kollect 0.5.0-rc.1
0.5.0-rc.1 - 2026-06-07
Bug Fixes
-
build: Upgrade alpine packages in UI image for Trivy 45d08ce
-
ci: Stop perf-report writing agent-context in CI 5ee2088
-
ui: Disambiguate Playwright inventory row locator f422a78
-
ci: Stabilize nightly Playwright and perf-report b6ea35f
Features
- api: ADR-0416 sink config layering dcc5fa9
Container image (operator)
ghcr.io/konih/kollect:0.5.0-rc.1
Multi-arch (linux/amd64, linux/arm64), Debian bookworm-slim nonroot base (includes git and openssh-client for spec.git.engine: cli).
OCI attestations (SBOM + SLSA provenance) are attached in GHCR and on the repository
Attestations page. Verify the signature:
cosign verify \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--certificate-identity-regexp '^https://github.com/konih/kollect/.+' \
ghcr.io/konih/kollect@sha256:a06464989768c266713824390e2fd4497b0cf28ab30ed88a68d97ec0858dfe85Container image (kollect-ui)
Optional read-only UI SPA — enable with Helm ui.enabled=true.
ghcr.io/konih/kollect-ui:0.5.0-rc.1
Multi-arch (linux/amd64, linux/arm64), nginx alpine static server.
cosign verify \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--certificate-identity-regexp '^https://github.com/konih/kollect/.+' \
ghcr.io/konih/kollect-ui@sha256:22fa74946e4211577fb7030d2d185368bd4366b1f86e712d3b3c68c902ed18a6Install (Kustomize)
kubectl apply -f install-crds.yaml
kubectl apply -f install.yamlInstall (Helm — OCI)
helm upgrade --install kollect oci://ghcr.io/konih/kollect \
--version 0.5.0-rc.1 \
--namespace kollect-system \
--create-namespace \
--set image.repository=ghcr.io/konih/kollect \
--set image.tag=0.5.0-rc.1 \
--set ui.image.tag=0.5.0-rc.1Install (Helm — GitHub Release tarball)
helm upgrade --install kollect kollect-0.5.0-rc.1.tgz \
--namespace kollect-system \
--create-namespace \
--set image.repository=ghcr.io/konih/kollect \
--set image.tag=0.5.0-rc.1 \
--set ui.image.tag=0.5.0-rc.1Verify checksums with sha256sum -c checksums.txt. Each release asset includes a
<file>.sigstore.json Sigstore bundle; release-provenance.intoto.jsonl attests all assets.
See docs/RELEASE.md.