Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v1.86.4
->v1.99.1
v1.30.1-0.20221215131400-b390fb780945
->v1.41.0
v0.29.6
->v0.30.3
v0.29.6
->v0.30.3
v0.29.6
->v0.30.3
1a26190
->6dde7fe
v0.29.6
->v0.30.3
v0.29.6
->v0.30.3
v0.29.6
->v0.30.3
v0.16.6
->v0.18.4
Release Notes
gardener/gardener (github.com/gardener/gardener)
v1.99.1
Compare Source
[gardener/gardener]
🏃 Others
[OPERATOR]
Improve the cache Prometheus configuration for seeds with many shoots by @rickardsjp [#10135]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.99.1
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.99.1
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.99.1
v1.99.0
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
Merge the CoreDNS and Node Local DNS dashboards into a single improved DNS dashboard by @vicwicker [#10034]🏃 Others
[DEPENDENCY]
Theeurope-docker.pkg.dev/gardener-project/releases/3rd/kubernetesui/metrics-scraper
image has been updated tov1.0.9
. by @gardener-ci-robot [#10055][DEPENDENCY]
Thequay.io/prometheus/prometheus
image has been updated tov2.53.1
. by @gardener-ci-robot [#10104][DEPENDENCY]
Thecredativ/vali
image has been updated tov2.2.17
. Release Notes by @gardener-ci-robot [#10069][DEPENDENCY]
Thequay.io/prometheus/prometheus
image has been updated tov2.53.0
. by @gardener-ci-robot [#10002][DEPENDENCY]
Theenvoyproxy/envoy
image has been updated tov1.30.4
. Release Notes by @gardener-ci-robot [#10048][DEPENDENCY]
Theeurope-docker.pkg.dev/gardener-project/releases/3rd/kubernetesui/dashboard
image has been updated tov2.7.0
. by @gardener-ci-robot [#10057][DEPENDENCY]
Theeurope-docker.pkg.dev/gardener-project/releases/3rd/alpine
image has been updated to3.19.2
. by @gardener-ci-robot [#10054][DEPENDENCY]
Thegcr.io/istio-release/pilot
image has been updated to1.21.4
. by @gardener-ci-robot [#10043][DEPENDENCY]
Theregistry.k8s.io/ingress-nginx/controller-chroot
image has been updated tov1.10.2
. by @gardener-ci-robot [#10084][DEPENDENCY]
Theregistry.k8s.io/ingress-nginx/controller-chroot
image has been updated tov1.11.0
. by @gardener-ci-robot [#10089][DEPENDENCY]
Thecredativ/plutono
image has been updated tov7.5.32
. Release Notes by @gardener-ci-robot [#10074][OPERATOR]
[OPERATOR] Optional deployment of cert-management component by @MartinWeindel [#9957][OPERATOR]
Adds the garden_seed_info metric to the longterm prometheus scrape config by @dmahmalat-sap [#10016][OPERATOR]
Gardener logging stack now features fluent-bit v3. by @nickytd [#10064][OPERATOR]
Infrastructure extensions can now propagate networking ranges (nodes, pods & services) to the shoot status. by @ScheererJ [#9998][USER]
Erroneous warnings for incomplete shoots credentials rotation has been fixed. by @oliver-goetz [#10059]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.99.0
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.99.0
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.99.0
v1.98.4
Compare Source
[gardener/gardener]
🏃 Others
[OPERATOR]
Improve the cache Prometheus configuration for seeds with many shoots by @rickardsjp [#10131]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.4
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.4
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.4
v1.98.3
Compare Source
[gardener/gardener]
🏃 Others
[USER]
Erroneous warnings for incomplete shoots credentials rotation has been fixed. by @oliver-goetz [#10078]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.3
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.3
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.3
v1.98.2
Compare Source
[gardener/gardener]
🏃 Others
[DEPENDENCY]
The following dependencies have been upgraded.Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.2
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.2
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.2
v1.98.1
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
An issue causing gardenlet to panic while deletingdependency-watchdog-access
secrets for workerless Shoots if thestatus.technicalID
is not set for the Shoot is now fixed. by @shafeeqes [#10068]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.1
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.1
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.1
v1.98.0
Compare Source
[gardener/gardener]
[DEPENDENCY]
TheRegistry
inpkg/utils/managedresources/registry.go
was changed to return all objects as a compressed data chunk.As soon as you update the
github.com/gardener/gardener
dependency to this version,ManagedResource
secrets will be rewritten in a Brotli compressed format (combined under data keydata.yaml.br
). by @timuthy [#9964][DEPENDENCY]
Thegithub.com/gardener/gardener/extensions/pkg/webhook/cloudprovider.Args#EnableObjectSelector
field is now removed. The corresponding webhook's object selector is now enforced unconditionally. by @ialidzhikov [#10027][OPERATOR]
Provider extensions specifying a "controlplane" mutating webhookObjectSelector
are incompatible with gardenlet <v1.98.0
. by @LucaBernstein [#9981][OPERATOR]
The Resource Size Validator of thegardener-admission-controller
ignoresstatus
subresource andmetadata.managedFields
for resource size limits. Please consider adjusting your configuration if you already increased the limits because of these now ignored sections. by @LucaBernstein [#10011][USER]
Separately configuring resource reservations for system processes viashoot.spec.kubernetes.kubelet.systemReserved
orspec.provider.workers[].kubernetes.kubelet.systemReserved
is deprecated in Gardener and will be removed in a future release. Please merge existing resource reservations into the correspondingkubeReserved
field. by @MichaelEischer [#9985][DEVELOPER]
The functiongithub.com/gardener/gardener/extensions/pkg/controller/worker/WorkerPoolHash
now expects separate additional data for version 1 and 2 of the hash calculation. Version 2 does not include extension provider specific fields by default. Add those to the additional data for version 2 if necessary. by @MichaelEischer [#9865]📰 Noteworthy
[DEVELOPER]
The resources mutated by the "controlplane" mutating webhooks are labeled withprovider.extensions.gardener.cloud/mutated-by-controlplane-webhook: true
by gardenlet. The provider extensions can add an object selector to their "controlplane" mutating webhooks to do not intercept requests for unrelated objects. by @LucaBernstein [#9981]✨ New Features
[OPERATOR]
Version 2 of the WorkerPoolHash calculation now takes the current name of the OperatingSystemConfig into account. Its usage is controlled by the gardenlet feature gateNewWorkerPoolHash
. All provider extension must be upgraded before enabling this feature gate. The new calculation also ensures that changes of the fields kubeReserved, evictionHard and cpuManagerPolicy in the kubelet config of a worker pool result in node rolls. by @MichaelEischer [#9865][OPERATOR]
Failure of snapshot compaction jobs at a rate greater than 10% of shoots in a seed will raise alerts now. by @renormalize [#9739][DEVELOPER]
gosec
was introduced for Static Application Security Testing (SAST). by @oliver-goetz [#9959][USER]
A new field.spec.CredentialsBindingName
referencing aCredentialsBinding
was introduced to shoot specification. It is meant to replace the existingSecretBindingName
. As of now the field is guarded by a feature gate calledAllowCredentialsBinding
. by @dimityrmirchev [#9853]🐛 Bug Fixes
[OPERATOR]
Fix a bug where the Reversed VPN OpenVPN Server (HA) doesn't display any data. by @axel7born [#10035]🏃 Others
[DEPENDENCY]
Theenvoyproxy/envoy
image has been updated tov1.30.3
. Release Notes by @gardener-ci-robot [#10031][DEPENDENCY]
Thegardener/alpine-conntrack
image has been updated to3.20.1
. Release Notes by @gardener-ci-robot [#10010][DEPENDENCY]
Thegcr.io/istio-release/pilot
image has been updated to1.21.3
. by @gardener-ci-robot [#9914][DEPENDENCY]
extensions lib: The shoot webhook does now support specifying an object selector. by @ialidzhikov [#10026][DEPENDENCY]
Thecredativ/vali
image has been updated tov2.2.16
. Release Notes by @gardener-ci-robot [#9976][DEPENDENCY]
Thecredativ/plutono
image has been updated tov7.5.31
. Release Notes by @gardener-ci-robot [#9978][DEVELOPER]
The "remote local setup" is enhanced e.g. to support multiple scenarios. by @istvanballok [#9980][OPERATOR]
machine-controller-manager-provider-xxx
container now exposes metrics that prometheus can scrapes by @aaronfern [#9933][OPERATOR]
kube-apiserver HPA's max replicas count from 3 to 6 inVPAAndHPA
autoscaling mode to support very large control planes. by @ialidzhikov [#9971][OPERATOR]
Gardener Enhancement Proposal for a bastion section in the CloudProfile by @hebelsan [#9935][OPERATOR]
Introduce the operatorExtension
type. AnExtension
is responsible for installing theControllerRegistration
andControllerRuntime
in the garden cluster and also install any extensions necessary to manage infrastructure resources in the runtime cluster. This release contains the API only, further functionality will be released in future Gardener versions. by @kon-angelo [#9924][OPERATOR]
The data inManagedResource
secrets is now compressed with Brotli and stored under a single data keydata.yaml.br
. by @timuthy [#9964]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.0
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.0
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.0
v1.97.3
Compare Source
[gardener/gardener]
🏃 Others
[USER]
Erroneous warnings for incomplete shoots credentials rotation has been fixed. by @oliver-goetz [#10079]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.97.3
Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.3
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.3
v1.97.2
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
Fix an issue with federation that causes garden-prometheus to consume excessive amounts of memory. by @rickardsjp [#10013]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.2
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.2
v1.97.1
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[USER]
Fix false-positive PrometheusCantScrape etcd-druid alert. by @gardener-ci-robot [#10000]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.1
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.1
v1.97.0
Compare Source
[gardener/gardener]
[OPERATOR]
TheVPAForETCD
feature gate is promoted to beta and now enabled by default. by @voelzmo [#9873][OPERATOR]
TheCoreDNSQueryRewriting
feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9889][OPERATOR]
TheMutableShootSpecNetworkingNodes
feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9890][DEVELOPER]
The deprecated fields.spec.{reloadConfigFilePath,command}
and.status.{units,files}
have been removed from theextensions.gardener.cloud/v1alpha1.OperatingSystemConfig
API. by @rfranzke [#9885]📰 Noteworthy
[DEVELOPER]
gardenlet now creates a secret calledworker-pools-operatingsystemconfig-hashes
in the shoot namespace on seed clusters. This secret will be used to upgrade the operating system config key calculation in the future. by @MichaelEischer [#9846][DEPENDENCY]
The "listMachineDeployment
s" call in the genericWorker
actuator has been moved right before its first usage to prevent that the list is outdated before it's used. by @rfranzke [#9925]✨ New Features
[OPERATOR]
The Kubelet configuration was enhanced to add configured worker taints during node registration. Earlier, only themachine-controller-manager
was responsible to add taints to theNode
s which happened asynchronously, so that unwanted workload might have already scheduled to these workers. by @timuthy [#9872][OPERATOR]
gardenlet
is now capable of keeping itself updated by pulling configuration and deployment values from the garden cluster. This way, regular manual Helm deployments can be avoided. Read all about it here.Please note, a Gardenlet Helm chart is required on an OCI repository. Gardener will provide this officially in a future release. by @rfranzke [#9874]
[DEVELOPER]
gardener-operator
local development setup supports creating seeds, shoots and managed-seeds now. Please see the docs for details. by @oliver-goetz [#9763]🐛 Bug Fixes
[OPERATOR]
A bug causing the maintenance state to no get update even though maintenance succeeds has been fixed. by @acumino [#9945]🏃 Others
[DEPENDENCY]
Theenvoyproxy/envoy
image has been updated tov1.30.2
. Release Notes by @gardener-ci-robot [#9926][DEPENDENCY]
Thegardener/vpn2
image has been updated to0.25.0
. Release Notes by @gardener-ci-robot [#9904][DEPENDENCY]
Theregistry.k8s.io/dns/k8s-dns-node-cache
image has been updated to1.23.1
. by @gardener-ci-robot [#9938][DEPENDENCY]
Thegardener/terminal-controller-manager
image has been updated tov0.33.0
. Release Notes by @gardener-ci-robot [#9896][DEPENDENCY]
Thequay.io/kiwigrid/k8s-sidecar
image has been updated to1.27.4
. by @gardener-ci-robot [#9943][DEPENDENCY]
Thequay.io/brancz/kube-rbac-proxy
image has been updated tov0.18.0
. by @gardener-ci-robot [#9917][OPERATOR]
The auto-scaling by VPA is now disabled for theconntrack-fix
sidecar container of kube-proxy. The corresponding container does not need vertical auto-scaling. by @ialidzhikov [#9953]📖 Documentation
[OPERATOR]
Clarify the importance of correctly configuring shoot service account issuer hostname if Gardener Operator is not used. by @dimityrmirchev [#9923]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.0
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.0
v1.96.6
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
Fix an issue with federation that causes garden-prometheus to consume excessive amounts of memory. by @rickardsjp [#10012]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.6
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.6
v1.96.5
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[USER]
Fix false-positive PrometheusCantScrape etcd-druid alert. by @gardener-ci-robot [#9999]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.5
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.5
v1.96.4
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
Fix a regression where etcd alerts for the virtual Garden cluster did not work. by @vicwicker [#9974]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.4
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.4
v1.96.3
Compare Source
[gardener/gardener]
✨ New Features
[OPERATOR]
gardenlet
'sPod
garbage collector (part of itsshoot-care
controller) now considersPod
s with reasonNodeAffinity
, i.e., it auto-deletes suchPod
s. by @rfranzke [#9949]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.3
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.3
v1.96.2
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
Fix a bug that unconditionally enables theDiscoveryServerDown
alert even when the Gardener Discovery Server is not enabled. by @vpnachev [#9906][OPERATOR]
The brokenprometheus-longterm
ScrapeConfig
s introduced withv1.95.0
have been fixed. by @bd3lage [#9901][OPERATOR]
gardenlet: An issue causing alerts contributed by extensions containing a multi-lineexpr
not to be properly translated in a PrometheusRule is now fixed. by @dimitar-kostadinov [#9909][USER]
A bug in the Prometheus dashboard for shoots not showing metrics for most panels has been fixed. by @rfranzke [#9927]🏃 Others
[DEPENDENCY]
Thegardener/dashboard
image has been updated to1.75.1
. Release Notes by @gardener-ci-robot [#9908]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.2
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.2
v1.96.1
Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]
Increase VPA admission-controller rate limits to avoid endless eviction loops in case when many Pods are evicted at the same time. by @voelzmo [#9887]Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.1
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.1
v1.96.0
Compare Source
[gardener/gardener]
[DEVELOPER]
Thepkg/utils/kubernetes.{Key,ObjectMeta{FromKey}}
functions have been dropped. Useclient.ObjectKey
ormetav1.ObjectMeta
instead. by @rfranzke [#9808][DEVELOPER]
ControllerDeployment
objects using a custom type (other thanhelm
) are deprecated. Support for custom types will be removed when thecore.gardener.cloud/v1beta1
API version is dropped. by @timebertt [#9771][DEVELOPER]
Packagesextensions/pkg/util/{secret,index}
were removed. by @dimityrmirchev [#9784][DEVELOPER]
Theallow-shoot-networks
NetworkPolicy
has been dropped entirely, hence, thenetworking.gardener.cloud/to-shoot-networks=allowed
label has no effect anymore and should be removed. by @rfranzke [#9752][DEPENDENCY]
With the removal of thegithub.com/gardener/gardener/extensions/pkg/webhook/controlplane/genericmutator.Ensurer#EnsureKubeAPIServerService
func, the provider extensions using thegenericmutator.Ensurer
no longer need to mutate Services and should no longer mutate Services to prevent no-op webhook invocations. by @ialidzhikov [#9770][DEPENDENCY]
Thegithub.com/gardener/gardener/extensions/pkg/webhook/controlplane/genericmutator.Ensurer#EnsureKubeAPIServerService
func is removed. This func was used before the introduction ofManagedIstio
/APIServerSNI
(when the kube-apiserver Service was of type LoadBalancer) to set cloud provider specific annotations to the Service. However, afterManagedIstio
/APIServerSNI
are unconditionally enabled (the kube-apiserver Service is of type ClusterIP) this func is no longer used. Nowadays, istio-ingressgateway Service annotations can be provided via the Seed spec. by @ialidzhikov [#9770]📰 Noteworthy
[DEVELOPER]
Thehack/generate-controller-registration.sh
script now generates aControllerDeployment
object in thecore.gardener.cloud/v1
API version. by @timebertt [#9771]✨ New Features
[DEVELOPER]
The secrets manager has new option for controlling the secret rotation. If the new generate optionRenewAfterValidityPercentage(v)
is set, a secret will be renewed based on whichever comes first: The percentage of validity you specify inRenewAfterValidityPercentage
or 10 days before the secret's end of validity. If not specified, the default 80% is used as before. by @MartinWeindel [#9819][DEVELOPER]
Extensions deploying shoot cluster system components can now make use of thepkg/component/observability/monitoring/prometheus/shoot.ClusterComponentScrapeConfigSpec
function in order to generate aScrapeConfig
for the shoot's Prometheus. by @rfranzke [#9737][DEVELOPER]
Skaffold
now rebuilds components if embedded files have changed. by @maboehm [#9778][OPERATOR]
A newcore.gardener.cloud/v1
API version is introduced which only includes theControllerDeployment
resource for now. The new version of theControllerDeployment
drops thetype
andproviderConfig
fields in favor of a well-structured section for helm-basedControllerDeployments
. by @timebertt [#9771][OPERATOR]
Use.spec.settings.loadBalancerServices.proxyProtocol
and.spec.settings.loadBalancerServices.zones[].proxyProtocol
to specify whether your seed's load balancer services should terminate proxy protocol. The explicit nature of the setting allows a seamless migration while enforcing a good security posture. by @ScheererJ [#9844][OPERATOR]
TheVPAAndHPAForAPIServer
feature gate is now also implemented for thegardener-operator
. When enabled, thevirtual-garden-kube-apiserver
andgardener-apiserver
are scaled simultaneously by VPA and HPA on the same metric (CPU and memory usage). by @ialidzhikov [#9735][OPERATOR]
gardener-operator
is now able to managegardener-discovery-server
. For details, please check the Discovery Server configuration section. by @dimityrmirchev [#9746][OPERATOR]
It is now possible to specify an OCI repository inControllerDeployment
s describing from where the Helm chart can be pulled (instead of specifying abase64
-encoded chart in the specification). by @maboehm [#9823][USER]
Users can now enable managed service account issuers for their shoots if the Gardener installation has this capability enabled. For details, please check the Managed Service Account Issuer documentation. by @dimityrmirchev [#9746]🐛 Bug Fixes
[USER]
A bug has been fixed which preventedShoot
deletion in case it was still annotated withmaintenance.gardener.cloud/operation
. by @rfranzke [#9854][USER]
An issue causing thenode-problem-detector
to beOOMKilled
is now fixed. Previously, too low memory limit was set when VPA was enabled for theShoot
. by @ialidzhikov [#9797][OPERATOR]
gardenlet: An issue causing Shoot deletion to fail due to "Secretetcd-backup
not found" error caused by not yet created shoot namespace is now fixed. by @Kostov6 [#9871]Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.