The Kubernetes Package Manager
Helm v3.11.1 is a security (patch) release. Users are strongly recommended to update to this release.
The template function getHostByName
can be used to disclose information. More details are available in the CVE.
This release introduces a breaking changes to Helm:
helm
client for the template
, install
, and upgrade
commands there is a new flag. --enable-dns
needs to be set for the getHostByName
template function to attempt to lookup an IP address for a given hostname. If the flag is not set the template function will return an empty string and skip looping up an IP address for the host.EnableDNS
property to the install action, the upgrade action, and the Engine
. This property must be set to true for the in order for the getHostByName
template function to attempt to lookup an IP address.The default for both of these cases is false.
Philipp Stehle at SAP disclosed the vulnerability to the Helm project.
Download Helm v3.11.1. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
Helm v3.11.0 is a feature release. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
helm status
you need to use the --show-resources
flag.Download Helm v3.11.0. The common platform binaries are here:
This release was signed with F126 1BDE 9290 12C8 FF2E 501D 6EA5 D759 8529 A53E
and can be found at @hickeyma keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
Helm v3.11.0-rc.2 is a pre-release. It is to help gather feedback from the community as well as give users a chance to test Helm in staging environments before v3.11.0 is officially released.
The official changelog will come out with the v3.11.0 release. For now, you can see the commit changes from v3.10.3 here.
Download Helm v3.11.0-rc.2. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
NOTICE: This release candidate has a known regression. Details available at https://github.com/helm/helm/issues/11712
Helm v3.11.0-rc.1 is a pre-release. It is to help gather feedback from the community as well as give users a chance to test Helm in staging environments before v3.11.0 is officially released.
The official changelog will come out with the v3.11.0 release. For now, you can see the commit changes from v3.10.3 here.
Download Helm v3.11.0-rc.1. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
Helm v3.10.3 is a security (patch) release. Users are strongly recommended to update to this release.
While fuzz testing Helm, provided by the CNCF:
The community keeps growing, and we'd love to see you there!
Download Helm v3.10.3. The common platform binaries are here:
This release was signed with F126 1BDE 9290 12C8 FF2E 501D 6EA5 D759 8529 A53E
and can be found at @hickeyma keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
Helm v3.10.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
Download Helm v3.10.2. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
Helm v3.10.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
Download Helm v3.10.1. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
Helm v3.10.0 is a feature release. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
helm list --no-headers
Download Helm v3.10.0. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.
go install
instead of go get
aa6e82bac8db0b50766c03276dd0fed1bba6208c (Matthew Fisher)helm list --no-headers
d76f86b01ccf734a134c99a6823bd435eb4401d8 (suzaku)helm repo list -o json
94779dc99f266adde81882412ee944072da3b136 (Teo Klestrup Röijezon)Helm v3.10.0-rc.1 is a pre-release. It is to help gather feedback from the community as well as give users a chance to test Helm in staging environments before v3.10.0 is officially released.
The official changelog will come out with the v3.10.0 release. For now, you can see the commit changes from v3.9.4 here.
Download Helm v3.10.0-rc.1. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
Helm v3.9.4 is a security (patch) release. Users are strongly recommended to update to this release.
While fuzz testing Helm, provided by the CNCF, a possible out of memory panic was discovered with the strvals package. Out of memory panics cannot be recovered from in Go. This can potentially be used to produce a denial of service (DOS). More details are available in the advisory.
The community keeps growing, and we'd love to see you there!
Download Helm v3.9.4. The common platform binaries are here:
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E
and can be found at @mattfarina keybase account. Please use the attached signatures for verifying this release using gpg
.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash
.