All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Add
global.podSecurityStandards.enforcedvalue for PSS migration.
0.6.0 - 2022-10-04
PodSecurityPolicyare removed on newer k8s versions, so only apply it if object is registered in the k8s API.
0.5.1 - 2022-09-02
- Allow WC's NAT IPs to communicate with the API through the Load Balancer
- Manually list NAT IPs and filter instead of getting them from the Router.
- Fix adding and removing the allowlist annotation failing for security rules
- Do not error if backend service isn't deleted when reconciling delete event. Instead just skip the event
0.5.0 - 2022-08-23
0.4.1 - 2022-07-20
- Do not error if bastion allowlist annotation is missing for backwards compatibility.
0.4.0 - 2022-07-20
- Get allowlist IP ranges from the GCP cluster annotation instead using
0.0.0.0/0.
0.3.1 - 2022-06-30
- Wait until the
GCPCLusterhas network link in status field.
- No need for a k8s client on the firewall client.
0.3.0 - 2022-06-22
- Log stack traces when there is an error.
0.2.1 - 2022-06-22
- Fix catching 404 not found error when deleting the firewall rule.
0.2.0 - 2022-06-21
- Use right timestamp format in the logger.
- Wrap all errors with microerror.
0.1.1 - 2022-06-07
0.1.0 - 2022-06-07
- Improve logging by adding gcp cluster name being reconciled.