Shipwright Build release v0.14.0
Release changes since v0.13.0
Features
#1723 by @SaschaSchwarze0: The sample build strategy for BuildKit now uses the latest BuildKit release instead of its nightly build
#1702 by @HeavyWombat: Added flag to bundle-step and git-step command to print a file listing when pull and unpack of the source bundle, or Git clone is complete.
#1683 by @dorzel: Added NodeSelector on Build and BuildRun objects, which enables specifying the scheduling behavior of TaskRuns.
#1646 by @karanibm6: You can now run a post-installation step to migrate the storage version of the custom resources
#1600 by @SaschaSchwarze0: The sample build strategies now uses imagePullPolicy=Always for the BuildAh steps to ensure the latest available image version is always used
#1588 by @SaschaSchwarze0: You can now easily determine that your BuildRun failed because a step went out of memory as the reason is now set to StepOutOfMemory
#1489 by @karanibm6: Vulnerability Scanning Implementation
Fixes
#1700 by @SaschaSchwarze0: The image-processing step now retries the vulnerability scan using Trivy if that failed to download the vulnerability database due to rate-limiting
#1699 by @HeavyWombat: Fixed an issue when unpacking a code bundle that contains a non-writable sub-directory.
#1634 by @aleskandro: Add sample build strategy to orchestrate multi-arch container image builds. The service account executing this build strategy must have the ability to manage Jobs and Pods, as well as have the ability to exec into Pods.
#1628 by @HeavyWombat: The bundle prune option now also supports the legacy registry endpoints for both DockerHub and IBM Container Registry in its registry detection routine.
#1623 by @SaschaSchwarze0: The controller now does not panic when no vulnerabilities are found, also severity is correctly parsed
#1569 by @SaschaSchwarze0: An Alpha Build where spec.dockerfile
is set to ""
, is now transformed to a Beta Build without the dockerfile parameter to behave like in Alpha
#1566 by @SaschaSchwarze0: The usage of different secrets or secret keys as values inside one array parameter is now possible
API Changes
#1683 by @dorzel: Added NodeSelector on Build and BuildRun objects, which enables specifying the scheduling behavior of TaskRuns.
#1489 by @karanibm6: Vulnerability Scanning Implementation
Docs
Misc
#1727 by @SaschaSchwarze0: The supported Kubernetes versions are now v1.29 to v1.31
#1710 by @SaschaSchwarze0: The new minimum Tekton version is v0.56
#1704 by @shipwright-ci-bot: Update to the new latest Tekton LTS release v0.65.0
#1697 by @shipwright-ci-bot: Update the the new latest Tekton LTS release v0.62.4
#1671 by @SaschaSchwarze0: We now build Shipwright Build with the latest Tekton LTS version
#1649 by @SaschaSchwarze0: Shipwright Build is now validated on the oldest supported and the newest available Tekton LTS releases
#1629 by @SaschaSchwarze0: The kaniko-trivy sample build strategy is removed as you can now enable a vulnerability scan for the image in the output section of your Build or BuildRun