Releases: kubernetes-sigs/secrets-store-csi-driver
Releases · kubernetes-sigs/secrets-store-csi-driver
v1.4.7
v1.4.6
v1.4.5
v1.4.5 - 2024-08-20
Changelog
Continuous Integration 💜
Documentation 📘
- e6da463 docs: akeyless provider supports rotation
Maintenance 🔧
- 8e2cc82 chore: bump version to v1.4.5 in release-1.4
- 18619d1 chore: handle sha tags correctly in helm charts
- c807dca chore: bump node-driver-registrar to
v2.11.1
- 36c6a8d chore: bump livenessprobe to
v2.13.1
Testing 💚
v1.4.4
v1.4.4 - 2024-06-18
Changelog
Continuous Integration 💜
- 62d6dce ci: use
--clean
instead of--rm-dist
- a067688 ci: use
--verbose
instead of--debug
in goreleaser
Maintenance 🔧
- 640a771 chore: bump version to v1.4.4 in release-1.4
- ccce7f7 chore: update debian-base to bookworm-v1.0.3
Security Fix 🛡️
- 5747aa8 chore: bump kubectl to v1.29.4 in driver-crds for CVE-2023-45288
Testing 💚
- dbe92af test: remove target path check in fake provider server
v1.4.3
v1.4.3 - 2024-04-17
Changelog
Bug Fixes 🐞
- d84a7a1 fix: support more than one linux.crds.annotations in helm charts
Continuous Integration 💜
- 03dd391 ci: add govulncheck
Maintenance 🔧
- aa75fe5 chore: bump version to v1.4.3 in release-1.4
- 3c3889a chore: update debian-base to bookworm-v1.0.2
Security Fix 🛡️
- 412c477 security: bump golang.org/x/net to v0.23.0+ to fix GO-2024-2687
- 9ee78b8 security: bump kubectl to v1.29.3 in driver-crds for CVE-2024-24786
v1.4.2
v1.4.1
v1.4.1 - 2024-01-16
Changelog
Continuous Integration 💜
- 10b07c1 ci: remove low quota regions for aks windows job
- d4e169b ci: remove aks-engine job templates
- 80637ca ci: add script for aks windows cluster
Maintenance 🔧
Security Fix 🛡️
- eb644a3 security: bump golang.org/x/crypto to v0.17.0 to fix CVE-2023-48795
v1.4.0
v1.4.0 - 2023-11-20
Breaking Changes ⚠️
total_
prefix in the metrics name has been dropped as part of the latest otel bump in the driver. For Prometheus counters, by default the otel library appendstotal
suffix.total_rotation_reconcile
->rotation_reconcile_total
total_rotation_reconcile_error
->rotation_reconcile_error_total
total_node_publish
->node_publish_total
total_node_unpublish
->node_unpublish_total
total_node_publish_error
->node_publish_error_total
total_node_unpublish_error
->node_unpublish_error_total
total_sync_k8s_secret
->sync_k8s_secret_total
Changelog
Bug Fixes 🐞
- 604019c fix: make manifest diff
- a1380ba fix: update nodeserver publish logs
- cdf0b77 fix: put annotations in right position of daemonset
- bb1815a fix: escape dot in target path regex
- 97d3452 fix: fix CVE-2022-32149 and CVE-2022-27664 (#1059)
- d98c93c fix: handles pfx certs in k8s secrets sync
- 9fcdbb2 fix: update base image reference in script
- ede4c70 fix: sanitize service account tokens in logs
- 2ee77ca fix: use
os.Lstat
to resolveos.Stat
issue in windows - 3ae12bd fix: remove files before cleanup mount point in unpublish
- 0af2483 fix: panic when using --log-format-json
- 830d184 fix: update err variable in defer to prevent err shadowing
- c452ac4 fix: add unit test to validate error shadowed bug
Code Refactoring 💎
- b0af2b9 refactor: use NewSharedInformerFactoryWithOptions for new shared informer
- 14489c7 refactor: update mdbook install and serve
Continuous Integration 💜
- 35d88b7 ci: [StepSecurity] Apply security best practices
- 76b329d ci: add codecov.yml
- 0d4d5a3 ci: update kubernetes versions for staging image tests
- 47bd321 ci: enable tests with kubernetes v1.26
- 12cdcb4 ci: ignore slack badge in markdown link check
- a3c0e4e ci: add codeql action
- 9a120ea ci: bump kubernetes version to v1.25.0
- f8e3435 ci: bump kind version to v0.14.0
- d1181e3 ci: add kubernetes 1.24 in e2e matrix
- ce47672 ci: fix aws eks cluster creation
- 384db8b ci: fix markdown link check workflow failures
- 12d1c99 ci: update kubernetes version matrix in staging e2e workflow
- 0246e35 ci: update e2e_mock_provider_tests kubernetes versions
- 2f16132 ci: add goreleaser workflow for release
- d0e614f ci: fix shellcheck file paths
- 00a1445 ci: add markdown-link-check workflow
Documentation 📘
- d29d835 docs: mention sig-auth subproject in readme
- e0e5c06 docs: add openssf badge
- 905d82b docs: update reference to
registry.k8s.io
in release - 3864b78 docs: update supported releases - v1.3.x and v1.2.x
- b8c64cc docs: add security vuln scanning to release mgmt
- e195c55 docs: update supported releases - v1.2.x and v1.1.x
- 3787ca2 docs: include security explanations for root/privileged/and pod tokens
- b55eaef docs: update instructions on generating release notes
- c0e97a5 docs: add subPath volume mount limitation
- 592ad7b docs: update supported versions and replace v1alpha1 with v1
- 8c41c4a docs: remove helm repo url change note in install steps
- 052429b docs: add slack badge
- 95218a6 docs: fix dead links based on errors
- 0391489 docs: update features and add toc
- ba364e1 docs: Update helm README.md with linux crd image values (#797)
- 856ad85 docs: update supported feature by current providers
- a760c18 docs: fix typo in api version group name
- ed9ecf3 docs: add design docs and roadmap to website
- 99aafa5 docs: add project status to docs
Features 🌈
- 21694f0 feat: add
--version
flag to print the driver version - b4d2608 feat: add default toleration for all taints
- 34cb436 feat: Support disabling Helm chart CRD hooks
- 0723e1e feat: support provider paths under /var/run
- 7ac887a feat: add token requests client (#805)
- 4b8c442 feat: send NodePublishVolumeRequest.VolumeContext in MountRequest to provider
Maintenance 🔧
- 9056530 chore: bump version to v1.4.0 in release-1.4
- c4b22eb chore: update to go 1.21.4 in docker
- 7cdb803 chore: update to go 1.21
- a3fbe36 chore: bump google.golang.org/grpc from 1.49.0 to 1.56.3
- 2a6ad3c chore: bump google.golang.org/grpc in /test/e2eprovider
- 0de7b33 chore: bump golang.org/x/net from 0.10.0 to 0.17.0 in /hack/tools
- 41c8819 chore: bump golang.org/x/net from 0.8.0 to 0.17.0
- 7cf7be9 chore: bump golang.org/x/net from 0.8.0 to 0.17.0 in /test/e2eprovider
- 9743144 chore: bump actions/checkout from 3.5.3 to 4.0.0
- a4aa61d chore: bump github/codeql-action from 2.21.2 to 2.21.5
- dca6d3f chore: cleanup secretproviderclass status
- da9fd72 chore: bump github/codeql-action from 2.21.0 to 2.21.2
- 1b10489 chore: bump k8s.io/code-generator from 0.27.3 to 0.27.4 in /hack/tools
- 663d733 chore: bump github/codeql-action from 2.20.4 to 2.21.0
- a4aea02 chore: bump sigs.k8s.io/controller-tools in /hack/tools
- db8c839 chore: bump github/codeql-action from 2.20.3 to 2.20.4
- 14952e6 chore: bump github/codeql-action from 2.20.1 to 2.20.3
- 2403169 chore: update debian-base to bookworm-v1.0.0
- ca06ac3 chore: bump github/codeql-action from 2.20.0 to 2.20.1
- 19f5ce2 chore: bump ossf/scorecard-action from 2.1.3 to 2.2.0
- 61e53b7 chore: bump sigs.k8s.io/controller-tools in /hack/tools
- 3e9a018 chore: bump k8s.io/code-generator from 0.27.2 to 0.27.3 in /hack/tools
- 47468b8 chore: bump github.com/golangci/golangci-lint in /hack/tools
- 0d6bd57 chore: bump github/codeql-action from 2.3.6 to 2.20.0
- f87cf12 chore: bump actions/dependency-review-action from 3.0.4 to 3.0.6
- fb2ff09 chore: bump actions/checkout from 3.5.2 to 3.5.3
- d2ac05d chore: bump goreleaser/goreleaser-action from 4.2.0 to 4.3.0
- 49f966f chore: bump github/codeql-action from 2.3.3 to 2.3.6
- 6938b86 chore: bump github.com/golangci/golangci-lint in /hack/tools
- c8b330c chore: bump k8s.io/code-generator from 0.26.4 to 0.27.2 in /hack/tools
- 6551fe2 chore: bump k8s deps to
v1.26.4
(#1254) - 7b9e0f9 chore: bump codecov/codecov-action from 3.1.3 to 3.1.4
- ceb7ec6 chore: bump actions/setup-go from 4.0.0 to 4.0.1
- 7e5b5dc chore: bump golang from
79ffe35
to31a8f92
in /test/e2eprovider - 73fd4cc chore: bump golang from
eaf1267
to31a8f92
in /docker - 26c8cd5 chore: bump github/codeql-action from 2.3.2 to 2.3.3
- bc0fbbb chore: bump step-security/harden-runner from 2.3.1 to 2.4.0
- 086c6b6 chore: update node-driver-registrar:v2.8.0, livenessprobe:v2.10.0
- ace8c5a chore: bump google.golang.org/grpc in /test/e2eprovider
- cb49b72 chore: bump k8s.io/klog/v2 from 2.80.1 to 2.100.1 in /test/e2eprovider
- beb650e chore: bump golang from
403f486
to79ffe35
in /docker - 7b4879f chore: bump monis.app/mlog from 0.0.2 to 0.0.4 in /test/e2eprovider
- ca9178e chore: bump golang from
403f486
to79ffe35
in /test/e2eprovider - b855553 chore: bump codecov/codecov-action from 3.1.2 to 3.1.3
- 4f2eae2 chore: bump github/codeql-action from 2.3.0 to 2.3.2
- 5743ab3 chore: bump sigs.k8s.io/controller-tools in /hack/tools
- 0b457df chore: bump github/codeql-action from 2.2.12 to 2.3.0
- 0e85ac0 chore: enable gocritic linter and fix errors
- 1ef0c67 chore: cleanup WritePayloads to be easier to use
- 23b30d1 chore: allow retries on pre-upgrade hook jobs
- 7c7b3e5 chore: bump actions/checkout from 3.5.0 to 3.5.2
- b8069f4 chore: bump github/codeql-action from 2.2.11 to 2.2.12
- dc4bf06 chore: update to go 1.20
- 8048905 chore: bump trivy version to v0.39.1
- 379a4a4 chore: bump kind version to v0.18.0
- e582845 chore: bump github/codeql-action from 2.2.9 to 2.2.11
- 7cce3bb chore: updates error message
- cab63b3 chore: remove unused node name in rotation reconciler
- 957817e chore: remove unused providerVolumePath code paths
- 34afcef chore: bump actions/checkout from 3.4.0 to 3.5.0
- 76f266a chore: bump github.com/golangci/golangci-lint in /hack/tools
- 8b508b2 chore: bump github/codeql-action from 2.2.7 to 2.2.9
- adba078 chore: bump k8s.io/code-generator from 0.26.2 to 0.26.3 in /hack/tools
- a556236 chore: bump google.golang.org/protobuf in /hack/tools
- fa40c79 chore: update golangci-lint to v1.52.1
- ead9b01 chore: bump github/codeql-action from 2.2.6 to 2.2.7
- b4e4c6a chore: bump actions/checkout from 3.3.0 to 3.4.0
- f62667c chore: bump google.golang.org/protobuf in /hack/tools
- ba9625b chore: bump google.golang.org/protobuf in /hack/tools
- 8d15bd1 chore: bump github/codeql-action from 2.2.5 to 2.2.6
- 1367ef6 chore: bump k8s.io/code-generator from 0.26.1 to 0.26.2 in /hack/tools
- 9d23ab4 chore: bump google.golang.org/grpc/cmd/protoc-gen-go-grpc in /hack/tools
- 686b1dc chore: bump gaurav-nelson/github-action-markdown-link-check
- c9e9052 chore: bump github/codeql-action from 2.2.4 to 2.2.5
- 8da23b0 chore: bump golang.org/x/net from 0.4.0 to 0.7.0
- f62048e chore: bump golang.org/x/net from 0.4.0 to 0.7.0 in /hack/tools
- 8bf3cea chore: bump golang.org/x/net from 0.4.0 to 0.7.0 in /test/e2eprovider
- 37b523c chore: bump github/codeql-action from 2.2.2 to 2.2.4
- 7951913 chore: use base and test image from
registry.k8s.io
- bd9efb6 chore: bump sigs.k8s.io/controller-tools in /hack/tools
- 06130f8 chore: bump github/codeql-action from 2.2.1 to 2.2.2
- bd549ea chore: bump sigs.k8s.io/controller-tools in /hack/tools
- 3042513 chore: bump github/codeql-action from 2.1.39 to 2.2.1
- ebce4e4 chore: bump goreleaser/goreleaser-action from 4.1.0 to 4.2.0
- 0a3fee2 chore: bump k8s.io/code-generator from 0.26.0 to 0.26.1 in /hack/tools
- 98ec718 chore: bump github/codeql-action from 2.1.38 to 2.1.39
- 143dc71 chore: pin buildx to
v0.10.6
- fe84ebc chore: bump github/codeql-action from 2.1.37 to 2.1.38
- 8979367 chore: bump actions/checkout from 3.2.0 to 3.3.0
- c4229cb chore: update livenessprobe to v2.9.0
- 94f...