the-bastion/doc/release-notes/v3.11.02.md

# :zap: Security

- No security fixes since previous release
- Oldest release with no known security issues: `v3.00.00` (first public version)

# :bulb: Highlights

Main changes from the previous version are:
- A new script `bin/admin/check_uid_gid_collisions.pl` has been added, to ease procedures such as [HA setup](https://ovh.github.io/the-bastion/installation/restoring_from_backup.html#ensuring-the-uids-gids-are-in-sync) and [backup restoration](https://ovh.github.io/the-bastion/installation/advanced.html#ensuring-the-uids-gids-are-in-sync). The documentation has been updated accordingly to reference the proper usage of this script at the right steps.
- We now support RockyLinux 9, OpenSUSE Leap 15.4. Debian 12 is also now part of the test workflows to ensure we support it as soon as it's officially released in the next few months.

A more complete list of changes can be found below, for an exhaustive (and boring) list, please refer to the commit log.

# :pushpin: Changes
- feat: add uid/gid collisions checking script & document it for HA cluster setup and backup restore (#378)
- fix: ``groupAddServer``: ``--force-key`` wasn't working properly (#259)
- fix: ``groupInfo``: reintroduce group name in human-readable output (mistakenly removed in v3.11.00)
- chg: add Debian 12 to tests (not released yet, so not officially supported for now)
- chg: add RockyLinux 9 support
- chg: bump OpenSUSE Leap tests from 15.3 to 15.4
- chg: push sandbox and tester images from Debian 10 to Debian 11
- remove: get rid of decade-old Debian ``openssh-blacklist`` logic
- remove: get rid of deprecated ``UseRoaming`` option from ``ssh_config``

# :fast_forward: Upgrading

- [General upgrade instructions](https://ovh.github.io/the-bastion/installation/upgrading.html)
- [Specific upgrade instructions for v3.11.02](https://ovh.github.io/the-bastion/installation/upgrading.html#v3-11-02-2023-04-18)