Release Notes - 2.16.0📜
Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.27.6 (RKE2).
This release sets Kyverno’s require-non-root-user policy setting to Enforce. See this MR for more details
Upgrade Notices📜
Istio:
Istio gets updated to 1.19.4. BigBang apps should automatically cycle to get the latest sidecar config and version. Be sure to cycle pods for any community or tenant applications manually.
Upgrades from previous releases📜
If coming from a version pre-2.15.1
, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.15.1
.
Packages📜
Package | Type | Package Version | BB Version |
---|---|---|---|
Istio Controlplane | Core | Istio 1.19.4 Tetrate Istio Distro 1.19.3 |
1.19.4-bb.0 🔗 |
Istio Operator | Core | Istio Operator 1.19.4 Tetrate Istio Distro Operator 1.19.3 |
1.19.4-bb.1 🔗 |
Jaeger | Core | 1.47.0 |
2.47.0-bb.1 |
Kiali | Core | 1.74.0 |
1.76.0-bb.4 🔗 |
Cluster Auditor | Core | 0.0.7 |
1.5.0-bb.10 |
Gatekeeper | Core | 3.14.0 |
3.14.0-bb.0 |
Kyverno | Core | 1.10.3 |
3.0.0-bb.12 🔗 |
Kyverno Policies | Core | 3.0.4 |
3.0.4-bb.10 |
Kyverno Reporter | Core | 2.10.4 |
2.16.0-bb.6 |
Elasticsearch Kibana | Core | Kibana 8.10.4 Elasticsearch 8.10.3 |
1.6.1-bb.2 |
Eck Operator | Core | 2.10.0 |
2.10.0-bb.0 🔗 |
Fluentbit | Core | 2.1.10 |
0.39.0-bb.1 🔗 |
Promtail | Core | 2.9.2 |
6.15.3-bb.1 🔗 |
Loki | Core | 2.9.2 |
5.31.0-bb.8 🔗 |
Neuvector | Core | 5.2.2 |
2.6.3-bb.3 |
Tempo | Core | Tempo 2.3.0-ubi9 Tempo Query 2.3.0 |
1.7.0-bb.1 |
Monitoring | Core | Prometheus 2.47.2 Grafana 10.1.5 Alertmanager 0.26.0 |
52.1.0-bb.0 |
Grafana | Core | 10.1.5 |
6.60.6-bb.3 |
Twistlock | Core | 30.02.123 |
0.13.0-bb.7 |
Wrapper | Core | N / A | 0.4.2 🔗 |
Argocd | Addon | 2.8.4 |
5.46.7-bb.8 |
Authservice | Addon | 0.5.3 |
0.5.3-bb.21 |
Minio Operator | Addon | 5.0.10 |
5.0.10-bb.1 🔗 |
Minio | Addon | RELEASE.2023-11-06T22-26-08Z |
5.0.10-bb.3 🔗 |
Gitlab | Addon | 16.5.1 |
7.5.1-bb.1 |
Gitlab Runner | Addon | 16.5.0 |
0.58.1-bb.0 |
Nexus | Addon | 3.62.0-01 |
62.0.0-bb.0 🔗 |
Sonarqube | Addon | 9.9.2-community |
8.0.2-bb.2 |
Fortify | Addon | 23.1.2.0005 |
1.1.2311007-bb.7 🔗 |
Haproxy | Addon | 2.2.31 |
1.19.3-bb.0 |
Anchore Enterprise | Addon | Enterprise 4.9.2 Engine 1.1.0 |
1.27.4-bb.3 🔗 |
Mattermost Operator | Addon | 1.20.1 |
1.20.1-bb.0 |
Mattermost | Addon | 9.2.2 |
9.2.2-bb.0 🔗 |
Velero | Addon | 1.12.1 |
5.1.3-bb.1 🔗 |
Keycloak | Addon | 21.1.1 |
18.4.3-bb.10 |
Vault | Addon | 1.13.1 |
0.25.0-bb.5 🔗 |
Metrics Server | Addon | 0.6.3 |
3.10.0-bb.3 |
Harbor | Addon | 2.9.1 |
1.13.1-bb.3 🔗 |
Thanos | Addon | 12.13.12-bb.3 |
12.13.12-bb.3 |
Changes in 2.16.0📜
Big Bang MRs📜
- !3458: increase fortify and mysql resource limits
- !3455: update helm repos for oci install job
- !3453: set require-non-root-user to enforce
Istio Controlplane📜
- !3446: istio update to 1.19.4-bb.0
# Changelog Updates
## [1.19.4-bb.0] - 2023-11-15
### Changed
- ironbank/opensource/istio/install-cni updated from 1.19.3 to 1.19.4
- ironbank/opensource/istio/pilot updated from 1.19.3 to 1.19.4
- ironbank/opensource/istio/proxyv2 updated from 1.19.3 to 1.19.4
Istio Operator📜
# Changelog Updates
## [1.19.4-bb.1] - 2023-11-16
### Added
- update image values from 1.19.3 to 1.19.4
## [1.19.4-bb.0] - 2023-11-14
### Added
- Updated repo1 image to `1.19.4`
Kiali📜
- !3472: kiali update to 1.76.0-bb.3
# Changelog Updates
## [1.76.0-bb.4] - 2023-11-22
### Changed
- Reverting cr.spec.deployment.accesible_namespaces tweak
## [1.76.0-bb.3] - 2023-11-14
### Changed
- Kiali CR deployment container securityContext
Kyverno📜
# Changelog Updates
## [3.0.0-bb.12] - 2023-11-16
### Changed
- Added `registry1.dso.mil/ironbank/redhat/ubi/ubi8-minimal:8.8` to `tests/images.txt`
Eck Operator📜
- !3481: eckOperator update to 2.10.0-bb.0
# Changelog Updates
## [2.10.0-bb.0] - 2023-11-25
### Changed
- Updated chart and IB images from 2.9.0 to 2.10.0
Fluentbit📜
- !3441: fluentbit update to 0.39.0-bb.1
# Changelog Updates
## [0.39.0-bb.1]
### Changed
- Updated configmap-reload to `v0.12.0`
Promtail📜
- !3484: promtail update to 6.15.3-bb.1
# Changelog Updates
## [6.15.3-bb.1] - 2023-11-15
### Added
- Added istio `allow-nothing` policy
- Added istio `allow-prometheus` policy
- Added istio custom policy template
Loki📜
# Changelog Updates
## [5.31.0-bb.8] - 2023-11-27
### Added
- `loki.ingester.autoforget_unhealthy: true` set by default for ingester values.
## [5.31.0-bb.7] - 2023-11-20
### Removed
- Removed automounting Service Account Tokens
Wrapper📜
- !3437: wrapper update to 0.4.2
# Changelog Updates
## [0.4.2] - 2023-11-1
### Added
- Added istio `allow-nothing` policy
- Added istio `allow-ingress` polic(y|ies)
- Added istio custom policy template
Minio Operator📜
- !3429: minioOperator update to 5.0.10-bb.1
# Changelog Updates
## [5.0.10-bb.1] - 2023-11-07
### Upgrade
- Updgraded BB base version to 2.1.0
Minio📜
# Changelog Updates
## [5.0.10-bb.3] - 2023-11-13
### Changed
- Updated minio to `RELEASE.2023-11-06T22-26-08Z`
Nexus📜
- !3485: nexusRepositoryManager update to 62.0.0-bb.0
# Changelog Updates
## [62.0.0-bb.0] - 2023-11-20
### Changed
- Updated ubi8 from 8.8 to 8.9
- Updated chart to version: 62.0.0-bb.0
Fortify📜
- !3474: fortify update to 1.1.2311007-bb.7
# Changelog Updates
## [1.1.2311007-bb.7] - 2023-11-01
### Changed
- Enabling Video cypress artifacts to be saved through new version of Gluon
## [1.1.2311007-bb.6] - 2023-11-01
### Changed
- gluon updated from 0.4.1 to 0.4.4
- mysql updated from 9.12.3 to 9.14.1
- ironbank/google/golang/golang-1.20 updated from 1.20.8 to 1.20.10
Anchore Enterprise📜
- !3449: anchore update to 1.27.4-bb.3
# Changelog Updates
## [1.27.4-bb.3]
### Changed
- Bumped Anchore Enterprise image tag to `4.9.2`
- Bumped gluon to `0.4.4`
Mattermost📜
# Changelog Updates
## [9.2.2-bb.0] - 2023-11-15
### Changed
- ironbank/opensource/mattermost/mattermost updated from 9.2.1 to v9.2.2
- Modified cypress test to account for button class change
- Updated minio chart/images
Velero📜
- !3452: velero update to 5.1.3-bb.1
# Changelog Updates
## [5.1.3-bb.1] - 2023-11-15
### Changed
- Updated kubectl chart chart dependancy to `1.28.3`
Vault📜
- !3482: vault update to 0.25.0-bb.5
# Changelog Updates
## [0.25.0-bb.5] - 2023-11-21
### Updated
- Updated registry1.dso.mil/ironbank/hashicorp/vault 1.14.2 -> 1.14.6
- Updated registry1.dso.mil/ironbank/hashicorp/vault/vault-k8s 1.3.0 -> 1.3.1
- Updated gluon 0.4.1 -> 0.4.4
- Updated minio-instance 5.0.9-bb.2 -> 5.0.10-bb.2
- Updated registry1.dso.mil/ironbank/big-bang/base 2.0.0 -> 2.1.0
Harbor📜
- !3497: harbor update to 1.13.1-bb.3
- !3480: harbor update to 1.13.1-bb.2
- !3457: harbor update to 1.13.1-bb.1
# Changelog Updates
## [1.13.1-bb.3] - 2023-11-29
### Changed
- Fix README
- Update gluon to 0.4.4
## [1.13.1-bb.2] - 2023-11-21
### Changed
- update securityContext to enforce non-root-group
## [1.13.1-bb.1] - 2023-11-16
### Changed
- Updated registry1.dso.mil/ironbank/big-bang/base 2.0.0 -> 2.1.0
Known Issues📜
- Per app flux settings don’t work when overriding with falsey values: Per app flux settings don’t work when overriding with falsey values
Helpful Links📜
As always, we welcome and appreciate feedback from our community of users. Please feel free to:
- Open issues here
- Join our chat
- Check out the documentation for guidance on how to get started
Future📜
Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.