Changed
- Use retagged image for
trivy-db
.
Updates on Giant Swarm workload cluster releases, apps, UI improvements and documentation changes.
trivy-db
.This release fixes a bug when GS users were incorrectly distinguished from customer users. See ./docs/releases/v0.41.1-changelog.md for more information.
ServiceMonitor
resources.v0.10.5
version. Includes breaking changes.1.9.0
introduces breaking changes. When upgrading to this version with Falco
enabled, the Falco App
may fail to upgrade due to a breaking change in the upstream chart. To complete the upgrade seamlessly, disable and then re-enable the Falco App
by setting apps.falco.enabled=[false|true]
in the security-bundle user values ConfigMap.dashboards version 3.26.0
BigMac
to Shield
for better team alignment.alloy
, loki
, and mimir
mixins from upstream to ensure feature parity.logging-operator version 0.14.0
Alloy
, replacing Promtail
for improved performance.kube-prometheus-stack-app version 12.0.0
kube-prometheus-stack-65.1.1
.prometheus-operator
from 0.75.0
to 0.77.1
.2.53.0
to 2.54.1
.8.2.0
to 8.5.0
.0.35.1
to 0.36.1
.1.8.1
to 1.8.2
.prometheus-operator-crd version 12.0.0
13.0.2
(prometheus-operator 0.75.2
) to 15.0.0
(prometheus-operator 0.77.1
). See upstream changelog for more details.prometheus-meta-operator version 4.81.0
monitoring-agent
inhibitions based on existing prometheus-agent
configurations for tool-agnostic monitoring.customer
label to OpsGenie
alerts to enhance alert specificity.prometheus-rules version 4.23.0
prometheus-agent
related inhibitions to monitoring-agent
inhibitions for clarity.InhibitionPrometheusAgentFailing
and InhibitionPrometheusAgentShardsMissing
.statefulset.rules
naming to avoid overwriting deployment.rules
.KubeletVolumeSpaceTooLow
alert threshold to only trigger when space is critically low, relying on node-problem-detector
otherwise.aggregation:giantswarm:cluster_release_version
expression to include Cluster API clusters.InhibitionControlPlaneUnhealthy
for all Cluster API clusters, not just MCs.StatefulsetNotSatisfiedAtlas
.alloy-app
to 0.6.1
, including an upgrade to upstream version 1.4.2
and a CiliumNetworkPolicy
fix for clustering.oauth2-proxy-app version 3.0.2
NetworkPolicy
to allow traffic to oauth2-proxy
.cert-manager
ingress annotations to resolve ingress validation issues.observability-bundle version 1.8.0
prometheus-agent
from v0.6.9
to v0.7.0
.extraArgs
to enable features like WAL truncation.kube-prometheus-stack
from 61.0.0
to 65.1.1
.prometheus-operator CRDs
from 0.73.0
to 0.75.0
.0.75.0
to 0.77.1
.2.53.0
to 2.54.1
.8.2.0
to 8.5.0
.0.35.1
to 0.36.1
.1.8.1
to 1.8.2
.depends on
annotations for alloy-metrics
and alloy-logs
to ensure correct deployment order.kyverno-policies-connectivity version 0.6.1
/tmp
emptyDir
volume to workload cluster IP Job
.Falco
components.starboard-exporter version 0.8.0
PodSecurityPolicy
by default.8081
for health/liveness probes.Trivy
to upstream version v0.56.1
for enhanced security scanning.PSPs
.trivy-operator-app version 0.10.2
Trivy
versions between Trivy
operator and the upstream project to v0.56.1
.security-bundle version 1.9.0
kyverno
(app) to v0.18.1
.kyverno-crds
(app) to v1.12.0
.kyverno-policies
(app) to v0.21.0
.starboard-exporter
(app) to v0.8.0
.trivy-operator
(app) to v0.10.2
.trivy
(app) to v0.13.0
.falco
(app) to v0.9.1
.0.10.0
--role-arn
flag to specify the role ARN
to assume when interacting with Route53
.app-admission-controller version 0.26.2
/healthz
endpoint to verify certificate validity and allow Kubernetes
liveness probes to manage restarts if errors occur.app-operator version 6.11.2
In this release:
This part of our documentation refers to our vintage product. The content may be not valid anymore for our current product. Please check our new documentation hub for the latest state of our docs.