Releases: buildpacks-community/kpack
kpack v0.11.5
This release bumps the lifecycle image to 0.17.2 to address CVEs in the go standard library
What's Changed
Full Changelog: v0.11.4...v0.11.5
sha256 checksum:
ff6ba49af0b26955a8c3576305d61922ca11baa728bf19ae915fb3db3d4e06eb release-0.11.5.yaml
kpack v0.10.5
This release bumps the lifecycle image to 0.17.2 to address CVEs in the go standard library
What's Changed
Full Changelog: v0.10.4...v0.10.5
sha256 checksum:
e49bb0cf6e7d9ac27ce20de49acd04ca842ccd42fde3cd96a9a87b212ebc43a6 release-0.10.5.yaml
kpack v0.9.7
This release bumps the lifecycle image to 0.17.2 to address CVEs in the go standard library
What's Changed
Full Changelog: v0.9.6...v0.9.7
sha256 checksum:
4658aadba673379504a59f8e516ee2968c2a648bb39bb0b564d816a14ca547a2 release-0.9.7.yaml
kpack v0.11.4
This release bumps dependencies and upgrades to go1.21.4
What's Changed
- [0.11] Tag release images by @tomkennedy513 in #1386
Bumped Dependencies
- Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by @dependabot in #1405
- Bump github.com/stretchr/testify from 1.8.2 to 1.8.4 by @dependabot in #1401
- Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 by @dependabot in #1403
- [0.11.x] Bump deps and go version for CVE fixes by @chenbh in #1411
Full Changelog: v0.11.3...v0.11.4
sha256 checksum:
38c4754abde81f5acdca5c481c5422fbc4baadaa346e13df6ce46b1fe26d5150 release-0.11.4.yaml
kpack v0.10.4
This release bumps dependencies and upgrades to go1.21.4
What's Changed
- [0.10] Tag release images by @tomkennedy513 in #1387
Bumped Dependencies
- Bump github.com/theupdateframework/notary from 0.6.2-0.20200804143915-84287fd8df4f to 0.7.0 by @dependabot in #1396
- Bump github.com/BurntSushi/toml from 1.1.0 to 1.3.2 by @dependabot in #1398
- Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by @dependabot in #1399
- Bump github.com/stretchr/testify from 1.8.0 to 1.8.4 by @dependabot in #1392
- [0.10.x] Bump deps and go version for CVE fixes by @chenbh in #1412
Full Changelog: v0.10.3...v0.10.4
sha256 checksum:
82a00ae630c903dc1fc21190a08a76d5ede456af8be587282b58acfdc5bdde5b release-0.10.4.yaml
kpack v0.9.6
This release bumps dependencies and upgrades to go1.21.4
What's Changed
- [0.9] Tag release images by @tomkennedy513 in #1388
Bumped Dependencies
- Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 by @dependabot in #1409
- Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by @dependabot in #1406
- [0.9.x] Bump deps and go version for CVE fixes by @chenbh in #1413
Full Changelog: v0.9.5...v0.9.6
sha256 checksum:
3a36541943f573869480d72b0247ab1b009fa13b8646ef31795d5793563b3ea3 release-0.9.6.yaml
kpack v0.12.3
This release is bumping dependencies and upgrading to go1.21.4
Bumped Dependencies
- [0.12] Tag release images by @tomkennedy513 in #1384
- [0.12.x] Cherry-pick dependabot updates and bump go compiler by @chenbh in #1380
- Bump go.uber.org/zap from 1.25.0 to 1.26.0
- Bump github.com/buildpacks/lifecycle from 0.17.0 to 0.17.1
- Bump github.com/go-git/go-git/v5 from 5.8.1 to 5.9.0
- Bump carvel-dev/setup-action from 1 to 2
- Bump golang.org/x/sync from 0.3.0 to 0.4.0
- Bump golang.org/x/net from 0.15.0 to 0.16.0
- Bump golang.org/x/net from 0.16.0 to 0.17.0
- Bump github.com/buildpacks/lifecycle from 0.17.1 to 0.17.2
- Bump google.golang.org/grpc from 1.57.0 to 1.57.1
- Bump github.com/docker/docker
- Bump github.com/sigstore/cosign/v2 from 2.2.0 to 2.2.1
- Bump golang.org/x/net from 0.17.0 to 0.18.0
Full Changelog: v0.12.2...v0.12.3
sha256 checksum:
bb4a5f4f357e408fb9b74b3a134e3ceaadec13c23606dfa0fdadcbe160104339 release-0.12.3.yaml
kpack v0.11.3
What's Changed
- [0.11.x] Fix cloning with Azure DevOps Git by @tomkennedy513 in #1339
Full Changelog: v0.11.2...v0.11.3
sha256 checksum:
0c72f22ee309d26e95961616e696a74732f315610b7cd879a94cec0442314f51 release-0.11.3.yaml
kpack v0.12.2
Bug Fixes
Fix azure devops git by @tomkennedy513 in #1338
sha256 checksum:
ce4bbbed3e880e1a2234b40ada96f87bf56fa8ab35df0dae071af286100734d7 release-0.12.2.yaml
Full Changelog: v0.12.1...v0.12.2
kpack v0.12.1
What's Changed
- Stop dependabot from updating k8s versions by @chenbh in #1319
- Update README to point to CNCF slack by @tomkennedy513 in #1323
Bug Fixes
- Bump github.com/sigstore/cosign/v2 from 2.1.1 to 2.2.0 by @dependabot in #1318
This resolves bug where kpack is unable to use keys generated with the latest version of cosign, see #1322
Bumped Dependencies
- Bump docker/login-action from 2.2.0 to 3.0.0 by @dependabot in #1324
- Bump golang.org/x/net from 0.14.0 to 0.15.0 by @dependabot in #1320
- Bump actions/checkout from 3 to 4 by @dependabot in #1317
sha256 checksum:
cda4deb4b4e9f6591166230628409dda97f0c7c45366112bfff8381efacfe475 release-0.12.1.yaml
Full Changelog: v0.12.0...v0.12.1