1. Docs
  2. Changes and releases

Changes and Releases

Updates on Giant Swarm workload cluster releases, apps, UI improvements and documentation changes.

  • Observability grafana-agent-app v0.3.0
  • Managed Apps falco-app v0.7.0

    Changed

    • Updated Falco chart version from 3.3.0 to 3.8.1.
    • Updated Falco-exporter chart version from 0.9.6 to 0.9.7
    • Updated Falcosidekick chart version from 0.6.1 to 0.7.5
    • Updated Falco to upstream version 0.36.1.

    Added

    • Added the use of Falcoctl.

    Notes

    Falco made some big changes in the way rules are distributed, categorized, and updated. For more information, check the Falco release notes. This means that we will ship Falco with fewer rules by default, as aligned with upstream. They have done this to give endusers a quieter default set of rules. They will now follow a standard, incubating, sandbox system. Before this update, all these rules were shipped by default. This means, that if CustomRules or macros were based on some rules which are now considered incubating or sandbox rules, they are now broken. This can be fixed by altering the configuration of falcoctl to also download and use the incubating and sandbox rules, or by rewriting your CustomRules. For more information, please check the falco rules page.

  • Security falco-app v0.7.0

    Changed

    • Updated Falco chart version from 3.3.0 to 3.8.1.
    • Updated Falco-exporter chart version from 0.9.6 to 0.9.7
    • Updated Falcosidekick chart version from 0.6.1 to 0.7.5
    • Updated Falco to upstream version 0.36.1.

    Added

    • Added the use of Falcoctl.

    Notes

    Falco made some big changes in the way rules are distributed, categorized, and updated. For more information, check the Falco release notes. This means that we will ship Falco with fewer rules by default, as aligned with upstream. They have done this to give endusers a quieter default set of rules. They will now follow a standard, incubating, sandbox system. Before this update, all these rules were shipped by default. This means, that if CustomRules or macros were based on some rules which are now considered incubating or sandbox rules, they are now broken. This can be fixed by altering the configuration of falcoctl to also download and use the incubating and sandbox rules, or by rewriting your CustomRules. For more information, please check the falco rules page.

  • Fleet Management kubectl-gs v2.46.0

    Added

    • Add CAPA cluster templating parameter --control-plane-load-balancer-ingress-allow-cidr-block which automatically adds NAT Gateway IPs of the MC to the allowlist
  • Fleet Management kubectl-gs v2.45.4

    Added

    • Added a bash script to generate self-contained kubeconfig files with client certificate for workload clusters in Vintage installations using device auth flow in Dex
  • Managed Apps oauth2-proxy-app v2.12.0

    Added

    • Enable metrics endpoint and enable scraping using ServiceMonitor

    Changed

    • Upgrade oauth2-proxy container image tag to v7.5.1
    • Enable read-only root file system by default
    • Change liveness and readiness probes to http endpoints
    • Remove networking.k8s.io/v1beta1 Ingress support
  • Managed Apps keda-app v0.1.1

    Fixed

    • Fix CI configuration.
  • Fleet Management keda-app v0.1.1

    Fixed

    • Fix CI configuration.
  • Managed Apps keda-app v0.1.0

    Added

    • Create first app iteration.
  • Fleet Management keda-app v0.1.0

    Added

    • Create first app iteration.