Tekton Pipeline release v0.61.0 "Ragdoll Data"
-Docs @ v0.61.0
-Examples @ v0.61.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.0/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.0/release.yaml
REKOR_UUID=24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.61.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- ✨ Promote Larger Results via Sidecar Logs to Beta (#8043)
Promote Larger Results via Sidecar Logs to Beta
- ✨ Add a flag on controllers to configure resyncPeriod (#8023)
Binary file (standard input) matches
Fixes
- 🐛 Cleanup resolved object before validating through dry-run (#8051)
Cleanup resolved object before attempting to validate it through api dry-run call
- 🐛 fix: resolve issue where results may not be obtained from sidecar logs (#8029)
fix: resolve issue where results may not be obtained from sidecar logs
- 🐛 Fix Validation Error Merging StepTemplates with StepRef (#7982)
Fix Validation Error Merging StepTemplates with Step's Ref
- 🐛 Bundle resolver can use ServiceAccount for auth (#7969)
Fix bundle resolver so it could pull OCI image (bundle) manifest from AWS ECR private registry
- 🐛 Fix: Example Test point to Catalog StepAction (#8044)
Misc
- 🔨 Remove taskref/pipelineref deprecated bundle field (#7789)
taskRef.bundle
and pipelineRef.bundle
are now removed from v1beta1
API version, as they were deprecated for about a year and half. Using them will result in a error when creating an object.
action required: make sure you migrate from taskRef.bundle
and pipelineRef.bundle
to the bundle resolver (see https://tekton.dev/docs/pipelines/migrating-v1beta1-to-v1/#replacing-taskrefbundle-and-pipelinerefbundle-with-bundle-resolver-a-idreplacing-taskrefbundle-and-pipelinerefbundle-with-bundle-resolver-a)
- 🔨 Bump to go 1.22 and fixes (#8035)
ektoncd/pipeline now requires go 1.22 to be built
- 🔨 Update knative/pkg to release-1.14 (#7989)
he minimum Kubernetes version supported by Tekton is now 1.28.
- 🔨 Bump k8s.io/code-generator from 0.29.2 to 0.29.6 (#8067)
- 🔨 Bump k8s.io/client-go from 0.29.2 to 0.29.6 (#8066)
- 🔨 Bump github/codeql-action from 3.25.8 to 3.25.10 (#8061)
- 🔨 Bump actions/checkout from 4.1.6 to 4.1.7 (#8060)
- 🔨 Bump github.com/spiffe/go-spiffe/v2 from 2.2.0 to 2.3.0 (#8059)
- 🔨 Bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 (#8058)
- 🔨 Bump the all group in /tekton with 4 updates (#8057)
- 🔨 Bump k8s.io/client-go from 0.27.14 to 0.27.15 in /test/custom-task-ctrls/wait-task-beta (#8049)
- 🔨 Bump k8s.io/apimachinery from 0.27.14 to 0.27.15 in /test/custom-task-ctrls/wait-task-beta (#8048)
- 🔨 Remove bobcatfish and lbernick from OWNERS 😿 (#8047)
- 🔨 Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (#8046)
- 🔨 Tests before promoting LargerResults via Sidecarlogs to Beta (#8041)
- 🔨 Bump the all group across 1 directory with 4 updates (#8040)
- 🔨 Bump actions/dependency-review-action from 4.3.2 to 4.3.3 (#8039)
- 🔨 Bump github/codeql-action from 3.25.7 to 3.25.8 (#8038)
- 🔨 Bump step-security/harden-runner from 2.8.0 to 2.8.1 (#8037)
- 🔨 Bump github.com/golangci/golangci-lint from 1.59.0 to 1.59.1 in /tools (#8036)
- 🔨 README.md: fix Kubernetes min version (#8030)
- 🔨 Bump github.com/containerd/containerd from 1.7.17 to 1.7.18 (#8026)
- 🔨 Bump tj-actions/changed-files from 44.5.1 to 44.5.2 (#8014)
- 🔨 Bump actions/dependency-review-action from 2.5.1 to 4.3.2 (#8013)
- 🔨 Bump step-security/harden-runner from 2.7.0 to 2.8.0 (#8012)
- 🔨 Bump github/codeql-action from 3.25.6 to 3.25.7 (#8011)
- 🔨 Bump actions/checkout from 3.6.0 to 4.1.6 (#8010)
- 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/azure from 1.8.3 to 1.8.4 (#8007)
- 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/gcp from 1.8.3 to 1.8.4 (#8001)
- 🔨 Bump github.com/sigstore/sigstore from 1.8.3 to 1.8.4 (#8000)
- 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/hashivault from 1.8.3 to 1.8.4 (#7999)
- 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/aws from 1.8.3 to 1.8.4 (#7998)
- 🔨 Bump the all group across 1 directory with 4 updates (#7995)
- 🔨 Bump step-security/harden-runner from 2.7.1 to 2.8.0 (#7993)
- 🔨 Bump tj-actions/changed-files from 44.4.0 to 44.5.1 (#7992)
- 🔨 Bump github.com/golangci/golangci-lint from 1.58.2 to 1.59.0 in /tools (#7991)
- 🔨 Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#7985)
- 🔨 Update releases.md for v0.60 (#7976)
- 🔨 TEP0152 - Complete V1 conformance test suite (#7913)
- 🔨 .github/workflows: add a dependency-review workflow (#7846)
Docs
- 📖 Document that task results are not enforced (#8053)
- 📖 Fix the document: Task Level Comp Res is beta (#8004)
- 📖 Patch release v0.60.1 (#7997)
Thanks
Thanks to these contributors who contributed to v0.61.0!
- ❤️ @JeromeJu
- ❤️ @afrittoli
- ❤️ @chitrangpatel
- ❤️ @dependabot[bot]
- ❤️ @khrm
- ❤️ @l-qing
- ❤️ @vdemeester
- ❤️ @wilstdu
Extra shout-out for awesome release notes:
- 😍 @chitrangpatel
- 😍 @l-qing
- 😍 @vdemeester
- 😍 @wilstdu