Ingress NGINX retirement

Date

26th March 2026
Category

News
Share

By Jack McGuire, Principal Consultant

The Kubernetes community retired Ingress NGINX as of March 2026, which means no further releases, bug fixes or security updates for that controller.

With the Stable 2026.03 release of SAS Viya, SAS now provides support for Contour Ingress Controller in all Stable and Long-Term Support (LTS) releases of the SAS Viya platform and solutions that are in Standard Support.

Active security risk on ingress‑nginx

There are three high‑severity CVEs that have been published so far in 2026 that affect ingress‑nginx. If your cluster still runs ingress‑nginx you should treat these as priority risks:

CVE‑2026‑3288. Configuration injection via the rewrite-target annotation. CVSS 8.8 High. [nvd.nist.gov]
CVE‑2026‑24512. Configuration injection via rules.http.paths.path. CVSS 8.8 High. [nvd.nist.gov]
CVE‑2026‑1580. Configuration injection via the auth-method annotation. CVSS 8.8 High. [nvd.nist.gov]

Recommended path: migrate to Contour

SAS’s guidance is to update to a SAS Viya version that supports Contour, then convert your ingress to Contour using the documented steps. Key points:

If your platform is already on the latest Long Term Stable release (2025.09), then apply the latest patch updates while making the change to Contour.
If your platform is not already on the latest Long Term Stable release (2025.09) or is on a Stable release before 2025.02, make the change to Contour while performing a version update of your SAS Viya platform deployment.
Always consult the current Deployment Notes and What’s New in Operations before you update, as these documents flag critical changes and prerequisites.

If you must stay on ingress‑nginx temporarily

Ensure you are on the latest version of ingress‑nginx (v1.15.0)
Ensure the vulnerability mitigations have been implemented: SAS Viya Platform Operation: ingress-nginx Controller Vulnerability Mitigation

What’s next

The Katalyze Data team can help you review your current deployment, confirm support status, plan the update, and ensure a safe ingress cut‑over to Contour.

Back to Insights

Related content

10th November 2022

10 Things I Love About SAS Studio

SAS

14th November 2022

Testing Times: Implementing A CI/CD model for SAS

SAS

9th January 2023

Security Tips for using Open Source tools (PyTorch Malware)

Open Source
Security

28th February 2023

SAS9.4 is going to be your best m8

SAS

12th March 2023

Amadeus Software Rebrands to Katalyze Data

Announcement

28th March 2023

9 Reasons to Switch to Power BI Dashboards from Excel-Based Reports

Power BI

19th April 2023

Key Considerations and Best Practices for a Smooth Transition to SAS 9.4 M8

SAS

This Month in SAS Viya (May 2023)

SAS Viya

The End of a Windows Era

Windows Server 2012

4th September 2023

This Month in SAS Viya (August 2023)

SAS Viya
Orchestrator
Workload

25th September 2023

This Month in SAS Viya (September 2023)

SAS Viya

23rd October 2023

Katalyze Data Appoints Mark Crowne as CEO

Announcement

15th November 2023

Reflections on PHUSE EU Connect 2023

Life Sciences
R
AI
Validated SCE

10th December 2023

Big Christmas Data – a Santa-lytics story

AI
Data Science

21st December 2023

This Month in SAS Viya (Q4 2023)

SAS Viya
Kubernetes
Data Studio

This Month in SAS Viya (February-May 2024)

SAS Viya
Command-line interface

25th October 2024

We’re delighted to be in position with Posit

SAS9
R
CRO
Pharma
VSCE

14th December 2024

What could Santa do with Gen AI?

Gen AI
LLM

12th February 2025

Katalyze Data Celebrates Dual Wins at SAS 2025 Global Partner Awards

24th March 2025

Announcing enhancements to the SAS Programming run-time servers

SAS 9.4 M9 Is Coming — And It’s Here to Stay (For a While)

SAS
9.4
M9

What’s New in SAS 9.4 M9: A Technical Deep Dive

SAS
9.4
OS Support
M9
Operating System
Windows server
Red Hat Enterprise Linux
RHEL

SAS 9.4 Support Timeline: What You Need to Know

SAS
9.4
OS Support
M9
Operating System
Windows server
Red Hat Enterprise Linux
RHEL

23rd August 2025

SAS 9.4 M7 & M8 Security Update – July 2025

SAS
9.4
M8
M7
Security Update

6th October 2025

Positron Pro
Positron
Posit Workbench

20th October 2025

SAS Viya Supports Multi-Availability Zone Deployments on Azure and AWS

SAS Viya

11th November 2025

Katalyze Data x Vizify Analytics: A Stronger Data Partner

10th December 2025

Claus & Effect: Generative Elv‑I to the Rescue

Christmas
Santa
Data driven decisions
Analytics
Agentic AI
Gen AI
LLM
Automation
Decisioning

16th December 2025

Critical SAS Viya Vulnerability (CVE-2025-66516): Immediate Action Required

CVE-2025-66516
SAS Viya
2025.08
2025.03
LTS
Stable release
vulnerability
SAS Viya 3.5

22nd December 2025

SAS Viya Copilot is Now Available

22nd December 2025

CAS Server Optional for Programming-Only Deployments

SAS Viya

16th January 2026

RHEL with AI: Lightspeed Brings Intelligence to the Terminal

26th March 2026

PROC R is now available

PROC R

Talk to us about how we can help

Email Us
Book a Meeting