FluxCD v2 - v0.40.0

Highlights

Flux v0.40.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience.

Breaking changes

Image Automation

The image-reflector-controller autologin flags have been deprecated and are no longer used.
Please see the new API specification and migration instructions in the controller changelog.

Notifications

The source revision format reported by the Flux controllers has changed according to RFC-0005.
The events referring to Git repositories, will report the revision in the format <branch|tag>@sha1:<commit> instead of <branch|tag>/<commit>.
For more details please see the source-controller changelog.

OCI artifacts

The OCI artifacts produced with flux push artifact have now custom media types:
- artifact media type application/vnd.oci.image.manifest.v1+json
- config media type application/vnd.cncf.flux.config.v1+json
- content media type application/vnd.cncf.flux.content.v1.tar+gzip

Features and improvements

• The GitRepository API has a new optional field .spec.ref.name for specifying a Git Reference.
  This allows Flux to reconcile resources from GitHub Pull Requests (refs/pull/<id>/head) and GitLab Merge Requests (refs/merge-requests/<id>/head).
• The ImageRepository and ImagePolicy APIs have been promoted to v1beta2.
• Allow specifying the cloud provider contextual login for container registries with ImageRepository.spec.provider.
• Improve observability of ImageRepository by showing the latest scanned tags under .status.lastScanResult.latestTags.
• Improve observability of ImagePolicy by reporting the current and previous image tag in status and events.
• The Kubernetes builtin cluster roles: view, edit and admin have been extended to allow access to Flux custom resources.
• Print a report of Flux custom resources and the amount of cumulative storage used for each source type with flux stats -A.

New Documentation

• API: ImageRepository v1beta2
• API: ImagePolicy v1beta2
• Security: Aggregated cluster roles
• Blog: How Flux and Pulumi give each other superpowers

Components changelog

• source-controller v0.35.1 v0.35.0
• kustomize-controller v0.34.0
• helm-controller v0.30.0
• notification-controller v0.33.0
• image-reflector-controller v0.25.0
• image-automation-controller v0.30.0

CLI Changelog

• PR #3612 - @dependabot[bot] - build(deps): bump fossa-contrib/fossa-action from 1.2.0 to 2.0.0
• PR #3610 - @hiddeco - Update dependencies
• PR #3606 - @hiddeco - build: further solve issue release workflow
• PR #3605 - @hiddeco - build: ensure newlines work with $GITHUB_OUTPUT
• PR #3604 - @hiddeco - build: convert ::set-output to $GITHUB_OUTPUT
• PR #3603 - @stefanprodan - Remove deprecated flags
• PR #3602 - @hiddeco - Update source-controller to v0.35.1
• PR #3601 - @stefanprodan - ci: Fix Snyk Go build VCS stamping error
• PR #3598 - @fluxcdbot - Update toolkit components
• PR #3592 - @hiddeco - tests: only provide template values when used
• PR #3587 - @hiddeco - Support shortening of revision with digest
• PR #3585 - @darkowlzz - Update image-reflector API to v1beta2
• PR #3584 - @dependabot[bot] - build(deps): bump docker/setup-buildx-action from 2.4.0 to 2.4.1
• PR #3583 - @dependabot[bot] - build(deps): bump snyk/actions from e25b2e6f5658d1bb7a6671b113260f13134cc3af to 806182742461562b67788a64410098c9d9b96adb
• PR #3582 - @dependabot[bot] - build(deps): bump actions/cache from 3.2.4 to 3.2.5
• PR #3581 - @dependabot[bot] - build(deps): bump github/codeql-action from 2.2.1 to 2.2.4
• PR #3578 - @stefanprodan - Add flux stats command to print the reconcilers status
• PR #3575 - @stefanprodan - RFC-0003: Introduce Flux OCI media type
• PR #3566 - @stefanprodan - rbac: Add view and edit aggregated cluster roles
• PR #3563 - @dependabot[bot] - build(deps): bump actions/cache from 3.2.3 to 3.2.4
• PR #3562 - @dependabot[bot] - build(deps): bump goreleaser/goreleaser-action from 4.1.1 to 4.2.0
• PR #3560 - @stefanprodan - docs: Add permissions to update workflow