github rancher/fleet v0.13.0-rc.3
on GitHub

latest releases: v0.12.5-hotfix-be90.1, v0.13.0-hotfix-0bde.1, v0.13.1...
pre-releaseone month ago

Notable changes

  • HelmOps and OCI storage receive new features and are no longer experimental
  • Improved traceability for built images
  • More accurate and lightweight resource status updates

Additions

  • Fleet now supports a new, user-driven bundle scan method, for more flexibility. The usual scanning method is still supported (docs), by @0xavi0 in #3480
  • When using SSH to point to a git repository, Fleet checks host keys by default, rejecting connection attempts to
    unknown hosts (docs), by @weyfonk in #3523
  • Replica counts are now configurable, for controllers as well as agents (docs), by @p-se in #3457
  • Fleet can now handle a separate webhook secret for each GitRepo (docs), by @0xavi0 in #3490
  • Fleet charts support extra labels and annotations, propagating them to controller deployments by @0xavi0 in #3531 and by @p-se in #3664
  • Agent leader election is now configurable (example), by @p-se in #3463
  • The old service account migration is removed by @weyfonk in #3601
  • Fleet no longer computes resource keys in bundle statuses by @manno in #3681
  • Fleet supports new gitjob metrics (docs) by @p-se in #3649
  • Agent management is now able to use a label to skip clusters by @manno in #3744

HelmOps

HelmOps is no longer experimental.
HelmOp resources (renamed from HelmApp) now support:

  • Polling Helm repositories
  • Semantic versioning constraints (with this known issue for OCI charts)
  • Preventing bundle naming collision between GitOps and HelmOps bundles
  • Installing Helm charts in setups with strict TLS mode enabled

Metrics and cluster statuses now include HelmOps data.
See the Fleet documentation for more details.

OCI Storage

OCI storage is no longer experimental, and is enabled by default. It can still be disabled by setting
OCI_STORAGE=false in extraEnv when installing Fleet.
It also supports:

  • Garbage collection
  • Better traceability of secrets involved in OCI storage, by:
    • labeling secrets cloned by Fleet to downstream clusters
    • generating an event when deleting an OCI artifact results in an error

Traceability improvements

Provenance of Docker manifests is now attested. Patch by @thardeck in #3846

Bugfixes

  • Status updates have received special attention:

    • GitRepo statuses are now more stable when multiple bundles are non-ready by @rbreddy in
      #3485
    • GitRepo status updates are optimised by @rbreddy in #3604
    • GitRepo status reconciliations from bundle status changes now uses a delay, to optimise performance when multiple
      changes happen within a short time span by @aruiz14 in #3558
    • Bundledeployment status updates are optimised by @manno in #3887
    • Drift detection no longer leads to resource updates with empty diffs by @aruiz14 in
      #3555
    • Fleet uses newer readiness detection fixes from Wrangler, to improve readiness detection for some resources by
      @weyfonk in #3853
    • Downstream agents are able to report their statuses upstream again by @manno in #3702

  • And life cycles of resources have not been left behind:

    • New filters against cluster events trigger bundle deployment creation less often by @manno in
      #3796
    • Fleet now deletes bundle deployments which are obsolete as a result of either:

  • The Fleet CLI:

    • Returns more readable error messages when used in git jobs by @0xavi0 in #3559
    • Uses the controller-runtime client, patch by @0xavi0 in #3670

  • Configuration is now more robust:

    • Config updates trigger cluster imports in a more selective way:
    • Using options.Helm could previously cause panics, fixed by @0xavi0 in #3567
    • Creating a GitRepo with an empty repo URL is no longer possible, by @weyfonk in #3582
    • Bundle deployments' and HelmOps' ignore options are now omitted when empty by @weyfonk in #3842

And also:

  • Failing to download a chart returns a more informative error by @0xavi0 in #3593
  • Using SSH with keys to download Helm charts should work again by @p-se in #3863

What's Changed

  • The benchmark suite:

    • Outputs a report improved by @manno in #3550
    • Skips the create-150-bundle benchmark when targeting more than 1000 clusters by @manno in
      #3861

  • Helm and OCI access secrets cloned to downstream clusters use specific secret types by @weyfonk in
    #3647

  • Fleet uses secrets for storing OCI registry details by @0xavi0 in #3692

  • When a GitRepo is deleted, so are its metrics by @p-se in #3686

  • fleet apply has received a few tweaks, enabling it to scan bundles concurrently by @aruiz14 in
    #3721

  • Fleet's rollout feature has shiny new docs, check them out!

  • Rate limiting settings allow better performance, by @manno in #3848

  • This version bumps Go to 1.24.0 by @thardeck in #3679

  • Fleet v0.13.0 supports Kubernetes 1.33, by @thardeck in #3734

New Contributors

Full Changelog: v0.12.4...v0.13.0-rc.3

Check out latest releases or
releases around rancher/fleet v0.13.0-rc.3

Don't miss a new fleet release

NewReleases is sending notifications on new releases.

Get notifications