Skip to content

Commit

Permalink
[bitnami/consul] Detect non-standard images (#30873)
Browse files Browse the repository at this point in the history 
* [bitnami/consul] Detect non-standard images

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>

* Update NOTES.txt

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>

* Update CHANGELOG.md

Signed-off-by: Bitnami Containers <[email protected]>

* Update README.md with readme-generator-for-helm

Signed-off-by: Bitnami Containers <[email protected]>

---------

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>
Signed-off-by: Bitnami Containers <[email protected]>
Co-authored-by: Bitnami Containers <[email protected]>
  • Loading branch information
@carrodher @bitnami-bot
carrodher and bitnami-bot authored Dec 10, 2024
1 parent c74993f commit 4b16ccc
Show file tree
Hide file tree
Showing 6 changed files with 32 additions and 14 deletions.
11 changes: 9 additions & 2 deletions bitnami/consul/CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,8 +1,15 @@
# Changelog

## 11.3.22 (2024-12-03)
## 11.4.0 (2024-12-10)

* [bitnami/consul] Release 11.3.22 ([#30744](https://github.com/bitnami/charts/pull/30744))
* [bitnami/consul] Detect non-standard images ([#30873](https://github.com/bitnami/charts/pull/30873))

## <small>11.3.22 (2024-12-03)</small>

* [bitnami/*] docs: :memo: Add "Backup & Restore" section (#30711) ([35ab536](https://github.com/bitnami/charts/commit/35ab5363741e7548f4076f04da6e62d10153c60c)), closes [#30711](https://github.com/bitnami/charts/issues/30711)
* [bitnami/*] docs: :memo: Add "Prometheus metrics" (batch 1) (#30660) ([7409ca4](https://github.com/bitnami/charts/commit/7409ca4c21869fabe1532dd4f3ff24895df71c6d)), closes [#30660](https://github.com/bitnami/charts/issues/30660)
* [bitnami/*] docs: :memo: Unify "Securing Traffic using TLS" section (#30707) ([b572333](https://github.com/bitnami/charts/commit/b57233336e4fe9af928ecb4f2a5f334011efb1bc)), closes [#30707](https://github.com/bitnami/charts/issues/30707)
* [bitnami/consul] Release 11.3.22 (#30744) ([ac8988c](https://github.com/bitnami/charts/commit/ac8988cc3a6f252bda827aa7ce11ed7ebc1ff75a)), closes [#30744](https://github.com/bitnami/charts/issues/30744)

## <small>11.3.21 (2024-11-09)</small>

Expand Down
6 changes: 3 additions & 3 deletions bitnami/consul/Chart.lock
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
dependencies:
- name: common
repository: oci://registry-1.docker.io/bitnamicharts
version: 2.27.2
digest: sha256:6fd86cc5a4b5094abca1f23c8ec064e75e51eceaded94a5e20977274b2abb576
generated: "2024-12-03T22:08:45.448002794Z"
version: 2.28.0
digest: sha256:5b30f0fa07bb89b01c55fd6258c8ce22a611b13623d4ad83e8fdd1d4490adc74
generated: "2024-12-10T16:53:14.297044+01:00"
2 changes: 1 addition & 1 deletion bitnami/consul/Chart.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,4 +32,4 @@ maintainers:
name: consul
sources:
- https://github.com/bitnami/charts/tree/main/bitnami/consul
version: 11.3.22
version: 11.4.0
19 changes: 12 additions & 7 deletions bitnami/consul/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -223,13 +223,14 @@ You can enable this initContainer by setting `volumePermissions.enabled` to `tru

### Global parameters

| Name | Description | Value |
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------ |
| `global.imageRegistry` | Global Docker image registry | `""` |
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
| `global.defaultStorageClass` | Global default StorageClass for Persistent Volume(s) | `""` |
| `global.storageClass` | DEPRECATED: use global.defaultStorageClass instead | `""` |
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |
| Name | Description | Value |
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------- |
| `global.imageRegistry` | Global Docker image registry | `""` |
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
| `global.defaultStorageClass` | Global default StorageClass for Persistent Volume(s) | `""` |
| `global.storageClass` | DEPRECATED: use global.defaultStorageClass instead | `""` |
| `global.security.allowInsecureImages` | Allows skipping image verification | `false` |
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |

### Common parameters

Expand Down Expand Up @@ -478,6 +479,10 @@ Find more information about how to deal with common errors related to Bitnami's

## Upgrading

### To 11.4.0

This version introduces image verification for security purposes. To disable it, set `global.security.allowInsecureImages` to `true`. More details at [GitHub issue](https://github.com/bitnami/charts/issues/30850).

### To 11.0.0

This major bump changes the following security defaults:
Expand Down
3 changes: 2 additions & 1 deletion bitnami/consul/templates/NOTES.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -86,4 +86,5 @@ Furthermore, to know which Consul node is the cluster leader run this other comm
{{- include "common.warnings.rollingTag" .Values.metrics.image }}
{{- include "common.warnings.rollingTag" .Values.volumePermissions.image }}
{{- include "common.warnings.resources" (dict "sections" (list "metrics" "" "volumePermissions") "context" $) }}
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.image .Values.volumePermissions.image .Values.metrics.image) "context" $) }}
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.image .Values.volumePermissions.image .Values.metrics.image) "context" $) }}
{{- include "common.errors.insecureImages" (dict "images" (list .Values.image .Values.volumePermissions.image .Values.metrics.image) "context" $) }}
5 changes: 5 additions & 0 deletions bitnami/consul/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,11 @@ global:
imagePullSecrets: []
defaultStorageClass: ""
storageClass: ""
## Security parameters
##
security:
## @param global.security.allowInsecureImages Allows skipping image verification
allowInsecureImages: false
## Compatibility adaptations for Kubernetes platforms
##
compatibility:
Expand Down

0 comments on commit 4b16ccc

Please sign in to comment.