Sourced from github.com/open-policy-agent/opa's releases.

v1.11.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

• More efficient connection management in the http.send built-in function
• More performant loading of large bundles containing multiple Rego files

Immutable Releases

Starting with this release, OPA releases are immutable for increased security.

Runtime, SDK, Tooling

• v1/ast: Fix Call parsing Text attribute including an extra character (#7989) authored by @​schmitd
• ast: Export built-in deprecated field (#7912) authored by @​colinjlacy
• ast: Intern common var values + some parser improvements (#8028) authored by @​anderseknert
• ast: Support custom builtins in CompileModulesWithOpt (#8061) authored by @​sspaink
• bundle: Concurrent Rego parsing in bundle loader (#8067) authored by @​anderseknert
• cmd: Support --ignore in eval cmd when using bundle flag (--bundle) (#8062) authored by @​sspaink
• storage/inmem: Allow passing triggers (AST) data without conversion (#7958) authored by @​anderseknert

Compiler, Topdown and Rego

• topdown: Avoid unnecessary use of custom http.Transport in http.send built-in (#7927) authored by @​sykesm
• topdown: New custom SemVer implementation (#8010) authored by @​anderseknert
• topdown: Use sync.Pool for eval func objects (#8054) authored by @​anderseknert

Docs, Website, Ecosystem

• docs: Add example for Compile API's table mapping (#8017) authored by @​srenatus
• docs: Address pages with similar titles (#8046) authored by @​charlieegan3
• docs: Address some broken links (#8022) authored by @​charlieegan3
• docs: Bump glob dep (CVE-2025-64756) (#8056) authored by @​srenatus
• docs: Improve ground value and assignment docs (#8047) authored by @​charlieegan3
• docs: Make iteration content flow better (#8064) authored by @​charlieegan3
• docs: Note package repos are community maintained (#8053) authored by @​charlieegan3
• docs: Update terraform guide with notes about plan (#8043) authored by @​charlieegan3
• docs: Update the archive to have an edge link (#8011) authored by @​charlieegan3
• docs: Update the policy language intro (#8050) authored by @​charlieegan3
• docs/ocp: Datasource example uses wrong AWS S3 URL (#8039) authored by @​SuchSkill
• docs/regal: Replicate sidebar fixes (#8036) authored by @​charlieegan3
• website: Various fixes and improvements by @​charlieegan3

Miscellaneous

• Bump golangci-lint, more gocritic linters (#8052) authored by @​anderseknert
• Tidy up and unify sync pool handling (#8068) authored by @​anderseknert
• builtins: Add StringOperandByteSlice helper (#8048) authored by @​anderseknert
• test: Add test cases for consistent cache behavior (#8015) authored by @​DFrenkel
• util/performance: Remove math.Log10, remove unused KeysCount (#8041) authored by @​srenatus
• workflow: Add Benchmarks workflow (#8072) authored by @​srenatus

... (truncated)

Sourced from github.com/open-policy-agent/opa's changelog.

1.11.0

This release contains a mix of new features, performance improvements, and bugfixes. Notably:

• More efficient connection management in the http.send built-in function
• More performant loading of large bundles containing multiple Rego files

Immutable Releases

Starting with this release, OPA releases are immutable for increased security.

Runtime, SDK, Tooling

• v1/ast: Fix Call parsing Text attribute including an extra character (#7989) authored by @​schmitd
• ast: Export built-in deprecated field (#7912) authored by @​colinjlacy
• ast: Intern common var values + some parser improvements (#8028) authored by @​anderseknert
• ast: Support custom builtins in CompileModulesWithOpt (#8061) authored by @​sspaink
• bundle: Concurrent Rego parsing in bundle loader (#8067) authored by @​anderseknert
• cmd: Support --ignore in eval cmd when using bundle flag (--bundle) (#8062) authored by @​sspaink
• storage/inmem: Allow passing triggers (AST) data without conversion (#7958) authored by @​anderseknert

Compiler, Topdown and Rego

• topdown: Avoid unnecessary use of custom http.Transport in http.send built-in (#7927) authored by @​sykesm
• topdown: New custom SemVer implementation (#8010) authored by @​anderseknert
• topdown: Use sync.Pool for eval func objects (#8054) authored by @​anderseknert

Docs, Website, Ecosystem

• docs: Add example for Compile API's table mapping (#8017) authored by @​srenatus
• docs: Address pages with similar titles (#8046) authored by @​charlieegan3
• docs: Address some broken links (#8022) authored by @​charlieegan3
• docs: Bump glob dep (CVE-2025-64756) (#8056) authored by @​srenatus
• docs: Improve ground value and assignment docs (#8047) authored by @​charlieegan3
• docs: Make iteration content flow better (#8064) authored by @​charlieegan3
• docs: Note package repos are community maintained (#8053) authored by @​charlieegan3
• docs: Update terraform guide with notes about plan (#8043) authored by @​charlieegan3
• docs: Update the archive to have an edge link (#8011) authored by @​charlieegan3
• docs: Update the policy language intro (#8050) authored by @​charlieegan3
• docs/ocp: Datasource example uses wrong AWS S3 URL (#8039) authored by @​SuchSkill
• docs/regal: Replicate sidebar fixes (#8036) authored by @​charlieegan3
• website: Various fixes and improvements by @​charlieegan3

Miscellaneous

• Bump golangci-lint, more gocritic linters (#8052) authored by @​anderseknert
• Tidy up and unify sync pool handling (#8068) authored by @​anderseknert
• builtins: Add StringOperandByteSlice helper (#8048) authored by @​anderseknert
• test: Add test cases for consistent cache behavior (#8015) authored by @​DFrenkel
• util/performance: Remove math.Log10, remove unused KeysCount (#8041) authored by @​srenatus

... (truncated)

• 45cbfa1 Prepare v1.11.0 release (#8076)
• 36590cd deps: bump wasmtime-go v37 -> v39
• 545de92 workflow: add 'Benchmarks' workflow
• 6341217 ast: Export built-in deprecated field (#8069)
• d82c21c cmd: Support --ignore in eval cmd when using bundle flag (-b) (#8062)
• dd2ccc7 Tidy up and unify sync pool handling (#8068)
• 51a50ca Concurrent Rego parsing in bundle loader (#8067)
• 3882d81 build(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 in /e2e (#8066)
• d198154 build(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 (#8065)
• 015175c docs: Make iteration content flow better (#8064)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)