Skip to content

Commit 8351a22

Browse files
Carlos Rodríguez HernándezBitnami Containers
Carlos Rodríguez Hernández
and
Bitnami Containers
authored
[bitnami/deepspeed] Detect non-standard images (#30875)
* [bitnami/deepspeed] Detect non-standard images Signed-off-by: Carlos Rodríguez Hernández <[email protected]> * Update NOTES.txt Signed-off-by: Carlos Rodríguez Hernández <[email protected]> * Update CHANGELOG.md Signed-off-by: Bitnami Containers <[email protected]> * Update README.md with readme-generator-for-helm Signed-off-by: Bitnami Containers <[email protected]> --------- Signed-off-by: Carlos Rodríguez Hernández <[email protected]> Signed-off-by: Bitnami Containers <[email protected]> Co-authored-by: Bitnami Containers <[email protected]>
1 parent 7975300 commit 8351a22

File tree

6 files changed

+30
-14
lines changed

6 files changed

+30
-14
lines changed

bitnami/deepspeed/CHANGELOG.md

+7-2
Original file line numberDiff line numberDiff line change
@@ -1,8 +1,13 @@
11
# Changelog
22

3-
## 2.2.28 (2024-12-06)
3+
## 2.3.0 (2024-12-10)
44

5-
* [bitnami/deepspeed] Release 2.2.28 ([#30813](https://github.com/bitnami/charts/pull/30813))
5+
* [bitnami/deepspeed] Detect non-standard images ([#30875](https://github.com/bitnami/charts/pull/30875))
6+
7+
## <small>2.2.28 (2024-12-06)</small>
8+
9+
* [bitnami/*] docs: :memo: Add "Backup & Restore" section (#30711) ([35ab536](https://github.com/bitnami/charts/commit/35ab5363741e7548f4076f04da6e62d10153c60c)), closes [#30711](https://github.com/bitnami/charts/issues/30711)
10+
* [bitnami/deepspeed] Release 2.2.28 (#30813) ([c1702df](https://github.com/bitnami/charts/commit/c1702df266af754d4334c49caaac69100516a526)), closes [#30813](https://github.com/bitnami/charts/issues/30813)
611

712
## <small>2.2.27 (2024-11-26)</small>
813

bitnami/deepspeed/Chart.lock

+3-3
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
dependencies:
22
- name: common
33
repository: oci://registry-1.docker.io/bitnamicharts
4-
version: 2.27.2
5-
digest: sha256:6fd86cc5a4b5094abca1f23c8ec064e75e51eceaded94a5e20977274b2abb576
6-
generated: "2024-12-06T02:53:48.036330214Z"
4+
version: 2.28.0
5+
digest: sha256:5b30f0fa07bb89b01c55fd6258c8ce22a611b13623d4ad83e8fdd1d4490adc74
6+
generated: "2024-12-10T16:54:01.218023+01:00"

bitnami/deepspeed/Chart.yaml

+1-1
Original file line numberDiff line numberDiff line change
@@ -35,4 +35,4 @@ name: deepspeed
3535
sources:
3636
- https://github.com/bitnami/charts/tree/main/bitnami/deepspeed
3737
- https://github.com/bitnami/charts/tree/main/bitnami/pytorch
38-
version: 2.2.28
38+
version: 2.3.0

bitnami/deepspeed/README.md

+12-7
Original file line numberDiff line numberDiff line change
@@ -181,13 +181,14 @@ You can enable this initContainer by setting `volumePermissions.enabled` to `tru
181181

182182
### Global parameters
183183

184-
| Name | Description | Value |
185-
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------ |
186-
| `global.imageRegistry` | Global Docker image registry | `""` |
187-
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
188-
| `global.defaultStorageClass` | Global default StorageClass for Persistent Volume(s) | `""` |
189-
| `global.storageClass` | DEPRECATED: use global.defaultStorageClass instead | `""` |
190-
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |
184+
| Name | Description | Value |
185+
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------- |
186+
| `global.imageRegistry` | Global Docker image registry | `""` |
187+
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
188+
| `global.defaultStorageClass` | Global default StorageClass for Persistent Volume(s) | `""` |
189+
| `global.storageClass` | DEPRECATED: use global.defaultStorageClass instead | `""` |
190+
| `global.security.allowInsecureImages` | Allows skipping image verification | `false` |
191+
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |
191192

192193
### Common parameters
193194

@@ -506,6 +507,10 @@ Find more information about how to deal with common errors related to Bitnami's
506507

507508
## Upgrading
508509

510+
### To 2.3.0
511+
512+
This version introduces image verification for security purposes. To disable it, set `global.security.allowInsecureImages` to `true`. More details at [GitHub issue](https://github.com/bitnami/charts/issues/30850).
513+
509514
### To 2.0.0
510515

511516
This major bump changes the following security defaults:

bitnami/deepspeed/templates/NOTES.txt

+2-1
Original file line numberDiff line numberDiff line change
@@ -79,4 +79,5 @@ Then configure your SSH client to use that key.
7979
{{ include "deepspeed.v0.validateValues" . }}
8080
{{ include "deepspeed.v0.checkRollingTags" . }}
8181
{{- include "common.warnings.resources" (dict "sections" (list "client" "volumePermissions" "worker") "context" $) }}
82-
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.image .Values.gitImage .Values.volumePermissions.image) "context" $) }}
82+
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.image .Values.gitImage .Values.volumePermissions.image) "context" $) }}
83+
{{- include "common.errors.insecureImages" (dict "images" (list .Values.image .Values.gitImage .Values.volumePermissions.image) "context" $) }}

bitnami/deepspeed/values.yaml

+5
Original file line numberDiff line numberDiff line change
@@ -21,6 +21,11 @@ global:
2121
imagePullSecrets: []
2222
defaultStorageClass: ""
2323
storageClass: ""
24+
## Security parameters
25+
##
26+
security:
27+
## @param global.security.allowInsecureImages Allows skipping image verification
28+
allowInsecureImages: false
2429
## Compatibility adaptations for Kubernetes platforms
2530
##
2631
compatibility:

0 commit comments

Comments
 (0)