Releases: helm/helm
Helm v3.11.1
Helm v3.11.1 is a security (patch) release. Users are strongly recommended to update to this release.
The template function getHostByName
can be used to disclose information. More details are available in the CVE.
This release introduces a breaking changes to Helm:
- When using the
helm
client for thetemplate
,install
, andupgrade
commands there is a new flag.--enable-dns
needs to be set for thegetHostByName
template function to attempt to lookup an IP address for a given hostname. If the flag is not set the template function will return an empty string and skip looping up an IP address for the host. - The Helm SDK has added the
EnableDNS
property to the install action, the upgrade action, and theEngine
. This property must be set to true for the in order for thegetHostByName
template function to attempt to lookup an IP address.
The default for both of these cases is false.
Philipp Stehle at SAP disclosed the vulnerability to the Helm project.
Installation and Upgrading
Download Helm v3.11.1. The common platform binaries are here:
- MacOS amd64 (checksum / 2548a90e5cc957ccc5016b47060665a9d2cd4d5b4d61dcc32f5de3144d103826)
- MacOS arm64 (checksum / 43d0198a7a2ea2639caafa81bb0596c97bee2d4e40df50b36202343eb4d5c46b)
- Linux amd64 (checksum / 0b1be96b66fab4770526f136f5f1a385a47c41923d33aab0dcb500e0f6c1bf7c)
- Linux arm (checksum / 77b797134ea9a121f2ede9d159a43a8b3895a9ff92cc24b71b77fb726d9eba6d)
- Linux arm64 (checksum / 919173e8fb7a3b54d76af9feb92e49e86d5a80c5185020bae8c393fa0f0de1e8)
- Linux i386 (checksum / 1581a4ce9d0014c49a3b2c6421f048d5c600e8cceced636eb4559073c335af0b)
- Linux ppc64le (checksum / 6ab8f2e253c115b17eda1e10e96d1637047efd315e9807bcb1d0d0bcad278ab7)
- Linux s390x (checksum / ab133e6b709c8107dc4f8f62838947350adb8e23d76b8c2c592ff4c09bc956ef)
- Windows amd64 (checksum / bc37d5d283e57c5dfa94f92ff704c8e273599ff8df3f8132cef5ca73f6a23d0a)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.11.2 is the next patch/bug fix release and will be on March 08, 2023.
- 3.12.0 is the next feature release and be on May 10, 2023.
Helm v3.11.0
Helm v3.11.0 is a feature release. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
- Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
- Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
- Test, debug, and contribute charts: ArtifactHub/packages
Notable Changes
- The Helm status command and the SDK can now show the status of core resources deployed in a chart (e.g., deployments). To use with
helm status
you need to use the--show-resources
flag. - Add support for comma separated values in template --api-versions
- Allow CGO_ENABLED to be overridden when building Helm from source
Installation and Upgrading
Download Helm v3.11.0. The common platform binaries are here:
- MacOS amd64 (checksum / 5a3d13545a302eb2623236353ccd3eaa01150c869f4d7f7a635073847fd7d932)
- MacOS arm64 (checksum / f4717f8d1dab79bace3ff5d9d48bebef62310421fd479205ef54a56204f97415)
- Linux amd64 (checksum / 6c3440d829a56071a4386dd3ce6254eab113bc9b1fe924a6ee99f7ff869b9e0b)
- Linux arm (checksum / cddbef72886c82a123038883f32b04e739cc4bd7b9e5f869740d51e50a38be01)
- Linux arm64 (checksum / 57d36ff801ce8c0201ce9917c5a2d3b4da33e5d4ea154320962c7d6fb13e1f2c)
- Linux i386 (checksum / fad897763f3b965bc4d75c8f95748ebc0330a5859d9ea170a4885571facacdb1)
- Linux ppc64le (checksum / 6481a51095f408773212ab53edc2ead8a70e39eba67c2491e11c4229a251f9b5)
- Linux s390x (checksum / 3c420f13d12ca9e7302715d40a00466a145a2dff7f14714e11a5aeadb1d67919)
- Windows amd64 (checksum / 55477fa4295fb3043835397a19e99a138bb4859fbe7cd2d099de28df9d8786f1)
This release was signed with F126 1BDE 9290 12C8 FF2E 501D 6EA5 D759 8529 A53E
and can be found at @hickeyma keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.11.1 is the next patch/bug fix release and will be on February 08, 2023.
- 3.12.0 is the next feature release and be on May 10, 2023.
Changelog
- Fix improper use of Table request/response to k8s API 472c573 (Matt Farina)
- Check status code before retrying request ee1ec6e (Cenk Alti)
- bump version to v3.11.0 9d8fee1 (Matt Farina)
- Bump containerd to 1.6.15, oras-go to 1.2.2 and image-spec to v1.1.0-rc2 017785a (Luca Comellini)
- change linting error messages for null values in arrays 6a5f240 (Daniel Strobusch)
- Fix after CR 3d81ea2 (Jakub Warczarek)
- Trigger CI f46ff13 (Jakub Warczarek)
- Add test for User-Agent header setting and refactor 553f1e3 (Jakub Warczarek)
- Fix User-Agent header in requests made by Helm 2fa7b3d (Jakub Warczarek)
- Bump k8s.io deps to v0.26.0 1fc2a6a (Luca Comellini)
- fix adopted resource not replaced 3181c7d (Vaibhav Sharma)
- chore(deps): bump github.com/BurntSushi/toml from 1.2.0 to 1.2.1 8774890 (dependabot[bot])
- Resolve conflicts for go.mod and go.sum 6c76abb (Soujanya Mangipudi)
- Fix backwards compatibility b6fef6c (Martin Hickey)
- docs: add docs for cli/values.Options 0fdfe05 (Zuhair AlSader)
- Update chartrepo.go c8890e9 (caixisheng)
- chore(deps): bump golang.org/x/text from 0.4.0 to 0.5.0 b307d0f (dependabot[bot])
- bump sprig version 3.2.3 fda1a0b (yxxhero)
- Update string handling a59e584 (Martin Hickey)
- Update repo handling 256e976 (Martin Hickey)
- improve error message on plugin install 965f859 (Philipp Stehle)
- harmonize URL reference resolving dfb25e1 (Philipp Stehle)
- Update logic of non-git situation just to print warning logs 0ebd620 (Wonyeong Choi)
- Add a flag var to check git is installed or not c027014 (Wonyeong Choi)
- Add support for CSVs in template --api-versions arg 5aa316e (Ryan Drew)
- update .golangci for go1.18 61374f6 (yanggang)
- redirect registry client output to stderr 1535ad5 (Cyril Jouve)
- chore(deps): bump github.com/spf13/cobra from 1.5.0 to 1.6.1 b3afe43 (dependabot[bot])
- Readiness & liveness probes correct port 9d027ea (Peter Leong)
- Update schema validation handling 775af2a (Martin Hickey)
- fix a few function names on comments 09d3f31 (cui fliter)
- use intstr.GetScaledValueFromIntOrPercent instead of the deprecated 9d59d92 (Qifan Shen)
- Updating the deb location for azure cli 70a3df4 (Matt Farina)
- retry http request on temporary errors b5378b3 (Cenk Alti)
- Revert "Tolerate temporary errors from etcdserver" d32c623 (Cenk Alti)
- Updating the repo the azure cli is installed from 9fbf1b3 (Matt Farina)
- Updating to kubernetes 1.25.2 packages 221b0f5 (Matt Farina)
- Allow CGO_ENABLED to be overridden for build 6f6c0d8 (Joe Julian)
- chore(deps): bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0 98077dd (dependabot[bot])
- chore(deps): bump github.com/lib/pq from 1.10.6 to 1.10.7 bfd1890 (dependabot[bot])
- chore(deps): bump github.com/BurntSushi/toml from 1.1.0 to 1.2.0 1478a09 (dependabot[bot])
- chore(deps): bump github.com/rubenv/sql-migrate from 1.1.2 to 1.2.0 4376d2f (dependabot[bot])
- Tolerate temporary errors from etcdserver ebc79fa (Davanum Srinivas)
- update: Optimize the error message 4fcec24 (wujunwei)
- add nil judge for dependency , maintainers validate and some testcase. a7a1117 (wujunwei)
- Fix code style ae828ce (Martin Hickey)
- bump version to v3.10.0 cd809f9 (Matt Farina)
- Addressing review comments - move printing code out of client.go ffa19a4 (Soujanya Mangipudi)
- Addressing review comments: Extend Interface with new InterfaceResources to avoid breaking changes Move change to staus command behind --show-resources flag 20e3577 (Soujanya Mangipudi)
- feat(helm): Supporting helm3 to show up resource names that were deployed as part of release in helm status command 9d5be80 (Soujanya Mangipudi)
- During deletion, explicitly log already deleted resource name. b7c35d2 (Marcin Owsiany)
- fix: add cases.NoLower option for we can get same effect to strings.Title f0037e5 (wujunwei)
- one defer 3b19dde (CI)
- don't change r.CachePath 781ddba (CI)
- avoid adding new public function cd76fcd (CI)
- fix tests 32a41fc (CI)
- fix: clean up temp files in FindChartInAuthAndTLSAndPassRepoURL (#11171) 24fa3d9 (CI)
- Fix URL with encoded path support for ChartDownloader d9e5bbc (Mathieu Parent)
v3.11.0-rc.2
Helm v3.11.0-rc.2 is a pre-release. It is to help gather feedback from the community as well as give users a chance to test Helm in staging environments before v3.11.0 is officially released.
The official changelog will come out with the v3.11.0 release. For now, you can see the commit changes from v3.10.3 here.
Installation and Upgrading
Download Helm v3.11.0-rc.2. The common platform binaries are here:
- MacOS amd64 (checksum / 621ed03c279c337a97cd02796d203e31371272d9bde91fb16e234857fc52f9d2)
- MacOS arm64 (checksum / 3ed0df83e3036f54a115ab3443f659569c153ec4e6170c81c2304a32d3c55121)
- Linux amd64 (checksum / 36709df7eff8d61f9c5790bb4d5113c0108c706e8c8cfdb16fb0a98b8ef3286a)
- Linux arm (checksum / 582115ac05e368591d9948ad241db6b8e9108212e3d1311f371bea574fc8bc05)
- Linux arm64 (checksum / cc043879b15fd97f0a7e11384bdf62b0bfa96448868dbc472a8087620c49c346)
- Linux i386 (checksum / 87a981e22412f1ae51889f4f1ef6010d58d550044d3ac1d5134036b76ba01bf9)
- Linux ppc64le (checksum / a1dcb32c90f69c26809bead59f77ce917099e1666dcf6e1a72ecf7ef9aa39f96)
- Linux s390x (checksum / d24e12bbe51503d48c67d0cb9512bfa2ed7f2f87f1577008ae7d3f26d9f18edd)
- Windows amd64 (checksum / 773afda12011ec5d61366f09c57655f34a35332566d2742bb1f217ab04605de2)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
v3.11.0-rc.1
NOTICE: This release candidate has a known regression. Details available at #11712
Helm v3.11.0-rc.1 is a pre-release. It is to help gather feedback from the community as well as give users a chance to test Helm in staging environments before v3.11.0 is officially released.
The official changelog will come out with the v3.11.0 release. For now, you can see the commit changes from v3.10.3 here.
Installation and Upgrading
Download Helm v3.11.0-rc.1. The common platform binaries are here:
- MacOS amd64 (checksum / ef9cddfb6a04e002c6f53cdc859c45602c33e8dcb55af02bc77fa6d0aaf0c18b)
- MacOS arm64 (checksum / f938b519507ce9d7364ff335a1b66771a837cd226f92e989042b357afc4e9d51)
- Linux amd64 (checksum / efc1b0b79bc84dcd3a12c3293c47fd9a2990fe35bf8c7857719efe026d9725b2)
- Linux arm (checksum / 1f3885dbb2bd84a2dd21158ea2a404c188876faf00405e765511ccf9e43a614d)
- Linux arm64 (checksum / a57a727f6db665b2ecea1e8cef3f72a835f82dae5676aaab10c0865f2c803500)
- Linux i386 (checksum / c439353517e864de6fc044a55706d757eecec09bb70d74f1b6338a2fa0487543)
- Linux ppc64le (checksum / 16ddcfa158babccaa575e2e71d0ff2224c5c5a79b8f2390fdb2827f06310efef)
- Linux s390x (checksum / 014b07e2d3e6374e397ff155039cce33b6d8462420b649e7c4bdaa4fab178e5e)
- Windows amd64 (checksum / 39d96ecb793c862aad19487e08043a9aedb1392010fdfec539b7bcceed062cb0)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
Helm v3.10.3
v3.10.3
Helm v3.10.3 is a security (patch) release. Users are strongly recommended to update to this release.
While fuzz testing Helm, provided by the CNCF:
- a possible stack overflow was discovered with the strvals package. Stack overflow cannot be recovered from in Go. This can potentially be used to produce a denial of service (DOS) for SDK users. More details are available in the advisory.
- a possible segmentation violation was discovered with the repo package. Some segmentation violations cannot be recovered from in Go. This can potentially be used to produce a denial of service (DOS) for SDK users. More details are available in the advisory.
- a possible segmentation violation was discovered with the chartutil package. This can potentially be used to produce a denial of service (DOS) for SDK users. More details are available in the advisory
The community keeps growing, and we'd love to see you there!
- Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
- Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
- Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading
Download Helm v3.10.3. The common platform binaries are here:
- MacOS amd64 (checksum / 77a94ebd37eab4d14aceaf30a372348917830358430fcd7e09761eed69f08be5)
- MacOS arm64 (checksum / 4f3490654349d6fee8d4055862efdaaf9422eca1ffd2a15393394fd948ae3377)
- Linux amd64 (checksum / 950439759ece902157cf915b209b8d694e6f675eaab5099fb7894f30eeaee9a2)
- Linux arm (checksum / dca718eb68c72c51fc7157c4c2ebc8ce7ac79b95fc9355c5427ded99e913ec4c)
- Linux arm64 (checksum / 260cda5ff2ed5d01dd0fd6e7e09bc80126e00d8bdc55f3269d05129e32f6f99d)
- Linux i386 (checksum / 592e98a492cb782aa7cd67e9afad76e51cd68f5160367600fe542c2d96aa0ad4)
- Linux ppc64le (checksum / 93cdf398abc68e388d1b46d49d8e1197544930ecd3e81cc58d0a87a4579d60ed)
- Linux s390x (checksum / 6cfa0b9078221f980ef400dc40c95eb71be81d14fdf247ca55efedb068e1d4fa)
- Windows amd64 (checksum / 5d97aa26830c1cd6c520815255882f148040587fd7cdddb61ef66e4c081566e0)
This release was signed with F126 1BDE 9290 12C8 FF2E 501D 6EA5 D759 8529 A53E
and can be found at @hickeyma keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.11.0 is the next feature release and will be on January 18, 2023.
Changelog
Helm v3.10.2
Helm v3.10.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
- Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
- Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
- Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading
Download Helm v3.10.2. The common platform binaries are here:
- MacOS amd64 (checksum / e889960e4c1d7e2dfdb91b102becfaf22700cb86dc3e3553d9bebd7bab5a3803)
- MacOS arm64 (checksum / 460441eea1764ca438e29fa0e38aa0d2607402f753cb656a4ab0da9223eda494)
- Linux amd64 (checksum / 2315941a13291c277dac9f65e75ead56386440d3907e0540bf157ae70f188347)
- Linux arm (checksum / 25af344f46348958baa1c758cdf3b204ede3ddc483be1171ed3738d47efd0aae)
- Linux arm64 (checksum / 57fa17b6bb040a3788116557a72579f2180ea9620b4ee8a9b7244e5901df02e4)
- Linux i386 (checksum / ac9cbef2ec1237e2723ee8d3a92d1c4525a2da7cecc11336ba67de9bb6b473f0)
- Linux ppc64le (checksum / 53a578b84155d31c3e62dd93a88586b75e876dae82c7912c895ee5a574fa6209)
- Linux s390x (checksum / 33cb4a3382bea6bcd7eb7f385dd08941bdc84d0020345951eb467fbc8f5ccb60)
- Windows amd64 (checksum / f1a3190adecc26270bbef4f3ab2d1a56509f9d8df95413cdd6e3151f6f367862)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.10.3 will contain only bug fixes and be released on December 14, 2022
- 3.11.0 is the next feature releaseand be released on January 18, 2023
Changelog
Helm 3.10.1
Helm v3.10.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
- Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
- Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
- Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading
Download Helm v3.10.1. The common platform binaries are here:
- MacOS amd64 (checksum / e7f2db0df45a5011c1df8c82efde1e306a93a31eba4696d27cd751917e549ac6)
- MacOS arm64 (checksum / 28a079a61c393d125c5d5e1a8e20a04b72c709ccfa8e7822f3f17bb1ad2bbc22)
- Linux amd64 (checksum / c12d2cd638f2d066fec123d0bd7f010f32c643afdf288d39a4610b1f9cb32af3)
- Linux arm (checksum / 309f56a35185023262b4f20f7315d4e60854b517243444b34f5a458c81b33009)
- Linux arm64 (checksum / d04b38d439ab8655abb4cb9ccc1efa8a3fe95f3f68af46d9137c6b7985491833)
- Linux i386 (checksum / fb75a02d8a6e9ba6dd458f47dc0771a0f15c1842b6f6e2928c9136e676657993)
- Linux ppc64le (checksum / 855ab37613b393c68d50b4355273df2322f27db08b1deca8807bac80343a8a64)
- Linux s390x (checksum / e51220b4582a3cad4b45330c96e1b0408d33e25f90a9e66b06649903acf1bed1)
- Windows amd64 (checksum / 4c6f89f005a86665e3e90c28d36446434945594aac960a8d5a2d1c4fb1e53522)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.10.2 will contain only bug fixes and be released on November 9, 2022
- 3.11.1 is the next feature releaseand be released on January 18, 2023
Changelog
- Updating the deb location for azure cli 9f88ccb (Matt Farina)
- Updating the repo the azure cli is installed from a59afc4 (Matt Farina)
- Updating to kubernetes 1.25.2 packages 35af809 (Matt Farina)
- one defer 97780c7 (CI)
- don't change r.CachePath 9f61b0a (CI)
- avoid adding new public function 75a1369 (CI)
- fix tests 959acd8 (CI)
- fix: clean up temp files in FindChartInAuthAndTLSAndPassRepoURL (#11171) f6830f7 (CI)
- Allow CGO_ENABLED to be overridden for build 9140924 (Joe Julian)
- update: Optimize the error message 23ff142 (wujunwei)
- add nil judge for dependency , maintainers validate and some testcase. f22e260 (wujunwei)
- Fix URL with encoded path support for ChartDownloader 4e07531 (Mathieu Parent)
- fix: add cases.NoLower option for we can get same effect to strings.Title 4844431 (wujunwei)
- Tolerate temporary errors from etcdserver 802a229 (Davanum Srinivas)
Helm 3.10.0
Helm v3.10.0 is a feature release. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
- Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
- Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
- Test, debug, and contribute charts: ArtifactHub/packages
Notable Changes
- Added --set-json flag to set json values.
- Added support
helm list --no-headers
- Added --burst-limit option for client-side throttling limit configuration
Installation and Upgrading
Download Helm v3.10.0. The common platform binaries are here:
- MacOS amd64 (checksum / 1e7fd528482ac2ef2d79fe300724b3e07ff6f846a2a9b0b0fe6f5fa05691786b)
- MacOS arm64 (checksum / f7f6558ebc8211824032a7fdcf0d55ad064cb33ec1eeec3d18057b9fe2e04dbe)
- Linux amd64 (checksum / bf56beb418bb529b5e0d6d43d56654c5a03f89c98400b409d1013a33d9586474)
- Linux arm (checksum / 1f756a2ea800dafb92fb77acc016220fdedee2be07630befd5ffd1410062b39c)
- Linux arm64 (checksum / 3b72f5f8a60772fb156d0a4ab93272e8da7ef4d18e6421a7020d7c019f521fc1)
- Linux i386 (checksum / 423159a7f49f1719dab78f78113ac5d8deae21f99491e79984c6363ae668428d)
- Linux ppc64le (checksum / 90f49ef742bf36480b46073a11ca4244670e74f530bf507b488180fbf7334ef3)
- Linux s390x (checksum / f80733880529148c80f864cdb2d83ef26401b83176b8f4744ecddf4589cb4991)
- Windows amd64 (checksum / 9d841d55eb7cd6e07be0364bbfa85bceca7e184d50b43b13d20f044403937309)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.10.1 will contain only bug fixes and be released on October 12, 2022.
- 3.11.0 is the next feature release and will be released on January 18, 2023
Changelog
- bump version to v3.10.0 ce66412 (Matt Farina)
- Updating to Kubernetes 1.25 client libs 2108a23 (Matt Farina)
- Updating the certificates used for testing 7cbec35 (Matt Farina)
- Updating index handling 225f8d7 (Matt Farina)
- Drop direct github.com/docker/docker dependency ea5365a (Mikhail Mazurskiy)
- fix special string in the filename ece46c1 (d-d-up)
- chore: add oci install description d1c0b7e (longkai)
- Fixing x509 test on darwin b3aa0b4 (Matt Farina)
- Bump k8s.io/kube-openapi to fix CVE-2022-1996 in github.com/emicklei/go-restful 1e0f8a4 (Guilherme Macedo)
- fixes #11142 missing array length check on release b9f347a (Arvid E. Picciani)
- chore(deps): bump github.com/stretchr/testify from 1.7.5 to 1.8.0 0c9de28 (dependabot[bot])
- Upgrading to Kubernetes 1.24.2 211bd2b (Martin Hickey)
- Bump Oras to 1.2.0 51e6c8e (Martin Hickey)
- fix: use
go install
instead ofgo get
aa6e82b (Matthew Fisher) - bump Go 1.18 39b0a82 (yxxhero)
- fix: improve logging & safety of statefulSetReady 7c74f1d (Dominic Evans)
- make token caching an opt in feature 42a04c7 (Soule BA)
- chore(deps): bump github.com/stretchr/testify from 1.7.4 to 1.7.5 0acd81b (dependabot[bot])
- chore(deps): bump github.com/rubenv/sql-migrate from 1.1.1 to 1.1.2 ccc104a (dependabot[bot])
- chore(deps): bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#11075) 3ff331f (dependabot[bot])
- chore(deps): bump github.com/stretchr/testify from 1.7.1 to 1.7.4 994d786 (dependabot[bot])
- Upgrading to Kubernetes 1.24.1 packages 5ef01c2 (Matt Farina)
- chore(deps): bump github.com/Masterminds/squirrel from 1.5.2 to 1.5.3 fe2a66c (dependabot[bot])
- feat(*): add flags/env for kube api tls overrides 687852e (Justen Walker)
- Add --burst-limit option for client-side throttling limit configuration (#10842) 823d929 (Igor Sutton)
- chore(deps): bump github.com/lib/pq from 1.10.5 to 1.10.6 f3cfd4f (dependabot[bot])
- chore(deps): bump oras.land/oras-go from 1.1.0 to 1.1.1 a3bb2f7 (dependabot[bot])
- chore(deps): bump github.com/evanphx/json-patch 606633c (dependabot[bot])
- Bump github.com/lib/pq from 1.10.4 to 1.10.5 ede591f (dependabot[bot])
- build(deps): bump github.com/containerd/containerd from 1.6.3 to 1.6.4 8b69048 (dependabot[bot])
- build(deps): bump github.com/docker/docker 67ed6e2 (dependabot[bot])
- bump version to v3.9.0 1db28a2 (Matt Farina)
- build(deps): bump github.com/jmoiron/sqlx from 1.3.4 to 1.3.5 43aa313 (dependabot[bot])
- Bump github.com/BurntSushi/toml from 1.0.0 to 1.1.0 aafc920 (dependabot[bot])
- Fixed helm uninstall not deleting the resource. fe00c92 (Mayank Thakur)
- Fix UT d8c0e01 (stan-sz)
- Fix linter 6c55d9e (stan-sz)
- Update install.go a7e4ae7 (stan-sz)
- Log error message on failed download 660e4ff (stan-sz)
- Add support
helm list --no-headers
d76f86b (suzaku) - update go.mod d20c954 (yxxhero)
- fix --registry-config issue 9f199b6 (yxxhero)
- feat: add --set-json flag to set json values. 11e7d0c (Luca Di Rocco)
- fix(helm): ignore file-not-found error for
helm repo list -o json
94779dc (Teo Klestrup Röijezon)
v3.10.0-rc.1
Helm v3.10.0-rc.1 is a pre-release. It is to help gather feedback from the community as well as give users a chance to test Helm in staging environments before v3.10.0 is officially released.
The official changelog will come out with the v3.10.0 release. For now, you can see the commit changes from v3.9.4 here.
Installation and Upgrading
Download Helm v3.10.0-rc.1. The common platform binaries are here:
- MacOS amd64 (checksum / 2ce483064fee06e48756115ed9d2d62b6c74104e0c5a9dd4d29802545f4a4f28)
- MacOS arm64 (checksum / 2154a39ec4647d724afb4c3732022824edb71d073e5ec6921f0493789617341e)
- Linux amd64 (checksum / 4fccac0d84ec8a4234c9c8f0d94da286a2b6a9d64f1db525087ed18f01c67c91)
- Linux arm (checksum / 0cf99f0469b08ab47a60fe238f1384e00344ea9a0531859018164e498536b162)
- Linux arm64 (checksum / eea67a14df86c902838e84ee3764f0bbf505b6265989c1c80bfaeb7334da161c)
- Linux i386 (checksum / f39a23aa87f47f91f7435ba46c948fe8da074d0ce4491bda69cced53cbb1773d)
- Linux ppc64le (checksum / fe4b7b1b0fc8072c035bb5b0cacc78ad815eb458ba0cc050dd7f702740e9a133)
- Linux s390x (checksum / dfab87715c939d350f3813bb5180e6b3bf6c8089f4f56db86c1c3bf663b040e1)
- Windows amd64 (checksum / 46cd3ea0c2f3cd98fb1cb0773b5b4057639b9d4ab8067d006d74f067b1c4e625)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
Helm 3.9.4
Helm v3.9.4 is a security (patch) release. Users are strongly recommended to update to this release.
While fuzz testing Helm, provided by the CNCF, a possible out of memory panic was discovered with the strvals package. Out of memory panics cannot be recovered from in Go. This can potentially be used to produce a denial of service (DOS). More details are available in the advisory.
The community keeps growing, and we'd love to see you there!
- Join the discussion in Kubernetes Slack:
- for questions and just to hang out
- for discussing PRs, code, and bugs
- Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
- Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading
Download Helm v3.9.4. The common platform binaries are here:
- MacOS amd64 (checksum / fe5930feca6fd1bd2c57df01c1f381c6444d1c3d2b857526bf6cbfbd6bf906b4)
- MacOS arm64 (checksum / a73d91751153169781b3ab5b4702ba1a2631fc8242eba33828b5905870059312)
- Linux amd64 (checksum / 31960ff2f76a7379d9bac526ddf889fb79241191f1dbe2a24f7864ddcb3f6560)
- Linux arm (checksum / 18ce0f79dcd927fea5b714ca03299929dad05266192d4cde3de6b4c4d4544249)
- Linux arm64 (checksum / d24163e466f7884c55079d1050968e80a05b633830047116cdfd8ae28d35b0c0)
- Linux i386 (checksum / a37b0070e2f072050fdf4bd7430ffbe55390fee410eb0781cd01a0fe206eb963)
- Linux ppc64le (checksum / c63a951415c192397fda07c2f52aa60639b280920381c48d58be6803eb0c22f9)
- Linux s390x (checksum / 7fec97fa800d9bd981e2f42fb0908175db1f35da2d373a971ec7376fe4cb5451)
- Windows amd64 (checksum / 7cdc1342bc1863b6d5ce695fbef4d3b0d65c7c5bcef6ec6adf8fc9aa53821262)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
What's Next
- 3.10.0 is the next feature release and will be on September 14, 2022