Release Notes - 2.41.0📜
Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.30.3 (RKE2).
Upgrade Notices📜
- Kiali - MR:
- By default Kiali has access to all namespaces within a given cluster. However, if you have restricted access to only specific namespaces please review this note prior to upgrading as the methodology behind this has changed.
- External-secrets - MR:
- If you are deploying any deprecated v1alpha1 custom reources, your deployment may break with this patch. Please upgrade resources to nondeprecated versions.
- BBTOC- MR
- In an effort to provide more clarity on where each package stands within BigBang have implemented the Package Maintenance Tracks as approved by the BBTOC. This should provide more clarity on how different packages are maintained and tested. In order to facilitate this, each package that is maintained & Integrated by BigBang (not community maintanted packages) now has a badge added on the readme of that package, to identify what track each package is on.
Upgrades from previous releases📜
If coming from a version pre-2.40.0
, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.40.0
.
Packages📜
Package | Type | Package Version | BB Version |
---|---|---|---|
Alloy | Addon | 1.4.2 |
1.6.4-bb.0 |
Anchore Enterprise | Addon | 5.11.1 |
3.1.1-bb.3 🔗 |
Argocd | Addon | 2.13.1 |
7.7.5-bb.0 🔗 |
Authservice | Addon | 1.0.3 |
1.0.3-bb.0 🔗 |
Cluster Auditor | Core | 0.0.7 |
1.5.0-bb.22 |
Eck Operator | Core | 2.14.0 |
2.14.0-bb.0 |
Elasticsearch Kibana | Core | Kibana 8.16.0 Elasticsearch 8.16.0 |
1.22.0-bb.0 🔗 |
External Secrets | Addon | 0.10.4 |
0.10.4-bb.0 🔗 |
Fluentbit | Core | 3.2.1 |
0.48.2-bb.0 🔗 |
Fortify | Addon | 24.2.0.0186 |
1.1.2320154-bb.20 🔗 |
Gatekeeper | Core | 3.17.1 |
3.17.1-bb.2 |
Gitlab | Addon | 17.5.2 |
8.5.2-bb.0 🔗 |
Gitlab Runner | Addon | 17.2.1 |
0.67.1-bb.1 |
Grafana | Core | 11.3.1 |
8.6.2-bb.0 🔗 |
Haproxy | Addon | 2.2.33 |
1.19.3-bb.8 |
Harbor | Addon | 2.11.0 |
1.16.0-bb.2 🔗 |
Holocron | Addon | 3.3.2 |
1.0.12 |
Istio Controlplane | Core | Istio 1.23.3 Tetrate Istio Distro 1.23.3 |
1.23.3-bb.1 🔗 |
Istio Operator | Core | Istio Operator 1.23.3 Tetrate Istio Distro Operator 1.23.3 |
1.23.3-bb.0 🔗 |
Jaeger | Core | 1.61.0 |
2.57.0-bb.0 |
Keycloak | Addon | 25.0.6 |
2.5.1-bb.2 🔗 |
Kiali | Core | 2.1.0 |
2.1.0-bb.0 🔗 |
Kyverno | Core | 1.12.6 |
3.2.7-bb.0 |
Kyverno Policies | Core | 3.2.6 |
3.2.6-bb.1 🔗 |
Kyverno Reporter | Core | 2.20.2 |
2.24.2-bb.1 |
Loki | Core | 3.2.0 |
6.18.0-bb.3 🔗 |
Mattermost | Addon | 10.2.0 |
10.2.0-bb.0 🔗 |
Mattermost Operator | Addon | 1.22.1 |
1.22.1-bb.0 |
Metrics Server | Addon | 0.7.2 |
3.12.2-bb.1 |
Minio | Addon | RELEASE.2024-06-04T19-20-08Z |
6.0.4-bb.2 |
Minio Operator | Addon | 6.0.4 |
6.0.4-bb.0 |
Monitoring | Core | Prometheus 2.54.1 Grafana 11.1.0 Alertmanager 0.27.0 |
62.4.0-bb.1 |
Neuvector | Core | 5.4.0 |
2.8.2-bb.2 🔗 |
Nexus | Addon | 3.74.0-05 |
74.0.0-bb.0 🔗 |
Promtail | Core | 3.0.0 |
6.16.2-bb.4 |
Sonarqube | Addon | 10.6.0-community |
10.6.1-bb.2 |
Tempo | Core | Tempo 2.5.0 Tempo Query 2.5.0 |
1.11.0-bb.0 🔗 |
Thanos | Addon | 0.36.1 |
15.8.1-bb.0 🔗 |
Twistlock | Core | 33.01.137 |
0.18.0-bb.0 🔗 |
Vault | Addon | 1.18.1 |
0.29.0-bb.0 🔗 |
Velero | Addon | 1.15.0 |
7.2.2-bb.3 🔗 |
Wrapper | Core | N / A | 0.4.10 |
Changes in 2.41.0📜
Big Bang MRs📜
Istio Controlplane📜
# Changelog Updates
## [1.23.3-bb.1] - 2024-11-25
### Changed
- Added app.kubernetes.io/name and app.kubernetes.io/version labels to all workloads
- Removed version label that was added as part of previous Kiali labelling strategy
## [1.23.3-bb.0] - 2024-11-04
### Changed
- ironbank/opensource/istio/install-cni updated from 1.23.2 to 1.23.3
- ironbank/opensource/istio/pilot updated from 1.23.2 to 1.23.3
- ironbank/opensource/istio/proxyv2 updated from 1.23.2 to 1.23.3
- ironbank/opensource/kubernetes/kubectl updated from v1.30.5 to v1.30.6
- ironbank/tetrate/istio/install-cni updated from 1.23.2 to 1.23.3
- ironbank/tetrate/istio/pilot updated from 1.23.2 to 1.23.3
- ironbank/tetrate/istio/proxyv2 updated from 1.23.2 to 1.23.3
Istio Operator📜
- !5404: istioOperator update to 1.23.3-bb.0
# Changelog Updates
## [1.23.3-bb.0] - 2024-11-04
### Changed
- Updated registry1.dso.mil/ironbank/opensource/istio/operator from 1.23.2 to 1.23.3
- Updated registry1.dso.mil/ironbank/tetrate/istio/operator from 1.23.2-tetratefips-v0 to 1.23.3-tetratefips-v0
Kiali📜
- !5446: kiali update to 2.1.0-bb.0
# Changelog Updates
## [2.1.0-bb.0] - 2024-11-26
### Changed
- Updated Kiali and Kiali-operator to v2.1.0
- Updated Gluon to v0.5.12
- Updated kubectl to v1.30.7
Kyverno Policies📜
- !5389: kyvernoPolicies update to 3.2.6-bb.1
# Changelog Updates
## [3.2.6-bb.1] - 2024-10-23
### Changed
- Added block-ephemeral-containers policy and test-ephemeral.sh as test
Elasticsearch Kibana📜
- !5436: elasticsearchKibana update to 1.22.0-bb.0
# Changelog Updates
## [1.22.0-bb.0] - 2024-11-13
### Changed
- gluon updated from 0.5.8 to 0.5.10
- ironbank/elastic/elasticsearch/elasticsearch updated from 8.15.3 to 8.16.0
- ironbank/elastic/kibana/kibana updated from 8.15.3 to 8.16.0
Fluentbit📜
- !5449: fluentbit update to 0.48.2-bb.0
# Changelog Updates
## [0.48.2-bb.0] - 2024-11-26
### Changed
- Updated gluon: 0.5.8 -> 0.5.12
- Updated fluent-bit: 3.1.9 -> 3.2.1
Loki📜
- !5410: loki update to 6.18.0-bb.3
# Changelog Updates
## [6.18.0-bb.3] - 2024-11-20
### Changed
- Modified cypress test to not use dynamic code, and replaced with a static & predictable value
## [6.18.0-bb.2] - 2024-11-19
### Changed
- Modified cypress test `id` field value to accommodate latest Grafana updates.
Neuvector📜
- !5402: neuvector update to 2.8.2-bb.2
# Changelog Updates
## [2.8.2-bb.2] - 2024-11-18
### Fixed
- Fixed indentation error
Tempo📜
- !5390: tempo update to 1.11.0-bb.0
# Changelog Updates
## [1.11.0-bb.0] - 2024-11-06
### Added
- Synchronized with upstream chart version 1.11.0
- Update gluon: 0.5.3 > 0.5.9
Grafana📜
# Changelog Updates
## [8.6.2-bb.0] - 2024-11-26
### Changed
- gluon updated from 0.5.10 to 0.5.12
- ironbank/big-bang/grafana/grafana-plugins updated from 11.3.0 to 11.3.1
## [8.6.0-bb.0] - 2024-11-16
### Changed
- gluon updated from 0.5.8 to 0.5.10
- ironbank/big-bang/grafana/grafana-plugins updated from 11.2.2 to 11.3.0
- ironbank/redhat/ubi/ubi9-minimal updated from 9.4 to 9.5
- Added the maintenance track annotation and badge
Twistlock📜
- !5451: twistlock update to 0.18.0-bb.0
# Changelog Updates
## [0.18.0-bb.0] - 2024-11-26
### Changed
- gluon updated from 0.5.8 to 0.5.12
- ironbank/opensource/kubernetes/kubectl updated from v1.30.6 to v1.30.7
- ironbank/twistlock/console/console updated from 32.07.123 to 33.01.137
- ironbank/twistlock/defender/defender updated from 32.07.123 to 33.01.137
Argocd📜
- !5475: argocd update to 7.7.5-bb.0
# Changelog Updates
## [7.7.5-bb.0] - 2024-12-04
### Changed
- Update redis chart 20.0.1-bb.1 -> 20.2.1-bb.4
- Update registry1.dso.mil/ironbank/bitnami/analytics/redis-exporter v1.63.0 -> v1.66.0
- Update registry1.dso.mil/ironbank/big-bang/argocd v2.12.4 -> v2.13.1
- Updated gluon from 0.5.4 -> 0.5.12
- Update ironbank/big-bang/argocd v2.12.4 -> v2.13.1
- Update registry1.dso.mil/ironbank/bitnami/redis 7.4.0 -> 7.4.1
Authservice📜
- !5434: authservice update to 1.0.3-bb.0
# Changelog Updates
## [1.0.3-bb.0] - 2024-11-20
### Changed
- ironbank/istio-ecosystem/authservice updated from 1.0.2 to 1.0.3
- Update Redis chart to 20.2.1-bb.4
## [1.0.2-bb.2] - 2024-11-04
### Changed
- redis updated from 20.0.1-bb.1 to 20.2.1-bb.3
- ironbank/bitnami/redis updated from 7.4.0 to 7.4.1
Gitlab📜
# Changelog Updates
## [8.5.2-bb.0] - 2024-11-19
### Changed
- ironbank/gitlab/gitlab/gitlab-webservice (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/certificates (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitaly (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-base (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-container-registry (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-exporter (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-mailroom (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-pages (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-shell (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-sidekiq (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-toolbox (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-workhorse (source) 7.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/gitlab/gitlab/kubectl (source) 17.5.1 -> 17.5.2
- registry1.dso.mil/ironbank/opensource/postgres/postgresql (source) 14.13 -> 14.14
- registry1.dso.mil/ironbank/redhat/ubi/ubi9 (source) 9.4 -> 9.5
## [8.5.1-bb.0] - 2024-11-13
### Changed
- ironbank/gitlab/gitlab/gitlab-webservice (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/bitnami/analytics/redis-exporter (source) v1.65.0 -> v1.66.0
- registry1.dso.mil/ironbank/gitlab/gitlab/certificates (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitaly (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-base (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-container-registry (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-exporter (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-mailroom (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-pages (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-shell (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-sidekiq (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-toolbox (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice (source) v17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-workhorse (source) 17.3.6 -> 17.5.1
- registry1.dso.mil/ironbank/gitlab/gitlab/kubectl (source) 17.3.6 -> 17.5.1
Nexus📜
- !5400: nexusRepositoryManager update to 74.0.0-bb.0
# Changelog Updates
## [74.0.0-bb.0] - 2024-11-12
### Changed
- Updated chart to version: 74.0.0-bb.0 | appVersion: 3.74.0-05
- Updated Gluon 0.5.8 -> 0.5.10
- Updated ironbank/sonatype/nexus/nexus (source) 3.73.0-12 -> 3.74.0-05
- Updated registry1.dso.mil/ironbank/sonatype/nexus/nexus (source) 3.73.0-12 -> 3.74.0-05
Fortify📜
- !5426: fortify update to 1.1.2320154-bb.20
# Changelog Updates
## [1.1.2320154-bb.20] - 2024-11-21
### Changed
- Reverted changes made from previou Kiali labelling strategy
- Updated labels used for pod from `ssc.selector` to `ssc.labels` to ensure all required labels get applied properly
Anchore Enterprise📜
- !5453: anchore update to 3.1.1-bb.3
- !5448: anchore update to 3.1.1-bb.2
- !5432: anchore update to 3.1.1-bb.1
- !5414: anchore update to 3.1.1-bb.0
# Changelog Updates
## [3.1.1-bb.3] - 2024-11-26
### Changed
- updated gluon to `0.5.12`
- updated kubectl to `1.30.7`
## [3.1.1-bb.2] - 2024-11-25
### Changed
- updated cypress to `13.16.0`
## [3.1.1-bb.1] - 2024-11-21
### Changed
- Reverted changes made from previous Kiali labelling strategy
## [3.1.1-bb.0] - 2024-11-13
### Changed
- Updated Anchore Enterprise chart to `3.1.1`
- Updated enterprise to `5.11.1`
## [3.1.0-bb.0] - 2024-11-12
### Changed
- Updated Anchore Enterprise chart to `3.1.0`
## [3.0.0-bb.3] - 2024-11-08
### Changed
- Updated gluon to `0.5.10`
- Updated enterprise to `5.11.0`
- Updated enterpriseui to `5.11.0`
- Updated kubectl to `1.30.6`
Mattermost📜
- !5407: mattermost update to 10.2.0-bb.0
# Changelog Updates
## [10.2.0-bb.0] - 2024-11-18
### Changed
- gluon updated from 0.5.8 to 0.5.9
- ironbank/opensource/mattermost/mattermost updated from 10.1.2 to 10.2.0
Velero📜
- !5455: velero update to 7.2.2-bb.3
- !5406: velero update to 7.2.2-bb.2
- !5383: velero update to 7.2.2-bb.1
# Changelog Updates
## [7.2.2-bb.3] - 2024-11-25
### Added
- Updated registry1.dso.mil/ironbank/opensource/kubernetes/kubectl Docker tag to v1.30.7
## [7.2.2-bb.2] - 2024-11-15
### Added
- Added changes to BBCHANGES
- Added custom clusterole and clusterrolebindg to template bigbang
- Updated rules
## [7.2.2-bb.1] - 2024-11-07
### Changed
- Updated velero-restore-helper v1.14.1 -> v1.15.0
- Updated registry1.dso.mil/ironbank/opensource/velero/velero-plugin-for-microsoft-azure v1.10.1 -> v1.11.0
- Updated registry1.dso.mil/ironbank/opensource/velero/velero-plugin-for-aws v1.10.1 -> v1.11.0
- Updated registry1.dso.mil/ironbank/opensource/velero/velero 1.14.1 -> 1.15.0
Keycloak📜
# Changelog Updates
## [2.5.1-bb.2] - 2024-11-22
### Updated
- added kubernetes version labels to Keycloak and Postgresql
## [2.5.1-bb.1] - 2024-11-19
### Updated
- Added truststore.pfx to .helmignore file to alleviate helm deployment secret size issues
Vault📜
- !5411: vault update to 0.29.0-bb.0
# Changelog Updates
## [0.29.0-bb.0] - 2024-11-12
### Changed
- Updated charts to 0.29.0
- Updated minio-instance from 6.0.2-bb.2 -> 6.0.3-bb.2
- Updated gluon to 0.5.9
- Updated registry1.dso.mil/ironbank/hashicorp/vault/vault-k8s (source) v1.4.2 -> v1.5.0
Harbor📜
- !5459: harbor update to 1.16.0-bb.2
- !5444: harbor update to 1.16.0-bb.1
- !5428: harbor update to 1.16.0-bb.0
# Changelog Updates
## [1.16.0-bb.2] - 2024-11-27
### Changed
- Updated gluon to 0.5.10 -> 0.5.12
- Updated registry1.dso.mil/ironbank/opensource/nginx/nginx (source) patch 1.27.2 -> 1.27.3
- Updated registry1.dso.mil/ironbank/opensource/postgres/postgresql12 (source) minor 12.21 -> 12.22
- Updated the values.yaml file to address annotations and imagepullsecrets options missing
- Updated the registry-dpl.yaml file to define a default for serviceAccountName and also fix the wrong conditional statement.
- Updated the _helpers.tpl file to address the serviceAccountName pointer in the values file.
## [1.16.0-bb.0] - 2024-11-20
### Changed
- Updated goharbor/redis-photon minor v2.11.0 -> v2.12.0
- Updated redis (source) minor 20.0.1-bb.0 -> 20.2.1-bb.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-core (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-core (source) minor 2.11.1 -> 2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-exporter (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-jobservice (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-portal (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/harbor-registryctl (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/registry (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/goharbor/trivy-adapter (source) minor v2.11.1 -> v2.12.0
- Updated registry1.dso.mil/ironbank/opensource/nginx/nginx (source) patch 1.26.2 -> 1.27.2
- Updated registry1.dso.mil/ironbank/opensource/postgres/postgresql12 (source) minor 12.20 -> 12.21
Thanos📜
- !5423: thanos update to 15.8.1-bb.0
# Changelog Updates
## [15.8.1-bb.0] - 2024-11-18
### Upgraded
- Upgraded gluon from `0.5.4` -> `0.5.10`
- Upgraded minio-instance from `6.0.3-bb.2` -> `6.0.4-bb.2`
- Upgraded kubectl image from `v1.29.8` -> `v1.30.6`
External Secrets📜
# Changelog Updates
## [0.10.4-bb.0] - 2024-11-12
### Added
- Updated chart to v0.10.4
- Updated to gluon 0.5.4
## [0.10.2-bb.5] - 2024-10-31
### Added
- Added a gluon wait script to wait until the validating webhook is functional before completing the helm release
- Updated the gluon dependency to v0.5.10
## [0.10.2-bb.3] - 2024-10-23
### Changed
- Fix resource ordering to correct a hidden test failure that was giving false confidence
## [0.10.2-bb.2] - 2024-10-17
### Added
- Create secret store based off of provided user values
Known Issues📜
- Kiali - ISSUE
- On Kubernetes 1.29+, the kiali operator may fail with a 404 while running the kiali-deploy playbook if the cluster returns the
flowcontrol.apiserver.k8s.io/v1beta2
api version (no longer served as of v1.29).
In this case, removing the invalid api version should resolve the issue and allow the kiali operator to run successfully.
$ kubectl delete apiservices.apiregistration.k8s.io v1beta2.flowcontrol.apiserver.k8s.io
Helpful Links📜
As always, we welcome and appreciate feedback from our community of users. Please feel free to:
- Open issues here
- Join our chat
- Check out the documentation for guidance on how to get started
Future📜
Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.