OpenResty Inc.

Our team recently released the new version 25.9.17 of the OpenResty Edge product. The highlights of this new version are as follows: - Asynchronous Mirroring Requests: Easily implement traffic mirroring without affecting the performance of the main request. - Cache Preheating: Preload hot content into the cache to handle traffic peaks. - S3 Authentication Support: Authenticate S3 requests directly through page rules. - DNS over TCP: Provides more stable and reliable DNS queries. (The gateway comes with support for a geo-sensitive authoritative DNS service.) - Enhanced Security and Monitoring: The Log Server API now supports token authentication, and Prometheus metrics are more detailed. Additionally, we have added several new operation APIs related to the EdgeLang mini-language, optimized the UI experience, and fixed several issues. View the full release announcement: https://lnkd.in/gFbuD9vE #OpenResty #APIGateway #WAF #edgecomputing

We recently released version 25.10.11 of our OpenResty XRay product. The complete release announcement can be found at: https://lnkd.in/gXDivzSk The three main highlights are: 1) System compatibility has been significantly expanded, now fully supporting CentOS 10, RockyLinux 10, AlmaLinux 10, Flatcar, and Linux kernel versions 6.6 and above. 2) Several new professional analysis tools have been added, including the ngx-brotli-* and ngx-zstd-* series for Brotli/Zstd compression analysis, nodejs-ftrace for Node.js function call tracing, and get-dlopen-libs for dynamic library loading detection. 3) Core diagnostic capabilities and stability have been substantially improved. This includes support for obtaining Lua call stacks for Redis versions 7/8, optimized container identification, and fixes for critical issues such as multi-process tool reuse and cgroup v2 CPU limit enforcement failures. OpenResty XRay is our online application analysis platform, powered by dynamic tracing technology. It can non-invasively analyze in real-time various types of application problems, such as high CPU utilization, CPU underutilization, excessive memory consumption or memory leaks, high disk I/O, high latency, exceptions, crashes, network issues, security vulnerabilities, and many other challenges. All this is achieved without requiring access to source code or making any modifications to the target application.

An interesting performance optimization case: A high-throughput core system showed excellent stress test results, yet its CPU utilization was unusually high. This "outwardly healthy, inwardly fragile" system state is often the most challenging to diagnose. By using OpenResty XRay we quickly identified the blind spot everyone had overlooked: an inefficient Gzip compression configuration, which was consuming over half of the CPU resources. We highly recommend reading this case study, as it perfectly demonstrates OpenResty XRay's value: cutting through the ambiguity of surface-level metrics to pinpoint the root cause of problems. https://lnkd.in/gwy-bXHt

Users complain about slow page loads, API response delays, and soaring bandwidth costs, yet few realize the bottleneck might lie in gzip—a compression algorithm that has faithfully served for decades. While it was once sufficient, gzip now struggles to keep pace with today's dynamic content and high-concurrency demands. That's why we've integrated the modern compression algorithm zstd into OpenResty Edge. By leveraging lower CPU overhead, we achieve higher compression ratios and faster transmission speeds. Curious about how to embrace next-generation compression technology in OpenResty Edge? This article has the answers you're looking for: https://lnkd.in/gS8zrGKj

In today's HTTPS-first world, SSL/TLS certificate management remains a significant challenge for many teams. Previously, we've covered two common approaches: automatic certificate issuance using Let's Encrypt, or manual certificate uploads via the OpenResty Edge console. However, OpenResty Edge has always supported the ACME protocol, enabling integration with various CA providers like Google Trust Services, ZeroSSL, DigiCert, and Sectigo (via EAB extension). This facilitates automated issuance and renewal of certificates, including wildcard and multi-domain certificates. With one-click configuration, you can eliminate the cumbersome tasks of applying, uploading, and renewing certificates. Discover how OpenResty Edge simplifies certificate management with the ACME protocol: https://lnkd.in/gQaHRdae Further Reading: - Automating Certificate Issuance with Let's Encrypt: https://lnkd.in/gkzMZUc - Manually Uploading Certificates in the OpenResty Edge Console: https://lnkd.in/gba9WK4 #SSL2025 #TLS #ACME

Any unexplained technical anomaly is an "invisible debt" often overlooked amidst rapid business growth. Recently, we helped a client resolve a challenging Nginx memory leak, whose root cause was a classic C/C++ process memory leak in a production environment. This issue acts like a hidden cost sink, silently draining system resources and team energy in subtle, hard-to-detect ways. Many monitoring tools can tell you "what happened," but they often fall short of explaining "why it happened." This lack of deep diagnostic capability is precisely what allows technical debt to accumulate. So, how does OpenResty XRay empower R&D and Operations teams to see beyond surface-level symptoms and pinpoint the true root cause of problems, transforming reactive post-mortem investigations into predictable, proactive, and definitive solutions? This article will unveil the answer through a concrete customer case: https://lnkd.in/gs-yYmyW

We recently released OpenResty XRay product version 25.10.11. The complete release announcement is available here: https://lnkd.in/gXDivzSk There are three main highlights: 1) Significantly expanded system compatibility, now fully supporting CentOS 10, RockyLinux 10, AlmaLinux 10, Flatcar, and Linux kernel versions 6.6 and above. 2) Added multiple professional analysis tools, including the `ngx-brotli-* and ngx-zstd-*` series for Brotli/Zstd compression analysis, `nodejs-ftrace` for Node.js function call tracing, and `get-dlopen-libs` for detecting dynamically loaded libraries. 3) Core diagnostic capabilities and stability have been significantly improved. This includes support for acquiring Lua call stacks for Redis versions 7/8, optimized container identification, and fixes for key issues such as multi-process tool reusability and the failure to enforce CPU limits in cgroup v2 environments. OpenResty XRay is our online application analysis platform based on dynamic tracing technology. It can non-invasively analyze in real-time a wide range of issues in various application types, including high CPU usage, CPU underutilization, excessive memory consumption or leaks, high Disk I/O, high latency, exceptions, crashes, network problems, and security risks, all without touching source code or making any modifications to the target application. #openresty #openrestyxray #dynamictracing

In Java applications, function-level monitoring has always been a risky business: code changes, extra logs, breakpoints. It’s slow and often unsafe in production. With OpenResty XRay, we built a non-invasive Java function probe that delivers deep visibility without compromising stability. Here’s how it works in real-world systems: 🔗 https://lnkd.in/gGpkcXXp

The core of most observability products lies in helping users understand the internal state of their systems, which typically demands collecting and analyzing vast quantities of data. However, this traditional approach to data collection is expensive, incurs significant performance overhead, and requires substantial manual effort for analysis. It often leads to increased budget expenditure, getting lost in information overload, and heightened frustration, without truly addressing the root cause of problems. OpenResty XRay's core mission is precisely to collect the right data, at the right time, with the right precision, thereby unlocking the deepest insights with minimal cost. Curious to learn how OpenResty XRay empowers enterprises to truly pay for "insights" rather than just "data"? Discover more by reading: https://lnkd.in/gSF9dDzn #AIOps #observability #OpenRestyXRay

In online business, do performance and security always have to be a trade-off? When non-core tasks like logging, data analytics, and security scanning slow down your primary requests, every millisecond of delay can lead to user churn. Our solution enables automatic traffic replication and forwarding at the Application Layer (L7). Through asynchronous "mirror requests," all complex security auditing and data analysis tasks can be offloaded to these shadow requests, allowing your main requests to respond with near-zero latency. This is OpenResty Edge's newly upgraded "Request Mirroring" feature, designed to reduce the burden on your core processes and accelerate the user experience. Want to learn how technology can empower your business to achieve the best of both worlds? Read the full article to discover more about this feature upgrade: https://lnkd.in/gzaPmbaC