google workload identity documents. (VC-24322)
4. The End User License Agreement has been updated. (VC-26429)
5. Miscellaneous bug fixes and stability improvements.

Release 1.1¶

Firefly 1.1 was released on August 9, 2023. Key features include:

• New AWS authentication endpoint: A new API endpoint for AWS authentication allows clients to authentication using AWS workload identity documents
• Helm Chart: The addition of a new Helm chart makes it easy to install Firefly in a Kubernetes cluster, and to integrate it with cert-manager.

v1.1.0¶

Docker Image¶

docker pull \
    registry.venafi.cloud/public/venafi-images/firefly@sha256:7c1dd8e45995d093d62782621ff415e90562e4d1b903093a57b0a701cd9040e5

Helm Chart¶

helm pull oci://registry.venafi.cloud/public/venafi-images/helm/firefly \
    --version v1.1.0

Changelog¶

1. Clients can now authenticate to Firefly using AWS workload identity documents. (VC-22896)
2. A new Helm chart makes it easy to install Firefly in a Kubernetes cluster and integrate with cert-manager (VC-23956)
3. Improved error messages when connecting to the Venafi control plane help diagnose configuration errors. (VC-25547)
4. Miscellaneous bug fixes and stability improvements.

Release 1.0¶

Firefly 1.0 was released on April 19, 2023. Key features include:

• Versatility: Firefly has multiple, flexible deployment options including cloud, cloud-native, DevOps, and federated PKI.
• Performance: Firefly can generate keys and issue certificates at speeds and volumes well beyond service mesh requirements.
• Autonomy: Firefly operation is decentralized making it attractive to software architects and developers.
• Security: Firefly is managed and governed by the Venafi Control Plane and supports modern authentication mechanisms.
• Leanness: Firefly requires minimal infrastructure to deploy in production to achieve high availability and fault tolerance.

v1.0.2¶

Docker Image¶

docker pull \
    registry.venafi.cloud/public/venafi-images/firefly@sha256:85f4a6954eabc27ceed7632be523ad6785009534d3c7e56aab8893dc03555b6f