cloudposse/geodesic 0.143.0

v0.143.0 Security updates, better EKS cluster support

on GitHub

what

• Remove ansible
• Add AWS_REGION_ABBREVIATION_TYPE to set region abbreviations used in our tools
• Add AWS_DEFAULT_SHORT_REGION set to $AWS_REGION_ABBREVIATION_TYPE of $AWS_DEFAULT_REGION
• With that, better support for EKS clusters (set-cluster, eks-update-kubeconfig should not work out-of-the box for most users)
• Better error handling in set-cluster and eks-update-kubeconfig
• Add support for region ap-northeast-3 made available 2020-03-01
• Ensure $KUBECONFIG has mode rw------- before referencing it
• Updated support for initializing AWS configuration
• Configure Renovatebot to update Geodesic Dockerfiles
• Include Alpine patch version and Debian minor version in startup messages
• Updates:
  • Alpine 3.12.1 -> 3.12.4
  • Debian 10.6 -> 10.8
  • Python (Debian only) 3.8.6 -> 3.8.8
  • Google Cloud SDK 328.0.0 -> 330.0.0

why

• Installed version of ansible superseded by new 3.x version, but Cloud Posse clients not using it. Closes #684
• Bring scripted tools in line with atmos and Cloud Posse reference architecture
• Better support for using Geodesic derivatives as pseudo-bastions inside Kubernetes clusters
• Keep up-to-date

what

• [renovate] Remove invalid matchPaths from renovate.json

why

• #687 attempted to get Renovate to keep our Dockerfiles up-to-date by explicitly including them. The attempt not only failed, it broke the configuration, causing all updates to stop.

note

Renovate was already finding our Dockerfiles. It was not updating them because it will not update versions containing variables. As a result, we cannot rely on Renovate to keep the Dockerfiles up-to-date with respect to nearly anything in them, since we use variables for all versions (not just FROM but also Go SDK, helm plugins, etc.).

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
awscli	==1.19.17 -> ==1.19.27
boto3	==1.17.17 -> ==1.17.27

Release Notes

what

• Remove ansible
• Add AWS_REGION_ABBREVIATION_TYPE to set region abbreviations used in our tools
• Add AWS_DEFAULT_SHORT_REGION set to $AWS_REGION_ABBREVIATION_TYPE of $AWS_DEFAULT_REGION
• With that, better support for EKS clusters (set-cluster, eks-update-kubeconfig should not work out-of-the box for most users)
• Better error handling in set-cluster and eks-update-kubeconfig
• Add support for region ap-northeast-3 made available 2020-03-01
• Ensure $KUBECONFIG has mode rw------- before referencing it
• Updated support for initializing AWS configuration
• Configure Renovatebot to update Geodesic Dockerfiles
• Include Alpine patch version and Debian minor version in startup messages
• Updates:
  • Alpine 3.12.1 -> 3.12.4
  • Debian 10.6 -> 10.8
  • Python (Debian only) 3.8.6 -> 3.8.8
  • Google Cloud SDK 328.0.0 -> 330.0.0

why

• Installed version of ansible superseded by new 3.x version, but Cloud Posse clients not using it. Closes #684
• Bring scripted tools in line with atmos and Cloud Posse reference architecture
• Better support for using Geodesic derivatives as pseudo-bastions inside Kubernetes clusters
• Keep up-to-date

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
PyYAML (source)	==5.3.1 -> ==5.4.1

Release Notes

what

• [renovate] Remove invalid matchPaths from renovate.json

why

• #687 attempted to get Renovate to keep our Dockerfiles up-to-date by explicitly including them. The attempt not only failed, it broke the configuration, causing all updates to stop.

note

Renovate was already finding our Dockerfiles. It was not updating them because it will not update versions containing variables. As a result, we cannot rely on Renovate to keep the Dockerfiles up-to-date with respect to nearly anything in them, since we use variables for all versions (not just FROM but also Go SDK, helm plugins, etc.).

what

• Remove ansible
• Add AWS_REGION_ABBREVIATION_TYPE to set region abbreviations used in our tools
• Add AWS_DEFAULT_SHORT_REGION set to $AWS_REGION_ABBREVIATION_TYPE of $AWS_DEFAULT_REGION
• With that, better support for EKS clusters (set-cluster, eks-update-kubeconfig should not work out-of-the box for most users)
• Better error handling in set-cluster and eks-update-kubeconfig
• Add support for region ap-northeast-3 made available 2020-03-01
• Ensure $KUBECONFIG has mode rw------- before referencing it
• Updated support for initializing AWS configuration
• Configure Renovatebot to update Geodesic Dockerfiles
• Include Alpine patch version and Debian minor version in startup messages
• Updates:
  • Alpine 3.12.1 -> 3.12.4
  • Debian 10.6 -> 10.8
  • Python (Debian only) 3.8.6 -> 3.8.8
  • Google Cloud SDK 328.0.0 -> 330.0.0

why

• Installed version of ansible superseded by new 3.x version, but Cloud Posse clients not using it. Closes #684
• Bring scripted tools in line with atmos and Cloud Posse reference architecture
• Better support for using Geodesic derivatives as pseudo-bastions inside Kubernetes clusters
• Keep up-to-date