Release Notes - 2.26.0📜
Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.29.3 (RKE2).
Upgrade Notices📜
N/A
Upgrades from previous releases📜
If coming from a version pre-2.25.0
, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.25.0
.
Packages📜
Package | Type | Package Version | BB Version |
---|---|---|---|
Istio Controlplane | Core | Istio 1.20.4 Tetrate Istio Distro 1.20.4 |
1.20.4-bb.1 |
Istio Operator | Core | Istio Operator 1.20.4 Tetrate Istio Distro Operator 1.20.4 |
1.20.4-bb.1 🔗 |
Jaeger | Core | 1.56.0 |
2.53.0-bb.1 🔗 |
Kiali | Core | 1.82.0 |
1.82.0-bb.3 |
Cluster Auditor | Core | 0.0.7 |
1.5.0-bb.15 |
Gatekeeper | Core | 3.15.1 |
3.15.0-bb.7 🔗 |
Kyverno | Core | 1.11.4 |
3.1.4-bb.8 🔗 |
Kyverno Policies | Core | 3.0.4 |
3.0.4-bb.29 🔗 |
Kyverno Reporter | Core | 2.18.0 |
2.22.4-bb.3 🔗 |
Elasticsearch Kibana | Core | Kibana 8.13.2 Elasticsearch 8.13.2 |
1.14.0-bb.0 🔗 |
Eck Operator | Core | 2.12.1 |
2.12.1-bb.0 |
Fluentbit | Core | 3.0.2 |
0.46.2-bb.0 🔗 |
Promtail | Core | 2.9.4 |
6.15.5-bb.4 🔗 |
Loki | Core | 2.9.6 |
5.47.2-bb.2 |
Neuvector | Core | 5.3.0 |
2.6.3-bb.19 🔗 |
Tempo | Core | Tempo 2.3.0-ubi9 Tempo Query 2.3.1 |
1.7.1-bb.7 🔗 |
Monitoring | Core | Prometheus 2.51.2 Grafana 10.4.2 Alertmanager 0.27.0 |
58.2.2-bb.0 🔗 |
Grafana | Core | 10.4.2 |
7.3.9-bb.0 🔗 |
Twistlock | Core | 32.01.128 |
0.15.0-bb.7 🔗 |
Wrapper | Core | N / A | 0.4.7 |
Argocd | Addon | 2.10.7 |
6.7.15-bb.1 🔗 |
Authservice | Addon | 1.0.0 |
1.0.0-bb.0 |
Minio Operator | Addon | 5.0.14 |
5.0.14-bb.2 |
Minio | Addon | RELEASE.2024-03-30T09-41-56Z |
5.0.12-bb.12 🔗 |
Gitlab | Addon | 16.10.2 |
7.10.2-bb.0 |
Gitlab Runner | Addon | 16.10.0 |
0.63.0-bb.4 🔗 |
Nexus | Addon | 3.67.1-01 |
67.1.0-bb.2 🔗 |
Sonarqube | Addon | 9.9.4-community |
8.0.4-bb.3 🔗 |
Fortify | Addon | 23.2.0.0154 |
1.1.2320154-bb.5 🔗 |
Haproxy | Addon | 2.2.32 |
1.19.3-bb.4 |
Anchore Enterprise | Addon | 5.4.1 |
2.4.2-bb.13 🔗 |
Mattermost Operator | Addon | 1.21.0 |
1.21.0-bb.0 |
Mattermost | Addon | 9.7.3 |
9.7.3-bb.1 🔗 |
Velero | Addon | 1.13.1 |
6.0.0-bb.5 🔗 |
Keycloak | Addon | 23.0.7 |
23.0.7-bb.4 🔗 |
Vault | Addon | 1.14.10 |
0.25.0-bb.26 🔗 |
Metrics Server | Addon | 0.7.1 |
3.12.1-bb.1 🔗 |
Harbor | Addon | 2.10.2 |
1.14.2-bb.2 🔗 |
Holocron | Addon | 3.3.0 |
1.0.5 🔗 |
Thanos | Addon | 0.34.1 |
13.2.2-bb.4 |
Changes in 2.26.0📜
Big Bang MRs📜
Istio Operator📜
# Changelog Updates
## [1.20.4-bb.1] - 2024-4-16
### Added
- Added custom network policies
Jaeger📜
- !4197: jaeger update to 2.53.0-bb.1
- !4182: jaeger update to 2.53.0-bb.0
- !4180: jaeger update to 2.50.1-bb.3
# Changelog Updates
## [2.53.0-bb.1] - 2024-04-19
### Added
- Added custom network policies
## [2.53.0-bb.0] - 2024-04-16
### Updated
- Updated Jaeger to 2.53.0
## [2.50.1-bb.3] - 2024-03-21
### Changed
- Adding Sidecar to deny egress that is external to istio services
- Adding customServiceEntries to allow egress to override sidecar
Gatekeeper📜
# Changelog Updates
## [3.15.0-bb.7] - 2024-04-26
### Added
- Add support for additional custom network policies through the values yaml
## [3.15.0-bb.6] - 2024-04-17
### Changed
- Updated gluon 0.4.8 -> 0.4.9
- Updated registry1.dso.mil/ironbank/opensource/kubernetes/kubectl v1.28.7 -> v1.29.3
## [3.15.0-bb.5] - 2024-04-16
### Changed
- Updated registry1.dso.mil/ironbank/opensource/kubernetes/kubectl v1.28.6 -> v1.28.7
- Updated ironbank/opensource/openpolicyagent/gatekeeper v3.15.0 -> v3.15.1
Kyverno📜
# Changelog Updates
## [3.1.4-bb.8] - 2024-04-29
### Changed
- Updated CHANGELOG to fix formatting
## [3.1.4-bb.7] - 2024-04-23
### Changed
- Fixed README.md for the chart that was overwritten and the README.md.gotmpl
## [3.1.4-bb.6] - 2024-04-16
### Changed
- Updated `kubectl` from `1.28.7` to `1.29.3`
Kyverno Policies📜
- !4192: kyvernoPolicies update to 3.0.4-bb.29
# Changelog Updates
## [3.0.4-bb.29] - 2024-04-19
### Changed
- Added support for checking deprecated API policy for Kubernetes v1.32.
- ironbank/opensource/kubernetes/kubectl updated from v1.28.7 to v1.29.3
Kyverno Reporter📜
- !4198: kyvernoReporter update to 2.22.4-bb.3
# Changelog Updates
## [2.22.4-bb.3] - 2024-04-22
### Changed
- Updated `gluon` package dependency version from `0.4.8` to `0.4.9`
Elasticsearch Kibana📜
- !4217: elasticsearchKibana update to 1.14.0-bb.0
- !4181: elasticsearchKibana update to 1.13.0-bb.1
- !4146: elasticsearchKibana update to 1.13.0-bb.0
# Changelog Updates
## [1.14.0-bb.0] - 2024-04-25
### Changed
- gluon updated from 0.4.9 to 0.4.10
- ironbank/elastic/elasticsearch/elasticsearch updated from 8.13.1 to 8.13.2
- ironbank/elastic/kibana/kibana updated from 8.13.1 to 8.13.2
## [1.13.0-bb.1] - 2024-04-16
### Changed
- Updated prometheus-elasticsearch-exporter from 5.3.1 to 5.7.0
- Updated elasticsearch-exporter to 1.7.0
- Updated renovate file to track prometheus-elasticsearch-exporter
## [1.13.0-bb.0] - 2024-04-09
### Changed
- gluon updated from 0.4.8 to 0.4.9
- ironbank/elastic/elasticsearch/elasticsearch updated from 8.13.0 to 8.13.1
- ironbank/elastic/kibana/kibana updated from 8.13.0 to 8.13.1
Fluentbit📜
# Changelog Updates
## [0.46.2-bb.0]
### Changed
- Updated upstream helm chart tag `0.46.2-bb.0`
- Updated fluent-bit image to `3.0.2` from IB
## [0.46.1-bb.0]
### Changed
- Updated upstream helm chart tag `0.46.1-bb.0`
- Updated fluent-bit image to `3.0.1` from IB
- Updated gluon to `0.4.9`
Promtail📜
- !4203: promtail update to 6.15.5-bb.4
# Changelog Updates
## [6.15.5-bb.4] - 2024-04-19
### Added
- Added custom network policy
Neuvector📜
- !4142: neuvector update to 2.6.3-bb.19
# Changelog Updates
## [2.6.3-bb.19] - 2024-04-11
### Added
- Added Openshift resources to support Neuvector deployment in openshift
Tempo📜
- !4220: tempo update to 1.7.1-bb.7
# Changelog Updates
## [1.7.1-bb.7] - 2024-04-24
### Added
- Added custom network policies
Monitoring📜
- !4234: monitoring update to 58.2.2-bb.0
- !4096: Resolve “Add Loki Cluster tags to Monitoring if Loki is enabled”
- !4193: monitoring update to 58.0.0-bb.1
# Changelog Updates
## [58.2.2-bb.0] - 2024-04-24
### Updated
- Updated Monitoring chart to v0.73.2
- Updated Prometheus: 2.51.2
- Updated Grafana: 10.4.2
- Updated kube-state-metrics 5.18.0 -> 5.19.0
## [58.0.0-bb.1] - 2024-04-19
### Fixed
- Fix Kiali connection issues due to AuthPols
Grafana📜
# Changelog Updates
## [7.3.9-bb.0] - 2024-04-29
### Updated
- Updated Grafana chart to 7.3.9
- Updated image versions to latest in IB (grafana: 10.4.2)
- Custom network policies
## [7.3.7-bb.3] - 2024-04-17
### Changed
- Adding an authorization policy to allow kiali traffic through when istio hardening is enabled
- Adding an authorization policy to allow kiali traffic through when istio hardening is enabled
## [7.3.7-bb.2] - 2024-04-11
### Changed
- Removing unneeded openshift network-attachment-definition in monitoring namespace as monitoring already creates one
Twistlock📜
- !4209: twistlock update to 0.15.0-bb.6
# Changelog Updates
## [0.15.0-bb.7] - 2024-04-30
### Changed
- Updated security capabilities for defender
## [0.15.0-bb.6] - 2024-04-18
### Changed
- Updated grafana dashboards to be compatible with Thanos
Argocd📜
# Changelog Updates
## [6.7.15-bb.1] - 2024-04-29
### Changed
- Custom network policies
- Updated gluon from 0.4.9 -> 0.4.10
## [6.7.15-bb.0] - 2024-04-29
### Changed
- Update ArgoCD chart to 6.7.15
- Update ArgoCD application version to 2.10.7
## [6.7.2-bb.2] - 2024-04-19
### Changed
- Update ArgoCD application version to 2.10.6
- Update gluon to 0.4.9
- Update dexidp dependency to 2.39.1
Minio📜
- !4214: minio update to 5.0.12-bb.12
# Changelog Updates
## [5.0.12-bb.12] - 2024-04-17
### Changed
- Updated grafana dashboards to be compatible with Thanos
Gitlab Runner📜
# Changelog Updates
## [0.63.0-bb.4] - 2024-04-26
### Changed
- Updated gluon to 0.4.10
## [0.63.0-bb.3] - 2024-04-24
### Changed
- Fixed bug cypress test resource requests/limits
Nexus📜
- !4228: nexusRepositoryManager update to 67.1.0-bb.2
# Changelog Updates
## [67.1.0-bb.2] - 2024-04-24
### Fixed
- Istio Hardening does nothing in package CI
- Fix for bigbang tests
- Remove old test artifacts no longer in use
## [67.1.0-bb.1] - 2024-04-22
### Added
- Add istio hardening to package ci
Sonarqube📜
# Changelog Updates
## [8.0.4-bb.3] - 2024-04-22
### Added
- Added the ability to deploy additional custom NetworkPolicy objects via override values (see chart/templates/bigbang/networkpolicies/additional-networkpolicies.yaml)
## [8.0.4-bb.2] - 2024-04-10
### Changed
- Updated gluon dependency to 0.4.9
Fortify📜
# Changelog Updates
## [1.1.2320154-bb.5] - 2024-04-19
### Fixed
- Resolved typo to correctly output the autoconfig used in logs as part of the startup
## [1.1.2320154-bb.4] - 2024-04-12
### Added
- Custom network policies
Anchore Enterprise📜
# Changelog Updates
## [2.4.2-bb.13] - 2024-05-03
### Updated
- Add ingress network policy for database upgrade job
- Update Gluon subchart dependency to 0.4.10
## [2.4.2-bb.12] - 2024-05-02
### Updated
- Added Sidecars, ServiceEntries, istiohardened doc, values update
## [2.4.2-bb.11] - 2024-04-30
### Changed
- Update kubeVersion constraints, set minimum kubeVersion and remove max version
## [2.4.2-bb.10] - 2024-04-23
### Added
- Added additionalNetworkPolicy support via values file
## [2.4.2-bb.9] - 2024-04-22
### Changed
- Updated Redis to 7.2.4
- Updated Gluon to 0.4.9
- Updated kubectl to 1.29.3
- Updated Anchore Enterprise tag to `5.4.1`
- Updated Anchore Enterprise UI tag to `5.4.0`
Mattermost📜
- !4275: mattermost update to 9.7.3-bb.1
# Changelog Updates
## [9.7.3-bb.1] - 2024-05-03
### Fixed
- Duplicate Istio ServiceEntry name for SSO
## [9.7.3-bb.0] - 2024-05-02
### Changed
- ironbank/opensource/mattermost/mattermost updated from 9.7.2 to 9.7.3
- minio-instance updated from 5.0.12-bb.1 to 5.0.12-bb.12
- minio image updated from RELEASE.2024-02-09T21-25-16Z to RELEASE.2024-03-30T09-41-56Z
- mc image updated from RELEASE.2024-02-09T22-18-24Z to RELEASE.2024-04-29T09-56-05Z
## [9.7.2-bb.0] - 2024-04-27
### Changed
- gluon updated from 0.4.9 to 0.4.10
- ironbank/opensource/mattermost/mattermost updated from 9.7.1 to 9.7.2
## [9.7.1-bb.0] - 2024-04-18
### Changed
- ironbank/opensource/mattermost/mattermost updated from 9.6.1 to 9.7.1
## [9.6.1-bb.1] - 2024-04-15
### Changed
- Added Istio Sidecar to restrict egress traffic to REGISTRY_ONLY
- Added Istio ServiceEntry to explicitly allow egress
- Added static ServiceEntry for mattermost hosts and keycloak
Velero📜
- !4223: velero update to 6.0.0-bb.5
# Changelog Updates
## [6.0.0-bb.5] - 2024-04-24
### Changed
- velero/velero-plugin-for-aws v1.9.1 -> v1.9.2
- velero/velero-plugin-for-csi v0.7.0 -> v0.7.1
- velero/velero-restore-helper v1.13.1 -> v1.13.2
Keycloak📜
- !4195: keycloak update to 23.0.7-bb.4
# Changelog Updates
## [23.0.7-bb.4] - 2024-04-12
### Updated
- Updating renovate to include gluon
Vault📜
- !4227: vault update to 0.25.0-bb.26
- !4222: vault update to 0.25.0-bb.25
- !4121: enable vault hardening
- !4210: vault update to 0.25.0-bb.24
# Changelog Updates
## [0.25.0-bb.26] - 2024-04-26
### Added
- registry1.dso.mil/ironbank/hashicorp/vault-csi-provider v1.4.1 -> v1.4.2
## [0.25.0-bb.25] - 2024-04-25
### Changed
- Fixed bug with Prometheus datasource returning no data
## [0.25.0-bb.24] - 2024-04-24
### Removed
- Sidecar to deny egress that is external to istio services
- customServiceEntries to allow egress to override sidecar
## [0.25.0-bb.23] - 2024-04-09
### Added
- Added the ability to deploy additional custom NetworkPolicy objects via override values (see chart/templates/bigbang/additional-networkpolicies.yaml)
## [0.25.0-bb.22] - 2024-03-09
### Changed
- Updated to gluon to 4.9
## [0.25.0-bb.21] - 2024-03-19
### Changed
- Adding Sidecar to deny egress that is external to istio services
- Adding customServiceEntries to allow egress to override sidecar
Metrics Server📜
# Changelog Updates
## [3.12.1-bb.1] - 2024-04-24
### Added
- Custom network policies
## [3.12.1-bb.0] - 2024-04-15
### Added
- Update metrics-server v0.7.0 -> v0.7.1
- Update kubectl v1.28.7 -> v1.29.3
- Update gluon 0.4.8 -> 0.4.9
Harbor📜
- !4236: harbor update to 1.14.2-bb.2
- !4200: harbor update to 1.14.2-bb.1
- !4176: harbor update to 1.14.1-bb.1
# Changelog Updates
## [1.14.2-bb.2] - 2024-04-26
### Fixed
- Updated gluon to 0.4.10
## [1.14.2-bb.1] - 2024-04-23
### Fixed
- Fix chart nested readme
## [1.14.2-bb.0] - 2024-04-16
### Changed
- Updated version 1.14.1-bb.0 -> 1.14.2-bb.0
- Updated appVersion 2.10.1 -> 2.10.2
- Updated goharbor/redis-photon minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-core minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-exporter minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-jobservice minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-portal minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-registryctl minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/registry minor v2.10.1 -> v2.10.2
- Updated registry1.dso.mil/ironbank/opensource/goharbor/trivy-adapter minor v2.10.1 -> v2.10.2
## [1.14.1-bb.1] - 2024-04-13
### Added
- Added the ability to deploy additional custom NetworkPolicy objects via override values (see chart/templates/bigbang/additional-networkpolicies.yaml)
Holocron📜
- !4189: holocron update to 1.0.5
# Changelog Updates
## [1.0.5] - 2024-04-19
### Updated
- Updated big bang to 2.1
Known Issues📜
- Gitlab Runner ControlPlaneCidr passthrough issue: GitLab runner not passing control plane cidr+
- Anchore Enterprise API VirtualService Missing: Add API VirtualService back
- CAC user registration issues in 23.0.7: CAC user registration issues in 23.0.7
Helpful Links📜
As always, we welcome and appreciate feedback from our community of users. Please feel free to:
- Open issues here
- Join our chat
- Check out the documentation for guidance on how to get started
Future📜
Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.