Releases: defenseunicorns/pepr
Releases · defenseunicorns/pepr
v0.39.0
Features
- feat: add ability to exit Finalize() callback WITHOUT removing the finalizer by @btlghrants in #1321
- feat: expose rbacMode from moduleConfig by @cmwylie19 in #1347
- feat: rbac overrides in package.json by @schaeferka in #1331
What's Changed
- chore: validate images from registry via Pepr (impl) by @btlghrants in #1262
- fix: eslint max depth warnings by @tamirazrab in #1255
- fix: eslint max depth warnings with passing E2E tests by @samayer12 in #1366
- revert: filter-chain refactor by @samayer12 in #1396
- chore: updates for undici watch by @cmwylie19 in #1384
- chore: increase soak duration by @samayer12 in #1399
- chore: make test crossplatform by @cmwylie19 in #1369
- chore: pinned deps in ci -all the rest by @cmwylie19 in #1377
- chore: squash HIGH vulnerability in container scan by @cmwylie19 in #1376
- chore: squash HIGH vulnerability by @cmwylie19 in #1374
- Revert "fix: eslint max depth warnings" by @samayer12 in #1365
- chore: disable cosign testing for now by @btlghrants in #1368
- chore: unit tests for finalizer with user alias by @schaeferka in #1342
- chore: refactor store code by @samayer12 in #1259
- fix: fix error in metrics.ts related to this.#cacheMissWindows.delete(firstKey) by @schaeferka in #1352
- chore: refactor complex implementation of request-processing filters by @samayer12 in #1333
- chore: fix circular dependency between lib.ts and sdk.ts by @schaeferka in #1348
- chore: fix circular dependency between types and mutate-request by @schaeferka in #1332
Dependabot
- chore: bump trufflesecurity/trufflehog from a63bf95412e732b7a187e8fd7cc2d19c4a2e4963 to e6d786a7d99f05f14327ba8e2ab75aa863b4df3b by @dependabot in #1378
- chore: bump trufflesecurity/trufflehog from e6d786a7d99f05f14327ba8e2ab75aa863b4df3b to 5ca4a17a4c7a242046966b84cf9d7a53364971bc by @dependabot in #1386
- chore: bump the development-dependencies group with 3 updates by @dependabot in #1385
- chore: bump @types/node from 22.8.7 to 22.9.0 in the development-dependencies group by @dependabot in #1394
- chore: bump anchore/scan-action from 5.2.0 to 5.2.1 by @dependabot in #1392
- chore: bump anchore/sbom-action from 0.17.6 to 0.17.7 by @dependabot in #1391
- chore: bump trufflesecurity/trufflehog from 5ca4a17a4c7a242046966b84cf9d7a53364971bc to 944d5dcdc2ba2aa70c2227d8e432d19eceda10be by @dependabot in #1390
- chore: bump kubernetes-fluent-client from 3.2.2 to 3.3.0 in the production-dependencies group by @dependabot in #1393
- chore: bump trufflesecurity/trufflehog from 944d5dcdc2ba2aa70c2227d8e432d19eceda10be to 9095845958d9cabdc354ddf372123b5399a5d334 by @dependabot in #1400
- chore: bump chainguard-dev/digestabot from 1.2.0 to 1.2.1 by @dependabot in #1335
- chore: bump @types/node from 22.7.9 to 22.8.1 in the development-dependencies group by @dependabot in #1338
- chore: bump actions/setup-node from 4.0.4 to 4.1.0 by @dependabot in #1334
- chore: bump kubernetes-fluent-client from 3.2.1 to 3.2.2 in the production-dependencies group by @dependabot in #1362
- chore: bump actions/dependency-review-action from 4.3.5 to 4.4.0 by @dependabot in #1346
- chore: bump anchore/scan-action from 5.1.0 to 5.2.0 by @dependabot in #1356
- chore: bump @types/node from 22.8.4 to 22.8.6 in the development-dependencies group by @dependabot in #1372
- chore: bump @types/node from 22.8.1 to 22.8.4 in the development-dependencies group across 1 directory by @dependabot in #1354
New Contributors
- @tamirazrab made their first contribution in #1255
Full Changelog: v0.38.3...v0.39.0
Contributors
cmwylie19, samayer12, and 4 other contributors
Assets 2
v0.38.3
What's Changed
- chore: fix for kfc build by @cmwylie19 in #1314
- chore(ci): increase concurrency limit for faster E2E tests by @samayer12 in #1305
- chore: bump actions/upload-artifact from 4.4.0 to 4.4.3 by @dependabot in #1302
- chore: bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #1301
- chore: bump @types/node from 22.7.6 to 22.7.7 in the development-dependencies group by @dependabot in #1313
- chore: bump kubernetes-fluent-client from 3.1.3 to 3.2.0 in the production-dependencies group by @dependabot in #1312
- chore: bump anchore/scan-action from 5.0.1 to 5.1.0 by @dependabot in #1311
- chore: bump @types/node from 22.7.7 to 22.7.8 in the development-dependencies group by @dependabot in #1319
- chore: bump actions/dependency-review-action from 4.3.4 to 4.3.5 by @dependabot in #1318
- chore: bump github/codeql-action from 3.26.13 to 3.27.0 by @dependabot in #1317
- chore: bump @types/node from 22.7.8 to 22.7.9 in the development-dependencies group by @dependabot in #1320
- chore: bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in #1325
- chore: bump kubernetes-fluent-client from 3.2.0 to 3.2.1 in the production-dependencies group by @dependabot in #1330
Full Changelog: v0.38.2...v0.38.3
Contributors
cmwylie19, samayer12, and dependabot
Assets 2
v0.38.2
What's Changed
- chore: soak interruptions for checkresync test by @cmwylie19 in #1299
- chore: bump kubernetes-fluent-client from 3.1.2 to 3.1.3 in the production-dependencies group by @dependabot in #1300
Full Changelog: v0.38.1...v0.38.2
Contributors
cmwylie19 and dependabot
Assets 2
v0.38.1
What's Changed
- chore: get pods each reporting interval by @cmwylie19 in #1279
- chore: node-latest is breaking ci - change matrix to 22 by @cmwylie19 in #1288
- chore: reduce package size - exclude tests from package by @cmwylie19 in #1275
- test: http2-enable watcher and iso format logs in soak test by @btlghrants in #1277
- test: http2-enable watcher in smoke test by @btlghrants in #1281
- chore: update resource limits/requests on controllers by @cmwylie19 in #1291
- chore: bump peter-murray/workflow-application-token-action from 3.0.1 to 4.0.0 by @dependabot in #1273
- chore: bump anchore/scan-action from 5.0.0 to 5.0.1 by @dependabot in #1272
- chore: bump chainguard/node from
8a604e5tob0b04bbby @dependabot in #1271 - chore: bump kubernetes-fluent-client from 3.1.1 to 3.1.2 in the production-dependencies group by @dependabot in #1292
- chore: bump @types/node from 22.7.5 to 22.7.6 in the development-dependencies group by @dependabot in #1293
- chore: bump chainguard/node from
b0b04bbto96260afby @dependabot in #1289
Full Changelog: v0.38.0...v0.38.1
Contributors
cmwylie19, dependabot, and btlghrants
Assets 2
v0.38.0
Features
- Adds support for http2 watch mode
Note: http2Watch has an issue around memory (soak results: ctrl-f "Memory"). This is a known issue. We will look to make improvements during the next release of KFC. We went ahead and released this feature because we are confident that it is an immediate improvement as some users were manually rolling the watcher pod to account for watch-misses. There was also a high severity CVE in an upstream library that forced us to release faster in order to fix.
Deprecations ⚠️
We identified a circular dependency which required us to relocate some types. In this release, those types are removed from src/lib/k8s.ts to src/lib/types.ts. If your module uses any of these types, please update your imports accordingly to avoid issues.
Affected Types:
Find all of them now in types.ts
What's Changed
- chore(ci): add static-analysis checks to CI/CD by @samayer12 in #1219
- chore: display resource usage in soak by @cmwylie19 in #1258
- chore: validate images from registry via Pepr (ADR) by @btlghrants in #1256
- chore: kfc automation scripts and workflow files by @cmwylie19 in #1223
- chore: removes deprecated code - watcher docs - kfc bump by @cmwylie19 in #1269
- chore(lint): adopt additional code quality rules by @samayer12 in #1212
- chore: add watch logs to soak test to determine reasons for failure by @cmwylie19 in #1215
- chore: kfc release-candidate for http2 watch by @cmwylie19 in #1239
- chore: create projects using pepr markdown by @tr-ace in #1228
- chore: choose soak branch by @cmwylie19 in #1232
- chore: update_pod_map every 10 minutes by @cmwylie19 in #1227
- chore: bump @types/node from 22.7.4 to 22.7.5 in the development-dependencies group by @dependabot in #1237
- chore: bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #1236
- chore: bump github/codeql-action from 3.26.11 to 3.26.12 by @dependabot in #1235
- chore: bump express from 4.21.0 to 4.21.1 in the production-dependencies group by @dependabot in #1242
- chore: bump chainguard/node from
f3ec99eto0d0083bby @dependabot in #1233 - chore: bump actions/upload-artifact from 4.4.0 to 4.4.2 by @dependabot in #1241
- chore: bump actions/upload-artifact from 4.4.2 to 4.4.3 by @dependabot in #1254
- chore: bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #1253
- chore: bump chainguard/node from
0d0083btobbcd423by @dependabot in #1252 - chore: bump anchore/scan-action from 4.1.2 to 5.0.0 by @dependabot in #1264
- chore: bump chainguard/node from
bbcd423tob0b04bbby @dependabot in #1265 - chore: bump peter-murray/workflow-application-token-action from 3.0.0 to 3.0.1 by @dependabot in #1263
- chore: bump github/codeql-action from 3.26.12 to 3.26.13 by @dependabot in #1266
- chore: bump the production-dependencies group across 1 directory with 2 updates by @dependabot in #1270
- chore: bump github/codeql-action from 3.26.10 to 3.26.11 by @dependabot in #1222
- chore: bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @dependabot in #1224
- chore: bump chainguard/node from
ab523c4tof3ec99eby @dependabot in #1220
New Contributors
Full Changelog: v0.37.2...v0.38.0
Contributors
cmwylie19, samayer12, and 3 other contributors
Assets 2
v0.38.0-rc
Release Candidate for the Next Release
This allows users to use the KFC Watcher using http2.
What's Changed
- chore(lint): adopt additional code quality rules by @samayer12 in #1212
- chore: add watch logs to soak test to determine reasons for failure by @cmwylie19 in #1215
- chore: create projects using pepr markdown by @tr-ace in #1228
- chore: choose soak branch by @cmwylie19 in #1232
- chore: update_pod_map every 10 minutes by @cmwylie19 in #1227
- chore: kfc release-candidate for http2 watch by @cmwylie19 in #1239
- chore: bump github/codeql-action from 3.26.11 to 3.26.12 by @dependabot in #1235
- chore: bump github/codeql-action from 3.26.10 to 3.26.11 by @dependabot in #1222
- chore: bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @dependabot in #1224
- chore: bump chainguard/node from
ab523c4tof3ec99eby @dependabot in #1220 - chore: bump @types/node from 22.7.4 to 22.7.5 in the development-dependencies group by @dependabot in #1237
- chore: bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #1236
New Contributors
Full Changelog: v0.37.2...v0.38.0-rc
Contributors
cmwylie19, samayer12, and 2 other contributors
Assets 2
v0.37.2
What's Changed
- chore: remove deprecated types from k8s.ts by @cmwylie19 in #1194
- chore(docs): document new options for
pepr initby @samayer12 in #1199 - refactor: shouldSkipRequest should give reason for skipping request instead of boolean by @btlghrants in #1208
- Revert "chore: remove deprecated types from k8s.ts" - slated for v0.38.0 by @cmwylie19 in #1211
- chore: bump codecov/codecov-action from 4.5.0 to 4.6.0 by @dependabot in #1209
- chore: bump chainguard/node from
bd9ec30to8a604e5by @dependabot in #1200 - chore: bump github/codeql-action from 3.26.9 to 3.26.10 by @dependabot in #1201
- chore: bump chainguard/node from
8a604e5toab523c4by @dependabot in #1210
Full Changelog: v0.37.1...v0.37.2
Contributors
cmwylie19, samayer12, and 2 other contributors
Assets 2
v0.37.1
We needed to remove a type dependency from the controller image that was affecting people's CI.
What's Changed
- chore: sync work - add types to cli with prompts and init options by @cmwylie19 in #1196
- feat(testing): use candidate versions of pepr in E2E tests when testing new functionality by @samayer12 in #1157
Full Changelog: v0.37.0...v0.37.1
Contributors
cmwylie19 and samayer12
Assets 2
v0.37.0
Deprecations ⚠️
We identified a circular dependency, which required us to relocate some types. In this release, those types are duplicated, but in the next release, they will be fully moved from src/lib/k8s.ts to src/lib/types.ts. If your module uses any of these types, please update your imports accordingly to avoid issues in future versions.
Affected Types:
Find all of them now in types.ts
Features 🚀
- feat: redact store values from logs by @cmwylie19 in #1176
- feat(cli): support input flags for 'npx pepr init' by @samayer12 in #1141
- feat: add Finalize() to Pepr by @btlghrants in #1102
- feat: regex filters for namespace and name by @cmwylie19 in #1156
What's Changed 🔧
- chore: add commit lint "ignore" rule by @btlghrants in #1145
- chore: dont send unnecessary patch by @btlghrants in #1144
- test: add UDS smoke test by @btlghrants in #1153
- chore: add filter for name by @cmwylie19 in #1151
- chore: ignore warning in prod by @cmwylie19 in #1152
- chore: update husky install due to deprecation by @cmwylie19 in #1167
- chore: show actual pod list in pepr soak test and counts in the pod map by @cmwylie19 in #1172
- chore: lint changes on commit with husky by @itsarijitray in #1160
- chore: considers ignored namespaces in filters by @cmwylie19 in #1165
- feat: add alias prefixing to pino logs by @schaeferka in #916
- refactor: filterNoMatchReason and shouldSkipRequest by @btlghrants in #1161
- refactor: remove filterNoMatchReasonRegex / shouldSkipRequestRegex wrappers by @btlghrants in #1184
- chore: dont do patch operation if store is empty by @cmwylie19 in #1182
- chore: set default branch for new module to main by @schaeferka in #1185
- chore: samayer12 to codeowners by @samayer12 in #1189
Dependabot Updates 🤖
- chore: bump chainguard/node from
2a8a01atobd9ec30by @dependabot in #1190 - chore: bump kubernetes-fluent-client from 3.0.3 to 3.0.4 in the production-dependencies group by @dependabot in #1191
- chore: bump chainguard/node from
5b59be4to31749fcby @dependabot in #1146 - chore: bump chainguard/node from
31749fcto22e112fby @dependabot in #1155 - chore: bump actions/setup-node from 4.0.3 to 4.0.4 by @dependabot in #1159
- chore: bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in #1158
- chore: bump chainguard/node from
22e112fto7b64927by @dependabot in #1163 - chore: bump husky from 8.0.3 to 9.1.6 in the development-dependencies group by @dependabot in #1164
- chore: bump the development-dependencies group with 2 updates by @dependabot in #1174
- chore: bump chainguard/node from
7b64927to92f9a7dby @dependabot in #1169 - chore: bump @types/node from 22.7.2 to 22.7.3 in the development-dependencies group by @dependabot in #1178
- chore: bump chainguard/node from
92f9a7dto2a8a01aby @dependabot in #1177 - chore: bump @types/node from 22.7.3 to 22.7.4 in the development-dependencies group by @dependabot in #1183
- chore: bump github/codeql-action from 3.26.8 to 3.26.9 by @dependabot in #1170
- chore: bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #1175
- chore: bump @types/node from 22.5.5 to 22.6.1 in the development-dependencies group by @dependabot in #1168
New Contributors 👏
- @itsarijitray made their first contribution in #1160
Full Changelog: v0.36.0...v0.37.0
Contributors
cmwylie19, samayer12, and 4 other contributors
Assets 2
v0.36.0
Features
- feat: withdeletiontimestamp filter by @cmwylie19 in #1026
- feat: update CODEOWNERS by @daveworth in #1111
- feat: update pepr reconcile strategy by @btlghrants in #1127
What's Changed
- chore: support optional fields in ownerReferences by @samayer12 in #1104
- fix: reconcile queues scrambling Action callbacks by @btlghrants in #1119
- chore: squash High findings in pepr controller image by @btlghrants in #1123
- chore: bump github/codeql-action from 3.26.5 to 3.26.6 by @dependabot in #1107
- chore: bump actions/upload-artifact from 4.3.6 to 4.4.0 by @dependabot in #1112
- chore: bump pino from 9.3.2 to 9.4.0 in the production-dependencies group by @dependabot in #1117
- chore: bump @types/node from 22.5.1 to 22.5.4 in the dev-deps group across 1 directory by @dependabot in #1118
- chore: bump the development-dependencies group with 2 updates by @dependabot in #1132
- chore: bump send and express by @dependabot in #1133
- chore: bump step-security/harden-runner from 2.9.1 to 2.10.1 by @dependabot in #1130
- chore: bump github/codeql-action from 3.26.6 to 3.26.7 by @dependabot in #1135
- chore: bump kubernetes-fluent-client from 3.0.2 to 3.0.3 in the production-dependencies group by @dependabot in #1136
- chore: bump chainguard/node from
0a7847dto5b59be4by @dependabot in #1138 - chore: bump @types/node from 22.5.4 to 22.5.5 in the development-dependencies group by @dependabot in #1137
New Contributors
- @daveworth made their first contribution in #1111
- @samayer12 made their first contribution in #1104
Full Changelog: v0.35.0...v0.36.0
Contributors
daveworth, cmwylie19, and 3 other contributors