Lakefs

:new: What’s new:

- lakectl: get presigned url for object (7603)
- Align S3 Gateway Prometheus Histogram Buckets with lakeFS API Buckets (7622)

:bug: Bugs fixed:

- Allow storing of friendly_name in KV when integrating with external auth API (7572)
- Add TTL to STS (7605)

**Deprecation notice:**
Azure users no longer need to use the import `hint` when importing from an ADLS Gen2 account.
We've added a backwards compatibility support in lakectl, but support for the ADLS `hint` will be removed completely in future releases.

:new: What's new:

- Integrate support for Short-Lived Tokens (STS) in Remote Authentication (7571)

:bug: Bugs fixed:

- Fix lakectl branch protection set 400 response (7590)
- Remove ADLS hint from import (7581)

:new: What's new:

- Integration: update experimental external principals API with auth service (7566)

:bug: Bugs fixed:

- Fix lakectl local diff (7563)

:new: What's new:

- Delta exporter: support export of delta log files with abfss scheme to support unity catalog external tables (7553)
- Auth Service: External Principals Management endpoints only (7539)

:bug: Bugs fixed:

- Support Azure Unity Catalog export (7554)
- Groups Pagination is broken in the WebUI (7556)

:new: What's new:
- Delta Lake + Unity Catalog exporter: Delta Lake table metadata (7527)
- Handle Azure URLs for chinacloud (7520)
- Support "If-None-Match: <etag>" header in getObject request (5967).
Kudos to our latest contributor vishalsanfran!

:bug: Bugs fixed:
- Fix: Count KV retries (not tries) in Graveler (7541)
- Fix: CreateDirectoryMarkerIfNotExists (7510)
- Fix: Fixed bug in multipart upload s3 (7512)
- Fix: Gateway wrong error description for copy object (7526)

:bug: Bugs fixed:

* Check for correct RBAC action (GHSA-fvv5-h29g-f6w5). This security
advisory has **moderate** severity (5.3/10), and does not affect users who
use the default ACL permissions.