Skip to content

Release Notes - 2.39.0📜

Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.30.3 (RKE2).

Upgrade Notices📜

  • BigBang - MR:
  • Twistlock - MR:
    • To get twistlock to deploy with a change to the labels and labelSelectors you must prepare to change immutable properties by deleting some resources prior to upgrading (or an equivalent).
    • *** Make sure to do a backup before deleting any resources. Verify the backup is stored outside the cluster and that your backup and restore procedures are working.
    • You can then delete the necessary resources by doing the following:
      kubectl delete ds twistlock-defender-ds -n twistlock && \
      kubectl delete deploy twistlock-console -n twistlock && \
      kubectl delete pvc twistlock-console -n twistlock
      
    • You must also turn off the volume upgrade job with these values:
      twistlock:
      enabled: true
      values:
      console:
      volumeUpgrade: false
      
    • After the upgrade, you should now restore your backup and turn the volume upgrade job back on in your values.

Upgrades from previous releases📜

If coming from a version pre-2.38.0, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.38.0.

Packages📜

Package Type Package Version BB Version
Updated Alloy BETA Addon 1.3.1 1.5.4-bb.1 🔗
Anchore Enterprise Addon 5.9.0 2.10.0-bb.1
Argocd Addon 2.12.4 7.6.6-bb.0
Authservice Addon 1.0.2 1.0.2-bb.0
Cluster Auditor Core 0.0.7 1.5.0-bb.22
Eck Operator Core 2.14.0 2.14.0-bb.0
Updated Elasticsearch Kibana Core Kibana 8.15.1 Elasticsearch 8.15.1 1.19.0-bb.4 🔗
External Secrets BETA Addon 0.10.2 0.10.2-bb.1
Updated Fluentbit Core 3.1.9 0.47.10-bb.1 🔗
Fortify Addon 24.2.0.0186 1.1.2320154-bb.19
Gatekeeper Core 3.17.1 3.17.1-bb.1
Updated Gitlab Addon 17.2.9 8.2.9-bb.4 🔗
Gitlab Runner Addon 17.2.1 0.67.1-bb.1
Updated Grafana Core 11.2.2 8.5.5-bb.0 🔗
Haproxy Addon 2.2.33 1.19.3-bb.8
Harbor Addon 2.11.0 1.15.1-bb.1
Holocron Addon 3.3.2 1.0.11
Updated Istio Controlplane Core Istio 1.23.2 Tetrate Istio Distro 1.23.2 1.23.2-bb.0 🔗
Updated Istio Operator Core Istio Operator 1.23.2 Tetrate Istio Distro Operator 1.23.2 1.23.2-bb.0 🔗
Jaeger Core 1.61.0 2.57.0-bb.0
Keycloak Addon 25.0.6 2.5.1-bb.0
Kiali Core 1.89.7 1.89.7-bb.1
Kyverno Core 1.12.6 3.2.7-bb.0
Updated Kyverno Policies Core 3.2.6 3.2.6-bb.0 🔗
Kyverno Reporter Core 2.20.2 2.24.2-bb.1
Updated Loki Core 3.1.1 6.12.0-bb.7 🔗
Updated Mattermost Addon 10.1.2 10.1.2-bb.0 🔗
Mattermost Operator Addon 1.22.1 1.22.1-bb.0
Updated Metrics Server Addon 0.7.2 3.12.2-bb.1 🔗
Updated Minio Addon RELEASE.2024-06-04T19-20-08Z 6.0.4-bb.0 🔗
Updated Minio Operator Addon 6.0.4 6.0.4-bb.0 🔗
Monitoring Core Prometheus 2.54.1 Grafana 11.1.0 Alertmanager 0.27.0 62.4.0-bb.0
Neuvector Core 5.3.4 2.7.8-bb.4
Updated Nexus Addon 3.73.0-12 73.0.0-bb.0 🔗
Promtail Core 3.0.0 6.16.2-bb.4
Sonarqube Addon 10.6.0-community 10.6.1-bb.2
Tempo Core Tempo 2.5.0 Tempo Query 2.5.0 1.10.3-bb.5
Thanos Addon 0.36.1 15.7.20-bb.1
Twistlock Core 32.03.125 0.16.0-bb.2
Vault Addon 1.17.6 0.28.1-bb.8
Updated Velero Addon 1.14.1 7.2.1-bb.3 🔗
Wrapper Core N / A 0.4.10

Changes in 2.39.0📜

Big Bang MRs📜

  • !5317: require 1.29
  • !5256: Removed all references to Kiali label helpers and helper itself
  • !5261: Fixes OCI Clean Install for Big Bang

Istio Controlplane📜

  • !5268: istio update to 1.23.2-bb.0
# Changelog Updates

## [1.23.2-bb.0] - 2024-10-08
### Changed
- ironbank/opensource/istio/install-cni updated from 1.22.5 to 1.23.2
- ironbank/opensource/istio/pilot updated from 1.22.5 to 1.23.2
- ironbank/opensource/istio/proxyv2 updated from 1.22.5 to 1.23.2
- ironbank/tetrate/istio/install-cni updated from 1.22.5 to 1.23.2
- ironbank/tetrate/istio/pilot updated from 1.22.5 to 1.23.2
- ironbank/tetrate/istio/proxyv2 updated from 1.22.5 to 1.23.2

Istio Operator📜

  • !5267: istioOperator update to 1.23.2-bb.0
# Changelog Updates

## [1.23.2-bb.0] - 2024-10-08
### Changed
- Updated registry1.dso.mil/ironbank/opensource/istio/operator from 1.22.5 to 1.23.2
- Updated registry1.dso.mil/ironbank/tetrate/istio/operator from 1.22.5-tetratefips-v0 to 1.23.2-tetratefips-v0

Kyverno Policies📜

  • !5282: kyvernoPolicies update to 3.2.6-bb.0
# Changelog Updates

## [3.2.6-bb.0] - 2024-10-09
### Changed
- `ironbank/opensource/kubernetes/kubectl` updated from `v1.29.7` to `v1.30.5`
- updated chart from `kyverno-chart-3.2.5` to `kyverno-chart-3.2.6` and app version from `v1.12.5` to `v1.12.6`
- updated `ironbank/opensource/kubernetes/kubectl` updated from `v1.29.7` to `v1.30.5`

Elasticsearch Kibana📜

  • !5303: elasticsearchKibana update to 1.19.0-bb.4
  • !5260: elasticsearchKibana update to 1.19.0-bb.3
# Changelog Updates

## [1.19.0-bb.4] - 2024-10-22
### Changed
- Update podeTemplate to include podLabels
- Update the elasticsearch resource with the chart label

## [1.19.0-bb.3] - 2024-10-11
### Changed
- Configured istio `DestinationRule` to allow envoy to accept certs presented by ElasticSearch
- Updated Kibana config to use `http` scheme when communicating with istio-enabled ElasticSearch

Fluentbit📜

  • !5288: fluentbit update to 0.47.10-bb.1
# Changelog Updates

## [0.47.10-bb.1] - 2024-10-18
### Changed
- Updated gluon: 0.5.4 -> 0.5.8
- Updated configmap-reload v0.13.1 -> v0.14.0

Loki📜

  • !5277: loki update to 6.12.0-bb.7
# Changelog Updates

## [6.12.0-bb.7] - 2024-10-07
### Changed
- Updated hardcoded minio matchLabels

Grafana📜

  • !5290: grafana update to 8.5.5-bb.0
# Changelog Updates

## [8.5.5-bb.0] - 2024-10-15
### Changed
- gluon updated from 0.5.4 to 0.5.8
- ironbank/big-bang/grafana/grafana-plugins updated from 11.2.1 to 11.2.2

Minio Operator📜

  • !5272: minioOperator update to 6.0.4-bb.0
# Changelog Updates

## [6.0.4-bb.0] - 2024-10-15
### Changed
- Upgraded registry1.dso.mil/ironbank/opensource/minio/operator v6.0.3 -> v6.0.4

Minio📜

  • !5297: minio update to 6.0.4-bb.0
  • !5286: minio update to 6.0.3-bb.7
# Changelog Updates

## [6.0.4-bb.0] - 2024-10-25
### Changed
- Upgraded minio to v6.0.4

## [6.0.3-bb.8] - 2024-10-22
### Changed
- Upgraded gluon from 0.5.7 to 0.5.8
- Upgraded mc RELEASE.2024-10-02T08-27-28Z -> RELEASE.2024-10-08T09-37-26Z

## [6.0.3-bb.7] - 2024-10-18
### Changed
- Upgraded gluon from 0.5.4 to 0.5.7

## [6.0.3-bb.6] - 2024-10-11
### Changed
- Removed all hardcoded match labels

Gitlab📜

  • !5302: gitlab update to 8.2.9-bb.4
  • !5295: gitlab update to 8.2.9-bb.3
  • !5289: gitlab update to 8.2.9-bb.2
  • !5280: gitlab update to 8.2.9-bb.1
# Changelog Updates

## [8.2.9-bb.4] - 2024-10-22
### Added
- added trust chain for "ca-certs-entrust-federal-ssp-trust-chain-3"

## [8.2.9-bb.3] - 2024-10-22
### Changed
- registry1.dso.mil/ironbank/opensource/minio/mc major RELEASE.2022-12-24T15-21-38Z -> RELEASE.2024-10-02T08-27-28Z
- registry1.dso.mil/ironbank/opensource/minio/minio major RELEASE.2022-12-12T19-27-27Z -> RELEASE.2024-06-04T19-20-08Z

## [8.2.9-bb.2] - 2024-10-18
### Changed
- Updated hardcoded minio matchLabels

## [8.2.9-bb.1] - 2024-10-15
### Added
- Added customScripts functionality to toolbox container

Nexus📜

  • !5301: nexusRepositoryManager update to 73.0.0-bb.0
  • !5294: nexusRepositoryManager update to 72.0.0-bb.1
# Changelog Updates

## [73.0.0-bb.0] - 2024-10-17
### Changed
- Updated chart to version: 73.0.0-bb.0 | appVersion: 3.73.0-12
- Updated Gluon 0.5.4 -> 0.5.8
- Updated ironbank/sonatype/nexus/nexus (source) 3.72.0-04 -> 3.73.0-12
- Updated registry1.dso.mil/ironbank/sonatype/nexus/nexus (source) 3.72.0-04 -> 3.73.0-12

## [72.0.0-bb.1] - 2024-09-17
### Changed
- Decoupled realm configuration from sso and license requirements

Mattermost📜

  • !5339: mattermost update to 10.1.2-bb.0
  • !5308: mattermost update to 10.1.1-bb.1
  • !5298: mattermost update to 10.1.1-bb.0
  • !5274: mattermost update to 10.0.1-bb.1
  • !5258: mattermost update to 10.0.1-bb.0
# Changelog Updates

## [10.1.2-bb.0] - 2024-10-30
### Changed
- ironbank/opensource/mattermost/mattermost updated from 10.1.1 to 10.1.2

## [10.1.1-bb.1] - 2024-10-24
### Changed
- ironbank/opensource/kubernetes/kubectl updated from v1.30.5 to v1.30.6

## [10.1.1-bb.0] - 2024-10-19
### Changed
- ironbank/opensource/mattermost/mattermost updated from 10.0.1 to 10.1.1

## [10.0.1-bb.1] - 2024-10-17
### Changed
- Updated Wait job script to include the api group

## [10.0.1-bb.0] - 2024-10-12
### Changed
- gluon updated from 0.5.4 to 0.5.8
- ironbank/opensource/mattermost/mattermost updated from 10.0.0 to 10.0.1

Velero📜

  • !5309: velero update to 7.2.1-bb.3
  • !5249: velero update to 7.2.1-bb.2
# Changelog Updates

## [7.2.1-bb.3] - 2024-10-24
### Changed
- Updated registry1.dso.mil/ironbank/opensource/kubernetes/kubectl v1.30.5 -> v1.30.6

## [7.2.1-bb.2] - 2024-10-10
### Changed
- Updated registry1.dso.mil/ironbank/opensource/nginx/nginx to 1.27.2

Metrics Server📜

  • !5262: metricsServer update to 3.12.2-bb.1
# Changelog Updates

## [3.12.2-bb.1] - 2024-10-15
### Added
- added upstreamReleaseNotesMarkdown to chart annotations

Alloy📜

  • !5291: alloy update to 1.5.4-bb.1
# Changelog Updates

## [1.5.4-bb.1] - 2024-10-21
### Changed
- Fixed quotation in chart.yaml

Known Issues📜

  • Kiali - ISSUE
  • On Kubernetes 1.29+, the kiali operator may fail with a 404 while running the kiali-deploy playbook if the cluster returns the flowcontrol.apiserver.k8s.io/v1beta2 api version (no longer served as of v1.29).

In this case, removing the invalid api version should resolve the issue and allow the kiali operator to run successfully.

$ kubectl delete apiservices.apiregistration.k8s.io v1beta2.flowcontrol.apiserver.k8s.io

As always, we welcome and appreciate feedback from our community of users. Please feel free to:

Future📜

Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.