Product

On February 29 2020, Let's Encrypt discovered a bug affecting millions of issued SSL certificates. These certificates will be revoked on March 4th. You can read the announcement on [LetsEncrypt website](https://letsencrypt.org/caaproblem/). In order to ensure your sites certificates remain in place, we recommend you check your site using [this service](https://unboundtest.com/caaproblem.html) and issue a new certificate from the Forge dashboard if your certificate was affected.

On February 10th, we've released v2.4.1 of [laravel/vapor-core](https://github.com/laravel/vapor-core). This release includes an important fix for long running queued jobs. Before this fix, long running jobs were left to be terminated by Lambda after reaching the timeout set by `queue-timeout` in your `vapor.yml` file. This causes the PHP process to terminate right away not giving a chance for the queue manager to increment the attempts on the job. The result was timed out jobs retrying indefinitely until the message retention period passes and SQS deletes them. That means they were never reported as failed. In the `2.4.1` release, we use the `pcntl` PHP extension to gracefully terminate the job before it's killed by Lambda. We recommend that you upgrade to the latest version of `vapor-core` and deploy your projects to use the new timeout mechanism.

Amazon RDS has published new SSL/TLS certificates for connecting to your RDS databases. The current certificates will expire on March 5th, 2020. All Vapor users using RDS databases in their projects should update their instances to the new certificates. You should ensure your Vapor project requires the latest versions of the `laravel/vapor-cli` and `laravel/vapor-core` packages. After that, you may refer to [Amazon's instructions](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL-certificate-rotation.html) to update your instance's certificates using the AWS console.