Secrets Store Csi Driver Versions Save

Secrets Store CSI driver for Kubernetes secrets - Integrates secrets stores with Kubernetes via a CSI volume.

v1.4.3

1 month ago

v1.4.3 - 2024-04-17

Changelog

Bug Fixes 🐞

  • d84a7a1 fix: support more than one linux.crds.annotations in helm charts

Continuous Integration 💜

  • 03dd391b ci: add govulncheck

Maintenance 🔧

  • aa75fe5f chore: bump version to v1.4.3 in release-1.4
  • 3c3889a8 chore: update debian-base to bookworm-v1.0.2

Security Fix 🛡️

  • 412c477d security: bump golang.org/x/net to v0.23.0+ to fix GO-2024-2687
  • 9ee78b87 security: bump kubectl to v1.29.3 in driver-crds for CVE-2024-24786

v1.4.2

2 months ago

v1.4.2 - 2024-03-11

Changelog

Maintenance 🔧

  • 9039cc90 chore: bump version to v1.4.2 in release-1.4
  • 9fd198c3 chore: update node-driver-registrar:v2.10.0, livenessprobe:v2.12.0
  • b303fae0 chore: update debian-base to bookworm-v1.0.1

v1.4.1

4 months ago

v1.4.1 - 2024-01-16

Changelog

Continuous Integration 💜

  • 10b07c1c ci: remove low quota regions for aks windows job
  • d4e169bf ci: remove aks-engine job templates
  • 80637cac ci: add script for aks windows cluster

Maintenance 🔧

  • 2884c1d2 chore: bump version to v1.4.1 in release-1.4
  • b9101a72 chore: update to go 1.21.6 in docker

Security Fix 🛡️

  • eb644a30 security: bump golang.org/x/crypto to v0.17.0 to fix CVE-2023-48795

v1.4.0

5 months ago

v1.4.0 - 2023-11-20

Breaking Changes ⚠️

  • total_ prefix in the metrics name has been dropped as part of the latest otel bump in the driver. For Prometheus counters, by default the otel library appends total suffix.
    • total_rotation_reconcile -> rotation_reconcile_total
    • total_rotation_reconcile_error -> rotation_reconcile_error_total
    • total_node_publish -> node_publish_total
    • total_node_unpublish -> node_unpublish_total
    • total_node_publish_error -> node_publish_error_total
    • total_node_unpublish_error -> node_unpublish_error_total
    • total_sync_k8s_secret -> sync_k8s_secret_total

Changelog

Bug Fixes 🐞

  • 604019ce fix: make manifest diff
  • a1380ba0 fix: update nodeserver publish logs
  • cdf0b778 fix: put annotations in right position of daemonset
  • bb1815ab fix: escape dot in target path regex
  • 97d34520 fix: fix CVE-2022-32149 and CVE-2022-27664 (#1059)
  • d98c93cb fix: handles pfx certs in k8s secrets sync
  • 9fcdbb2c fix: update base image reference in script
  • ede4c706 fix: sanitize service account tokens in logs
  • 2ee77ca0 fix: use os.Lstat to resolve os.Stat issue in windows
  • 3ae12bd2 fix: remove files before cleanup mount point in unpublish
  • 0af24830 fix: panic when using --log-format-json
  • 830d184a fix: update err variable in defer to prevent err shadowing
  • c452ac46 fix: add unit test to validate error shadowed bug

Code Refactoring 💎

  • b0af2b93 refactor: use NewSharedInformerFactoryWithOptions for new shared informer
  • 14489c70 refactor: update mdbook install and serve

Continuous Integration 💜

  • 35d88b78 ci: [StepSecurity] Apply security best practices
  • 76b329da ci: add codecov.yml
  • 0d4d5a31 ci: update kubernetes versions for staging image tests
  • 47bd3215 ci: enable tests with kubernetes v1.26
  • 12cdcb42 ci: ignore slack badge in markdown link check
  • a3c0e4eb ci: add codeql action
  • 9a120eab ci: bump kubernetes version to v1.25.0
  • f8e3435f ci: bump kind version to v0.14.0
  • d1181e3c ci: add kubernetes 1.24 in e2e matrix
  • ce476721 ci: fix aws eks cluster creation
  • 384db8bb ci: fix markdown link check workflow failures
  • 12d1c991 ci: update kubernetes version matrix in staging e2e workflow
  • 0246e35d ci: update e2e_mock_provider_tests kubernetes versions
  • 2f161323 ci: add goreleaser workflow for release
  • d0e614fd ci: fix shellcheck file paths
  • 00a1445d ci: add markdown-link-check workflow

Documentation 📘

  • d29d8355 docs: mention sig-auth subproject in readme
  • e0e5c06e docs: add openssf badge
  • 905d82bd docs: update reference to registry.k8s.io in release
  • 3864b786 docs: update supported releases - v1.3.x and v1.2.x
  • b8c64cca docs: add security vuln scanning to release mgmt
  • e195c553 docs: update supported releases - v1.2.x and v1.1.x
  • 3787ca2e docs: include security explanations for root/privileged/and pod tokens
  • b55eaeff docs: update instructions on generating release notes
  • c0e97a56 docs: add subPath volume mount limitation
  • 592ad7b5 docs: update supported versions and replace v1alpha1 with v1
  • 8c41c4a1 docs: remove helm repo url change note in install steps
  • 052429b0 docs: add slack badge
  • 95218a6b docs: fix dead links based on errors
  • 0391489d docs: update features and add toc
  • ba364e14 docs: Update helm README.md with linux crd image values (#797)
  • 856ad859 docs: update supported feature by current providers
  • a760c186 docs: fix typo in api version group name
  • ed9ecf3a docs: add design docs and roadmap to website
  • 99aafa5d docs: add project status to docs

Features 🌈

  • 21694f00 feat: add --version flag to print the driver version
  • b4d2608e feat: add default toleration for all taints
  • 34cb4369 feat: Support disabling Helm chart CRD hooks
  • 0723e1ef feat: support provider paths under /var/run
  • 7ac887a5 feat: add token requests client (#805)
  • 4b8c4427 feat: send NodePublishVolumeRequest.VolumeContext in MountRequest to provider

Maintenance 🔧

  • 90565300 chore: bump version to v1.4.0 in release-1.4
  • c4b22eb6 chore: update to go 1.21.4 in docker
  • 7cdb803e chore: update to go 1.21
  • a3fbe36f chore: bump google.golang.org/grpc from 1.49.0 to 1.56.3
  • 2a6ad3c3 chore: bump google.golang.org/grpc in /test/e2eprovider
  • 0de7b339 chore: bump golang.org/x/net from 0.10.0 to 0.17.0 in /hack/tools
  • 41c8819a chore: bump golang.org/x/net from 0.8.0 to 0.17.0
  • 7cf7be92 chore: bump golang.org/x/net from 0.8.0 to 0.17.0 in /test/e2eprovider
  • 97431444 chore: bump actions/checkout from 3.5.3 to 4.0.0
  • a4aa61df chore: bump github/codeql-action from 2.21.2 to 2.21.5
  • dca6d3fc chore: cleanup secretproviderclass status
  • da9fd72b chore: bump github/codeql-action from 2.21.0 to 2.21.2
  • 1b10489c chore: bump k8s.io/code-generator from 0.27.3 to 0.27.4 in /hack/tools
  • 663d733e chore: bump github/codeql-action from 2.20.4 to 2.21.0
  • a4aea02f chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • db8c839c chore: bump github/codeql-action from 2.20.3 to 2.20.4
  • 14952e60 chore: bump github/codeql-action from 2.20.1 to 2.20.3
  • 2403169c chore: update debian-base to bookworm-v1.0.0
  • ca06ac34 chore: bump github/codeql-action from 2.20.0 to 2.20.1
  • 19f5ce22 chore: bump ossf/scorecard-action from 2.1.3 to 2.2.0
  • 61e53b7d chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 3e9a018d chore: bump k8s.io/code-generator from 0.27.2 to 0.27.3 in /hack/tools
  • 47468b82 chore: bump github.com/golangci/golangci-lint in /hack/tools
  • 0d6bd577 chore: bump github/codeql-action from 2.3.6 to 2.20.0
  • f87cf129 chore: bump actions/dependency-review-action from 3.0.4 to 3.0.6
  • fb2ff090 chore: bump actions/checkout from 3.5.2 to 3.5.3
  • d2ac05d6 chore: bump goreleaser/goreleaser-action from 4.2.0 to 4.3.0
  • 49f966f3 chore: bump github/codeql-action from 2.3.3 to 2.3.6
  • 6938b86b chore: bump github.com/golangci/golangci-lint in /hack/tools
  • c8b330c8 chore: bump k8s.io/code-generator from 0.26.4 to 0.27.2 in /hack/tools
  • 6551fe24 chore: bump k8s deps to v1.26.4 (#1254)
  • 7b9e0f92 chore: bump codecov/codecov-action from 3.1.3 to 3.1.4
  • ceb7ec61 chore: bump actions/setup-go from 4.0.0 to 4.0.1
  • 7e5b5dcb chore: bump golang from 79ffe35 to 31a8f92 in /test/e2eprovider
  • 73fd4cc1 chore: bump golang from eaf1267 to 31a8f92 in /docker
  • 26c8cd5c chore: bump github/codeql-action from 2.3.2 to 2.3.3
  • bc0fbbb7 chore: bump step-security/harden-runner from 2.3.1 to 2.4.0
  • 086c6b69 chore: update node-driver-registrar:v2.8.0, livenessprobe:v2.10.0
  • ace8c5a3 chore: bump google.golang.org/grpc in /test/e2eprovider
  • cb49b72e chore: bump k8s.io/klog/v2 from 2.80.1 to 2.100.1 in /test/e2eprovider
  • beb650e2 chore: bump golang from 403f486 to 79ffe35 in /docker
  • 7b4879f5 chore: bump monis.app/mlog from 0.0.2 to 0.0.4 in /test/e2eprovider
  • ca9178e0 chore: bump golang from 403f486 to 79ffe35 in /test/e2eprovider
  • b8555533 chore: bump codecov/codecov-action from 3.1.2 to 3.1.3
  • 4f2eae2d chore: bump github/codeql-action from 2.3.0 to 2.3.2
  • 5743ab30 chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 0b457dfe chore: bump github/codeql-action from 2.2.12 to 2.3.0
  • 0e85ac04 chore: enable gocritic linter and fix errors
  • 1ef0c67f chore: cleanup WritePayloads to be easier to use
  • 23b30d15 chore: allow retries on pre-upgrade hook jobs
  • 7c7b3e5c chore: bump actions/checkout from 3.5.0 to 3.5.2
  • b8069f40 chore: bump github/codeql-action from 2.2.11 to 2.2.12
  • dc4bf061 chore: update to go 1.20
  • 80489056 chore: bump trivy version to v0.39.1
  • 379a4a4f chore: bump kind version to v0.18.0
  • e5828451 chore: bump github/codeql-action from 2.2.9 to 2.2.11
  • 7cce3bb5 chore: updates error message
  • cab63b34 chore: remove unused node name in rotation reconciler
  • 957817e2 chore: remove unused providerVolumePath code paths
  • 34afcef5 chore: bump actions/checkout from 3.4.0 to 3.5.0
  • 76f266a6 chore: bump github.com/golangci/golangci-lint in /hack/tools
  • 8b508b2c chore: bump github/codeql-action from 2.2.7 to 2.2.9
  • adba0786 chore: bump k8s.io/code-generator from 0.26.2 to 0.26.3 in /hack/tools
  • a5562360 chore: bump google.golang.org/protobuf in /hack/tools
  • fa40c798 chore: update golangci-lint to v1.52.1
  • ead9b01d chore: bump github/codeql-action from 2.2.6 to 2.2.7
  • b4e4c6a2 chore: bump actions/checkout from 3.3.0 to 3.4.0
  • f62667cd chore: bump google.golang.org/protobuf in /hack/tools
  • ba9625b8 chore: bump google.golang.org/protobuf in /hack/tools
  • 8d15bd19 chore: bump github/codeql-action from 2.2.5 to 2.2.6
  • 1367ef6b chore: bump k8s.io/code-generator from 0.26.1 to 0.26.2 in /hack/tools
  • 9d23ab49 chore: bump google.golang.org/grpc/cmd/protoc-gen-go-grpc in /hack/tools
  • 686b1dca chore: bump gaurav-nelson/github-action-markdown-link-check
  • c9e9052b chore: bump github/codeql-action from 2.2.4 to 2.2.5
  • 8da23b0b chore: bump golang.org/x/net from 0.4.0 to 0.7.0
  • f62048e2 chore: bump golang.org/x/net from 0.4.0 to 0.7.0 in /hack/tools
  • 8bf3ceac chore: bump golang.org/x/net from 0.4.0 to 0.7.0 in /test/e2eprovider
  • 37b523c8 chore: bump github/codeql-action from 2.2.2 to 2.2.4
  • 79519131 chore: use base and test image from registry.k8s.io
  • bd9efb69 chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 06130f8a chore: bump github/codeql-action from 2.2.1 to 2.2.2
  • bd549ea3 chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 30425134 chore: bump github/codeql-action from 2.1.39 to 2.2.1
  • ebce4e40 chore: bump goreleaser/goreleaser-action from 4.1.0 to 4.2.0
  • 0a3fee2a chore: bump k8s.io/code-generator from 0.26.0 to 0.26.1 in /hack/tools
  • 98ec7184 chore: bump github/codeql-action from 2.1.38 to 2.1.39
  • 143dc717 chore: pin buildx to v0.10.6
  • fe84ebcd chore: bump github/codeql-action from 2.1.37 to 2.1.38
  • 89793673 chore: bump actions/checkout from 3.2.0 to 3.3.0
  • c4229cbc chore: update livenessprobe to v2.9.0
  • 94fc5453 chore: update node-driver-registrar to v2.7.0
  • 42e786e3 chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 1b6d1973 chore: remove windows version 1903, 1909 and 2004 (EOL)
  • 93d0e05f chore: bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0
  • 68c4a7a9 chore: bump github/codeql-action from 2.1.36 to 2.1.37
  • d2398b17 chore: bump actions/checkout from 3.1.0 to 3.2.0
  • df7c1a50 chore: bump k8s.io/code-generator from 0.25.4 to 0.26.0 in /hack/tools
  • d7725150 chore: bump github/codeql-action from 2.1.35 to 2.1.36
  • 7513988e chore: reenable trivy scan for binary
  • 4c1a8f56 chore: use kubectl v1.26.0 in driver-crds
  • da5a280a chore: switch to registry.k8s.io
  • 215e5c2a chore: update node-driver-registrar to v2.6.2
  • 4e6cc573 chore: bump github/codeql-action from 2.1.32 to 2.1.35
  • c60d93f0 chore: bump stefanprodan/helm-gh-pages from 1.6.0 to 1.7.0
  • 6a64a914 chore: bump k8s.io/code-generator from 0.25.3 to 0.25.4 in /hack/tools
  • c9ec3638 chore: bump github/codeql-action from 2.1.31 to 2.1.32
  • 1111a97a chore: use kubectl 1.25.4 in driver-crds
  • ca89feb0 chore: remove k8s.io/kubernetes dep
  • 59473a29 chore: bump github/codeql-action from 2.1.29 to 2.1.31
  • 8778a4c8 chore: update livenessprobe to v2.8.0
  • b12d68a1 chore: bump github/codeql-action from 2.1.28 to 2.1.29
  • 2beee6f3 chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 4776c629 chore: bump k8s.io/code-generator from 0.25.0 to 0.25.3 in /hack/tools
  • 603bb665 chore: bump github.com/golangci/golangci-lint in /hack/tools
  • 358b8a3c chore: bump google.golang.org/protobuf in /hack/tools
  • 75b11347 chore: bump actions/checkout from 2 to 3
  • 6841c6df chore: bump sigs.k8s.io/kustomize/kustomize/v4 in /hack/tools
  • f6021d8b chore: bump goreleaser/goreleaser-action from 2.8.1 to 3.2.0
  • d3e42601 chore: adds ok-to-test label on dependabot prs
  • 8a52d335 chore: bump github.com/golangci/golangci-lint in /hack/tools
  • c8fc68f2 chore: bump stefanprodan/helm-gh-pages from 1.4.1 to 1.6.0
  • 57a5cb9a chore: bump gaurav-nelson/github-action-markdown-link-check
  • 762f81fa chore: add dependabot.yml
  • e3ed2f2c chore: use kubectl 1.25.x in driver-crds
  • f9386721 chore: update golangci-lint to v1.49.0
  • 6fda3504 chore: run apt update && apt upgrade -y in dockerfile
  • 0dc8c0fc chore: support kubernetes v1.25.0
  • 980a5398 chore: remove psp
  • f020bdfc chore: update debian-base to bullseye-v1.4.2
  • 56802413 chore: update k8s deps to v0.24.4
  • 4be2208e chore: update to go 1.19
  • e272dc9a chore: update debian-base to bullseye-v1.4.1
  • efb3274a chore: update debian-base to bullseye-v1.4.0
  • 27032f61 chore: update boilerplate for the generated proto files
  • fe049c3e chore: use google.golang.org/protobuf and regenerate proto
  • a95f0e59 chore: update kustomize to v4
  • 1d264d2e chore: update tools dependencies and generate manifests
  • e0f18506 chore: update kubernetes deps to v1.24.1
  • 5ddc9693 chore: add crds.podLabels for helm hook jobs (#962)
  • d70d198e chore: update debian-base to bullseye-v1.3.0
  • a48fddee chore: bump node-driver-registrar:v2.5.1 and livenessprobe:v2.7.0
  • 68ef4714 chore: bump kind version to v0.13.0 to support kubernetes v1.24
  • 75d28a44 chore: update pull request template
  • 1faac89f chore: change default to /var/run for providers path
  • e6cc3d52 chore: upgrade makefile test binary versions
  • 4b09e85c chore: upgrade to go 1.18
  • 1ec0f8bc chore: remove deprecated minimumProviderVersions in helm chart
  • b46dfcb3 chore: make token requests conditional for v1.20+
  • 37f55b2b chore: bump node-driver-registrar:v2.5.0 and livenessprobe:v2.6.0
  • ca257a83 chore: mark v1alpha1 api version as deprecated
  • ae872432 chore: remove old helm packages and index
  • ccb9fa47 chore: updates trivy command
  • a5966246 chore: log invalid key in error
  • dac5381d chore: update debian-base to bullseye-v1.1.0
  • f694be21 chore: bump node-driver-reegistrar image to v2.4.0
  • 97507719 chore: remove deprecated --filtered-watch-secret flag
  • c78559ef chore: bump livenessprobe image to v2.5.0
  • 2b27e0c8 chore: upgrade kubernetes deps
  • 60692157 chore: use TARGETARCH for image build and makefile update
  • e1f143c6 chore: use corev1 as import alias instead of v1

Security Fix 🛡️

  • d3a4a98c security: bump kubernetes version to v1.27.0 in driver-crds
  • 369ab7ba security: fix CVE-2022-41717
  • fe26e98a security: fix CVE-2022-27664
  • 586ff3fe security: fix CVE-2022-27664
  • e24efb7f security: fix multiple CVEs
  • 0dde850d security: fix CVE-2022-37434
  • 2d85ba66 security: fix CVE-2022-1996
  • 94077a62 security: fix multiple CVEs
  • 3bfd4f27 security: fix CVE-2022-29526
  • ce8133d2 security: fix CVE-2021-4209
  • 9357134b security: fix CVE-2022-1996
  • 0c70232e security: fix CVE-2022-34903
  • 6152bf16 security: fix CVE-2022-2068
  • 84f8b21b security: fix CVE-2022-1664
  • 860c83e3 security: fix CVE-2022-1292
  • 28a14d20 security: fix CVE-2022-1271
  • f4b9d0f5 security: fix CVE-2018-25032 and update to debian-base:bullseye-v1.2.0
  • 5a34967d security: fix CVEs
  • b558858b security: fix CVE-2022-0778, CVE-2021-4160
  • e6d1c8f2 security: fix CVE-2021-3995, CVE-2021-3996
  • 64623751 security: fix CVE-2021-43618

Testing 💚

  • 4a54858c test: improve nodeserver testing
  • ca6a736e test: more usage of t.TempDir()
  • cc6f1260 test: replace tmpdir with t.TempDir()
  • df67b530 test: cleanup provider tests (part 1)
  • 725b77d5 test: use helm upgrade --install for azure e2e
  • 86d368e9 test: use helm charts for azure provider
  • 0ec62508 test: conditionally check token requests role and binding
  • 899d3ed4 test: add test for view and admin cluster role (#845)

v1.3.4

11 months ago

v1.3.4 - 2023-06-12

Changelog

Maintenance 🔧

  • c2739b32 chore: update node-driver-registrar:v2.8.0, livenessprobe:v2.10.0
  • 27ae0749 chore: bump version to v1.3.4 in release-1.3

v1.3.3

1 year ago

v1.3.3 - 2023-04-20

Changelog

Bug Fixes 🐞

  • dcb2c294 fix: update nodeserver publish logs

Maintenance 🔧

  • 505e1cf0 chore: bump version to v1.3.3 in release-1.3
  • 23b30d15 chore: allow retries on pre-upgrade hook jobs

v1.3.2

1 year ago

v1.3.2 - 2023-03-21

Changelog

Maintenance 🔧

  • 5eb38bee chore: bump version to v1.3.2 in release-1.3
  • 4ec2b4a7 chore: bump golang.org/x/net from 0.4.0 to 0.7.0
  • ae3e1ffc chore: bump golang.org/x/net from 0.4.0 to 0.7.0 in /test/e2eprovider
  • 8bd26296 chore: use base and test image from registry.k8s.io

v1.3.1

1 year ago

v1.3.1 - 2023-01-21

Changelog

Maintenance 🔧

  • cba42248 chore: pin buildx to v0.10.6
  • 766c42ae chore: bump version to v1.3.1 in release-1.3
  • f3b03004 chore: update livenessprobe to v2.9.0
  • c0d3b618 chore: update node-driver-registrar to v2.7.0

v1.3.0

1 year ago

v1.3.0 - 2022-12-13

Changelog

Bug Fixes 🐞

  • cdf0b778 fix: put annotations in right position of daemonset
  • bb1815ab fix: escape dot in target path regex
  • 97d34520 fix: fix CVE-2022-32149 and CVE-2022-27664 (#1059)
  • d98c93cb fix: handles pfx certs in k8s secrets sync
  • 9fcdbb2c fix: update base image reference in script
  • ede4c706 fix: sanitize service account tokens in logs
  • 2ee77ca0 fix: use os.Lstat to resolve os.Stat issue in windows
  • 3ae12bd2 fix: remove files before cleanup mount point in unpublish
  • 0af24830 fix: panic when using --log-format-json
  • 830d184a fix: update err variable in defer to prevent err shadowing
  • c452ac46 fix: add unit test to validate error shadowed bug

Code Refactoring 💎

  • b0af2b93 refactor: use NewSharedInformerFactoryWithOptions for new shared informer
  • 14489c70 refactor: update mdbook install and serve

Continuous Integration 💜

  • 12cdcb42 ci: ignore slack badge in markdown link check
  • a3c0e4eb ci: add codeql action
  • 9a120eab ci: bump kubernetes version to v1.25.0
  • f8e3435f ci: bump kind version to v0.14.0
  • d1181e3c ci: add kubernetes 1.24 in e2e matrix
  • ce476721 ci: fix aws eks cluster creation
  • 384db8bb ci: fix markdown link check workflow failures
  • 12d1c991 ci: update kubernetes version matrix in staging e2e workflow
  • 0246e35d ci: update e2e_mock_provider_tests kubernetes versions
  • 2f161323 ci: add goreleaser workflow for release
  • d0e614fd ci: fix shellcheck file paths
  • 00a1445d ci: add markdown-link-check workflow

Documentation 📘

  • b8c64cca docs: add security vuln scanning to release mgmt
  • e195c553 docs: update supported releases - v1.2.x and v1.1.x
  • 3787ca2e docs: include security explanations for root/privileged/and pod tokens
  • b55eaeff docs: update instructions on generating release notes
  • c0e97a56 docs: add subPath volume mount limitation
  • 592ad7b5 docs: update supported versions and replace v1alpha1 with v1
  • 8c41c4a1 docs: remove helm repo url change note in install steps
  • 052429b0 docs: add slack badge
  • 95218a6b docs: fix dead links based on errors
  • 0391489d docs: update features and add toc
  • ba364e14 docs: Update helm README.md with linux crd image values (#797)
  • 856ad859 docs: update supported feature by current providers
  • a760c186 docs: fix typo in api version group name
  • ed9ecf3a docs: add design docs and roadmap to website
  • 99aafa5d docs: add project status to docs

Features 🌈

  • b4d2608e feat: add default toleration for all taints
  • 34cb4369 feat: Support disabling Helm chart CRD hooks
  • 0723e1ef feat: support provider paths under /var/run
  • 7ac887a5 feat: add token requests client (#805)
  • 4b8c4427 feat: send NodePublishVolumeRequest.VolumeContext in MountRequest to provider

Maintenance 🔧

  • d412c88f chore: bump version to v1.3.0 in release-1.3
  • 7513988e chore: reenable trivy scan for binary
  • 4c1a8f56 chore: use kubectl v1.26.0 in driver-crds
  • da5a280a chore: switch to registry.k8s.io
  • 215e5c2a chore: update node-driver-registrar to v2.6.2
  • 4e6cc573 chore: bump github/codeql-action from 2.1.32 to 2.1.35
  • c60d93f0 chore: bump stefanprodan/helm-gh-pages from 1.6.0 to 1.7.0
  • 6a64a914 chore: bump k8s.io/code-generator from 0.25.3 to 0.25.4 in /hack/tools
  • c9ec3638 chore: bump github/codeql-action from 2.1.31 to 2.1.32
  • 1111a97a chore: use kubectl 1.25.4 in driver-crds
  • ca89feb0 chore: remove k8s.io/kubernetes dep
  • 59473a29 chore: bump github/codeql-action from 2.1.29 to 2.1.31
  • 8778a4c8 chore: update livenessprobe to v2.8.0
  • b12d68a1 chore: bump github/codeql-action from 2.1.28 to 2.1.29
  • 2beee6f3 chore: bump sigs.k8s.io/controller-tools in /hack/tools
  • 4776c629 chore: bump k8s.io/code-generator from 0.25.0 to 0.25.3 in /hack/tools
  • 603bb665 chore: bump github.com/golangci/golangci-lint in /hack/tools
  • 358b8a3c chore: bump google.golang.org/protobuf in /hack/tools
  • 75b11347 chore: bump actions/checkout from 2 to 3
  • 6841c6df chore: bump sigs.k8s.io/kustomize/kustomize/v4 in /hack/tools
  • f6021d8b chore: bump goreleaser/goreleaser-action from 2.8.1 to 3.2.0
  • d3e42601 chore: adds ok-to-test label on dependabot prs
  • 8a52d335 chore: bump github.com/golangci/golangci-lint in /hack/tools
  • c8fc68f2 chore: bump stefanprodan/helm-gh-pages from 1.4.1 to 1.6.0
  • 57a5cb9a chore: bump gaurav-nelson/github-action-markdown-link-check
  • 762f81fa chore: add dependabot.yml
  • e3ed2f2c chore: use kubectl 1.25.x in driver-crds
  • f9386721 chore: update golangci-lint to v1.49.0
  • 6fda3504 chore: run apt update && apt upgrade -y in dockerfile
  • 0dc8c0fc chore: support kubernetes v1.25.0
  • 980a5398 chore: remove psp
  • f020bdfc chore: update debian-base to bullseye-v1.4.2
  • 56802413 chore: update k8s deps to v0.24.4
  • 4be2208e chore: update to go 1.19
  • e272dc9a chore: update debian-base to bullseye-v1.4.1
  • efb3274a chore: update debian-base to bullseye-v1.4.0
  • 27032f61 chore: update boilerplate for the generated proto files
  • fe049c3e chore: use google.golang.org/protobuf and regenerate proto
  • a95f0e59 chore: update kustomize to v4
  • 1d264d2e chore: update tools dependencies and generate manifests
  • e0f18506 chore: update kubernetes deps to v1.24.1
  • 5ddc9693 chore: add crds.podLabels for helm hook jobs (#962)
  • d70d198e chore: update debian-base to bullseye-v1.3.0
  • a48fddee chore: bump node-driver-registrar:v2.5.1 and livenessprobe:v2.7.0
  • 68ef4714 chore: bump kind version to v0.13.0 to support kubernetes v1.24
  • 75d28a44 chore: update pull request template
  • 1faac89f chore: change default to /var/run for providers path
  • e6cc3d52 chore: upgrade makefile test binary versions
  • 4b09e85c chore: upgrade to go 1.18
  • 1ec0f8bc chore: remove deprecated minimumProviderVersions in helm chart
  • b46dfcb3 chore: make token requests conditional for v1.20+
  • 37f55b2b chore: bump node-driver-registrar:v2.5.0 and livenessprobe:v2.6.0
  • ca257a83 chore: mark v1alpha1 api version as deprecated
  • ae872432 chore: remove old helm packages and index
  • ccb9fa47 chore: updates trivy command
  • a5966246 chore: log invalid key in error
  • dac5381d chore: update debian-base to bullseye-v1.1.0
  • f694be21 chore: bump node-driver-reegistrar image to v2.4.0
  • 97507719 chore: remove deprecated --filtered-watch-secret flag
  • c78559ef chore: bump livenessprobe image to v2.5.0
  • 2b27e0c8 chore: upgrade kubernetes deps
  • 60692157 chore: use TARGETARCH for image build and makefile update
  • e1f143c6 chore: use corev1 as import alias instead of v1

Security Fix 🛡️

  • 369ab7ba security: fix CVE-2022-41717
  • fe26e98a security: fix CVE-2022-27664
  • 586ff3fe security: fix CVE-2022-27664
  • e24efb7f security: fix multiple CVEs
  • 0dde850d security: fix CVE-2022-37434
  • 2d85ba66 security: fix CVE-2022-1996
  • 94077a62 security: fix multiple CVEs
  • 3bfd4f27 security: fix CVE-2022-29526
  • ce8133d2 security: fix CVE-2021-4209
  • 9357134b security: fix CVE-2022-1996
  • 0c70232e security: fix CVE-2022-34903
  • 6152bf16 security: fix CVE-2022-2068
  • 84f8b21b security: fix CVE-2022-1664
  • 860c83e3 security: fix CVE-2022-1292
  • 28a14d20 security: fix CVE-2022-1271
  • f4b9d0f5 security: fix CVE-2018-25032 and update to debian-base:bullseye-v1.2.0
  • 5a34967d security: fix CVEs
  • b558858b security: fix CVE-2022-0778, CVE-2021-4160
  • e6d1c8f2 security: fix CVE-2021-3995, CVE-2021-3996
  • 64623751 security: fix CVE-2021-43618

Testing 💚

  • df67b530 test: cleanup provider tests (part 1)
  • 725b77d5 test: use helm upgrade --install for azure e2e
  • 86d368e9 test: use helm charts for azure provider
  • 0ec62508 test: conditionally check token requests role and binding
  • 899d3ed4 test: add test for view and admin cluster role (#845)

v1.2.4

1 year ago

v1.2.4 - 2022-09-07

Changelog

Bug Fixes 🐞

  • 3fb01700 fix: update base image reference in script
  • 7bb3a61a fix: (fileutil) WritePayloads atomically for nested paths

Maintenance 🔧

  • e0c09c88 chore: bump version to v1.2.4 in release-1.2
  • 64f96c24 chore: update debian-base to bullseye-v1.4.2
  • ce14ea18 chore: update k8s deps to v0.24.4
  • 0fc707b7 chore: support common labels in helm chart

Security Fix 🛡️

  • 8fb76549 security: fix CVE-2022-37434
  • fd8adbae security: fix CVE-2022-1996