-Docs @ v0.22.0
-Examples @ v0.22.0

Installation one-liner

Triggers now requires Kuberentes v.123 or higher

kubectl apply -f https://storage.googleapis.com/tekton-releases/triggers/previous/v0.22.0/release.yaml
kubectl apply -f https://storage.googleapis.com/tekton-releases/triggers/previous/v0.22.0/interceptors.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a825172e0ac852ced908622c18666b3dbba54ae7e1934a9424b651bdd6041f9af

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a825172e0ac852ced908622c18666b3dbba54ae7e1934a9424b651bdd6041f9af
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/triggers/previous/v0.22.0/release.yaml
REKOR_UUID=24296fb24b8ad77a825172e0ac852ced908622c18666b3dbba54ae7e1934a9424b651bdd6041f9af

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.22.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

• ✨ Make the webhook port number configurable (#1472)

The port on which the webhook server listens may be configured via the WEBHOOK_PORT environment variable.

• ✨ Respond appropriately to CloudEvent requests (#1469)

CloudEvents sent to a Trigger will now receive a valid CloudEvent response.

• ✨ Add Namespaced Scope Interceptor (#1462)

Interceptor CRD has been added which can be used to define a namespace scoped Interceptor. Use Namespaced Interceptor in kind section of Interceptors Ref in Triggers or EventListener spec.

• ✨ Allow trigger eventID to be used as input to TriggerBinding (#1449)

Add eventID as input to TriggerBinding

• ✨ Move CloudEvent to Stable (#1414)

cloudEventURI field can be used in stable APIs now.

Fixes

• 🐛 Fixes for running on k8s 1.23 and restricted PodSecurityAdmission level (#1477)

action required: If using Kubernetes 1.22, set PodSecurity flag to true to enforce a restricted pod security level in Tekton namespaces. See https://kubernetes.io/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-graduated-or-deprecated-features for more information.

E2E tests now use cos_containerd image instead of the unsupported cos image

Misc

• 🔨 Update CEL version to 0.12.5 and modified functions (#1483)

• 🔨 Modify e2e test scripts to support running on kind (#1476)

• 🔨 Refactor interceptor main package (#1467)

• 🔨 Add OpenSSF Best Practices Badge (#1458)

• 🔨 Remove redundant code for chan in TLS ticker (#1460)

• 🔨 Fix the Typo in Trigger Types API docs (#1456)

• 🔨 Remove unused issue template (#1455)

• 🔨 Bump tektoncd/pipeline to v0.41.0 (#1482)

Docs

• 📖 Add releases.md (#1461)
• 📖 Updating example pipeline to use workspaces and git-clone task (#1453)
• 📖 Add v0.21.0 docs link (#1445)

Thanks

Thanks to these contributors who contributed to v0.22.0!

• ❤️ @AlanGreene
• ❤️ @afrittoli
• ❤️ @bigkevmcd
• ❤️ @dibyom
• ❤️ @jmcshane
• ❤️ @khrm
• ❤️ @piyush-garg
• ❤️ @savitaashture
• ❤️ @sel

Extra shout-out for awesome release notes:

• 😍 @bigkevmcd
• 😍 @dibyom
• 😍 @jmcshane
• 😍 @khrm
• 😍 @piyush-garg
• 😍 @savitaashture
• 😍 @sel