Skip to content

v0.27.0
Compare
Choose a tag to compare
@v0lkan v0lkan released this 28 Jul 18:26
· 53 commits to main since this release
v0.27.0
This tag was signed with the committer’s verified signature.
v0lkan Volkan Özçelik
GPG key ID: 9A59F3D946BFD021
Learn about vigilant mode.
36c67f2
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

VSecM Logo

Changed

  • Removed useClusterSpiffeIds and useSpireControllerManager from helm charts
    options. SPIRE helm charts use SPIRE Controller Manager, and disabling it
    is nontrivial. Also, ClusterSPIFFEIDs are the best way to manage SPIFFEIDs
    in a Kubernetes cluster. — If we find a use case where these options are
    necessary, or if there is a need from the community, we can modify the
    code to let SPIRE install without SPIRE Controller Manager and bring those
    flags back.
  • Optimized the build pipeline, reducing the build time by 60%.
  • Removed bundle endpoints from SPIRE manifests. We don't use them anywhere.
    If there is a need, we can bring them back. Note that this also impacts
    the experimental "federation" feature. Federation can still be enabled
    by manually editing the SPIRE Server and SPIRE Agent configmaps. Later, we'll
    have a cross-cluster replication feature where we will introduce these
    bundle endpoints using a hub-spoke topology in a more controlled manner.

Added

  • Introduced new Architecture Decision Records (ADRs) as drafts. These ADRs
    will be reviewed and finalized in the upcoming releases.
  • Namespaces of vsecm-system, spire-server, and spire-system can now
    be dynamically configurable via Helm charts.
  • Various documentation and README updates.

Below are the generated release notes of every commit since the last release cut:

What's Changed

Full Changelog: v0.26.1...v0.27.0

Contributors

v0lkan and omergk28
Assets 2
Loading