Skip to content

ChangelogπŸ“œ

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[1.23.6-bb.0] 2025-04-17πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.23.5 to 1.23.6
  • ironbank/opensource/istio/pilot updated from 1.23.5 to 1.23.6
  • ironbank/opensource/istio/proxyv2 updated from 1.23.5 to 1.23.6
  • ironbank/opensource/kubernetes/kubectl updated from v1.30.8 to v1.30.10
  • ironbank/tetrate/istio/install-cni updated from 1.23.5 to 1.23.6
  • ironbank/tetrate/istio/pilot updated from 1.23.5 to 1.23.6
  • ironbank/tetrate/istio/proxyv2 updated from 1.23.5 to 1.23.6
  • Updated Gluon to v0.5.15

[1.23.5-bb.1] - 2025-03-25πŸ“œ

ChangedπŸ“œ

  • Added an EnvoyFilter to simplify classification banner creation

[1.23.5-bb.0] - 2025-02-19πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.23.4 to 1.23.5
  • ironbank/opensource/istio/pilot updated from 1.23.4 to 1.23.5
  • ironbank/opensource/istio/proxyv2 updated from 1.23.4 to 1.23.5
  • ironbank/opensource/kubernetes/kubectl updated from v1.30.8 to v1.30.10
  • ironbank/tetrate/istio/install-cni updated from 1.23.4 to 1.23.5
  • ironbank/tetrate/istio/pilot updated from 1.23.4 to 1.23.5
  • ironbank/tetrate/istio/proxyv2 updated from 1.23.4 to 1.23.5
  • Updated Gluon to v0.5.14

[1.23.4-bb.0] - 2025-01-13πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.23.3 to 1.23.4
  • ironbank/opensource/istio/pilot updated from 1.23.3 to 1.23.4
  • ironbank/opensource/istio/proxyv2 updated from 1.23.3 to 1.23.4
  • ironbank/opensource/kubernetes/kubectl updated from v1.30.6 to v1.30.8
  • ironbank/tetrate/istio/install-cni updated from 1.23.3 to 1.23.4
  • ironbank/tetrate/istio/pilot updated from 1.23.3 to 1.23.4
  • ironbank/tetrate/istio/proxyv2 updated from 1.23.3 to 1.23.4

[1.23.3-bb.3] - 2025-01-06πŸ“œ

ChangedπŸ“œ

  • Update OSCAL to utilize Lula config file & fix templating bug

[1.23.3-bb.2] - 2024-12-10πŸ“œ

ChangedπŸ“œ

  • Removed global cpu limit for istio proxy

[1.23.3-bb.1] - 2024-11-25πŸ“œ

ChangedπŸ“œ

  • Added app.kubernetes.io/name and app.kubernetes.io/version labels to all workloads
  • Removed version label that was added as part of previous Kiali labelling strategy
  • Added the maintenance track annotation and badge

[1.23.3-bb.0] - 2024-11-04πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.23.2 to 1.23.3
  • ironbank/opensource/istio/pilot updated from 1.23.2 to 1.23.3
  • ironbank/opensource/istio/proxyv2 updated from 1.23.2 to 1.23.3
  • ironbank/opensource/kubernetes/kubectl updated from v1.30.5 to v1.30.6
  • ironbank/tetrate/istio/install-cni updated from 1.23.2 to 1.23.3
  • ironbank/tetrate/istio/pilot updated from 1.23.2 to 1.23.3
  • ironbank/tetrate/istio/proxyv2 updated from 1.23.2 to 1.23.3

[1.23.2-bb.1] - 2024-10-21πŸ“œ

AddedπŸ“œ

  • added default, global envoy filter for HSTS and other security headers

[1.23.2-bb.0] - 2024-10-08πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.22.5 to 1.23.2
  • ironbank/opensource/istio/pilot updated from 1.22.5 to 1.23.2
  • ironbank/opensource/istio/proxyv2 updated from 1.22.5 to 1.23.2
  • ironbank/tetrate/istio/install-cni updated from 1.22.5 to 1.23.2
  • ironbank/tetrate/istio/pilot updated from 1.22.5 to 1.23.2
  • ironbank/tetrate/istio/proxyv2 updated from 1.22.5 to 1.23.2

[1.22.5-bb.0] - 2024-09-24πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.22.4 to 1.22.5
  • ironbank/opensource/istio/pilot updated from 1.22.4 to 1.22.5
  • ironbank/opensource/istio/proxyv2 updated from 1.22.4 to 1.22.5
  • ironbank/opensource/kubernetes/kubectl updated from v1.29.6 to v1.30.5
  • ironbank/tetrate/istio/install-cni updated from 1.22.4 to 1.22.5
  • ironbank/tetrate/istio/pilot updated from 1.22.4 to 1.22.5
  • ironbank/tetrate/istio/proxyv2 updated from 1.22.4 to 1.22.5

[1.22.4-bb.2] - 2024-09-16πŸ“œ

AddedπŸ“œ

  • Gluon post-install wait scripts

[1.22.4-bb.1] - 2024-08-22πŸ“œ

ChangedπŸ“œ

  • Updating Istio oscal-component.yaml to include Lula validations for automated assessment

AddedπŸ“œ

  • Added oscal-assessment-results.yaml as a threshold for automated governance

[1.22.4-bb.0] - 2024-08-21πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.22.3 to 1.22.4
  • ironbank/opensource/istio/pilot updated from 1.22.3 to 1.22.4
  • ironbank/opensource/istio/proxyv2 updated from 1.22.3 to 1.22.4
  • ironbank/tetrate/istio/install-cni updated from 1.22.3 to 1.22.4
  • ironbank/tetrate/istio/pilot updated from 1.22.3 to 1.22.4
  • ironbank/tetrate/istio/proxyv2 updated from 1.22.3 to 1.22.4

[1.22.3-bb.0] - 2024-07-18πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.22.2 to 1.22.3
  • ironbank/opensource/istio/pilot updated from 1.22.2 to 1.22.3
  • ironbank/opensource/istio/proxyv2 updated from 1.22.2 to 1.22.3
  • ironbank/tetrate/istio/install-cni updated from 1.22.2 to 1.22.3
  • ironbank/tetrate/istio/pilot updated from 1.22.2 to 1.22.3
  • ironbank/tetrate/istio/proxyv2 updated from 1.22.2 to 1.22.3

[1.22.2-bb.2] - 2024-07-10πŸ“œ

AddedπŸ“œ

  • Added native sidecar support

[1.22.2-bb.1] - 2024-07-09πŸ“œ

ChangedπŸ“œ

  • Standardized authorization policy template directory path

[1.22.2-bb.0] - 2024-07-01πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.22.1 to 1.22.2
  • ironbank/opensource/istio/pilot updated from 1.22.1 to 1.22.2
  • ironbank/opensource/istio/proxyv2 updated from 1.22.1 to 1.22.2
  • ironbank/tetrate/istio/install-cni updated from 1.22.1 to 1.22.2
  • ironbank/tetrate/istio/pilot updated from 1.22.1 to 1.22.2
  • ironbank/tetrate/istio/proxyv2 updated from 1.22.1 to 1.22.2

[1.22.1-bb.0] - 2024-06-14πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.21.2 to 1.22.1
  • ironbank/opensource/istio/pilot updated from 1.21.2 to 1.22.1
  • ironbank/opensource/istio/proxyv2 updated from 1.21.2 to 1.22.1
  • ironbank/tetrate/istio/install-cni updated from 1.21.2 to 1.22.1
  • ironbank/tetrate/istio/pilot updated from 1.21.2 to 1.22.1
  • ironbank/tetrate/istio/proxyv2 updated from 1.21.2 to 1.22.1

[1.21.2-bb.3] - 2024-06-12πŸ“œ

ChangedπŸ“œ

  • Moved the package specific shared istio authorization to their helm charts

[1.21.2-bb.2] - 2024-06-12πŸ“œ

ChangedπŸ“œ

  • Revert to correct overwritten dashboard changes

[1.21.2-bb.1] - 2024-05-28πŸ“œ

ChangedπŸ“œ

  • Added the shared istio authorization policies

[1.21.2-bb.0] - 2024-05-16πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.21.1 to 1.21.2
  • ironbank/opensource/istio/pilot updated from 1.21.1 to 1.21.2
  • ironbank/opensource/istio/proxyv2 updated from 1.21.1 to 1.21.2
  • ironbank/tetrate/istio/install-cni updated from 1.21.1 to 1.21.2
  • ironbank/tetrate/istio/pilot updated from 1.21.1 to 1.21.2
  • ironbank/tetrate/istio/proxyv2 updated from 1.21.1 to 1.21.2

[1.21.1-bb.1] - 2024-05-13πŸ“œ

RemovedπŸ“œ

  • Removed native sidecar support because we have to support 1.27.x

[1.21.1-bb.0] - 2024-05-03πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.20.4 to 1.21.1
  • ironbank/opensource/istio/pilot updated from 1.20.4 to 1.21.1
  • ironbank/opensource/istio/proxyv2 updated from 1.20.4 to 1.21.1
  • ironbank/tetrate/istio/install-cni updated from 1.20.4 to 1.21.1
  • ironbank/tetrate/istio/pilot updated from 1.20.4 to 1.21.1
  • ironbank/tetrate/istio/proxyv2 updated from 1.20.4 to 1.21.1

[1.20.4-bb.3] - 2024-05-02πŸ“œ

AddedπŸ“œ

  • Added custom network policies

[1.20.4-bb.2] - 2024-04-23πŸ“œ

AddedπŸ“œ

  • Added native sidecar support

[1.20.4-bb.1] - 2024-04-04πŸ“œ

FixedπŸ“œ

  • Upgrade new istio dashboards to fix β€œPrometheus” vs β€œprometheus” datasource issue

[1.20.4-bb.0] - 2024-03-25πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.19.7 to 1.20.4
  • ironbank/opensource/istio/pilot updated from 1.19.7 to 1.20.4
  • ironbank/opensource/istio/proxyv2 updated from 1.19.7 to 1.20.4
  • ironbank/tetrate/istio/install-cni updated from 1.20.3 to 1.20.4
  • ironbank/tetrate/istio/pilot updated from 1.20.3 to 1.20.4
  • ironbank/tetrate/istio/proxyv2 updated from 1.20.3 to 1.20.4

[1.19.7-bb.0] - 2024-02-13πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.19.6 to 1.19.7
  • ironbank/opensource/istio/pilot updated from 1.19.6 to 1.19.7
  • ironbank/opensource/istio/proxyv2 updated from 1.19.6 to 1.19.7
  • ironbank/tetrate/istio/install-cni updated from 1.20.2 to 1.20.3
  • ironbank/tetrate/istio/pilot updated from 1.20.2 to 1.20.3
  • ironbank/tetrate/istio/proxyv2 updated from 1.20.2 to 1.20.3

[1.19.6-bb.2] - 2024-02-12πŸ“œ

AddedπŸ“œ

  • added postInstallHook.containerResources values for hook-job.yaml

[1.19.6-bb.1] - 2024-01-31πŸ“œ

AddedπŸ“œ

  • added security context values for pilot pod for kyverno-polices to allow the pilot image

[1.19.6-bb.0] - 2024-01-12πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.19.5 to 1.19.6
  • ironbank/opensource/istio/pilot updated from 1.19.5 to 1.19.6
  • ironbank/opensource/istio/proxyv2 updated from 1.19.5 to 1.19.6
  • ironbank/tetrate/istio/install-cni updated from 1.19.6 to 1.20.2
  • ironbank/tetrate/istio/pilot updated from 1.19.5 to 1.20.2
  • ironbank/tetrate/istio/proxyv2 updated from 1.19.5 to 1.20.2

[1.19.5-bb.2] - 2023-12-29πŸ“œ

ChangedπŸ“œ

  • ironbank/tetrate/istio/install-cni updated from 1.19.3 to 1.19.6
  • ironbank/tetrate/istio/pilot updated from 1.19.3 to 1.19.5
  • ironbank/tetrate/istio/proxyv2 updated from 1.19.3 to 1.19.5

[1.19.5-bb.1] - 2023-12-19πŸ“œ

ChangedπŸ“œ

  • Allow Setting resources and limits for the postInstallHook

[1.19.5-bb.0] - 2023-12-19πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.19.4 to 1.19.5
  • ironbank/opensource/istio/pilot updated from 1.19.4 to 1.19.5
  • ironbank/opensource/istio/proxyv2 updated from 1.19.4 to 1.19.5

[1.19.4-bb.1] - 2023-11-28πŸ“œ

ChangedπŸ“œ

  • Updating OSCAL Component file.

[1.19.4-bb.0] - 2023-11-15πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.19.3 to 1.19.4
  • ironbank/opensource/istio/pilot updated from 1.19.3 to 1.19.4
  • ironbank/opensource/istio/proxyv2 updated from 1.19.3 to 1.19.4

[1.19.3-bb.1] - 2023-11-07πŸ“œ

ChangedπŸ“œ

  • ironbank/big-bang/base updated from 2.0.0 to 2.1.0

[1.19.3-bb.0] - 2023-10-14πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.19.0 to 1.19.3
  • ironbank/opensource/istio/pilot updated from 1.19.0 to 1.19.3
  • ironbank/opensource/istio/proxyv2 updated from 1.19.0 to 1.19.3
  • ironbank/tetrate/istio/install-cni updated from 1.18.2 to 1.19.3
  • ironbank/tetrate/istio/pilot updated from 1.18.2 to 1.19.3
  • ironbank/tetrate/istio/proxyv2 updated from 1.18.2 to 1.19.3

[1.19.0-bb.2] - 2023-10-11πŸ“œ

ChangedπŸ“œ

  • Modified OSCAL Version for istio and updated to 1.1.1

[1.19.0-bb.1] - 2023-10-02πŸ“œ

ChangedπŸ“œ

  • Enable Istio mTLS (via peerAuthentication) globally on istio-system namespace

[1.19.0-bb.0] - 2023-09-12πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.18.2 to 1.19.0
  • ironbank/opensource/istio/pilot updated from 1.18.2 to 1.19.0
  • ironbank/opensource/istio/proxyv2 updated from 1.18.2 to 1.19.0

[1.18.2-bb.1] - 2023-08-16πŸ“œ

ChangedπŸ“œ

  • istio control plane default config

[1.18.2-bb.0] - 2023-08-02πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.18.1 to 1.18.2
  • ironbank/opensource/istio/pilot updated from 1.18.1 to 1.18.2
  • ironbank/opensource/istio/proxyv2 updated from 1.18.1 to 1.18.2
  • ironbank/tetrate/istio/install-cni updated from 1.18.0 to 1.18.2
  • ironbank/tetrate/istio/pilot updated from 1.18.0 to 1.18.2
  • ironbank/tetrate/istio/proxyv2 updated from 1.18.0 to 1.18.2
  • Updated to new HPA value schema

[1.18.1-bb.0] - 2023-07-20πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.17.3 to 1.18.1
  • ironbank/opensource/istio/pilot updated from 1.17.3 to 1.18.1
  • ironbank/opensource/istio/proxyv2 updated from 1.17.3 to 1.18.1
  • ironbank/tetrate/istio/install-cni updated from 1.17.3 to 1.18.1
  • ironbank/tetrate/istio/pilot updated from 1.17.3 to 1.18.0
  • ironbank/tetrate/istio/proxyv2 updated from 1.17.3 to 1.18.0

[1.18.1-bb.0] - 2023-07-20πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.17.3 to 1.18.1
  • ironbank/opensource/istio/pilot updated from 1.17.3 to 1.18.1
  • ironbank/opensource/istio/proxyv2 updated from 1.17.3 to 1.18.1
  • ironbank/tetrate/istio/install-cni updated from 1.17.3 to 1.18.1
  • ironbank/tetrate/istio/pilot updated from 1.17.3 to 1.18.0
  • ironbank/tetrate/istio/proxyv2 updated from 1.17.3 to 1.18.0

[1.17.3-bb.3] - 2023-07-12πŸ“œ

AddedπŸ“œ

  • Allow user to specify their own EnvoyFilters

[1.17.3-bb.2] - 2023-07-12πŸ“œ

ChangedπŸ“œ

  • fix README.md for bb docs compiler job

[1.17.3-bb.1] - 2023-06-28πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/pilot updated from 1.17.2 to 1.17.3
  • ironbank/opensource/istio/proxyv2 updated from 1.17.2 to 1.17.3

[1.17.3-bb.0] - 2023-06-26πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.17.2 to 1.17.3
  • ironbank/tetrate/istio/install-cni updated from 1.17.2 to 1.17.3
  • ironbank/tetrate/istio/pilot updated from 1.17.2 to 1.17.3
  • ironbank/tetrate/istio/proxyv2 updated from 1.17.2 to 1.17.3

[1.17.2-bb.1] - 2023-05-26πŸ“œ

AddedπŸ“œ

  • Added scc for OpenShift

[1.17.2-bb.1] - 2023-05-04πŸ“œ

ChangedπŸ“œ

  • ironbank/tetrate/istio/install-cni updated from 1.16.1 to 1.17.2
  • ironbank/tetrate/istio/pilot updated from 1.16.1 to 1.17.2
  • ironbank/tetrate/istio/proxyv2 updated from 1.16.1 to 1.17.2

[1.17.2-bb.0] - 2023-04-11πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.17.1 to 1.17.2
  • ironbank/opensource/istio/pilot updated from 1.17.1 to 1.17.2
  • ironbank/opensource/istio/proxyv2 updated from 1.17.1 to 1.17.2

[1.17.1-bb.1] - 2023-04-07πŸ“œ

ChangedπŸ“œ

  • Added ability to pass pilot values to IstioOperator resource definition

[1.17.1-bb.0] - 2023-03-01πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.16.2 to 1.17.1
  • ironbank/opensource/istio/pilot updated from 1.16.2 to 1.17.1
  • ironbank/opensource/istio/proxyv2 updated from 1.16.2 to 1.17.1

[1.16.2-bb.0] - 2023-02-10πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.16.1 to 1.16.2
  • ironbank/opensource/istio/pilot updated from 1.16.1 to 1.16.2
  • ironbank/opensource/istio/proxyv2 updated from 1.16.1 to 1.16.2

[1.16.1-bb.2] - 2023-02-08πŸ“œ

ChangedπŸ“œ

  • Removed tetrate istioctl and install-cni image references

[1.16.1-bb.1] - 2023-01-27πŸ“œ

ChangedπŸ“œ

  • ironbank/tetrate/istio/install-cni updated from 1.15.1 to 1.16.1
  • ironbank/tetrate/istio/istioctl updated from 1.15.1 to 1.16.1
  • ironbank/tetrate/istio/pilot updated from 1.15.1 to 1.16.1
  • ironbank/tetrate/istio/proxyv2 updated from 1.15.1 to 1.16.1

[1.16.1-bb.0] - 2022-12-17πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.15.3 to 1.16.1
  • ironbank/opensource/istio/pilot updated from 1.15.3 to 1.16.1
  • ironbank/opensource/istio/proxyv2 updated from 1.15.3 to 1.16.1

[1.15.3-bb.1]πŸ“œ

ChangedπŸ“œ

  • Splits the postInstallHook image and tag so that they can be maintained separately.

[1.15.3-bb.0] - 2022-11-01πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.15.0 to 1.15.3
  • ironbank/opensource/istio/pilot updated from 1.15.0 to 1.15.3
  • ironbank/opensource/istio/proxyv2 updated from 1.15.0 to 1.15.3
  • ironbank/tetrate/istio/install-cni updated from 1.14.4 to 1.15.1
  • ironbank/tetrate/istio/istioctl updated from 1.14.4 to 1.15.1
  • ironbank/tetrate/istio/pilot updated from 1.14.4 to 1.15.1
  • ironbank/tetrate/istio/proxyv2 updated from 1.14.4 to 1.15.1

[1.15.0-bb.1] - 2022-09-30πŸ“œ

ChangedπŸ“œ

  • ironbank/tetrate/istio/install-cni updated from 1.14.3 to 1.14.4
  • ironbank/tetrate/istio/istioctl updated from 1.14.3 to 1.14.4
  • ironbank/tetrate/istio/pilot updated from 1.14.3 to 1.14.4
  • ironbank/tetrate/istio/proxyv2 updated from 1.14.3 to 1.14.4

[1.15.0-bb.0] - 2022-09-17πŸ“œ

ChangedπŸ“œ

  • ironbank/opensource/istio/install-cni updated from 1.14.3 to 1.15.0
  • ironbank/opensource/istio/pilot updated from 1.14.3 to 1.15.0
  • ironbank/opensource/istio/proxyv2 updated from 1.14.3 to 1.15.0
  • ironbank/tetrate/istio/install-cni updated from 1.13.5 to 1.14.3
  • ironbank/tetrate/istio/istioctl updated from 1.13.5 to 1.14.3
  • ironbank/tetrate/istio/pilot updated from 1.13.5 to 1.14.3
  • ironbank/tetrate/istio/proxyv2 updated from 1.13.5 to 1.14.3

[1.14.3-bb.4]πŸ“œ

ChangedπŸ“œ

  • Adds env variable to values which can be used during deployment to modify istio k8s env settings

[1.14.3-bb.3]πŸ“œ

ChangedπŸ“œ

  • Drop all capabilities + nonroot for hook job

[1.14.3-bb.2]πŸ“œ

ChangedπŸ“œ

  • Added Openshift DNS to networkpolicy egress

[1.14.3-bb.1]πŸ“œ

ChangedπŸ“œ

  • Removed legacy fluentd exception

[1.14.3-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated to 1.14.3 images

[1.14.2-bb.2]πŸ“œ

AddedπŸ“œ

  • Moved dashboards from monitoring chart into Istio

[1.14.2-bb.1]πŸ“œ

AddedπŸ“œ

  • Added minPRotocolVersion: TLSV1_2

[1.14.2-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated chart to 1.14.2-bb.0 version
  • Updated images to 1.14.2
  • Updated app version to 1.14.2 in Chart.yaml

[1.13.5-bb.2]πŸ“œ

AddedπŸ“œ

  • Added support for egress gateways via values

[1.13.5-bb.1]πŸ“œ

ChangedπŸ“œ

  • Updated TID images to 1.13.5

[1.13.5-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated chart to 1.13.5-bb.0 version
  • Updated images to 1.13.5
  • Updated app version to 1.13.5 in Chart.yaml

[1.13.4-bb.4]πŸ“œ

ChangedπŸ“œ

  • Update the OSCAL component definition for Istio to include additional NIST 800-53 mappings and explanations.

[1.13.4-bb.3]πŸ“œ

AddedπŸ“œ

  • Added tolerations to Jobs

[1.13.4-bb.2]πŸ“œ

ChangedπŸ“œ

  • Updated BB base image to 2.0.0

[1.13.4-bb.1]πŸ“œ

ChangedπŸ“œ

  • Updated BB base image to 1.17.0

[1.13.4-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated chart to 1.13.4-bb.0 version
  • Updated images to 1.13.4
  • Updated app version to 1.13.4 in Chart.yaml

[1.13.2-bb.1]πŸ“œ

ChangedπŸ“œ

  • fix pod selector for NetworkPolicy

[1.13.2-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated chart to 1.13.2-bb.0 version
  • Updated app version to 1.13.2 in Chart.yaml

[1.13.1-bb.3]πŸ“œ

ChangedπŸ“œ

  • Added TID support

[1.13.1-bb.2]πŸ“œ

ChangedπŸ“œ

  • Added Kiali ingress policy for version scraping

[1.13.1-bb.1]πŸ“œ

ChangedπŸ“œ

[1.13.1-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated chart to 1.13.1-bb.0 version
  • Updated app version to 1.13.1 in Chart.yaml

[1.11.5-bb.2]πŸ“œ

ChangedπŸ“œ

  • Updated renovate.json to track images in tests/images.txt
  • fixed typos in oscal-component.yaml

[1.11.5-bb.1]πŸ“œ

ChangedπŸ“œ

  • Update Chart.yaml to follow new standardization for release automation

[1.11.5-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated to 1.11.5

[1.11.3-bb.2]πŸ“œ

AddedπŸ“œ

  • Istio OSCAL component for NIST 800-53 controls

[1.11.3-bb.1]πŸ“œ

ChangedπŸ“œ

  • Fix envoyfilter handling of DNS names with -

[1.11.3-bb.0]πŸ“œ

ChangedπŸ“œ

  • Updated Istio to 1.11.3

AddedπŸ“œ

  • tests/images.txt for use in package release to include the install-cni image
  • Revision support for SSO egress NP

[1.11.2-bb.4]πŸ“œ

AddedπŸ“œ

  • A Helm post-install hook so a HelmRelease properly reflects IstioOperator status.

[1.11.2-bb.3]πŸ“œ

ChangedπŸ“œ

  • Introduces the revision value in support of Istio canary upgrades. When specified, the revision value is appended to resources names.

[1.11.2-bb.2]πŸ“œ

FixedπŸ“œ

  • Changed misdirected request envoy filter to work with non-standard ports

[1.11.2-bb.1]πŸ“œ

AddedπŸ“œ

  • Added autoHttpRedirect value to control the automatic generation of http to https redirects in the gateways

ChangedπŸ“œ

  • Changed to using the hosts defined in servers.hosts instead of using * for the automatic generation of http to https redirects in the gateways

[1.11.2-bb.0]πŸ“œ

ChangedπŸ“œ

  • Update to Istio 1.11.2

[1.10.4-bb.3]πŸ“œ

ChangedπŸ“œ

  • Added networkpolicy to allow egress to sso

[1.10.4-bb.2]πŸ“œ

ChangedπŸ“œ

  • Added authservice as extension provider

[1.10.4-bb.1]πŸ“œ

ChangedπŸ“œ

  • Update Istio proxy and proxy init pods to be in compliance with opa gatekeeper.

[1.10.4-bb.0]πŸ“œ

ChangedπŸ“œ

  • Update to Istio 1.10.4

[1.10.3-bb.1]πŸ“œ

ChangedπŸ“œ

  • Add envoyfilter to remove server response header to prevent information disclosure

[1.10.3-bb.0]πŸ“œ

ChangedπŸ“œ

  • Update to Istio 1.10.3

[1.9.7-bb.1]πŸ“œ

AddedπŸ“œ

  • Default configuration to hold application start until istio proxy is ready

[1.9.7-bb.0]πŸ“œ

ChangedπŸ“œ

  • Update to Istio 1.9.7

[1.8.4-bb.6]πŸ“œ

ChangedπŸ“œ

  • BREAKING ingressGateway deprecated in favor of creating ingressGateways in a uniform manner
  • BREAKING gateway deprecated in favor of creating gateways in a uniform manner

[1.8.4-bb.5]πŸ“œ

FixedπŸ“œ

  • Kube API egress allowed for all pods, not just istiod

[1.8.4-bb.4]πŸ“œ

AddedπŸ“œ

  • Kube API egress networkpolicy

[1.8.4-bb.3]πŸ“œ

AddedπŸ“œ

  • Added network policies for istio

[1.8.4-bb.2]πŸ“œ

FixedπŸ“œ

  • fixed bug with indentation when providing resources to istio ingressgateways

[1.8.4-bb.1]πŸ“œ

FixedπŸ“œ

  • updated dsop.io registry hostname to dso.mil

[1.7.3-bb.1]πŸ“œ

AddedπŸ“œ

  • Top level β€œsso” values designation. This will enable an haproxy package installation in the desired namespace (sso.namespace: istio-addons-sso) that in conjunction with authservice package will place an SSO gate in front of Kiali+Jaeger UIs.
  • Top level β€œingress” values designation. This will control configuration for the virtualservices created. Leave empty with sso.enabled = false to have the virtualservices go straight to the kiali/jaeger UIs. Leave empty with sso.enabled = true to place the haproxy+authservice injection in front of kiali/tracing. Fill in with your own service/port if customizing the installation/services.
  • New Jaeger+Kiali VirtualServices pointing to the haproxy installation will be installed when β€œsso.enabled: true”
  • sso.selector variable sets the label that will be applied to the authservice EnvoyFilter placing the SSO page in front of the regular UIs. Must match the selector for β€œauthservice.selector.key/value”.

ChangedπŸ“œ

  • Jaeger+Kiali VirtualServices pointing directly to the UIs will be skipped when β€œsso.enabled: true”
  • Jaeger+Kiali VirtualServices pull in their configs from the β€œingress” designation so VirtualServices can be customized.