Pipeline Versions Save

A cloud-native Pipeline resource.

v0.56.2

2 months ago

-Docs @ v0.56.2 -Examples @ v0.56.2

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.2/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a945b36a68c366cf57e421e1d269cb1cdd9b7efcfce4a1fcc9c4dfa0833912646

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a945b36a68c366cf57e421e1d269cb1cdd9b7efcfce4a1fcc9c4dfa0833912646
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.2/release.yaml
REKOR_UUID=24296fb24b8ad77a945b36a68c366cf57e421e1d269cb1cdd9b7efcfce4a1fcc9c4dfa0833912646

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.56.2@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • :sparkles: [release-v0.56.x] Allow for the specified duration (#7678)

onfigure default-imagepullbackoff-timeout to allow imagePullBackOff to retry and wait for the specified duration before failing the pipeline.

Fixes

  • :bug: [release-v0.56.x] fix: avoid panic when used pipelineRef or pipelineSpec in pipeline task (#7733)

ix: avoid panic when used pipelineRef or pipelineSpec in pipeline task

Misc

Docs

Thanks

Thanks to these contributors who contributed to v0.56.2!

  • :heart: @l-qing
  • :heart: @pritidesai
  • :heart: @tekton-robot

Extra shout-out for awesome release notes:

  • :heart_eyes: @l-qing
  • :heart_eyes: @pritidesai
  • :heart_eyes: @tekton-robot

v0.53.4

2 months ago

-Docs @ v0.53.4 -Examples @ v0.53.4

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.4/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77aad9dedd9e0cad28c97e14d3e1ac5b0a41089a1a91534321af5585f876bb41074

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77aad9dedd9e0cad28c97e14d3e1ac5b0a41089a1a91534321af5585f876bb41074
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.4/release.yaml
REKOR_UUID=24296fb24b8ad77aad9dedd9e0cad28c97e14d3e1ac5b0a41089a1a91534321af5585f876bb41074

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.53.4@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • :sparkles: [release-v0.53.x] wait for a given duration in case of imagePullBackOff (#7677)

Configure default-imagepullbackoff-timeout to allow imagePullBackOff to retry and wait for the specified duration before failing the pipeline.

Fixes

  • :bug: [release-v0.53.x] fix: avoid panic when used pipelineRef or pipelineSpec in pipeline task (#7734)

ix: avoid panic when used pipelineRef or pipelineSpec in pipeline task

  • :bug: [release-v0.53.x] fix: ensure clustertask annotations are synced to taskrun (#7655)

ix: ensure ClusterTask annotations and labels are synced to TaskRun

Misc

Docs

Thanks

Thanks to these contributors who contributed to v0.53.4!

  • :heart: @l-qing
  • :heart: @pritidesai
  • :heart: @tekton-robot

Extra shout-out for awesome release notes:

  • :heart_eyes: @l-qing
  • :heart_eyes: @pritidesai
  • :heart_eyes: @tekton-robot

v0.57.0

2 months ago

-Docs @ v0.57.0 -Examples @ v0.57.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.57.0/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77add7b0a9a7946185efd5c044009544db4ec1a3799c4b6a95285f979f1fd78cc75

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77add7b0a9a7946185efd5c044009544db4ec1a3799c4b6a95285f979f1fd78cc75
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.57.0/release.yaml
REKOR_UUID=24296fb24b8ad77add7b0a9a7946185efd5c044009544db4ec1a3799c4b6a95285f979f1fd78cc75

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.57.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • :sparkles: Allow for the specified duration (#7666)

Configure default-imagepullbackoff-timeout to allow imagePullBackOff to retry and wait for the specified duration before failing the pipeline.

  • :sparkles: Add granular termination reason in container termination message (#7565)

Steps in a TaskRun will have more granular termination reasons indicating what exactly happened in new terminationReason field: Completed, Continued, Error, TimeoutExceeded, Skipped, TaskRunCancelled

Fixes

  • :bug: fix(pipeline): correct warning path for duplicate param name in pipeline tasks (#7651)

fix: correct warning path for duplicate param name in pipeline tasks

  • :bug: The field in Final Task cannot parse ordinary Task status information. (#7637)

The status of the referenced ordinary task is replaced before calculating the final task when.cel.

  • :bug: fix: prevent modification of annotations on completed TaskRuns (#7603)

fix: the pipeline controller will no longer modify any annotation it has set on completed pipelineruns

  • :bug: allow pipeline runs whose task/custom runs have been deleted still timeout (#7557)

PipelineRuns that timeout will no longer be blocked on reaching a terminal, cancelled state if their underlying TaskRuns or CustomRuns were deleted beforehand.

  • :bug: update docker-in-docker testimage for s390x (#7652)

Misc

  • :hammer: Update releases.md (#7587)

Created v0.56 LTS release.

  • :hammer: matrix name updated to end with the instance count (#7563)

taskRun names updated to end with the instance count for all fan out instances of matrix.

  • :hammer: Isolate new env nightly feature flag test (#7686)
  • :hammer: chore(deps): bump github/codeql-action from 3.24.0 to 3.24.3 (#7685)
  • :hammer: chore(deps): bump tj-actions/changed-files from 42.0.2 to 42.0.4 (#7684)
  • :hammer: chore(deps): bump github.com/opencontainers/image-spec from 1.1.0-rc6 to 1.1.0 (#7682)
  • :hammer: chore(deps): bump github.com/google/cel-go from 0.19.0 to 0.20.0 (#7681)
  • :hammer: chore(deps): bump k8s.io/client-go from 0.27.8 to 0.27.11 in /test/custom-task-ctrls/wait-task-beta (#7673)
  • :hammer: chore(deps): bump google.golang.org/grpc from 1.61.0 to 1.61.1 (#7670)
  • :hammer: Patch Release v0.56.1 (#7665)
  • :hammer: Patch Release v0.56.1 (#7663)
  • :hammer: chore(deps): bump go.opentelemetry.io/otel/sdk from 1.22.0 to 1.23.1 (#7659)
  • :hammer: chore(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 (#7658)
  • :hammer: Update e2e-test script for per-feature flag test (#7657)
  • :hammer: Fix typo in publish task (#7648)
  • :hammer: Bump github.com/golangci/golangci-lint from 1.55.1 to 1.56.1 in /tools (#7646)
  • :hammer: Bump go.opentelemetry.io/otel from 1.22.0 to 1.23.1 (#7645)
  • :hammer: Bump github.com/opencontainers/image-spec from 1.1.0-rc3 to 1.1.0-rc6 (#7635)
  • :hammer: Bump github/codeql-action from 3.23.1 to 3.24.0 (#7634)
  • :hammer: TEP-0138 New features to use Per-feature flag struct (#7633)
  • :hammer: Bump github.com/containerd/containerd from 1.6.19 to 1.7.13 (#7628)
  • :hammer: Per-feature Flag Test Suite (#7627)
  • :hammer: Bump github.com/google/go-containerregistry from 0.18.0 to 0.19.0 (#7624)
  • :hammer: Bump tj-actions/changed-files from 42.0.0 to 42.0.2 (#7622)
  • :hammer: Bump actions/upload-artifact from 4.2.0 to 4.3.0 (#7620)
  • :hammer: Bump github.com/google/go-containerregistry from 0.17.0 to 0.18.0 (#7616)
  • :hammer: Bump google.golang.org/grpc from 1.60.1 to 1.61.0 (#7612)
  • :hammer: Bump github.com/google/uuid from 1.5.0 to 1.6.0 (#7611)
  • :hammer: Bump github.com/opencontainers/image-spec from 1.1.0-rc3 to 1.1.0-rc.6 (#7610)
  • :hammer: Bump github.com/containerd/containerd from 1.6.19 to 1.7.12 (#7609)
  • :hammer: Bump go.opentelemetry.io/otel/sdk from 1.21.0 to 1.22.0 (#7606)
  • :hammer: Bump github.com/jenkins-x/go-scm from 1.14.25 to 1.14.26 (#7605)
  • :hammer: Bump github.com/opencontainers/image-spec from 1.1.0-rc5 to 1.1.0-rc.6 (#7604)
  • :hammer: Bump code.gitea.io/sdk/gitea from 0.16.0 to 0.17.1 (#7597)
  • :hammer: Bump github.com/containerd/containerd from 1.7.11 to 1.7.12 (#7596)
  • :hammer: Bump github.com/google/cel-go from 0.18.1 to 0.19.0 (#7594)
  • :hammer: Bump tj-actions/changed-files from 41.1.1 to 42.0.0 (#7593)
  • :hammer: Bump github/codeql-action from 3.23.0 to 3.23.1 (#7592)
  • :hammer: Bump actions/upload-artifact from 4.1.0 to 4.2.0 (#7591)
  • :hammer: Bump go.opentelemetry.io/otel from 1.21.0 to 1.22.0 (#7586)
  • :hammer: Bump github.com/jenkins-x/go-scm from 1.14.24 to 1.14.25 (#7585)
  • :hammer: Bump github.com/spiffe/go-spiffe/v2 from 2.1.5 to 2.1.7 (#7584)
  • :hammer: Bump github.com/google/go-containerregistry from 0.17.0 to 0.18.0 (#7583)
  • :hammer: Bump github.com/go-git/go-git/v5 from 5.10.0 to 5.11.0 (#7582)
  • :hammer: Error sweep: fix error messages for timing out Runs (#7572)
  • :hammer: Label user error for failed TaskRunStatus message (#7543)
  • :hammer: Add pre-commit rules (#7367)

Docs

  • :book: Pipeline v0.44.x LTS End of Life (#7613)

Release v0.44 LTS is EOL

Thanks

Thanks to these contributors who contributed to v0.57.0!

  • :heart: @AlanGreene
  • :heart: @Basavaraju-G
  • :heart: @JeromeJu
  • :heart: @afrittoli
  • :heart: @chitrangpatel
  • :heart: @cugykw
  • :heart: @dependabot[bot]
  • :heart: @gabemontero
  • :heart: @l-qing
  • :heart: @pritidesai
  • :heart: @renzodavid9
  • :heart: @roman-kiselenko

Extra shout-out for awesome release notes:

  • :heart_eyes: @afrittoli
  • :heart_eyes: @chitrangpatel
  • :heart_eyes: @cugykw
  • :heart_eyes: @gabemontero
  • :heart_eyes: @l-qing
  • :heart_eyes: @pritidesai
  • :heart_eyes: @renzodavid9

v0.56.1

3 months ago

-Docs @ v0.56.1 -Examples @ v0.56.1

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.1/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77ad1e4c68a476e6b180257b4a6715315a2d40370f46ce4f36ce311c893d7bef2ba

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77ad1e4c68a476e6b180257b4a6715315a2d40370f46ce4f36ce311c893d7bef2ba
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.1/release.yaml
REKOR_UUID=24296fb24b8ad77ad1e4c68a476e6b180257b4a6715315a2d40370f46ce4f36ce311c893d7bef2ba

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.56.1@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes

  • :bug: [release-v0.56.x] The field in Final Task cannot parse ordinary Task status information. (#7661)

he status of the referenced ordinary task is replaced before calculating the final task when.cel.

  • :bug: [release-v0.56.x] fix(pipeline): correct warning path for duplicate param name in pipeline tasks (#7660)

ix: correct warning path for duplicate param name in pipeline tasks

  • :bug: [release-v0.56.x] fix: ensure clustertask annotations are synced to taskrun (#7654)

ix: ensure ClusterTask annotations and labels are synced to TaskRun

  • :bug: [release-v0.56.x] do not allow negative requeue times (#7638)

ipelineRuns and TaskRuns that disable timeouts will no longer experience rapid requeue reconciliations

  • :bug: [release-v0.56.x] Exclude stopped injected sidecars from TaskRun status (#7653)

Misc

Docs

Thanks

Thanks to these contributors who contributed to v0.56.1!

  • :heart: @tekton-robot

Extra shout-out for awesome release notes:

  • :heart_eyes: @tekton-robot

v0.56.0

3 months ago

-Docs @ v0.56.0 -Examples @ v0.56.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.0/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a0c94b8ccf25fa815c6b01ab90941b17a37373885d8f62efc99b17eea417bed4d

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a0c94b8ccf25fa815c6b01ab90941b17a37373885d8f62efc99b17eea417bed4d
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.0/release.yaml
REKOR_UUID=24296fb24b8ad77a0c94b8ccf25fa815c6b01ab90941b17a37373885d8f62efc99b17eea417bed4d

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.56.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • ✨ Support overriding the SCM type and server URL (#7450) User are now able to override the global server URL when using the git resolver to allow fetching from multiple git providers.
  • ✨ TEP-0142: Introduce WorkingDir in StepActions (#7461)
  • ✨ TEP-0075(object params and results) promoted to stable (#7544) TEP-0075 promoted to stable - object params and results is now possible with enable-api-fields set to stable.
  • ✨ kind/feature : populate-params-and-results-to-workspace-bindings (#7503)
  • ✨ TEP-0142: Passing StepResults between Steps (#7458) Enable passing StepResults between Steps in a `Task.
  • ✨ param substitutions not allowed in StepAction's script (#7459) Param substitutions not allowed directly in StepAction's script

Fixes

  • :bug: fix: ensure global podTemplate configuration is merged correctly (#7552)

Merge the env and volumes from the podTemplate in the pipelineRun or TaskRun with the global defaults, instead of only considering the specified in the Run's.

  • :bug: Add back conversion for TaskRunStatus Resources (#7507)

restore conversion functions from taskRun and taskRunStatus resources for backwards compatibility

  • :bug: add default resource requirements to init-containers and containers of a pod (#7003)

[Bug fix]: takes default values of a resource requirements from a config map and updates to a init-container and container resource requirements value, if the value is not present

  • :bug: kind/bug allowExecution evaluation for when expression returns early when CEL is defined (#7569)
  • :bug: Fix broken import of go.opentelemetry.io/otel to v1.21.0 (#7465)

Misc

  • :hammer: Label for failure PipelineRun Status Message (#7475)

user error attributions can now be seen via PipelineRunStatus condition messages

  • :hammer: Error sweep: correct InvalidPipelineResultReference failure reason (#7459)
  • :hammer: Bump github.com/sigstore/sigstore from 1.7.5 to 1.8.1 (#7575)
  • :hammer: Bump github.com/spiffe/spire-api-sdk from 1.8.5 to 1.8.7 (#7570)
  • :hammer: Bump tj-actions/changed-files from 41.0.1 to 41.1.1 (#7567)
  • :hammer: Bump actions/upload-artifact from 4.0.0 to 4.1.0 (#7566)
  • :hammer: Bump github/codeql-action from 3.22.12 to 3.23.0 (#7548)
  • :hammer: Bump actions/checkout from 3.1.0 to 4.1.1 (#7537)
  • :hammer: Bump ossf/scorecard-action from 2.1.2 to 2.3.1 (#7536)
  • :hammer: Bump tj-actions/changed-files from 40.2.3 to 41.0.1 (#7535)
  • :hammer: Bump actions/upload-artifact from 3.1.0 to 4.0.0 (#7534)
  • :hammer: Bump github/codeql-action from 2.2.4 to 3.22.12 (#7533)
  • :hammer: Bump github.com/containerd/containerd from 1.7.8 to 1.7.11 (#7529)
  • :hammer: Bump golang.org/x/crypto from 0.16.0 to 0.17.0 (#7527)
  • :hammer: Hardened GitHub workflows a little bit (#7524)
  • :hammer: Bump k8s.io/api from 0.27.8 to 0.27.9 in /test/custom-task-ctrls/wait-task-beta (#7518)
  • :hammer: Bump github.com/jenkins-x/go-scm from 1.14.20 to 1.14.24 (#7515)
  • :hammer: Bump google.golang.org/grpc from 1.59.0 to 1.60.1 (#7506)
  • :hammer: Bump github.com/google/go-containerregistry from 0.16.1 to 0.17.0 (#7462)

Docs

Thanks

Thanks to these contributors who contributed to v0.56.0!

  • :heart: @JeromeJu
  • :heart: @Yongxuanzhang
  • :heart: @chitrangpatel
  • :heart: @dependabot[bot]
  • :heart: @ericzzzzzzz
  • :heart: @jkandasa
  • :heart: @l-qing
  • :heart: @vdemeester

Extra shout-out for awesome release notes:

  • :heart_eyes: @JeromeJu
  • :heart_eyes: @Yongxuanzhang
  • :heart_eyes: @chitrangpatel
  • :heart_eyes: @ericzzzzzzz
  • :heart_eyes: @jkandasa
  • :heart_eyes: @l-qing

v0.47.6

4 months ago

-Docs @ v0.47.6 -Examples @ v0.47.6

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.47.6/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a62ebb1cced6d37e04f6bce5a7736fcb8c2cf92c823122b72fa8c812ca90bb7b0

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a62ebb1cced6d37e04f6bce5a7736fcb8c2cf92c823122b72fa8c812ca90bb7b0
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.47.6/release.yaml
REKOR_UUID=24296fb24b8ad77a62ebb1cced6d37e04f6bce5a7736fcb8c2cf92c823122b72fa8c812ca90bb7b0

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.47.6@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes

  • :bug: [release-v0.47.x] don't return validation error when final tasks failed/skipped (#7487)

Misc

Docs

Thanks

Thanks to these contributors who contributed to v0.47.6!

  • :heart: @vdemeester

Extra shout-out for awesome release notes:

v0.55.0

4 months ago

🎉 PipelineTask.OnError and bugfixes 🎉

-Docs @ v0.55.0 -Examples @ v0.55.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.55.0/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77acf6e7f5cf38da4c2178e88e08bc2f291dc52b756371a21d349ca985bd125ace9

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77acf6e7f5cf38da4c2178e88e08bc2f291dc52b756371a21d349ca985bd125ace9
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.55.0/release.yaml
REKOR_UUID=24296fb24b8ad77acf6e7f5cf38da4c2178e88e08bc2f291dc52b756371a21d349ca985bd125ace9

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.55.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • :sparkles: TEP-0142: Introduce WorkingDir in StepActions (#7461)

Introduce WorkingDir in StepActions

  • :sparkles: Support overriding the SCM type and server URL (#7450)

User are now able to override the global server URL when using the git resolver to allow fetching from multiple git providers.

  • :sparkles: [TEP-0050] Implement PipelineTask OnError (#7422)

Implement "Ignore Task Failure" with new "PipelineTask.OnError" API field (TEP-0050). User can now set pipelineTask.onError: continue to ignore failure

Fixes

  • :bug: Fix enum validation with multiple param references (#7481)

bug fix: allow task-level param references multiple pipeline-level params with enum

  • :bug: Fix: do not fail TaskRun for concurrent modification errors (#7467)

fix: taskRuns will not fail for concurrent modification errors when stopping sideCars

  • :bug: Fix validations for Sidecars to be consistent (#7443)

sidecars are now validated at admission webhook

  • :bug: fix: resolve issue where resolutionrequest defaulted to v1alpha1 vs v1beta1 (#7438)

Resolved issue where resolutionrequest defaulted to v1alpha1 when it should be v1beta1

  • :bug: Do not require for entrypoint cancellation (#7430)

ntrypoint cancellation only requires keep-pod-on-cancel: true feature-flag.

  • :bug: Freeze image sha for dind-sidecar example test. (#7498)
  • :bug: FIX: Prevent panic on parameter evaluation (#7488)
  • :bug: change ResultRef.ResultsIndex from int to *int (#7460)
  • :bug: don't return validation error when final tasks failed/skipped (#7407)

Misc

  • :hammer: Tracing: Add credentialsSecret for basic authentication to remote endpoint (#7238)

Tracing config now includes an additional optional field credentialsSecret where users can specify the name of a secret. The username and password fields from the secret will be used to authenticate against Tracing collector endpoint.

  • :hammer: [TEP-0131] Update Conformance Spec for v1 api types (#7224)

Updates the conformance api spec with v1 api types in line with TEP-131

  • :hammer: Error sweep: complete user-facing error messages formats (#7474)
  • :hammer: Replace PipelineRunReasonFailedValidation with more granular reasons (#7417)
  • :hammer: Error sweep: Move TaskRun Reasons in pkg/pod to pkg/apis (#7406)
  • :hammer: Cleanup error message for Step container status (#7405)
  • :hammer: Error sweep: add more context for PipelineRunCouldntGetPipeline error message (#7403)
  • :hammer: Error sweep: refactor steps termination when failing TaskRun (#7386)
  • :hammer: Refactor common util functions for /test (#7369)
  • :hammer: Fix showing error message when validation fail (#7509)
  • :hammer: Git resolver: validate repo URL (#7482)
  • :hammer: Bump github.com/spiffe/spire-api-sdk from 1.8.4 to 1.8.5 (#7463)
  • :hammer: Fix some spelling in stepactions.md (#7432)
  • :hammer: Remove .envrc and show an example in .envrc.sample (#7429)
  • :hammer: Create scorecard.yml (#7409)
  • :hammer: Add @jeromeJu as a pipelines maintainer (#7327)
  • :hammer: Bump github.com/google/uuid from 1.3.1 to 1.4.0 (#7308)

Docs

  • :book: Add stdoutConfig and stderrConfig to alpha features table (#7494)
  • :book: Fix step actions documentation (#7492)
  • :book: [TEP-0050] Add Ignore Task Failure to alpha table (#7468)
  • :book: Update Feature Flags Documentation (#7445)
  • :book: Update StepActions Documentation (#7441)
  • :book: Fix typos and broken links in StepActions doc (#7431)
  • :book: Make git resolver label explicit (#7428)
  • :book: Update release with v0.54.0 (#7427)
  • :book: Update release cheat sheet (#7425)

Thanks

Thanks to these contributors who contributed to v0.55.0!

  • :heart: @AlanGreene
  • :heart: @JeromeJu
  • :heart: @QuanZhang-William
  • :heart: @Yongxuanzhang
  • :heart: @aaron-prindle
  • :heart: @afrittoli
  • :heart: @chitrangpatel
  • :heart: @chmouel
  • :heart: @dependabot[bot]
  • :heart: @dibyom
  • :heart: @jerop
  • :heart: @joaosilva15
  • :heart: @kmjayadeep
  • :heart: @vdemeester

Extra shout-out for awesome release notes:

  • :heart_eyes: @JeromeJu
  • :heart_eyes: @QuanZhang-William
  • :heart_eyes: @aaron-prindle
  • :heart_eyes: @chitrangpatel
  • :heart_eyes: @chmouel
  • :heart_eyes: @dibyom
  • :heart_eyes: @kmjayadeep
  • :heart_eyes: @vdemeester

v0.54.2

4 months ago

-Docs @ v0.54.2 -Examples @ v0.54.2

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.54.2/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a70414b954f5ea533eecb2a83f9a87997dc311d043ea27f6e609f4af5dcba94a1

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a70414b954f5ea533eecb2a83f9a87997dc311d043ea27f6e609f4af5dcba94a1
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.54.2/release.yaml
REKOR_UUID=24296fb24b8ad77a70414b954f5ea533eecb2a83f9a87997dc311d043ea27f6e609f4af5dcba94a1

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.54.2@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes

  • :bug: [release-v0.54.x] FIX: Prevent panic on parameter evaluation (#7512)

Misc

Docs

Thanks

Thanks to these contributors who contributed to v0.54.2!

  • :heart: @tekton-robot

Extra shout-out for awesome release notes:

v0.54.1

4 months ago

-Docs @ v0.54.1 -Examples @ v0.54.1

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.54.1/release.yaml

Attestation

The Rekor UUID for this release is ``

Obtain the attestation:

REKOR_UUID=
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.54.1/release.yaml
REKOR_UUID=

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.54.1@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes

  • :bug: [release-v0.54.x] don't return validation error when final tasks failed/skipped (#7510)

Misc

Docs

Thanks

Thanks to these contributors who contributed to v0.54.1!

  • :heart: @tekton-robot

Extra shout-out for awesome release notes:

v0.53.3

5 months ago

-Docs @ v0.53.3 -Examples @ v0.53.3

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.3/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77afb99bd712cd691b6390f8d712a52f96661eaa96ad92eefe7cb047049140f16f3

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77afb99bd712cd691b6390f8d712a52f96661eaa96ad92eefe7cb047049140f16f3
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.3/release.yaml
REKOR_UUID=24296fb24b8ad77afb99bd712cd691b6390f8d712a52f96661eaa96ad92eefe7cb047049140f16f3

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.53.3@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes

  • :bug: [release-v0.53.x] Fix: do not fail TaskRun for concurrent modification errors (#7479)

ix: taskRuns will not fail for concurrent modification errors when stopping sideCars

  • :bug: [release-v0.53.x] Do not require for entrypoint cancellation (#7457)

Entrypoint cancellation only requires keep-pod-on-cancel: true feature-flag.

  • :bug: [release-v0.53.x] Fix validations for Sidecars to be consistent (#7446)

idecars are now validated at admission webhook

  • :bug: [release-v0.53.x] FIX: Prevent panic on parameter evaluation (#7491)
  • :bug: [release-v0.53.x] don't return validation error when final tasks failed/skipped (#7486)

Misc

  • :hammer: [release-v0.53.x] Use a maintained action for "changed files" (#7490)
  • :hammer: [v0.53.x] bump knative version to get a CVE fix (#7372)

Docs

Thanks

Thanks to these contributors who contributed to v0.53.3!

  • :heart: @JeromeJu
  • :heart: @jkandasa
  • :heart: @tekton-robot
  • :heart: @vdemeester

Extra shout-out for awesome release notes:

  • :heart_eyes: @tekton-robot
  • :heart_eyes: @vdemeester