Releases: redhat-best-practices-for-k8s/certsuite
Releases · redhat-best-practices-for-k8s/certsuite
v5.3.0
v5.3.0
We have completed an organization rename:
test-network-function-->redhat-best-practices-for-k8s
This has affected changes across all of our repositories to change all of our go modules, etc. We have also changed all of our image repositories on quay as well:
https://quay.io/organization/redhat-best-practices-for-k8s
Improvements
- Add option to sanitize claim file result output by @sebrandon1 in #2299
- Remove unused func in claimhelper by @sebrandon1 in #2306
- Revert "Remove unused func in claimhelper" by @sebrandon1 in #2309
- Add claimhelper pkg unit tests by @sebrandon1 in #2307
- Various CI Updates by @sebrandon1 in #2308
- Enable observability suite for PR OCP testing by @sebrandon1 in #2311
- Rename project to 'certsuite' by @sebrandon1 in #2321
- Fix unstable push; add legacy image to tnf image yaml by @sebrandon1 in #2324
- Fix DEBUG_ variables by @sebrandon1 in #2326
- Fix for the false positive of access-control's capabilities tcs. by @greyerof in #2352
- Fix badges after repo rename by @rdavid in #2336
- GetOwnerReferences does not return error by @rdavid in #2333
- Updated URL for github docs. by @greyerof in #2334
- cli: update Certsuite banner to v5.3 by @jmontesi in #2335
Dependency Updates
- Update operator-sdk to v1.36.0 by @sebrandon1 in #2304
- Update operator-sdk to v1.36.1 by @sebrandon1 in #2330
- Bump github.com/test-network-function/oct from 0.0.16 to 0.0.17 by @dependabot in #2305
- Bump ubi9/python-39 from 1-192 to 1-192.1722518946 in /.github/actions/documentation by @dependabot in #2314
- Bump actions/upload-artifact from 4.3.4 to 4.3.5 by @dependabot in #2312
- Bump github.com/k8snetworkplumbingwg/network-attachment-definition-client from 1.7.0 to 1.7.1 by @dependabot in #2313
- Bump golang.org/x/term from 0.22.0 to 0.23.0 by @dependabot in #2317
- Bump github.com/mittwald/go-helm-client from 0.12.10 to 0.12.11 by @dependabot in #2316
- Bump github/codeql-action from 3.25.15 to 3.26.0 by @dependabot in #2318
- Bump actions/upload-artifact from 4.3.5 to 4.3.6 by @dependabot in #2319
- Bump actions/upload-artifact from 4.3.5 to 4.3.6 by @dependabot in #2327
- Bump github.com/mittwald/go-helm-client from 0.12.11 to 0.12.12 by @dependabot in #2328
- Bump github.com/docker/docker from 26.1.4+incompatible to 26.1.5+incompatible by @dependabot in #2329
- Update debug image to v0.0.4 by @sebrandon1 in #2315
- Bump docker/build-push-action from 6.5.0 to 6.6.1 by @dependabot in #2323
- Bump github/codeql-action from 3.26.2 to 3.26.3 by @dependabot in #2358
- Bump ubi9/python-39 from 1-192.1722518946 to 1-192.1723128185 in /.github/actions/documentation by @dependabot in #2359
- Bump github.com/redhat-best-practices-for-k8s/oct from 0.0.18 to 0.0.19 by @dependabot in #2349
- Bump github.com/operator-framework/api from 0.26.0 to 0.27.0 by @dependabot in #2353
- Bump docker/build-push-action from 6.6.1 to 6.7.0 by @dependabot in #2343
- Bump helm.sh/helm/v3 from 3.15.3 to 3.15.4 by @dependabot in #2345
- Bump github/codeql-action from 3.26.0 to 3.26.2 by @dependabot in #2346
- Update k8s deps + controller runtime by @sebrandon1 in #2350
- Update certsuite-probe to v0.0.6 by @sebrandon1 in #2337
- Update operator-sdk to v1.36.1 by @sebrandon1 in #2330
Full Changelog: v5.2.3...v5.3.0
Contributors
rdavid, sebrandon1, and 3 other contributors
Assets 4
v5.2.3
v5.2.3
The v5.2.3 release of the test suite has a couple of notable changes such as a fix for the PDB test case and marking the read-only filesystem operator test as an 'Optional' test case.
This is also the first release that is using the new k8s-best-practices-debug image for the debug pod that spawns as part of the test suite.
Test Case Changes
- Mark read-only filesystem test as Optional by @sebrandon1 in #2245
- tests/observability: fix observability-pod-disruption-budged test case by @jmontesi in #2285
Improvements
- Add scaling helper unit tests by @sebrandon1 in #2249
- cmd/certsuite: update default value for log file in "check results" by @jmontesi in #2251
- Add 'new' image tag to push during CI runs by @sebrandon1 in #2254
- cmd/certsuite: refactor main to allow unit testing subcommands by @jmontesi in #2259
- cmd/certsuite: move the "list" flag from "run" to "info" by @jmontesi in #2264
- internal/datautil: add new package for basic data handling by @jmontesi in #2279
- Remove RELEASE_LEVEL by @sebrandon1 in #2283
- Change debug-partner to k8s-best-practices-debug by @sebrandon1 in #2282
- use ./certsuite instead of ./tnf (no longer exists) by @edcdavid in #2289
- Remove result cast; -claim update by @sebrandon1 in #2296
Documentation Updates
- refactor : Update cnf doc link to k8s doc link by @bnshr in #2257
- Fix broken link for tnf_config.yml by @vikasmulaje in #2280
- Add data collection doc by @shirmoran in #2281
Dependency Updates
- Bump github.com/test-network-function/oct from 0.0.14 to 0.0.15 by @dependabot in #2246
- Bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in #2248
- Bump github.com/test-network-function/privileged-daemonset from 1.0.27 to 1.0.28 by @dependabot in #2247
- Bump docker/build-push-action from 6.3.0 to 6.4.0 by @dependabot in #2255
- Bump github.com/test-network-function/test-network-function-claim from 1.0.41 to 1.0.42 by @dependabot in #2256
- Update preflight to v1.10.0 by @sebrandon1 in #2260
- Missed version update for golangci by @sebrandon1 in #2261
- Bump docker/build-push-action from 6.4.0 to 6.4.1 by @dependabot in #2262
- Bump k8s.io/client-go from 0.30.2 to 0.30.3 by @dependabot in #2267
- Bump k8s.io/apiextensions-apiserver from 0.30.2 to 0.30.3 by @dependabot in #2268
- Bump k8s.io/kubectl from 0.30.2 to 0.30.3 by @dependabot in #2266
- Bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in #2270
- Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 by @dependabot in #2271
- Bump docker/login-action from 3.2.0 to 3.3.0 by @dependabot in #2273
- Bump docker/setup-qemu-action from 3.1.0 to 3.2.0 by @dependabot in #2272
- Bump docker/build-push-action from 6.4.1 to 6.5.0 by @dependabot in #2274
- Bump github.com/test-network-function/oct from 0.0.15 to 0.0.16 by @dependabot in #2275
- Bump ubi9/ubi from 9.4-1123.1719560047 to 9.4-1181 by @dependabot in #2288
- Bump ubi9/ubi-minimal from 9.4-1134 to 9.4-1194 by @dependabot in #2287
- Bump ubi9/python-39 from 1-186.1720018722 to 1-192 in /.github/actions/documentation by @dependabot in #2286
- Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 by @dependabot in #2297
- Bump github.com/test-network-function/privileged-daemonset from 1.0.28 to 1.0.29 by @dependabot in #2298
- Bump github.com/docker/docker from 25.0.5+incompatible to 26.1.4+incompatible by @dependabot in #2300
- Bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 by @dependabot in #2301
- Bump github/codeql-action from 3.25.14 to 3.25.15 by @dependabot in #2293
- Bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @dependabot in #2292
- Bump github.com/test-network-function/test-network-function-claim from 1.0.42 to 1.0.43 by @dependabot in #2294
- Bump github/codeql-action from 3.25.13 to 3.25.14 by @dependabot in #2290
New Contributors
- @vikasmulaje made their first contribution in #2280
Full Changelog: v5.2.2...v5.2.3
Contributors
sebrandon1, vikasmulaje, and 5 other contributors
Assets 4
v5.2.2
v5.2.2
This was a quick turnaround release where we did some notable changes:
- Changed the
access-control-namespacetest fromMandatorytoOptionalfor all scenarios. - Released a new version of the parser with v0.4.7. Found here.
Note: There were no changes in the -partner repository, so the partner version.json did not need an update at this point.
Improvements
- Bump parser version to v0.4.7 by @edcdavid in #2243
- Adjust 'access-control-namespace' test to be Optional by @sebrandon1 in #2242
- Bump parser version to v0.4.6 by @edcdavid in #2238
- Repository folder structure reorganization by @jmontesi in #2237
Dependency Updates
- Bump actions/setup-go from 5.0.1 to 5.0.2 by @dependabot in #2239
- Bump helm.sh/helm/v3 from 3.15.2 to 3.15.3 by @dependabot in #2241
Full Changelog: v5.2.1...v5.2.2
Contributors
sebrandon1, dependabot, and 2 other contributors
Assets 4
v5.2.1
v5.2.1
This version of the certsuite introduces 4 new operator suite tests:
- testOperatorPodsRunAsUserID(): This test verifies that no pods managed by operators run with the root user ID (UID) of 0, which could introduce security vulnerabilities.
- testOperatorPodsRunAsNonRoot(): This test ensures that pods managed by operators adhere to security best practices by running as non-root users.
- testOperatorPodsAutomountTokens(): This test evaluates the configuration of automount service tokens in pods managed by operators.
- testOperatorContainersReadOnlyFilesystem(): This test verifies whether containers within pods managed by operators have a read-only root filesystem, enhancing security by preventing unauthorized modifications.
New Operator Tests
- security requirements of the container-native operators by @shimritproj in #1967
Improvements
- Add check pkg unit tests by @sebrandon1 in #2196
- fix tnf_config.yaml directory typo batch script command by @shirmoran in #2214
- configure : Test operator labels in tnf_config yaml by @bnshr in #2213
- cmd/certsuite: add new command to show the version by @jmontesi in #2219
- Add deployment pkg unit tests by @sebrandon1 in #2215
- cmd/certsuite: add new "certsuite info" command to display Catalog info by @jmontesi in #2228
Dependency Updates
- Bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in #2211
- Bump ubi9/python-39 from 1-186 to 1-186.1719562233 in /.github/actions/documentation by @dependabot in #2217
- Bump ubi9/ubi from 9.4-1123 to 9.4-1123.1719560047 by @dependabot in #2218
- Bump docker/setup-qemu-action from 3.0.0 to 3.1.0 by @dependabot in #2221
- Bump docker/build-push-action from 6.2.0 to 6.3.0 by @dependabot in #2220
- Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @dependabot in #2222
- Bump actions/download-artifact from 4.1.7 to 4.1.8 by @dependabot in #2225
- Bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in #2226
- Bump golang.org/x/term from 0.21.0 to 0.22.0 by @dependabot in #2224
- Bump certifi from 2024.2.2 to 2024.7.4 in /.github/actions/documentation by @dependabot in #2227
- Update Go to v1.22.5 by @sebrandon1 in #2229
- Bump github.com/test-network-function/oct from 0.0.12 to 0.0.14 by @dependabot in #2232
- Bump zipp from 3.18.1 to 3.19.1 in /.github/actions/documentation by @dependabot in #2234
- Bump github.com/test-network-function/test-network-function-claim from 1.0.39 to 1.0.41 by @dependabot in #2233
- Bump ubi9/python-39 from 1-186.1719562233 to 1-186.1720018722 in /.github/actions/documentation by @dependabot in #2230
- Update GolangCI-lint to v1.59.1 by @sebrandon1 in #2216
Full Changelog: v5.2.0...v5.2.1
Contributors
sebrandon1, dependabot, and 4 other contributors
Assets 4
v5.2.0
v5.2.0
With the v5.2.0 release of the test suite, we have done some underlying changes to the way the test suite is ran. Mainly, we have removed the bash scripts that were previously needed to kick things off. Now all you need to run the test suite is our new certsuite binary. We will also be publishing the binaries on release built for different architectures.
The documentation and the README have been updated with this new information as well.
Script Removal
- docs: copy friendly version of the docker cmd to run the test suite by @jmontesi in #2204
- Delete legacy code and avoid using environment variables by @jmontesi in #2207
- Update the Certsuite demo by @jmontesi in #2199
- cli: update Certsuite banner to v5.2 by @jmontesi in #2193
CI Updates
- workflows: add new workflow to upload release assets by @jmontesi in #2208
- workflows: several fixes to upload release assets by @jmontesi in #2209
Dependency Updates
- Bump github.com/test-network-function/privileged-daemonset from 1.0.26 to 1.0.27 by @dependabot in #2206
Full Changelog: v5.1.3...v5.2.0
Contributors
dependabot and jmontesi
Assets 4
v5.1.3
v5.1.3
Brings in a fix for the IsRedHatRelease test to allow for images that somehow show they are "Beta".
Improvements
- feat : Add helper function to get all operator pods by @bnshr in #2130
- Fix variable name by @bnshr in #2180
- Dockerfile: do not build the legacy binary by @jmontesi in #2181
- Delete legacy bash scripts to run the Best Practices Test Suite by @jmontesi in #2186
- Fix batch script to enable run on an entire catalog by @shirmoran in #2167
- Add logging; unit tests for UBI9 by @sebrandon1 in #2191
- Adjust RHEL regex to support Beta versions by @sebrandon1 in #2194
- Adjust typos by @sebrandon1 in #2195
- Remove unnecessary kubeconfig check by @shirmoran in #2198
Documentation Updates
- docs: update to show how to run the test suite with the "certsuite" cmd by @jmontesi in #2174
- docs: move and rename docs on how to run the Test Suite inside a cluster pod by @jmontesi in #2192
CI Updates
- Makefile: use curl to get the parser webpage (results.html) by @jmontesi in #2175
- Add 4.17 nightly YAML by @sebrandon1 in #2187
- Add 4.17 to RHCOS script by @sebrandon1 in #2189
Dependency Updates
- Update operator-sdk to v1.35.0 by @sebrandon1 in #2184
- Bump github.com/mittwald/go-helm-client from 0.12.9 to 0.12.10 by @dependabot in #2200
Github Actions Updates
- Bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 by @dependabot in #2177
- Bump docker/build-push-action from 6.0.0 to 6.0.1 by @dependabot in #2178
- Bump docker/build-push-action from 6.0.1 to 6.0.2 by @dependabot in #2182
- Bump ludeeus/action-shellcheck from cd81f4475ab741e097ec0fe73b692f3e49d66b8c to 00b27aa7cb85167568cb48a3838b75f4265f2bca by @dependabot in #2183
- Bump docker/build-push-action from 6.0.2 to 6.1.0 by @dependabot in #2188
- Bump docker/build-push-action from 6.1.0 to 6.2.0 by @dependabot in #2201
Full Changelog: v5.1.2...v5.1.3
Contributors
sebrandon1, dependabot, and 3 other contributors
Assets 2
v5.1.2
v5.1.2
The most notable change to the certsuite functionality comes from #2145 where we changed the way we determine which operators to test in the operator suite. We changed it to only test operators that are listed in the TargetCrdFilters configuration variable instead of testing all operators on the cluster regardless if they were targeted for test or not.
Improvements
- Rename host-addresses to host-cidrs by @sebrandon1 in #2122
- Add various unit tests by @sebrandon1 in #2127
- fix : Limit operator test suits TC to test operators only by @bnshr in #2145
- Fix Skip Function for Crds by @bnshr in #2152
- Bugfix: init the label expr evaluator before listing the test cases by @jmontesi in #2168
CI Updates
- Consolidate shared tasks into composite actions by @sebrandon1 in #2118
- CI workflows: delete legacy tasks using the old binary by @jmontesi in #2135
- Add OCP 4.16 nightly YAML by @sebrandon1 in #2144
- Adjust 'runs-on' label by @sebrandon1 in #2146
- Enable OCP testing on PRs by @sebrandon1 in #2164
Doc Updates
Operator Testing Script Updates
Dependency Updates
Go Mod Updates
- Update Go to v1.22.4 by @sebrandon1 in #2134
- Bump github.com/test-network-function/privileged-daemonset from 1.0.22 to 1.0.25 by @dependabot in #2123
- Bump github.com/test-network-function/test-network-function-claim from 1.0.36 to 1.0.39 by @dependabot in #2125
- Bump github.com/test-network-function/oct from 0.0.10 to 0.0.12 by @dependabot in #2129
- Bump golang.org/x/term from 0.20.0 to 0.21.0 by @dependabot in #2131
- Update preflight to v1.9.6 by @sebrandon1 in #2133
- Update preflight to v1.9.7 by @sebrandon1 in #2151
- Bump github.com/gorilla/websocket from 1.5.1 to 1.5.2 by @dependabot in #2143
- Bump helm.sh/helm/v3 from 3.15.1 to 3.15.2 by @dependabot in #2149
- Bump k8s.io/apiextensions-apiserver from 0.30.1 to 0.30.2 by @dependabot in #2153
- Bump github.com/operator-framework/api from 0.25.0 to 0.26.0 by @dependabot in #2154
- Bump k8s.io/kubectl from 0.30.1 to 0.30.2 by @dependabot in #2157
- Bump github.com/gorilla/websocket from 1.5.2 to 1.5.3 by @dependabot in #2165
- Bump github.com/test-network-function/privileged-daemonset from 1.0.25 to 1.0.26 by @dependabot in #2170
- Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in #2171
- Bump urllib3 from 2.2.1 to 2.2.2 in /.github/actions/documentation by @dependabot in #2172
Dockerfile Updates
- Bump ubi9/ubi from 9.4-947.1716476138 to 9.4-947.1717074712 by @dependabot in #2137
- Bump ubi9/ubi-minimal from 9.4-949.1716471857 to 9.4-949.1717074713 by @dependabot in #2138
- Bump ubi9/python-39 from 1-182.1716478612 to 1-182.1717085980 in /.github/actions/documentation by @dependabot in #2136
- Bump ubi9/python-39 from 1-182.1717085980 to 1-186 in /.github/actions/documentation by @dependabot in #2162
- Bump ubi9/ubi-minimal from 9.4-949.1717074713 to 9.4-1134 by @dependabot in #2159
- Bump ubi9/ubi from 9.4-947.1717074712 to 9.4-1123 by @dependabot in #2158
Github Action Updates
- Bump github/codeql-action from 3.25.6 to 3.25.7 by @dependabot in #2126
- Bump github/codeql-action from 3.25.7 to 3.25.8 by @dependabot in #2132
- Bump docker/build-push-action from 5.3.0 to 5.4.0 by @dependabot in #2142
- Bump github/codeql-action from 3.25.8 to 3.25.9 by @dependabot in #2150
- Bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #2160
- Bump github/codeql-action from 3.25.9 to 3.25.10 by @dependabot in #2161
- Bump docker/build-push-action from 5.4.0 to 6.0.0 by @dependabot in #2169
Full Changelog: v5.1.1...v5.1.2
Contributors
sebrandon1, dependabot, and 3 other contributors
Assets 2
v5.1.1
v5.1.1
This release includes a number of improvements surrounding our CLI and how the test suite is ran.
There was a bug found in the RHCOS version compatibility test that was fixed in #2109 for OCP beta versions greater than 4.14.
Bug Fixes and Improvements
- feat : Add a link back to the test case that mentioned security categories by @bnshr in #2075
- Operators script: label pods under test after waiting for all pods to come up by @edcdavid in #2096
- Bug fix: adjust OCP beta slice by @sebrandon1 in #2109
- Batch operators test catalog source automation by @shirmoran in #2107
- log: rename global log file by @jmontesi in #2116
CLI Improvements
- cmd/tnf: add subcommand to run the test suite by @jmontesi in #2065
- cmd/certsuite: rename the "tnf"command to "certsuite" by @jmontesi in #2076
- gitignore: add certsuite binary by @jmontesi in https://github.com/test-network-function/cnf-certification-test/pull/208788
- Add a workflow task to verify the "certsuite run" command by @jmontesi in #2085
- Parse flags after env vars to override them if required by @jmontesi in #2092
- cli: update test suite banner by @jmontesi in #2097
- cmd/certsuite: add new flags by @jmontesi in #2098
- Makefile: add build info to the certsuite binary by @jmontesi in #2105
- cmd/certsuite: add flags for selecting the TNF debug image by @jmontesi in #2106
- cmd/certsuite: add shorthand flags for the most common flags by @jmontesi in #2115
CI Updates
- Add 10 minute timeout for waiting for all pods to be ready by @sebrandon1 in #2078
- Update ubuntu runners to 24.04 by @sebrandon1 in #2079
- Makefile: update local golangci to v.1.58.2 by @jmontesi in #2084
- Switch RHCOS job back to 22.04 by @sebrandon1 in #2086
- pre-main: add container workflow task to check the certsuite command by @jmontesi in #2103
- Test: Revert changes to ubuntu 24.04 for cancelled jobs by @sebrandon1 in #2112
- Add binary test to nightlies by @sebrandon1 in #2111
Dependency Updates
- build(deps): bump k8s.io/apiextensions-apiserver from 0.30.0 to 0.30.1 by @dependabot in #2072
- build(deps): bump helm.sh/helm/v3 from 3.14.4 to 3.15.0 by @dependabot in #2077
- build(deps): bump k8s.io/kubectl from 0.29.4 to 0.30.1 by @dependabot in #2071
- Update operator-sdk to v1.34.2 by @sebrandon1 in #2083
- Update preflight to v1.9.5 by @sebrandon1 in #2081
- build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #2082
- build(deps): bump ubi9/python-39 from 1-182.1714671018 to 1-182.1715774360 in /.github/actions/documentation by @dependabot in #2090
- build(deps): bump github/codeql-action from 3.25.5 to 3.25.6 by @dependabot in #2089
- build(deps): bump requests from 2.31.0 to 2.32.0 in /.github/actions/documentation by @dependabot in #2091
- build(deps): bump github.com/go-logr/logr from 1.4.1 to 1.4.2 by @dependabot in #2093
- Bump helm.sh/helm/v3 from 3.15.0 to 3.15.1 by @dependabot in #2099
- Bump github.com/operator-framework/api from 0.24.0 to 0.25.0 by @dependabot in #2100
- Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 by @dependabot in #2102
- Bump docker/login-action from 3.1.0 to 3.2.0 by @dependabot in #2110
- Bump ubi9/python-39 from 1-182.1715774360 to 1-182.1716478612 in /.github/actions/documentation by @dependabot in #2108
- Bump ubi9/ubi-minimal from 9.4-949.1714662671 to 9.4-949.1716471857 by @dependabot in #2113
- Bump ubi9/ubi from 9.4-947.1714667021 to 9.4-947.1716476138 by @dependabot in #2114
Full Changelog: v5.1.0...v5.1.1
Contributors
sebrandon1, dependabot, and 4 other contributors
Assets 2
v5.1.0
v5.1.0
We have renamed the test suite from cnf-certification-test to Red Hat Best Practices Test Suite for Kubernetes.
Future Changes on the Roadmap:
- Further releases in
v5.1.xwill include more tests in theoperatortest suite. - Modifications to how the test suite is ran/kicked off by removing the scripts and environment variables to provide a seamless way to run the binaries.
- Since v5.0.8 we are now building
arm64images (see #1943), we have been experimenting with how to better test our new arm64 images on a fully arm enabled CI. This is an ongoing initiative that probably will not be completed until Github Actions allows for fully arm64 runners.
Test Suite Renaming
OSSF Additions
- [StepSecurity] Apply security best practices by @step-security-bot in #2011
- Adding OSSF score card to workflow by @edcdavid in #1961
- Fix OSSF scorecard badge by @edcdavid in #2010
Various Updates
- Group badges by @rdavid in #2029
- Add README badges for QE OCP nightlies by @sebrandon1 in #2022
- flags: add a new flag to provide a rhcos_version_map file by @jmontesi in #2047
- Bug fix: avoid runtime panic (SIGSEGV) when using the list flag by @jmontesi in #2066
- operatingsystem: embed rhcos_version_map file into the test suite binary by @jmontesi in #2052
- scripts: use the test suite binary directly in "run-tnf-container.sh" by @jmontesi in #2033
- style : Modify catalog generation to add 4 security contexts categories by @bnshr in #2044
- main: simplify and move some functions to the certsuite and log packages by @jmontesi in #2060
CI Improvements
- Switch QE nightlies to use unstable image by @sebrandon1 in #2006
- Remove macos runner from unit tests by @sebrandon1 in #2007
- Mark operator best practices tests QE test covered by @bnshr in #2019
- Switch 4.14 actions runner by @sebrandon1 in #2039
Dependency Updates
- build(deps): bump actions/upload-artifact from 3.pre.node20 to 4.3.3 by @dependabot in #2016
- build(deps): bump github/codeql-action from 3.24.9 to 3.25.3 by @dependabot in #2015
- build(deps): bump actions/checkout from 4.1.1 to 4.1.4 by @dependabot in #2014
- build(deps): bump ubi9/python-39 from 1-161 to 1-172.1712567222 in /.github/actions/documentation by @dependabot in #2013
- build(deps): bump golangci/golangci-lint-action from 4 to 5 by @dependabot in #2008
- Fix for missing frozen dependency by @edcdavid in #2020
- build(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.1.0 by @dependabot in #2021
- build(deps): bump ubi9/python-39 from 1-172.1712567222 to 1-182 in /.github/actions/documentation by @dependabot in #2025
- build(deps): bump ubi9/ubi from 9.3-1610 to 9.4-947 by @dependabot in #2026
- Update machine-config-operator; update preflight to v1.9.2 by @sebrandon1 in #2024
- build(deps): bump ubi9/ubi-minimal from 9.3-1612 to 9.4-949 by @dependabot in #2027
- build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by @dependabot in #2030
- build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /.github/actions/documentation by @dependabot in #2041
- build(deps): bump golangci/golangci-lint-action from 5.1.0 to 5.3.0 by @dependabot in #2038
- build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /.github/workflows by @dependabot in #2040
- build(deps): bump ubi9/python-39 from 1-182 to 1-182.1714671018 in /.github/actions/documentation by @dependabot in #2037
- build(deps): bump ubi9/ubi-minimal from 9.4-949 to 9.4-949.1714662671 by @dependabot in #2036
- build(deps): bump ubi9/ubi from 9.4-947 to 9.4-947.1714667021 by @dependabot in #2035
- build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #2046
- build(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.0 by @dependabot in #2045
- build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @dependabot in #2049
- build(deps): bump golangci/golangci-lint-action from 6.0.0 to 6.0.1 by @dependabot in #2048
- Update Go to v1.22.3 by @sebrandon1 in #2053
- build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @dependabot in #2061
- build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0 by @dependabot in #2062
- build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @dependabot in #2058
- build(deps): bump golang.org/x/term from 0.19.0 to 0.20.0 by @dependabot in #2056
- Update GolangCI-lint to v1.58.1 by @sebrandon1 in #2054
- build(deps): bump github.com/operator-framework/api from 0.23.0 to 0.24.0 by @dependabot in #2057
- Update preflight to v1.9.4 by @sebrandon1 in #2055
New Contributors
- @step-security-bot made their first contribution in #2011
Full Changelog: v5.0.8...v5.1.0
Contributors
rdavid, sebrandon1, and 5 other contributors
Assets 2
v5.0.8
This release is a quick fix to update our affiliated-certification online/offline database of certified images.
Documentation Updates
- docs: CNF Certification rename to Red Hat Best Practices for Kubernetes by @jmontesi in #1999
- Catalog rename by @jmontesi in #2003
Dependency Updates
- build(deps): bump github.com/test-network-function/oct from 0.0.7 to 0.0.8 by @dependabot in #1997
- Update oct to v0.0.10 by @sebrandon1 in #2004
CI Updates
- Clean openshift-marketplace namespaces in QE by @sebrandon1 in #2000
Full Changelog: v5.0.7...v5.0.8
Contributors
sebrandon1, dependabot, and jmontesi