Changes and Releases

Updates on Giant Swarm workload cluster releases, apps, UI improvements and documentation changes.

• Feb 8, 2024 Continuous Deployment flux-app v1.3.0

  Added

  • Added support for .global.podSecurityStandards.enforced Helm value (defaults to false) to control PSP creation when. When the flag is disabled (default) the PSS is created and the crd-controller ClusterRole is updated with the permission to use the created (flux-app-pvc-psp) PSP. Pre kubernetes v1.25 upgrade and on v1.25 clusters where PSPs are no longer available, this flag should be enabled to skip the creation of the PSP and the update to the CLusterRole.
  • Added support for .policyException.namespace Helm value to control where Kyverno PolicyException is created, defaults to: giantswarm
  • Added support for .cilium.enforce Helm value (defaults to false) to force creation of the Cilium network policy in cases when Helm capability checks are not available.
  • Added support for .policyException.enforce Helm value (defaults to false) to force creation of the Cilium policy in cases when Helm capability checks are not available.

  Changed

  • Refactored chart upgrade process from kustomzie + manual based to be git patch based and made the templates structure better for readability.

  Fixed

  • Fix notification-controller endpoint in kustomize-controller deployment settings to point to the controller in the same namespace.

  Removed

  • Removed app.kubernetes.io/part-of: flux labels from upstream resources
  • Removed app.kubernetes.io/version: ... labels from upstream resources
  • Removed app.kubernetes.io/component: ...-controller labels from upstream resources
• Feb 8, 2024 Managed Apps loki-app v0.15.0

  Changed

  • Upgraded upstream chart from 5.41.4 to 5.41.8 - see changelog for more information.
  • Add environment variables to loki-multi-tenant-proxy (OAUTH_URL).
  • Bump loki-multi-tenant-proxy to 0.3.0.
• Feb 8, 2024 Observability loki-app v0.15.0

  Changed

  • Upgraded upstream chart from 5.41.4 to 5.41.8 - see changelog for more information.
  • Add environment variables to loki-multi-tenant-proxy (OAUTH_URL).
  • Bump loki-multi-tenant-proxy to 0.3.0.
• Feb 7, 2024 Managed Apps exception-recommender v0.1.1

  Changed

  • Disable namespace creation by default since it was moved to Kyverno.
  • Check if namespace exists before creation.
• Feb 7, 2024 Security exception-recommender v0.1.1

  Changed

  • Disable namespace creation by default since it was moved to Kyverno.
  • Check if namespace exists before creation.
• Feb 7, 2024 Managed Apps kyverno-app v0.17.4

  Changed

  • Fix label selector kyverno-policy-reporter to talk to kyverno-ui rule.
  • Add policy-exceptions namespace if it doesn’t exist.
• Feb 7, 2024 Security kyverno-app v0.17.4

  Changed

  • Fix label selector kyverno-policy-reporter to talk to kyverno-ui rule.
  • Add policy-exceptions namespace if it doesn’t exist.
• Feb 7, 2024 Developer Portal happa v1.63.0

  What’s Changed

  • Prepare Happa for k8s 1.25 by @allanger in https://github.com/giantswarm/happa/pull/4568

  New Contributors

  • @allanger made their first contribution in https://github.com/giantswarm/happa/pull/4568

  Full Changelog: https://github.com/giantswarm/happa/compare/v1.62.0...v1.63.0

• Feb 7, 2024 Observability observability-bundle v1.2.1

  Added

  • Add dependency on prometheus-operator-crd to all apps.
• Feb 7, 2024 Observability observability-bundle v1.2.0

  Changed

  • Upgrade kube-prometheus-stack and prometheus-operator-crd to 9.0.0.
  • Add the global.podSecurityStandards.enforced value back to be able to work on CAPI WCs.

• Newer entries
• Older entries