Changes and Releases

Updates on Giant Swarm workload cluster releases, apps, UI improvements and documentation changes.

• Feb 27, 2025 Observability observability-bundle v1.11.0

  Changed

  • prometheus-operator will not check promql syntax for prometheusRules that are labelled observability.giantswarm.io/rule-type: logs
  • Upgrade alloy to chart 0.9.0.
    • Bumps alloy from to 1.5.1 to 1.7.1
• Feb 27, 2025 Observability alloy-app v0.9.0

  Changed

  • Upgrade Alloy upstream chart from 0.11.0 to 0.12.1
    • This bumps the version of Alloy from 1.6.1 to 1.7.1
• Feb 26, 2025 CAPA releases releases aws-25.5.2

  Changes compared to v25.5.1

  Components

  • cluster-aws from v1.3.8 to v1.3.9

  cluster-aws v1.3.8…v1.3.9

  Added

  • Add ingress rule in nodes Security Group to allow access to the Cilium Relay when using ENI mode.
• Feb 26, 2025 Observability observability-bundle v1.10.0

  Changed

  • Upgrade alloy to chart 0.8.0.
    • Bumps alloy from to 1.5.0 to 1.6.1
  • Upgrade kube-prometheus-stack from 66.2.1 to 69.5.1
    • Bumps prometheus-operator to 0.80.1
    • Bumps prometheus to 3.0.1
• Feb 26, 2025 Observability kube-prometheus-stack-app v14.0.0

  Changed

  • Upgraded chart dependency to kube-prometheus-stack-69.5.1
    • grafana from 8.6.0 to 8.10.0
    • prometheus-operator to 0.80.1
    • prometheus to 3.0.1
• Feb 26, 2025 Observability prometheus-operator-app v14.0.0

  Changed

  • Upgraded chart dependency to kube-prometheus-stack-69.5.1
    • grafana from 8.6.0 to 8.10.0
    • prometheus-operator to 0.80.1
    • prometheus to 3.0.1
• Feb 26, 2025 Observability alloy-gateway-app v0.3.0

  Changed

  • Update alloy-app to 0.8.0
    • Bumps alloy to 1.6.1
• Feb 25, 2025 Fleet Management kyverno-policies v0.23.0

  Added

  • Add supplemental security and best practices policies:
    • check-resources-request-and-limits-ratio
    • check-serviceaccount-secrets
    • disallow-gitrepo-volume
    • disallow-latest-tag
    • prevent-bare-pods
    • require-container-requests-and-limits
    • require-emptydir-requests-and-limits
    • require-pod-probes
    • restrict-binding-clusteradmin
    • restrict-binding-system-groups
    • restrict-sa-automount-sa-token
• Feb 25, 2025 Security kyverno-policies v0.23.0

  Added

  • Add supplemental security and best practices policies:
    • check-resources-request-and-limits-ratio
    • check-serviceaccount-secrets
    • disallow-gitrepo-volume
    • disallow-latest-tag
    • prevent-bare-pods
    • require-container-requests-and-limits
    • require-emptydir-requests-and-limits
    • require-pod-probes
    • restrict-binding-clusteradmin
    • restrict-binding-system-groups
    • restrict-sa-automount-sa-token
• Feb 25, 2025 Developer Portal happa v1.71.2

  Changes

  • Fix monitoring url by @gusevda in https://github.com/giantswarm/happa/pull/4647

  Full Changelog: https://github.com/giantswarm/happa/compare/v1.71.1...v1.71.2

• Newer entries
• Older entries