github tektoncd/pipeline v0.64.0
Tekton Pipeline release v0.64.0 "Ragamuffin Reventlov"
on GitHub

11 hours ago

🎉 Released Container Images stored on ghcr.io 🎉

-Docs @ v0.64.0
-Examples @ v0.64.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.64.0/release.yaml

Attestation

The Rekor UUID for this release is 108e9186e8c5677ab54c658d37a263dfad3c8244bbef3e63cced8ae2d37c05701abf89bc6fa1fdf8

Obtain the attestation: 

REKOR_UUID=108e9186e8c5677ab54c658d37a263dfad3c8244bbef3e63cced8ae2d37c05701abf89bc6fa1fdf8
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file: 

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.64.0/release.yaml
REKOR_UUID=108e9186e8c5677ab54c658d37a263dfad3c8244bbef3e63cced8ae2d37c05701abf89bc6fa1fdf8

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.64.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • ✨ Implement set-security-context feature for affinity assistant containers (#8182)

Affinity Assistant containers will now have a securityContext when feature flag set-security-context is enabled in ConfigMap feature-flags.

Fixes

  • 🐛 Fix isolated workspaces ignored when using StepTemplate (#8272)

Isolated workspaces are now correctly set when using in conjuction with StepTemplate

  • 🐛 fix(TaskRun): fixed the issue where some step statuses might not be correctly updated in failed TaskRun (#8270)

fix: fixed the issue where some step statuses might not be correctly updated in failed TaskRun

  • 🐛 fix(pipelinerun): resolve issue with PipelineRun not timing out successfully (#8236)

fix(pipelinerun): resolve issue with PipelineRun not timing out successfully

  • 🐛 fix(e2e): stabilize TestTaskRunFailure test (#8174)
  • 🐛 Mark steps as deleted when TaskRun fails (#8294)

Misc

  • 🔨 Bump the all group across 1 directory with 4 updates (#8300)
  • 🔨 Pin setup-go action (#8291)
  • 🔨 Simply the path for the base image (#8290)
  • 🔨 Bump github/codeql-action from 3.26.7 to 3.26.8 (#8289)
  • 🔨 Pin alpine image used in release pipeline (#8287)
  • 🔨 Update to the latest version of koparse for the release pipeline (#8285)
  • 🔨 Bump google.golang.org/grpc from 1.64.1 to 1.67.0 (#8281)
  • 🔨 Use the new version of koparse in the build (#8278)
  • 🔨 Bump step-security/harden-runner from 2.9.1 to 2.10.1 (#8269)
  • 🔨 Bump tj-actions/changed-files from 45.0.1 to 45.0.2 (#8268)
  • 🔨 Bump github/codeql-action from 3.26.6 to 3.26.7 (#8267)
  • 🔨 Bump the all group in /tekton with 4 updates (#8266)
  • 🔨 Adapt koparse step to handle no import path (#8261)
  • 🔨 Add KO_EXTRA_ARGS (#8260)
  • 🔨 Propagate image registry regions to publish (#8259)
  • 🔨 Fix the imageRegistryUser param usage in the release pipeline (#8256)
  • 🔨 build(deps): bump the all group in /tekton with 4 updates (#8253)
  • 🔨 Run build and tests conditionally (#8252)
  • 🔨 Support separate bucket and image reg creds (#8251)
  • 🔨 Add OCI source label to images (#8247)
  • 🔨 Make image registry regions configurable (#8246)
  • 🔨 build(deps): bump google.golang.org/grpc from 1.64.0 to 1.64.1 (#8245)
  • 🔨 build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 (#8244)
  • 🔨 build(deps): bump github.com/hashicorp/go-retryablehttp from 0.7.6 to 0.7.7 (#8243)
  • 🔨 build(deps): bump the all group across 1 directory with 4 updates (#8235)
  • 🔨 build(deps): bump tj-actions/changed-files from 45.0.0 to 45.0.1 (#8233)
  • 🔨 build(deps): bump github/codeql-action from 3.26.3 to 3.26.6 (#8232)

Docs

  • 📖 Update releases for new Tekton Pipeline Releases 0.63 (#8229)

Thanks

Thanks to these contributors who contributed to v0.64.0!

Extra shout-out for awesome release notes:

Check out latest releases or
releases around tektoncd/pipeline v0.64.0

Don't miss a new pipeline release

NewReleases is sending notifications on new releases.

Get notifications