MLE-24161: Releasing MarkLogic Kubernetes Operator 1.1.0 #113
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Merge main back to develop
MLE-20186 bug for update label and annotation
MLE-19837 add blackduck scans
MLE-21335/Add httponly attribute
* MLE-21222: Support to add ServiceAccountName * add description in manifests * Fix Service Account Not Assigned Issue * update service account implementation by review * add delete logic after test is done * add debug information for minikube version * fix the missing RBAC --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-21691: fix bug for service not updated when added new port * Fix Labels --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-20428: add labels and annotation in group level * delete annotation used for kubectl apply * Fix the issue with HAProxy Label * Working Solution * fix haproxy selector * fix update for haproxy service * fix issue with haproxy updated after creation * fix haproxy deployment label update * fix label for all services * remove debug logging * fix the bug with update panic * fix group level label not prompt to services * update the Helm CRD * Fix Unit Test Failuer * tidy code * add comment out back * remove excess logging * uncomment the logic in predicate * improve timeout for testing * Fix typo * add label and annotation sample for complete.yaml --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-22135: change liveness probe * add retry logic to group configuration * update haproxy image * adjust testing time * update marklogic image version * remove image * update image version in Jenkins * fix makefile for pipeline * fix validate rule and image load * push changes from build * MLE-22902: fix operator pipeline bug * ignore docker cache * fix validating rule * add debug message for Jenkins Pipeline * fix test with bug: index out of range [0] with length 0 * fix test bug with index out of range [1] with length 1 * add debug info * revert changes back to makefile * uncomment changes --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-22946: Fix the bug of cluster level labels propagate from other cluster. * Update pkg/k8sutil/service.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update pkg/k8sutil/context.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update pkg/k8sutil/context.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * revert copilot changes * Fix bug MLE-23487: Log Collection Default Value Override * MLE-23487 default values for LogCollection * MLE-23484: Fix Log Collection Test Failure * add retry for the Loki Grafana query --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
…ntToken-to-false MLE-21295: Enforce automountServiceAccountToken=false
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
* fluent-bit config changed to use YAML format * added copilot suggested changes
MLE-23812/BUG-fluentBit-Logs-volume
MLE-20489/BUG-CWE-fix
* remove unused code and add comments * the non pathbased works for app server * support for pathbased routing * fix typo * fix bugs for pathbased routing * add TCP implementation * fix null pointer issue * fix nil pointer issue * add HAProxyGroup * Fix bug in TCP config have wrong number of backend servers * Update pkg/k8sutil/haProxyHelper.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * update format * fix bug pointed by Copilot --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com> Co-authored-by: Romain Winieski <winieski@progress.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
…g-fix MLE-24682 network filtering fix
…caled down to 0 replicas (#104) * MLE-24840: fix bug when scale node to 0 failed * fix context issue --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* Add publishing step and enable scheduled builds * move blackduck scan after publishing * Ensure we run container scan when we publish, otherwise just the source --------- Co-authored-by: Vitaly Korolev <vitaly.korolev@marklogic.com>
* MLE-24871: upgrade go version and dependency version for security fix * add change for docker file * update the VERSION to 1.1.0 * MLE-24842: Fix security Vulnerability issue with The Kubernetes container requests the NET_RAW capability * MLE-24842: Fix security issue with The Kubernetes container is allowed to run as the root user * Fix linting issue * Fix test issue * Change the Kubernetes Version to 1.31.13 * change the Kubernetes version to 1.31.13 * change env_Kubernetes Version * add MINIKUBE_HOME to Jenkins Environment * Update the notice file based on go.mod --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
#107) * added new Copyright line in the files * Update api/v1/common_types.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update internal/controller/marklogicgroup_controller.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update pkg/k8sutil/haProxy.go Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * added Copyright message to test data files --------- Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
removed duplicate import of "reflect" package causing test failure.
Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-24871: update default MarkLogic Image version to 12 * update defualt image for minimal-production.yaml --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-25053: update the readme for Operator 1.1 * update fluent-bit to latest 4.1.1 * update sample config files * fix error in kustomization file * update readme for known issue regarding fluent-bit * remove unneeded files * update the docker-build script * update the fluent-bit version to 4.1.1 * add back hugespages2Mi: "24Gi" --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
* MLE-25068: Support extra config for fluent-bit * MLE-25068: Support Extra Configuration for Log Collection * Fix handling indentation for log collection * MLE-25101: Fix AdditionalVolumeMount does not mount to Fluent-bit Correctly --------- Co-authored-by: Peng Zhou <peng.zhou@progress.com>
barkhachoithani
requested review from
Copilot,
pengzhouml,
rwinieski,
sumanthravipati and
vitalykorolev
Contributor
There was a problem hiding this comment.
Pull Request Overview
This PR releases MarkLogic Kubernetes Operator version 1.1.0, introducing security enhancements, dependency updates, and operational improvements. Key changes include command injection prevention, updated library versions, and enhanced testing capabilities.
Key Changes:
- Security hardening with input validation functions to prevent command injection vulnerabilities
- Updated Go version (1.23.6 → 1.24.9) and Kubernetes dependencies (0.32.1 → 0.34.1)
- Fluent Bit image update (3.2.5 → 4.1.1) with YAML-based configuration format
Reviewed Changes
Copilot reviewed 99 out of 106 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
| go.mod | Updates Go version and Kubernetes dependencies to latest versions |
| test/utils/utils.go | Adds input validation functions to prevent command injection attacks |
| test/utils/certs.go | Refactors certificate generation to use safer command execution patterns |
| pkg/k8sutil/statefulset.go | Adds service account support and improves reconciliation logic |
| pkg/k8sutil/configmap.go | Migrates Fluent Bit configuration from INI to YAML format |
| config/samples/*.yaml | Updates default MarkLogic and Fluent Bit image versions |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
sumanthravipati
approved these changes
Nov 12, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.