Changes and Releases

Updates on Giant Swarm workload cluster releases, apps, UI improvements and documentation changes.

• Feb 25, 2025 Fleet Management kyverno-policies v0.23.0

  Added

  • Add supplemental security and best practices policies:
    • check-resources-request-and-limits-ratio
    • check-serviceaccount-secrets
    • disallow-gitrepo-volume
    • disallow-latest-tag
    • prevent-bare-pods
    • require-container-requests-and-limits
    • require-emptydir-requests-and-limits
    • require-pod-probes
    • restrict-binding-clusteradmin
    • restrict-binding-system-groups
    • restrict-sa-automount-sa-token
• Feb 25, 2025 Security kyverno-policies v0.23.0

  Added

  • Add supplemental security and best practices policies:
    • check-resources-request-and-limits-ratio
    • check-serviceaccount-secrets
    • disallow-gitrepo-volume
    • disallow-latest-tag
    • prevent-bare-pods
    • require-container-requests-and-limits
    • require-emptydir-requests-and-limits
    • require-pod-probes
    • restrict-binding-clusteradmin
    • restrict-binding-system-groups
    • restrict-sa-automount-sa-token
• Feb 25, 2025 Developer Portal happa v1.71.2

  Changes

  • Fix monitoring url by @gusevda in https://github.com/giantswarm/happa/pull/4647

  Full Changelog: https://github.com/giantswarm/happa/compare/v1.71.1...v1.71.2

• Feb 25, 2025 Developer Portal happa v1.71.1

  Changes

  • Monitoring link was fixed by @gusevda in https://github.com/giantswarm/happa/pull/4646

  Full Changelog: https://github.com/giantswarm/happa/compare/v1.71.0...v1.71.1

• Feb 25, 2025 Developer Portal backstage v0.54.0

  In this release:

  • Custom CA information was added to installation details page.
  • Non-standard access documentation was added to installation details page.
  • GitOps indicator on cluster details page was refactored to be configurable via app configuration. See ./docs/releases/v0.54.0-changelog.md for more information.
• Feb 25, 2025 Managed Apps trivy-app v0.13.2

  Changed

  • Narrow down CiliumNetworkPolicy egress rule to match DNS service only.
  • Narrow down CiliumNetworkPolicy ingress rule to allow traffic from namespace.
• Feb 25, 2025 Security trivy-app v0.13.2

  Changed

  • Narrow down CiliumNetworkPolicy egress rule to match DNS service only.
  • Narrow down CiliumNetworkPolicy ingress rule to allow traffic from namespace.
• Feb 25, 2025 Observability dashboards v4.1.0

  Added

  • Add Loki log volume dashboard

  Changed

  • Update the home dashboard
    • Change Alerts link to point to Alerting > Active notifications
    • Add grafana organization link
    • Add new data ingestion link
    • Replace Node overview with Cluster overview dashboard
    • Fix broken Custom dashboards link

  Fixed

  • Fix Cluster overview dashboard to consistently open links in new tabs.
• Feb 25, 2025 Observability alloy-app v0.8.0

  Changed

  • Upgrade Alloy upstream chart from 0.10.1 to 0.11.0
    • This bumps the version of Alloy from 1.5.0 to 1.6.1
• Feb 24, 2025 Developer Portal backstage v0.53.0

  In this release:

  • Backstage was updated to v1.36.1.
  • Update other dependencies.
  • Enable default auth policy. GS plugins changes:
  • Refactored how GS Kubernetes API is used.
  • Refactored data fetching hooks to share common logic. See ./docs/releases/v0.53.0-changelog.md for more information.

• Newer entries
• Older entries