-Docs @ v0.61.0
-Examples @ v0.61.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.0/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.0/release.yaml
REKOR_UUID=24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.61.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

• ✨ Promote Larger Results via Sidecar Logs to Beta (#8043)

Promote Larger Results via Sidecar Logs to Beta

• ✨ Add a flag on controllers to configure resyncPeriod (#8023)

Binary file (standard input) matches

Fixes

• 🐛 Cleanup resolved object before validating through dry-run (#8051)

Cleanup resolved object before attempting to validate it through api dry-run call

• 🐛 fix: resolve issue where results may not be obtained from sidecar logs (#8029)

fix: resolve issue where results may not be obtained from sidecar logs

• 🐛 Fix Validation Error Merging StepTemplates with StepRef (#7982)

Fix Validation Error Merging StepTemplates with Step's Ref

• 🐛 Bundle resolver can use ServiceAccount for auth (#7969)

Fix bundle resolver so it could pull OCI image (bundle) manifest from AWS ECR private registry

• 🐛 Fix: Example Test point to Catalog StepAction (#8044)

Misc

• 🔨 Remove taskref/pipelineref deprecated bundle field (#7789)

taskRef.bundle and pipelineRef.bundle are now removed from v1beta1 API version, as they were deprecated for about a year and half. Using them will result in a error when creating an object.

action required: make sure you migrate from taskRef.bundle and pipelineRef.bundle to the bundle resolver (see https://tekton.dev/docs/pipelines/migrating-v1beta1-to-v1/#replacing-taskrefbundle-and-pipelinerefbundle-with-bundle-resolver-a-idreplacing-taskrefbundle-and-pipelinerefbundle-with-bundle-resolver-a)

• 🔨 Bump to go 1.22 and fixes (#8035)

ektoncd/pipeline now requires go 1.22 to be built

• 🔨 Update knative/pkg to release-1.14 (#7989)

he minimum Kubernetes version supported by Tekton is now 1.28.

• 🔨 Bump k8s.io/code-generator from 0.29.2 to 0.29.6 (#8067)
• 🔨 Bump k8s.io/client-go from 0.29.2 to 0.29.6 (#8066)
• 🔨 Bump github/codeql-action from 3.25.8 to 3.25.10 (#8061)
• 🔨 Bump actions/checkout from 4.1.6 to 4.1.7 (#8060)
• 🔨 Bump github.com/spiffe/go-spiffe/v2 from 2.2.0 to 2.3.0 (#8059)
• 🔨 Bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 (#8058)
• 🔨 Bump the all group in /tekton with 4 updates (#8057)
• 🔨 Bump k8s.io/client-go from 0.27.14 to 0.27.15 in /test/custom-task-ctrls/wait-task-beta (#8049)
• 🔨 Bump k8s.io/apimachinery from 0.27.14 to 0.27.15 in /test/custom-task-ctrls/wait-task-beta (#8048)
• 🔨 Remove bobcatfish and lbernick from OWNERS 😿 (#8047)
• 🔨 Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (#8046)
• 🔨 Tests before promoting LargerResults via Sidecarlogs to Beta (#8041)
• 🔨 Bump the all group across 1 directory with 4 updates (#8040)
• 🔨 Bump actions/dependency-review-action from 4.3.2 to 4.3.3 (#8039)
• 🔨 Bump github/codeql-action from 3.25.7 to 3.25.8 (#8038)
• 🔨 Bump step-security/harden-runner from 2.8.0 to 2.8.1 (#8037)
• 🔨 Bump github.com/golangci/golangci-lint from 1.59.0 to 1.59.1 in /tools (#8036)
• 🔨 README.md: fix Kubernetes min version (#8030)
• 🔨 Bump github.com/containerd/containerd from 1.7.17 to 1.7.18 (#8026)
• 🔨 Bump tj-actions/changed-files from 44.5.1 to 44.5.2 (#8014)
• 🔨 Bump actions/dependency-review-action from 2.5.1 to 4.3.2 (#8013)
• 🔨 Bump step-security/harden-runner from 2.7.0 to 2.8.0 (#8012)
• 🔨 Bump github/codeql-action from 3.25.6 to 3.25.7 (#8011)
• 🔨 Bump actions/checkout from 3.6.0 to 4.1.6 (#8010)
• 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/azure from 1.8.3 to 1.8.4 (#8007)
• 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/gcp from 1.8.3 to 1.8.4 (#8001)
• 🔨 Bump github.com/sigstore/sigstore from 1.8.3 to 1.8.4 (#8000)
• 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/hashivault from 1.8.3 to 1.8.4 (#7999)
• 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/aws from 1.8.3 to 1.8.4 (#7998)
• 🔨 Bump the all group across 1 directory with 4 updates (#7995)
• 🔨 Bump step-security/harden-runner from 2.7.1 to 2.8.0 (#7993)
• 🔨 Bump tj-actions/changed-files from 44.4.0 to 44.5.1 (#7992)
• 🔨 Bump github.com/golangci/golangci-lint from 1.58.2 to 1.59.0 in /tools (#7991)
• 🔨 Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#7985)
• 🔨 Update releases.md for v0.60 (#7976)
• 🔨 TEP0152 - Complete V1 conformance test suite (#7913)
• 🔨 .github/workflows: add a dependency-review workflow (#7846)

Docs

• 📖 Document that task results are not enforced (#8053)
• 📖 Fix the document: Task Level Comp Res is beta (#8004)
• 📖 Patch release v0.60.1 (#7997)

Thanks

Thanks to these contributors who contributed to v0.61.0!

• ❤️ @JeromeJu
• ❤️ @afrittoli
• ❤️ @chitrangpatel
• ❤️ @dependabot[bot]
• ❤️ @khrm
• ❤️ @l-qing
• ❤️ @vdemeester
• ❤️ @wilstdu

Extra shout-out for awesome release notes:

• 😍 @chitrangpatel
• 😍 @l-qing
• 😍 @vdemeester
• 😍 @wilstdu