Pochi clienti che verificano errori intermittenti durante l'esecuzione delle tubazioni.
Inizio 9 luglio 2026 alle ore 20:21 UTC · 1h 25m
IssuesIncidente minore
Componenti interessati
Continuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Delivery (CD) - FirstGen - EOS
investigating
Stiamo attualmente indagando su questo problema.
monitoring
Una soluzione è stata implementata e stiamo monitorando i risultati.
resolved
Questo incidente è stato risolto.
Tradotto automaticamente dall'aggiornamento ufficiale dell'incidente.
Testare stato Dev Pagina 9 lug
Inizio 9 luglio 2026 alle ore 09:22 UTC · 19m
IssuesIncidente minore
Componenti interessati
Continuous Delivery - Next Generation (CDNG)
investigating
Si prega di controllare
Tradotto automaticamente dall'aggiornamento ufficiale dell'incidente.
Prod3: Lentezza nella piattaforma di Harness
Inizio 8 luglio 2026 alle ore 07:49 UTC · 11h 7m
IssuesIncidente minore
Componenti interessati
Continuous Delivery - Next Generation (CDNG)
investigating
Stiamo attualmente indagando su un problema nel cluster Prod3 in cui i componenti della piattaforma Harness stanno caricando più lentamente del previsto.
investigating
Stiamo attualmente indagando su questo problema.
monitoring
Una soluzione è stata implementata e stiamo monitorando i risultati.
resolved
Questo incidente è stato risolto.
postmortem
#
Tra il 7 luglio e l'8 luglio 2026, gli account dei clienti ospitati nel nostro ambiente Prod 3 hanno sperimentato lentezza e guasti intermittenti durante il caricamento delle tubazioni e la risoluzione dei modelli. La causa di fondo è stato un forte, costante aumento del traffico interno di lookup-flag dal nostro servizio di elaborazione dei modelli al nostro servizio di backend piattaforma core.
Il problema è stato presentato in due giorni separati. Il giorno 1\(luglio 7\), il nostro team ha ripristinato il servizio attraverso le mitigazioni del livello delle infrastrutture riavviando i servizi interessati e aggiungendo capacità. Poiché quella causa sottostante era ancora presente, la stessa modalità di fallimento si è ripetuta il giorno 2 \(luglio 8\). L'indagine più approfondita del Giorno 2 ha identificato la specifica funzione flag e il percorso di codice responsabile, e l'ingegneria ha spedito una correzione in modo che il controllo della bandiera è ora servita dalla cache locale. Questa correzione è stata dispiegata in tutti i cluster di produzione e ha completamente risolto il problema; non si è ripresa da allora
Stiamo controllando tutte le altre bandiere di funzionalità sulla piattaforma per lo stesso gap di caching, e stiamo implementando i miglioramenti di processo e monitoraggio descritti nella sezione Misure preventive qui sotto per catturare questa classe di problema prima e ridurre il rischio di ricorrenza.
## Impact
**Sintomi: Lentezza intermittente o condutture di carico di guasto; validazione e risoluzione dei modelli lenti o falliti; errori di connettività intermittente / timeout tra i servizi della piattaforma.
**Impatto totale: ** Esecuzioni di tubazioni e operazioni di pipeline-studio che dipendono dalla risoluzione dei modelli sono stati ritardati o falliti durante le finestre attive descritte nella linea temporale sopra. Alcune esecuzioni richiedono riprova manuale
#
Il nostro servizio di backend core non poteva tenere il passo con il tasso di arrivo della richiesta a causa di un costante, incavato lookup caratteristica-flag che guida un grande e crescente volume di traffico interno dopo un recente rilascio.
# Mitigazione #
* Rimozione immediata \(Giorno 1 e Giorno 2\): rimosso l'istanza di backend saturo\(s\) dal servizio e capacità aggiuntiva per alleviare il collo di bottiglia acuto.
* Correzione permanente \(Giorno 2\): aggiornato il servizio di elaborazione dei modelli in modo che il controllo funzionalità-flag responsabile legga dalla cache locale invece di chiamare il servizio backend su ogni ricerca, eliminando il traffico interno in eccesso alla sua fonte.
* Il fix è stato distribuito a tutti i cluster di produzione e verificato attraverso un ritorno ai normali volumi di traffico interno e tempi di risposta.
## Misure preventive e passi successivi
* Controllo di caching della caratteristica-flag: stiamo rivedendo tutte le bandiere di funzionalità utilizzate in percorsi di codice ad alta frequenza attraverso la piattaforma per identificare e chiudere eventuali lacune di caching simili prima che possano causare una ripetizione di questo problema.
* Convalida di rilascio: stiamo rafforzando il test di carico pre-rilascio per nuovi percorsi di codice-flag-gated in modo che le regressioni call-volume di questo tipo siano catturate prima di raggiungere la produzione.
* Avviso di capacità: stiamo aggiungendo avvisi proattivi sulla saturazione backend richiesta-queue in modo che questa classe di collo di bottiglia venga catturata e mitigata automaticamente, prima che incida sui tempi di risposta del cliente.
Tradotto automaticamente dall'aggiornamento ufficiale dell'incidente.
Il modulo IACM ha un impatto nell'UE1
Inizio 7 luglio 2026 alle ore 10:40 UTC · 3h 29m
IssuesIncidente minore
Componenti interessati
Infrastructure as Code Management (IaCM)
investigating
Stiamo attualmente indagando su un problema nell'UE1 dove gli utenti stanno avendo problemi utilizzando il modulo IACM.
monitoring
Abbiamo implementato una soluzione da parte nostra che ha risolto questo problema. Stiamo continuando a monitorare questo problema.
resolved
Questo incidente è stato risolto.
Tradotto automaticamente dall'aggiornamento ufficiale dell'incidente.
Prod3: Lentezza nei componenti della pipeline di carico
Inizio 7 luglio 2026 alle ore 10:22 UTC · 2h 15m
IssuesIncidente minore
Componenti interessati
Continuous Delivery - Next Generation (CDNG)
investigating
Stiamo attualmente indagando su un problema nel cluster Prod3 dove i componenti delle tubazioni stanno caricando più lentamente del previsto.
monitoring
Una correzione è stata implementata in uno dei nostri microservice responsabili per trattare i modelli di pipeline che ha risolto il problema. Stiamo continuando a monitorare il problema.
resolved
Questo incidente è stato risolto.
postmortem
#
Tra il 7 luglio e l'8 luglio 2026, gli account dei clienti ospitati nel nostro ambiente Prod 3 hanno sperimentato lentezza e guasti intermittenti durante il caricamento delle tubazioni e la risoluzione dei modelli. La causa di fondo è stato un forte, costante aumento del traffico interno di lookup-flag dal nostro servizio di elaborazione dei modelli al nostro servizio di backend piattaforma core.
Il problema è stato presentato in due giorni separati. Il giorno 1\(luglio 7\), il nostro team ha ripristinato il servizio attraverso le mitigazioni del livello delle infrastrutture riavviando i servizi interessati e aggiungendo capacità. Poiché quella causa sottostante era ancora presente, la stessa modalità di fallimento si è ripetuta il giorno 2 \(luglio 8\). L'indagine più approfondita del Giorno 2 ha identificato la specifica funzione flag e il percorso di codice responsabile, e l'ingegneria ha spedito una correzione in modo che il controllo della bandiera è ora servita dalla cache locale. Questa correzione è stata dispiegata in tutti i cluster di produzione e ha completamente risolto il problema; non si è ripresa da allora
Stiamo controllando tutte le altre bandiere di funzionalità sulla piattaforma per lo stesso gap di caching, e stiamo implementando i miglioramenti di processo e monitoraggio descritti nella sezione Misure preventive qui sotto per catturare questa classe di problema prima e ridurre il rischio di ricorrenza.
## Impact
**Sintomi: Lentezza intermittente o condutture di carico di guasto; validazione e risoluzione dei modelli lenti o falliti; errori di connettività intermittente / timeout tra i servizi della piattaforma.
**Impatto totale: ** Esecuzioni di tubazioni e operazioni di pipeline-studio che dipendono dalla risoluzione dei modelli sono stati ritardati o falliti durante le finestre attive descritte nella linea temporale sopra. Alcune esecuzioni richiedono riprova manuale
#
Il nostro servizio di backend core non poteva tenere il passo con il tasso di arrivo della richiesta a causa di un costante, incavato lookup caratteristica-flag che guida un grande e crescente volume di traffico interno dopo un recente rilascio.
# Mitigazione #
* Rimozione immediata \(Giorno 1 e Giorno 2\): rimosso l'istanza di backend saturo\(s\) dal servizio e capacità aggiuntiva per alleviare il collo di bottiglia acuto.
* Correzione permanente \(Giorno 2\): aggiornato il servizio di elaborazione dei modelli in modo che il controllo funzionalità-flag responsabile legga dalla cache locale invece di chiamare il servizio backend su ogni ricerca, eliminando il traffico interno in eccesso alla sua fonte.
* Il fix è stato distribuito a tutti i cluster di produzione e verificato attraverso un ritorno ai normali volumi di traffico interno e tempi di risposta.
## Misure preventive e passi successivi
* Controllo di caching della caratteristica-flag: stiamo rivedendo tutte le bandiere di funzionalità utilizzate in percorsi di codice ad alta frequenza attraverso la piattaforma per identificare e chiudere eventuali lacune di caching simili prima che possano causare una ripetizione di questo problema.
* Convalida di rilascio: stiamo rafforzando il test di carico pre-rilascio per nuovi percorsi di codice-flag-gated in modo che le regressioni call-volume di questo tipo siano catturate prima di raggiungere la produzione.
* Avviso di capacità: stiamo aggiungendo avvisi proattivi sulla saturazione backend richiesta-queue in modo che questa classe di collo di bottiglia venga catturata e mitigata automaticamente, prima che incida sui tempi di risposta del cliente.
Tradotto automaticamente dall'aggiornamento ufficiale dell'incidente.
FME - Some customers are experiencing delays in scheduled exports of impressions
Inizio 2 luglio 2026 alle ore 15:48 UTC · 1d 0h
IssuesIncidente minore
Componenti interessati
FMEFMEFME
monitoring
A fix has been implemented and we are monitoring the results.
monitoring
We are seeing the backlogged items worked through and continuing to monitor results.
monitoring
We are continuing to monitor results while the backlog is worked through.
resolved
This incident has been resolved.
postmortem
**Incident Summary**
Harness FME \(Feature Management & Experimentation\) faced substantial delays in scheduled impressions data exports on Jul 2, 2026. This issue stemmed from performance degradation within Tinybird's infrastructure, affecting query execution crucial to our export pipeline.
**Root Cause**
The core issue was a temporary **performance degradation on the provider's infrastructure**. This directly impacted the metadata retrieval endpoint, which failed to return job IDs intermittently. Consequently, completed export jobs underwent repeated retries, leading to a backlog in the export queue.
**Impact**
* The export backlog accumulated, peaking at more than 6 hours behind the planned schedule.
* No data loss was detected during the incident.
**Mitigation**
1. **Adjusted Temporal workflows:** Extended timeouts from ~30 to ~50 minutes and increased polling attempts from ~180 to ~300.
2. **Expanded resource capacity.**
3. **Traffic redirection:** Systematically shifted export workloads over to an optimized in-house cluster.
4. **Manual intervention:** Terminated stalling workflows stuck in retry loops from failed metadata lookups.
**Next Steps**
Complete the migration of all remaining export jobs to the internal analytics cluster \(In progress\).
Testing Dev Maintenance
Inizio 30 giugno 2026 alle ore 09:18 UTC · 2d 23h
MaintenanceEvento di manutenzione
scheduled
Testing Maintenance
in_progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
completed
The scheduled maintenance has been completed.
Dev Statuspage incident
Inizio 30 giugno 2026 alle ore 09:16 UTC · 6h 18m
OutageIncidente maggiore
investigating
Dev Statuspage incident - Testing
Few pipelines in prod4 are running with degraded performance
Inizio 29 giugno 2026 alle ore 14:56 UTC · 45m
OutageIncidente maggiore
Componenti interessati
Infrastructure as Code Management (IaCM)Continuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Mac Cloud BuildsSecurity Testing Orchestration (STO)Continuous Delivery - Next Generation (CDNG)
investigating
We are currently investigating this issue.
identified
Harness is investigating an issue affecting our Prod 4 environments.
Our log-services are affected and harness is currently working on restoring function. This can affect our CI, Chaos, IACM modules.
identified
We are continuing to work on a fix for this issue.
monitoring
A fix has been implemented and we are monitoring the results.
resolved
This incident has been resolved.
postmortem
### **Summary**
During a planned security improvement to rotate service authentication secrets in the Prod 4 environment, an incorrect secret value was inadvertently applied to a subset of internal services. This resulted in authentication failures between platform components, impacting CI initialization, delegate task creation, and log streaming for certain pipeline executions. The issue was resolved by rolling back the token configuration to the previous known-good version and validating service recovery.
### **Impact**
**Affected environment:** Prod 4
**Customer-visible impact:**
* CI builds failed during initialization with errors such as:
* _“Could not fetch token from log service”_
* _“token in request not authorized for receiving tokens”_ \(HTTP 400\)
* CD and IaCM pipeline stages continued to execute but did not stream logs.
* Some Shell Script steps failed during execution.
* Delegate tasks could not be created or assigned for some pipeline executions.
No customer data was lost or corrupted.
### **Root Cause**
As part of a planned security initiative, authentication secrets used for communication between internal platform services were rotated in the Prod 4 environment.
During the rotation process, an incorrect secret value was inadvertently configured for one of the services. Instead of applying the newly generated secret in the expected format, a default/incorrect value was introduced. This created a mismatch between services that authenticate using the shared token, causing authentication requests to be rejected with HTTP 400 errors.
The authentication failures prevented CI components from obtaining log service tokens, disrupted delegate task creation, and prevented log streaming for affected pipeline executions.
### **Resolution**
Engineering responded by:
* Reverting the token configuration to the previous known-good secret.
* Restoring consistent authentication across affected services.
* Validating recovery through CI pipeline execution tests.
* Verifying CD and IaCM pipeline execution and log streaming.
* Executing a comprehensive validation suite to confirm platform functionality before closing the incident.
### **Follow-up Actions**
To reduce the likelihood of similar incidents in the future, Harness will:
* Implement additional pre-rotation and post-rotation validation checks to verify that the correct secret values and formats are applied before changes are activated.
* Introduce automated verification of authentication between dependent services immediately following secret rotations.
* Strengthen operational safeguards and deployment validation for security credential rotation procedures to detect configuration mismatches before they can impact customer workloads.
We are currently experiencing intermittent login issues with the Traceable cluster due to an issue with our login provider. We are actively working with the provider to resolve the issue.
This incident does not impact data ingestion, and all ingestion pipelines continue to function normally.
We will provide updates as we have more information.
identified
The issue has been identified and a fix is being implemented.
monitoring
Issue has been fixed and we are closely monitoring
monitoring
We are continuing to monitor for any further issues.
resolved
This incident has been resolved.
postmortem
## **Summary**
_Between **06:50 UTC and 07:20 UTC on June 26, 2026**, customers experienced intermittent login failures while accessing Traceable environments across multiple US clusters. The incident was traced to an issue with the external authentication provider \(Auth0\), where elevated socket timeouts caused increased login latency and authentication request failures. Login functionality gradually recovered as the upstream issue stabilized, and the incident was resolved after successful login validation across multiple impacted clusters._
## **Root Cause**
_The root cause was an issue with the external authentication provider \(Auth0\), which experienced elevated socket timeouts while processing authentication requests. These upstream timeouts increased login latency and caused intermittent authentication failures across multiple US-region clusters. Since authentication requests depended on the external provider, affected login attempts failed despite Traceable platform services remaining healthy. The incident was resolved once the upstream authentication service recovered and login requests consistently completed successfully._
## **Impact**
_Starting at approximately 06:50 UTC, customers experienced intermittent login failures when accessing Traceable environments across multiple US clusters. The issue affected user authentication, preventing some users from accessing the platform while underlying application services remained operational. Login functionality progressively recovered during the incident, and normal authentication was restored by 07:20 UTC._
## **Remediation**
_The engineering team worked with the external authentication provider while continuously monitoring authentication health across affected clusters. Login functionality was validated through platform metrics and manual verification across representative environments. After confirming consistent authentication success across impacted clusters, the incident was declared resolved._
## **Action Items**
_To prevent such issues going forward, Harness will,_
_Increase authentication resilience: Evaluate improvements to authentication request handling, including timeout tuning, retry strategies where appropriate, and graceful degradation for transient upstream failures._
Planned Maintenance Notification
Inizio 25 giugno 2026 alle ore 05:30 UTC · 3d 22h
MaintenanceEvento di manutenzione
scheduled
We’ll be performing a backend infrastructure upgrade to improve reliability and compliance. During this maintenance window, Harness platform may experience brief, intermittent interruptions. We appreciate your understanding and are working to minimize any impact.
scheduled
Maintenance will begin as scheduled in 60 minutes.
Harness Login Failure in EU1 environment
Inizio 24 giugno 2026 alle ore 12:19 UTC · 2h 34m
OutageIncidente maggiore
Componenti interessati
Platform
investigating
Harness login is failing. We are investigating the problem.
monitoring
A fix has been implemented and we are monitoring the results.
monitoring
We are continuing to monitor for any further issues.
resolved
This incident has been resolved.
postmortem
### **Summary**
During a planned security improvement to rotate service authentication secrets in the EU1 environment, an out of sequence secret value was inadvertently applied to a subset of internal services. This resulted in authentication failures between platform components, causing login failures. The issue was resolved by rolling back the token configuration to the previous known-good version and validating service recovery.
### **Impact**
**Affected environment:** EU1
**Customer-visible impact: Login Failures**
No customer data was lost or corrupted.
### **Root Cause**
As part of a planned security initiative, authentication secrets used for communication between internal platform services were rotated in the EU1 .
During the rotation process, an secret value was inadvertently misconfigured for one of the services. There was a newer format of secret and had to be applied in a certain order. This created a mismatch between services that authenticate using the shared token, causing authentication requests to be rejected with HTTP 400 errors.
The authentication failures prevented CI components from obtaining log service tokens, disrupted delegate task creation, and prevented log streaming for affected pipeline executions.
### **Resolution**
Engineering responded by:
* Reverting the token configuration to the previous known-good secret.
* Restoring consistent authentication across affected services.
### **Follow-up Actions**
To reduce the likelihood of similar incidents in the future, Harness will:
* Implement additional pre-rotation and post-rotation validation checks to verify that the correct secret values and formats are applied before changes are activated.
* Introduce automated verification of authentication between dependent services immediately following secret rotations.
* Strengthen operational safeguards and deployment validation for security credential rotation procedures to detect configuration mismatches before they can impact customer workloads.
Integration Authentication Issue Affecting Data Ingestion
Inizio 23 giugno 2026 alle ore 06:46 UTC · 7d 9h
IssuesIncidente minore
identified
We have identified an issue affecting a small subset of accounts in the EU1 region. As a result, data ingestion for impacted integrations may have stopped.
Planned Resiliency activity for Feature Management and Experimentation (FME)
Inizio 22 giugno 2026 alle ore 17:55 UTC · 10d 14h
MaintenanceEvento di manutenzione
scheduled
FME will be undergoing scheduled critical maintenance during this window. No downtime is expected, and all services are anticipated to remain available. As part of this maintenance, updates or modifications to Large Segments will be temporarily unavailable until the activity is completed.
scheduled
We will be undergoing scheduled maintenance during this time.
scheduled
Maintenance will begin as scheduled in 60 minutes.
in_progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
completed
The scheduled maintenance has been completed.
Planned Maintenance Notification
Inizio 19 giugno 2026 alle ore 11:18 UTC · 13d 21h
MaintenanceEvento di manutenzione
scheduled
We’ll be performing a backend infrastructure upgrade to improve reliability and compliance. During this maintenance window, Harness platform may experience brief, intermittent interruptions. We appreciate your understanding and are working to minimize any impact.
scheduled
Maintenance will begin as scheduled in 60 minutes.
in_progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
The issue has been identified and a fix is being implemented.
identified
IDP Systems' communication was interrupted due to an update. Harness is rolling back changes.
Impacted environments - prod0, prod1, prod2
monitoring
A fix has been implemented and we are monitoring the results.
resolved
This incident has been resolved.
postmortem
# **Customer RCA: Executive Summary**
On June 17, 2026, between 9:30 PM and 10:15 PM IST, customers in certain production environments experienced failures when accessing IDP \(Internal Developer Portal\) workflows. The issue was caused by a configuration mismatch in service authentication settings.
## **Impact**
* **Affected Service:** IDP workflows
* **Duration:** Approximately 45 minutes \(9:30 PM - 10:15 PM IST\)
* **Customer Impact:** Users were unable to load IDP workflows during this period.
* **Data Loss:** None
* **Security Impact:** None
## **Root Cause**
During a planned service deployment, a configuration mismatch occurred in the authentication settings used for internal service-to-service communication. Specifically, the authentication credentials configured in the newly deployed service did not match the credentials expected by existing services in prod environments.
This mismatch caused authentication failures when services attempted to communicate with each other, resulting in workflow loading failures for customers.
## **Mitigation**
The issue was resolved by reverting the configuration change to restore the previous working authentication settings. The engineering team was proactively monitoring logs immediately after deployment and identified error patterns several minutes before the first customer report.
## **Action Items/Next Steps**
1. **Enhanced Pre-Deployment Validation:** Automated validation checks will be introduced to verify that all required configurations, secrets, and service dependencies are correctly provisioned and consistent across services before any production deployment.
2. **Improved Deployment Procedures:** Updated deployment checklists with explicit verification of service authentication settings across services before rollout.
Cloud builds are failing with 429 Too Many Requests error while downloading artifacts from central sonatype registry.
Inizio 17 giugno 2026 alle ore 13:42 UTC · 3h 31m
IssuesIncidente minore
Componenti interessati
Continuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud BuildsContinuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Windows Cloud BuildsContinuous Integration Enterprise(CIE) - Linux Cloud Builds
investigating
We are investigating an issue affecting artifact downloads from Maven Central following recent rate-limiting changes implemented by Sonatype. Sonatype has recently implemented rate limits and builds downloading artifacts from central sonatype https://central.sonatype.org/faq/429-contact-support/. Customers downloading artifacts would be impacted.
We are actively engaging with Sonatype to mitigate the issue here.
identified
The issue has been identified and a fix is being implemented.
monitoring
A fix has been implemented and we are monitoring the results.
monitoring
Maven Central is rate-limiting requests originating from our us-central1 NAT egress IP. Other regions (us-west1, us-east5) are not affected. The Maven/Sonatype team has been engaged and is actively working on lifting the rate limit for our IP range.
monitoring
We are continuing to monitor for any further issues.
resolved
This incident has been resolved.
postmortem
## Summary
On June 17, 2026, a subset of Harness Hosted CI customers experienced intermittent build failures when downloading Java/Gradle dependencies from Maven Central. Affected builds failed with `429 Too Many Requests` errors and could not proceed until the issue was resolved.
The incident was not caused by a Harness code change or platform defect. It was triggered by a policy change implemented by Sonatype \(the operator of Maven Central\) that tightened IP-based rate limits for unauthenticated access. Because Harness Hosted CI routes builds through shared network egress infrastructure, the aggregate outbound traffic from multiple customers sharing a common IP address exceeded the new, lower thresholds — causing all builds behind that IP to be temporarily blocked.
This was an industry-wide change. Other CI/CD platforms experienced identical incidents in the weeks prior to Harness being affected.
## Root Cause
**Primary cause:** Sonatype tightened IP-based rate limiting policies on Maven Central \([repo1.maven.org](http://repo1.maven.org) and [repo.maven.apache.org](http://repo.maven.apache.org)\). Harness Hosted CI uses shared network egress infrastructure where multiple customer build environments route outbound traffic through common IP addresses. When the aggregate Maven Central request volume from all customers behind a given IP exceeded Sonatype's revised threshold, that IP was hard-blocked for approximately 30 minutes, causing all builds attempting to download Maven dependencies to fail with `429` errors.
## Mitigation
**Immediate actions taken during the incident:**
1. **Regional redistribution:** For customers experiencing active failures, builds were routed to infrastructure regions whose outbound IPs had not yet hit the rate limit threshold, providing immediate relief for those customers.
2. **Sonatype engagement and IP whitelisting:** The Harness team contacted Sonatype support and provided the full list of Harness Hosted CI outbound IP addresses for whitelisting. Sonatype applied a "warning" rate-limit policy in place of hard blockingeliminating the `429` errors across all affected regions. Post-mitigation validation confirmed zero throttling across all tested IPs.
## Next Steps
The following actions are in progress or planned to prevent recurrence and reduce exposure to similar incidents:
**Near-term \(in progress\):**
* Harness is in the process of establishing a commercial agreement with Sonatype for elevated rate limits on Maven Central and advance notification of future policy changes.
* Harness is engaging other major dependency registries — including Docker Hub, npm, GitHub Packages, and the Gradle Plugin Portal — to proactively whitelist Harness egress IPs before similar incidents can occur.
* We are publishing documentation on best practices for managing external dependency access in Hosted CI, including guidance on dependency proxies, mirrors, and caching strategies.
* Harness plans to implement caching infrastructure for common dependencies at the platform level \(using Harness Artifact Registry\), which will significantly reduce direct Maven Central request volume and provide resilience against future external rate-limit changes.
* We are enhancing our alerting alerting for `429` error patterns from external registries so that future rate-limit incidents are detected internally before customers are impacted.
## What This Means for You
**To reduce future exposure**, we recommend:
* **Enable Cache Intelligence** in Harness CI to cache dependency artifacts between builds, reducing how often Maven Central is contacted.
* **Use Harness Save/Restore Cache steps** to persist your local dependency cache across pipeline runs.
If you have questions or need help implementing any of these recommendations, please contact your Customer Success Manager or reach out to Harness Support.
Testing Dev Maintenance 2
Inizio 16 giugno 2026 alle ore 10:42 UTC · 4m
MaintenanceEvento di manutenzione
scheduled
We will be undergoing scheduled maintenance during this time.