Skip to content

Latest commit

 

History

History
712 lines (393 loc) · 16.5 KB

CHANGELOG.md

File metadata and controls

712 lines (393 loc) · 16.5 KB

## v3.0.72
  • Chore: Update agent-chart readme @liranfarage89 (#7381)

v3.0.80

  • Chore add waf 2 @alonnoga (#7445)

v3.0.91

  • chore: add Server Side Encryption to SQS and SNS @omry-hay (#7643)

v3.0.137

  • Fix: Send xStarted events to FIFO topic + retry them @avnerenv0 (#8034)

v3.0.143

  • chore support big plans @alonnoga (#8227)

v3.0.148

  • Chore: Adjust Agent for working behind a proxy @roni-frantchi (#8371)

v3.0.152

  • Add Vault details to SHAG @eranelbaz (#8455)

v3.0.154

  • Fix: revert home mount @HeverFarber (#8501)

v3.0.156

  • Harden pods - runAsNonRoot @roni-frantchi (#8476)
  • Feat add vault secret fetching @Wassap124 (#8462)

v3.0.167

  • KEDA agent cleanup - remove podHistory @chpl (#8672)

v3.0.172

  • Feat: OIDC token (JWT) new lambda for Vault CLI integration @razbensimon (#8698)

v3.0.191

  • chore - exposing DNS record for each of our agents @eladmosh (#8833)

v3.0.194

  • fix - after adding DNS for API GW PRs envs occasionally throw error @eladmosh (#8903)

v3.0.194

  • fix - after adding DNS for API GW PRs envs occasionally throw error @eladmosh (#8903)

v3.0.197

  • change module-reader to deployment-servie organization-role type @Wassap124 (#8870)

v3.0.204

  • Chore: switch lambda invocation before deletion @Wassap124 (#8984)

v3.0.206

  • Chore: Hard-coded dockerImages in agent-chart @liranfarage89 (#8861)

v3.0.222

  • Chore: Make proxy vars in k8s yamls conditional @avnerenv0 (#9410)

v3.0.224

  • Fix: Empty values in generated values.yaml overrides user's custom values when @roni-frantchi (#9456) 

v3.0.230

  • Stability Improvement 

v3.0.246

  • Chore: increase agent trigger liveness probe timeout @yaronya (#9692) 

v3.0.258

  • Fix: reduce apiGW lambda permissions to per stage @liranfarage89 (#9894)
  • Fix: add an explicit dependency between API GW usage plan and API GW stage @yaronya (#9890) 

v3.0.293

  • Feat : Allow adding custom certificates to our agent @razbensimon (#10195) 

v3.0.298

  • Chore: Node does not pickup on Custom CA certificats @avnerenv0 (#10434) 

v3.0.306

  • FEAT: create download code step @tomer-landesman (#10388) 

v3.0.313

  • Chore: change download configuration version code logic to use s3 signed url (WIP feature) @ronnyorot (#10559) 

v3.0.321

  • Chore: add remote run tables tf and attributes @ItamarMalka (#10713) 

v3.0.324

  • Chore: Fix remote run tables resources deletion @ItamarMalka (#10767) 

v3.0.325

  • Stability Improvement 

v3.0.351

  • Stability Improvement 

v3.0.355

  • Fix: deployment service API GW deployment @yaronya (#11099) 

v3.0.358

  • Chore: warm pods @yaronya (#11054) 

v3.0.359

  • Fix - apply network policy only to the env0 pods @chpl (#11169) 

v3.0.371

  • chore: Use new crypto common in deployment service @orr-levinger (#11302) 

v3.0.378

  • Chore kms configuration @orr-levinger (#11357) 

v3.0.381

  • feat-remove-unneeded-encryption-permissions-from-self-hosted-agent-gateways @tomporat247 (#11392) 

v3.0.382

  • feat-remove-old-crypto-leftovers @tomporat247 (#11410) 

v3.0.382

  • feat-remove-old-crypto-leftovers @tomporat247 (#11410) 

v3.0.399

  • Chore - handle kms 4096 bytes limit @chpl (#11536) 

v3.0.414

  • Fix: copy homedir content to the mounted volume @chpl (#11756) 

v3.0.416

  • Fix - set security context for the init container @chpl (#11797)
  • Chore: Fix gitlab enterprise base url suffix helm parameter name @ItamarMalka (#11794)
  • chore: add deployment affinity helm value @orr-levinger (#11772) 

v3.0.419

  • feat-empty-helm-deployment-handler @tomporat247 (#11825) 

v3.0.444

  • Stability Improvement 

v3.0.452

  • Fix: Self-hosted agent running with RO root FS has empty home dir @chpl (#12321) 

v3.0.458

  • Stability Improvement 

v3.0.459

  • Chore: set deployment queue message timeout @yaronya (#12425) 

v3.0.473

  • Stability Improvement 

v3.0.475

  • feat: use enctyption-key to read state by decrypting @yarivg (#12565)
  • feat: use ENV0_STATE_ENCRYPTION_KEY to encrypt uploaded state. @igalklebanov (#12559)
  • Chore: Update helm chart readme @yaronya (#12586) 

v3.0.481

  • feat docker agent env file @alonnoga (#12556) 

v3.0.488

  • Chore: add new IAM access key and API GW key to TF agent stack @yaronya (#12731) 

v3.0.495

  • Stability Improvement 

v3.0.497

  • Chore docker agent pr improvments @GiliFaroEnv0 (#12763) 

v3.0.501

  • return s3 permissions for saas for warm pods @alonnoga (#12817)
  • chore change s3 state path and limit access per stage @alonnoga (#12758) 

v3.0.505

  • Chore: Upgrade prerequisites EKS cluster @liranfarage89 (#12726)
  • Feat: create new SaaS agent on new EKS cluster, same Persistent Volume @liranfarage89 (#12769)
  • chore remove saas s3 access @alonnoga (#12824) 

v3.0.505

  • Chore: Upgrade prerequisites EKS cluster @liranfarage89 (#12726)
  • Feat: create new SaaS agent on new EKS cluster, same Persistent Volume @liranfarage89 (#12769)
  • chore remove saas s3 access @alonnoga (#12824) 

v3.0.510

  • Stability Improvement 

v3.0.510

  • Stability Improvement 

v3.0.514

  • Chore: Add New Chart Config: Logger (format, level), Proxy-limits, imagePullPolicy @liranfarage89 (#12929) 

v3.0.515

  • chore add lumigo logging @amit-alkobi-env0 (#12948) 

v3.0.520

  • Chore: Allow configuring agent proxy's log level and log forma @GiliFaroEnv0 (#13021) 

v3.0.522

  • Enable delete protection on all DDB tables @roni-frantchi (#13042) 

v3.0.522

  • Enable delete protection on all DDB tables @roni-frantchi (#13042) 

v3.0.525

  • Remove iac references to crypto password @weinguy-env0 (#13090) 

v3.0.525

  • Remove iac references to crypto password @weinguy-env0 (#13090) 

v3.0.526

  • Chore: Allow configuring agent proxy's resources request @GiliFaroEnv0 (#13108) 

v3.0.529

  • Fix: Agent Helm chart typo causes @roni-frantchi (#13148) 

v3.0.530

  • Fix: Helm chart installation fails when providing proxy resources.requests @roni-frantchi (#13149) 

v3.0.535

  • Chore : remove epsagon @GiliFaroEnv0 (#13131) 

v3.0.535

  • Chore : remove epsagon @GiliFaroEnv0 (#13131) 

v3.0.547

  • Add API key id as agent gateway stack output @roni-frantchi (#13301) 

v3.0.547

  • Add API key id as agent gateway stack output @roni-frantchi (#13301) 

v3.0.558

  • CHORE: change agent GW domain to regional API @tomer-landesman (#13449) 

v3.0.558

  • CHORE: change agent GW domain to regional API @tomer-landesman (#13449) 

v3.0.560

  • Chore: migrate agent-related DDB tables to be global @yaronya (#13360)
  • Add active-region table @roni-frantchi (#13455)
  • Add active region endpoint for agent @roni-frantchi (#13472) 

v3.0.561

  • Chore: Add agent support for efs-csi-driver static provisioning @ronnyorot (#13456)
  • Fix: shorter names for agent-related IAM resources @yaronya (#13494)
  • Stability Improvements @yaronya (#13482) 

v3.0.561

  • Chore: Add agent support for efs-csi-driver static provisioning @ronnyorot (#13456)
  • Fix: shorter names for agent-related IAM resources @yaronya (#13494)
  • Stability Improvements @yaronya (#13482) 

v3.0.565

  • Chore - API GW and SaaS agent in secondary region @chpl (#13533) 

v3.0.565

  • Chore - API GW and SaaS agent in secondary region @chpl (#13533) 

v3.0.568

  • Chore: custom domain names for DR @yaronya (#13582) 

v3.0.571

  • Stability Improvement 

v3.0.573

  • Chore - make TF plan of the GW faster @chpl (#13696)
  • fix: 11230 exclude saas agent from active region check @amit-alkobi-env0 (#13625) 

v3.0.576

  • Chore: support weighted DNS @yaronya (#13638) 

v3.0.579

  • Chore: remove old KMS key @yaronya (#13724) 

v3.0.580

  • Chore - fixes for deploying services to prod dr @chpl (#13762) 

v3.0.584

  • Chore - no warm pods in the secondary region @chpl (#13846) 

v3.0.589

  • Stability Improvement 

v3.0.599

  • Fix: possible agent list modification deadlock @yaronya (#13992) 

v3.0.607

  • Stability Improvement 

v3.0.611

  • Stability Improvement 

v3.0.611

  • Stability Improvement 

v3.0.620

  • Stability Improvement 

v3.0.621

  • Chore: revert API GW cache for agents APIs @yaronya (#14186) 

v3.0.623

  • Chore - jobHistoryLimit defaults in the values.yaml @chpl (#14204)
  • Fix: API gateway no integration defined @Yossi-kerner (#14182) 

v3.0.631

  • Feature: allow using User-Managed identity for Azure @sagilaufer1992 (#14270) 

v3.0.640

  • Chore: Add karpenter do-not-evict annotation for scaled-job @avnerenv0 (#14461) 

v3.0.646

  • Add additional annotations and env vars to values @roni-frantchi (#14507) 

v3.0.650

  • Chore: helm agent annotations @away168 (#14529) 

v3.0.650

  • Chore: helm agent annotations @away168 (#14529) 

v3.0.652

  • Chore - delete kinesis @weinguy-env0 (#14467) 

v3.0.663

  • Chore - stricter security context @chpl (#14696) 

v3.0.673

  • chore: fix quoting logic for additional env vars @away168 (#14784) 

v3.0.673

  • chore: fix quoting logic for additional env vars @away168 (#14784) 

v3.0.673

  • chore: fix quoting logic for additional env vars @away168 (#14784) 

v3.0.683

  • feat: add secrets and secret mounts @away168 (#14903) 

v3.0.686

  • feat add helm config for provider caching ( network mirror in tfrc ) @alonnoga (#14828) 

v3.0.686

  • feat add helm config for provider caching ( network mirror in tfrc ) @alonnoga (#14828) 

v3.0.689

  • Feat: Vault OIDC authentication for secrets @liranfarage89 (#14920) 

v3.0.703

  • Fix: Add kubernetes path to login @liranfarage89 (#15150) 

v3.0.706

  • Feat: Handle multiple approval policies in deployment @liranfarage89 (#15163)  

v3.0.706

  • Feat: Handle multiple approval policies in deployment @liranfarage89 (#15163) 

v3.0.722

  • add helm value to encrypt sensitive values @eranelbaz (#15355) 

v3.0.724

  • encrypt terraform outputs if the user opt-in @eranelbaz (#15360) 

v3.0.724

  • encrypt terraform outputs if the user opt-in @eranelbaz (#15360) 

v3.0.724

  • encrypt terraform outputs if the user opt-in @eranelbaz (#15360) 

v3.0.724

  • encrypt terraform outputs if the user opt-in @eranelbaz (#15360) 

v3.0.730

  • Chore - ability to use custom UID for the agent @chpl (#15477) 

v3.0.730

  • Chore - ability to use custom UID for the agent @chpl (#15477) 

v3.0.745

  • chore: add pvc storage configuration request @away168 (#15496) 

v3.0.745

  • chore: add pvc storage configuration request @away168 (#15496) 

v3.0.745

  • chore: add pvc storage configuration request @away168 (#15496) 

v3.0.745

  • chore: add pvc storage configuration request @away168 (#15496) 

v3.0.750

  • Chore: Update agent RBAC @away168 (#15722) 

v3.0.750

  • Chore: Update agent RBAC @away168 (#15722) 

v3.0.755

  • Allow passing/overriding values.yaml secrets via user defined K8s secret @roni-frantchi (#15794) 

v3.0.755

  • Allow passing/overriding values.yaml secrets via user defined K8s secret @roni-frantchi (#15794) 

v3.0.757

  • StateEncryptionKey can be found in K8S Secret @sagydr (#15827) 

v3.0.757

  • StateEncryptionKey can be found in K8S Secret @sagydr (#15827) 

v3.0.757

  • StateEncryptionKey can be found in K8S Secret @sagydr (#15827) 

v3.0.770

  • Fix - treat the env vars from k8s secrets as sensitive vars @chpl (#15907) 

v3.0.770

  • Fix - treat the env vars from k8s secrets as sensitive vars @chpl (#15907) 

v3.0.776

  • Stability Improvement 

v3.0.776

  • Stability Improvement 

v3.0.790

  • make cpu limits optional @away168 (#15793) 

v3.0.790

  • make cpu limits optional @away168 (#15793) 

v3.0.790

  • make cpu limits optional @away168 (#15793) 

v3.0.791

  • Chore: runAsUser and runAsGroup as Int @away168 (#15750) 

v3.0.791

  • Chore: runAsUser and runAsGroup as Int @away168 (#15750) 

v3.0.796

  • CHORE: remove tofu versions token from docker image @tomer-landesman (#16236) 

v3.0.796

  • CHORE: remove tofu versions token from docker image @tomer-landesman (#16236) 

v3.0.804

  • feat: add InitContainer / Custom Volume Mount @away168 (#15938) 

v3.0.832

  • Chore: Update karpenter annotation to new key @avnerenv0 (#16537) 

v3.0.832

  • Chore: Update karpenter annotation to new key @avnerenv0 (#16537) 

v3.0.833

  • Fix: Agent http proxy OOM @avnerenv0 (#16593) 

v3.0.833

  • Fix: Agent http proxy OOM @avnerenv0 (#16593) 

v3.0.839

  • feat use oidc for aws ssm @alonnoga (#16330)
  • Chore: Sunset EFS - Part 2 @yaronya (#16656) 

v3.0.839

  • feat use oidc for aws ssm @alonnoga (#16330)
  • Chore: Sunset EFS - Part 2 @yaronya (#16656) 

v3.0.839

  • feat use oidc for aws ssm @alonnoga (#16330)
  • Chore: Sunset EFS - Part 2 @yaronya (#16656) 

v3.0.839

  • feat use oidc for aws ssm @alonnoga (#16330)
  • Chore: Sunset EFS - Part 2 @yaronya (#16656) 

v3.0.851

  • Chore: support deployment toleration @Wassap124 (#16791) 

v3.0.851

  • Chore: support deployment toleration @Wassap124 (#16791) 

v3.0.854

  • Chore: Agent Helm Chart - add resource contraints to initcontainer @GiliFaroEnv0 (#16799) 

v3.0.854

  • Chore: Agent Helm Chart - add resource contraints to initcontainer @GiliFaroEnv0 (#16799) 

v3.0.858

  • Chore: Allow override OIDC SSM credentials for SHAG @GiliFaroEnv0 (#16830) 

v3.0.867

  • FEAT: add GetSensitiveVariables lambda for agent @tomer-landesman (#16907)
  • Chore: Add k8s version logs @yaronya (#16929) 

v3.0.867

  • FEAT: add GetSensitiveVariables lambda for agent @tomer-landesman (#16907)
  • Chore: Add k8s version logs @yaronya (#16929) 

v3.0.873

  • Chore: Improve agent proxy ability to handle high load @chpl (#16947) 

v3.0.873

  • Chore: Improve agent proxy ability to handle high load @chpl (#16947) 

v3.0.876

  • Chore: add new agentImagePullSecretRef helm value @yaronya (#17022) 

v3.0.876

  • Chore: add new agentImagePullSecretRef helm value @yaronya (#17022) 

v3.0.876

  • Chore: add new agentImagePullSecretRef helm value @yaronya (#17022) 

v3.0.877

  • Chore: Remove unused agent_image_pull_secret TF var @yaronya (#17048) 

v3.0.877

  • Chore: Remove unused agent_image_pull_secret TF var @yaronya (#17048) 

v3.0.887

  • Stability Improvement 

v3.0.887

  • Stability Improvement 

v3.0.892

  • Chore: Change k8s CronJob api to batch/v1 @yaronya (#17236) 

v3.0.892

  • Chore: Change k8s CronJob api to batch/v1 @yaronya (#17236) 

v3.0.892

  • Chore: Change k8s CronJob api to batch/v1 @yaronya (#17236) 

v3.0.892

  • Chore: Change k8s CronJob api to batch/v1 @yaronya (#17236) 

v3.0.915

  • Stability Improvement 

v3.0.915

  • Stability Improvement 

v3.0.933

  • Stability Improvement 

v3.0.933

  • Stability Improvement 

v3.0.933

  • Stability Improvement 

v3.0.942

  • feat - support passphrase for Vault login @tomporat247 (#17646) 

v3.0.942

  • feat - support passphrase for Vault login @tomporat247 (#17646) 

v3.0.944

  • Chore: add ignore ssl in proxy pod @ItamarMalka (#17722) 

v3.0.960

  • Chore change table class of dynamodb @omry-hay (#17815) 

v3.0.960

  • Chore change table class of dynamodb @omry-hay (#17815) 

v3.0.960

  • Chore change table class of dynamodb @omry-hay (#17815) 

v3.0.969

  • Feat: Create UpdateStateResources Lambda stub @liranfarage89 (#17873) 

v3.0.969

  • Feat: Create UpdateStateResources Lambda stub @liranfarage89 (#17873) 

v3.0.969

  • Feat: Create UpdateStateResources Lambda stub @liranfarage89 (#17873) 

v3.0.969

  • Feat: Create UpdateStateResources Lambda stub @liranfarage89 (#17873)