---
title: "v1.12"
description: "Contains release notes for Nirmata Enterprise for Kyverno v1.12"
diataxis: reference
applies_to:
  product: "nirmata-control-hub"
audience: ["platform-engineer"]
last_updated: 2026-03-25
url: https://docs.nirmata.io/docs/release-notes/n4k/v1.12/
---


The latest version of the 1.12 release of Enterprise Kyverno is **v1.12.6-n4k.nirmata.1**.

## v1.12.6-n4k.nirmata.5
### CVE Fixes
* Fixed High CVEs (2025-22874 , 2025-26569) 
* Fixed Medium CVEs (2025-0913, 2025-4673)

## v1.12.6-n4k.nirmata.1

### Nirmata Enterprise for Kyverno-only Improvements
* [Feature] Remove cleanup cronjobs for updateRequests and ephemeralReports [#10694](https://github.com/kyverno/kyverno/issues/10694)
* [Feature] Remove wildcard permissions in Kyverno [#10785](https://github.com/kyverno/kyverno/pull/10785)

The updates below can also be found on the Kyverno [GitHub release page](https://github.com/kyverno/kyverno/releases/tag/v1.12.6).

### Fixed
* Change: Disable updaterequest cleanup cronjob ([#10678](https://github.com/kyverno/kyverno/pull/10678))
* Fix(helm): Remove namespace from RoleBinding/roleRef field ([#10685](https://github.com/kyverno/kyverno/pull/10685))
* Fix: Properly use useCache field in image verification policies ([#10709](https://github.com/kyverno/kyverno/pull/10709))
* Fix: Check for the client being nil before applying a mutation ([#10726](https://github.com/kyverno/kyverno/pull/10726))
* Fix: Resource namespace checks for Kyverno CLI ([#10738](https://github.com/kyverno/kyverno/pull/10738))
* Fix: Range through all resources to build webhook ([#10748](https://github.com/kyverno/kyverno/pull/10748))
* Fix: Get namespace labels before creating a policy context ([#10773](https://github.com/kyverno/kyverno/pull/10773))
* Fix: Wrong evaluation of pod security standard version ([#10924](https://github.com/kyverno/kyverno/pull/10924))
* Fix: Frequent API GET/UPDATE requests regarding webhooks reconciliation when no policies ([#11203](https://github.com/kyverno/kyverno/pull/11203), [#11225](https://github.com/kyverno/kyverno/pull/11225), [#11230](https://github.com/kyverno/kyverno/pull/11230), [#11233](https://github.com/kyverno/kyverno/pull/11233))

### Others
* Fix: Bump docker in release 1.12 ([#11088](https://github.com/kyverno/kyverno/pull/11088))
* Fix: Updated Go version to v1.22.7 to address [CVE-2024-34156](https://github.com/advisories/GHSA-crqm-pwhx-j97f) ([#11142](https://github.com/kyverno/kyverno/pull/11142))
* Chore: Bump chainsaw ([#10687](https://github.com/kyverno/kyverno/pull/10687))
* Chore: Bump github.com/docker/docker from 26.1.3+incompatible to 26.1.4+incompatible ([#10750](https://github.com/kyverno/kyverno/pull/10750))


## v1.12.3-n4k.nirmata.2

The major improvements of the above version are mentioned below. For a complete list of all the changes made in Kyverno v1.12.0, refer to its [GitHub release page](https://github.com/kyverno/kyverno/releases/tag/v1.12.0).

- Starting from v1.12, the Nirmata Enterprise for Kyverno repository is now private.
- Availability of Reports Server from Nirmata Enterprise for Kyverno v1.12. Learn more about Reports Server from the [official Nirmata documentation](https://docs.nirmata.io/docs/n4k/getting-started-with-n4k/reports-server/).
- Fixed [issue 10556](https://github.com/kyverno/kyverno/issues/10556) in v1.12.