Releases: eraser-dev/eraser
Releases · eraser-dev/eraser
v1.5.0-beta.0
Chores
- Prepare v1.5.0-beta.0 release (#1082) #1082 (github-actions[bot])
v1.4.0
Notable Changes
- 🛠️ fix manager memory usage (#965) #965 (ashnamehrotra)
- ➕ add fields for scanner volume mounts (#1061) #1061 (lzhecheng)
Features
- use trivy github action (#1053) #1053 (Ahmet Yildiz)
- add option to add additional custom pod labels (#991) #991 (Patrick von Steht)
Bug Fixes
- lint fix for unused parameter (#987) #987 (ashnamehrotra)
- set ignoreUnfixed false (#1006) #1006 (Sertaç Özercan)
Documentation
- fix v1.3.0 docs (#951) #951 (Sertaç Özercan)
- update site footer trademark notification (#964) #964 (Xander Grzywinski)
- update release cadence (#984) #984 (Sertaç Özercan)
- update maintainers (#1015) #1015 (Sertaç Özercan)
Tests
- update k8s matrix (#966) #966 (Sertaç Özercan)
Continuous Integration
- create pr auto signoff (#950) #950 (Sertaç Özercan)
- pointing to correct version of install yaml (#980) #980 (Jaydipkumar Arvindbhai Gabani)
- fix e2e artifacts (#1054) #1054 (Sertaç Özercan)
Chores
- group dependabot PRs (#948) #948 (ashnamehrotra)
- bump codegen version (#946) #946 (Sertaç Özercan)
- bump golang from
23ad9fe
to6ac4c35
in /build/tooling (#945) #945 (dependabot[bot]) - bump prism-react-renderer from 2.1.0 to 2.3.0 in /docs (#919) #919 (dependabot[bot])
- bump actions/dependency-review-action from 3.1.0 to 3.1.4 (#921) #921 (dependabot[bot])
- bump clsx from 2.0.0 to 2.1.0 in /docs (#935) #935 (dependabot[bot])
- bump follow-redirects from 1.15.1 to 1.15.4 in /docs (#940) #940 (dependabot[bot])
- update node-version (#955) #955 (ashnamehrotra)
- update packages.json (#956) #956 (ashnamehrotra)
- bump the docusaurus group in /docs with 3 updates (#953) #953 (dependabot[bot])
- bump golang from
6ac4c35
toadf7ccb
in /build/tooling (#959) #959 (dependabot[bot]) - update download and upload artifact to latest (#957) #957 (ashnamehrotra)
- bump the all group with 8 updates (#962) #962 (dependabot[bot])
- bump golang from
adf7ccb
to47fa179
in /build/tooling (#967) #967 (dependabot[bot]) - bump the docusaurus group in /docs with 3 updates (#968) #968 (dependabot[bot])
- bump the all group with 2 updates (#969) #969 (dependabot[bot])
- bump the all group with 3 updates (#974) #974 (dependabot[bot])
- bump got from 14.0.0 to 14.2.0 in /docs (#975) #975 (dependabot[bot])
- bump golang from
47fa179
toc62751a
in /build/tooling (#976) #976 (dependabot[bot]) - bump @mdx-js/react from 3.0.0 to 3.0.1 in /docs (#985) #985 (dependabot[bot])
- bump golang from 1.21-bookworm to 1.22-bookworm (#981) #981 (dependabot[bot])
- bump golang from 1.21-bullseye to 1.22-bullseye in /build/tooling (#982) #982 (dependabot[bot])
- bump the all group with 8 updates (#986) #986 (dependabot[bot])
- bump the all group with 7 updates (#992) #992 (dependabot[bot])
- bump got from 14.2.0 to 14.2.1 in /docs (#994) #994 (dependabot[bot])
- bump golang from
0c099cf
to9f880bd
in /build/tooling (#995) #995 (dependabot[bot]) - bump follow-redirects from 1.15.5 to 1.15.6 in /docs (#997) #997 (dependabot[bot])
- bump golang from
9f880bd
todcff0d9
in /build/tooling (#998) #998 (dependabot[bot]) - bump the all group with 4 updates (#999) #999 (dependabot[bot])
- bump protobuf containerd, and trivy (0.50.0) (#1002) #1002 (Sertaç Özercan)
- bump webpack-dev-middleware from 5.3.3 to 5.3.4 in /docs (#1000) #1000 (dependabot[bot])
- bump the npm_and_yarn group group in /docs with 2 updates (#1003) #1003 (dependabot[bot])
- bump the all group with 3 updates (#1004) #1004 ([dependabot[bot]](2ea877c...
v1.3.1
Chores
- cherry pick memory fix (#965) into release-1.3 (#972) #972 (ashnamehrotra)
- Prepare v1.3.1 release (#973) #973 (github-actions[bot])
v1.4.0-beta.0
Chores
- Prepare v1.4.0-beta.0 release (#949) #949 (github-actions[bot])
v1.3.0
Notable Changes
- 🔌 Support for custom runtime socket configurations with manager.runtime.address
- 👾 Support for Trivy status filtering with ignoredStatuses
- 🪄 Update Trivy scanner to v0.48.3
Features
- add v1alpha3 api with RuntimeSpec configuration (#922) #922 (ashnamehrotra)
- use custom socket configurations from v1alpha3 (#930) #930 (ashnamehrotra)
- Support Trivy status filtering (#844) #844 (Fabian Gonzalez)
Bug Fixes
- add Trivy ignore (#877) #877 (ashnamehrotra)
- clean up imagejob when eraser-manager pod is deleted (#875) #875 (ashnamehrotra)
Documentation
- add additional badges to README (#850) #850 (Xander Grzywinski)
- update logo on website (#855) #855 (Xander Grzywinski)
- update issues template (#895) #895 (Sertaç Özercan)
Chores
- bump docker/setup-buildx-action from 2.9.1 to 2.10.0 (#854) #854 (dependabot[bot])
- bump golang from
02f350d
to873fce5
in /build/tooling (#859) #859 (dependabot[bot]) - bump @docusaurus/module-type-aliases from 2.4.1 to 2.4.3 in /docs (#872) #872 (dependabot[bot])
- import packages only once (#870) #870 (guangwu)
- bump @docusaurus/preset-classic from 2.4.1 to 2.4.3 in /docs (#873) #873 (dependabot[bot])
- bump golang from
873fce5
tob120a1c
in /build/tooling (#861) #861 (dependabot[bot]) - bump golang from
d9203b0
to18f57bd
in /build/tooling (#879) #879 (dependabot[bot]) - bump @docusaurus/core from 2.4.1 to 2.4.3 in /docs (#874) #874 (dependabot[bot])
- bump actions/checkout from 3.6.0 to 4.1.0 (#871) #871 (dependabot[bot])
- bump actions/upload-artifact from 3.1.2 to 3.1.3 (#866) #866 (dependabot[bot])
- bump actions/dependency-review-action from 3.0.8 to 3.1.0 (#864) #864 (dependabot[bot])
- bump actions/cache from 3.3.1 to 3.3.2 (#863) #863 (dependabot[bot])
- bump docker/login-action from 2.2.0 to 3.0.0 (#885) #885 (dependabot[bot])
- bump docker/setup-buildx-action from 2.10.0 to 3.0.0 (#886) #886 (dependabot[bot])
- bump crazy-max/ghaction-github-runtime from 2.2.0 to 3.0.0 (#867) #867 (dependabot[bot])
- bump prism-react-renderer from 2.0.6 to 2.1.0 in /docs (#887) #887 (dependabot[bot])
- bump postcss from 8.4.14 to 8.4.31 in /docs (#889) #889 (dependabot[bot])
- bump golang from
18f57bd
to23ad9fe
in /build/tooling (#890) #890 (dependabot[bot]) - bump step-security/harden-runner from 2.5.1 to 2.6.0 (#891) #891 (dependabot[bot])
- bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#892) #892 (dependabot[bot])
- bump @babel/traverse from 7.18.11 to 7.23.2 in /docs (#899) #899 (dependabot[bot])
- upgrade google.golang.org/grpc to v1.58.3 (#913) #913 (ashnamehrotra)
- upgrade k8s.io/kubernetes to v1.26.8 (#914) #914 (ashnamehrotra)
- update k8s to v1.26.11 (#917) #917 (ashnamehrotra)
- bump actions/checkout from 4.1.0 to 4.1.1 (#901) #901 (dependabot[bot])
- bump @docusaurus/module-type-aliases from 2.4.3 to 3.0.1 in /docs (#923) #923 (dependabot[bot])
- add codeowners (#943) #943 (Sertaç Özercan)
- update to go 1.21 and trivy 0.48.3 (#941) #941 (Sertaç Özercan)
- Prepare v1.3.0 release (#947) #947 (github-actions[bot])
- 41e27c7: bump golang/x/net to 0.17 (#900) (Sertaç Özercan) #900
- Scheduled Trivy Scans of Eraser Images (#858) #858 (Fabian Gonzalez)
- Resolve Docusaurus vulnerabilities (
got
,trim
) (#852) #852 (Fabian Gonzalez) - 8b513bc: Remove extra if statement in deploy_docs action (#856) (Fabian Gonzalez) #856
New Contributors
Full Changelog: v1.1.1...v1.3.0
v1.2.3
This releases fixes CVE-2023-39325, CVE-2023-3978, and CVE-2023-44487.
Chores
- Prepare v1.2.3 release (#896) #896 (github-actions[bot])
v1.2.2
v1.3.0-beta.0
Bug Fixes
- mark ImageJob as failed when OOM (#837) #837 (ashnamehrotra)
Documentation
- add release cadence docs, and tasks for notifying after release (#823) #823 (Xander Grzywinski)
- add v1.2.x documentation (#819) #819 (Sertaç Özercan)
- add linux foundation trademark footer (#830) #830 (Xander Grzywinski)
- change license from MIT to Apache 2 (#848) #848 (Xander Grzywinski)
Continuous Integration
- fix packages write permissions (#813) #813 (Sertaç Özercan)
- drop linux/arm/v7 support (#814) #814 (Sertaç Özercan)
- fix release permissions (#816) #816 (Sertaç Özercan)
- validate docs (#836) #836 (Sertaç Özercan)
Chores
- bump golang from
2ae255c
to74b09b3
in /build/tooling (#810) #810 (dependabot[bot]) - bump trivy to 0.44 (#820) #820 (Sertaç Özercan)
- bump golang from 1.20-bullseye to 1.21-bullseye in /build/tooling (#825) #825 (dependabot[bot])
- bump golang from
1ad8835
to0ed2638
in /build/tooling (#826) #826 (dependabot[bot]) - bump actions/setup-go from 4.0.1 to 4.1.0 (#829) #829 (dependabot[bot])
- bump step-security/harden-runner from 2.5.0 to 2.5.1 (#828) #828 (dependabot[bot])
- bump golang from
0ed2638
toa3fce63
in /build/tooling (#832) #832 (dependabot[bot]) - bump actions/setup-node from 3.7.0 to 3.8.1 (#833) #833 (dependabot[bot])
- bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 (#834) #834 (dependabot[bot])
- bump actions/dependency-review-action from 3.0.6 to 3.0.8 (#835) #835 (dependabot[bot])
- bump actions/checkout from 3.5.3 to 3.6.0 (#838) #838 (dependabot[bot])
- Prepare v1.3.0-beta.0 release (#845) #845 (github-actions[bot])
Commits
v1.2.1
Chores
- cherry pick #837 to release-1.2 (#839) #839 (ashnamehrotra)
- Prepare v1.2.1 release (#841) #841 (github-actions[bot])
v1.2.0
📢 With acceptance into CNCF as a sandbox project, we have moved from github.com/Azure/eraser
to github.com/eraser-dev/eraser
.
Features
- use trivy as a binary instead of a library (#786) #786 (Peter Engelbert)
Bug Fixes
- set remover cpu limit to 0 (#799) #799 (ashnamehrotra)
- update owner references (#773) #773 (ashnamehrotra)
- e2e get logs in relevant tests (#800) #800 (ashnamehrotra)
Documentation
- add maintainers file (#792) #792 (Xander Grzywinski)
- move to CNCF code of conduct (#794) #794 (Xander Grzywinski)
- update the docusaurus config for new repo (#803) #803 (Xander Grzywinski)
- remove Microsoft references from repo (#804) #804 (Xander Grzywinski)
- fix website deploy (#806) #806 (Sertaç Özercan)
Continuous Integration
- remove k8s 1.24 tests (#807) #807 (Sertaç Özercan)
- fix packages write permissions (#812) #812 (Sertaç Özercan)
- drop linux/arm/v7 support (release-1.2) (#815) #815 (Sertaç Özercan)
- fix release permissions (release-1.2) (#817) #817 (Sertaç Özercan)
Chores
- bump prism-react-renderer from 2.0.4 to 2.0.6 in /docs (#780) #780 (dependabot[bot])
- bump golang from
419bc89
toe541273
in /build/tooling (#767) #767 (dependabot[bot]) - bump peter-evans/create-pull-request from 5.0.1 to 5.0.2 (#769) #769 (dependabot[bot])
- bump step-security/harden-runner from 2.4.0 to 2.4.1 (#771) #771 (dependabot[bot])
- bump docker/setup-buildx-action from 2.5.0 to 2.8.0 (#782) #782 (dependabot[bot])
- bump golangci/golangci-lint-action from 3.5.0 to 3.6.0 (#770) #770 (dependabot[bot])
- bump ossf/scorecard-action from 2.1.3 to 2.2.0 (#772) #772 (dependabot[bot])
- bump golang from
4c94dfe
tob8b5510
in /build/tooling (#784) #784 (dependabot[bot]) - bump golang from
b8b5510
tod9f7519
in /build/tooling (#787) #787 (dependabot[bot]) - bump golang from
d9f7519
to851af0a
in /build/tooling (#793) #793 (dependabot[bot]) - bump actions/setup-node from 3.6.0 to 3.7.0 (#788) #788 (dependabot[bot])
- bump semver from 5.7.1 to 5.7.2 in /docs (#791) #791 (dependabot[bot])
- bump docker/setup-buildx-action from 2.8.0 to 2.9.1 (#795) #795 (dependabot[bot])
- bump clsx from 1.2.1 to 2.0.0 in /docs (#796) #796 (dependabot[bot])
- bump golang from
851af0a
to2ae255c
in /build/tooling (#801) #801 (dependabot[bot]) - bump step-security/harden-runner from 2.4.1 to 2.5.0 (#802) #802 (dependabot[bot])
- Prepare v1.2.0 release (#809) #809 (github-actions[bot])
- c1cc274: rename module and all references from azure to eraser-dev (#805) (Xander Grzywinski) #805