Nur wenige Kunden erleben intermittierende Fehler während der Pipeline-Ausführung.
Beginn 9. Juli 2026 um 20:21 UTC · 1h 25m
IssuesGeringfügiger Vorfall
Betroffene Komponenten
Continuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Delivery (CD) - FirstGen - EOS
investigating
Wir untersuchen derzeit dieses Problem.
monitoring
Ein Fix wurde implementiert und wir überwachen die Ergebnisse.
resolved
Dieser Vorfall wurde behoben.
Automatisch aus der offiziellen Störungsmeldung übersetzt.
Testing Dev Status Seite 9 jul
Beginn 9. Juli 2026 um 09:22 UTC · 19m
IssuesGeringfügiger Vorfall
Betroffene Komponenten
Continuous Delivery - Next Generation (CDNG)
investigating
Bitte check dev
Automatisch aus der offiziellen Störungsmeldung übersetzt.
Prod3: Langsamkeit in Harness Plattform
Beginn 8. Juli 2026 um 07:49 UTC · 11h 7m
IssuesGeringfügiger Vorfall
Betroffene Komponenten
Continuous Delivery - Next Generation (CDNG)
investigating
Wir untersuchen derzeit ein Problem im Prod3-Cluster, bei dem Harness-Plattformkomponenten langsamer als erwartet geladen werden.
investigating
Wir untersuchen derzeit dieses Problem.
monitoring
Ein Fix wurde implementiert und wir überwachen die Ergebnisse.
resolved
Dieser Vorfall wurde behoben.
postmortem
## Zusammenfassung
Zwischen dem 7. Juli und dem 8. Juli 2026 erlebten Kundenkonten, die in unserer Prod 3-Umgebung gehostet wurden, intermittierende Langsamkeit und Ausfälle beim Laden von Pipelines und beim Lösen von Vorlagen. Die zugrunde liegende Ursache war ein starker, nachhaltiger Anstieg des internen Feature-Flag-Lookup-Traffics von unserem Template-Processing-Service zu unserem Kernplattform-Backend-Service.
Das Thema wurde an zwei verschiedenen Tagen vorgestellt. Am ersten Tag (7. Juli) stellte unser Team den Service durch Minderungsmaßnahmen auf Infrastrukturebene wieder her, indem es die betroffenen Dienste neu startete und Kapazitäten hinzufügte. Da diese zugrunde liegende Ursache noch vorhanden war, trat der gleiche Fehlermodus am 2. Tag (8. Juli) wieder auf. Eine tiefere Untersuchung am zweiten Tag identifizierte das spezifische Feature-Flag und den Codepfad, und die Technik versendete einen Fix, so dass die Flaggenüberprüfung nun aus dem lokalen Cache bereitgestellt wird. Dieser Fix wurde in allen Produktionsclustern eingesetzt und löste das Problem vollständig; es ist seither nicht mehr aufgetreten
Wir prüfen alle anderen Feature-Flags auf der Plattform auf die gleiche Caching-Lücke und implementieren Prozess- und Überwachungsverbesserungen, die im Abschnitt "Vorbeugende Maßnahmen" unten beschrieben werden, um diese Problemklasse früher zu erfassen und das Risiko eines erneuten Auftretens zu reduzieren.
## Auswirkungen
**Symptome:** Intermittierende Langsamkeit oder Fehler beim Laden von Pipelines; langsame oder fehlgeschlagene Vorlagenvalidierung und -auflösung; intermittierende Verbindungs-/Timeout-Fehler zwischen Plattformdiensten.
**Funktionale Auswirkungen:** Pipelineausführungen und Pipeline-Studio-Operationen, die von der Vorlagenauflösung abhängen, wurden während der in der obigen Zeitleiste beschriebenen aktiven Fenster verzögert oder fehlgeschlagen. Einige Hinrichtungen erforderten eine manuelle Wiederholung
## Wurzelursache
Unser Kern-Backend-Service konnte aufgrund eines anhaltenden, nicht zwischengespeicherten Feature-Flag-Lookups, das nach einer kürzlich veröffentlichten Veröffentlichung ein großes und wachsendes Volumen an internem Datenverkehr antreibt, nicht mit der Ankunftsrate der Anfrage mithalten.
Mitigation
* Sofortige Minderung \(Tag 1 und Tag 2\): Entfernen der gesättigten Backend-Instanz\(s\) aus dem Service und zusätzliche Kapazität, um den akuten Engpass zu lindern.
* Permanent Fix \(Tag 2\): aktualisiert den Template-Processing-Service, so dass der verantwortliche Feature-Flag-Check aus dem lokalen Cache liest, anstatt den Backend-Service bei jedem Lookup aufzurufen, wodurch der übermäßige interne Datenverkehr an der Quelle eliminiert wird.
* Der Fix wurde für alle Produktionscluster bereitgestellt und durch eine Rückkehr zu normalen internen Traffic-Volumen und Reaktionszeiten verifiziert.
## Präventive Maßnahmen & Nächste Schritte
* Feature-Flag-Caching-Audit: Wir überprüfen alle Feature-Flags, die in Hochfrequenz-Codepfaden auf der Plattform verwendet werden, um ähnliche Caching-Lücken zu identifizieren und zu schließen, bevor sie eine Wiederholung dieses Problems verursachen können.
* Release-Validierung: Wir verstärken die Pre-Release-Load-Tests für neue Feature-Flag-gated-Codepfade, so dass Call-Volume-Regressionen dieser Art abgefangen werden, bevor sie die Produktion erreichen.
* Capacity Alerting: Wir fügen proaktive Alertings zur Backend Request-Queue-Sättigung hinzu, so dass diese Klasse von Engpässen automatisch erfasst und gemindert wird, bevor sie sich auf die Antwortzeiten des Kunden auswirkt.
Automatisch aus der offiziellen Störungsmeldung übersetzt.
IACM-Modul ist in EU1 betroffen
Beginn 7. Juli 2026 um 10:40 UTC · 3h 29m
IssuesGeringfügiger Vorfall
Betroffene Komponenten
Infrastructure as Code Management (IaCM)
investigating
Wir untersuchen derzeit ein Problem in der EU1, bei dem Benutzer Probleme mit dem IACM-Modul haben.
monitoring
Wir haben auf unserer Seite eine Lösung gefunden, die dieses Problem gelöst hat. Wir werden dieses Thema weiterhin beobachten.
resolved
Dieser Vorfall wurde behoben.
Automatisch aus der offiziellen Störungsmeldung übersetzt.
Prod3: Langsamkeit beim Laden von Rohrleitungskomponenten
Beginn 7. Juli 2026 um 10:22 UTC · 2h 15m
IssuesGeringfügiger Vorfall
Betroffene Komponenten
Continuous Delivery - Next Generation (CDNG)
investigating
Wir untersuchen derzeit ein Problem im Prod3-Cluster, bei dem Pipeline-Komponenten langsamer geladen werden als erwartet.
monitoring
Ein Fix wurde in einem unserer Microservices implementiert, der für den Umgang mit Pipeline-Vorlagen verantwortlich ist und das Problem behoben hat. Wir verfolgen die Angelegenheit weiterhin.
resolved
Dieser Vorfall wurde behoben.
postmortem
## Zusammenfassung
Zwischen dem 7. Juli und dem 8. Juli 2026 erlebten Kundenkonten, die in unserer Prod 3-Umgebung gehostet wurden, intermittierende Langsamkeit und Ausfälle beim Laden von Pipelines und beim Lösen von Vorlagen. Die zugrunde liegende Ursache war ein starker, nachhaltiger Anstieg des internen Feature-Flag-Lookup-Traffics von unserem Template-Processing-Service zu unserem Kernplattform-Backend-Service.
Das Thema wurde an zwei verschiedenen Tagen vorgestellt. Am ersten Tag (7. Juli) stellte unser Team den Service durch Minderungsmaßnahmen auf Infrastrukturebene wieder her, indem es die betroffenen Dienste neu startete und Kapazitäten hinzufügte. Da diese zugrunde liegende Ursache noch vorhanden war, trat der gleiche Fehlermodus am 2. Tag (8. Juli) wieder auf. Eine tiefere Untersuchung am zweiten Tag identifizierte das spezifische Feature-Flag und den Codepfad, und die Technik versendete einen Fix, so dass die Flaggenüberprüfung nun aus dem lokalen Cache bereitgestellt wird. Dieser Fix wurde in allen Produktionsclustern eingesetzt und löste das Problem vollständig; es ist seither nicht mehr aufgetreten
Wir prüfen alle anderen Feature-Flags auf der Plattform auf die gleiche Caching-Lücke und implementieren Prozess- und Überwachungsverbesserungen, die im Abschnitt "Vorbeugende Maßnahmen" unten beschrieben werden, um diese Problemklasse früher zu erfassen und das Risiko eines erneuten Auftretens zu reduzieren.
## Auswirkungen
**Symptome:** Intermittierende Langsamkeit oder Fehler beim Laden von Pipelines; langsame oder fehlgeschlagene Vorlagenvalidierung und -auflösung; intermittierende Verbindungs-/Timeout-Fehler zwischen Plattformdiensten.
**Funktionale Auswirkungen:** Pipelineausführungen und Pipeline-Studio-Operationen, die von der Vorlagenauflösung abhängen, wurden während der in der obigen Zeitleiste beschriebenen aktiven Fenster verzögert oder fehlgeschlagen. Einige Hinrichtungen erforderten eine manuelle Wiederholung
## Wurzelursache
Unser Kern-Backend-Service konnte aufgrund eines anhaltenden, nicht zwischengespeicherten Feature-Flag-Lookups, das nach einer kürzlich veröffentlichten Veröffentlichung ein großes und wachsendes Volumen an internem Datenverkehr antreibt, nicht mit der Ankunftsrate der Anfrage mithalten.
Mitigation
* Sofortige Minderung \(Tag 1 und Tag 2\): Entfernen der gesättigten Backend-Instanz\(s\) aus dem Service und zusätzliche Kapazität, um den akuten Engpass zu lindern.
* Permanent Fix \(Tag 2\): aktualisiert den Template-Processing-Service, so dass der verantwortliche Feature-Flag-Check aus dem lokalen Cache liest, anstatt den Backend-Service bei jedem Lookup aufzurufen, wodurch der übermäßige interne Datenverkehr an der Quelle eliminiert wird.
* Der Fix wurde für alle Produktionscluster bereitgestellt und durch eine Rückkehr zu normalen internen Traffic-Volumen und Reaktionszeiten verifiziert.
## Präventive Maßnahmen & Nächste Schritte
* Feature-Flag-Caching-Audit: Wir überprüfen alle Feature-Flags, die in Hochfrequenz-Codepfaden auf der Plattform verwendet werden, um ähnliche Caching-Lücken zu identifizieren und zu schließen, bevor sie eine Wiederholung dieses Problems verursachen können.
* Release-Validierung: Wir verstärken die Pre-Release-Load-Tests für neue Feature-Flag-gated-Codepfade, so dass Call-Volume-Regressionen dieser Art abgefangen werden, bevor sie die Produktion erreichen.
* Capacity Alerting: Wir fügen proaktive Alertings zur Backend Request-Queue-Sättigung hinzu, so dass diese Klasse von Engpässen automatisch erfasst und gemindert wird, bevor sie sich auf die Antwortzeiten des Kunden auswirkt.
Automatisch aus der offiziellen Störungsmeldung übersetzt.
FME - Some customers are experiencing delays in scheduled exports of impressions
Beginn 2. Juli 2026 um 15:48 UTC · 1d 0h
IssuesGeringfügiger Vorfall
Betroffene Komponenten
FMEFMEFME
monitoring
A fix has been implemented and we are monitoring the results.
monitoring
We are seeing the backlogged items worked through and continuing to monitor results.
monitoring
We are continuing to monitor results while the backlog is worked through.
resolved
This incident has been resolved.
postmortem
**Incident Summary**
Harness FME \(Feature Management & Experimentation\) faced substantial delays in scheduled impressions data exports on Jul 2, 2026. This issue stemmed from performance degradation within Tinybird's infrastructure, affecting query execution crucial to our export pipeline.
**Root Cause**
The core issue was a temporary **performance degradation on the provider's infrastructure**. This directly impacted the metadata retrieval endpoint, which failed to return job IDs intermittently. Consequently, completed export jobs underwent repeated retries, leading to a backlog in the export queue.
**Impact**
* The export backlog accumulated, peaking at more than 6 hours behind the planned schedule.
* No data loss was detected during the incident.
**Mitigation**
1. **Adjusted Temporal workflows:** Extended timeouts from ~30 to ~50 minutes and increased polling attempts from ~180 to ~300.
2. **Expanded resource capacity.**
3. **Traffic redirection:** Systematically shifted export workloads over to an optimized in-house cluster.
4. **Manual intervention:** Terminated stalling workflows stuck in retry loops from failed metadata lookups.
**Next Steps**
Complete the migration of all remaining export jobs to the internal analytics cluster \(In progress\).
Testing Dev Maintenance
Beginn 30. Juni 2026 um 09:18 UTC · 2d 23h
MaintenanceWartungsereignis
scheduled
Testing Maintenance
in_progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
completed
The scheduled maintenance has been completed.
Dev Statuspage incident
Beginn 30. Juni 2026 um 09:16 UTC · 6h 18m
OutageSchwerwiegender Vorfall
investigating
Dev Statuspage incident - Testing
Few pipelines in prod4 are running with degraded performance
Beginn 29. Juni 2026 um 14:56 UTC · 45m
OutageSchwerwiegender Vorfall
Betroffene Komponenten
Infrastructure as Code Management (IaCM)Continuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Mac Cloud BuildsSecurity Testing Orchestration (STO)Continuous Delivery - Next Generation (CDNG)
investigating
We are currently investigating this issue.
identified
Harness is investigating an issue affecting our Prod 4 environments.
Our log-services are affected and harness is currently working on restoring function. This can affect our CI, Chaos, IACM modules.
identified
We are continuing to work on a fix for this issue.
monitoring
A fix has been implemented and we are monitoring the results.
resolved
This incident has been resolved.
postmortem
### **Summary**
During a planned security improvement to rotate service authentication secrets in the Prod 4 environment, an incorrect secret value was inadvertently applied to a subset of internal services. This resulted in authentication failures between platform components, impacting CI initialization, delegate task creation, and log streaming for certain pipeline executions. The issue was resolved by rolling back the token configuration to the previous known-good version and validating service recovery.
### **Impact**
**Affected environment:** Prod 4
**Customer-visible impact:**
* CI builds failed during initialization with errors such as:
* _“Could not fetch token from log service”_
* _“token in request not authorized for receiving tokens”_ \(HTTP 400\)
* CD and IaCM pipeline stages continued to execute but did not stream logs.
* Some Shell Script steps failed during execution.
* Delegate tasks could not be created or assigned for some pipeline executions.
No customer data was lost or corrupted.
### **Root Cause**
As part of a planned security initiative, authentication secrets used for communication between internal platform services were rotated in the Prod 4 environment.
During the rotation process, an incorrect secret value was inadvertently configured for one of the services. Instead of applying the newly generated secret in the expected format, a default/incorrect value was introduced. This created a mismatch between services that authenticate using the shared token, causing authentication requests to be rejected with HTTP 400 errors.
The authentication failures prevented CI components from obtaining log service tokens, disrupted delegate task creation, and prevented log streaming for affected pipeline executions.
### **Resolution**
Engineering responded by:
* Reverting the token configuration to the previous known-good secret.
* Restoring consistent authentication across affected services.
* Validating recovery through CI pipeline execution tests.
* Verifying CD and IaCM pipeline execution and log streaming.
* Executing a comprehensive validation suite to confirm platform functionality before closing the incident.
### **Follow-up Actions**
To reduce the likelihood of similar incidents in the future, Harness will:
* Implement additional pre-rotation and post-rotation validation checks to verify that the correct secret values and formats are applied before changes are activated.
* Introduce automated verification of authentication between dependent services immediately following secret rotations.
* Strengthen operational safeguards and deployment validation for security credential rotation procedures to detect configuration mismatches before they can impact customer workloads.
We are currently experiencing intermittent login issues with the Traceable cluster due to an issue with our login provider. We are actively working with the provider to resolve the issue.
This incident does not impact data ingestion, and all ingestion pipelines continue to function normally.
We will provide updates as we have more information.
identified
The issue has been identified and a fix is being implemented.
monitoring
Issue has been fixed and we are closely monitoring
monitoring
We are continuing to monitor for any further issues.
resolved
This incident has been resolved.
postmortem
## **Summary**
_Between **06:50 UTC and 07:20 UTC on June 26, 2026**, customers experienced intermittent login failures while accessing Traceable environments across multiple US clusters. The incident was traced to an issue with the external authentication provider \(Auth0\), where elevated socket timeouts caused increased login latency and authentication request failures. Login functionality gradually recovered as the upstream issue stabilized, and the incident was resolved after successful login validation across multiple impacted clusters._
## **Root Cause**
_The root cause was an issue with the external authentication provider \(Auth0\), which experienced elevated socket timeouts while processing authentication requests. These upstream timeouts increased login latency and caused intermittent authentication failures across multiple US-region clusters. Since authentication requests depended on the external provider, affected login attempts failed despite Traceable platform services remaining healthy. The incident was resolved once the upstream authentication service recovered and login requests consistently completed successfully._
## **Impact**
_Starting at approximately 06:50 UTC, customers experienced intermittent login failures when accessing Traceable environments across multiple US clusters. The issue affected user authentication, preventing some users from accessing the platform while underlying application services remained operational. Login functionality progressively recovered during the incident, and normal authentication was restored by 07:20 UTC._
## **Remediation**
_The engineering team worked with the external authentication provider while continuously monitoring authentication health across affected clusters. Login functionality was validated through platform metrics and manual verification across representative environments. After confirming consistent authentication success across impacted clusters, the incident was declared resolved._
## **Action Items**
_To prevent such issues going forward, Harness will,_
_Increase authentication resilience: Evaluate improvements to authentication request handling, including timeout tuning, retry strategies where appropriate, and graceful degradation for transient upstream failures._
Planned Maintenance Notification
Beginn 25. Juni 2026 um 05:30 UTC · 3d 22h
MaintenanceWartungsereignis
scheduled
We’ll be performing a backend infrastructure upgrade to improve reliability and compliance. During this maintenance window, Harness platform may experience brief, intermittent interruptions. We appreciate your understanding and are working to minimize any impact.
scheduled
Maintenance will begin as scheduled in 60 minutes.
Harness Login Failure in EU1 environment
Beginn 24. Juni 2026 um 12:19 UTC · 2h 34m
OutageSchwerwiegender Vorfall
Betroffene Komponenten
Platform
investigating
Harness login is failing. We are investigating the problem.
monitoring
A fix has been implemented and we are monitoring the results.
monitoring
We are continuing to monitor for any further issues.
resolved
This incident has been resolved.
postmortem
### **Summary**
During a planned security improvement to rotate service authentication secrets in the EU1 environment, an out of sequence secret value was inadvertently applied to a subset of internal services. This resulted in authentication failures between platform components, causing login failures. The issue was resolved by rolling back the token configuration to the previous known-good version and validating service recovery.
### **Impact**
**Affected environment:** EU1
**Customer-visible impact: Login Failures**
No customer data was lost or corrupted.
### **Root Cause**
As part of a planned security initiative, authentication secrets used for communication between internal platform services were rotated in the EU1 .
During the rotation process, an secret value was inadvertently misconfigured for one of the services. There was a newer format of secret and had to be applied in a certain order. This created a mismatch between services that authenticate using the shared token, causing authentication requests to be rejected with HTTP 400 errors.
The authentication failures prevented CI components from obtaining log service tokens, disrupted delegate task creation, and prevented log streaming for affected pipeline executions.
### **Resolution**
Engineering responded by:
* Reverting the token configuration to the previous known-good secret.
* Restoring consistent authentication across affected services.
### **Follow-up Actions**
To reduce the likelihood of similar incidents in the future, Harness will:
* Implement additional pre-rotation and post-rotation validation checks to verify that the correct secret values and formats are applied before changes are activated.
* Introduce automated verification of authentication between dependent services immediately following secret rotations.
* Strengthen operational safeguards and deployment validation for security credential rotation procedures to detect configuration mismatches before they can impact customer workloads.
Integration Authentication Issue Affecting Data Ingestion
Beginn 23. Juni 2026 um 06:46 UTC · 7d 9h
IssuesGeringfügiger Vorfall
identified
We have identified an issue affecting a small subset of accounts in the EU1 region. As a result, data ingestion for impacted integrations may have stopped.
Planned Resiliency activity for Feature Management and Experimentation (FME)
Beginn 22. Juni 2026 um 17:55 UTC · 10d 14h
MaintenanceWartungsereignis
scheduled
FME will be undergoing scheduled critical maintenance during this window. No downtime is expected, and all services are anticipated to remain available. As part of this maintenance, updates or modifications to Large Segments will be temporarily unavailable until the activity is completed.
scheduled
We will be undergoing scheduled maintenance during this time.
scheduled
Maintenance will begin as scheduled in 60 minutes.
in_progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
completed
The scheduled maintenance has been completed.
Planned Maintenance Notification
Beginn 19. Juni 2026 um 11:18 UTC · 13d 21h
MaintenanceWartungsereignis
scheduled
We’ll be performing a backend infrastructure upgrade to improve reliability and compliance. During this maintenance window, Harness platform may experience brief, intermittent interruptions. We appreciate your understanding and are working to minimize any impact.
scheduled
Maintenance will begin as scheduled in 60 minutes.
in_progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
The issue has been identified and a fix is being implemented.
identified
IDP Systems' communication was interrupted due to an update. Harness is rolling back changes.
Impacted environments - prod0, prod1, prod2
monitoring
A fix has been implemented and we are monitoring the results.
resolved
This incident has been resolved.
postmortem
# **Customer RCA: Executive Summary**
On June 17, 2026, between 9:30 PM and 10:15 PM IST, customers in certain production environments experienced failures when accessing IDP \(Internal Developer Portal\) workflows. The issue was caused by a configuration mismatch in service authentication settings.
## **Impact**
* **Affected Service:** IDP workflows
* **Duration:** Approximately 45 minutes \(9:30 PM - 10:15 PM IST\)
* **Customer Impact:** Users were unable to load IDP workflows during this period.
* **Data Loss:** None
* **Security Impact:** None
## **Root Cause**
During a planned service deployment, a configuration mismatch occurred in the authentication settings used for internal service-to-service communication. Specifically, the authentication credentials configured in the newly deployed service did not match the credentials expected by existing services in prod environments.
This mismatch caused authentication failures when services attempted to communicate with each other, resulting in workflow loading failures for customers.
## **Mitigation**
The issue was resolved by reverting the configuration change to restore the previous working authentication settings. The engineering team was proactively monitoring logs immediately after deployment and identified error patterns several minutes before the first customer report.
## **Action Items/Next Steps**
1. **Enhanced Pre-Deployment Validation:** Automated validation checks will be introduced to verify that all required configurations, secrets, and service dependencies are correctly provisioned and consistent across services before any production deployment.
2. **Improved Deployment Procedures:** Updated deployment checklists with explicit verification of service authentication settings across services before rollout.
Cloud builds are failing with 429 Too Many Requests error while downloading artifacts from central sonatype registry.
Beginn 17. Juni 2026 um 13:42 UTC · 3h 31m
IssuesGeringfügiger Vorfall
Betroffene Komponenten
Continuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud Builds
investigating
We are investigating an issue affecting artifact downloads from Maven Central following recent rate-limiting changes implemented by Sonatype. Sonatype has recently implemented rate limits and builds downloading artifacts from central sonatype https://central.sonatype.org/faq/429-contact-support/. Customers downloading artifacts would be impacted.
We are actively engaging with Sonatype to mitigate the issue here.
identified
The issue has been identified and a fix is being implemented.
monitoring
A fix has been implemented and we are monitoring the results.
monitoring
Maven Central is rate-limiting requests originating from our us-central1 NAT egress IP. Other regions (us-west1, us-east5) are not affected. The Maven/Sonatype team has been engaged and is actively working on lifting the rate limit for our IP range.
monitoring
We are continuing to monitor for any further issues.
resolved
This incident has been resolved.
postmortem
## Summary
On June 17, 2026, a subset of Harness Hosted CI customers experienced intermittent build failures when downloading Java/Gradle dependencies from Maven Central. Affected builds failed with `429 Too Many Requests` errors and could not proceed until the issue was resolved.
The incident was not caused by a Harness code change or platform defect. It was triggered by a policy change implemented by Sonatype \(the operator of Maven Central\) that tightened IP-based rate limits for unauthenticated access. Because Harness Hosted CI routes builds through shared network egress infrastructure, the aggregate outbound traffic from multiple customers sharing a common IP address exceeded the new, lower thresholds — causing all builds behind that IP to be temporarily blocked.
This was an industry-wide change. Other CI/CD platforms experienced identical incidents in the weeks prior to Harness being affected.
## Root Cause
**Primary cause:** Sonatype tightened IP-based rate limiting policies on Maven Central \([repo1.maven.org](http://repo1.maven.org) and [repo.maven.apache.org](http://repo.maven.apache.org)\). Harness Hosted CI uses shared network egress infrastructure where multiple customer build environments route outbound traffic through common IP addresses. When the aggregate Maven Central request volume from all customers behind a given IP exceeded Sonatype's revised threshold, that IP was hard-blocked for approximately 30 minutes, causing all builds attempting to download Maven dependencies to fail with `429` errors.
## Mitigation
**Immediate actions taken during the incident:**
1. **Regional redistribution:** For customers experiencing active failures, builds were routed to infrastructure regions whose outbound IPs had not yet hit the rate limit threshold, providing immediate relief for those customers.
2. **Sonatype engagement and IP whitelisting:** The Harness team contacted Sonatype support and provided the full list of Harness Hosted CI outbound IP addresses for whitelisting. Sonatype applied a "warning" rate-limit policy in place of hard blockingeliminating the `429` errors across all affected regions. Post-mitigation validation confirmed zero throttling across all tested IPs.
## Next Steps
The following actions are in progress or planned to prevent recurrence and reduce exposure to similar incidents:
**Near-term \(in progress\):**
* Harness is in the process of establishing a commercial agreement with Sonatype for elevated rate limits on Maven Central and advance notification of future policy changes.
* Harness is engaging other major dependency registries — including Docker Hub, npm, GitHub Packages, and the Gradle Plugin Portal — to proactively whitelist Harness egress IPs before similar incidents can occur.
* We are publishing documentation on best practices for managing external dependency access in Hosted CI, including guidance on dependency proxies, mirrors, and caching strategies.
* Harness plans to implement caching infrastructure for common dependencies at the platform level \(using Harness Artifact Registry\), which will significantly reduce direct Maven Central request volume and provide resilience against future external rate-limit changes.
* We are enhancing our alerting alerting for `429` error patterns from external registries so that future rate-limit incidents are detected internally before customers are impacted.
## What This Means for You
**To reduce future exposure**, we recommend:
* **Enable Cache Intelligence** in Harness CI to cache dependency artifacts between builds, reducing how often Maven Central is contacted.
* **Use Harness Save/Restore Cache steps** to persist your local dependency cache across pipeline runs.
If you have questions or need help implementing any of these recommendations, please contact your Customer Success Manager or reach out to Harness Support.
Testing Dev Maintenance 2
Beginn 16. Juni 2026 um 10:42 UTC · 4m
MaintenanceWartungsereignis
scheduled
We will be undergoing scheduled maintenance during this time.