diff --git a/README.md b/README.md index 4161bbb06..e07fac5ed 100644 --- a/README.md +++ b/README.md @@ -12,6 +12,7 @@ to all Giant Swarm installations. ## AWS - v20 - v20.1 + - [v20.1.3](https://github.com/giantswarm/releases/tree/master/aws/v20.1.3) - [v20.1.2](https://github.com/giantswarm/releases/tree/master/aws/v20.1.2) - [v20.1.1](https://github.com/giantswarm/releases/tree/master/aws/v20.1.1) - [v20.1.0](https://github.com/giantswarm/releases/tree/master/aws/v20.1.0) diff --git a/aws/kustomization.yaml b/aws/kustomization.yaml index 4d9c8ce3d..3357d2699 100644 --- a/aws/kustomization.yaml +++ b/aws/kustomization.yaml @@ -12,5 +12,6 @@ resources: - v20.1.0 - v20.1.1 - v20.1.2 +- v20.1.3 transformers: - releaseNotesTransformer.yaml diff --git a/aws/v20.1.3/README.md b/aws/v20.1.3/README.md new file mode 100644 index 000000000..25cadc999 --- /dev/null +++ b/aws/v20.1.3/README.md @@ -0,0 +1,21 @@ +# :zap: Giant Swarm Release v20.1.3 for AWS :zap: + +This is a security release featuring latest version of Flatcar Container Linux with major CVE fix for OpenSSH [CVE-2024-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387). Upgrade to this release will result in nodes rollout. + +## Change details + + +### containerlinux [3815.2.5](https://www.flatcar-linux.org/releases/#release-3815.2.5) + + _Changes since **Stable 3815.2.4**_ + + #### Security fixes: + + - openssh ([CVE-2024-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387)) + + #### Updates: + + - Linux ([6.1.96](https://lwn.net/Articles/979851)) + - openssh ([9.7_p1](https://www.openssh.com/txt/release-9.7)) + + diff --git a/aws/v20.1.3/announcement.md b/aws/v20.1.3/announcement.md new file mode 100644 index 000000000..4d6fd1365 --- /dev/null +++ b/aws/v20.1.3/announcement.md @@ -0,0 +1,2 @@ +**Workload cluster release v20.1.3 for AWS is available**. This is a security release featuring latest version of Flatcar Container Linux with major CVE fix for OpenSSH [CVE-2024-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387). Upgrade to this release will result in nodes rollout. +Further details can be found in the [release notes](https://docs.giantswarm.io/changes/workload-cluster-releases-aws/releases/aws-v20.1.3/). diff --git a/aws/v20.1.3/kustomization.yaml b/aws/v20.1.3/kustomization.yaml new file mode 100644 index 000000000..2c64a5163 --- /dev/null +++ b/aws/v20.1.3/kustomization.yaml @@ -0,0 +1,2 @@ +resources: +- release.yaml diff --git a/aws/v20.1.3/release.diff b/aws/v20.1.3/release.diff new file mode 100644 index 000000000..45a45b900 --- /dev/null +++ b/aws/v20.1.3/release.diff @@ -0,0 +1,187 @@ +# Generated with: # Generated with: +# devctl release create --provider aws --base 20.1.1 --name 20 | # devctl release create --base 20.1.2 --name 20.1.3 --overwrit +apiVersion: release.giantswarm.io/v1alpha1 apiVersion: release.giantswarm.io/v1alpha1 +kind: Release kind: Release +metadata: metadata: + annotations: annotations: + giantswarm.io/docs: https://docs.giantswarm.io/reference/c giantswarm.io/docs: https://docs.giantswarm.io/reference/c + creationTimestamp: null creationTimestamp: null + name: v20.1.2 | name: v20.1.3 +spec: spec: + apps: apps: + - componentVersion: 1.24.1 - componentVersion: 1.24.1 + dependsOn: dependsOn: + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: aws-cloud-controller-manager name: aws-cloud-controller-manager + version: 1.25.14-gs2 version: 1.25.14-gs2 + - componentVersion: 1.21.0 - componentVersion: 1.21.0 + dependsOn: dependsOn: + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: aws-ebs-csi-driver name: aws-ebs-csi-driver + version: 2.30.1 version: 2.30.1 + - dependsOn: - dependsOn: + - aws-ebs-csi-driver - aws-ebs-csi-driver + name: aws-ebs-csi-driver-servicemonitors name: aws-ebs-csi-driver-servicemonitors + version: 0.1.0 version: 0.1.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: cert-exporter name: cert-exporter + version: 2.9.0 version: 2.9.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: cert-manager name: cert-manager + version: 3.7.7 version: 3.7.7 + - name: chart-operator - name: chart-operator + version: 3.2.1 version: 3.2.1 + - dependsOn: - dependsOn: + - prometheus-operator-crd - prometheus-operator-crd + name: chart-operator-extensions name: chart-operator-extensions + version: 1.1.2 version: 1.1.2 + - componentVersion: 1.15.1 - componentVersion: 1.15.1 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + name: cilium name: cilium + version: 0.22.0 version: 0.22.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: cluster-autoscaler name: cluster-autoscaler + version: 1.25.3-gs2 version: 1.25.3-gs2 + - componentVersion: 1.11.1 - componentVersion: 1.11.1 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + name: coredns name: coredns + version: 1.21.0 version: 1.21.0 + - componentVersion: 0.11.0 - componentVersion: 0.11.0 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: external-dns name: external-dns + version: 3.1.0 version: 3.1.0 + - componentVersion: 0.6.4 - componentVersion: 0.6.4 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: metrics-server name: metrics-server + version: 2.4.2 version: 2.4.2 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: net-exporter name: net-exporter + version: 1.18.2 version: 1.18.2 + - componentVersion: 1.3.1 - componentVersion: 1.3.1 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: node-exporter name: node-exporter + version: 1.19.0 version: 1.19.0 + - componentVersion: 1.1.0 - componentVersion: 1.1.0 + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: vertical-pod-autoscaler name: vertical-pod-autoscaler + version: 5.1.0 version: 5.1.0 + - name: vertical-pod-autoscaler-crd - name: vertical-pod-autoscaler-crd + version: 3.0.0 version: 3.0.0 + - dependsOn: - dependsOn: + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: etcd-kubernetes-resources-count-exporter name: etcd-kubernetes-resources-count-exporter + version: 1.10.0 version: 1.10.0 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + name: observability-bundle name: observability-bundle + version: 1.3.4 version: 1.3.4 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - kyverno - kyverno + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: k8s-dns-node-cache-app name: k8s-dns-node-cache-app + version: 2.6.1 version: 2.6.1 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - kyverno - kyverno + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: prometheus-blackbox-exporter name: prometheus-blackbox-exporter + version: 0.4.1 version: 0.4.1 + - dependsOn: - dependsOn: + - prometheus-operator-crd - prometheus-operator-crd + name: cilium-servicemonitors name: cilium-servicemonitors + version: 0.1.2 version: 0.1.2 + - dependsOn: - dependsOn: + - prometheus-operator-crd - prometheus-operator-crd + name: irsa-servicemonitors name: irsa-servicemonitors + version: 0.0.1 version: 0.0.1 + - catalog: giantswarm - catalog: giantswarm + dependsOn: dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - prometheus-operator-crd - prometheus-operator-crd + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: security-bundle name: security-bundle + version: 1.6.4 version: 1.6.4 + - dependsOn: - dependsOn: + - aws-cloud-controller-manager - aws-cloud-controller-manager + - cilium - cilium + - coredns - coredns + - kyverno - kyverno + - vertical-pod-autoscaler-crd - vertical-pod-autoscaler-crd + name: k8s-audit-metrics name: k8s-audit-metrics + version: 0.9.0 version: 0.9.0 + components: components: + - name: app-operator - name: app-operator + version: 6.11.0 version: 6.11.0 + - name: aws-operator - name: aws-operator + releaseOperatorDeploy: true releaseOperatorDeploy: true + version: 16.1.1 version: 16.1.1 + - name: cert-operator - name: cert-operator + releaseOperatorDeploy: true releaseOperatorDeploy: true + version: 3.4.0 version: 3.4.0 + - name: cluster-operator - name: cluster-operator + releaseOperatorDeploy: true releaseOperatorDeploy: true + version: 5.11.1 version: 5.11.1 + - name: containerlinux - name: containerlinux + version: 3815.2.2 | version: 3815.2.5 + - name: etcd - name: etcd + version: 3.5.13 version: 3.5.13 + - name: kubernetes - name: kubernetes + version: 1.25.16 version: 1.25.16 + date: "2024-06-26T12:54:53Z" | date: "2024-07-03T08:03:37Z" + state: active state: active +status: status: + inUse: false inUse: false + ready: false ready: false diff --git a/aws/v20.1.3/release.yaml b/aws/v20.1.3/release.yaml new file mode 100644 index 000000000..32dca52fe --- /dev/null +++ b/aws/v20.1.3/release.yaml @@ -0,0 +1,187 @@ +# Generated with: +# devctl release create --base 20.1.2 --name 20.1.3 --overwrite --provider aws --component containerlinux@3815.2.5 +apiVersion: release.giantswarm.io/v1alpha1 +kind: Release +metadata: + annotations: + giantswarm.io/docs: https://docs.giantswarm.io/reference/cp-k8s-api/releases.release.giantswarm.io/ + creationTimestamp: null + name: v20.1.3 +spec: + apps: + - componentVersion: 1.24.1 + dependsOn: + - vertical-pod-autoscaler-crd + name: aws-cloud-controller-manager + version: 1.25.14-gs2 + - componentVersion: 1.21.0 + dependsOn: + - vertical-pod-autoscaler-crd + name: aws-ebs-csi-driver + version: 2.30.1 + - dependsOn: + - aws-ebs-csi-driver + name: aws-ebs-csi-driver-servicemonitors + version: 0.1.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: cert-exporter + version: 2.9.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: cert-manager + version: 3.7.7 + - name: chart-operator + version: 3.2.1 + - dependsOn: + - prometheus-operator-crd + name: chart-operator-extensions + version: 1.1.2 + - componentVersion: 1.15.1 + dependsOn: + - aws-cloud-controller-manager + name: cilium + version: 0.22.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - vertical-pod-autoscaler-crd + name: cluster-autoscaler + version: 1.25.3-gs2 + - componentVersion: 1.11.1 + dependsOn: + - aws-cloud-controller-manager + - cilium + name: coredns + version: 1.21.0 + - componentVersion: 0.11.0 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: external-dns + version: 3.1.0 + - componentVersion: 0.6.4 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: metrics-server + version: 2.4.2 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: net-exporter + version: 1.18.2 + - componentVersion: 1.3.1 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: node-exporter + version: 1.19.0 + - componentVersion: 1.1.0 + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: vertical-pod-autoscaler + version: 5.1.0 + - name: vertical-pod-autoscaler-crd + version: 3.0.0 + - dependsOn: + - vertical-pod-autoscaler-crd + name: etcd-kubernetes-resources-count-exporter + version: 1.10.0 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + name: observability-bundle + version: 1.3.4 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - kyverno + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: k8s-dns-node-cache-app + version: 2.6.1 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - kyverno + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: prometheus-blackbox-exporter + version: 0.4.1 + - dependsOn: + - prometheus-operator-crd + name: cilium-servicemonitors + version: 0.1.2 + - dependsOn: + - prometheus-operator-crd + name: irsa-servicemonitors + version: 0.0.1 + - catalog: giantswarm + dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - prometheus-operator-crd + - vertical-pod-autoscaler-crd + name: security-bundle + version: 1.6.4 + - dependsOn: + - aws-cloud-controller-manager + - cilium + - coredns + - kyverno + - vertical-pod-autoscaler-crd + name: k8s-audit-metrics + version: 0.9.0 + components: + - name: app-operator + version: 6.11.0 + - name: aws-operator + releaseOperatorDeploy: true + version: 16.1.1 + - name: cert-operator + releaseOperatorDeploy: true + version: 3.4.0 + - name: cluster-operator + releaseOperatorDeploy: true + version: 5.11.1 + - name: containerlinux + version: 3815.2.5 + - name: etcd + version: 3.5.13 + - name: kubernetes + version: 1.25.16 + date: "2024-07-03T08:03:37Z" + state: active +status: + inUse: false + ready: false