From a745c3a8a883fb84ca0e11735186f1febcfcb636 Mon Sep 17 00:00:00 2001 From: Luke Heath Date: Fri, 8 Sep 2023 13:35:44 -0500 Subject: [PATCH] Prepare Fleet v4.37.0 (#13821) --- CHANGELOG.md | 80 +++++++++++++++++++ changes/12243-policy-resolution-urls | 1 - changes/12476-ui-export-shows-all-columns | 1 - changes/12550-add-validation-for-policy-specs | 2 - changes/13064-highlighter-bug | 1 - changes/13071-disable-fleetd-enroll-errors | 2 - changes/13082-fix-dashboard-double-scrollbar | 1 - changes/13158-nag-and-copy | 1 - changes/13158-update-macadmins-tables | 1 - changes/13205-browser-page-titles-added | 1 - changes/13205-table-links-can-open-in-new-tab | 1 - changes/13238-client-debug-error | 2 - changes/13318-fix-query-stats | 1 - changes/13345-fix-queries-nav-bar-bug | 1 - changes/13363-match-dep-profiles | 1 - changes/13367-custom-query-frequencies | 1 - changes/13431-sso-idp-store | 1 - changes/13433-host-query-optimization | 1 - changes/13434-paginate-policies | 2 - changes/13495-host-details-rbac | 1 - changes/13498-fix-sso-layout | 1 - changes/13521-label-alignment | 1 - changes/13527-applying-policies-at-scale | 4 - changes/13576-fix-filter-icon | 1 - changes/13616-go-upgrade | 1 - changes/9553-scripts-audit | 1 - changes/9999-run-script-cli | 1 - changes/add-jumpcloud-to-mdm-list | 1 - changes/fix-broken-win-10-cis-queries | 1 - changes/fix-duplicate-cis-policy-queries-yml | 1 - ...oftware-reinserts-when-fields-are-too-long | 2 - changes/issue-12847-change-win-mdm-auth | 2 - changes/issue-13305-api-run-script | 2 - ...3306-implement-get-script-results-endpoint | 1 - changes/issue-13307-run-script-on-agent | 1 - ...plement-script-run-activity-and-details-ui | 1 - .../issue-13372-fix-integrations-auto-removed | 1 - changes/issue-2943-update-nanomdm | 1 - charts/fleet/Chart.yaml | 2 +- charts/fleet/values.yaml | 2 +- .../dogfood/terraform/aws/variables.tf | 2 +- .../dogfood/terraform/gcp/variables.tf | 2 +- .../sandbox/JITProvisioner/jitprovisioner.tf | 2 +- .../lambda/deploy_terraform/main.tf | 2 +- terraform/byo-vpc/byo-db/byo-ecs/variables.tf | 2 +- terraform/byo-vpc/byo-db/variables.tf | 2 +- terraform/byo-vpc/example/main.tf | 2 +- terraform/byo-vpc/variables.tf | 2 +- terraform/example/main.tf | 2 +- terraform/variables.tf | 2 +- tools/fleetctl-npm/package.json | 2 +- 51 files changed, 93 insertions(+), 60 deletions(-) delete mode 100644 changes/12243-policy-resolution-urls delete mode 100644 changes/12476-ui-export-shows-all-columns delete mode 100644 changes/12550-add-validation-for-policy-specs delete mode 100644 changes/13064-highlighter-bug delete mode 100644 changes/13071-disable-fleetd-enroll-errors delete mode 100644 changes/13082-fix-dashboard-double-scrollbar delete mode 100644 changes/13158-nag-and-copy delete mode 100644 changes/13158-update-macadmins-tables delete mode 100644 changes/13205-browser-page-titles-added delete mode 100644 changes/13205-table-links-can-open-in-new-tab delete mode 100644 changes/13238-client-debug-error delete mode 100644 changes/13318-fix-query-stats delete mode 100644 changes/13345-fix-queries-nav-bar-bug delete mode 100644 changes/13363-match-dep-profiles delete mode 100644 changes/13367-custom-query-frequencies delete mode 100644 changes/13431-sso-idp-store delete mode 100644 changes/13433-host-query-optimization delete mode 100644 changes/13434-paginate-policies delete mode 100644 changes/13495-host-details-rbac delete mode 100644 changes/13498-fix-sso-layout delete mode 100644 changes/13521-label-alignment delete mode 100644 changes/13527-applying-policies-at-scale delete mode 100644 changes/13576-fix-filter-icon delete mode 100644 changes/13616-go-upgrade delete mode 100644 changes/9553-scripts-audit delete mode 100644 changes/9999-run-script-cli delete mode 100644 changes/add-jumpcloud-to-mdm-list delete mode 100644 changes/fix-broken-win-10-cis-queries delete mode 100644 changes/fix-duplicate-cis-policy-queries-yml delete mode 100644 changes/fix-software-reinserts-when-fields-are-too-long delete mode 100644 changes/issue-12847-change-win-mdm-auth delete mode 100644 changes/issue-13305-api-run-script delete mode 100644 changes/issue-13306-implement-get-script-results-endpoint delete mode 100644 changes/issue-13307-run-script-on-agent delete mode 100644 changes/issue-13308-implement-script-run-activity-and-details-ui delete mode 100644 changes/issue-13372-fix-integrations-auto-removed delete mode 100644 changes/issue-2943-update-nanomdm diff --git a/CHANGELOG.md b/CHANGELOG.md index 0e114999eb64..345375f5c3a3 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,83 @@ +## Fleet 4.37.0 (Sep 8, 2023) + +### Changes + +* Added `/scripts/run` and `scripts/run/sync` API endpoints to send a script to be executed on a host and optionally wait for its results. + +* Added `POST /api/fleet/orbit/scripts/request` and `POST /api/fleet/orbit/scripts/result` Orbit-specific API endpoints to get a pending script to execute and send the results back, and added an Orbit notification to let the host know it has scripts pending execution. + +* Improved performance at scale when applying hundreds of policies to thousands of hosts via `fleetctl apply`. + - IMPORTANT: In previous versions of Fleet, there was a performance issue (thundering herd) when applying hundreds of policies on a large number of hosts. To avoid this, make sure to deploy this version of Fleet, and make sure Fleet is running for at least 1h (or the configured `FLEET_OSQUERY_POLICY_UPDATE_INTERVAL`) before applying the policies. + +* Added pagination to the policies API to increase response time. + +* Added policy count endpoints to support pagination on the frontend. + +* Added an endpoint to report `fleetd` errors. + +* Added logic to report errors during MDM migration. + +* Added support in fleetd to execute scripts and send back results (disabled by default). + +* Added an activity log when script execution was successfully requested. + +* Automatically set the DEP profile to be the same as "no team" (if set) for teams created using the `/match` endpoint (used by Puppet). + +* Added JumpCloud to the list of well-known MDM solutions. + +* Added `fleetctl run-script` command. + +* Made all table links right-clickable. + +* Improved the layout of the MDM SSO pages. + +* Stored user email when a user turned on MDM features with SSO enabled. + +* Updated the copy and image displayed on the MDM migration modal. + +* Upgraded Go to v1.19.12. + +* Updated the macadmins/osquery-extension to v0.0.15. + +* Updated nanomdm dependency. + +### Bug Fixes + +* Fixed a bug where live query UI and export data tables showed all returned columns. + +* Fixed a bug where Jira and/or Zendesk integrations were being removed when an unrelated setting was changed. + +* Fixed software ingestion to not re-insert software when incoming fields from hosts were longer than what Fleet supports. This bug caused some CVEs to be reported every time the vulnerability cron ran. + - IMPORTANT: After deploying this fix, the vulnerability cron will report the CVEs one last time, and subsequent cron runs will not report the CVE (as expected). + +* Fixed duplicate policy names in `ee/cis/win-10/cis-policy-queries.yml`. + +* Fixed typos in policy queries in the Windows CIS policies YAML (`ee/cis/win-10/cis-policy-queries.yml`). + +* Fixed a bug where query stats (aka `Performance impact`) were not being populated in Fleet. + +* Added validation to `fleetctl apply` for duplicate policy names in the YAML file and attempting to change the team of an existing policy. + +* Optimized host queries when using policy statuses. + +* Changed the authentication method during Windows MDM enrollment to use `LoadHostByOrbitNodeKey` instead of `HostByIdentifier`. + +* Fixed alignment on long label names on host details label filter dropdown. + +* Added UI for script run activity and script details modal. + +* Fixed queries navigation bar bug where if in query detail, you could not navigate back to the manage queries table. + +* Made policy resolutions that include URLs clickable in the UI. + +* Fixed Fleet UI custom query frequency display. + +* Fixed live query filter icon and various other live query icons. + +* Fixed Fleet UI tabs highlight while tabbing but not on multiple clicks. + +* Fixed double scrollbar bug on dashboard page. + ## Fleet 4.36.0 (Aug 17, 2023) * Added the `fleetctl upgrade-packs` command to migrate 2017 packs to the new combined schedule and query concept. diff --git a/changes/12243-policy-resolution-urls b/changes/12243-policy-resolution-urls deleted file mode 100644 index c57c9930b150..000000000000 --- a/changes/12243-policy-resolution-urls +++ /dev/null @@ -1 +0,0 @@ -- Policy resolutions that include URLs are clickable in the UI diff --git a/changes/12476-ui-export-shows-all-columns b/changes/12476-ui-export-shows-all-columns deleted file mode 100644 index 35a558c335ef..000000000000 --- a/changes/12476-ui-export-shows-all-columns +++ /dev/null @@ -1 +0,0 @@ -- Bug fix: Live query UI and Export data tables show all returned columns diff --git a/changes/12550-add-validation-for-policy-specs b/changes/12550-add-validation-for-policy-specs deleted file mode 100644 index aad83bcc7ce4..000000000000 --- a/changes/12550-add-validation-for-policy-specs +++ /dev/null @@ -1,2 +0,0 @@ -- added validation to `fleetctl apply` for duplicate policy names in the yml file and attempting to change the team of an existing policy -- added validation in `/api/latest/fleet/spec/policies` to error when attempting to change the team of an existing policy \ No newline at end of file diff --git a/changes/13064-highlighter-bug b/changes/13064-highlighter-bug deleted file mode 100644 index fe4221ab1221..000000000000 --- a/changes/13064-highlighter-bug +++ /dev/null @@ -1 +0,0 @@ -- Fleet UI - Tabs highlight while tabbing but not on multiple clicks \ No newline at end of file diff --git a/changes/13071-disable-fleetd-enroll-errors b/changes/13071-disable-fleetd-enroll-errors deleted file mode 100644 index a36dde8111fb..000000000000 --- a/changes/13071-disable-fleetd-enroll-errors +++ /dev/null @@ -1,2 +0,0 @@ -- EXPERIMENTAL: Applying the environmental variable "FLEETD_SILENCE_ENROLL_ERROR"=1 will silence fleetd errors if not setting `--fleet-url` when generating an orbit installer. -- Note: Set this variable before upgrading orbit, or restart the orbit service after setting it. \ No newline at end of file diff --git a/changes/13082-fix-dashboard-double-scrollbar b/changes/13082-fix-dashboard-double-scrollbar deleted file mode 100644 index ab9c7f65bbfc..000000000000 --- a/changes/13082-fix-dashboard-double-scrollbar +++ /dev/null @@ -1 +0,0 @@ -- UI fix double scroll bar bug on dashboard page diff --git a/changes/13158-nag-and-copy b/changes/13158-nag-and-copy deleted file mode 100644 index be111f55a480..000000000000 --- a/changes/13158-nag-and-copy +++ /dev/null @@ -1 +0,0 @@ -* Updated the copy and image displayed on the MDM migration modal diff --git a/changes/13158-update-macadmins-tables b/changes/13158-update-macadmins-tables deleted file mode 100644 index cf9c6ff643ca..000000000000 --- a/changes/13158-update-macadmins-tables +++ /dev/null @@ -1 +0,0 @@ -* Updated the macadmins/osquery-extension to v0.0.15 diff --git a/changes/13205-browser-page-titles-added b/changes/13205-browser-page-titles-added deleted file mode 100644 index 5963b8204932..000000000000 --- a/changes/13205-browser-page-titles-added +++ /dev/null @@ -1 +0,0 @@ -- More specific page titles shown in browser to match page of Fleet UI diff --git a/changes/13205-table-links-can-open-in-new-tab b/changes/13205-table-links-can-open-in-new-tab deleted file mode 100644 index b971b1f7fd62..000000000000 --- a/changes/13205-table-links-can-open-in-new-tab +++ /dev/null @@ -1 +0,0 @@ -* All table links are right-clickable \ No newline at end of file diff --git a/changes/13238-client-debug-error b/changes/13238-client-debug-error deleted file mode 100644 index b1687bf85c8c..000000000000 --- a/changes/13238-client-debug-error +++ /dev/null @@ -1,2 +0,0 @@ -* Added an endpoint to report `fleetd` errors -* Added logic to report errors during MDM migration diff --git a/changes/13318-fix-query-stats b/changes/13318-fix-query-stats deleted file mode 100644 index ec7c227eb3d0..000000000000 --- a/changes/13318-fix-query-stats +++ /dev/null @@ -1 +0,0 @@ -* Fixed a bug where query stats (aka `Performance impact`) were not being populated in Fleet. diff --git a/changes/13345-fix-queries-nav-bar-bug b/changes/13345-fix-queries-nav-bar-bug deleted file mode 100644 index 90dac35b125f..000000000000 --- a/changes/13345-fix-queries-nav-bar-bug +++ /dev/null @@ -1 +0,0 @@ -- Fix queries nav bar bug where if in query detail could not navigate back to manage queries table diff --git a/changes/13363-match-dep-profiles b/changes/13363-match-dep-profiles deleted file mode 100644 index ccfd00f2729e..000000000000 --- a/changes/13363-match-dep-profiles +++ /dev/null @@ -1 +0,0 @@ -* Automatically set the DEP profile to be the same as "no team" (if set) for teams created using the `/match` endpoint (used by Puppet) diff --git a/changes/13367-custom-query-frequencies b/changes/13367-custom-query-frequencies deleted file mode 100644 index 57b2fd66c9c4..000000000000 --- a/changes/13367-custom-query-frequencies +++ /dev/null @@ -1 +0,0 @@ -- Fleet UI: Fix custom query frequency display diff --git a/changes/13431-sso-idp-store b/changes/13431-sso-idp-store deleted file mode 100644 index 294a47a8777d..000000000000 --- a/changes/13431-sso-idp-store +++ /dev/null @@ -1 +0,0 @@ -* Store user email when an user turns on MDM features with SSO enabled. diff --git a/changes/13433-host-query-optimization b/changes/13433-host-query-optimization deleted file mode 100644 index aa1fc4fab901..000000000000 --- a/changes/13433-host-query-optimization +++ /dev/null @@ -1 +0,0 @@ -- optimized hosts queries when using policy statuses \ No newline at end of file diff --git a/changes/13434-paginate-policies b/changes/13434-paginate-policies deleted file mode 100644 index 04a668a6b471..000000000000 --- a/changes/13434-paginate-policies +++ /dev/null @@ -1,2 +0,0 @@ -* Added pagination to policies API to increase response time -* Added policy count endpoints to support pagination on frontend \ No newline at end of file diff --git a/changes/13495-host-details-rbac b/changes/13495-host-details-rbac deleted file mode 100644 index e1b4f419482f..000000000000 --- a/changes/13495-host-details-rbac +++ /dev/null @@ -1 +0,0 @@ -- Host details page - Bug fix RBAC dropdown options on refresh diff --git a/changes/13498-fix-sso-layout b/changes/13498-fix-sso-layout deleted file mode 100644 index d776622f6296..000000000000 --- a/changes/13498-fix-sso-layout +++ /dev/null @@ -1 +0,0 @@ -* Improved the layout of the MDM SSO pages diff --git a/changes/13521-label-alignment b/changes/13521-label-alignment deleted file mode 100644 index addfefdd87d2..000000000000 --- a/changes/13521-label-alignment +++ /dev/null @@ -1 +0,0 @@ -- Bug fix: Fix alignment on long label names on host details label filter dropdown diff --git a/changes/13527-applying-policies-at-scale b/changes/13527-applying-policies-at-scale deleted file mode 100644 index afbb2d448da2..000000000000 --- a/changes/13527-applying-policies-at-scale +++ /dev/null @@ -1,4 +0,0 @@ -* Improved performance at scale when applying hundreds of policies to thousands of hosts via `fleetctl apply`. -IMPORTANT: In previous versions of Fleet there's a performance issue (thundering herd) when applying hundreds of -policies on a large number of hosts. To avoid this, make sure to deploy this version of Fleet, and make sure Fleet -is running for at least 1h (or the configured `FLEET_OSQUERY_POLICY_UPDATE_INTERVAL`) before applying the policies. diff --git a/changes/13576-fix-filter-icon b/changes/13576-fix-filter-icon deleted file mode 100644 index 625ebc30d5a6..000000000000 --- a/changes/13576-fix-filter-icon +++ /dev/null @@ -1 +0,0 @@ -- Fix live query filter icon and various other live query icons diff --git a/changes/13616-go-upgrade b/changes/13616-go-upgrade deleted file mode 100644 index 7ebb6de9f530..000000000000 --- a/changes/13616-go-upgrade +++ /dev/null @@ -1 +0,0 @@ -* Upgrade Go to v1.19.12 diff --git a/changes/9553-scripts-audit b/changes/9553-scripts-audit deleted file mode 100644 index 842162c56c29..000000000000 --- a/changes/9553-scripts-audit +++ /dev/null @@ -1 +0,0 @@ -* Added an activity log when an script execution is successfully requested. diff --git a/changes/9999-run-script-cli b/changes/9999-run-script-cli deleted file mode 100644 index bb4a0c4e7193..000000000000 --- a/changes/9999-run-script-cli +++ /dev/null @@ -1 +0,0 @@ -- Added `fleetctl run-script` command. diff --git a/changes/add-jumpcloud-to-mdm-list b/changes/add-jumpcloud-to-mdm-list deleted file mode 100644 index 2123527be081..000000000000 --- a/changes/add-jumpcloud-to-mdm-list +++ /dev/null @@ -1 +0,0 @@ -* Add JumpCloud to the list of well-known MDM solutions diff --git a/changes/fix-broken-win-10-cis-queries b/changes/fix-broken-win-10-cis-queries deleted file mode 100644 index 7904952c365f..000000000000 --- a/changes/fix-broken-win-10-cis-queries +++ /dev/null @@ -1 +0,0 @@ -* Fix typos in policy queries in the Windows CIS policies yaml (`ee/cis/win-10/cis-policy-queries.yml`). diff --git a/changes/fix-duplicate-cis-policy-queries-yml b/changes/fix-duplicate-cis-policy-queries-yml deleted file mode 100644 index 7d65ed9c6feb..000000000000 --- a/changes/fix-duplicate-cis-policy-queries-yml +++ /dev/null @@ -1 +0,0 @@ -* Fix duplicate policy names in `ee/cis/win-10/cis-policy-queries.yml`. diff --git a/changes/fix-software-reinserts-when-fields-are-too-long b/changes/fix-software-reinserts-when-fields-are-too-long deleted file mode 100644 index 7d7cec0e4976..000000000000 --- a/changes/fix-software-reinserts-when-fields-are-too-long +++ /dev/null @@ -1,2 +0,0 @@ -* Fixed software ingestion to not re-insert software when incoming fields from hosts are longer than what Fleet supports. This bug caused some CVEs to be reported every time the vulnerability cron ran. -IMPORTANT: After deploying this fix, the vulnerability cron will report the CVEs one last time, and subsequent cron runs will not report the CVE (as expected). diff --git a/changes/issue-12847-change-win-mdm-auth b/changes/issue-12847-change-win-mdm-auth deleted file mode 100644 index daf1d078235c..000000000000 --- a/changes/issue-12847-change-win-mdm-auth +++ /dev/null @@ -1,2 +0,0 @@ -- change the authentication method during windows mdm enrollment to use `LoadHostByOrbitNodeKey` -instead of `HostByIdentifier` diff --git a/changes/issue-13305-api-run-script b/changes/issue-13305-api-run-script deleted file mode 100644 index 085eb7dc81bc..000000000000 --- a/changes/issue-13305-api-run-script +++ /dev/null @@ -1,2 +0,0 @@ -* Added `/scripts/run` and `scripts/run/sync` API endpoints to send a script to be executed on a host (and optionally wait for its results). -* Added `POST /api/fleet/orbit/scripts/request` and `POST /api/fleet/orbit/scripts/result` Orbit-specific API endpoints to get a pending script to execute and send the results back, and added an orbit notification to let the host know it has scripts pending execution. diff --git a/changes/issue-13306-implement-get-script-results-endpoint b/changes/issue-13306-implement-get-script-results-endpoint deleted file mode 100644 index a2e6ce42c899..000000000000 --- a/changes/issue-13306-implement-get-script-results-endpoint +++ /dev/null @@ -1 +0,0 @@ -- add GET scripts/results/{id} endpoint to get the script result. diff --git a/changes/issue-13307-run-script-on-agent b/changes/issue-13307-run-script-on-agent deleted file mode 100644 index 432f95290bb6..000000000000 --- a/changes/issue-13307-run-script-on-agent +++ /dev/null @@ -1 +0,0 @@ -* Added support in fleetd to execute scripts and send back results (disabled by default). diff --git a/changes/issue-13308-implement-script-run-activity-and-details-ui b/changes/issue-13308-implement-script-run-activity-and-details-ui deleted file mode 100644 index 0bffcd960c84..000000000000 --- a/changes/issue-13308-implement-script-run-activity-and-details-ui +++ /dev/null @@ -1 +0,0 @@ -- add UI for script run activity and script details modal diff --git a/changes/issue-13372-fix-integrations-auto-removed b/changes/issue-13372-fix-integrations-auto-removed deleted file mode 100644 index 5adb1751c311..000000000000 --- a/changes/issue-13372-fix-integrations-auto-removed +++ /dev/null @@ -1 +0,0 @@ -* Fixed a bug where Jira and/or Zendesk integrations were being removed when an unrelated setting was changed. diff --git a/changes/issue-2943-update-nanomdm b/changes/issue-2943-update-nanomdm deleted file mode 100644 index 848ae19e31e1..000000000000 --- a/changes/issue-2943-update-nanomdm +++ /dev/null @@ -1 +0,0 @@ -- Updated nanomdm dependency. diff --git a/charts/fleet/Chart.yaml b/charts/fleet/Chart.yaml index aea1c08688cc..c12ca90516f8 100644 --- a/charts/fleet/Chart.yaml +++ b/charts/fleet/Chart.yaml @@ -8,4 +8,4 @@ version: v5.0.1 home: https://github.com/fleetdm/fleet sources: - https://github.com/fleetdm/fleet.git -appVersion: v4.36.0 +appVersion: v4.37.0 diff --git a/charts/fleet/values.yaml b/charts/fleet/values.yaml index 7c58edc3c57a..7cd4783ce7dd 100644 --- a/charts/fleet/values.yaml +++ b/charts/fleet/values.yaml @@ -2,7 +2,7 @@ # All settings related to how Fleet is deployed in Kubernetes hostName: fleet.localhost replicas: 3 # The number of Fleet instances to deploy -imageTag: v4.36.0 # Version of Fleet to deploy +imageTag: v4.37.0 # Version of Fleet to deploy podAnnotations: {} # Additional annotations to add to the Fleet pod serviceAccountAnnotations: {} # Additional annotations to add to the Fleet service account resources: diff --git a/infrastructure/dogfood/terraform/aws/variables.tf b/infrastructure/dogfood/terraform/aws/variables.tf index 6ca305cafc31..8e92eb52a27b 100644 --- a/infrastructure/dogfood/terraform/aws/variables.tf +++ b/infrastructure/dogfood/terraform/aws/variables.tf @@ -56,7 +56,7 @@ variable "database_name" { variable "fleet_image" { description = "the name of the container image to run" - default = "fleetdm/fleet:v4.36.0" + default = "fleetdm/fleet:v4.37.0" } variable "software_inventory" { diff --git a/infrastructure/dogfood/terraform/gcp/variables.tf b/infrastructure/dogfood/terraform/gcp/variables.tf index 9008ac4a9517..56c01006b39c 100644 --- a/infrastructure/dogfood/terraform/gcp/variables.tf +++ b/infrastructure/dogfood/terraform/gcp/variables.tf @@ -68,5 +68,5 @@ variable "redis_mem" { } variable "image" { - default = "fleet:v4.36.0" + default = "fleet:v4.37.0" } diff --git a/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf b/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf index a1e5785df541..c2749f8a3382 100644 --- a/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf +++ b/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf @@ -206,7 +206,7 @@ resource "random_uuid" "jitprovisioner" { # Use the local to make the trigger work. locals { - fleet_tag = "v4.36.0" + fleet_tag = "v4.37.0" } resource "null_resource" "standard-query-library" { diff --git a/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf b/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf index 8a5beb94453b..0ef7efca443c 100644 --- a/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf +++ b/infrastructure/sandbox/PreProvisioner/lambda/deploy_terraform/main.tf @@ -165,7 +165,7 @@ resource "helm_release" "main" { set { name = "imageTag" - value = "v4.36.0" + value = "v4.37.0" } set { diff --git a/terraform/byo-vpc/byo-db/byo-ecs/variables.tf b/terraform/byo-vpc/byo-db/byo-ecs/variables.tf index ed1bcd365bb6..ccb45bfbdee5 100644 --- a/terraform/byo-vpc/byo-db/byo-ecs/variables.tf +++ b/terraform/byo-vpc/byo-db/byo-ecs/variables.tf @@ -13,7 +13,7 @@ variable "fleet_config" { type = object({ mem = optional(number, 4096) cpu = optional(number, 512) - image = optional(string, "fleetdm/fleet:v4.36.0") + image = optional(string, "fleetdm/fleet:v4.37.0") family = optional(string, "fleet") sidecars = optional(list(any), []) depends_on = optional(list(any), []) diff --git a/terraform/byo-vpc/byo-db/variables.tf b/terraform/byo-vpc/byo-db/variables.tf index 21724040ebc7..2e4329830fdd 100644 --- a/terraform/byo-vpc/byo-db/variables.tf +++ b/terraform/byo-vpc/byo-db/variables.tf @@ -74,7 +74,7 @@ variable "fleet_config" { type = object({ mem = optional(number, 4096) cpu = optional(number, 512) - image = optional(string, "fleetdm/fleet:v4.36.0") + image = optional(string, "fleetdm/fleet:v4.37.0") family = optional(string, "fleet") sidecars = optional(list(any), []) depends_on = optional(list(any), []) diff --git a/terraform/byo-vpc/example/main.tf b/terraform/byo-vpc/example/main.tf index 31120013bd99..f77c659385ba 100644 --- a/terraform/byo-vpc/example/main.tf +++ b/terraform/byo-vpc/example/main.tf @@ -17,7 +17,7 @@ provider "aws" { } locals { - fleet_image = "fleetdm/fleet:v4.36.0" + fleet_image = "fleetdm/fleet:v4.37.0" } resource "random_pet" "main" {} diff --git a/terraform/byo-vpc/variables.tf b/terraform/byo-vpc/variables.tf index 0f54abbb06ce..3f2c12870455 100644 --- a/terraform/byo-vpc/variables.tf +++ b/terraform/byo-vpc/variables.tf @@ -163,7 +163,7 @@ variable "fleet_config" { type = object({ mem = optional(number, 4096) cpu = optional(number, 512) - image = optional(string, "fleetdm/fleet:v4.36.0") + image = optional(string, "fleetdm/fleet:v4.37.0") family = optional(string, "fleet") sidecars = optional(list(any), []) depends_on = optional(list(any), []) diff --git a/terraform/example/main.tf b/terraform/example/main.tf index 7dbd79c955f5..24029fa7d979 100644 --- a/terraform/example/main.tf +++ b/terraform/example/main.tf @@ -73,7 +73,7 @@ module "vulnprocessing" { ecs_cluster = module.main.byo-vpc.byo-db.byo-ecs.cluster.cluster_arn vpc_id = module.main.vpc.vpc_id fleet_config = { - image = "fleetdm/fleet:v4.36.0" + image = "fleetdm/fleet:v4.37.0" database = { password_secret_arn = module.main.byo-vpc.secrets.secret_arns["${var.rds_config.name}-database-password"] user = module.main.byo-vpc.rds.db_instance_username diff --git a/terraform/variables.tf b/terraform/variables.tf index 42d7b8c44653..af4ef6103b0c 100644 --- a/terraform/variables.tf +++ b/terraform/variables.tf @@ -215,7 +215,7 @@ variable "fleet_config" { type = object({ mem = optional(number, 4096) cpu = optional(number, 512) - image = optional(string, "fleetdm/fleet:v4.36.0") + image = optional(string, "fleetdm/fleet:v4.37.0") family = optional(string, "fleet") sidecars = optional(list(any), []) depends_on = optional(list(any), []) diff --git a/tools/fleetctl-npm/package.json b/tools/fleetctl-npm/package.json index 6dd537d93c29..d40111753bca 100644 --- a/tools/fleetctl-npm/package.json +++ b/tools/fleetctl-npm/package.json @@ -1,6 +1,6 @@ { "name": "fleetctl", - "version": "v4.36.0", + "version": "v4.37.0", "description": "Installer for the fleetctl CLI tool", "bin": { "fleetctl": "./run.js"