Releases: open-cluster-management-io/governance-policy-propagator
Releases · open-cluster-management-io/governance-policy-propagator
v0.15.0
governance-policy-propagator v0.15.0
- The released image is quay.io/open-cluster-management/governance-policy-propagator:v0.15.0
What's Changed
- Reduce the log level for a noisy log by @mprahl in #229
- Update kubernetes-dependency-watches to v0.8.1 by @mprahl in #230
- Retry template processing when k8s dep watcher is stopping a watch by @mprahl in #231
- Add flag to disable PlacementRule watches by @JustinKuli in #232
- Replace
WithOffset()withGinkgoHelper()by @dhaiducek in #233 - Make CRD descriptions folded by @dhaiducek in #234
- Use controller-runtime to protect metrics endpoint by @zyjjay in #228
- Make CRD descriptions folded (Pt 2) by @dhaiducek in #235
- Add support for a custom service account for hub templates by @mprahl in #236
- Add the PolicyMetadata hub template variable by @mprahl in #237
- Update go-template-utils to v6.1.1 by @mprahl in #238
- Update to Go v1.22 by @dhaiducek in #242
- Fix dependency logic considering dots in names by @dhaiducek in #240
- Document the spec.hubTemplateOptions.serviceAccountName field by @mprahl in #239
- Update go-template-utils for better permission handling by @mprahl in #243
- Sync common Makefile by @dhaiducek in #244
- Update automation TTL description by @dhaiducek in #245
- Remove requirement for
eventHookin automation by @dhaiducek in #246
Full Changelog: v0.14.0...v0.15.0
Contributors
mprahl, dhaiducek, and 2 other contributors
Assets 2
v0.14.0
governance-policy-propagator v0.14.0
- The released image is quay.io/open-cluster-management/governance-policy-propagator:v0.14.0
What's Changed
- Replace unmaintained release action by @dhaiducek in #203
- Send the correct content-type header with a large CSV by @mprahl in #204
- Fix csv Header json content issue by @yiraeChristineKim in #205
- Add additional logs for database errors by @mprahl in #206
- Fix chunked transfers with the CSV reports by @mprahl in #207
- Ensure the lock is in place before creating queued disabled events by @mprahl in #210
- Run framework tests on OCM PRs by @zyjjay in #208
- Update go-template-utils by @mprahl in #212
- Fix index errors for large values by @mprahl in #211
- Sync common Makefile by @dhaiducek in #213
- Update rbac-api-utils to handle partial SelfSubjectRulesReview success by @mprahl in #214
- Update CRD descriptions by @dhaiducek in #209
- Remove the code to generate disabled compliance events for local-cluster by @mprahl in #215
- Remove the IAM Policy Controller by @yiraeChristineKim in #216
- Add a launch.json file for local development by @mprahl in #217
- Allow all policy types to use hub templates by @JustinKuli in #218
- Update controller-runtime to 0.17.3 by @JeffeyL in #219
- Bump utilities versions by @JustinKuli in #220
- Add -1 as a possible compliance value for the status metric by @zyjjay in #221
- Update kubernetes-dependency-watches to v0.7.0 by @mprahl in #223
- Fix flaky propagator test (case19_rep_policy_placement_test) by @yiraeChristineKim in #222
- Update Go packages by @dhaiducek in #224
- Update to UBI9 by @dhaiducek in #225
- Fix deployments for alternate namespaces by @dhaiducek in #227
Full Changelog: v0.13.0...v0.14.0
Contributors
mprahl, dhaiducek, and 4 other contributors
Assets 2
v0.13.0
governance-policy-propagator v0.13.0
- The released image is quay.io/open-cluster-management/governance-policy-propagator:v0.13.0
What's Changed
- Ignore synced policies for hosted clusters by @JustinKuli in #135
- Cache hub template queries by @mprahl in #137
- ACM-7397: Reduce the reconciles caused from policy set updates by @JeffeyL in #133
- Update only affected replicated policies by @yiraeChristineKim in #136
- [Hotfix]Filter replicated policy in rootstatus ctlr by @yiraeChristineKim in #139
- Fix e2e test case2 status flaky issue by @yiraeChristineKim in #140
- Update the webhook to validate the remediationAction field of policies by @zyjjay in #142
- Update packages by @dhaiducek in #141
- Run PolicyAutomation tests separately in CI by @JustinKuli in #143
- Handle other changes to PlacementBinding by @JustinKuli in #144
- Modest Memory Improvements by @mprahl in #145
- Add generated code check by @dhaiducek in #147
- Sync common Makefile by @dhaiducek in #146
- Add retries to some templating related failures by @mprahl in #149
- Sync common Makefile by @dhaiducek in #150
- ACM-3299: governance-policy-propagator: Use SA for E2E by @JeffeyL in #151
- Fix hub template watches by @mprahl in #153
- Tweak webhook logging by @dhaiducek in #154
- Add partial indexes to account for null values by @mprahl in #155
- Drop
ClusterNamespaceinternally to prep for Placement by @dhaiducek in #156 - Compliance Event Recording API by @JustinKuli in #152
- Add gosec annotations for sha1 usage by @JustinKuli in #158
- Sync common Makefile by @dhaiducek in #159
- Update compliance database schema by @mprahl in #157
- Remove spec_hash and allow the use of IDs instead by @mprahl in #160
- Add the API to get compliance events by @mprahl in #161
- Add filtering options to the compliance events API by @mprahl in #162
- Update to Go v1.21 by @dhaiducek in #166
- Set the database ID annotations on replicated policies by @mprahl in #165
- Sync common Makefile by @dhaiducek in #169
- Various small fixes for compliance history by @mprahl in #170
- Add back propagation/update events by @dhaiducek in #168
- Clean up old references by @dhaiducek in #172
- Ignore false gosec violation by @mprahl in #173
- Fix spec fetching for Compliance API by @mprahl in #175
- Remove app decision by @dhaiducek in #171
- Sync common Makefile and Dependabot by @dhaiducek in #176
- Bump the github-actions group with 4 updates by @dependabot in #178
- Add certificate and token auth and authz on the POST API endpoint by @mprahl in #177
- Add an API endpoint to generate a CSV compliance report by @yiraeChristineKim in #167
- Fix status update with faulty PlacementBinding by @dhaiducek in #180
- Add support for client auth CA from a file by @mprahl in #181
- Stop trying to connect to the DB when the connection URL is not set by @mprahl in #182
- Sync common makefile by @dhaiducek in #183
- Simplify actions; Add
gosecscan by @dhaiducek in #184 - Use testcase-scoped variables by @dhaiducek in #179
- Use
HaveOccurred()for E2E error checking by @dhaiducek in #186 - Include command in error from
kubectlcommands by @dhaiducek in #187 - Add authorization to the compliance event API endpoints by @yiraeChristineKim in #164
- Follow up PR for ACM-6866/#164 by @mprahl in #188
- Upgrade
controller-genby @dhaiducek in #185 - Update go for gosec by @mprahl in #190
- Remove client certificate authentication by @mprahl in #191
- Add more logging for when a placement binding can't be retrieved by @mprahl in #193
- Use the pod's namespace for the database secret when not overridden by @mprahl in #194
- Make troubleshooting easier when the governance-policy-database secret is invalid by @mprahl in #195
- Upgrade common Makefile by @dhaiducek in #197
- Remove leading newline from CRD by @dhaiducek in #196
- Reset the database ID cache when applicable by @mprahl in #198
- Ignore role bindings in default namespace for RBAC by @mprahl in #199
- Generate a disabled compliance history API entry for local-cluster by @mprahl in #200
- Add additional log details for database errors by @mprahl in #201
- Use errors.As instead of manual type assertions by @mprahl in #202
New Contributors
- @JeffeyL made their first contribution in #133
- @dependabot made their first contribution in #178
Full Changelog: v0.12.0...v0.13.0
Contributors
mprahl, dhaiducek, and 5 other contributors
Assets 2
v0.12.0
governance-policy-propagator v0.12.0
- The released image is quay.io/open-cluster-management/governance-policy-propagator:v0.12.0
What's Changed
- Support selective policy enforcement by @Missxiaoguo in #110
- Bump controller-runtime to 0.15.0 by @clyang82 in #113
- Better handling of cluster-scoped template lookups by @JustinKuli in #115
- Bug: 2 ansiblejobs were created when "Disabled+Manual" mode by @yiraeChristineKim in #116
- Explicitly enable CGO by @mprahl in #122
- Webhook to check name + namespace exceeds 63 characters by @yiraeChristineKim in #117
- Refactoring
getPolicyPlacementDecisionsby @JustinKuli in #127 - Fix duplicated event generation when root policy is disabled by @zyjjay in #131
- Add the database schema for the compliance events API by @mprahl in #126
- Split replicated policy reconciles by @JustinKuli in #130
New Contributors
- @Missxiaoguo made their first contribution in #110
- @clyang82 made their first contribution in #113
- @zyjjay made their first contribution in #131
Full Changelog: v0.11.0...v0.12.0
Contributors
Missxiaoguo, clyang82, and 4 other contributors
Assets 2
v0.11.0
governance-policy-propagator v0.11.0
- The released image is quay.io/open-cluster-management/governance-policy-propagator:v0.11.0
What's Changed
- Stop overriding default annotations when IV annotation is set by @mprahl in #93
- Update the dependency watch client library by @mprahl in #97
- Add error logs by @dhaiducek in #96
- Add ManagedClusterLabels to hub template context by @JustinKuli in #95
- Add support for the copy template functions to the propagator by @gparvin in #99
- Requeue propagation errors by @JustinKuli in #100
- Update release regex by @dhaiducek in #101
- Update OWNERS by @gparvin in #105
- Sanitize AnsibleJob name by @JustinKuli in #107
- Upgrade
go-template-utilsto v3.2.0 by @dhaiducek in #106 - More package upgrades by @dhaiducek in #109
- Bump Go in Dockerfile by @dhaiducek in #108
- Bug: Only one policy violation status was passed into ansiblejob by @yiraeChristineKim in #102
New Contributors
- @yiraeChristineKim made their first contribution in #102
Full Changelog: v0.10.0...v0.11.0
Contributors
mprahl, gparvin, and 3 other contributors
Assets 2
v0.10.0
Governance-policy-propagator v0.10.0
- The released image is quay.io/open-cluster-management/governance-policy-propagator:v0.10.0
What's Changed
- Add fields to the Policy CRD for policy ordering by @JustinKuli in #49
- Reconcile policies when a hub template referenced object is updated by @mprahl in #53
- Update go-template-utils to v3.0.0 by @mprahl in #55
- Update the permissions to match what is needed by @mprahl in #56
- Initialize klog explicitly by @mprahl in #57
- Policyset dependencies by @JustinKuli in #58
- Add Pending to complianceState enum by @willkutler in #59
- Root policy label bug by @JustinKuli in #60
- Fix some issues in replication code by @JustinKuli in #62
- Fix the dynamic watch cleanup by @mprahl in #63
- Provide PolicyViolationContext to Ansible Tower by @ChunxiAlexLuo in #52
- Add
hub_template_active_watchesmetric by @dhaiducek in #61 - Update go-template-utils to v3.0.1 by @mprahl in #65
- update policyViolationContextLimit kubebuilder validation by @ChunxiAlexLuo in #66
- Aggregate Pending status from replicated policies by @JustinKuli in #64
- update violationMessage field name by @ChunxiAlexLuo in #67
- Updates to the CRDs where some field descriptions are missing by @gparvin in #68
- Add policy violation context for manual run model by @ChunxiAlexLuo in #69
- enable pending status for policy set by @willkutler in #71
- Set "oldest" tag in Makefile; Bump to K8s v1.19 by @dhaiducek in #72
- Add CRD validation for namespaces in dependencies by @JustinKuli in #73
- Fix format of policy CRD yaml by @JustinKuli in #74
- Only pass violation context when non compliant cluster exists by @ChunxiAlexLuo in #70
- Add a metric to record policy propagation failures by @mprahl in #75
- Delete the propagation failure metric for deleted policies by @mprahl in #76
- Clean up extra lines in Dockerfile by @dhaiducek in #77
- Use printf instead of echo for changing CRD format by @mprahl in #78
- Update kubernetes-dependency-watches to v0.1.1 by @mprahl in #79
- Use enum for dependency compliance by @willkutler in #80
- Provide the correct Hub DNS name in the Ansible extra_vars by @mprahl in #81
- Fix reconciling a policy with a dot in its name by @JustinKuli in #82
PolicyDepenency-->PolicyDependencyby @dhaiducek in #83- add test for ocm_handle_root_policy_duration metric by @willkutler in #85
- Refactor root policy status updates by @mprahl in #86
- Use better names for the extra_vars passed to the Ansible job by @mprahl in #88
- Add concurrency to the policy-metrics controller by @mprahl in #89
- Use
EventuallyWithOffsetin test utils by @dhaiducek in #92 - Add the spec.copyPolicyMetadata field by @mprahl in #91
Full Changelog: v0.9.0...v0.10.0
Contributors
mprahl, gparvin, and 4 other contributors
