Workload cluster release aws-27.1.0 for CAPA
This release updates the apps and components, keeping them up to date with the latest v25 and v26 releases. It also brings improvements for the container registry usage.
Change details compared to CAPA 27.0.0
cluster-aws 1.3.0
Changed
- All workload clusters will by default use Zot registry as a pull-through cache of Azure Container Registry.
cert-manager 3.7.9
Fix
- Remove quotes from acme-http01-solver-image argument. The quotes are used when looking up the image which causes an error.
Update
- Improves container security by setting
runAsGroup
andrunAsUser
greater than zero for all deployments.
containerlinux 3815.2.5
Changes since Stable 3815.2.4
Security fixes:
- openssh (CVE-2024-6387)
Updates:
cilium 0.25.1
Changed
- Fix regression setting Policy BPF Max map policyMapMax back to 65536 from 16384.
- Upgrade cilium to v1.15.6.