Highlights
Flux v0.35.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience.
Breaking changes
Strict validation rules have been put in place for API fields which define a time duration, such as .spec.interval. Effectively, this means values without a time unit (e.g. ms, s, m, h) will now be rejected by the API server.
Features and improvements
- Verify OCI artifacts signed by Cosign (including keyless) with OCIRepository.spec.verify.
- Allow pulling Helm charts dependencies from HTTPS repositories with mixed self-signed TLS and public CAs.
- Allow pulling Helm charts from OCI artifacts stored at the root of AWS ECR.
- Allow running bootstrap for insecure HTTP Git servers with
flux bootstrap git --allow-insecure-http --token-auth. - Improve health checking for global objects such as ClusterClass, GatewayClass, StorageClass, etc.
- The controllers and the Flux CLI are now built with Go 1.19.
For more information on OCI and Cosign support please see the Flux documentation.
Components changelog
- source-controller v0.30.0
- kustomize-controller v0.29.0
- helm-controller v0.25.0
- notification-controller v0.27.0
- image-reflector-controller v0.22.0
- image-automation-controller v0.26.0
CLI Changelog
- PR #3154 - @stefanprodan - [RFC-0003] Add Cosign keyless specification
- PR #3153 - @stefanprodan - Build with Go 1.19
- PR #3149 - @fluxcdbot - Update toolkit components
- PR #3145 - @stefanprodan - Add component label for controllers and their CRDs
- PR #3117 - @carlosonunez-vmw - Maintain original scheme when using --token-auth
- PR #3098 - @Santosh1176 - [Grafana] Use
container_memory_working_set_bytesto report memory consumption