Red Hat SummitRelease notes
Release Notes for Red Hat Lightspeed
Abstract
Chapter 1. About Red Hat Lightspeed
Red Hat Lightspeed is a Software-as-a-Service (SaaS) application included with almost every subscription to Red Hat Enterprise Linux, OpenShift Container Platform, and Ansible Automation Platform.
Red Hat Lightspeed can discover relevant insights, recommend tailored, proactive, next actions, and automate tasks. Using Red Hat Lightspeed, customers benefit from the experience and technical knowledge of Red Hat Certified Engineers, to identify, prioritize and resolve issues for business operations.
As a SaaS offering, located at Red Hat Hybrid Cloud Console, Red Hat Lightspeed is regularly updated. Regular updates expand the Red Hat Lightspeed knowledge archive in real time to reflect new IT challenges that can impact the stability of mission-critical systems.
Chapter 2. January 2026
Review the January 2026 updates and fixes for Red Hat Lightspeed.
2.1. Product-wide updates
- Published blogs and resources
- Blog: Manage AI-powered inventory with Red Hat Lightspeed MCP by Samiksha Saxena (Jan 7, 2026)
- KB article: Which RHEL system facts are collected and populated by insights-client (Red Hat Lightspeed)? by Jerome Marc (Jan 13, 2026)
- Blog: AI-driven vulnerability management with Red Hat Lightspeed MCP by Samiksha Saxena (Jan 14, 2026)
2.2. Red Hat Enterprise Linux updates
Review the January 2026 updates and fixes for Red Hat Lightspeed running on RHEL systems.
2.2.1. Inventory
- UI fixes and improvements
-
Fixed missing product names and IDs in API system profile results for
installed_products, ensuring consistency across collectors. - Fixed an issue that caused a 500 error, preventing the Inventory page from loading when specific workloads were detected on systems.
- Improved the loading performance of the Inventory table by optimizing backend queries.
- Resolved issues with drop-down lists not closing correctly and missing checkmarks on the Staleness and Deletion page.
- Fixed text clipping issues on the Staleness and Deletion page for improved readability.
- Removed the RHC status from the System Details page and deleted the RHC status filtering option from the Inventory table.
- Added collapse and expand functionality to System Details cards for easier navigation.
- Introduced RHEL AI facts on the System Details page to provide richer system insights.
- Added a link to the Managing Staleness & Deletion documentation in Learning Resources.
-
Fixed missing product names and IDs in API system profile results for
2.2.2. Advisor
- New recommendations released
- System boot failure occurs when the logical volume specified in GRUB configuration does not exist
- NFS mount fails with "Cannot allocate memory" error when the memory becomes fragmented
- The memory usage of the squid process keeps increasing on RHEL 9 due to memory leaks
- System crashes after running the ReaR recovery system due to watchdog access
- Extending a RAID LV fails due to an unreleased memory issue within LVM2
- The network performance decreases on RHEL 9.4 and later when it uses NICs with enic driver due to a known kernel bug
- System cannot detect some NVMe disks connected with to Intel VMD on RHEL 9.4 and 9.6 due to a known kernel bug
- Deprecated action attribute on the Stonith device can lead to unexpected node reboots or power-offs
-
System will fail to reboot when the
resumeboot argument points to an incorrect swap partition UUID -
Kernel panic occurs when the
intel_tpmi_power_domainsmodule is loaded on affected Intel platforms - The Trend Micro Deep Security Agent service cannot start due to a library update in the RPM package
2.2.3. Patch / Content
- Legacy errata notifications migrated to patch notifications
- The Hybrid Cloud Console eventing and notification platform now manages all Red Hat errata notifications. That includes new errata that affect account subscriptions and errata that affect installed on account systems packages. For more information, see Errata notifications changes and migration(Red Hat Knowledgebase).
2.2.4. Image builder
- Control the package versions in your images with content templates
- You can now select a content template during blueprint creation to control the set of packages included in your image builds in the image builder service in Red Hat Lightspeed. Content templates take a set of criteria, like RHEL version, architecture, additional package repositories, and date, and translate that to a set of date-based snapshot repositories. The selection of a content template in the blueprint enables repeatable builds and encourages consistent RHEL environments by allowing image builds and system patching from the same set of packages.
- UI improvements for the blueprint creation wizard
- Renamed the OpenSCAP profile step to Security.
- Improved the description on the Ansible Automation Platform registration step.
- Enhanced field validation, blank state, package selection, and the blueprint review step.
2.3. OpenShift Container Platform updates
Review the January 2026 updates and fixes for Red Hat Lightspeed services on OpenShift Container Platform clusters.
2.3.1. Advisor
- Pen Drive powered by Red Hat Lightspeed - Limited Technology preview
- Pen Drive combines knowledge of Advisor and a 1-podman image design to provide Advisor services in isolated, on-premise only, and restricted systems in a single cluster mode. You can download the image to a USB flash drive or a jump drive and execute it. From the Pen Drive UI, you view issues observed on your OpenShift Container Platform cluster and recommendations on how to fix them. For more details, see Pen Drive powered by Red Hat Lightspeed.
2.3.2. Cost Management
- Cost of GPU
Artificial Intelligence workloads require advanced GPUs for training and inference at scale. These GPUs are expensive resources in modern data centers. Cost Management can now track GPU consumption and calculate cost based on custom rates defined by the user.
This feature is currently implemented for NVIDIA GPUs running on premise.
- New currencies
- Nigerian Naira (NGN), New Taiwan Dollar (NT$), Saudi Riyal (SAR), and United Arab Emirates Dirham (AED) are now available for the Red Hat Lightspeed cost management users.
- OpenShift-attached Google Cloud storage
- An issue whereby Google Cloud storage directly attached to OpenShift nodes might not be included in the cost of the workloads is now resolved.
Chapter 3. December 2025
Review the December 2025 updates and fixes for Red Hat Lightspeed.
3.1. Product-wide updates
- Published blogs and resources
- Blog: How to set up Red Hat Red Hat Lightspeed Model Context Protocol by Samiksha Saxena (December 1, 2025)
- Blog: Disconnected experiences for Red Hat Red Hat Lightspeed are now available in Red Hat Satellite 6.18 by Shane McDowell (December 8, 2025)
- Blog: Beyond modularity and other upgrades: The game-changer for your IT planning by Scott McCarty and Rebecca Combs (December 17, 2025)
- Video: Using AI to query Red Hat Red Hat Lightspeed by John Spinks
- KCS: Tracking Activation Keys for Registered RHEL Systems
- KCS: Why a host was automatically deleted from the Red Hat Hybrid Cloud Console Inventory within 30 days despite custom staleness and deletion configuration
KCS: Integrate Red Hat Red Hat Lightspeed with Model Context Protocol (MCP)
3.2. RHEL updates
Review the December 2025 updates and fixes for Red Hat Lightspeed running on RHEL systems.
3.2.1. Inventory
- UI fixes and improvements
- System Details Layout: Separate Overview and Details tabs now contain system details. This improves navigation and aligns consistency with Red Hat Satellite.
-
Last Seen Logic: The Last seen field now accurately reflects the system’s
last_check_intime rather than the updated timestamp. - Link Repairs: Fixed broken links previously found in Inventory information popovers.
- Tag Filtering: Resolved an issue where filtering by tags would fail after loading additional tags (selecting more tags available).
3.2.2. Remediations
- UI fixes and improvements
- Playbook Generation:compliance service playbooks are now generated in the expected order when the issue precedence field is used.
3.2.3. Advisor
- New recommendations released
- Resizing Ext4 file systems on logic volumes fails due to a known issue in e2fsprogs
- Performance degradation occurs due to a timer set issue when the CIFS file system is mounted
-
Unprivileged users cannot login via SSH while the
/run/nologinfile is present - The creation of VDO LVs fails due to the kvdo module being unloadable
- Kernel panic occurs due to retry IO on failed protocol negotiations when utilizing a CIFS share mounted via autofs
- VM crash occurs due to an incorrect handling of tail pages in THP_SWAP
- Rescue kernel regeneration fails due to missing boot loader entries
- The systems cannot access the content from CDN when the RHSM configuration is not updated based on changes about Red Hat Content Delivery Network (CDN) & Entitlement Network Modernization
3.2.4. Image Builder
- Compliance integration support
- Integration with Red Hat Lightspeed compliance for custom policies, enforcement, and reporting is now fully supported for production use.
- Repeatable builds support
- Image Builder can now generate builds from Red Hat Lightspeed Content Templates in Preview mode, offering greater control and expanded content repository options during the build process.
- UI fixes and improvements
- Registration visibility: The registration step is no longer collapsed by default and now displays all available options.
- Activation Key details: Added a View details button to Activation Keys, allowing users to view attributes for the selected key.
- Terminology update: The Compliance section has been renamed to Security.
- RHEL 10 Support: CIS and other OpenSCAP benchmark profiles are now available for RHEL 10.
- Partitioning Modes: Standard disk partitioning now allows selection from Auto-LVM, Raw, or LVM modes.
- Minimum Disk Size: Users can now specify a minimum disk size for advanced partitioning.
- Volume Management: Added the ability to create and name Volume Groups and Logical Volumes (LVM).
- EPEL Support: Use of the common EPEL community repository for image builds is now fully supported for production use. This removes the requirement for you to manually define the EPEL community repository as a custom repository.
Chapter 4. November 2025
Review the November 2025 updates and fixes for Red Hat Lightspeed.
4.1. Product-wide updates
- Red Hat Insights is now Red Hat Lightspeed
Red Hat Insights is now Red Hat Lightspeed, reflecting the addition of AI-powered management to Red Hat platforms. With Red Hat Lightspeed, you can continue using the same workflows, console entry points, and integrations that you rely on. There is no action required for users.
The Red Hat Hybrid Cloud Console and tools like Red Hat Satellite have updates including the new name, updated navigation and iconography, and user interface adjustments designed to surface AI-driven insights and recommendations more intuitively. The changes will continue gradually through the end of 2025 and into 2026. Our goal is to make the evolution seamless while continuously improving the performance, usability, and intelligence of the experience.
For more information, see Red Hat Insights is now Red Hat Lightspeed: Accelerating AI-powered management.
- Published blogs and resources
- Video: Incident detection in Red Hat OpenShift (November 3, 2025)
- Blog: Red Hat Insights is now Red Hat Lightspeed to accelerate AI-powered management (November 4, 2025)
- Blog: Integrating Red Hat Lightspeed in 2025: From observability to actionable automation by Jerome Marc (November 20, 2025)
- Blog: How I used Red Hat Lightspeed image builder to create CIS (and more) compliant images by John Spinks (November 24, 2025)
- Cheat sheet update: Red Hat Lightspeed API cheat sheet by Jerome Marc (November 20, 2025)
- Blog: Tracking event-driven automation with Red Hat Lightspeed and Red Hat Ansible Automation Platform 2.6 by Jerome Marc (November 26, 2025)
4.2. Red Hat Enterprise Linux updates
Review the November 2025 updates and fixes for Red Hat Lightspeed running on RHEL systems.
4.2.1. General
- Red Hat Lightspeed advisor in Red Hat Satellite (GA)
- The advisor service is now generally available for disconnected environments in Satellite 6.18. This service offers broad assessments of RHEL infrastructure health across availability, stability, performance, and security. Users can now view risk levels, affected systems, and remediation playbooks directly within the Satellite console.
- Red Hat Lightspeed advisor in Satellite (Tech Preview)
- The vulnerability service is now available as a technology preview for on-premise use. This service provides a security-focused view for identifying systems at risk. You can view detailed CVE information, such as severity and CVSS scores, to enable more effective risk triage compared to traditional errata views.
- Red Hat Content Delivery Network (CDN) and Entitlement Network Modernization
On January 14, 2026, Red Hat will update its CDN and entitlement networks. This affects customers who use RHEL 7.3 or earlier and customers who use specific IP allowlists. These network updates directly impact the insights-client. After the hostname is updated to the legacy endpoint, insights-client will stop reporting to Red Hat Lightspeed services on RHEL 6 and RHEL 7. To maintain Red Hat Lightspeed functionality on these legacy versions, you must register your systems to a Satellite server.
If you maintain systems running Red Hat Enterprise Linux 7.3 or earlier, or if you configure your firewall to allowlist particular IP addresses to connect to Red Hat networks, you must make configuration changes before January 14th, 2026 to avoid losing access to content.
For more information, see Red Hat Content Delivery Network (CDN) & Entitlement Network Modernization.
- Red Hat Lightspeed API Cheat Sheet update
The Red Hat Lightspeed API cheat sheet has the following updates:
- A new section about troubleshooting common failures
- Improved instructions for service account creation and usage
- Status values and build times for image builder APIs
- Documentation on workspaces for inventory management
- Examples for retrieving supported RHEL versions and EOL dates
- Removal of the policies service section due to its upcoming decommission in December 2025
- Updated certified Red Hat Lightspeed Splunk application
- A new version of the certified Splunk application (v0.22.202511251015) is now available on Splunkbase. This release includes enhancements for eventHandles and links in the Vulnerability dashboard widget. The deprecated Drift functionality was also removed. This update includes mandatory Splunk Cloud recertification to maintain compliance and availability.
4.2.2. Inventory
- UI fixes and improvements
- Workspace name validation now checks all pages to prevent duplicate names
- Modals that are opened from table components in the System Details page have a consistent design
- The workspace filter now uses lazy loading to improve performance when users load workspace options
- The delete modal bug on the Systems page is fixed
- Changes to Display Name and Ansible Hostname update without a page refresh
- The tag filter bug is fixed and filters systems correctly
4.2.3. Advisor
- New recommendations released
- The Rsyslog outputs old messages when imjournal cannot find the cursor of the last visited journal entry due to journal log rotation
- The system experiences decreased security due to an important security vulnerability in System Security Services Daemon
- The use of non-knet transport in Corosync is unsupported by Red Hat
- The EFI system cannot boot because it fails to mount /boot/efi during boot when specific filesystem types are disabled
- Kernel panic will occur on edge computing systems after reboot when loading the 3rd-party modules
- Performance degradation will occur on the edge computing system after reboot when running Oracle Database on systems with high CPU counts
- The udevadm-triggered watchdog causes the system to abruptly restart or panic
- Commands fail due to python3-libs library error
- Yum update fails when /sbin directory has incorrect ownership
- Kernel panic will occur after boot on the edge computing system when accessing the sysfs paths of a qede network device during its reset
4.2.4. Policies
- Policies decommissioning is set for December 12, 2025
The Red Hat Lightspeed policies service will be decommissioned on December 12, 2025. Customers should use inventory APIs or Ansible Automation Platform (AAP) to standardize system profiles and report use cases.
The Red Hat Lightspeed compliance service, which evaluates systems against OpenSCAP policies for security compliance, is not impacted.
4.2.5. Patch / Content
- Advisory tables can now be filtered by severity
- You can now sort and filter Advisory tables by severity.
4.2.6. Planning
- Expanded lifecycle support and RHEL 10 readiness
The Planning team expanded the following capabilities to support long-term planning:
- Added RHEL 10 Application Streams to the Lifecycle tab to enable early preparation (RSPEED-1815).
- System lifecycle views now correctly identify and display SAP, EUS, and ELS statuses to provide a clearer view of your environment (RSPEED-1889).
- Roadmap recommendations now strictly match your installed RHEL version to prevent warnings for versions that customers do not use
- RHEL release dates are aligned to the standard May and November windows. The Planning team also fixed filtering in the AppStream All view (RSPEED-1871, RSPEED-1767)
- Enhanced visualization and user experience
- The Lifecycle tab was updated to PatternFly 6 standards to improve usability. Planning also resolved data crowding issues in the RHEL Lifecycle chart and replaced generic roadmap failure notifications with descriptive messages.
- Insights MCP Server expanded with Planning capabilities
-
The Planning team published their first tool (
get_upcoming_changes) to the Developer Preview of the Insights MCP Server. Future work is planned forget_rhel_lifecycleandget_appstreams_lifecycleto further enhance developer workflows.
Chapter 5. October 2025
Review the October 2025 updates and fixes for Red Hat Lightspeed.
5.1. Product-wide updates
- Red Hat Insights is now Red Hat Lightspeed
Red Hat Insights is now Red Hat Lightspeed, reflecting the addition of AI-powered management to Red Hat platforms. With Red Hat Lightspeed, you can continue using the same workflows, console entry points, and integrations that you rely on. There is no action required for users.
The Red Hat Hybrid Cloud Console and tools like Red Hat Satellite have updates including the new name, updated navigation and iconography, and user interface adjustments designed to surface AI-driven insights and recommendations more intuitively. The changes will continue gradually through the end of 2025 and into 2026. Our goal is to make the evolution seamless while continuously improving the performance, usability, and intelligence of the experience.
For more information, see Red Hat Insights is now Red Hat Lightspeed: Accelerating AI-powered management.
- Published blogs and resources
- Blog post: Integrate incident detection with OpenShift Lightspeed via MCP by Alberto Falossi and Tomas Remes (Oct 9, 2025).
- Blog post: Using AI agents with Red Hat Lightspeed by Sean O’Keeffe (Oct 13, 2025).
5.2. Red Hat Enterprise Linux updates
Review the October 2025 updates and fixes for Red Hat Lightspeed running on RHEL systems.
5.2.1. General
- Red Hat Lightspeed: Model Context Protocol (MCP)
The Developer Preview of
insights-mcpis live. Theinsights-mcputility is a new, lightweight tool from Red Hat that enables you to explore and integrate Red Hat Lightspeed services with large language models (LLMs) through an MCP server.Built and maintained by Red Hat, the
insights-mcputility is a self-hosted Model Context Protocol (MCP) server that exposes core Red Hat Lightspeed services like Advisor, Vulnerability, Inventory, and Image Builder. It enables seamless interaction with the preceding services through a standardized MCP interface. You can connect LLM-based agents, for example Claude Desktop, VSCode, or other MCP-compatible tools to interact with your Red Hat environment. This integration enables you to explore read-only workflows and use AI to better understand your system health without the risk of autonomous AI decision making.To learn more, see the following resources:
- Enhanced Insights automation with AAP 2.6
Red Hat Ansible Automation Platform 2.6 introduced automatic job labeling for Red Hat Lightspeed-triggered automation. This enhancement brings EDA and AAP closer together, making event-driven operations more transparent and easier to manage at scale.
This update includes the following benefits for Event-Driven Ansible (EDA) users working with Red Hat Lightspeed:
- Identify jobs that Red Hat Lightspeed initiated in the AAP job history.
- Automatically attach context-rich labels like source application, event type, or affected system.
- Improve your ability to audit, troubleshoot, and report automated remediations.
- Use Red Hat Lightspeed events to drive controller-managed automation, not only local playbooks.
- EDA rule books can trigger AAP Job Templates with dynamic labels based on the originating Red Hat Lightspeed event to improve traceability and operational visibility across automation runs.
5.2.2. Remediations
- Enhanced AAP integration: now supports Service Account authentication
Red Hat Lightspeed now supports Service Account authentication for playbook retrieval by Ansible Automation Platform (AAP). This enhancement creates a more secure, scalable, and automation-friendly integration between the platforms.
To enable this integration, assign the following permissions to a service account:
-
inventory:hosts:readwhich is included in the Inventory Hosts viewer role -
remediations:remediation:readandplaybook-dispatcher:run:readwhich are included in the Remediations User role
-
- Depreciation Notice
Basic authentication with a username and password is deprecated. Transition to Service Account authentication to maintain compatibility and improve security posture.
For help with setup and configuration, see to the following resources:
- The KBase article, Support for token-based authentication via Service Account for Red Hat Lightspeed (Insights) in Ansible Automation Platform
- The official AAP documentation, Setting up Red Hat Lightspeed Remediations
- UI fixes and improvements
- Host connection types now correctly display in Execution History for a remediation plan.
- A contextual tooltip appears for the disabled Plan remediation button.
- Performance is improved when users create large remediation plans.
-
The messaging is improved when a user checks the connectivity status of a remediation plan when the RHC Manager or
config-managerpermission is absent.
5.2.3. Inventory
- UI fixes and improvements
- Extended default retention to 30 days to match Red Hat Subscription Management (RHSM), ensuring better data continuity
- Improved custom staleness reset logic; resetting now properly removes custom values and returns to default settings
- Added Last Seen and Workspaces filters to filter consistently across Red Hat Lightspeed applications
- Fixed the Delete workspace button refresh issue
- Disabled the Export button during downloads to prevent duplicate exports
- Refined workspace actions and modals for consistency and usability
- Updated system action names like Edit display name and Delete from inventory
- Created a new notification alert when you delete systems
-
Updated the client setup instructions to use
dnfinstead ofyumfor compatibility with RHEL 8 and later
5.2.4. Advisor
- UI fixes and improvements
- Advisor recommendations that conflict with active compliance policies are now flagged with a note under Steps to resolve. To find flagged recommendations, expand the → → drop-down in the Red Hat Hybrid Cloud Console.
- New recommendations
- The CIFS filesystem is at risk of hanging on reconnecting when the server is shutdown abruptly
- Kernel panic occurs when NFS unlinking or renaming over a file
- The Rsyslog client stopped forwarding logs to the remote server over TCP due to network connectivity issues
- Services using "PrivateUsers=yes" are not able to start when setting the kernel parameter "max_user_namespaces" as "0"
- Commands fail due to glibc library error
- Kernel panic will occur when rebooting the host on AMD Turin Zen 5 CPUs
- The system experiences decreased security due to an important security vulnerability in VMWare open-vm-tools
- The rpm database is broken
- The host fails to reboot when the SELinux context of the /etc/fstab file is incorrect
5.2.5. Vulnerability
- New security rule released
- A new security rule is now available for CVE-2025-41244 - Vulnerability of open-vm-tools. Product Security identified this CVE because it had public visibility and multiple customer inquiries.
5.2.6. Policies
- Policies decommissioning is set for December 12, 2025
The Red Hat Lightspeed policies service will be decommissioned on December 12, 2025. Customers should use inventory APIs or Ansible Automation Platform (AAP) to standardize system profiles and report use cases.
The Red Hat Lightspeed compliance service, which evaluates systems against OpenSCAP policies for security compliance, is not impacted.
5.2.7. Patch / Content
- The Community EPEL is available in production
- The Community Extra Packages for Enterprise Linux (EPEL) is available in production for all users. With this update, users do not need to wait for EPEL to create a snapshot. For more information, see How to use Extra Packages for Enterprise Linux (EPEL).
5.2.8. Subscriptions Service
- Daily digest is available for errata notifications
- Users can now choose to receive daily digests of security, bugfix, and enhancement errata that affect the organization’s subscriptions.
5.2.9. Image builder
- Improved configuration options
Image builder added configuration improvements for the following options:
- Users
- Timezone
- Locale
- Firewall
- Systemd services
- Registration to Red Hat Satellite
- The registration step now includes the option to register to a Satellite server. Registering to a server adds you to its inventory and provides ongoing management.
- Callbacks to Ansible Automation Platform
- A new configuration option enables a system that is launched from an image to automatically call back to Ansible Automation Platform. This process adds the system to the inventory and provides further provisioning automation.
- Enable FIPS mode
- When applying OpenSCAP security policy profiles, a checkbox is now available to enable FIPS mode. FIPS mode is automatically enabled when you select the DISA STIG profile. You can also manually enable it with other profiles.
- Integration with Red Hat Lightspeed Compliance - Preview
- Preview mode now enables you to apply a custom security policy defined by Insights Compliance service. This feature is currently available only in Preview.
- Build images using Red Hat Lightspeed Content Templates - Preview
- Image builder can now build images using content from the Content Templates feature. You can select the Content Template in Repeatable build in the image builder workflow. This feature is currently available only in Preview.
- Build images using the community EPEL repositories - Preview
- Image builder can now build images using the new community EPEL repositories provided by Red Hat Lightspeed Content. This feature is currently available only in Preview and can be selected from either the Custom repositories or by using Content Templates.
5.3. OpenShift Container Platform update
Review the October 2025 updates and fixes for Red Hat Lightspeed services on OpenShift Container Platform clusters.
5.3.1. Advisor
- Incident detection via MCP External
Incident detection, a Red Hat Lightspeed technology that identifies cluster incidents, was introduced as Technology preview during September 2025. The tool is now available in the MCP server. For more information, see Integrate incident detection with OpenShift Lightspeed via MCP.
Incident detection is also now generally availabile. For more information, see Incident detection overview.
Chapter 6. September 2025
Review the September 2025 updates and fixes for Red Hat Lightspeed.
6.1. Product-wide updates
- Published blogs and resources
- Video: 3 essential things to know about Red Hat Lightspeed planning by Scott McCarty (Sept 9, 2025).
- Resource Update: Red Hat Lightspeed API cheat sheet update by Jerome Marc (Sept 2025).
6.2. Red Hat Enterprise Linux updates
Review the September 2025 updates and fixes for Red Hat Lightspeed running on RHEL systems.
6.2.1. General
- Red Hat Lightspeed API cheat sheet updated
The Red Hat Lightspeed API Cheatsheet has been updated with expanded coverage, improved clarity, and new resources to help you make the most of the Red Hat Lightspeed API. Important changes include:
- Added example for retrieving a list of affected hosts in a compliance report (Compliance section).
- Clarified support for using multiple filter queries when working with hosts.
- Added a note about the 15-minute expiration for authentication access tokens.
- Highlighted the base endpoint (previously only mentioned in the introduction).
- Introduced a Verify your setup section after authentication.
- Added an example for filtering inventory by tag(s).
- Renamed the Patch section to Content advisories.
- Updated Python and Ansible examples to use access token authentication (service accounts).
- Added section covering for RHEL Application Streams lifecycle.
- Added section for Runtimes Inventory.
6.2.2. Remediations
- UI fixes and improvements
-
Hostnames of RHC-connected systems no longer populate as
localhostin the Execution History tab of the Remediation Plan details.
6.2.3. Inventory
- UI fixes and improvements
- Fixed a bug where RHSM display name updates incorrectly overridden names set by the user, insights-client, or API.
-
Improved clarity of the tags filter documentation for the
/hostsendpoint. - Removed the uniqueness restriction on inventory workspaces.
- Updated staleness settings to follow conventional standards for all host types.
- Fixed an issue to ensure that the correct system name displays when opening the window for a system tag.
- Completed PatternFly 6 migration.
6.2.4. Advisor
- UI fixes and improvements
- Advisor recommendations that conflict with active compliance policies are now flagged with a note under Steps to resolve. To find the flagged recommendations, expand the → → drop-down in the Red Hat Hybrid Cloud Console.
- New recommendations
- Samba authentication fails after Microsoft Windows security update 2025 is applied when Samba is configured as an Active Directory Domain Member with `idmap_ad`mapping
- Kernel panic with list corruption occurs when large folio migration is performed
-
Leappupgrade is inhibited when RSA/SHA-1 packages are installed on RHEL 9 - Cluster instability occurs when SAP HANA file systems are mounted on NFS shares
-
The GFS2 slabs
dlm_lkbandgfs2_glockconsume high memory due to a known bug in the kernel -
NetworkManager service fails to start when
/var/runis not a soft link -
RHC client cannot execute playbooks from console when proxy is defined in
rhcdconfiguration - The watchdog fails to perform a hard reboot because the large number of shared devices causes a timeout
Chapter 7. August 2025
Review the August 2025 updates and fixes for Red Hat Lightspeed.
7.1. Product-wide updates
- Published blogs and resources
- Video: Optimize RHEL: Red Hat Lightspeed planning in 60 Seconds by Scott McCarty (August 19, 2025)
- Blog: Simplify Linux management across your systems’ lifecycles with Red Hat Lightspeed by Mary Mackey & McKibbin Brady (August 27, 2025)
- KB article: How to query the Red Hat Lightspeed API for Red Hat Enterprise Linux Application Streams life cycle information
7.2. RHEL updates
Review the August 2025 updates and fixes for Red Hat Lightspeed running on RHEL systems.
7.2.1. Remediations
- UI fixes and improvements
- On the Remediation Plans page, you can now filter and sort the remediation plan table by execution status to help organize your remediation efforts.
7.2.2. Inventory
- UI fixes and improvements
- Usage, role, and SLA information are now correctly displayed in the Subscriptions section of the system details page.
- Filtering for package-based and image-based types has been enhanced for more accurate and consistent results.
- Fixed an issue that caused a 500 error when deleting a workspace.
7.2.3. Advisor
- New recommendations
- RPM database gets corrupted when duplicate packages are installed
-
System fails to boot when multipath devices are configured using UUID or LABEL in
/etc/fstab -
The
leappupgrade fails when the Remi packages are installed on RHEL 7 -
The
leappupgrade fails when thehpe-auto-configservice is enabled -
The
leappupgrade fails due to conflict when thealsa-sof-firmwarepackage is installed on RHEL 9 -
The
leappupgrade fails when the Resilient Storage Add-On components are used on RHEL 9 - System experiences memory pressure when Multi-Gen LRU (MGLRU) is enabled
7.2.4. Malware detection
- New malware signatures released
- XFTI_BERT_Linux_Ransomware: A ransomware variant that targets Linux systems, encrypting files and demanding a ransom.
- XFTI_CCMiner: A command-line cryptocurrency mining application that uses a computer’s GPU to mine various cryptocurrencies.
- XFTI_Chaos_RAT: A remote access trojan (RAT) that allows an attacker to remotely control a compromised system.
- XFTI_Koske_Rootkit: A Linux rootkit designed to hide malicious processes, files, and network connections from system administrators.
- XFTI_LuckyVolunteer: A trojan that can steal information and deploy additional malware on a compromised system.
- XFTI_Plague: A modular malware loader that can download and execute other malicious payloads.
- XFTI_Termux: A legitimate Android application that provides a Linux command-line environment on a mobile device.
- XFTI_VShell: A legitimate, secure file transfer and remote access server software.
- XFTI_XMRig_Starter_Linuxsys: A script or dropper used to install the XMRig cryptocurrency miner on Linux systems.
7.2.5. Planning
- Clearer system display names and increased roadmap items
- The Red Hat Lightspeed Planning applications have been enhanced to provide clearer and more detailed information for both Life cycle and the Digital Roadmap. Now, instead of listed systems displaying their unique IDs (UUIDs), the Planning apps display the actual hostname. This makes it easier to identify and manage your systems. In addition, the number of items on the Digital Roadmap has increased from 16 to 24, which provides a more comprehensive view of upcoming tasks and features for Red Hat Enterprise Linux (RHEL).
7.3. OpenShift Container Platform updates
Review the August 2025 updates and fixes for Red Hat Lightspeed services on OpenShift Container Platform clusters.
7.3.1. Cost Management
- Cost Management Metrics Operator 4.0 and 4.1
The Red Hat Lightspeed cost management service processes the data gathered by the Red Hat OpenShift agent, the Cost Management Metrics Operator. Two new versions of the operator have been released within a short period of time.
CMMO 4.0 brings FIPS compliance and enhancements for chargeback of Red Hat OpenShift Virtualization.
- FIPS 140-3 compliance External
The Federal Information Processing Standard 140-3 (FIPS 140-3) is a US Government computer security standard for cryptographic modules. It is mandatory for the protection of sensitive and/or valuable data in Federal systems.
Red Hat has been shipping FIPS 140-3 compliant modules since OpenShift Container Platform 4.11, but the Cost Management Metrics Operator still used a RHEL 8 base container image that only provided FIPS 140-2 compliance.
Since the release of Cost Management Metrics Operator 4.0, the operator now uses a RHEL 9 base container image that provides FIPS 140-3 compliance In addition, the operator is now built with FIPS 140-3 compliance. This change is transparent to all users, whether or not FIPS is enabled in your OpenShift Container Platform clusters.
For more information about FIPS, refer to:
- Hourly chargeback of Red Hat OpenShift Virtualization
Since December 2024, Red Hat Lightspeed cost management supports the chargeback of OpenShift Virtualization virtual machines, regardless of operating system version Find all the details in the March 2025 blog post Charge back the cost of OpenShift Virtualization cost management.
To offer more precise calculation for OpenShift Virtualization costs, Cost Management and Virtualization now provide and consume metrics that allow for hourly chargeback. This change requires you to install the Cost Management Metrics Operator 4.0 and OpenShift Container Platform 4.19.
Providing feedback on Red Hat documentation
We appreciate and prioritize your feedback regarding our documentation. Provide as much detail as possible, so that your request can be quickly addressed.
Prerequisites
- You are logged in to the Red Hat Customer Portal.
Procedure
To provide feedback, perform the following steps:
- Click the following link: Create Issue
- Describe the issue or enhancement in the Summary text box.
- Provide details about the issue or requested enhancement in the Description text box.
- Type your name in the Reporter text box.
- Click the Create button.
This action creates a documentation ticket and routes it to the appropriate documentation team. Thank you for taking the time to provide feedback.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}