crossplane - v1.12.0
Security
The v1.12.0 release is a regular quarterly Crossplane release featuring some eagerly awaited features such as ObserveOnly Resources, Pluggable Secret Stores and Composition Validation as well as a bunch of various improvements and fixes.
New Features
- ObserveOnly Resources alpha feature introduced by @turkenh . With supporting providers, you are now able to set Crossplane to behave in a read-only mode for a particular resource using the new
managementPolicy
field. - With the new Composition Validation alpha feature by @phisco (and some help from @lsviben) introduced initially in https://github.com/crossplane/crossplane/pull/3921 users are now able to early-validate their Compositions and find errors before runtime.
- Pluggable Secret Stores by @ezgidemirel that enables the development and consumption of out-of-tree secret store plugins. This will allow building/using new secret stores for Crossplane without making any changes in Crossplane and/or Provider codebases.
Notable Updates
- With the Pluggable Secret Stores update by @ezgidemirel and @turkenh, the External Secret Stores alpha feature is changing from using the now deprecated
in-tree
Vault secret store to using pluggable secret stores.
What's Changed
- Add ADOPTERS.md file to capture all known users of Crossplane by @jbw976 in https://github.com/crossplane/crossplane/pull/3676
- ci(renovate): disable updates for kubernetes deps on release branches by @phisco in https://github.com/crossplane/crossplane/pull/3681
- Update actions/cache digest to 627f0f4 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3682
- chore(renovate): disable non security gha updates to release branches by @phisco in https://github.com/crossplane/crossplane/pull/3688
- chore(renovate): disable everything except images on release branches by @phisco in https://github.com/crossplane/crossplane/pull/3692
- Add release-1.11 to baseBranches of renovate config by @jbw976 in https://github.com/crossplane/crossplane/pull/3696
- Update gcr.io/distroless/static Docker digest to 450981e (master) by @renovate in https://github.com/crossplane/crossplane/pull/3694
- Update releases table in README.md for v1.11 release by @jbw976 in https://github.com/crossplane/crossplane/pull/3697
- Update docker/setup-buildx-action digest to 15c905b (master) by @renovate in https://github.com/crossplane/crossplane/pull/3693
- Update aquasecurity/trivy-action action to v0.9.0 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3704
- Update golangci-lint to v1.51.0 by @hasheddan in https://github.com/crossplane/crossplane/pull/3707
- Update dependency golang to v1.20.0 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3703
- Add RunWhen to adopters list by @stewartshea in https://github.com/crossplane/crossplane/pull/3708
- Update kubernetes patches (master) by @renovate in https://github.com/crossplane/crossplane/pull/3683
- tests(fuzz): move remaining test cases from cncf-fuzzing by @phisco in https://github.com/crossplane/crossplane/pull/3671
- Add explanation and help text for signing DCO by @jbw976 in https://github.com/crossplane/crossplane/pull/3716
- Update ADOPTERS.md by @ddonahuex in https://github.com/crossplane/crossplane/pull/3709
- adding Renault in ADOPTERS list by @smileisak in https://github.com/crossplane/crossplane/pull/3710
- Update debian:bookworm-slim Docker digest to ffd3e96 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3726
- Update gcr.io/distroless/static Docker digest to fc8cbb8 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3731
- Update gcr.io/distroless/static Docker digest to d2e0993 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3733
- Adds Gympass as an Adopters by @caiofralmeida in https://github.com/crossplane/crossplane/pull/3712
- Add jbw976 as a reviewer by @jbw976 in https://github.com/crossplane/crossplane/pull/3735
- Update dependency golangci/golangci-lint to v1.51.1 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3737
- feat(adopters): added deutsche kreditbank ag by @haarchri in https://github.com/crossplane/crossplane/pull/3722
- chore(renovate): set monthly digest updates for kubernetes deps and every two weeks for docker images by @phisco in https://github.com/crossplane/crossplane/pull/3736
- Update docker/setup-buildx-action digest to f03ac48 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3741
- Update debian:bookworm-slim Docker digest to 199482f (master) by @renovate in https://github.com/crossplane/crossplane/pull/3728
- Fix broken docs related links and move the xpkg specification to this repo by @hasheddan in https://github.com/crossplane/crossplane/pull/3719
- Update github/codeql-action digest to 39d8d7e (master) by @renovate in https://github.com/crossplane/crossplane/pull/3746
- Update golangci/golangci-lint-action digest to 08e2f20 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3750
- Update github/codeql-action digest to 8775e86 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3752
- Update kubernetes patches (master) by @renovate in https://github.com/crossplane/crossplane/pull/3711
- Update ADOPTERS.md by @wanghong230 in https://github.com/crossplane/crossplane/pull/3725
- adding Neux to ADOPTERS by @styk-tv in https://github.com/crossplane/crossplane/pull/3730
- Update ADOPTERS.md by @edalonso in https://github.com/crossplane/crossplane/pull/3739
- Add ConsenSys to Adopters by @clementblaise in https://github.com/crossplane/crossplane/pull/3740
- Add Wildlife Studios to adopters by @Kasama in https://github.com/crossplane/crossplane/pull/3743
- Update actions/cache digest to 6998d13 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3755
- Update aquasecurity/trivy-action action to v0.9.1 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3757
- Update github/codeql-action digest to 17573ee (master) by @renovate in https://github.com/crossplane/crossplane/pull/3760
- Update debian:bookworm-slim Docker digest to 72cc75f (master) by @renovate in https://github.com/crossplane/crossplane/pull/3763
- Update gcr.io/distroless/static Docker digest to d02be0e (master) by @renovate in https://github.com/crossplane/crossplane/pull/3764
- Update dependency golang to v1.20.1 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3771
- Apply pollInterval to Claim and Composite reconcilers by @bobh66 in https://github.com/crossplane/crossplane/pull/3762
- Add guidance around code review process by @jeanduplessis in https://github.com/crossplane/crossplane/pull/3689
- Add SECURITY.md by @phisco in https://github.com/crossplane/crossplane/pull/3625
- Add compositeTypeRef kind and apiVersion to Composition output columns by @bobh66 in https://github.com/crossplane/crossplane/pull/3776
- Update module golang.org/x/net to v0.7.0 [SECURITY] (master) by @renovate in https://github.com/crossplane/crossplane/pull/3781
- Remove extra indirect directives in go.mod by @hasheddan in https://github.com/crossplane/crossplane/pull/3782
- Update dependency golangci/golangci-lint to v1.51.2 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3783
- Update actions/cache digest to 69d9d44 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3791
- Bump runtime to v0.19.1 by @turkenh in https://github.com/crossplane/crossplane/pull/3786
- Adding Autodesk by @jessesanford in https://github.com/crossplane/crossplane/pull/3788
- chore: minor go.mod reordering by @phisco in https://github.com/crossplane/crossplane/pull/3794
- Update zeebe-io/backport-action action to v1.2.0 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3793
- Use NewAPIPatchingApplicator in PTF composite by @bobh66 in https://github.com/crossplane/crossplane/pull/3774
- Bump Ubuntu version to 22.04 in CI by @turkenh in https://github.com/crossplane/crossplane/pull/3800
- chore(renovate): rebase only on conflicts by @phisco in https://github.com/crossplane/crossplane/pull/3802
- Update module github.com/containerd/containerd to v1.6.18 [SECURITY] (master) by @renovate in https://github.com/crossplane/crossplane/pull/3778
- Update github/codeql-action digest to 32dc499 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3805
- Update ADOPTERS.md by @infbase in https://github.com/crossplane/crossplane/pull/3806
- Update gcr.io/distroless/static Docker digest to 3c57678 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3808
- chore: release issue template improvements by @phisco in https://github.com/crossplane/crossplane/pull/3702
- Update kubernetes patches (master) by @renovate in https://github.com/crossplane/crossplane/pull/3813
- Add finalizers for rbac provider and definition by @el-mail in https://github.com/crossplane/crossplane/pull/3444
- Design Doc for Observe Only Resources by @turkenh in https://github.com/crossplane/crossplane/pull/3531
- Update module sigs.k8s.io/controller-runtime to v0.14.5 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3814
- Update aquasecurity/trivy-action action to v0.9.2 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3825
- Update dependency golang to v1.20.2 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3827
- chore: bump crossplane-runtime to v0.19.2 by @phisco in https://github.com/crossplane/crossplane/pull/3834
- Set args parameters to sequences instead of mappings by @bobh66 in https://github.com/crossplane/crossplane/pull/3832
- Update actions/cache digest to 940f3d7 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3842
- Update Pluggable Secret Store proposal by @ezgidemirel in https://github.com/crossplane/crossplane/pull/3804
- Update ADOPTERS.md by @adrienzieba in https://github.com/crossplane/crossplane/pull/3844
- Update docker/setup-buildx-action digest to 4b4e9c3 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3849
- Allow supplying additional volumes and volume mounts by @hasheddan in https://github.com/crossplane/crossplane/pull/3845
- Update github/codeql-action digest to 16964e9 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3851
- Update gcr.io/distroless/static Docker digest to f1e013b (master) by @renovate in https://github.com/crossplane/crossplane/pull/3855
- Update actions/cache digest to 88522ab (master) by @renovate in https://github.com/crossplane/crossplane/pull/3856
- ci: scheduled trivy image scan by @phisco in https://github.com/crossplane/crossplane/pull/3815
- Pin dependencies (master) by @renovate in https://github.com/crossplane/crossplane/pull/3866
- Update ADOPTERS.md with Grafana Labs and Ancestry by @jbw976 in https://github.com/crossplane/crossplane/pull/3867
- Update github/codeql-action digest to 168b99b (master) by @renovate in https://github.com/crossplane/crossplane/pull/3871
- Update actions/checkout digest to 24cb908 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3876
- Update actions/setup-go action to v4 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3878
- chore: use helm flags to create namespace by @phisco in https://github.com/crossplane/crossplane/pull/3885
- fix: typo in CRDs by @phisco in https://github.com/crossplane/crossplane/pull/3886
- Update kubernetes patches (master) by @renovate in https://github.com/crossplane/crossplane/pull/3880
- Update dependency golangci/golangci-lint to v1.52.1 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3889
- Update module github.com/moby/buildkit to v0.11.4 [SECURITY] (master) by @renovate in https://github.com/crossplane/crossplane/pull/3828
- Update github/codeql-action digest to 67a35a0 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3895
- fixed crun 1.8.1 support by @AndrewChubatiuk in https://github.com/crossplane/crossplane/pull/3893
- Update actions/stale action to v8 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3900
- fuzzing: add fuzzing security audit report by @AdamKorcz in https://github.com/crossplane/crossplane/pull/3901
- docs: refine patch release issue template by @phisco in https://github.com/crossplane/crossplane/pull/3858
- Add lsviben as a reviewer by @lsviben in https://github.com/crossplane/crossplane/pull/3898
- Add Audits section to SECURITY.md by @jbw976 in https://github.com/crossplane/crossplane/pull/3906
- Update actions/checkout digest to 8f4b7f8 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3908
- Update dependency golangci/golangci-lint to v1.52.2 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3910
- Update gcr.io/distroless/static Docker digest to 97b762e (master) by @renovate in https://github.com/crossplane/crossplane/pull/3911
- ci: exit code 1 if trivy finds vulnerabilities by @phisco in https://github.com/crossplane/crossplane/pull/3914
- Update github/codeql-action digest to 04df126 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3916
- Update module sigs.k8s.io/controller-runtime to v0.14.6 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3923
- Add Syntasso to
ADOPTERS.md
by @aclevername in https://github.com/crossplane/crossplane/pull/3909 - chore(linter): switching from goimports to gci enforcing imports sorting by @phisco in https://github.com/crossplane/crossplane/pull/3924
- Generate TLS certificates for ESS and use them by @ezgidemirel in https://github.com/crossplane/crossplane/pull/3884
- docs(fuzz): explicitly state assumption about fuzz tests by @phisco in https://github.com/crossplane/crossplane/pull/3925
- Fuzz testing contributing guide by @phisco in https://github.com/crossplane/crossplane/pull/3927
- docs(proposal): compositions validating webhook by @phisco in https://github.com/crossplane/crossplane/pull/3756
- feat: logical composition validation [1/3] by @phisco in https://github.com/crossplane/crossplane/pull/3921
- Replace deprecated command with environment file by @jongwooo in https://github.com/crossplane/crossplane/pull/3935
- Upgrade to Go 1.20 by @clfs in https://github.com/crossplane/crossplane/pull/3930
- Update dependency golang to v1.20.3 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3943
- Update github/codeql-action digest to 8c8d71d (master) by @renovate in https://github.com/crossplane/crossplane/pull/3945
- chore(renovate): group also actions' digest by @phisco in https://github.com/crossplane/crossplane/pull/3946
- feat: support conversions in XRDs by @phisco in https://github.com/crossplane/crossplane/pull/3940
- Update all non-major github action (master) by @renovate in https://github.com/crossplane/crossplane/pull/3953
- Add Roadmap section and links by @jbw976 in https://github.com/crossplane/crossplane/pull/3958
- Update gcr.io/distroless/static Docker digest to a01d47d (master) by @renovate in https://github.com/crossplane/crossplane/pull/3959
- feat(chart): enable webhooks by default by @phisco in https://github.com/crossplane/crossplane/pull/3951
- feat: ClampMin and ClampMax math transforms by @julienduchesne in https://github.com/crossplane/crossplane/pull/3917
- feat: In
match
transform, allow fallback to input by @julienduchesne in https://github.com/crossplane/crossplane/pull/3919 - fix: validate Composition MathTransform clamp by @phisco in https://github.com/crossplane/crossplane/pull/3968
- Add FromEnvironmentFieldPath to EnvironmentPatch types by @clementblaise in https://github.com/crossplane/crossplane/pull/3966
- Update codecov/codecov-action digest to 40a12dc (master) by @renovate in https://github.com/crossplane/crossplane/pull/3970
- feat: Composition patches validation with schemas by @phisco in https://github.com/crossplane/crossplane/pull/3937
- Pass ESS cert directory name as env variable by @ezgidemirel in https://github.com/crossplane/crossplane/pull/3974
- Add VSHN as a Crossplane adopter by @tobru in https://github.com/crossplane/crossplane/pull/3975
- Update actions/checkout digest to 83b7061 (master) by @renovate in https://github.com/crossplane/crossplane/pull/3977
- Add defaults for CompositeDelete and CompositionUpdate policies by @bobh66 in https://github.com/crossplane/crossplane/pull/3963
- Update all non-major github action (master) by @renovate in https://github.com/crossplane/crossplane/pull/3980
- Small style nits in validation code by @negz in https://github.com/crossplane/crossplane/pull/3983
- fix: respect logical validation option by @phisco in https://github.com/crossplane/crossplane/pull/3984
- Bump default package cache size limit to 20Mi by @turkenh in https://github.com/crossplane/crossplane/pull/3988
- refactor: reduce validation code public API by @phisco in https://github.com/crossplane/crossplane/pull/3986
- fix(helm): #3891 - add hostNetwork functionality to crossplane pod by @portswigger-tim in https://github.com/crossplane/crossplane/pull/3892
- Promote
CompositionRevision
to v1 by @negz in https://github.com/crossplane/crossplane/pull/3964 - Warn that the --enable-composition-revisions flag will be removed by @negz in https://github.com/crossplane/crossplane/pull/3997
- Update aquasecurity/trivy-action action to v0.10.0 (master) by @renovate in https://github.com/crossplane/crossplane/pull/4000
- docs: update helm chart README and document missing parameters by @phisco in https://github.com/crossplane/crossplane/pull/3978
- build(helm): remove values template, generate readme by @phisco in https://github.com/crossplane/crossplane/pull/4002
- Update codecov/codecov-action digest to 894ff02 (master) by @renovate in https://github.com/crossplane/crossplane/pull/4007
- Update github/codeql-action digest to b2c19fb (master) by @renovate in https://github.com/crossplane/crossplane/pull/4009
- fix: schema-aware validation code cleanup and bug fixes by @phisco in https://github.com/crossplane/crossplane/pull/4001
- ci: avoid running scheduled trivy scan on forks by @phisco in https://github.com/crossplane/crossplane/pull/4012
- fix some typos by @cuishuang in https://github.com/crossplane/crossplane/pull/4014
New Contributors
- @stewartshea made their first contribution in https://github.com/crossplane/crossplane/pull/3708
- @ddonahuex made their first contribution in https://github.com/crossplane/crossplane/pull/3709
- @caiofralmeida made their first contribution in https://github.com/crossplane/crossplane/pull/3712
- @wanghong230 made their first contribution in https://github.com/crossplane/crossplane/pull/3725
- @styk-tv made their first contribution in https://github.com/crossplane/crossplane/pull/3730
- @edalonso made their first contribution in https://github.com/crossplane/crossplane/pull/3739
- @Kasama made their first contribution in https://github.com/crossplane/crossplane/pull/3743
- @jessesanford made their first contribution in https://github.com/crossplane/crossplane/pull/3788
- @infbase made their first contribution in https://github.com/crossplane/crossplane/pull/3806
- @el-mail made their first contribution in https://github.com/crossplane/crossplane/pull/3444
- @adrienzieba made their first contribution in https://github.com/crossplane/crossplane/pull/3844
- @AndrewChubatiuk made their first contribution in https://github.com/crossplane/crossplane/pull/3893
- @aclevername made their first contribution in https://github.com/crossplane/crossplane/pull/3909
- @jongwooo made their first contribution in https://github.com/crossplane/crossplane/pull/3935
- @clfs made their first contribution in https://github.com/crossplane/crossplane/pull/3930
- @julienduchesne made their first contribution in https://github.com/crossplane/crossplane/pull/3917
- @portswigger-tim made their first contribution in https://github.com/crossplane/crossplane/pull/3892
Full Changelog: https://github.com/crossplane/crossplane/compare/v1.11.0...v1.12.0
Security
Security wording was detected, but no CVEs were found.
Details
date
April 25, 2023, 2:35 p.m.
name
v1.12.0
type
Minor
👇
Register or login to:
- 🔍View and search all crossplane releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!