Skip to content

Release Notes - 2.34.0📜

Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.29.3 (RKE2).

Upgrade Notices📜

  • Nexus - MR:
  • Breaking Changes
  • Nexus 3.71.0-06 Removes support for internal OrientDB and replaces it with H2.
  • Nexus 3.71.0-06 Removes support for Java 8 and 11 and requires 17+
  • OrientDB migration required before upgrading if the internal DB is used. Steps can be found here.
  • Minio-operator - MR:
  • The MinIO Operator Console is deprecated and removed in Operator 6.0.0.

Upgrades from previous releases📜

If coming from a version pre-2.33.0, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.33.0.

Packages📜

Package Type Package Version BB Version
Istio Controlplane Core Istio 1.22.3 Tetrate Istio Distro 1.22.3 1.22.3-bb.1
Istio Operator Core Istio Operator 1.22.3 Tetrate Istio Distro Operator 1.22.3 1.22.3-bb.0
Updated Jaeger Core 1.57.0 2.54.0-bb.3 :link:
Updated Kiali Core 1.88.0 1.88.0-bb.0 :link:
Cluster Auditor Core 0.0.7 1.5.0-bb.21
Gatekeeper Core 3.16.3 3.16.3-bb.1
Kyverno Core 1.12.5 3.2.6-bb.0
Updated Kyverno Policies Core 3.2.5 3.2.5-bb.3 :link:
Updated Kyverno Reporter Core 2.20.1 2.24.1-bb.0 :link:
Updated Elasticsearch Kibana Core Kibana 8.14.3 Elasticsearch 8.14.3 1.18.0-bb.0 :link:
Updated Eck Operator Core 2.13.0 2.13.0-bb.3 :link:
Updated Fluentbit Core 3.1.5 0.47.6-bb.1 :link:
Updated Promtail Core 3.0.0 6.16.2-bb.3 :link:
Updated Loki Core 3.1.1 6.10.0-bb.0 :link:
Updated Neuvector Core 5.3.4 2.7.8-bb.0 :link:
Tempo Core Tempo 2.5.0 Tempo Query 2.5.0 1.10.1-bb.0
Updated Monitoring Core Prometheus 2.53.0 Grafana 11.1.0 Alertmanager 0.27.0 61.2.0-bb.5 :link:
Updated Grafana Core 11.1.3 8.4.4-bb.0 :link:
Updated Twistlock Core 32.03.125 0.16.0-bb.1 :link:
Wrapper Core N / A 0.4.10
Argocd Addon 2.11.7 7.3.11-bb.0
Authservice Addon 1.0.1 1.0.1-bb.4
Updated Minio Operator Addon 6.0.2 6.0.2-bb.1 :link:
Updated Minio Addon RELEASE.2024-06-04T19-20-08Z 6.0.2-bb.1 :link:
Updated Gitlab Addon 17.2.2 8.2.2-bb.0 :link:
Gitlab Runner Addon 17.1.0 0.66.0-bb.0
Updated Nexus Addon 3.71.0-06 71.0.0-bb.0 :link:
Updated Sonarqube Addon 9.9.6-community 8.0.6-bb.3 :link:
Updated Fortify Addon 24.2.0.0186 1.1.2320154-bb.16 :link:
Haproxy Addon 2.2.33 1.19.3-bb.7
Updated Anchore Enterprise Addon 5.8.1 2.9.0-bb.3 :link:
Updated Mattermost Operator Addon 1.22.0 1.22.0-bb.5 :link:
Updated Mattermost Addon 9.10.1 9.10.1-bb.1 :link:
Updated Velero Addon 1.14.0 6.7.0-bb.8 :link:
Updated Keycloak Addon 25.0.2 2.4.3-bb.4 :link:
Updated Vault Addon 1.14.10 0.28.1-bb.0 :link:
Updated Metrics Server Addon 0.7.1 3.12.1-bb.4 :link:
Updated Harbor Addon 2.11.0 1.15.0-bb.1 :link:
Holocron Addon 3.3.2 1.0.11
Updated Thanos Addon 0.36.0 15.7.17-bb.0 :link:
External Secrets Addon 0.9.18 0.9.18-bb.7

Changes in 2.34.0📜

Big Bang MRs📜

Jaeger📜

# Changelog Updates

## [2.54.0-bb.3] - 2024-08-12
### Updated
- Updated templating in `chart/templates/deployment.yaml` and `chart/templates/jaeger.yaml` to add `tpl` for label interpretation

Kiali📜

# Changelog Updates

## [1.88.0-bb.0] - 2024-08-16
### Changed
- Updated Kiali to v1.88.0
- Updated registry1.dso.mil/ironbank/opensource/kiali/kiali to 1.88.0
- Updated registry1.dso.mil/ironbank/opensource/kiali/kiali-operator to 1.88.0
- Updated gluon to 0.5.3

Kyverno Policies📜

# Changelog Updates

## [3.2.5-bb.3] - 2024-08-02
### Changed
- Added app and version to require-labels policy & update manifest

Kyverno Reporter📜

# Changelog Updates

## [2.24.1-bb.0] - 2024-08-19
### Changed
- Updated upstream chart reference from `2.24.0` to `2.24.1`

## [2.24.0-bb.3] - 2024-08-19
### Changed
- Updated `gluon` package dependency version from `0.5.2` to `0.5.3`
- Reduced number of Cypress test retries

Elasticsearch Kibana📜

# Changelog Updates

## [1.18.0-bb.0] - 2024-08-02
### Changed
- gluon updated from 0.5.0 to 0.5.2
- ironbank/elastic/elasticsearch/elasticsearch updated from 8.14.1 to 8.14.3
- ironbank/elastic/kibana/kibana updated from 8.14.1 to 8.14.3

Eck Operator📜

# Changelog Updates

## [2.13.0-bb.3] - 2024-08-09
### Changed
- Run pod labels though tpl function in preparation for passing kiali required labels in via umbrella chart

Fluentbit📜

# Changelog Updates

## [0.47.6-bb.1] - 2024-08-15
### Changed
- Parse labels through tpl

## [0.47.6-bb.0] - 2024-08-14
### Changed
- Updated fluent-bit: 3.1.4 -> 3.1.5
- Updated gluon: 0.5.2 -> 0.5.3

Promtail📜

# Changelog Updates

## [6.16.2-bb.3] - 2024-08-20
### Changed
- Fixed BB docs

## [6.16.2-bb.2] - 2024-08-15
### Changed
- Run podLabels through tpl

Loki📜

# Changelog Updates

## [6.10.0-bb.0] - 2024-08-14
### Updated
- Updated `loki-canary` from `v3.1.0` -> `v3.1.1`
- Updated `loki` from `v3.1.0` -> `v3.1.1`
- Updated `gluon` from `v0.5.0` -> `v0.5.3`
- Updated `grafana-agent-operator` from `v0.4.0` -> `v0.4.1`

## [6.7.1-bb.2] - 2024-08-12
### Changed
- Pass input pod labels through tpl function

## [6.7.1-bb.1] - 2024-07-19
### Added
- Add support for toggling dashboard sets between deployment strategies

Neuvector📜

# Changelog Updates

## [2.7.8-bb.0] - 2024-06-24
### Changed
- Updated chart version to `2.7.8`
- Updated registry1.dso.mil/ironbank/neuvector/neuvector/controller from `5.3.3` to `5.3.4`
- Updated registry1.dso.mil/ironbank/neuvector/neuvector/enforcer from `5.3.3` to `5.3.4`
- Updated registry1.dso.mil/ironbank/neuvector/neuvector/manager from `5.3.3` to `5.3.4`

Monitoring📜

# Changelog Updates

## [61.2.0-bb.5] - 2024-08-13
### Updated
- Updated templating for `podMetadata` to consistently use `tpl`
- Updated versions of prometheus-node-exporter and kube-state-metrics after submitting upstream PRs to update templating to use `tpl`

## [61.2.0-bb.4] - 2024-08-05

### Fixed
- Use global imagePullSecret Only

Grafana📜

# Changelog Updates

## [8.4.4-bb.0] - 2024-08-09
### Changed
- gluon updated from 0.5.2 to 0.5.3
- ironbank/big-bang/grafana/grafana-plugins updated from 11.1.0 to 11.1.3

Twistlock📜

# Changelog Updates

## [0.16.0-bb.1] - 2024-08-13
### Changed
- gluon updated from 0.5.2 to 0.5.3
- ironbank/twistlock/defender/defender updated from 32.01.128 to 32.03.125

Minio Operator📜

# Changelog Updates

## [6.0.2-bb.1] - 2024-08-14
### Changed
- CHANGELOG.md cleanup
- updated to registry1.dso.mil/ironbank/opensource/minio/operator-sidecar:v6.0.2

## [6.0.2-bb.0] - 2024-08-13
### Changed
- Updated chart to v6.0.2
- Updated gluon to 0.5.3
- ironbank/opensource/minio/operator v5.0.16 -> v6.0.2
- registry1.dso.mil/ironbank/opensource/minio/operator v5.0.16 -> v6.0.2
- removed console

Minio📜

# Changelog Updates

## [6.0.2-bb.1] - 2024-08-14
### Changed
- Revert 5.0.16-bb.1 changes due to issues with app: label

## [6.0.2-bb.0] - 2024-08-13
### Changed
- Updated chart to v6.0.2
- Updated mc to `RELEASE.2024-07-15T17-46-06Z`
- Update gluon to 0.5.3

## [5.0.16-bb.1] - 2024-07-31
### Added
- Added `bigbang.labels` helper function to authservice under `templates/bigbang`
- Added call to `bigbang.labels` function in `pools` template section of `chart/templates/tenant.yaml`

Gitlab📜

# Changelog Updates

## [8.2.2-bb.0] - 2024-08-13
### Added
- Introduces Gitlab to app version 17.2.2 chart version 8.2.2-bb.0

### Changed
- Update ironbank/gitlab/gitlab/gitlab-webservice (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/certificates (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitaly (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-base (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-container-registry (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-exporter (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-mailroom (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-pages (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-shell (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-sidekiq (source) 17.2.1 -> 17.2.2
- Update registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-toolbox (source) 17.2.1 -> 17.2.2

Nexus📜

  • !4953 (merged): SKIP UPGRADE CHECK nexusRepositoryManager update to 71.0.0-bb.0
# Changelog Updates

## [71.0.0-bb.0] - 2024-08-15
### Breaking changes
- Nexus 3.71.0-06 Removes support for internal OrientDB and replaces it with H2.
- Nexus 3.71.0-06 Removes support for Java 8 and 11 and requires 17+
- OrientDB migration required before upgrading if the internal DB is used. Steps can be found [here](https://help.sonatype.com/en/migrating-to-a-new-database.html).

### Changed
- Updated chart to version: 71.0.0-bb.0 | appVersion: 3.71.0-06
- Updated Gluon 0.5.0 -> 0.5.3

Sonarqube📜

# Changelog Updates

## [8.0.6-bb.3] - 2024-08-13
### Changed
- Addressed value logic for the admin password change hook job
- Switched the admin password change hook job image value `curlContainerImage` to hardened registry1 curl capable container

Fortify📜

# Changelog Updates

## [1.1.2320154-bb.16] - 2024-08-13
### Changed
- Removed redundant entries in package test-values.yaml already in package values.yaml and
- Updated cypress resources to standard 2 cpu and 4 Gi memory
- updated upstream releasenotes

Anchore Enterprise📜

# Changelog Updates

## [2.9.0-bb.3] - 2024-08-14
### Changed
- Updated Anchore Enterprise tag to `5.8.1`
- Updated Gluon subchart dependency to `0.5.3`

## [2.9.0-bb.2] - 2024-08-08
### Changed
- Updated Postgres configuration to use `scram-sha-256` instead of `md5`

## [2.9.0-bb.1] - 2024-08-05
### Changed
- Added quoted strings

Mattermost Operator📜

# Changelog Updates

## [1.22.0-bb.5] - 2024-08-15
### Added
- Added podLabels value and usage on operator pod

## [1.22.0-bb.4] - 2024-08-14
### Changed
- Fixed minor issues in documentation

## [1.22.0-bb.3] - 2024-08-12
### Changed
- Updated ironbank image for 1.22.0

Mattermost📜

# Changelog Updates

## [9.10.1-bb.1] - 2024-08-09
### Changed
- gluon updated from 0.5.2 to 0.5.3

Velero📜

# Changelog Updates

## [6.7.0-bb.8] - 2024-08-15
### Changed
- Updated the service entries to include minio, and made dynamic with domain

Keycloak📜

# Changelog Updates

## [2.4.3-bb.4] - 2024-08-09
### Added
- Added Fortify client to Keycloak.

Vault📜

# Changelog Updates

## [0.28.1-bb.0] - 2024-08-12
### Changed
- Updated chart to v0.28.1
- registry1.dso.mil/ironbank/hashicorp/vault 1.15.3 -> 1.17.3
- registry1.dso.mil/ironbank/hashicorp/vault-csi-provider v1.4.3 -> 1.5.0
- Updated gluon version 0.5.2 -> 0.5.3

## [0.27.0-bb.1] - 2024-07-18
### Changed
- registry1.dso.mil/ironbank/hashicorp/vault 1.14.10 -> 1.15.3
- registry1.dso.mil/ironbank/hashicorp/vault/vault-k8s:v1.4.1 -> 1.4.2
- Updated gluon version 0.5.0 -> 0.5.2

## [0.27.0-bb.0] - 2024-07-18
### Changed
- registry1.dso.mil/ironbank/hashicorp/vault 1.14.10 -> 1.15.3
- added in (c) notices from upstream

## [0.25.0-bb.37] - 2024-06-25
### Changed
- Removed shared istio auth policies
- Removed shared istio auth policies

## [0.25.0-bb.36] - 2024-07-10
### Changed
- Added documentation related to performing integration tests of sections of code and settings that have potential integration impacts
- Added documentation related to performing integration tests of sections of code and settings that have potential integration impacts
- Upgraded chart version

Metrics Server📜

# Changelog Updates

## [3.12.1-bb.4] - 2024-08-15
### Changed
- Run podLabels through tpl to interpret template expressions

Harbor📜

# Changelog Updates

## [1.15.0-bb.1] - 2024-07-29
### Changed
- modified harbor cypress tests to be more fault tolerant
- add `database.maxIdleConns` and `database.maxOpenConns` as definable upstream values for postgresql subchart
- update user/group for nginx based components so that they would not fail to generate nginx conf on startup in pod

Thanos📜

# Changelog Updates

## [15.7.17-bb.0] - 2024-08-05
### Upgraded
- Upgraded Thanos from `v0.35.1` -> `v0.36.0`

Known Issues📜

  • Kiali - ISSUE
  • On Kubernetes 1.29+, the kiali operator may fail with a 404 while running the kiali-deploy playbook if the cluster returns the flowcontrol.apiserver.k8s.io/v1beta2 api version (no longer served as of v1.29).

In this case, removing the invalid api version should resolve the issue and allow the kiali operator to run successfully.

$ kubectl delete apiservices.apiregistration.k8s.io v1beta2.flowcontrol.apiserver.k8s.io

As always, we welcome and appreciate feedback from our community of users. Please feel free to:

Future📜

Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.