snapshot-latest

What's Changed

• chore(deps): update pepr to v0.46.3 by @renovate in #1365
• chore(deps): update keycloak to v26.1.4 by @renovate in #1356
• feat: add alertmanager datasource to grafana by @mjnagel in #1374
• chore(deps): update support-deps by @renovate in #1364
• chore(deps): update istio to v1.25.0 by @renovate in #1335
• chore(deps): update grafana to v8.10.4 by @renovate in #1363
• chore(deps): update prometheus-stack by @renovate in #1362
• chore: remove kiali and tempo references from repo by @mjnagel in #1375
• chore: update how to scrape metrics by @cmwylie19 in #1378
• chore: add additionalNetworkAllow to keycloak and loki by @mjnagel in #1379
• chore: add docs for layer selection by @Racer159 in #1216
• chore(deps): update velero to v8.6.0 by @renovate in #1371
• chore(deps): update support-deps by @renovate in #1376
• docs: velero csi vsphere backups by @bm54cloud in #1385
• chore: update unicorn ztunnel image to 1.25.0 by @mjnagel in #1389
• feat: use Client Credentials for managing Keycloak Clients by @slaskawi in #1341
• chore(deps): update prometheus-stack by @renovate in #1380
• feat: new webauth and mfa flows by @UnicornChance in #1370
• chore(deps): update support-deps by @renovate in #1390
• feat: theme customization by @slaskawi in #1382

New Contributors

• @bm54cloud made their first contribution in #1385

Full Changelog: v0.38.0...snapshot-latest

v0.38.0

0.38.0 (2025-03-19)

Features

• add status for removing / removalfailed (#1334) (a99b408)
• document workaround for Keycloak and Apple M4 Macs (#1337) (ae51155)
• root domain templating (#1343) (f64974c)
• sso doc restructure (#1293) (3c934a0)

Bug Fixes

• renovate not checking test directory versions (#1357) (9e78362)

Miscellaneous

• ci: disable compliance checks (#1347) (e984131)
• ci: rm create_bucket_lifecycle input to s3 module calls (#1348) (c93aa7b)
• ci: swap to govcloud for aws ci tests (#1342) (d51db55)
• ci: swap to new aws account for rke/eks tests (#1339) (3b6fb50)
• ci: switch to local modules (#1369) (9f8536d)
• deps: update grafana (#1346) (d869ca7)
• deps: update pepr to v0.46.1 (#1336) (5e9c119)
• deps: update pepr to v15.5.0 (#1353) (8d7b44b)
• deps: update prometheus-stack (#1324) (d6840be)
• deps: update support dependencies to v0.24.0 (#1360) (bf23651)
• deps: update support dependencies to v4.1.5 (#1340) (0714b05)
• deps: update support dependencies to v4.23.0 (#1358) (e6a986e)
• deps: update support-deps (#1332) (e37d062)
• deps: update support-deps (#1345) (e390899)
• deps: update support-deps (#1351) (551a865)
• deps: update support-deps (#1354) (dd36d03)
• deps: update velero (#1299) (59ce747)
• docs: keycloak session timeout doc (#1315) (9509ac7)

Documentation

• add developer doc on ci testing (#1344) (0e011a4)

v0.37.0

0.37.0 (2025-03-03)

Features

• kstatus for Pepr (#1288) (c1b78d2)
• new bundle variable - KEYCLOAK_HEAP_OPTIONS (#1314) (f7e0ebb)

Miscellaneous

• deps: update grafana (#1285) (ffda059)
• deps: update jest to v29.2.6 (#1313) (d30c6c7)
• deps: update keycloak to v26.1.3 (#1326) (691eebe)
• deps: update loki (#1272) (54b2cfc)
• deps: update prometheus to 3.2.0, prometheus-operator to 0.80.1 (#1262) (d1c6c3c)
• deps: update prometheus to v3.2.1 (#1321) (e1ee576)
• deps: update support-deps (#1289) (73f5de2)
• deps: update support-deps (#1323) (2822097)
• deps: update vector to 0.45.0 (#1316) (c66e807)
• enable ambient component for rke2/aks ci (#1322) (c280b03)
• switch to azure gov account (#1318) (31ec997)

v0.36.2

0.36.2 (2025-02-21)

Miscellaneous

• deps: update keycloak to v0.10.2 (#1311) (6c1b5b7)
• deps: update pepr to v0.46.0 (#1304) (4d0b9d0)

v0.36.1

0.36.1 (2025-02-19)

Important

When upgrading to this version of uds-core (v0.36.0+) there is an undocumented breaking change in Keycloak that requires a manual upgrade step to change several attribute mappers via the Keycloak Admin UI/API. This MUST be fixed if you have any SAML clients utilizing these mappers (if sso[].defaultClientScopes in your Package CR includes mapper-saml-*). Also note the other manual realm configuration changes that should be completed.

Bug Fixes

• add package: read permissions for nightly ci workflows (#1306) (7b62133)
• checkpoint package creation (#1303) (fabd56b)

Miscellaneous

• deps: update pepr to v0.45.1 (#1297) (4ddc821)
• docs: docs update (#1300) (f266d36)

v0.36.0

0.36.0 (2025-02-18)

Important

When upgrading to this version of uds-core there is an undocumented breaking change in Keycloak that requires a manual upgrade step to change several attribute mappers via the Keycloak Admin UI/API. This MUST be fixed if you have any SAML clients utilizing these mappers (if sso[].defaultClientScopes in your Package CR includes mapper-saml-*). Also note the other manual realm configuration changes that should be completed.

Features

• introduced a new option CREATE_OPTIONS and skip SBOMs in tests (#1268) (f944bf1)
• k3d-slim-dev: add Istio Proxy resource configuration (#1270) (fd4fa3c)
• k3d-slim-dev: add resource configuration for Istiod and Keycloak (#1279) (07eeea2)
• loki schema config management (#1224) (e16fdb1)

Bug Fixes

• add Keycloak workaround for Kernels 6.12+ (#1218) (bb634a6)
• added network restriction tests (#1250) (9ef6c2b)
• always upload CVE report (#1286) (e97b6b9)
• image name parsing for cve scan (#1294) (7f3b53b)
• lint errors on unused caught errors (#1271) (ccd824e)

Miscellaneous

• add json schema generation (#1264) (9eee462)
• ci: add workflow for scanning unicorn core for CVEs (#1274) (d7226be)
• deps: remove keycloak registry1 flavor architecture restriction (#1267) (c50b081)
• deps: update grafana (#1242) (73331d4)
• deps: update grafana to v8.12.1 (#1276) (ca60ca5)
• deps: update istio to v1.24.3 (#1266) (27acb5d)
• deps: update keycloak (#1184) (71fd910)
• deps: update keycloak to v0.10.1 (#1298) (e552e24)
• deps: update keycloak to v26.1.1 (#1258) (f3a3731)
• deps: update keycloak to v26.1.2 (#1269) (3301bab)
• deps: update loki (#1202) (79f8209)
• deps: update neuvector registry1 scanner and unicorn updater (#1261) (8b4ed68)
• deps: update neuvector updater image for unicorn flavor to v8.12.1 (#1284) (8c7bb17)
• deps: update pepr to v0.45.0 (#1252) (8be12db)
• deps: update prometheus-stack (#1255) (1a316a2)
• deps: update prometheus-stack to v68.4.4 (#1244) (8053443)
• deps: update support-deps (#1251) (30db8f0)
• deps: update support-deps (#1260) (e0e2523)
• deps: update support-deps (#1275) (069a201)
• deps: update uds-identity-config image (#1278) (3325662)
• deps: update velero to v1.32.2 (#1277) (02db070)
• switch to registry1 cni image (#1256) (2b564e6)

v0.35.0

0.35.0 (2025-02-03)

Features

• add logic to handle updates to operator config (#1186) (004e8b4)
• optional istio cni ztunnel component (#1175) (e003924)

Bug Fixes

• add healthz port to neuvector services (#1223) (ec55729)
• add patch for adding nv enforcer readiness probe (#1239) (098ef3d)
• address AKS ci flakiness (#1238) (262ba3e)
• checkpoint ci issue (#1234) (548ff6a)
• denied user permissions policy messaging (#1227) (1ccf4f7)
• istio package no longer assumes pepr deployments exist (#1232) (ab11592)

Miscellaneous

• ci: disable rds parameter group creation (#1230) (b4cb499)
• deps: update authservice to v1.0.4 (#1211) (da4d043)
• deps: update grafana (#1213) (54ddd23)
• deps: update pepr (#1197) (652c925)
• deps: update prometheus-stack (#1189) (e02c14c)
• deps: update support-deps (#1204) (d477f6a)
• deps: update support-deps (#1243) (d4179ae)
• deps: update support-deps to v1.50.1 (#1241) (6c14208)
• docs: cleanup diagrams (#1246) (f6bffb9)
• main: release 0.35.0 (#1219) (c31c608)
• switch registry1 ztunnel to proper source (#1249) (defa586)
• switch unicorn ztunnel to fips image (#1240) (dd63ac6)

Documentation

• add documentation on metrics/dashboards for apps (#1221) (d9062da)

v0.34.1

0.34.1 (2025-01-21)

Bug Fixes

• broken links (#1210) (9cc00e6)
• disable snapshot before deletion of rds instances in eks ci (#1190) (3cbd51c)

Miscellaneous

• deps: update grafana to v8.8.3 (#1195) (cd22e06)
• deps: update grafana to v8.8.4 (#1206) (00e89ff)
• deps: update neuvector (#1196) (5e7091e)
• deps: update support-deps (#1192) (5731713)
• deps: update velero to 1.15.2 (#1183) (d1bbc46)
• docs: uds operator diagrams (#1179) (9b418a8)
• docs: update existing diagrams (#1187) (6f0fda2)
• ignore uds-docs on commit linting (#1194) (789f101)
• troubleshooting docs (#1205) (3688bc7)

Documentation

• add irsa config (#1203) (3567056)

v0.34.0

0.34.0 (2025-01-15)

Features

• add additional outputs to debug-output action (#1073) (29f12b4)
• istio native sidecars (#1032) (e07c6dc)

Bug Fixes

• add missing resource type package to kubectl describe failed… (#1182) (4236b3a)
• attempt fix token permissions (#1155) (5a46e41)
• remove unnecessary docker command in dev docs task (#1180) (9906a09)
• validate unique names for monitors (#666) (80e28c1)

Miscellaneous

• add base url field for sso clients (#1177) (39bef00)
• add dev task for docs site (#1173) (b0c4bc0)
• deps: bump cross-spawn from 7.0.3 to 7.0.6 (#1157) (11ddada)
• deps: update grafana to v1.29.0 (#1167) (3b31358)
• deps: update istio to v1.24.2 (#1135) (0f9552a)
• deps: update keycloak to v26.0.8 (#1171) (1346f7b)
• deps: update loki memcached to v1.6.34 (#1148) (8bbf6b3)
• deps: update pepr to v0.42.3 (#1158) (55e8a4e)
• deps: update pepr to v15.3.0 (#1151) (153b7e1)
• deps: update prometheus-stack (#1137) (8dc0781)
• deps: update prometheus-stack (#1169) (71cab01)
• deps: update prometheus-stack to v67.9.0 (#1161) (067df1b)
• deps: update prometheus-stack to v68.1.0 (#1176) (7088e78)
• deps: update support-deps (#1147) (cf1a60b)
• deps: update support-deps (#1160) (6c55f6b)
• deps: update vector (#1165) (abb9584)
• deps: update velero (#1150) (29ee12b)
• docs update issue template (#1163) (21486f9)
• docs: add doc on non-http ingress (#1166) (0783525)
• docs: change .md link format to adhere to checker (#1181) (125a03b)
• docs: update Flavor Specific Development Notes (#1153) (bba5a71)

Documentation

• add note on minimum k3d version, update cli version reference (#1174) (c4dda4e)