Upgrading to v5.0.0-rc.2¶
Legacy alpine.* and unprefixed property names no longer accepted
This release drops the compatibility shim that translated v4-era
alpine.* and unprefixed property names (for example
alpine.ldap.enabled, database.url, bcrypt.rounds) into their
dt.* equivalents. Migrate any configuration still using those names
to the current dt.* properties. The API server refuses to start when
it encounters a legacy key to prevent silent misconfiguration.
The original alpine.* to dt.* migration is documented in the
v0.7.0-alpha.3 upgrade notes. See
Configuration Properties
for the authoritative list of supported properties and their corresponding
environment variable spellings.
Apologies for introducing breaking changes in an RC build.
Warning
This release renames roughly 100 configuration properties for naming consistency ahead of the GA release. No aliases or backward-compatibility shims exist. Update affected configuration before upgrading.
-
Configuration properties renamed. The renames consistently use kebab-case segments and align related properties under shared namespaces. The full list of old-to-new names follows, grouped by section.
CORS
Old New dt.cors.allow.credentialsdt.cors.allow-credentialsdt.cors.allow.headersdt.cors.allowed-headersdt.cors.allow.methodsdt.cors.allowed-methodsdt.cors.allow.origindt.cors.allowed-originsdt.cors.expose.headersdt.cors.exposed-headersdt.cors.max.agedt.cors.max-ageDurable execution engine
The run retention unit changed from an ISO-8601 duration to milliseconds.
Old New dt.dex-engine.maintenance.run-retention-duration=P1Ddt.dex-engine.maintenance.run-retention-ms=86400000dt.dex-engine.maintenance.worker.initial-delay-msdt.dex-engine.maintenance.worker-initial-delay-msdt.dex-engine.maintenance.worker.interval-msdt.dex-engine.maintenance.worker-interval-msdt.dex-engine.metrics.collector.*dt.dex-engine.metrics-collector.*File storage
Old New dt.file-storage.local.compression.leveldt.file-storage.local.compression-leveldt.file-storage.s3.access.keydt.file-storage.s3.access-keydt.file-storage.s3.compression.leveldt.file-storage.s3.compression-leveldt.file-storage.s3.secret.keydt.file-storage.s3.secret-keyGeneral
Old New dt.config.log.valuesdt.config.log-valuesdt.data.directorydt.data-directorydt.telemetry.submission.enabled.defaultdt.telemetry.submission.default-enableddt.tmp.delay.bom.processed.notificationdt.tmp.delay-bom-processed-notificationHTTP
The HTTP connect timeout unit changed from seconds to milliseconds. Note that the standard
HTTP_PROXY,HTTPS_PROXY, andNO_PROXYenvironment variables are still supported.Old New dt.http.proxy.addressdt.http.proxy.hostdt.http.proxy.passworddt.http.proxy.auth.passworddt.http.proxy.usernamedt.http.proxy.auth.usernamedt.http.timeout.connection(seconds)dt.http.connect-timeout-ms(milliseconds, default30000)dt.no.proxydt.http.proxy.exclusionsInit tasks
Old New dt.init.and.exitdt.init-tasks.exit-after-completiondt.init.task.database.migration.enableddt.init-task.database-migration.enableddt.init.task.database.partition.maintenance.enableddt.init-task.database-partition-maintenance.enableddt.init.task.database.seeding.enableddt.init-task.database-seeding.enableddt.init.task.dex.engine.database.migration.enableddt.init-task.dex-engine-database-migration.enableddt.init.tasks.datasource.close-after-usedt.init-tasks.datasource.close-after-completiondt.init.tasks.datasource.namedt.init-tasks.datasource.namedt.init.tasks.enableddt.init-tasks.enabledLDAP
Old New dt.ldap.attribute.maildt.ldap.mail-attributedt.ldap.attribute.namedt.ldap.name-attributedt.ldap.auth.username.formatdt.ldap.username-formatdt.ldap.basedndt.ldap.base-dndt.ldap.bind.passworddt.ldap.bind-passworddt.ldap.bind.usernamedt.ldap.bind-usernamedt.ldap.groups.filterdt.ldap.group-filterdt.ldap.groups.search.filterdt.ldap.group-search-filterdt.ldap.security.authdt.ldap.security-authdt.ldap.server.urldt.ldap.server-urldt.ldap.team.synchronizationdt.ldap.team-synchronizationdt.ldap.user.groups.filterdt.ldap.user-groups-filterdt.ldap.user.provisioningdt.ldap.user-provisioningdt.ldap.users.search.filterdt.ldap.user-search-filterOIDC
Old New dt.oidc.auth.customizerdt.oidc.auth-customizerdt.oidc.client.iddt.oidc.client-iddt.oidc.team.synchronizationdt.oidc.team-synchronizationdt.oidc.teams.claimdt.oidc.teams-claimdt.oidc.teams.defaultdt.oidc.default-teamsdt.oidc.user.provisioningdt.oidc.user-provisioningdt.oidc.username.claimdt.oidc.username-claimTask Scheduling
Old New dt.task.defect.dojo.upload.crondt.task.defect-dojo-upload.crondt.task.epss.mirror.crondt.task.epss-mirror.crondt.task.fortify.ssc.upload.crondt.task.fortify-ssc-upload.crondt.task.git.hub.advisory.mirror.crondt.task.github-advisory-vuln-data-source-mirror.crondt.task.kenna.security.upload.crondt.task.kenna-security-upload.crondt.task.metrics.maintenance.crondt.task.metrics-maintenance.crondt.task.nist.mirror.crondt.task.nvd-vuln-data-source-mirror.crondt.task.osv.mirror.crondt.task.osv-vuln-data-source-mirror.crondt.task.package.metadata.maintenance.crondt.task.package-metadata-maintenance.crondt.task.project.maintenance.crondt.task.project-maintenance.crondt.task.tag.maintenance.crondt.task.tag-maintenance.crondt.task.vulnerability-policy-bundle-sync.crondt.task.vuln-policy-bundle-sync.crondt.task.vulnerability.analysis.crondt.task.portfolio-analysis.crondt.task.vulnerability.database.maintenance.crondt.task.vuln-database-maintenance.crondt.task.vulnerability.metrics.update.crondt.task.vuln-metrics-update.cronVulnerability policy bundle
Old New dt.vulnerability.policy.bundle.auth.bearer.tokendt.vuln-policy-bundle.auth.bearer-tokendt.vulnerability.policy.bundle.auth.passworddt.vuln-policy-bundle.auth.passworddt.vulnerability.policy.bundle.auth.usernamedt.vuln-policy-bundle.auth.usernamedt.vulnerability.policy.bundle.urldt.vuln-policy-bundle.url
