All notable changes to this project will be documented in this file.
0.33.1 (2024-12-20)
- add action to check readiness on renovate PRs before running CI (#1144) (83d81c6)
- deps: update codeql action to v3.28.0 (#1146) (fe9bccf)
- deps: update k8s-sidecar to v1.28.4 (#1132) (b4f15ff)
- deps: update loki (#1134) (56d0e39)
- deps: update prometheus-stack (prometheus 3.0.1, operator 0.79.2) (#949) (5a35fc6)
- deps: update support-deps (#1131) (4853969)
- deps: update support-deps (#1138) (2764d03)
0.33.0 (2024-12-17)
- configurable authentication flows (#1102) (498574c)
- experimental opt-in classification banner (#1127) (d701067)
- set Istio gateway TLS from Kubernetes secret (#982) (2711209)
- kubeapi netpol initialization / support for ingress policies (#1097) (620e6b2)
- retry logic for pepr store call (#1109) (e4c0f61)
- add additional step to pr request template (#1104) (7370ab1)
- allow separate configuration of admin domain name (#1114) (c331ec1)
- bump aks sku from free to standard to address API server perfo… (#1121) (bcb8848)
- deps: update curl to v8.11.1 (#1110) (39a656c)
- deps: update grafana (#1126) (056a6ee)
- deps: update grafana to 11.4.0 (#1053) (77aa0b4)
- deps: update identity-config to v0.9.0 (#1129) (da720b2)
- deps: update istio to v1.24.1 (#962) (8ecd5ff)
- deps: update loki to 3.3.1 (#1022) (42d5bda)
- deps: update pepr to 0.42.0 (#1095) (3ebae7b)
- deps: update pepr to v0.42.1 (#1116) (bde01da)
- deps: update playwright to v1.49.1 (#1103) (658ad0d)
- deps: update support-deps (#1076) (2fa010f)
- deps: update support-deps (#1100) (777387b)
- deps: update support-deps (#1105) (18472ea)
- deps: update support-deps (#1117) (5b2e3a4)
- deps: update support-deps (#1125) (4a1bdfb)
- deps: update vector to 0.43.1 (#1107) (2f6c8b5)
- deps: update velero kubectl to v1.31.4 (#1108) (bd8ee0e)
- deps: update velero to v1.32.0 (#1128) (669ebe5)
- docs: replace promtail reference with vector in prerequisites (#1098) (33cee59)
- remove loki peerauth exception (#1106) (f87a96d)
- update arch diagrams (#1120) (e8a1beb)
- update doc-gen output_dir (#1123) (496ea40)
- update infra ci to run weekly and on release pr (#1124) (79534c9)
- update README to explicitly indicate the need for a running co… (#1113) (6426c5a)
0.32.1 (2024-12-05)
- change grafana -> prometheus to https (#1043) (6ef3169)
- client timeouts (#1062) (e71c1da)
- kubeapi watch updates, allow configurable cidr (#1075) (3285908)
- update nightly ci timeouts (#1058) (2b1a440)
- value paths for cpu override (#1055) (5a21c28)
- cleanup doc (#1078) (286feb4)
- deps: update aws provider to ~> 5.77.0 (#1036) (84fa893)
- deps: update grafana to v8.6.1 (#1040) (1454397)
- deps: update keycloak to v26.0.6 (#1041) (582db22)
- deps: update keycloak to v26.0.7 (#1057) (ef96ef0)
- deps: update neuvector to 5.4.1 (#1039) (8727675)
- deps: update node types to v22.9.3 (#1049) (e454222)
- deps: update node types to v22.9.4 (#1051) (0f0240a)
- deps: update support dependencies to v0.196.0 (#1054) (67419f5)
- deps: update support-deps (#1046) (6cf96f0)
- deps: update support-deps (#1048) (d77155f)
- deps: update support-deps (#1052) (e1cf7db)
- deps: update support-deps (#1056) (abab719)
- deps: update vector helm chart to v0.38.0 (#1092) (2cb4181)
- deps: update vector to v0.43.0 (#1059) (55bf0b3)
- deps: update velero chart to v8.1.0 (#1050) (7b0d51b)
- deps: update velero kubectl images to v1.31.3 (#1034) (9bf286f)
- fix checkpoint to properly publish uds-core (#1044) (f1c54cf)
- reduce default cpu requests for dev/demo bundles (#1047) (e0bde2f)
- update cli install to use setup-uds action (#1061) (daebe9b)
0.32.0 (2024-11-22)
- add ability to add custom netpols for prometheus-stack package (#997) (472f9c5)
- add checkpoint uds-core slim package (#818) (d95f6be)
- allow additional network rules for grafana and neuvector (#1038) (5c84007)
- add variables for pepr memory requests in dev/demo bundles (#1021) (867501c)
- architecture diagrams (#1024) (d0bca43)
- deps: update grafana helm chart (#998) (25d4c29)
- deps: update grafana to v11.3.1 (#1023) (8d3cf3a)
- deps: update husky to v9.1.7 (#1014) (0d9a854)
- deps: update kfc for jest to v3.3.3 (#1015) (eba189e)
- deps: update neuvector to 5.4.0 (#778) (ccd0a32)
- deps: update pepr to v0.40.1 (#1025) (871bdad)
- deps: update support-deps (#1006) (bfb66a4)
- deps: update support-deps (#1019) (82dfb32)
- deps: update velero helm chart to v8 (#999) (e8187be)
- fix duplicative checkpoint publish location (#1020) (b497fc5)
- update diagrams (#1035) (cca5e2c)
0.31.2 (2024-11-15)
0.31.1 (2024-11-13)
- deps: update pepr to v0.39.1 (#1003) (c0b1dbf)
- deps: update support dependencies to v3.27.3 (#1004) (9fbb4a9)
0.31.0 (2024-11-12)
- Remove the generated exception block from the remoteCidr generation. This change means that a cidr containing the META_IP could be set.
- avoids memory leak in istio sidecar termination (#972) (bfd415e)
- ensure grafana does not install plugins from the internet (#993) (f3def45)
- remove remoteCidr exception block (#987) (264fbf6)
- renovate config updated to track tests (#981) (2494448)
- sets
fail-fast
tofalse
for matrix workflows (#995) (3008788) - sort auth chains when building the authservice config (#969) (15487fb)
- add prometheus, loki, and vector e2e testing (#939) (f271ce2)
- add the scorecard supply chain security workflow (#917) (5626f2f)
- deps: update authservice to v1.0.3 (#893) (5585a3c)
- deps: update grafana curl-fips image to v8.11.0 (#994) (dfc4c8c)
- deps: update grafana to 11.3.0 (#921) (7cdd742)
- deps: update loki to 3.2.1 (#918) (5fa6a24)
- deps: update loki to v6.19.0 (#990) (8bbac53)
- deps: update pepr to v0.39.0 (#932) (27eb1bd)
- deps: update support dependencies to v3.27.2 (#1001) (8702952)
- deps: update support dependencies to v3.3.0 (#985) (4636a38)
- deps: update support dependencies to v3.3.1 (#1002) (8c20b49)
- deps: update support-deps (#928) (a9cf1f2)
- deps: update support-deps (#983) (dc3084b)
- deps: update support-deps (#989) (7a1c74e)
- deps: update velero (#956) (7746092)
- regroup renovate support dependencies (#979) (6491be9)
0.30.0 (2024-10-28)
- remove uds-runtime from core (#955)
- add finalizer for UDS Package CRs (#953) (fa42714)
- adds registry1 flavor of uds runtime (#925) (0011852)
- batch authservice checksum updates (#735) (100d35b)
- logout redirect uri (#945) (8e2b5d8)
- resolve lingering note formatting (#938) (455a530)
- vector remap language logic typo (#959) (89af729)
- add proper version update to aks nightly bundle (#942) (2f51c75)
- block local auth for neuvector (#965) (8f25b41)
- deps: update vector to 0.42.0 (#946) (2f63db2)
- remove uds-runtime from core (#955) (c6f6664)
0.29.1 (2024-10-18)
- adr link in func layers doc (#903) (c42ccf8)
- codespell config (#934) (73eb385)
- decompose istio oscal (#826) (83c6ae5)
- don't add duplicate policy names to
uds-core.pepr.dev/mutated
annotation (#916) (99d1c83) - istio proxy exiting early when Pod has restart policy (#914) (f87e3d4)
- release-please for aks (#941) (5c77285)
- test ci license check (#924) (c5b1d54)
- add e2e playwright tests for grafana (#844) (1af5a8f)
- add local lula compose task (#892) (075b519)
- add nightly testing for AKS (#908) (105aea6)
- add playwright deps to support-deps renovate (#937) (94655cd)
- deps: revert pepr to 0.37.2 (#940) (3317bbe)
- deps: update grafana helm chart to v8.5.5 (#905) (ca9a485)
- deps: update pepr to v0.38.0 (#870) (de8419c)
- deps: update pepr to v0.38.0 (#915) (6fe4e57)
- deps: update pepr to v0.38.1 (#922) (3c5d341)
- deps: update prometheus-stack (#863) (d3f03b4)
- deps: update prometheus-stack to v65.3.1 (#920) (0b80107)
- deps: update runtime to v0.6.1 (#910) (be63105)
- deps: update support dependencies to v0.192.0 (#906) (8dfd362)
- deps: update support-deps (#898) (380af83)
- deps: update support-deps (#912) (bf23a89)
- docs: custom resource docs generation (#902) (e73597d)
- ensure http2 watch config is used by internal exemption watch (#909) (25bfd59)
- group setup action in support deps (#930) (d0a0123)
- group vscode/settings.json with support-deps (#933) (81e41d8)
0.29.0 (2024-10-11)
- add base and identity layers (#853) (b3f532a)
- add logging functional layer (#861) (c1a67b9)
- add metrics-server functional layer (#865) (290367a)
- add monitoring layer (#872) (5ecb040)
- add nightly testing for rke2 (#808) (c401419)
- add service accounts options to sso (#852) (1029162)
- backup and restore layer, ui layer, runtime security layer (#862) (b1d8015)
- grafana-ha (#838) (d532d76)
- broken readme link (#899) (6e47b11)
- ci: switch to larger runners to resolve ci disk space issues (#882) (1af0401)
- snapshot ci version modification and tasks for publish (#877) (f01e5bd)
- support for anywhere network policies in cilium (#884) (5df0737)
- cleanup license parsing for github (#881) (43c98ce)
- deps: update chainctl action to v0.2.3 (#864) (d782b59)
- deps: update checkout action to v4.2.0 (#825) (29d1c98)
- deps: update dependency defenseunicorns/lula to v0.8.0 (#841) (fe36150)
- deps: update githubactions (#866) (44f8ea5)
- deps: update grafana to 11.2.1 (#836) (11383c1)
- deps: update grafana to v11.2.2 (#867) (06ed2c3)
- deps: update loki nginx image to v1.27.2 (#894) (df7d427)
- deps: update loki to v3.2.0 (#791) (d3c60b5)
- deps: update metrics-server chart to v3.12.2 (#873) (e2e61ce)
- deps: update pepr to v0.37.1 (#843) (68abcb2)
- deps: update pepr to v0.37.2 (#850) (b51f659)
- deps: update prometheus operator to 0.77.1 (#819) (0864b33)
- deps: update prometheus-stack (#855) (c791c24)
- deps: update prometheus-stack helm-charts to v64.0.0 (#849) (50a2588)
- deps: update runtime to v0.6.0 (#897) (89ae6e2)
- deps: update support-deps (#890) (26ea612)
- deps: update test-infra (#875) (583f07c)
- deps: update test-infra to v6.9.0 (#848) (ef9d317)
- deps: update uds to v0.17.0 (#859) (1489fef)
- deps: update zarf to v0.41.0 (#857) (a390c3d)
- docs: update doc structure for site refresh (#895) (1946a9a)
- fix broken link in docs (#845) (3078a5b)
- fix license header references (#901) (cf38b82)
- handle upgrade path for functional layers, add doc for usage (#896) (70d6b1b)
- regroup 'support dependencies' in renovate config (#885) (640d859)
- update license (#878) (b086170)
0.28.0 (2024-09-27)
- Promtail has been removed from UDS Core and replaced by Vector. If you were previously using overrides to setup additional log targets/endpoints for Promtail this configuration will need to be updated to Vector's chart/config formats. See Vector's Sources and Sinks as well as the helm chart values for guidance in configuration.
- add support for keycloak saml attributes (#806) (b312b7d)
- exposes tls version for dev bundles (#809) (e1a2b55)
- switch from promtail to vector (#724) (1bf2958)
- eks iac issues, document storage class pre-reqs (#812) (df514bd)
- ensure istio sidecar is killed if job fails (#813) (34ffc0a)
- revert test app version to fix CI failures (#815) (2ec6ad6)
- add runtime group to renovate config (#799) (1bf2c69)
- deps: update dependency defenseunicorns/uds-common to v0.13.0 (#790) (8bfcdc0)
- deps: update dependency defenseunicorns/uds-common to v0.13.1 (#810) (eedb551)
- deps: update istio to v1.23.2 (#796) (039d89c)
- deps: update keycloak to v25.0.6 (#771) (9864059)
- deps: update pepr to v0.13.1 (#811) (bc05b04)
- deps: update prometheus operator to v0.77.0 (#783) (8f383d8)
- deps: update runtime to v0.5.0 (#834) (edc068d)
- deps: update setup-node to v4.0.4 (#801) (34dbc44)
- deps: update uds to v0.16.0 (#802) (d07670b)
- deps: update uds-common to v0.13.0 (#792) (c24e833)
- deps: update zarf to v0.40.1 (#793) (db93a7e)
- fix github-actions renovate (#800) (3ab2add)
- pepr policies doc table (#803) (440e4e1)
- pepr policy doc (#814) (8b10b86)
- updated pepr watch limit to 60s (#840) (85f3f41)
- use kfc WatchPhase enum (#787) (df4d2da)
0.27.3 (2024-09-19)
0.27.2 (2024-09-18)
0.27.1 (2024-09-18)
- allow service ports to be overridden in test bundles (#765) (5f9a920)
- deps: update authservice to v1.0.2 (#738) (3328b08)
- deps: update githubactions (#762) (c7bab2a)
- deps: update grafana curl image to v8.10.1 (#773) (0d56ef2)
- deps: update istio to v1.23.1 (#744) (f222ea3)
- deps: update neuvector chart to 2.7.9 (#750) (a97b509)
- deps: update neuvector updater image to v8.10.1 (#774) (2afddfc)
- deps: update pepr to 0.36.0 (#696) (2a1591e)
- deps: update prometheus-stack (#743) (61f7a60)
- deps: update test-infra random provider to v3.6.3 (#753) (009326d)
- deps: update uds-identity-config version to 0.6.3 (#772) (a2ad936)
- deps: update uds-k3d to v0.9.0 (1.30.4 k3s), k3d to 5.7.4 (#770) (20656e6)
- deps: update velero kubectl image to v1.31.1 (#763) (56b3a21)
- deps: update velero kubectl to v1.31.1 (#757) (c15d77e)
- remove unused neuvector exporter (#768) (bd4f5cf)
- task for custom pepr (#766) (e624d73)
0.27.0 (2024-09-11)
- add support for Keycloak attribute
saml.assertion.signature
(#723) (0e1a3da) - investigate and restrict network policies (#719) (b6ebc49)
- protocol mappers (#621) (d71cb44)
- correct keycloak chart schema for additionalGateways (#745) (1fd8ef3)
- default
ctx.allowPrivilegeEscalation
tofalse
ifundefined
(#698) (7ecd130) - pre-commit linting (#703) (c3a2f62)
- switch secret
data
tostringData
(#710) (9323d4e) - update ci workflows for docs shim (#700) (5d89254)
- adding uds core prerequisites documentation (#636) (6225766)
- deps: update dependency weaveworks/eksctl to v0.190.0 (#721) (16d208a)
- deps: update githubactions (#642) (0705ba6)
- deps: update grafana curl image to v8.10.0 (#751) (0cdb020)
- deps: update grafana sidecar image to v1.27.6 (#732) (ad4808b)
- deps: update grafana to 11.2.0 (#670) (84e099a)
- deps: update istio to v1.23.0 (#672) (3266a3a)
- deps: update keycloak chart version to v25 (#470) (3e805e7)
- deps: update keycloak to 25.0.5 (#742) (45c540a)
- deps: update loki memcached images to v1.6.31 (#752) (f94daf1)
- deps: update metrics-server to v0.7.2 (#708) (53f1bfd)
- deps: update prometheus-stack (#437) (526aab1)
- deps: update prometheus-stack chart to v62.6.0 (#740) (424570d)
- deps: update promtail helm chart to v6.16.5 (#706) (4689d54)
- deps: update uds cli to v0.14.2 (#697) (f92bf53)
- deps: update uds to v0.15.0 (#733) (57e0e64)
- deps: update velero (#695) (c188393)
- deps: update velero chart to 7.2.1, kubectl image for unicorn flavor (#725) (a98bac4)
- deps: update velero helm chart to v7.2.0 (#720) (6309882)
- deps: update zarf to v0.39.0 (#731) (7268680)
- update configure policy exemptions doc link (#739) (6ad1256)
- update loki to 3.1.1 (#449) (e61da27)
- update renovate config/values to match all neuvector images (#755) (72a97ba)
- update resources for prometheus, document resource overrides (#713) (e80c1a4)
- update to keycloak 25 (#707) (0551aa5)
0.26.1 (2024-08-23)
- deps: update dependency defenseunicorns/uds-common to v0.12.0 (#692) (a5423a3)
- deps: update test-infra to v0.0.6 (#686) (8341e6e)
- deps: update uds-common to v0.12.0 (#693) (957f388)
- deps: update zarf to v0.38.3 (#694) (c53126f)
0.26.0 (2024-08-21)
- client attribute allow list (#676)
- azure: azure blob storage support for velero (#644) (eff9a82)
- support authservice with redis, switch to pepr helm chart (#658) (e2fe58a)
- client attribute allow list (#676) (100321e)
- handle client id names with special characters (#659) (a84769e)
- pull lula main for threshold update (#638) (5a34ce8)
- release-please config bump minor pre-major (#680) (3f824c1)
- add watch config to exemption watch (#682) (7714ff8)
- deps: update grafana helm chart to v8.4.4 (#664) (77ea6f5)
- deps: update pepr to 0.34.1 (#654) (6d4655d)
- deps: update promtail to v3.1.1 (#657) (c009e5f)
- deps: update test-infra (#412) (a4c8fe9)
- deps: update test-infra (kms) to v0.0.5 (#667) (bd68637)
- deps: update test-infra KMS to v0.0.4 (#663) (3c30b9f)
- deps: update uds to v0.14.1 (#677) (12ec8a1)
- deps: update velero kubectl image to v1.31.0 (#669) (d6b2f12)
- deps: update velero to v7.1.5 (#671) (10ab714)
- deps: update zarf to v0.38.1 (#616) (e0cb85d)
- deps: update zarf to v0.38.2 (#668) (3328925)
- generate a schema for keycloak helm chart (#627) (cf3a9e7)
- mute pepr on deploy action for migrating to helm chart (#683) (9d05ddd)
- neuvector: update source for unicorn images (#675) (568efa2)
0.25.2 (2024-08-09)
- add backoff to operator retry mechanism (#650) (52c97fd)
- network allows for core netpols (#652) (e9b69e8)
- allow for extra keycloak gateway usage with client certs (#648) (7b1c474)
- deps: update dependency defenseunicorns/uds-common to v0.11.1 (#647) (768aa1c)
- deps: update dependency defenseunicorns/uds-common to v0.11.2 (#653) (f7d1ce8)
- deps: update grafana helm chart to v8.4.3 (#660) (81c7af0)
- deps: update grafana to 11.1.3 ([#607](#607)) (7b343ac)
- deps: update neuvector to 5.3.4 (#606) (526bff4)
- deps: update pepr to 0.33.0 (#588) (6eee8f0)
- update identity config to 0.6.0 (#661) (469fed8)
0.25.1 (2024-08-06)
- add debug logs for istio injection logic (#602) (9075436)
- add support for public clients and disabling standard auth flow (#630) (38151d7)
- deps: update dependency defenseunicorns/uds-common to v0.11.0 (#617) (997cf37)
- deps: update dependency weaveworks/eksctl to v0.188.0 (#623) (3081044)
- deps: update uds to v0.14.0 (#612) (7fe927e)
- update codeowners (#637) (eec5017)
0.25.0 (2024-08-02)
- change metric server to optional (#611)
- account for keycloak HA ports (#619) (434f349)
- add google saml to slim-dev (#613) (f2164e1)
- address network policy generation inter-namespace bug (#564) (9b14c2c)
- reference root scope (#633) (5de6915)
- change metric server to optional (#611) (bc2d673)
- deps: update dependency defenseunicorns/uds-common to v0.9.0 (#592) (44ea2d7)
- deps: update dependency weaveworks/eksctl to v0.187.0 (#539) (9002a94)
- deps: update githubactions (#553) (2a9e29a)
- deps: update grafana curl image to v8.9.0 (#596) (64f9408)
- deps: update grafana helm chart to v8.3.6 (#594) (1f2005b)
- deps: update istio to v1.22.3 (#580) (7aba89e)
- deps: update lula to v0.4.4 (#615) (b02b305)
- deps: update neuvector-updater/curl to v8.9.0 (#597) (b4bd660)
- deps: update promtail configmap-reload to v0.13.1 (#608) (d98bbae)
- deps: update promtail helm chart to v6.16.4 (#574) (bf9f65c)
- deps: update to identity-config 0.5.2 (#635) (6474d16)
- deps: update uds cli to v0.13.1 (#569) (4339c89)
- deps: update zarf to v0.36.1 (#562) (058cfb3)
- disable telemetry/analytics for loki/grafana (#601) (ad785bc)
- update zarf to new repo location, 0.37.0 (#631) (29f9fd0)
0.24.1 (2024-07-22)
- ci: snapshot release publish, passthrough test on upgrade (#575) (d4afe00)
- ci: workflow permissions (cacf1b5)
- only allow istio gateways to set x509 client certificate header (#572) (5c62279)
- sso: delete orphaned SSO secrets (#578) (5a6b9ef)
- unicorn flavor proxy image reference (#590) (db081fa)
- update monitor mutation to not overwrite explicitly defined scrape class (#582) (7e550d3)
- deps: update grafana chart + sidecar image (#567) (85b6de4)
- deps: update pepr to v0.32.7 (#556) (e594f13)
- deps: update uds-identity-config to v0.5.1 (#591) (b9c5bd3)
- deps: update uds-k3d to v0.8.0 (#581) (fab8919)
- loki: default query settings, config as secret (#579) (5fa889c)
- oscal: begin integration of composed oscal with validations (#496) (047fd30)
0.24.0 (2024-07-12)
- set istio passthrough gateway as optional component (#547)
- add unicorn flavor to uds-core (#507) (a412581)
- added standalone dns service for loki (#548) (e2efdf9)
- enable authservice integration (#201) (1d4df64)
- set istio passthrough gateway as optional component (#547) (e1cab61)
- update to using default scrapeclass for tls config (#517) (258bb6b)
- decouple
devMode
and postgres egress (#554) (1a98779) - grafana logout not working in some environments (#559) (ccb9d9e)
- initial creation of child logging (#533) (00a5140)
- podmonitor mTLS mutations (#566) (eb613e1)
- add util function for purging orphans (#565) (e84229a)
- allow istio proxy injection in zarf ignored namespaces (#513) (8921b58)
- deps: update githubactions upload-artifact to v4.3.4 (#543) (20889f2)
- deps: update grafana helm chart to v8.3.2 (#542) (8ec260c)
- deps: update pepr dependencies (jest, uds-common) (#537) (547c0bf)
- deps: update promtail helm chart to v6.16.3 (#538) (48b3fea)
0.23.0 (2024-07-04)
- remove emulated gitlab endpoints from keycloak (#483)
- docs: re-ordered small paragraphs, clarified wording, and added links to tech homepages (#531) (6b2b46b)
- docs: removed double-link which broke the markdown formatting in pr template (#532) (f41ced4)
- docs: uds-config.yaml example in k3d-slim-dev README (#530) (2e1c53e)
- operator retries and error logging (#511) (cae5aab)
- deps: update checkout action to latest sha (#481) (c6f0137)
- deps: update dependency weaveworks/eksctl to v0.183.0 (#499) (9cb8e4d)
- deps: update grafana to 11.1.0 (#380) (499058a)
- deps: update istio to v1.22.2 (#512) (dcdadb4)
- deps: update jest to v29.1.5 (#485) (9c392b9)
- deps: update neuvector to 5.3.3 (#467) (261057d)
- deps: update pepr to 0.32.2 (#473) (ab4bee9)
- deps: update pepr to 0.32.3 (#494) (2e28897)
- deps: update pepr to 0.32.6 (#516) (a9d3eec)
- deps: update promtail to 3.1.0 (#335) (4457fce)
- deps: update uds to v0.12.0 (#521) (8e587ff)
- deps: update uds-common tasks to 0.6.1 (#498) (4aa6e33)
- deps: update zarf to v0.35.0 (#490) (86957cf)
- docs linting changes (#505) (0fe2015)
- remove emulated gitlab endpoints from keycloak (#483) (495960c)
- update docs for group auth and readme for docs site (#540) (ace7041)
0.22.2 (2024-06-13)
- check if exemption exists before cleanup (#468) (735288b)
- pepr operator derived netpol name collisions (#480) (de60e25)
- typo in comment (#462) (582b1f4)
- deps: update checkout to v4.1.7 (#478) (e91a0a3)
- deps: update githubactions to v4.1.3 (#471) (2a9f44d)
- deps: update uds to v0.11.1 (#472) (12fd798)
- deps: update uds to v0.11.2 (#479) (f967f9a)
- deps: update velero to v1.30.2 (#476) (89bbda9)
0.22.1 (2024-06-06)
- add saml configuration to k3d standard bundle (#425) (15b41d7)
- de-duplicate renovate matches (#435) (4f9dbbb)
- default keycloak realm envs (#455) (3a2b48f)
- exemption race conditions (#407) (d1b3b56)
- integrated docs (#431) (72238fa)
- keycloak schema for package cr (#436) (e32ce9a)
- networkpolicy for keycloak smtp egress (4059954)
- nightly testing eks config architecture (#452) (a0bbd1f)
- remove deprecated registry login and add env setup (#443) (ca6b76f)
- remove go mod (#441) (0de9693)
- remove no-tea and update uds version (#446) (434844b)
- use updated k3s (#426) (1da1c49)
- add checks before killing pods when updating istio annotations (#457) (a62f9a0)
- add debug logs to save logs for easier searching (#430) (319101b)
- add velero csi plugin (#424) (c7e49e9)
- deps: update githubactions (#413) (ebd834e)
- deps: update istio to v1.22.1 (#405) (ad4b861)
- deps: update jest to v29.1.4 (#438) (c3ecc8b)
- deps: update keycloak to v0.4.4 (#460) (936f40b)
- deps: update keycloak to v0.4.5 (#461) (3592012)
- deps: update keycloak to v24.0.5 (#453) (6b0c6fc)
- deps: update keycloak to v24.0.5 (#454) (89911f0)
- deps: update pepr (#419) (d8f0309)
- deps: update pepr to v0.4.5 (#447) (f1dba17)
- deps: update prometheus-stack (#422) (a96193e)
- deps: update uds-common to v0.4.4 (#442) (bf6debd)
- deps: update uds-k3d to v0.7.0 (#428) (23b59a2)
- deps: update velero (#408) (ffbefda)
- deps: update velero (#440) (4b1a3ea)
- deps: update velero to v6.6.0 (#456) (aff37c1)
- deps: update zarf to v0.34.0 (#434) (9badf9d)
0.22.0 (2024-05-22)
- add
expose
service entry for internal cluster traffic (#356) (1bde4cc) - add reconciliation retries for CRs (#423) (424b57b)
- uds common renovate config (#391) (035786c)
- uds core docs (#414) (a35ca7b)
- mismatched exemption/policy for DropAllCapabilities (#384) (d8ec278)
- pepr mutation annotation overwrite (#385) (6e56b2a)
- renovate config grouping, test-infra (#411) (05fd407)
- renovate pepr comment (#410) (a825388)
- deps: update keycloak (#390) (3e82c4e)
- deps: update keycloak to v24.0.4 (#397) (c0420ea)
- deps: update keycloak to v24.0.4 (#402) (e454576)
- deps: update neuvector to v9.4 (#381) (20d4170)
- deps: update pepr to 0.31.0 (#360) (fbd61ea)
- deps: update prometheus-stack (#348) (49cb11a)
- deps: update prometheus-stack (#392) (2e656f5)
- deps: update uds to v0.10.4 (#228) (1750b23)
- deps: update uds-k3d to v0.6.0 (#398) (288f009)
- deps: update velero (#350) (e7cb33e)
- deps: update zarf to v0.33.2 (#394) (201a37b)
0.21.1 (2024-05-02)
0.21.0 (2024-04-30)
- add debug logging to endpointslice watch (#359) (da3eb5a)
- deps: update grafana to v7.3.9 (#353) (4a70f40)
- deps: update istio to v1.21.2 (#258) (51c6540)
- deps: update keycloak (#349) (2ef1813)
- deps: update keycloak to v0.4.2 (#375) (b0bb8e4)
- deps: update zarf to v0.33.1 (#368) (296e547)
- move api service watch to reconcile (#362) (1822bca)
- refactor promtail extraScrapeConfigs into scrapeConfigs (#367) (2220272)
- trigger eks nightly when related files are updated (#366) (6d6e4e0)
0.20.0 (2024-04-20)
- add keycloak sso realm values (#352) (74436ea)
- add saml and attribute/mapper support for keycloak in uds pepr operator (#328) (c53d4ee)
- enable sso for neuvector (#351) (597353e)
- keycloak PVC customization (#341) (f8eae2a)
- deps: update grafana (#339) (52e6c1b)
- deps: update neuvector (#333) (010e287)
- deps: update pepr (#340) (e71ba4a)
- deps: update prometheus-stack (#301) (143eca3)
- deps: update to keycloak 24 (#336) (1153ba0)
- deps: update uds-identity-config to 0.4.1 (#355) (8485931)
0.19.0 (2024-04-12)
- drop path normalization to MERGE_SLASHES to allow apps to handle encoded slashes (#330) (26e965f)
- loki bucket configuration service_account and namespace (#332) (9518634)
- deps: update grafana (#257) (c98e566)
- deps: update metrics-server (#298) (691fd87)
- deps: update pepr (#324) (2ef0f96)
- deps: update pepr to v0.28.7 (#321) (e7206bb)
- deps: update promtail (#74) (6a112b5)
- deps: update zarf to v0.32.6 (#282) (443426d)
- deps: update zarf to v0.33.0 (#325) (f2a2a66)
- update codeowners (#338) (c419574)
0.18.0 (2024-03-29)
- add kubeapi egress for neuvector enforcer (#291) (87fc886)
- pepr ironbank renovate update (#299) (287e40d)
- release workflow k3d image (#316) (e7835e0)
- unwanted exemption deletions (#290) (50b0cd4)
- add debug output to release workflow (#285) (5f96865)
- deps: update dependency defenseunicorns/uds-common to v0.3.6 (#261) (1b5398b)
- deps: update githubactions (#242) (1eb2e2c)
- deps: update pepr to v0.28.6 (#300) (86b43e4)
- deps: update prometheus-stack (#190) (f9a605a)
- deps: update uds-k3d to v0.6.0 (#240) (6a26523)
- deps: update velero (#260) (f352008)
- main: release 0.18.0 (#286) (40e6b7b)
- support headless keycloak admin user (#307) (a0e51b6)
0.17.0 (2024-03-22)
- add keycloak to dev bundle and rename (#262) (f9b905c)
- registration robot check form id (#269) (c6419b9)
- sticky sessions for keycloak in ha (#281) (5ccd557)
- align mutation annotations (#268) (f18ad4d)
- deps: update loki (#209) (03ca499)
- deps: update pepr to v0.28.6 (#254) (54ef7de)
- deps: update zarf to v0.32.5 (#243) (ee93612)
- typo fix in README.md (#280) (f9727e0)
0.16.1 (2024-03-16)
0.16.0 (2024-03-15)
- add flavor to pepr build task (#238) (29bf8a3)
- deps: update grafana (#144) (6987927)
- deps: update neuvector (#73) (50f6c90)
- test artifacts before publish (#198) (9732f32)
0.15.1 (2024-03-11)
0.15.0 (2024-03-07)
- deps: update dependency defenseunicorns/uds-common to v0.2.2 (#232) (083ae0c)
- deps: update githubactions to de90cc6 (#215) (f79eed0)
0.14.5 (2024-03-06)
0.14.4 (2024-03-05)
0.14.3 (2024-03-05)
0.14.2 (2024-03-04)
- basic validations for packages (#208) (9eba3af)
- keycloak volume permissions, UI update (#223) (4454d3e)
- kubeapi netpol generation now also includes the ip from the kubernetes service (#219) (0a83d02)
0.14.1 (2024-03-04)
0.14.0 (2024-03-04)
- deps: update dependency defenseunicorns/uds-common to v0.2.1 (#205) (1b01407)
- deps: update githubactions to v19 (#204) (d65acd4)
- deps: update loki to v5.43.3 (#199) (40f1554)
- deps: update metrics-server (#123) (fb25a97)
0.13.1 (2024-02-21)
0.13.0 (2024-02-20)
- add security.md (#189) (bf7c1d2)
- deps: update githubactions (#179) (7797e25)
- deps: update githubactions to ebc4d7e (#183) (77357e7)
- deps: update githubactions to v3 (#181) (70c5ddf)
- deps: update istio to v1.20.3 (#163) (e45de0e)
- deps: update loki to v5.43.0 (#180) (bab5f7a)
- deps: update loki to v5.43.1 (#182) (6cc5fc7)
- deps: update loki to v5.43.2 (#191) (0ec0cd4)
- deps: update pepr to v0.25.0 (#164) (e7b8212)
- deps: update uds to v0.9.0 (#173) (b91a90d)
- deps: update zarf to v0.32.3 (#155) (2f0a1a7)
- support deselection of metrics-server (#193) (289a0fe)
0.12.0 (2024-02-09)
- deps: pin dependencies (#79) (bfab11e)
- remove retry-action action on registry1 docker login (#160) (eea0c93)
0.11.1 (2024-02-08)
0.11.0 (2024-02-07)
- deps: update grafana to v7.2.5 (#136) (a271270)
- deps: update grafana to v7.3.0 (#142) (5e960c0)
- deps: update loki (#131) (61250b0)
- deps: update pepr to v0.24.1 (#134) (6474a1c)
- deps: update prometheus-stack (#128) (625622a)
- deps: update uds to v0.8.1 (#141) (fa79065)
- deps: update zarf to v0.32.2 (#133) (91502c6)
- readme updates & use UDS CLI for zarf (#137) (21de0ce)
- renovate updates (#140) (b71a013)
0.10.0 (2024-01-26)
0.9.2 (2024-01-24)
- deps: update grafana (#80) (ccb2c12)
- deps: update loki (#72) (98134bb)
- deps: update pepr (#116) (bfa7352)
- deps: update prometheus-stack (#81) (19bedb6)
- deps: update uds to v0.6.2 (#107) (7b7220e)
- deps: update uds-k3d to v0.3.1 (#89) (5d54cd1)
- refactor ci for releases to remove certain artifacts (#125) (c08a062)
0.9.1 (2024-01-22)
0.9.0 (2024-01-21)
0.8.1 (2024-01-18)
0.8.0 (2024-01-16)
- adding unit test for registerExemptions() (#105) (5e71fcf)
- deps: update pepr to v0.22.2 (#104) (0555353)
0.7.4 (2024-01-13)
0.7.3 (2024-01-11)
- deps: update uds to v0.5.3, zarf to v0.32.1, and uds-k3d to 0.3.0 (#77) (596f9d8)
- open the aperture for pr workflow triggering (#90) (d8a72f2)
- simplify promtail values for scrape configs (#94) (6c2513b)
0.7.2 (2024-01-09)
- kick off ci (1afc3a4)
0.7.1 (2024-01-08)
0.7.0 (2024-01-05)
0.6.2 (2023-12-11)
- add minio deploy time bundle variable override definitions (#58) (ca28e7b)
- refactor validate.yaml file name and task name (#62) (92a04ea)
0.6.1 (2023-12-07)
0.6.0 (2023-12-05)
0.5.0 (2023-11-19)
0.4.1 (2023-11-17)
0.4.0 (2023-11-16)
0.3.0 (2023-11-15)
0.2.0 (2023-11-13)
- add pepr capability for istio + jobs (#12) (c32a703)
- embed tls certs in istio package (#32) (fb04fee)
0.1.3 (2023-11-10)
0.1.2 (2023-11-09)
0.1.1 (2023-11-09)
- Add istio and preliminary ci (#3) (fbd7453)
- add prometheus-stack (monitoring) capability (#2) (e438ab6)
- release-please integration (#25) (bf3c53b)
- add commit lint workflow (#19) (776a632)
- remove version from neuvector zarf.yaml (#11) (fbc8d51)
- update release please extra-files to be explicit (#26) (23f4999)
PRE RELEASE
- Initial CHANGELOG.md
- CODEOWNERS
- CONTRIBUTING.md
- DEVELOPMENT_MAINTENANCE.md
- LICENSE
- README.md
- zarf.yaml