⛔️ WARNING: KNOWN ISSUE ⛔️

Do NOT use this release with dynamic ASGs enabled, which they are by default.
Lots of ASGs can cause the vxlan-policy-agent to fail in pre-start. This will cause all upgrades to fail. More details about this bug to come soon.

Release Highlights

• ✨ [New Feature] policy-server-internal now has HSTS support
• ✨ [New Feature] policy-server-asg-syncer emits metrics to track ASG sync timings
  (SecurityGroupRetrievalFromCCTime and SecurityGroupsTotalSyncTime)
• 🐛 [Bug Fix] policy-server-asg-syncer now detects deletions of security groups
  while querying CAPI for paginated data, and retries the sync until retry_deadline_seconds
  is exceeded. This prevents deletions of ASGs when the total count is >5000 groups from causing
  a potential blip in the applied rules.
  policy-server-asg-syncer pagination queries (when the number of ASGs exceeds 5000)
• 🐛 [Bug Fix] policy-server-asg-syncer now exits nonzero when errors are encounted during
  the ASG sync.
• 🔒 [Security Fix] Built with golang 1.17.8 to address CVE-2022-23772 & CVE-2022-23806

Manifest Property Changes

✨ Built with golang 1.17.8

Compatibility Notes

• Tested with silk-release v3.1.0