Contact Us 1-800-596-4880

Omni Gateway Release Notes

Mulesoft Omni Gateway is an Envoy-based, ultrafast lightweight API gateway designed to manage and secure APIs running anywhere. Built to seamlessly integrate with DevOps and CI/CD workflows, Omni Gateway delivers the performance required for the most demanding applications and microservices while providing enterprise security and manageability across any environment.

The following release notes are provided for Omni Gateway:

Policy Release Notes

The following release notes are provided for Omni Gateway Policies:

Category Policy

A2A

A2A Agent Card

A2A In-Task Authorization Code

A2A OAuth2 OBO Credential Injection

A2A PII Detector

A2A Prompt Decorator

A2A Schema Validation

A2A Token Based Rate Limit

A2A v1 Agent Card

A2A v1 PII Detector

A2A v1 Prompt Decorator

A2A v1 Schema Validation

A2A v1 to v0.3 Transcoder

A2A v1 Token Based Rate Limit

A2A and MCP

Agent Connection Telemetry

Compliance

Client ID Enforcement

Cross-Origin Resource Sharing (CORS)

GraphQL

GraphQL Introspection Control

GraphQL Operation Limits

GraphQL Schema Validation

GraphQL Static Query Complexity

LLM

Amazon Bedrock Guardrails

Azure Content Safety

LLM PII Detection

LLM Token Based Rate Limit

Regex Prompt Guard

MCP

MCP Attribute-Based Access Control

MCP Global Access

MCP PII Detector

MCP Payload Optimization

MCP Tools Progressive Disclosure

MCP Schema Validation

MCP Support

MCP Tool Mapping

Quality of Service

Circuit Breaker

Health Check

HTTP Caching

Rate Limiting

Rate Limiting: SLA-based

Response Idle Timeout

Spike Control

Stream Idle Timeout

Traffic Management for Multiple Upstream Services

Traffic Management for Multiple Upstream Services (Weighted)

Upstream Idle Timeout

WebSocket Connection Limit

SSE

SSE Logging

Security

AWS Request Signature

Basic Authentication: LDAP

Basic Authentication: Simple

Credential Injection API Key

Credential Injection Basic Authentication

Credential Injection JWT Generation

Credential Injection OAuth 2.0

External Authorization

Injection Protection

IP Allowlist

IP Blocklist

JSON Threat Protection

JWT Validation

OAuth 2.0 OBO Credential Injection

OAuth 2.0 Protected Resource Metadata

OAuth 2.0 Token Introspection

OpenID Connect OAuth 2.0 Access Token Enforcement

Schema Validation

SOAP Schema Validation

Transport Layer Security (TLS) - Inbound

Transport Layer Security (TLS) - Outbound

XML Threat Protection

Transformation

AWS Lambda

DataWeave Body Transformation

DataWeave Headers Transformation

DataWeave Request Filter

External Processing

Header Injection

Header Removal

Troubleshooting

Message Logging

Outbound Message Logging

Tracing