Stay Informed

This week, read about:

• Will Flatpak and Snap Replace Desktop Linux Native Apps?
• Oh Snap...Desktop Ubuntu Core to Arrive in 2024.
• One Small Leap for OpenSUSE as 15.5 Arrives Ahead of Business Sibling.
• Europe to Vote on AI laws With Potential 7% Revenue Fines.
• Snyk to Add ASPM Platform via Enso Security Acquisition.

OpenLogic Cloud Image Releases:                      
Rocky Linux 9.2

• AWS
• Azure
• Google Cloud
• Vagrant

AlmaLinux 9.2

• AWS
• Azure
• Google Cloud
• Vagrant

Key Security, Maintenance, and Features Releases

Security Based Updates

Apache Kafka 3.4.1              
Improvements:              
[KAFKA-13659] - MM2 should read all offset syncs at start up              
[KAFKA-14285] - Delete quota node in zookeeper when configs are empty              
[KAFKA-14565] - Interceptor Resource Leak              
[KAFKA-14610] - Publish Mirror Maker 2 offset syncs in task commit method              
[KAFKA-14666] - MM2 should translate consumer group offsets behind replication flow              
[KAFKA-14837] - The MirrorCheckPointConnector of MM2 will rebalance frequently, when the source cluster group is many more and changes frequently (but the list of configured synchronous group does not change)              
[KAFKA-14842] - MirrorCheckpointTask can reduce the rpc calls of "listConsumerGroupOffsets(group)" of irrelevant groups at each poll              
[KAFKA-14887] - ZK session timeout can cause broker to shutdown              
[KAFKA-14988] - Upgrade scalaCollectionCompact to v2.9 for CVE-2022-36944              
Bugs:              
[KAFKA-5756] - Synchronization issue on flush              
[KAFKA-12468] - Initial offsets are copied from source to target cluster              
[KAFKA-12558] - MM2 may not sync partition offsets correctly              
[KAFKA-13891] - sync group failed with rebalanceInProgress error cause rebalance many rounds in coopeartive              
[KAFKA-13972] - Reassignment cancellation causes stray replicas              
[KAFKA-14016] - Revoke more partitions than expected in Cooperative rebalance              
[KAFKA-14054] - Unexpected client shutdown as TimeoutException is thrown as IllegalStateException              
[KAFKA-14128] - Kafka Streams terminates on topic check              
[KAFKA-14172] - bug: State stores lose state when tasks are reassigned under EOS wit…              
[KAFKA-14295] - FetchMessageConversionsPerSec meter not recorded              
[KAFKA-14455] - Kafka Connect create and update REST APIs should surface failures while writing to the config topic              
[KAFKA-14545] - MirrorCheckpointTask throws NullPointerException when group hasn't consumed from some partitions              
[KAFKA-14639] - Kafka CooperativeStickyAssignor revokes/assigns partition in one rebalance cycle              
[KAFKA-14644] - Process should stop after failure in raft IO thread              
[KAFKA-14645] - Plugin classloader not used when retrieving connector plugin config defs via REST API              
[KAFKA-14649] - Failures instantiating Connect plugins hides other plugins from REST API, or crash worker              
[KAFKA-14659] - source-record-write-[rate|total] metrics include filtered records              
[KAFKA-14660] - Divide by zero security vulnerability (sonatype-2019-0422)              
[KAFKA-14676] - Token endpoint URL used for OIDC cannot be set on the JAAS config              
[KAFKA-14693] - KRaft Controller and ProcessExitingFaultHandler can deadlock shutdown              
[KAFKA-14704] - Follower should truncate before incrementing high watermark              
[KAFKA-14711] - kafaka-metadata-quorum.sh does not honor --command-config              
[KAFKA-14727] - Connect EOS mode should periodically call task commit              
[KAFKA-14743] - MessageConversionsTimeMs for fetch request metric is not updated              
[KAFKA-14774] - the removed listeners should not be reconfigurable              
[KAFKA-14781] - MM2 logs misleading error during topic ACL sync when broker does not have authorizer configured              
[KAFKA-14797] - MM2 does not emit offset syncs when conservative translation logic exceeds positive max.offset.lag              
[KAFKA-14809] - Connect incorrectly logs that no records were produced by source tasks              
[KAFKA-14816] - Connect loading SSL configs when contacting non-HTTPS URLs              
[KAFKA-14836] - Fix UtilsTest#testToLogDateTimeFormat failure in some cases    [KAFKA-14843] - Connector plugins config endpoint does not include Common configs              
[KAFKA-14862] - Outer stream-stream join does not output all results with multiple input partitions              
[KAFKA-14864] - Memory leak in KStreamWindowAggregate with ON_WINDOW_CLOSE emit strategy              
[KAFKA-14880] - TransactionMetadata with producer epoch -1 should be expirable              
[KAFKA-14894] - MetadataLoader must call finishSnapshot after loading a snapshot              
[KAFKA-14946] - KRaft controller node shutting down while renouncing leadership              
[KAFKA-14963] - Incorrect partition count metrics for kraft controllers              
[KAFKA-14978] - ExactlyOnceWorkerSourceTask does not remove parent metrics              
[KAFKA-14994] - jose4j is vulnerable to CVE- Improper Cryptographic Algorithm              
[KAFKA-15015] - Binaries contain 2 versions of reload4j

Non-Security Based Updates

Apache Camel 3.19.0             
CAMEL-18544-camel-http - ToD optimized context-path with spaces problem             
CAMEL-18530-Camel box cannot authorize             
CAMEL-18514-camel-health - health check for not automatically started routes should always be up             
CAMEL-18510-camel-jbang - camel bind may not work with --local-kamelet-dir             
CAMEL-18490-camel-jbang - Reset statistics can cause JMX inflight counter to be negative             
CAMEL-18489-camel-file - Exclusive rename should handle windows locking the file             
CAMEL-18483-camel-microprofile-health: Routes and consumers health checks are not registered if routes are supervised             
CAMEL-18477-knative producer with ProducerTemplate is missing the fromRouteId             
CAMEL-18476-when artemis streaming enabled then Camel-jms component is not closing inputstream for Bytes message, blocking deletion of file after its archived in windows             
CAMEL-18473-Knative component : CloudEvents have wrong time format             
CAMEL-18444-camel-caffeine - Caffeine-cache query parameter action does not work             
CAMEL-18443-Problem using AdviceWith on routes with try-catch-finally             
CAMEL-18442-camel-github - Github commit consumer does not work             
CAMEL-18439-camel-github - Consumer that polls commits crashed when repository has more than 100 commits             
CAMEL-18435-camel-core - RAW values should be kept as-s             
CAMEL-18433-camel-yaml-dsl - Unsupported field: routeConfigurationId             
CAMEL-18432-DockerConfiguration malformerd UriPath for variable operation             
CAMEL-18427-Camel Debezium with Postgres on Spring Boot doesn't work             
CAMEL-18424-camel-jbang - Dependency downloaded issue with camel-aws-s3             
CAMEL-18421-camel-core - Adding route dynamic leak bootstraps             
CAMEL-18418-aws-s3-sink Kamelet returns 403             
CAMEL-18400-jbang does not use correct camel version             
CAMEL-18399-camel-sql - NullPointer exception for DBMaker PreparedStatement             
CAMEL-18396-NotifyBuilder.matches returns always true in conjunction with NotifyBuilderMatcher usage             
CAMEL-18394-CXF-Consumer does not start             
CAMEL-18393-Camel-bigquery: NPE if select * is requested             
CAMEL-18391-camel-http - HttpSendDynamicAware not optimizing for url without slashes             
CAMEL-18387-camel-tarfile: TarAggregationStrategy throws error when first message is empty             
CAMEL-18379-camel-mail: attachments with empty fileName             
CAMEL-18377-camel-jpa producer does not reuse existing EntityManager in transaction and create its own one             
CAMEL-18375-Property description for FromDefinition is missing in camelYamlDsl.json             
CAMEL-18371-camel-resume-api: file component is not loading the cache             
CAMEL-18370-Bidning properties to route template local beans do not honor RAW()             
CAMEL-18362-camel-resume-api: kafka resume strategy fails to fetch the first batch             
CAMEL-18360-camel-jbang - Export --fresh with property placeholder using dash may fail             
CAMEL-18357-camel-core - Splitter issue with tokenizer with hashNext/next             
CAMEL-18355-HTTP component overwrites basic authentication credentials with proxy authentication             
CAMEL-18351-ExchangePropertyKey.SPLIT_COMPLETE not set to true after zip splitting completed             
CAMEL-18347-camel-test-infra: instances are not properly singleton             
CAMEL-18338-IMAP MailConsumer NullPointerException due CAMEL-16180             
CAMEL-18336-camel-jbang: YAML DSL cannot find classes for local beans             
CAMEL-18331-camel-spring-xml - <endpoint> bean added via beans.xml are parsed twice             
CAMEL-18330-RouteTemplate: templateParameter not recognized             
CAMEL-18329-RouteTemplate: templateParameter doesn't get resolved             
CAMEL-18328-RouteConfiguration with RouteTemplate doesn't work             
CAMEL-18324-camel-core - Exception during preparing exchange task can block thread             
CAMEL-18322-Camel-Jbang export copy properties erroneously             
CAMEL-18321-camel-mybatis - Should support using Map message body as-is for insert/update             
CAMEL-18319-camel-core - Supervising route controller should not eager warmup routes             
CAMEL-18310-Global SSL Context Params Force SSL for All HTTP Connections             
CAMEL-18300-Google storage component does not set metadata appropriately             
CAMEL-18289-camel-xslt-saxon: XsltAggregationStrategyTest fails with removing the log definition             
CAMEL-18288-YAML DSL DoTry does not work             
CAMEL-18286-[Camel Spring Boot] camel-lra-starter needs camel-servlet-starter to work             
CAMEL-18279-When run 3.18.0 with Spring Boot, received java.io.FileNotFoundException: class path resource [.class] cannot be opened because it does not exist             
CAMEL-18278-AdviceWith fails with Spring XML and several route cross cutting concerns             
CAMEL-18275-onCompletion tasks don't get executed in a pipeline with several SEDA queues             
CAMEL-18274-OSGi - camel-file: ClassNotFoundException because of Private-Package             
CAMEL-18271-[Camel Spring Boot Examples] Infinispan example cannot be built             
CAMEL-18270-IMAP skipFailedMessage=true, but route blocked if mail is moved while download             
CAMEL-18266-Can not use bean uri in xslt component             
CAMEL-18262-Templated route exception handling not working             
CAMEL-18255-Memory Leak with MDCUnitOfWork             
CAMEL-18182-Camel servlet file upload with multipart/form-data not success             
CAMEL-18049-Camel Webhook - error to set Webhook URL             
CAMEL-17859-camel-smpp: Consumer sometimes tries to reconnect only once             
CAMEL-16287-camel-aws2-sqs should use pagination for deciding which aws sqs queues it should create

Apache Kafka 3.4.1           
Improvement           
[KAFKA-13659] - MM2 should read all offset syncs at start up           
[KAFKA-14285] - Delete quota node in zookeeper when configs are empty               
[KAFKA-14565] - Interceptor Resource Leak           
[KAFKA-14610] - Publish Mirror Maker 2 offset syncs in task commit method           
[KAFKA-14666] - MM2 should translate consumer group offsets behind replication flow           
[KAFKA-14837] - The MirrorCheckPointConnector of MM2 will rebalance frequently, when the source cluster group is many more and changes frequently (but the list of configured synchronous group does not change)           
[KAFKA-14842] - MirrorCheckpointTask can reduce the rpc calls of "listConsumerGroupOffsets(group)" of irrelevant groups at each poll            
[KAFKA-14887] - ZK session timeout can cause broker to shutdown            
[KAFKA-14988] - Upgrade scalaCollectionCompact to v2.9 for CVE-2022-36944            
Bugs:            
[KAFKA-5756] - Synchronization issue on flush            
[KAFKA-12468] - Initial offsets are copied from source to target cluster            
[KAFKA-12558] - MM2 may not sync partition offsets correctly            
[KAFKA-13891] - sync group failed with rebalanceInProgress error cause rebalance many rounds in coopeartive            
[KAFKA-13972] - Reassignment cancellation causes stray replicas            
[KAFKA-14016] - Revoke more partitions than expected in Cooperative rebalance            
[KAFKA-14054] - Unexpected client shutdown as TimeoutException is thrown as IllegalStateException            
[KAFKA-14128] - Kafka Streams terminates on topic check            
[KAFKA-14172] - bug: State stores lose state when tasks are reassigned under EOS wit…            
[KAFKA-14295] - FetchMessageConversionsPerSec meter not recorded            
[KAFKA-14455] - Kafka Connect create and update REST APIs should surface failures while writing to the config topic            
[KAFKA-14545] - MirrorCheckpointTask throws NullPointerException when group hasn't consumed from some partitions            
[KAFKA-14639] - Kafka CooperativeStickyAssignor revokes/assigns partition in one rebalance cycle            
[KAFKA-14644] - Process should stop after failure in raft IO thread            
[KAFKA-14645] - Plugin classloader not used when retrieving connector plugin config defs via REST API            
[KAFKA-14649] - Failures instantiating Connect plugins hides other plugins from REST API, or crash worker   
[KAFKA-14659] - source-record-write-[rate|total] metrics include filtered records            
[KAFKA-14660] - Divide by zero security vulnerability (sonatype-2019-0422)            
[KAFKA-14676] - Token endpoint URL used for OIDC cannot be set on the JAAS config            
[KAFKA-14693] - KRaft Controller and ProcessExitingFaultHandler can deadlock shutdown            
[KAFKA-14704] - Follower should truncate before incrementing high watermark            
[KAFKA-14711] - kafaka-metadata-quorum.sh does not honor --command-config            
[KAFKA-14727] - Connect EOS mode should periodically call task commit            
[KAFKA-14743] - MessageConversionsTimeMs for fetch request metric is not updated            
[KAFKA-14774] - the removed listeners should not be reconfigurable            
[KAFKA-14781] - MM2 logs misleading error during topic ACL sync when broker does not have authorizer configured            
[KAFKA-14797] - MM2 does not emit offset syncs when conservative translation logic exceeds positive max.offset.lag            
[KAFKA-14799] - Source tasks fail if connector attempts to abort empty transaction            
[KAFKA-14809] - Connect incorrectly logs that no records were produced by source tasks            
[KAFKA-14816] - Connect loading SSL configs when contacting non-HTTPS URLs            
[KAFKA-14836] - Fix UtilsTest#testToLogDateTimeFormat failure in some cases            
[KAFKA-14843] - Connector plugins config endpoint does not include Common configs            
[KAFKA-14862] - Outer stream-stream join does not output all results with multiple input partitions            
[KAFKA-14864] - Memory leak in KStreamWindowAggregate with ON_WINDOW_CLOSE emit strategy            
[KAFKA-14880] - TransactionMetadata with producer epoch -1 should be expirable            
[KAFKA-14894] - MetadataLoader must call finishSnapshot after loading a snapshot            
[KAFKA-14946] - KRaft controller node shutting down while renouncing leadership            
[KAFKA-14963] - Incorrect partition count metrics for kraft controllers            
[KAFKA-14978] - ExactlyOnceWorkerSourceTask does not remove parent metrics            
[KAFKA-14994] - jose4j is vulnerable to CVE- Improper Cryptographic Algorithm            
[KAFKA-15015] - Binaries contain 2 versions of reload4j

Elasticsearch 8.8.1          
Bug Fixes:           
Data streams:

• Allow the removal of an in-use template if there are other ones matching the dependent data streams #96286

Geo:

• API rest compatibility for type parameter in geo_bounding_box query #96317

Rollup:

        *Do not copy index.default_pipeline and index.final_pipeline #96494 (issue: #96478)

TSDB:

• Expand start and end time to nanoseconds during coordinator rewrite when needed #96035 (issue: #96030)
• Fix NPE when indexing a document that just has been deleted in a tsdb index #96461

Transform:

• Improve error message on transform _update conflict #96432
• Report version conflict on concurrent updates #96293 (issue: #96311)

Grafana 9.5.3         
Bug fixes:         
Query:** Prevent crash while executing concurrent mixed queries         
Alerting:** Require alert.notifications:write permissions to test receivers and templates

Jenkins 2.409        
Use jenkinsbutton for repeatable buttons.        
Do not show Fedora 38 as an end of life operating system before actual end of life in 2024.        
Hide the arrow next to the restart checkbox if the environment doesn't support it.        
Use correct update center proxy configuration hyperlink in error messages.        
Add support for jakarta.inject annotations.

Kibana 8.8.1       
Fixes:        
Alerting:

• Fixes a bug where ML embeddables, OsQuery, and IoCs attachments in a case render the wrong view
• Makes alert links shorter
• Throws a Mustache error when validating action message for warnings
• Adds null checks when iterating through an index template list

APM:

• Displays the size of hidden indices in storage explorer
• Changes the APM latency value and latency threshold to microseconds
• Fixes service transaction metrics by using transaction.duration.histogram for percentile aggregations

Discover:

• Update single doc view locator to URL encode rowId
• Fixes the display of grid row selection when in dark mode

Fleet:

• Include hidden data streams in package upgrade

Logs:

• Fixes Log Categorization UI failure due to an infinite loop

 Machine Learning:

• Increases calendar events request limit
• Disables the delete option for deployed models
• Applies theme based on the User Profile settings

 Maps:

• Fixes toolbar action button not filled when selected #158284
• Fixes Maps to display dark theme when enabled #158219

Operations:

• Fixes configuration stacking order #158827

Platform:

• Fixes Kibana crashing on Safari versions prior to 16.4 #158825
• Updates all aliases with a single updateAliases() when relocating saved objects #158940
• Fixes a race condition that could cause intermittent upgrade migration failures when Kibana connects to a single node Elasticsearch cluster #158182
• Dynamically reduces the migrations.batchSize value when Kibana encounters a migration batch that’s too big to process #1574

Logstash 8.8.1

Plugins:

• Cef Codec - 6.2.7
• Fix: when decoding in an ecs_compatibility mode, timestamp-normalized fields now handle provided-but-empty values

Anonymize Filter - 3.0.7:

• Pin murmurhash3 to 0.1.6

Elasticsearch Filter - 3.15.:

• Fixes a regression introduced in 3.15.0 which could prevent a connection from being established to Elasticsearch in some SSL configurations

Fingerprint Filter - 3.4.3:

• Pin murmurhash3 to 0.1.6

Mutate Filter - 3.5.7:

• Docs: Clarify that split and join also support strings

Translate Filter - 3.4.1:

• Fix the limitation of the size of yaml file that exceeds 3MB

Truncate Filter - 1.0.6:

• Make 0.0.8 the lower bound for flores dependency

Beats Input - 6.6.1:

• Update netty to 4.1.93 and jackson to 2.13.5

Elasticsearch Input - 4.17.2:

• Fixes a regression introduced in 4.17.0 which could prevent a connection from being established to Elasticsearch in some SSL configurations

    *Fixes scroll slice high memory consumption

Http Input - 3.7.1:

• Update netty to 4.1.93

Tcp Input - 6.3.3:

• Update netty to 4.1.93
• Jdbc Integration - 5.4.3:
• Fix: crash when metadata file can’t be deleted after moving under path.data
• Add new settings statement_retry_attempts and statement_retry_attempts_wait_time for retry of failed sql statement execution
• Doc: described default_hash and tag_on_default_use interaction filter plugin

Rabbitmq Integration - 7.3.2:

• Change tls_certificate_password type to password to protect from leaks in the logs

Elasticsearch Output - 11.15.7:

• Fixes a regression introduced in 11.14.0 which could prevent a connection from being established to Elasticsearch in some SSL configurations
• Fixes possiblity of data loss when pipeline terminates very quickly after startup .
• Fixes undefined 'shutdown_requested' method error when plugin checks if shutdown request is received
• Improves connection handling under several partial-failure scenarios
• Ensures an HTTP connection can be established before adding the connection to the pool
• Ensures that the version of the connected Elasticsearch is retrieved successfully before the connection is added to the pool.
• Fixes a crash that could occur when the plugin is configured to connect to a live HTTP resource that is not Elasticsearch
• Removes the ECS v8 unreleased preview warning
• Restores DLQ logging behavior from 11.8.x to include the action-tuple as structured

Email Output - 4.1.2:

• Change password config type to Password to prevent leaks in debug logs

Node.js 20.3      
Notable Changes:      
deps: upgrade to libuv 1.45.0, including significant performance improvements to file system operations on Linux      
doc: add Ruy Adorno to list of TSC members        
doc: mark Node.js 14 as End-of-Life       
SEMVER-MINOR) lib: implement AbortSignal.any()      
module: change default resolver to not throw on unknown scheme      
(SEMVER-MINOR) node-api: define version 9 (      
stream: deprecate asIndexedPairs

PHP Intepreter 8.2.7     
 Core:

• *Fixed bug GH-11152 (Unable to alias namespaces containing reserved class names).
• *Fixed bug GH-9068 (Conditional jump or move depends on uninitialised value(s)).
• *Fixed bug GH-11189 (Exceeding memory limit in zend_hash_do_resize leaves the array in an invalid state).
• *Fixed bug GH-11063 (Compilation error on old GCC versions).
• *Fixed bug GH-11222 (foreach by-ref may jump over keys during a rehash).

Date:

• *Fixed bug GH-11281 (DateTimeZone::getName() does not include seconds in offset).

Exif:

• *Fixed bug GH-10834 (exif_read_data() cannot read smaller stream wrapper chunk sizes).

FPM:

• *Fixed bug GH-10461 (PHP-FPM segfault due to after free usage of child->ev_std(out|err)).
• *Fixed bug #64539 (FPM status page: query_string not properly JSON encoded).
• *Fixed memory leak for invalid primary script file handle.

Hash:

• *Fixed bug GH-11180 (hash_file() appears to be restricted to 3 arguments).

LibXML:

• *Fixed bug GH-11160 (Few tests failed building with new libxml 2.11.0).

MBString:

• *Fix bug GH-11217 (Segfault in mb_strrpos / mb_strripos when using negative offset and ASCII encoding).

Opcache:

• *Fixed bug GH-11134 (Incorrect match default branch optimization).
• *Fixed too wide OR and AND range inference.
• *Fixed missing class redeclaration error with OPcache enabled.
• *Fixed bug GH-11245 (In some specific cases SWITCH with one default statement will cause segfault).

PCNTL:

• *Fixed maximum argument count of pcntl_forkx().

PGSQL:

• *Fixed parameter parsing of pg_lo_export().

Phar:

• *Fixed bug GH-11099 (Generating phar.php during cross-compile can't be done).
• Soap:
• *Fixed bug GHSA-76gg-c692-v2mw (Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP).
• *Fixed bug GH-8426 (make test fail while soap extension build).

SPL:

• *Fixed bug GH-11178 (Segmentation fault in spl_array_it_get_current_data (PHP 8.1.18)).

Standard:

• *Fixed bug GH-11138 (move_uploaded_file() emits open_basedir warning for source file).
• *Fixed bug GH-11274 (POST/PATCH request switches to GET after a HTTP 308 redirect).

Streams:

• *Fixed bug GH-10031 ([Stream] STREAM_NOTIFY_PROGRESS over HTTP emitted irregularly for last chunk of data).
• *Fixed bug GH-11175 (Stream Socket Timeout).
• *Fixed bug GH-11177 (ASAN UndefinedBehaviorSanitizer when timeout = -1 passed to stream_socket_accept/stream_socket_client). 

Sonatype Nexus 3.55  
Bug Fixes:

• The Standard request timeout and Extended request timeout fields in the UI:Settings capability are now properly updated when upgrading from older versions.
• Sonatype Nexus Repository now supports Yum repositories using the caret (^) character in RPM names.
• Staging move respects the Allow redeploy only on 'latest' tag setting as expected.
• Subdomain routing now reflects the nexus-context-path.
• NuGet v3 search in non-HA environments now return components that have a dot after a digit. Note that search works differently in HA, and we are still investigating a fix for HA environments.

Apache TomEE 9.1.0    
Fixes: 

• jakartaee-api with tomcat classifier has too much in it
• ApplicationComposers do not clear GC references on release
• java.lang.ClassNotFoundException: org.apache.openejb.loader.SystemInstance
• TomEE 9.0.0 is not creating service in Windows 10 incompatible software
• BCProv jar loses its signature during the patch process
• Port TOMEE-3779 to 9.x
• Performance Regression in bean resolution in EAR files

Gitlab 16.0.4 and 16.0.3   
Fixed(1 change):   
*Fix LDAP tls_options not working (merge request)   
Fixed (3 changes):   
*Fix memory leak in CI config includes entry (merge request)   
*Fix MR approval rules sync when disabling scan result policy (merge request) GitLab Enterprise Edition   
*Fix serialization of pull requests in BitbucketServer Import (merge request)   
Performance (1 change):   
LFS: Serve pre-signed URLs in /lfs/objects/batch (merge request)