2 posts tagged with "Self-hosting"
View All TagsInstance-level setting to enforce nsjail sandboxing across all jobs, and per-script #sandbox annotation for bash scripts.
New features
- job_isolation instance setting with nsjail_sandboxing value to enforce sandboxing for all jobs.
- Sandboxing enabled when either job_isolation is set or DISABLE_NSJAIL=false.
- #sandbox bash annotation to enable sandboxing for individual bash scripts.
- Nsjail always probed at startup regardless of DISABLE_NSJAIL setting.
Unauthenticated and authenticated health endpoints for monitoring Windmill instances. Includes Prometheus metrics, Kubernetes readiness probe support, and detailed diagnostics.
New features
- Unauthenticated /api/health endpoint with 5-second cache for lightweight uptime checks.
- Authenticated detailed endpoint returning database latency, connection pool stats, worker groups, and queue depth.
- Prometheus metrics: health_status_phase, health_database_latency_ms, health_active_workers, health_queue_depth.
- SILENCE_HEALTH_LOGS environment variable to suppress health check log noise.