What's Changed
🛠 Breaking changes
- helm: upgrade cert-manager from v1.12.6 to v1.15.0 by @daniel-weisse in #3177
- See the cert-manager upgrade instructions
- Remove support for k8s v1.27 by @burgerdev in #3173
🎁 New features
- Add support for k8s v1.30 by @burgerdev in #3173
- terraform-provider-constellation: openstack support by @malt3 in #2974
- Support SEV-SNP on GCP by @msanft in #3011
- cli: allow tagging cloud resources with custom tags by @miampf in #3033
- cli: enable JSON output for
constellation verifyon Azure TDX by @daniel-weisse in #3164 - config: allow "latest" pseudo-version for Azure TDX config values by @daniel-weisse in #3166
🐛 Bug fixes
- cli: retry auth handshake deadline exceeded errors in CLI and Terraform by @daniel-weisse in #2976
- bootstrapper: wipe disk and reboot on non-recoverable error by @daniel-weisse in #2971
- bazel: patch Go SDK to increase TLS maxHandshake size by @malt3 in #3009
- kubecmd: retry any k8s errors in CLI and Terraform by @daniel-weisse in #3028
- helm: Restore the ability to start a cluster in conformance mode by disabling the cilium ipmasq agent when in conformance mode by @3u13r in #3062
- terraform: add missing policies for AWS ALB by @burgerdev in #3063
- operators: ignore node deletion errors on absence by @burgerdev in #3113
- cli: fix
constellation verifydepending on an initializedconstellation-state.yamlfile by @daniel-weisse in #3184
🔧 Other changes
- attestation: dont set a default for TDX MRSEAM by @daniel-weisse in #3038
- deps: upgrade terraform provider stackit to 0.16.0 by @malt3 in #3046
- image: update to Fedora 40 by @msanft in #3104
- bootstrapper: prioritize etcd disk I/O by @msanft in #3114
- helm: update AWS CSI driver by @msanft in #3121
- attestation: enable Azure TDX CRL checking by @daniel-weisse in #3160
- renovate: allow major version upgrades of GitHub action dependencies by @daniel-weisse in #3217
New Contributors
- @davidweisse made their first contribution in #3018
Full Changelog: v2.16.4...v2.17.0