v0.10.0

New Features

ComputeClass over-provisioning - With this feature, administrators can configure computeClasses with a requestScaler value. This will cause the memory and cpu requested to be scaled down based on the value set. For example, if the computeClass in use has its requestScaler value set to .1 and a user creates an app requesting 2 GiB of memory, the corresponding pod that is created will have its memory request field set to .2 GiB. The memory limit will remain the full 2 GiB. More details here.

ComputeClass generic resource fields - Thanks to community user @dciangot for this contribution! With this feature, administrators can now configure computeClasses with any kind of resources allowed by K8s' corev1.ResourceRequirements. This enables interesting use cases such as supporting GPU-based nodes.

acorn install --ignore-resource-requirements flag added - This will cause your acorn runtime to ignore all resource requirements on acorns being launched. This is useful if your Acorns define resource requests appropriate for production environments, but you want to easily spin them up locally and don’t have enough resources to accommodate them.

Support for user directive in container definitions - You can now specify a user and group containers should run as like so: user: "1000:1000”. This will translate to containerSecurityContext.RunAsUser and RunAsGroup in the pod specification. This is useful if your container image is designed to run as a specific non-root user. See the docs here.

Support for credential secrets - These secrets are similar to to the existing opaque type because they can hold any data you need, but they provide helpful UX to the end user by displaying instructions and prompting the user for the values. More details here.

acorn edit [app-name] and acorn secret edit [secret name] - With these commands, you can now easily edit applications and secrets. When editing an application, you'll be able to edit the values you set when launching the app, like the image, environment variables, and deploy arguments.

Housekeeping

With this release you may notice we've restructured our docs. Please take note:

• Docs for end users of Acorn now live here: https://docs.acorn.io
• Docs for administrators who are installing and operating their own Acorn installs are here: https://runtime-docs.acorn.io/

We've removed support for an older version of of the Acornfile specification. This should affect very few people as we just removed some undocumented functionality, but if you notice that a previously working Acornfile stops working, reach out to us for support.

What's Changed

• Deduplicate endpoints for ingress that has port defined by @StrongMonkey in #2321
• Convert protocol, find matching port for endpoints by @StrongMonkey in #2323
• Wait for server to acknowledge app deletion before trying ignore-cleanup by @thedadams in #2324
• Stop trying to parse empty image names by @thedadams in #2325
• Update to new AML version by @ibuildthecloud in #2329
• Expand * verbs when doing SAR checks on images by @thedadams in #2330
• Revert "Expand * verbs when doing SAR checks on images" by @thedadams in #2331
• Add edit and secret edit command by @ibuildthecloud in #2332
• Add secret update and secret create --replace/--update by @ibuildthecloud in #2333
• add alias for acorn project cli by @keyallis in #2337
• Add ability to prompt for credential secrets (phase 1) by @ibuildthecloud in #2343
• Add containerreplicas/portforward permission to edit role by @thedadams in #2347
• Add login required for nested apps by @ibuildthecloud in #2346
• Cleaned up docs to focus on runtime. by @cloudnautique in #2345
• add: user directive in Acornfile (e.g. user: "1000:1000") (#718) by @iwilltry42 in #2334
• add: 'acorn project use -' to switch to last used project (#1319) by @iwilltry42 in #2352
• add: volume preloading via ?preload=true directive in Acornfile (manager#1598) by @iwilltry42 in #2351
• Add busybox init script by @tylerslaton in #2354
• Add acorn-busybox-init to .goreleaser extra_files section for arm64 by @tylerslaton in #2355
• Support .d dirs for acornfiles by @ibuildthecloud in #2358
• Set the Host header in the nginx router config by @thedadams in #2359
• Ignore auth failures when trying to pull apps during cli login by @keyallis in #2366
• Add feature flag to control whether we should add don't evict annotation by @StrongMonkey in #2360
• Add support for runtime classes on Acorn computeclasses by @cloudnautique in #2363
• Ensure that nginx does DNS lookups by @thedadams in #2368
• Add the new resolv nameserver copier to goreleaser file by @thedadams in #2370
• fix: replace / with - in anonymous ephemeral volume names (manager-specific) (manager#1598) by @iwilltry42 in #2362
• Remove temporary VolumeSize migration logic by @tylerslaton in #2319
• Revert "Remove temporary VolumeSize migration logic" by @tylerslaton in #2371
• More reliably determine when linked/aliased services are ready by @thedadams in #2373
• Remove -job suffix from generated service names by @njhale in #2374
• Resolved offerings by @g-linville in #2369
• Revert "Resolved offerings (#2369)" by @g-linville in #2376
• Add resolved offerings to the AppInstance status by @g-linville in #2377
• Add assistants and functions by @ibuildthecloud in #2388
• Fix memory values in resolved offerings (#2389) by @g-linville in #2390
• Add support for acorn.region interpolation in Acornfiles by @thedadams in #2391
• Drop legacy aml support by @ibuildthecloud in #2393
• Add resources field to computeclass #2380 by @dciangot in #2384
• ComputeClass request downscaling for overprovisioning (#2381) by @keyallis in #2394
• ComputeClass overprovisioning request floor ignores minimum (#2381) by @keyallis in #2396
• Update to k8s 1.29, remove all rancher code and go.mod replaces by @ibuildthecloud in #2397
• Change app generated namespace to be deterministic by @ibuildthecloud in #2398
• Add support to ignore resource requests/limits for local dev purposes by @keyallis in #2400
• fix: remove potential to panic when validating computeclass create requests by @tylerslaton in #2403
• Bump function builder by @ibuildthecloud in #2406
• Update goreleaser for tap deprecation by @ibuildthecloud in #2407
• Add local environment by @ibuildthecloud in #2412
• fix: resolved offerings: prioritize -m over Acornfile (#2415) by @g-linville in #2416
• fix: cli: return an error when creating a secret that already exists (#2408) by @g-linville in #2417
• Local fixes by @ibuildthecloud in #2419
• Add back buildkit volume by @ibuildthecloud in #2421
• fix: credential secrets: use defaults as defined in the Acornfile (#2411) by @g-linville in #2420
• [Docs] updates by @cloudnautique in #2418
• Fix malformed message when error is nil by @ibuildthecloud in #2424
• Create run directory to ensure xtables works in local by @ibuildthecloud in #2425
• Don't panic during acorn local start by @ibuildthecloud in #2426
• Add docker client API version negotiation by @ibuildthecloud in #2427
• fix: credential secrets: handle case where no default is set (#2411) by @g-linville in #2423
• fix: credential secrets: avoid race condition when prompting user (#2410) by @g-linville in #2422
• enhance: allow dots in env vars by @iwilltry42 in #2428
• fix: credential secrets: avoid the race condition better (#2410) by @g-linville in #2431
• fix: hide compute class request scaler value from api output (2429) by @keyallis in #2430
• Use docker CLI logic to initialize API client so contexts work properly by @ibuildthecloud in #2437
• chore: use goreleaser version 1.23.0 by @thedadams in #2439
• fix: address issue with computeclass tables not converting properly by @tylerslaton in #2438
• chore: bump cosign to v2.2.2 for releases by @thedadams in #2440
• chore: update cosign arguments by @thedadams in #2441

New Contributors

• @dciangot made their first contribution in #2384

Full Changelog: v0.9.2...v0.10.0