Changes compared to v26.4.1
Components
- cluster-aws from v1.3.8 to v1.3.9
cluster-aws v1.3.8…v1.3.9
Added
- Add ingress rule in nodes Security Group to allow access to the Cilium Relay when using ENI mode.
Changes and Releases
Updates on Giant Swarm workload cluster releases, apps, UI improvements and documentation changes.
Changes compared to v27.5.1
Components
- cluster-aws from v1.3.8 to v1.3.9
cluster-aws v1.3.8…v1.3.9
Added
- Add ingress rule in nodes Security Group to allow access to the Cilium Relay when using ENI mode.
Changes compared to v28.5.2
Components
- cluster-aws from v1.3.8 to v1.3.9
cluster-aws v1.3.8…v1.3.9
Added
- Add ingress rule in nodes Security Group to allow access to the Cilium Relay when using ENI mode.
Changes compared to v29.6.1
Components
- cluster-aws from v2.6.1 to v2.6.2
cluster-aws v2.6.1…v2.6.2
Added
- Add ingress rule in nodes Security Group to allow access to the Cilium Relay when using ENI mode.
Highlights for the week ending 2025-03-06
Fleet Management
Cluster AWS version 3.1.0
- Updated to cluster version 2.1.1 and introduced an option to disable the AWS Node Termination Handler.
Cluster vSphere version 0.69.0
- Simplified configuration defaults and updated to the latest cluster version.
Security
Kyverno App version 0.19.0
- Updated to Kyverno v1.13.4, enhancing policy specifications and security contexts.
Kyverno Policies UX version 0.8.0
- Improved enforcement settings and added protection for AzureCluster objects.
Connectivity
Envoy Gateway App version 0.3.0
- Introduced a PodMonitor for better controller monitoring.
External DNS App version 3.2.0
- Enhanced DNS record management by supporting DNSEndpoints.
Gateway API Bundle version 0.3.0
- Updated dependencies to improve integration and functionality.
Continuous Deployment
- App Operator version 7.1.0
- Improved app management by ensuring ‘cordon-until’ annotation expires automatically.
Observability
- Upgraded to Alloy version 1.7.1 for enhanced features and stability.
Dashboards version 4.2.0
- Introduced new dashboards for Envoy Gateway and improved navigation links.
Logging Operator version 0.24.0
- Enhanced log management with tenant filtering and better Grafana integration.
- Upgraded to Loki version 3.4.2 for better logging capabilities.
Observability Bundle version 1.11.0
- Improved integration with Prometheus and Alloy for enhanced observability.
Prometheus Meta Operator version 4.87.0
- Updated alert notification templates to improve monitoring capabilities.
Others
AWS EBS CSI Driver App version 3.0.3
- Synchronized with upstream, added FIPS and SELinux support, improved proxy settings, and enhanced security contexts.
AWS Cloud Controller Manager App version 1.30.7-gs3
- Fixed proxy schema and removed duplicate service accounts for cleaner deployment.
Added
- Add Envoy Gateway dashboards
Added
- Add Envoy Gateway dashboards
Changes compared to v29.3.0
Components
- cluster-vsphere from v0.68.1 to v0.69.0
- Flatcar from v4081.2.1 to v4152.2.1
- Kubernetes from v1.29.13 to v1.30.10
cluster-vsphere v0.68.1…v0.69.0
Changed
- Remove requirement for
podsandservicesas they are defaulted by the values schema. - Chart: Update
clusterto v2.1.1. - Chart: Enable
coredns-extensionsandetcd-defrag.
Apps
- capi-node-labeler from v0.5.0 to v1.0.1
- cert-exporter from v2.9.3 to v2.9.4
- cert-manager from v3.8.2 to v3.9.0
- cilium from v0.25.2 to v0.31.0
- coredns from v1.23.0 to v1.24.0
- coredns-extensions v0.1.2
- etcd-defrag v1.0.1
- etcd-k8s-res-count-exporter from v1.10.0 to v1.10.1
- external-dns from v3.1.0 to v3.2.0
- k8s-audit-metrics from v0.10.0 to v0.10.1
- metrics-server from v2.4.2 to v2.6.0
- node-exporter from v1.20.0 to v1.20.1
- vertical-pod-autoscaler from v5.3.1 to v5.4.0
- vertical-pod-autoscaler-crd from v3.1.2 to v3.2.0
capi-node-labeler v0.5.0…v1.0.1
Changed
cert-exporter v2.9.3…v2.9.4
Changed
cert-manager v3.8.2…v3.9.0
Added
- Adds new sync method based on Vendir to sync from upstream
Changed
- Updates Cert-manager Chart to Upstream 1.16.2
cilium v0.25.2…v0.31.0
Changed
- Upgrade Cilium to v1.16.6.
- Move provider specific custom CNI configuration to subchart.
- Improve security defaults for:
- Hubble UI
- Hubble Relay
- Cilium Operator
Removed
- Delete defaultPolicies and extraPolicies templates.
coredns v1.23.0…v1.24.0
Changed
- Update
corednsimage to 1.12.0. - Disable HPA Memory target.
- Increase threshold for HPA CPU target to 80%.
coredns-extensions v0.1.2
Added
- Add VPA for CoreDNS deployments.
- Add value to enable or disable VPA resources.
Changed
- Push App to the default-catalog.
- Publish App in giantswarm-catalog.
etcd-defrag v1.0.1
Added
- Chart: Add
moveLeader. (#11)
Changed
- Chart: Update dependency ahrtr/etcd-defrag to v0.24.0. (#16)
- Values: Rename
clusterintouseClusterEndpoints. (#8)
etcd-k8s-res-count-exporter v1.10.0…v1.10.1
Changed
- Set
readOnlyRootFilesystemto true in the container security context. - Update Kyverno
PolicyExceptionstov2beta1. - Go: Update
go.modand.nancy-ignore. (#242)
external-dns v3.1.0…v3.2.0
Changed
- Update architect-orb and ATS.
- Add DNSEndpoints as a source for DNS records.
k8s-audit-metrics v0.10.0…v0.10.1
Changed
- Update Kyverno
PolicyExceptionstov2beta1. - Go: Update
go.modand.nancy-ignore. (#248)
metrics-server v2.4.2…v2.6.0
Added
- Add VPA setting for
metrics-server.
Changed
- Upgrade metrics-server to v0.7.2.
- Chart: Update PolicyExceptions to v2beta1. (#226)
node-exporter v1.20.0…v1.20.1
Changed
- Update Kyverno
PolicyExceptionstov2beta1. - Go: Update
go.mod. (#322)
vertical-pod-autoscaler v5.3.1…v5.4.0
Changed
- Chart: Update Helm release vertical-pod-autoscaler to v10.0.0 (#335)
vertical-pod-autoscaler-crd v3.1.2…v3.2.0
Changed
- Chart: Sync to upstream. (#126)
Changed
- Allow to tune kube filter’s buffer size
Changed
- Allow to tune kube filter’s buffer size