Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release v1.19.5+suite.1 #268

Merged
merged 2 commits into from
Jun 29, 2023
Merged

Release v1.19.5+suite.1 #268

merged 2 commits into from
Jun 29, 2023

Conversation

gl-johnson
Copy link
Contributor

@gl-johnson gl-johnson commented Jun 28, 2023
edited
Loading

Release Notes

All notable changes to this project will be documented in this file.

[1.19.5+suite.1] - 2023-06-28

Table of Contents

Components

These are the components that combine to create this Conjur OSS Suite release and links
to their releases:

Conjur Server

Conjur SDK

Platform Integrations

DevOps Tools

Secretless Broker

Summon

Installation Instructions for the Suite Release Version of Conjur

Installing the Suite Release Version of Conjur requires setting the container image tag. Below are more specific instructions depending on environment.

  • Docker or docker-compose

    Set the container image tag to cyberark/conjur:1.19.5.
    For example, make the following update to the conjur service in the quickstart docker-compose.yml

    image: cyberark/conjur:1.19.5

  • Conjur Open Source Helm chart

    Update the image.tag value and use the appropriate release of the helm chart:

    helm install ... \
  --set image.tag="1.19.5" \
  ...
  https://github.com/cyberark/conjur-oss-helm-chart/releases/download/v2.0.6/conjur-oss-2.0.6.tgz

Upgrade Instructions

Upgrade instructions are available for the following components:

Changes

The following are changes to the constituent components since the last Conjur
OSS Suite release:

cyberark/conjur

v1.19.5 (2023-06-29)

  • Changed
  • Fixed
    • AuthnJWT now supports claims that include hyphens and inline namespaces.
      cyberark/conjur#2792
    • Authn-IAM now uses the host in the signed headers to determine which STS endpoint
      (global or regional) to use for validation.
  • Security

cyberark/conjur-cli-go

v8.0.10 (2023-06-29)

cyberark/conjur-api-java

v3.0.5 (2023-06-08)

cyberark/conjur-api-ruby

v5.4.1 (2023-06-14)

cyberark/cloudfoundry-conjur-buildpack

v2.2.8 (2023-06-21)

cyberark/conjur-service-broker

v1.2.10 (2023-06-21)

cyberark/conjur-authn-k8s-client

v0.25.1 (2023-06-12)

cyberark/secrets-provider-for-k8s

v1.5.1 (2023-05-26)

  • Security
    • Forced github.com/emicklei/go-restful/v3 to use v3.10.2 to remove PRISMA-2022-0227 (found in Twistlock scan)
      and updated versions of gotelemetry.io/otel (to 1.16.0), github.com/stretchr/testify (to 1.8.3), and
      the k8s.io libraries (to 0.27.2)
      cyberark/secrets-provider-for-k8s#526

cyberark/terraform-provider-conjur

v0.6.6 (2023-06-21)

cyberark/summon

v0.9.6 (2023-06-14)

cyberark/summon-conjur

v0.7.1 (2023-06-14)

  • Security

@gl-johnson gl-johnson requested a review from a team as a code owner June 28, 2023 18:26
@gl-johnson gl-johnson marked this pull request as draft June 28, 2023 18:38
@gl-johnson gl-johnson force-pushed the suite_1.19.5+suite.1 branch 3 times, most recently from fe86236 to 730930f Compare June 28, 2023 19:23
@gl-johnson gl-johnson marked this pull request as ready for review June 28, 2023 19:42
@jtuttle
Copy link
Member

jtuttle commented Jun 29, 2023

What's New

This suite release aligned with Conjur Server version 1.19.5.

AWS IAM Authenticator Regional STS Support

The IAM authenticator will now validate use a regional STS endpoint matching the host from the signed headers provided as input. This behavior more closely matches AWS recommendations for STS token validation.

Bug Fixes and Security Patches

Conjur and several other projects in the OSS Suite have been updated with bug fixes and security patches. See the release notes for details.

@jtuttle jtuttle merged commit cea5fb4 into main Jun 29, 2023
3 checks passed
@jtuttle jtuttle deleted the suite_1.19.5+suite.1 branch June 29, 2023 15:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jtuttle jtuttle jtuttle approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@gl-johnson @jtuttle