Elastic Cloud Serverless deprecations
Review the deprecated functionality for Elastic Cloud Serverless. While deprecations have no immediate impact, we strongly encourage you update your implementation.
Update
GET /api/statusendpoint details. For more information, check #268942 #202446.Impact:
GET /api/statusnow requires the Elasticsearchcluster:monitorprivilege to return the full payload, including host info, build details, core and plugin status, and metrics. Authenticated callers withoutmonitor, and callers when the privilege check fails, receive the same minimal response shape that unauthenticated callers already receive:{ status: { overall: { level } } }. Kubernetes liveness and readiness probes are unaffected.Action: If you need to preserve the previous behavior while updating monitoring users or roles, set
status.statusPageBypassMonitorPrivilege: trueto allow authenticated users to access the full status API and/statuspage withoutmonitor. The/statusUI renders an explanatory prompt for users withoutmonitorwhen the bypass is disabled.
Remove HTML converter/bridge from field formatters plugin and clean up. For more information, check #267517 #259295.
Impact: Field formatters now return React elements instead of HTML strings, eliminating the use of dangerouslySetInnerHTML and removing a class of potential XSS vulnerabilities.
- Removes the pre-built Threat Hunting Agent from Agent Builder. Security AI workflows now use the Elastic AI Agent with skills. For more information, refer to #263996.
- Deprecated
Enable CCS Warning Privilegesin Kibana advanced settings. For more information, refer to #252183.
- Removes the URL limit from Kibana and deprecates the
storeInSessionStoragesetting. For more information, refer to #242972. - Removes the
--statsflag onbuild_api_docs. For more information, refer to #249305.
- Removes the Kibana user from the root group. For more information, refer to #244798.
- Shows a callout for deprecated, in-use ILM policies. For more information, check #243416.
- Filters endpoint exceptions from the detection engine's execution logic. For more information, check #233289.
Adds deprecation notice for max_size rollover condition
We have deprecated the max_size rollover condition, in favour of max_primary_shard_size, when used in PUT /_ilm/policy/{name} and POST /{index}/_rollover endpoints.
Impact:
Users can continue to use this condition however a warning will be issued via the response headers and in the server logs. The condition may be removed fully in a later version of Elasticsearch.
For more information, view #135765.
- Changes the
reporting_userrole to leverage reserved Kibana privileges. For more information, check #132766
- Removes Default Quick Prompts from the Security AI Assistant. For more information, check #225536.
- Removes the
allowByValueEmbeddablessetting from the Dashboard plugin. For more information, check #221165.
- Deprecates the Behavioral Analytics CRUD APIs #122960
- Renames the
integration-assistantplugin toautomatic-import. For more information, check #207325.
- Deprecates a subset of Elastic Security Serverless endpoint management APIs. For more information, check #206903.
- Removes all legacy risk engine code and features. For more information, check #201810.
- Disables the Elastic Observability Serverless log stream and settings pages. For more information, check #203996.
- Removes Logs Explorer in Elastic Observability Serverless. For more information, check #203685.
- Deprecates the
discover:searchFieldsFromSourcesetting. For more information, check #202679. - Disables scripted field creation in the Data Views management page. For more information, check #202250.
- Removes all logic based on the following settings:
xpack.reporting.roles.enabled,xpack.reporting.roles.allow. For more information, check #200834. - Removes the legacy table from Discover. For more information, check #201254.
- Deprecates ephemeral tasks from action and alerting plugins. For more information, check #197421.