KSM-703: You can now encrypt and decrypt KSM configuration files with AWS KMS; supports symmetric and RSA asymmetric keys, explicit credentials or environment-based AWS authentication, key rotation, and config export.
Security updates
Upgraded pino to v10 — resolves CVE-2025-57319 (fast-redact, HIGH)
KSM-706: You can now encrypt and decrypt KSM configuration files with Azure Key Vault; supports RSA keys, explicit credentials or environment-based DefaultAzureCredential, key rotation, and config export
Security updates
Upgraded pino to v10 — resolves CVE-2025-57319 (fast-redact, HIGH)
Upgraded jws to v3.2.3 — resolves CVE-2025-65945 (HIGH)
