By Category

Back to all categories

Connectivity

Nov 20, 2023 Connectivity coredns-app v1.19.1
Changed
- Build App with ABS.
- Add basic tests with ATS.
- ATS: Rework tests. (#248)
- Chart: Fix usage of name & namespace. (#249)
Oct 27, 2023 Connectivity ingress-nginx-app v3.2.1
Changed
- Image: Update to v1.9.4. (#557)
Oct 26, 2023 Connectivity ingress-nginx-app v3.1.2
Changed
- Image: Update to v1.9.4. (#557)
Oct 18, 2023 Connectivity ingress-nginx-app v3.2.0
This release contains security relevant changes. Please check your Ingress resources for invalid annotations or paths before installing it.
Changed
- Values: Enable controller.enableAnnotationValidations by default. (#552)
  NOTE: This change affects existing, new & updated Ingress resources. Upstream is enabling this by default, too: https://github.com/kubernetes/ingress-nginx/issues/10186.
- Values: Enable controller.config.strict-validate-path-type by default. (#553)
  NOTE: This change affects new & updated Ingress resources only. Upstream is enabling this by default, too: https://github.com/kubernetes/ingress-nginx/issues/10186.
  See https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type for further information.
Oct 18, 2023 Connectivity ingress-nginx-app v3.1.1
Changed
- Controller: Fix chroot mode. (#550)
Removed
- Service: Remove redundant version check. (#550)
Oct 16, 2023 Connectivity kong-app v3.5.0
This version contains fixes for HTTP/2 stream reset attacks (CVE-2023-44487).
Changes
- Align with upstream chart version 2.29.0 (Changes in upstream repository)
- Update kong to 3.4.2
- Update kong ingress controller to 2.12.0
- Execute enterprise tests with kong-gateway container image version 3.4.1.1-debian
- Add Values.global.podSecurityStandards.enforced flag in preparation of PSP to PSS migration
- Prevent installation of PodDisruptionBudget with replicaCount: 1 or autoscaling.minReplicas: 1
Oct 12, 2023 Connectivity ingress-nginx-app v3.1.0
Added
- Controller: Add controller.enableAnnotationValidations. (#536)
- OpenTelemetry: Add controller.opentelemetry.resources. (#536)
- Values: Add global.podSecurityStandards.enforced. (#544)
Changed
- Image: Update to v1.9.0. (#536)
- Deployment/DaemonSet: Make controller.topologySpreadConstraints an array. (#536)
  NOTE: This is part of our alignment to upstream. Please convert any overrides of controller.topologySpreadConstraints to an array, too.
- Tests: Upgrade dependencies & remove explicit ATS version. (#538)
- Service: Fix wildcard subdomain. (#539)
- Chart: Tighten securityContexts and Pod Security Policies. (#540)
- OpenTelemetry: Use own registry. (#541)
- Admission Webhooks: Update kube-webhook-certgen image to v20231011-8b53cabe0. (#542)
- Image: Update to v1.9.3. (#547)
Removed
- Controller: Drop support for controller.kind: Both. (#547)
Oct 12, 2023 Connectivity ingress-nginx-app v3.0.2
Changed
- Image: Update to v1.8.4. (#545)
- Tests: Upgrade dependencies & remove explicit ATS version. (#538)
Oct 11, 2023 Connectivity k8s-dns-node-cache-app v2.5.0
Changed
- Install PSP resource based on values for PSP deprecation.
- Add PolicyExceptions for PSS compliance.
- Replace build pipeline with ABS.
- Replace testing pipeline with ATS basic test.
Sep 28, 2023 Connectivity coredns-app v1.19.0
Changed
- Make App compliant with PSS policies (#234):
  - Set seccompProfile to RuntimeDefault.
  - Fix capabilities typo.
  - Remove NET_BIND_SERVICE capabilities.
  - Set runAsNonRoot as true.

This part of our documentation refers to our vintage product. The content may be not valid anymore for our current product. Please check our new documentation hub for the latest state of our docs.