-Docs @ v0.22.0
-Examples @ v0.22.0
Installation one-liner
Triggers now requires Kuberentes v.123 or higher
kubectl apply -f https://storage.googleapis.com/tekton-releases/triggers/previous/v0.22.0/release.yaml
kubectl apply -f https://storage.googleapis.com/tekton-releases/triggers/previous/v0.22.0/interceptors.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77a825172e0ac852ced908622c18666b3dbba54ae7e1934a9424b651bdd6041f9af
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77a825172e0ac852ced908622c18666b3dbba54ae7e1934a9424b651bdd6041f9af
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/triggers/previous/v0.22.0/release.yaml
REKOR_UUID=24296fb24b8ad77a825172e0ac852ced908622c18666b3dbba54ae7e1934a9424b651bdd6041f9af
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.22.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- ✨ Make the webhook port number configurable (#1472)
The port on which the webhook server listens may be configured via the WEBHOOK_PORT environment variable.
- ✨ Respond appropriately to CloudEvent requests (#1469)
CloudEvents sent to a Trigger will now receive a valid CloudEvent response.
- ✨ Add Namespaced Scope Interceptor (#1462)
Interceptor
CRD has been added which can be used to define a namespace scoped Interceptor. Use Namespaced Interceptor in kind section of Interceptors Ref in Triggers or EventListener spec.
- ✨ Allow trigger eventID to be used as input to TriggerBinding (#1449)
Add eventID as input to TriggerBinding
- ✨ Move CloudEvent to Stable (#1414)
cloudEventURI field can be used in stable APIs now.
Fixes
- 🐛 Fixes for running on k8s 1.23 and restricted PodSecurityAdmission level (#1477)
action required: If using Kubernetes 1.22, set PodSecurity flag to true to enforce a restricted pod security level in Tekton namespaces. See https://kubernetes.io/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-graduated-or-deprecated-features for more information.
E2E tests now use cos_containerd image instead of the unsupported cos image
Misc
-
🔨 Update CEL version to 0.12.5 and modified functions (#1483)
-
🔨 Modify e2e test scripts to support running on kind (#1476)
-
🔨 Refactor interceptor main package (#1467)
-
🔨 Add OpenSSF Best Practices Badge (#1458)
-
🔨 Remove redundant code for chan in TLS ticker (#1460)
-
🔨 Fix the Typo in Trigger Types API docs (#1456)
-
🔨 Remove unused issue template (#1455)
-
🔨 Bump tektoncd/pipeline to v0.41.0 (#1482)
Docs
- 📖 Add releases.md (#1461)
- 📖 Updating example pipeline to use workspaces and git-clone task (#1453)
- 📖 Add v0.21.0 docs link (#1445)
Thanks
Thanks to these contributors who contributed to v0.22.0!
- ❤️ @AlanGreene
- ❤️ @afrittoli
- ❤️ @bigkevmcd
- ❤️ @dibyom
- ❤️ @jmcshane
- ❤️ @khrm
- ❤️ @piyush-garg
- ❤️ @savitaashture
- ❤️ @sel
Extra shout-out for awesome release notes:
- 😍 @bigkevmcd
- 😍 @dibyom
- 😍 @jmcshane
- 😍 @khrm
- 😍 @piyush-garg
- 😍 @savitaashture
- 😍 @sel