Skip to content

Release Notes - 2.41.0📜

Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.30.3 (RKE2).

Upgrade Notices📜

  • Kiali - MR:
    • By default Kiali has access to all namespaces within a given cluster. However, if you have restricted access to only specific namespaces please review this note prior to upgrading as the methodology behind this has changed.
  • External-secrets - MR:
    • If you are deploying any deprecated v1alpha1 custom reources, your deployment may break with this patch. Please upgrade resources to nondeprecated versions.
  • BBTOC- MR
    • In an effort to provide more clarity on where each package stands within BigBang have implemented the Package Maintenance Tracks as approved by the BBTOC. This should provide more clarity on how different packages are maintained and tested. In order to facilitate this, each package that is maintained & Integrated by BigBang (not community maintanted packages) now has a badge added on the readme of that package, to identify what track each package is on.

Upgrades from previous releases📜

If coming from a version pre-2.40.0, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.40.0.

Packages📜

Package Type Package Version BB Version
Alloy BETA Addon 1.4.2 1.6.4-bb.0
Updated Anchore Enterprise Addon 5.11.1 3.1.1-bb.3 🔗
Updated Argocd Addon 2.13.1 7.7.5-bb.0 🔗
Updated Authservice Addon 1.0.3 1.0.3-bb.0 🔗
Cluster Auditor Core 0.0.7 1.5.0-bb.22
Eck Operator Core 2.14.0 2.14.0-bb.0
Updated Elasticsearch Kibana Core Kibana 8.16.0 Elasticsearch 8.16.0 1.22.0-bb.0 🔗
Updated External Secrets BETA Addon 0.10.4 0.10.4-bb.0 🔗
Updated Fluentbit Core 3.2.1 0.48.2-bb.0 🔗
Updated Fortify Addon 24.2.0.0186 1.1.2320154-bb.20 🔗
Gatekeeper Core 3.17.1 3.17.1-bb.2
Updated Gitlab Addon 17.5.2 8.5.2-bb.0 🔗
Gitlab Runner Addon 17.2.1 0.67.1-bb.1
Updated Grafana Core 11.3.1 8.6.2-bb.0 🔗
Haproxy Addon 2.2.33 1.19.3-bb.8
Updated Harbor Addon 2.11.0 1.16.0-bb.2 🔗
Holocron Addon 3.3.2 1.0.12
Updated Istio Controlplane Core Istio 1.23.3 Tetrate Istio Distro 1.23.3 1.23.3-bb.1 🔗
Updated Istio Operator Core Istio Operator 1.23.3 Tetrate Istio Distro Operator 1.23.3 1.23.3-bb.0 🔗
Jaeger Core 1.61.0 2.57.0-bb.0
Updated Keycloak Addon 25.0.6 2.5.1-bb.2 🔗
Updated Kiali Core 2.1.0 2.1.0-bb.0 🔗
Kyverno Core 1.12.6 3.2.7-bb.0
Updated Kyverno Policies Core 3.2.6 3.2.6-bb.1 🔗
Kyverno Reporter Core 2.20.2 2.24.2-bb.1
Updated Loki Core 3.2.0 6.18.0-bb.3 🔗
Updated Mattermost Addon 10.2.0 10.2.0-bb.0 🔗
Mattermost Operator Addon 1.22.1 1.22.1-bb.0
Metrics Server Addon 0.7.2 3.12.2-bb.1
Minio Addon RELEASE.2024-06-04T19-20-08Z 6.0.4-bb.2
Minio Operator Addon 6.0.4 6.0.4-bb.0
Monitoring Core Prometheus 2.54.1 Grafana 11.1.0 Alertmanager 0.27.0 62.4.0-bb.1
Updated Neuvector Core 5.4.0 2.8.2-bb.2 🔗
Updated Nexus Addon 3.74.0-05 74.0.0-bb.0 🔗
Promtail Core 3.0.0 6.16.2-bb.4
Sonarqube Addon 10.6.0-community 10.6.1-bb.2
Updated Tempo Core Tempo 2.5.0 Tempo Query 2.5.0 1.11.0-bb.0 🔗
Updated Thanos Addon 0.36.1 15.8.1-bb.0 🔗
Updated Twistlock Core 33.01.137 0.18.0-bb.0 🔗
Updated Vault Addon 1.18.1 0.29.0-bb.0 🔗
Updated Velero Addon 1.15.0 7.2.2-bb.3 🔗
Wrapper Core N / A 0.4.10

Changes in 2.41.0📜

Big Bang MRs📜

  • !5417: Update Mimir istio enabled logic to point to upstream istio
  • !5409: update dev cert

Istio Controlplane📜

  • !5441: istio update to 1.23.3-bb.1
  • !5405: istio update to 1.23.3-bb.0
# Changelog Updates

## [1.23.3-bb.1] - 2024-11-25
### Changed
- Added app.kubernetes.io/name and app.kubernetes.io/version labels to all workloads
- Removed version label that was added as part of previous Kiali labelling strategy

## [1.23.3-bb.0] - 2024-11-04
### Changed
- ironbank/opensource/istio/install-cni updated from 1.23.2 to 1.23.3
- ironbank/opensource/istio/pilot updated from 1.23.2 to 1.23.3
- ironbank/opensource/istio/proxyv2 updated from 1.23.2 to 1.23.3
- ironbank/opensource/kubernetes/kubectl updated from v1.30.5 to v1.30.6
- ironbank/tetrate/istio/install-cni updated from 1.23.2 to 1.23.3
- ironbank/tetrate/istio/pilot updated from 1.23.2 to 1.23.3
- ironbank/tetrate/istio/proxyv2 updated from 1.23.2 to 1.23.3

Istio Operator📜

  • !5404: istioOperator update to 1.23.3-bb.0
# Changelog Updates

## [1.23.3-bb.0] - 2024-11-04
### Changed
- Updated registry1.dso.mil/ironbank/opensource/istio/operator from 1.23.2 to 1.23.3
- Updated registry1.dso.mil/ironbank/tetrate/istio/operator from 1.23.2-tetratefips-v0 to 1.23.3-tetratefips-v0

Kiali📜

  • !5446: kiali update to 2.1.0-bb.0
# Changelog Updates

## [2.1.0-bb.0] - 2024-11-26
### Changed
- Updated Kiali and Kiali-operator to v2.1.0
- Updated Gluon to v0.5.12
- Updated kubectl to v1.30.7

Kyverno Policies📜

  • !5389: kyvernoPolicies update to 3.2.6-bb.1
# Changelog Updates

## [3.2.6-bb.1] - 2024-10-23
### Changed
- Added block-ephemeral-containers policy and test-ephemeral.sh as test

Elasticsearch Kibana📜

  • !5436: elasticsearchKibana update to 1.22.0-bb.0
# Changelog Updates

## [1.22.0-bb.0] - 2024-11-13
### Changed
- gluon updated from 0.5.8 to 0.5.10
- ironbank/elastic/elasticsearch/elasticsearch updated from 8.15.3 to 8.16.0
- ironbank/elastic/kibana/kibana updated from 8.15.3 to 8.16.0

Fluentbit📜

  • !5449: fluentbit update to 0.48.2-bb.0
# Changelog Updates

## [0.48.2-bb.0] - 2024-11-26
### Changed
- Updated gluon: 0.5.8 -> 0.5.12
- Updated fluent-bit: 3.1.9 -> 3.2.1

Loki📜

  • !5410: loki update to 6.18.0-bb.3
# Changelog Updates

## [6.18.0-bb.3] - 2024-11-20
### Changed
- Modified cypress test to not use dynamic code, and replaced with a static & predictable value

## [6.18.0-bb.2] - 2024-11-19
### Changed
- Modified cypress test `id` field value to accommodate latest Grafana updates.

Neuvector📜

  • !5402: neuvector update to 2.8.2-bb.2
# Changelog Updates

## [2.8.2-bb.2] - 2024-11-18
### Fixed
- Fixed indentation error

Tempo📜

  • !5390: tempo update to 1.11.0-bb.0
# Changelog Updates

## [1.11.0-bb.0] - 2024-11-06
### Added
- Synchronized with upstream chart version 1.11.0
- Update gluon: 0.5.3 > 0.5.9

Grafana📜

  • !5447: grafana update to 8.6.2-bb.0
  • !5410: grafana update to 8.6.0-bb.0
# Changelog Updates

## [8.6.2-bb.0] - 2024-11-26
### Changed
- gluon updated from 0.5.10 to 0.5.12
- ironbank/big-bang/grafana/grafana-plugins updated from 11.3.0 to 11.3.1

## [8.6.0-bb.0] - 2024-11-16
### Changed
- gluon updated from 0.5.8 to 0.5.10
- ironbank/big-bang/grafana/grafana-plugins updated from 11.2.2 to 11.3.0
- ironbank/redhat/ubi/ubi9-minimal updated from 9.4 to 9.5
- Added the maintenance track annotation and badge

Twistlock📜

  • !5451: twistlock update to 0.18.0-bb.0
# Changelog Updates

## [0.18.0-bb.0] - 2024-11-26
### Changed
- gluon updated from 0.5.8 to 0.5.12
- ironbank/opensource/kubernetes/kubectl updated from v1.30.6 to v1.30.7
- ironbank/twistlock/console/console updated from 32.07.123 to 33.01.137
- ironbank/twistlock/defender/defender updated from 32.07.123 to 33.01.137

Argocd📜

  • !5475: argocd update to 7.7.5-bb.0
# Changelog Updates

## [7.7.5-bb.0] - 2024-12-04
### Changed
- Update redis chart 20.0.1-bb.1 -> 20.2.1-bb.4
- Update registry1.dso.mil/ironbank/bitnami/analytics/redis-exporter v1.63.0 -> v1.66.0
- Update registry1.dso.mil/ironbank/big-bang/argocd v2.12.4 -> v2.13.1
- Updated gluon from 0.5.4 -> 0.5.12
- Update ironbank/big-bang/argocd v2.12.4 -> v2.13.1
- Update registry1.dso.mil/ironbank/bitnami/redis 7.4.0 -> 7.4.1

Authservice📜

  • !5434: authservice update to 1.0.3-bb.0
# Changelog Updates

## [1.0.3-bb.0] - 2024-11-20
### Changed
- ironbank/istio-ecosystem/authservice updated from 1.0.2 to 1.0.3
- Update Redis chart to 20.2.1-bb.4

## [1.0.2-bb.2] - 2024-11-04
### Changed
- redis updated from 20.0.1-bb.1 to 20.2.1-bb.3
- ironbank/bitnami/redis updated from 7.4.0 to 7.4.1

Gitlab📜

  • !5422: gitlab update to 8.5.2-bb.0
  • !5413: gitlab update to 8.5.1-bb.0
# Changelog Updates

## [8.5.2-bb.0] - 2024-11-19
### Changed
- ironbank/gitlab/gitlab/gitlab-webservice (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/certificates (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitaly (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-base (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-container-registry (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-exporter (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-mailroom (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-pages (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-shell (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-sidekiq (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-toolbox (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-workhorse (source) 7.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/kubectl (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/opensource/postgres/postgresql (source) 14.13 -> 14.14
- registry1.dso.mil/ironbank/redhat/ubi/ubi9 (source) 9.4 -> 9.5

## [8.5.1-bb.0] - 2024-11-13
### Changed
- ironbank/gitlab/gitlab/gitlab-webservice (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/bitnami/analytics/redis-exporter (source) v1.65.0 -> v1.66.0
- registry1.dso.mil/ironbank/gitlab/gitlab/certificates (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitaly (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-base (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-container-registry (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-exporter (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-mailroom (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-pages (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-shell (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-sidekiq (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-toolbox (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice (source) v17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-workhorse (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/kubectl (source) 17.3.6 -> 17.5.1

Nexus📜

  • !5400: nexusRepositoryManager update to 74.0.0-bb.0
# Changelog Updates

## [74.0.0-bb.0] - 2024-11-12
### Changed
- Updated chart to version: 74.0.0-bb.0 | appVersion: 3.74.0-05
- Updated Gluon 0.5.8 -> 0.5.10
- Updated ironbank/sonatype/nexus/nexus (source) 3.73.0-12 -> 3.74.0-05
- Updated registry1.dso.mil/ironbank/sonatype/nexus/nexus (source) 3.73.0-12 -> 3.74.0-05

Fortify📜

  • !5426: fortify update to 1.1.2320154-bb.20
# Changelog Updates

## [1.1.2320154-bb.20] - 2024-11-21
### Changed
- Reverted changes made from previou Kiali labelling strategy
- Updated labels used for pod from `ssc.selector` to `ssc.labels` to ensure all required labels get applied properly

Anchore Enterprise📜

  • !5453: anchore update to 3.1.1-bb.3
  • !5448: anchore update to 3.1.1-bb.2
  • !5432: anchore update to 3.1.1-bb.1
  • !5414: anchore update to 3.1.1-bb.0
# Changelog Updates

## [3.1.1-bb.3] - 2024-11-26
### Changed
- updated gluon to `0.5.12`
- updated kubectl to `1.30.7`

## [3.1.1-bb.2] - 2024-11-25
### Changed
- updated cypress to `13.16.0`

## [3.1.1-bb.1] - 2024-11-21
### Changed
- Reverted changes made from previous Kiali labelling strategy

## [3.1.1-bb.0] - 2024-11-13
### Changed
- Updated Anchore Enterprise chart to `3.1.1`
- Updated enterprise to `5.11.1`

## [3.1.0-bb.0] - 2024-11-12
### Changed
- Updated Anchore Enterprise chart to `3.1.0`

## [3.0.0-bb.3] - 2024-11-08
### Changed
- Updated gluon to `0.5.10`
- Updated enterprise to `5.11.0`
- Updated enterpriseui to `5.11.0`
- Updated kubectl to `1.30.6`

Mattermost📜

  • !5407: mattermost update to 10.2.0-bb.0
# Changelog Updates

## [10.2.0-bb.0] - 2024-11-18
### Changed
- gluon updated from 0.5.8 to 0.5.9
- ironbank/opensource/mattermost/mattermost updated from 10.1.2 to 10.2.0

Velero📜

  • !5455: velero update to 7.2.2-bb.3
  • !5406: velero update to 7.2.2-bb.2
  • !5383: velero update to 7.2.2-bb.1
# Changelog Updates

## [7.2.2-bb.3] - 2024-11-25
### Added
- Updated registry1.dso.mil/ironbank/opensource/kubernetes/kubectl Docker tag to v1.30.7

## [7.2.2-bb.2] - 2024-11-15
### Added
- Added changes to BBCHANGES
- Added custom clusterole and clusterrolebindg to template bigbang
- Updated rules

## [7.2.2-bb.1] - 2024-11-07
### Changed
- Updated velero-restore-helper v1.14.1 -> v1.15.0
- Updated registry1.dso.mil/ironbank/opensource/velero/velero-plugin-for-microsoft-azure v1.10.1 -> v1.11.0
- Updated registry1.dso.mil/ironbank/opensource/velero/velero-plugin-for-aws v1.10.1 -> v1.11.0
- Updated registry1.dso.mil/ironbank/opensource/velero/velero 1.14.1 -> 1.15.0

Keycloak📜

  • !5440: keycloak update to 2.5.1-bb.2
  • !5418: keycloak update to 2.5.1-bb.1
# Changelog Updates

## [2.5.1-bb.2] - 2024-11-22
### Updated
- added kubernetes version labels to Keycloak and Postgresql

## [2.5.1-bb.1] - 2024-11-19
### Updated
- Added truststore.pfx to .helmignore file to alleviate helm deployment secret size issues

Vault📜

  • !5411: vault update to 0.29.0-bb.0
# Changelog Updates

## [0.29.0-bb.0] - 2024-11-12
### Changed
- Updated charts to 0.29.0
- Updated minio-instance from 6.0.2-bb.2 -> 6.0.3-bb.2
- Updated gluon to 0.5.9
- Updated registry1.dso.mil/ironbank/hashicorp/vault/vault-k8s (source) v1.4.2 -> v1.5.0

Harbor📜

  • !5459: harbor update to 1.16.0-bb.2
  • !5444: harbor update to 1.16.0-bb.1
  • !5428: harbor update to 1.16.0-bb.0
# Changelog Updates

## [1.16.0-bb.2] - 2024-11-27
### Changed
- Updated gluon to 0.5.10 -> 0.5.12
- Updated registry1.dso.mil/ironbank/opensource/nginx/nginx (source) patch 1.27.2 -> 1.27.3
- Updated registry1.dso.mil/ironbank/opensource/postgres/postgresql12 (source) minor 12.21 -> 12.22
- Updated the values.yaml file to address annotations and imagepullsecrets options missing
- Updated the registry-dpl.yaml file to define a default for serviceAccountName and also fix the wrong conditional statement.
- Updated the _helpers.tpl file to address the serviceAccountName pointer in the values file.

## [1.16.0-bb.0] - 2024-11-20
### Changed
- Updated goharbor/redis-photon minor v2.11.0 -> v2.12.0
- Updated redis (source) minor 20.0.1-bb.0 -> 20.2.1-bb.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-core (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-core (source) minor 2.11.1 -> 2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-exporter (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-jobservice (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-portal (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-registryctl (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/registry (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/trivy-adapter (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/nginx/nginx (source) patch 1.26.2 -> 1.27.2
- Updated registry1.dso.mil/ironbank/opensource/postgres/postgresql12 (source) minor 12.20 -> 12.21

Thanos📜

  • !5423: thanos update to 15.8.1-bb.0
# Changelog Updates

## [15.8.1-bb.0] - 2024-11-18
### Upgraded
- Upgraded gluon from `0.5.4` -> `0.5.10`
- Upgraded minio-instance from `6.0.3-bb.2` -> `6.0.4-bb.2`
- Upgraded kubectl image from `v1.29.8` -> `v1.30.6`

External Secrets📜

  • !5395: externalSecrets update to 0.10.4-bb.0
  • !5391: externalSecrets update to 0.10.2-bb.5
# Changelog Updates

## [0.10.4-bb.0] - 2024-11-12
### Added
- Updated chart to v0.10.4
- Updated to gluon 0.5.4

## [0.10.2-bb.5] - 2024-10-31
### Added
- Added a gluon wait script to wait until the validating webhook is functional before completing the helm release
- Updated the gluon dependency to v0.5.10

## [0.10.2-bb.3] - 2024-10-23
### Changed
- Fix resource ordering to correct a hidden test failure that was giving false confidence

## [0.10.2-bb.2] - 2024-10-17
### Added
- Create secret store based off of provided user values

Known Issues📜

  • Kiali - ISSUE
  • On Kubernetes 1.29+, the kiali operator may fail with a 404 while running the kiali-deploy playbook if the cluster returns the flowcontrol.apiserver.k8s.io/v1beta2 api version (no longer served as of v1.29).

In this case, removing the invalid api version should resolve the issue and allow the kiali operator to run successfully.

$ kubectl delete apiservices.apiregistration.k8s.io v1beta2.flowcontrol.apiserver.k8s.io

As always, we welcome and appreciate feedback from our community of users. Please feel free to:

Future📜

Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.