From d2d0fc2036544ec21fcdac79b550d6a352bdad6f Mon Sep 17 00:00:00 2001 From: Joe Searcy Date: Thu, 24 Sep 2020 00:42:25 -0400 Subject: [PATCH] Prepare v2.1.5 release Signed-off-by: Joe Searcy --- CHANGELOG.md | 24 +++++++++++++++++++++++- Makefile | 2 +- deploy/install.yaml | 4 ++-- deploy/manifests/magtape-deploy.yaml | 4 ++-- 4 files changed, 28 insertions(+), 6 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index a603cbe..db469fa 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -24,4 +24,26 @@ This release migrates to using the Gunicorn WSGI HTTP Server instead of the defa ## 2.1.4 -This release adds the `approve` verb to the RBAC config to account for newer changes to the Kubernetes certificates/CSR API as noted [here](https://github.com/kubernetes/kubernetes/pull/86933). These changes were tested against K8s 1.14, 1.15, 1.16, 1.17, and 1.18. \ No newline at end of file +This release adds the `approve` verb to the RBAC config to account for newer changes to the Kubernetes certificates/CSR API as noted [here](https://github.com/kubernetes/kubernetes/pull/86933). These changes were tested against K8s 1.14, 1.15, 1.16, 1.17, and 1.18. + +## 2.1.5 + +This release adds new policies and enhances several CI workflow components. + +### New Policies + +- Singleton Pods (Check ID: MT1007) +- Host Port (Check ID: MT1008) +- emptyDir Volume (Check ID: MT1009) +- Host Path (Check ID: MT1010) +- Node Port Range (Check ID: MT2002) + +### New CI Features + +- Kubernetes Matrix for end-to-end testing. All commits/PR's are now tested against Kubernetes 1.16, 1.17, 1.18, and 1.19 +- Rego linting and unit tests +- Code quality anallysis and static code scanning for Security/Best Practices + +### Misc Enhancements + +- Enhancements for Advanced install workflow with Kustomize \ No newline at end of file diff --git a/Makefile b/Makefile index 28db931..e0fe857 100644 --- a/Makefile +++ b/Makefile @@ -16,7 +16,7 @@ # its contributors may be used to endorse or promote products derived from this # software without specific prior written permission. -MAGTAPE_VERSION := v2.1.4 +MAGTAPE_VERSION := v2.1.5 OPA_VERSION := 0.19.2 KUBE_MGMT_VERSION := 0.11 diff --git a/deploy/install.yaml b/deploy/install.yaml index 42894fd..d608b62 100644 --- a/deploy/install.yaml +++ b/deploy/install.yaml @@ -317,7 +317,7 @@ spec: serviceAccountName: magtape-sa initContainers: - name: magtape-init - image: tmobile/magtape-init:v2.1.4 + image: tmobile/magtape-init:v2.1.5 command: [/app/magtape-init.py] imagePullPolicy: Always env: @@ -339,7 +339,7 @@ spec: mountPath: /vwc containers: - name: magtape - image: tmobile/magtape:v2.1.4 + image: tmobile/magtape:v2.1.5 ports: - containerPort: 5000 command: ["gunicorn", "magtape:app", "--config=config.py"] diff --git a/deploy/manifests/magtape-deploy.yaml b/deploy/manifests/magtape-deploy.yaml index 7d0178c..1185f1c 100644 --- a/deploy/manifests/magtape-deploy.yaml +++ b/deploy/manifests/magtape-deploy.yaml @@ -18,7 +18,7 @@ spec: serviceAccountName: magtape-sa initContainers: - name: magtape-init - image: tmobile/magtape-init:v2.1.4 + image: tmobile/magtape-init:v2.1.5 command: [/app/magtape-init.py] imagePullPolicy: Always env: @@ -40,7 +40,7 @@ spec: mountPath: /vwc containers: - name: magtape - image: tmobile/magtape:v2.1.4 + image: tmobile/magtape:v2.1.5 ports: - containerPort: 5000 command: ["gunicorn", "magtape:app", "--config=config.py"]