By Category

Back to all categories

Connectivity

Dec 6, 2023 Connectivity coredns-app v1.20.0
Added
- Add NET_BIND_SERVICE capability back to containers.
Changed
- Upgrade CoreDNS to v1.11.1.
Dec 5, 2023 Connectivity ingress-nginx-app v3.3.1
Added
- Admission Webhook: Add controller.admissionWebhooks.patch.networkPolicy.enabled. (#568)
Nov 21, 2023 Connectivity ingress-nginx-app v3.3.0
Added
- Chart: Add namespaceOverride. (#565)
- Service: Add controller.service.allocateLoadBalancerNodePorts & controller.service.internal.allocateLoadBalancerNodePorts. (#565)
Changed
- Admission Webhook: Truncate name. (#565)
Nov 20, 2023 Connectivity coredns-app v1.19.1
Changed
- Build App with ABS.
- Add basic tests with ATS.
- ATS: Rework tests. (#248)
- Chart: Fix usage of name & namespace. (#249)
Oct 27, 2023 Connectivity ingress-nginx-app v3.2.1
Changed
- Image: Update to v1.9.4. (#557)
Oct 26, 2023 Connectivity ingress-nginx-app v3.1.2
Changed
- Image: Update to v1.9.4. (#557)
Oct 18, 2023 Connectivity ingress-nginx-app v3.2.0
This release contains security relevant changes. Please check your Ingress resources for invalid annotations or paths before installing it.
Changed
- Values: Enable controller.enableAnnotationValidations by default. (#552)
  NOTE: This change affects existing, new & updated Ingress resources. Upstream is enabling this by default, too: https://github.com/kubernetes/ingress-nginx/issues/10186.
- Values: Enable controller.config.strict-validate-path-type by default. (#553)
  NOTE: This change affects new & updated Ingress resources only. Upstream is enabling this by default, too: https://github.com/kubernetes/ingress-nginx/issues/10186.
  See https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type for further information.
Oct 18, 2023 Connectivity ingress-nginx-app v3.1.1
Changed
- Controller: Fix chroot mode. (#550)
Removed
- Service: Remove redundant version check. (#550)
Oct 16, 2023 Connectivity kong-app v3.5.0
This version contains fixes for HTTP/2 stream reset attacks (CVE-2023-44487).
Changes
- Align with upstream chart version 2.29.0 (Changes in upstream repository)
- Update kong to 3.4.2
- Update kong ingress controller to 2.12.0
- Execute enterprise tests with kong-gateway container image version 3.4.1.1-debian
- Add Values.global.podSecurityStandards.enforced flag in preparation of PSP to PSS migration
- Prevent installation of PodDisruptionBudget with replicaCount: 1 or autoscaling.minReplicas: 1
Oct 12, 2023 Connectivity ingress-nginx-app v3.1.0
Added
- Controller: Add controller.enableAnnotationValidations. (#536)
- OpenTelemetry: Add controller.opentelemetry.resources. (#536)
- Values: Add global.podSecurityStandards.enforced. (#544)
Changed
- Image: Update to v1.9.0. (#536)
- Deployment/DaemonSet: Make controller.topologySpreadConstraints an array. (#536)
  NOTE: This is part of our alignment to upstream. Please convert any overrides of controller.topologySpreadConstraints to an array, too.
- Tests: Upgrade dependencies & remove explicit ATS version. (#538)
- Service: Fix wildcard subdomain. (#539)
- Chart: Tighten securityContexts and Pod Security Policies. (#540)
- OpenTelemetry: Use own registry. (#541)
- Admission Webhooks: Update kube-webhook-certgen image to v20231011-8b53cabe0. (#542)
- Image: Update to v1.9.3. (#547)
Removed
- Controller: Drop support for controller.kind: Both. (#547)