github tektoncd/cli v0.45.0
on GitHub

5 hours ago

v0.45.0 Release 🎉

This release adds the describe subcommand for customrun, migrates tracing from OpenCensus to OpenTelemetry, removes the deprecated chains command, adds support for Pipelines v1.12.0, and includes dependency updates to address multiple critical CVEs.

Changelog 📋

What's Changed

  • Bump chainguard-dev/actions from 1.6.1 to 1.6.3 by @dependabot[bot] in #2742
  • Bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 by @dependabot[bot] in #2753
  • chore: referencing the setup-kind script from the plumbing repo instead of copying it by @infernus01 in #2590
  • Nominate divyansh42 as cli approver by @vdemeester in #2761
  • Move piyush-garg to alumni by @vdemeester in #2760
  • docs: Update CLI docs for v0.44.0 release by @pratap0007 in #2748
  • Bump github/codeql-action from 4.32.3 to 4.32.5 by @dependabot[bot] in #2755
  • Bump step-security/harden-runner from 2.14.2 to 2.15.0 by @dependabot[bot] in #2757
  • Bump actions/setup-go from 6.2.0 to 6.3.0 by @dependabot[bot] in #2754
  • Bump github.com/google/go-containerregistry from 0.21.0 to 0.21.2 by @dependabot[bot] in #2759
  • Bump github.com/docker/cli from 29.2.1+incompatible to 29.3.0+incompatible in the go-docker-dependencies group by @dependabot[bot] in #2763
  • Bump golang.org/x/term from 0.40.0 to 0.41.0 by @dependabot[bot] in #2766
  • Bump github.com/golangci/golangci-lint/v2 from 2.10.1 to 2.11.3 in /tools by @dependabot[bot] in #2765
  • Add CI summary fan-in job to presubmit CI by @vdemeester in #2741
  • feat: add cherry-pick command workflow by @vdemeester in #2682
  • Bump chainguard-dev/actions from 1.6.3 to 1.6.5 by @dependabot[bot] in #2756
  • Bump actions/upload-artifact from 6.0.0 to 7.0.0 by @dependabot[bot] in #2758
  • Bump the go-k8s-dependencies group with 3 updates by @dependabot[bot] in #2752
  • Change all occurences of GCS buckets with OCI buckets by @adityavshinde in #2768
  • Add long flag --display-name to display the log of pipelinerun by @icloudnote in #2450
  • feat: add describe subcommand in customrun command by @pratap0007 in #2712
  • Cleanup/remove deprecate chains cmd by @adityavshinde in #2769
  • Bump google.golang.org/grpc from 1.78.0 to 1.79.3 by @dependabot[bot] in #2775
  • Bump github.com/tektoncd/pipeline from 1.9.1 to 1.9.2 by @dependabot[bot] in #2781
  • Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by @dependabot[bot] in #2789
  • Bump knative and components version by @khrm in #2788
  • Migrate tracing from OpenCensus to OpenTelemetry by @khrm in #2799
  • Bump go.opentelemetry.io/otel/sdk from 1.42.0 to 1.43.0 by @dependabot[bot] in #2800
  • Bump github.com/docker/cli from 29.3.0+incompatible to 29.3.1+incompatible in the go-docker-dependencies group across 1 directory by @dependabot[bot] in #2783
  • Bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 by @dependabot[bot] in #2801
  • Bump github.com/letsencrypt/boulder from 0.20251110.0 to 0.20260406.0 by @dependabot[bot] in #2796
  • (deps) Bump go version to 1.25.8 to fix CVE-2026-25679 by @divyansh42 in #2803
  • Bump github.com/google/go-containerregistry from 0.21.3 to 0.21.4 by @dependabot[bot] in #2797
  • Bump github.com/sigstore/cosign/v2 from 2.6.2 to 2.6.3 by @dependabot[bot] in #2798
  • Bump step-security/harden-runner from 2.15.0 to 2.17.0 by @dependabot[bot] in #2808
  • Bump github.com/fatih/color from 1.18.0 to 1.19.0 by @dependabot[bot] in #2777
  • Bump github.com/golangci/golangci-lint/v2 from 2.11.3 to 2.11.4 in /tools by @dependabot[bot] in #2778
  • Bump github/codeql-action from 4.32.5 to 4.35.1 by @dependabot[bot] in #2784
  • Bump actions/setup-go from 6.3.0 to 6.4.0 by @dependabot[bot] in #2786
  • Bump github.com/sigstore/sigstore from 1.10.4 to 1.10.5 by @dependabot[bot] in #2805
  • Bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6 by @dependabot[bot] in #2809
  • Bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 by @dependabot[bot] in #2802
  • Bump actions/upload-artifact from 7.0.0 to 7.0.1 by @dependabot[bot] in #2816
  • Bump step-security/harden-runner from 2.17.0 to 2.19.0 by @dependabot[bot] in #2815
  • Bump the go-k8s-dependencies group with 3 updates by @dependabot[bot] in #2811
  • Bump github.com/letsencrypt/boulder from 0.20260406.0 to 0.20260413.0 by @dependabot[bot] in #2812
  • Bump github.com/google/go-containerregistry from 0.21.4 to 0.21.5 by @dependabot[bot] in #2813
  • Bump chainguard-dev/actions from 1.6.5 to 1.6.15 by @dependabot[bot] in #2814
  • Bump github/codeql-action from 4.35.1 to 4.35.2 by @dependabot[bot] in #2817
  • Bump github.com/docker/cli from 29.4.0+incompatible to 29.4.1+incompatible in the go-docker-dependencies group by @dependabot[bot] in #2820
  • Bump github.com/tektoncd/pipeline from 1.11.0 to 1.11.1 by @dependabot[bot] in #2823
  • Bump github.com/tektoncd/chains from 0.26.2 to 0.26.3 by @dependabot[bot] in #2827
  • Bump chainguard-dev/actions from 1.6.15 to 1.6.16 by @dependabot[bot] in #2829
  • Bump go.uber.org/zap from 1.27.1 to 1.28.0 by @dependabot[bot] in #2830
  • Bump github.com/letsencrypt/boulder from 0.20260413.0 to 0.20260420.0 by @dependabot[bot] in #2821
  • Bump github.com/tektoncd/pipeline from 1.11.1 to 1.12.0 by @dependabot[bot] in #2836
  • Bump google.golang.org/grpc from 1.80.0 to 1.81.0 by @dependabot[bot] in #2837
  • Bump chainguard-dev/actions from 1.6.16 to 1.6.19 by @dependabot[bot] in #2839
  • Bump github.com/golangci/golangci-lint/v2 from 2.11.4 to 2.12.1 in /tools by @dependabot[bot] in #2834
  • Bump step-security/harden-runner from 2.19.0 to 2.19.1 by @dependabot[bot] in #2840
  • Strip Go symbol table from release binaries by @alliasgher in #2843
  • Bump github/codeql-action from 4.35.2 to 4.35.3 by @dependabot[bot] in #2838
  • Bump github.com/golangci/golangci-lint/v2 from 2.12.1 to 2.12.2 in /tools by @dependabot[bot] in #2842
  • Bump github.com/in-toto/in-toto-golang from 0.10.0 to 0.11.0 by @dependabot[bot] in #2844
  • Bump github.com/docker/cli from 29.4.1+incompatible to 29.4.3+incompatible in the go-docker-dependencies group across 1 directory by @dependabot[bot] in #2833
  • Update tekton hub to 1.24.0 by @divyansh42 in #2845
  • Bump golang.org/x/crypto from 0.50.0 to 0.51.0 by @dependabot[bot] in #2847

New Contributors

Full Changelog: v0.44.0...v0.45.0

Check out latest releases or
releases around tektoncd/cli v0.45.0

Don't miss a new cli release

NewReleases is sending notifications on new releases.

Get notifications