From 937cd7f2eb75a1d6ed1e0cf4ef6f826c5dc40e98 Mon Sep 17 00:00:00 2001 From: Noah Talerman <47070608+noahtalerman@users.noreply.github.com> Date: Mon, 7 Mar 2022 12:08:51 -0500 Subject: [PATCH] Update changelog and bump versioning (#4497) --- CHANGELOG.md | 54 +++++++++++++++++++ changes/allow-removal-of-munki-versions | 1 - changes/allow-short-idp-name | 1 - changes/apm | 1 - changes/fix-software-inventory-query-linux | 1 - .../issue-2750-performance-impact-information | 1 - .../issue-3031-add-team-target-to-pack-spec | 1 - changes/issue-3055-fleetctl-get-team | 1 - changes/issue-3081-parse-centos-repository | 1 - changes/issue-3083-3398-policy-activity-feed | 5 -- changes/issue-3202-improve-save-as-new-query | 1 - .../issue-3220-allow-update-policy-platform | 1 - changes/issue-3285-remove-new-host-count | 1 - changes/issue-3507-email-url-validations | 1 - changes/issue-3519-e2e-team-admin | 1 - .../issue-3658-orbit-allow-disable-updates | 1 - changes/issue-3790-render-duplicate-errors | 1 - changes/issue-3855-version-warning | 1 - changes/issue-3881-add-host-modal-advance-tab | 1 - ...ssue-3927-remove-api-only-token-expiration | 1 - ...-3950-validate-authorization-for-run-query | 1 - changes/issue-3966-os-version-fix | 1 - changes/issue-3979-filter-hosts-targets | 1 - ...issue-3995-update-postinstall-launchdaemon | 1 - .../issue-4067-3797-enter-to-remove-delete | 1 - changes/issue-4082-host-software-0 | 1 - changes/issue-4187-render-smtp-error | 1 - ...60-global-maintainer-can-write-team-policy | 1 - ...ue-4268-list-software-hosts-count-per-team | 1 - changes/issue-4304-loading-error-certificate | 1 - changes/issue-4316-send-email-configured | 1 - changes/issue-4325-fix-masthead-avatar | 1 - changes/issue-4361-mail-change-should-error | 1 - changes/issue-4365-sql-error-onchange | 1 - changes/issue-4408-fix-whitespace-tooltips | 1 - changes/issue-4415-fix-inherited-dropdown | 1 - ...sue-4424-kinesis-log-destination-new-lines | 1 - ...ssue-4457-external-docs-link-to-fleetdmcom | 1 - .../issue-4470-global-agent-options-update | 1 - charts/fleet/Chart.yaml | 4 +- charts/fleet/values.yaml | 2 +- tools/fleetctl-npm/package.json | 2 +- tools/terraform/gcp/variables.tf | 4 +- tools/terraform/variables.tf | 2 +- 44 files changed, 61 insertions(+), 49 deletions(-) delete mode 100644 changes/allow-removal-of-munki-versions delete mode 100644 changes/allow-short-idp-name delete mode 100644 changes/apm delete mode 100644 changes/fix-software-inventory-query-linux delete mode 100644 changes/issue-2750-performance-impact-information delete mode 100644 changes/issue-3031-add-team-target-to-pack-spec delete mode 100644 changes/issue-3055-fleetctl-get-team delete mode 100644 changes/issue-3081-parse-centos-repository delete mode 100644 changes/issue-3083-3398-policy-activity-feed delete mode 100644 changes/issue-3202-improve-save-as-new-query delete mode 100644 changes/issue-3220-allow-update-policy-platform delete mode 100644 changes/issue-3285-remove-new-host-count delete mode 100644 changes/issue-3507-email-url-validations delete mode 100644 changes/issue-3519-e2e-team-admin delete mode 100644 changes/issue-3658-orbit-allow-disable-updates delete mode 100644 changes/issue-3790-render-duplicate-errors delete mode 100644 changes/issue-3855-version-warning delete mode 100644 changes/issue-3881-add-host-modal-advance-tab delete mode 100644 changes/issue-3927-remove-api-only-token-expiration delete mode 100644 changes/issue-3950-validate-authorization-for-run-query delete mode 100644 changes/issue-3966-os-version-fix delete mode 100644 changes/issue-3979-filter-hosts-targets delete mode 100644 changes/issue-3995-update-postinstall-launchdaemon delete mode 100644 changes/issue-4067-3797-enter-to-remove-delete delete mode 100644 changes/issue-4082-host-software-0 delete mode 100644 changes/issue-4187-render-smtp-error delete mode 100644 changes/issue-4260-global-maintainer-can-write-team-policy delete mode 100644 changes/issue-4268-list-software-hosts-count-per-team delete mode 100644 changes/issue-4304-loading-error-certificate delete mode 100644 changes/issue-4316-send-email-configured delete mode 100644 changes/issue-4325-fix-masthead-avatar delete mode 100644 changes/issue-4361-mail-change-should-error delete mode 100644 changes/issue-4365-sql-error-onchange delete mode 100644 changes/issue-4408-fix-whitespace-tooltips delete mode 100644 changes/issue-4415-fix-inherited-dropdown delete mode 100644 changes/issue-4424-kinesis-log-destination-new-lines delete mode 100644 changes/issue-4457-external-docs-link-to-fleetdmcom delete mode 100644 changes/issue-4470-global-agent-options-update diff --git a/CHANGELOG.md b/CHANGELOG.md index d3ecc4ff91c0..d62666039eb9 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,57 @@ +## Fleet 4.11.0 (Mar 7, 2022) + +* Improve vulnerability processing to reduce the number of false positives for RPM packages on Linux hosts. + +* Fleet Premium: Add a `teams` key to the `packs` yaml document to allow adding teams as targets when using CI/CD to manage query packs. + +* Fleet premium: Add the ability to retrieve configuration for a specific team with the `fleetctl get team --name +` command. + +* Remove the expiration for API tokens for API-only users. API-only users can be created using the + `fleetctl user create --api-only` command. + +* Improve performance of the osquery query used to collect software inventory for Linux hosts. + +* Update the activity feed on the **Home page** to include add, edit, and delete policy activities. + Activity information is also available in the `GET /activities` API route. + +* Update Kinesis logging plugin to append newline character to raw message bytes to properly format NDJSON for downstream consumers. + +* Clarify why the "Performance impact" for some queries is displayed as "Undetermined" in the Fleet + UI. + +* Add instructions for using plain osquery to add hosts to Fleet in the Fleet View these instructions by heading to **Hosts > Add hosts > Advanced**. + +* Fix a bug in which uninstalling Munki from one or more hosts would result in inaccurate Munki + versions displayed on the **Home > macOS** page. + +* Fix a bug in which a user, with access limited to one or more teams, was able to run a live query +against hosts in any team. This bug is not exposed in the Fleet UI and is limited to users of the +`POST run` API route. + +* Fix a bug in the Fleet UI in which the "Select targets" search bar would not return the expected hosts. + +* Fix a bug in which global agent options were not updated correctly when editing these options in +the Fleet UI. + +* Fix a bug in which the Fleet UI would incorrectly tag some URLs as invalid. + +* Fix a bug in which the Fleet UI would attempt to connect to an SMTP server when SMTP was disabled. + +* Fix a bug on the Software page in which the "Hosts" column was not filtered by team. + +* Fix a bug in which global maintainers were unable to add and edit policies that belonged to a + specific team. + +* Fix a bug in which the operating system version for some Linux distributions would not be +displayed properly. + +* Fix a bug in which configuring an identity provider name to a value shorter than 4 characters was +not allowed. + +* Fix a bug in which the avatar would not appear in the top navigation. + + ## Fleet 4.10.0 (Feb 13, 2022) * Upgrade Go to 1.17.7 with security fixes for crypto/elliptic (CVE-2022-23806), math/big (CVE-2022-23772), and cmd/go (CVE-2022-23773). These are not likely to be high impact in Fleet deployments, but we are upgrading in an abundance of caution. diff --git a/changes/allow-removal-of-munki-versions b/changes/allow-removal-of-munki-versions deleted file mode 100644 index c3a5ec2e697b..000000000000 --- a/changes/allow-removal-of-munki-versions +++ /dev/null @@ -1 +0,0 @@ -* Properly consider the case where munki is uninstalled diff --git a/changes/allow-short-idp-name b/changes/allow-short-idp-name deleted file mode 100644 index dade48da7837..000000000000 --- a/changes/allow-short-idp-name +++ /dev/null @@ -1 +0,0 @@ -* Allow IdP name to be configured to a value shorter than 4 characters. \ No newline at end of file diff --git a/changes/apm b/changes/apm deleted file mode 100644 index b696b904137f..000000000000 --- a/changes/apm +++ /dev/null @@ -1 +0,0 @@ -* Add APM via elasticapm and/or OpenTelemetry configured via flags and environment variables diff --git a/changes/fix-software-inventory-query-linux b/changes/fix-software-inventory-query-linux deleted file mode 100644 index dda1ca9c512b..000000000000 --- a/changes/fix-software-inventory-query-linux +++ /dev/null @@ -1 +0,0 @@ -* Fix software inventory query for linux hosts to improve performance when getting atom packages. \ No newline at end of file diff --git a/changes/issue-2750-performance-impact-information b/changes/issue-2750-performance-impact-information deleted file mode 100644 index 6f01835f20f4..000000000000 --- a/changes/issue-2750-performance-impact-information +++ /dev/null @@ -1 +0,0 @@ -* UI clarifies performance impact of a query and its potential undetermined impact \ No newline at end of file diff --git a/changes/issue-3031-add-team-target-to-pack-spec b/changes/issue-3031-add-team-target-to-pack-spec deleted file mode 100644 index 6972e08ec50e..000000000000 --- a/changes/issue-3031-add-team-target-to-pack-spec +++ /dev/null @@ -1 +0,0 @@ -- Add support for teams to pack spec endpoints and fleetctl diff --git a/changes/issue-3055-fleetctl-get-team b/changes/issue-3055-fleetctl-get-team deleted file mode 100644 index f115ccbb1de7..000000000000 --- a/changes/issue-3055-fleetctl-get-team +++ /dev/null @@ -1 +0,0 @@ -* Add get team by name to fleetctl. diff --git a/changes/issue-3081-parse-centos-repository b/changes/issue-3081-parse-centos-repository deleted file mode 100644 index 40fc8592c924..000000000000 --- a/changes/issue-3081-parse-centos-repository +++ /dev/null @@ -1 +0,0 @@ -* Add parsing of the CentOS repository as well as the loading of the results in fleet vulnerability post-processing (to reduce false positives on RPM packages). diff --git a/changes/issue-3083-3398-policy-activity-feed b/changes/issue-3083-3398-policy-activity-feed deleted file mode 100644 index 02a97114f996..000000000000 --- a/changes/issue-3083-3398-policy-activity-feed +++ /dev/null @@ -1,5 +0,0 @@ -* Enhance activity feed with policy-related activities -* Add new activity type for create policy -* Add new activity type for edit policy -* Add new activity type for delete policy -* Add new activity type for apply policy spec \ No newline at end of file diff --git a/changes/issue-3202-improve-save-as-new-query b/changes/issue-3202-improve-save-as-new-query deleted file mode 100644 index b0391bc35440..000000000000 --- a/changes/issue-3202-improve-save-as-new-query +++ /dev/null @@ -1 +0,0 @@ -* Improved UX around "Save as new" query (Reroutes to new query on save as new, fixes duplicate name error) \ No newline at end of file diff --git a/changes/issue-3220-allow-update-policy-platform b/changes/issue-3220-allow-update-policy-platform deleted file mode 100644 index 16e9d23d1d05..000000000000 --- a/changes/issue-3220-allow-update-policy-platform +++ /dev/null @@ -1 +0,0 @@ -* Add ability to update an existing policy's platforms. diff --git a/changes/issue-3285-remove-new-host-count b/changes/issue-3285-remove-new-host-count deleted file mode 100644 index 9de16e8e49c2..000000000000 --- a/changes/issue-3285-remove-new-host-count +++ /dev/null @@ -1 +0,0 @@ -* Remove new hosts count from homepage \ No newline at end of file diff --git a/changes/issue-3507-email-url-validations b/changes/issue-3507-email-url-validations deleted file mode 100644 index 21e0079ec505..000000000000 --- a/changes/issue-3507-email-url-validations +++ /dev/null @@ -1 +0,0 @@ -* Fix edge case URL validations, update all email forms to validate \ No newline at end of file diff --git a/changes/issue-3519-e2e-team-admin b/changes/issue-3519-e2e-team-admin deleted file mode 100644 index 0261d415da66..000000000000 --- a/changes/issue-3519-e2e-team-admin +++ /dev/null @@ -1 +0,0 @@ -* E2e Tests now test Team Admin role \ No newline at end of file diff --git a/changes/issue-3658-orbit-allow-disable-updates b/changes/issue-3658-orbit-allow-disable-updates deleted file mode 100644 index 69f34fd49a4a..000000000000 --- a/changes/issue-3658-orbit-allow-disable-updates +++ /dev/null @@ -1 +0,0 @@ -* Add flag to `fleetctl package` and `orbit` to disable auto updates. diff --git a/changes/issue-3790-render-duplicate-errors b/changes/issue-3790-render-duplicate-errors deleted file mode 100644 index 11ab5a6911e4..000000000000 --- a/changes/issue-3790-render-duplicate-errors +++ /dev/null @@ -1 +0,0 @@ -* Creating duplicate team names, label names, user/invite email addresses renders inline errors in the UI \ No newline at end of file diff --git a/changes/issue-3855-version-warning b/changes/issue-3855-version-warning deleted file mode 100644 index 0025343af5ea..000000000000 --- a/changes/issue-3855-version-warning +++ /dev/null @@ -1 +0,0 @@ -* Print a warning when using fleetctl and the version does not match the fleet server diff --git a/changes/issue-3881-add-host-modal-advance-tab b/changes/issue-3881-add-host-modal-advance-tab deleted file mode 100644 index 0cedbe8ec00a..000000000000 --- a/changes/issue-3881-add-host-modal-advance-tab +++ /dev/null @@ -1 +0,0 @@ -* Revamp Generate installer modal to Add host modal with Advanced settings tab \ No newline at end of file diff --git a/changes/issue-3927-remove-api-only-token-expiration b/changes/issue-3927-remove-api-only-token-expiration deleted file mode 100644 index 70b83bcc000e..000000000000 --- a/changes/issue-3927-remove-api-only-token-expiration +++ /dev/null @@ -1 +0,0 @@ -* Remove expiration for API-only user tokens. diff --git a/changes/issue-3950-validate-authorization-for-run-query b/changes/issue-3950-validate-authorization-for-run-query deleted file mode 100644 index 5e85f2d448f9..000000000000 --- a/changes/issue-3950-validate-authorization-for-run-query +++ /dev/null @@ -1 +0,0 @@ -* Validate at the authorization check that user is allowed to target the specified team(s) when running a query. diff --git a/changes/issue-3966-os-version-fix b/changes/issue-3966-os-version-fix deleted file mode 100644 index f1456c091592..000000000000 --- a/changes/issue-3966-os-version-fix +++ /dev/null @@ -1 +0,0 @@ -* Fix for OS Version string when Linux distribution does not follow Symver diff --git a/changes/issue-3979-filter-hosts-targets b/changes/issue-3979-filter-hosts-targets deleted file mode 100644 index 42b3b4c586d1..000000000000 --- a/changes/issue-3979-filter-hosts-targets +++ /dev/null @@ -1 +0,0 @@ -* Make target search behave the same as host search diff --git a/changes/issue-3995-update-postinstall-launchdaemon b/changes/issue-3995-update-postinstall-launchdaemon deleted file mode 100644 index ae5243406f55..000000000000 --- a/changes/issue-3995-update-postinstall-launchdaemon +++ /dev/null @@ -1 +0,0 @@ -* Update macOS package postinstall script to use more modern `launchctl` commands. \ No newline at end of file diff --git a/changes/issue-4067-3797-enter-to-remove-delete b/changes/issue-4067-3797-enter-to-remove-delete deleted file mode 100644 index cf71ff75b891..000000000000 --- a/changes/issue-4067-3797-enter-to-remove-delete +++ /dev/null @@ -1 +0,0 @@ -* Improved UI for remove/delete modals allowing hitting enter to complete CTA \ No newline at end of file diff --git a/changes/issue-4082-host-software-0 b/changes/issue-4082-host-software-0 deleted file mode 100644 index d7b3fddf4cd9..000000000000 --- a/changes/issue-4082-host-software-0 +++ /dev/null @@ -1 +0,0 @@ -* Don't depend on lastInsertedId to gather the id of the new software diff --git a/changes/issue-4187-render-smtp-error b/changes/issue-4187-render-smtp-error deleted file mode 100644 index 4ee1901ae936..000000000000 --- a/changes/issue-4187-render-smtp-error +++ /dev/null @@ -1 +0,0 @@ -* Render more helpful SMTP error when cannot configure SMTP server \ No newline at end of file diff --git a/changes/issue-4260-global-maintainer-can-write-team-policy b/changes/issue-4260-global-maintainer-can-write-team-policy deleted file mode 100644 index 353f1e80dba5..000000000000 --- a/changes/issue-4260-global-maintainer-can-write-team-policy +++ /dev/null @@ -1 +0,0 @@ -* Grant write access to team policies to the global maintainer role. diff --git a/changes/issue-4268-list-software-hosts-count-per-team b/changes/issue-4268-list-software-hosts-count-per-team deleted file mode 100644 index 9ac6fd50152d..000000000000 --- a/changes/issue-4268-list-software-hosts-count-per-team +++ /dev/null @@ -1 +0,0 @@ -* Support filtering software hosts count per team. diff --git a/changes/issue-4304-loading-error-certificate b/changes/issue-4304-loading-error-certificate deleted file mode 100644 index 47597618a5ad..000000000000 --- a/changes/issue-4304-loading-error-certificate +++ /dev/null @@ -1 +0,0 @@ -* Fix loading / error state for retreiving Fleet certificate \ No newline at end of file diff --git a/changes/issue-4316-send-email-configured b/changes/issue-4316-send-email-configured deleted file mode 100644 index a888466eb0a5..000000000000 --- a/changes/issue-4316-send-email-configured +++ /dev/null @@ -1 +0,0 @@ -* Only send test email when changing smtp values diff --git a/changes/issue-4325-fix-masthead-avatar b/changes/issue-4325-fix-masthead-avatar deleted file mode 100644 index dd3909a6173f..000000000000 --- a/changes/issue-4325-fix-masthead-avatar +++ /dev/null @@ -1 +0,0 @@ -* Fix masthead avatar so that it shows gravatar image if set. diff --git a/changes/issue-4361-mail-change-should-error b/changes/issue-4361-mail-change-should-error deleted file mode 100644 index ea69580efa4f..000000000000 --- a/changes/issue-4361-mail-change-should-error +++ /dev/null @@ -1 +0,0 @@ -* Check if the email being changed for a user already exists before sending the request diff --git a/changes/issue-4365-sql-error-onchange b/changes/issue-4365-sql-error-onchange deleted file mode 100644 index 1e2480fa7c4f..000000000000 --- a/changes/issue-4365-sql-error-onchange +++ /dev/null @@ -1 +0,0 @@ -* Users are presented with debounced SQL errors on change for labels, queries, and policies \ No newline at end of file diff --git a/changes/issue-4408-fix-whitespace-tooltips b/changes/issue-4408-fix-whitespace-tooltips deleted file mode 100644 index 19ae37a55388..000000000000 --- a/changes/issue-4408-fix-whitespace-tooltips +++ /dev/null @@ -1 +0,0 @@ -* Fix whitespace of tooltips on form labels \ No newline at end of file diff --git a/changes/issue-4415-fix-inherited-dropdown b/changes/issue-4415-fix-inherited-dropdown deleted file mode 100644 index 5f2c68b4d13d..000000000000 --- a/changes/issue-4415-fix-inherited-dropdown +++ /dev/null @@ -1 +0,0 @@ -* Fix missing carat in inherited scheduled query dropdown \ No newline at end of file diff --git a/changes/issue-4424-kinesis-log-destination-new-lines b/changes/issue-4424-kinesis-log-destination-new-lines deleted file mode 100644 index a60a5aff015e..000000000000 --- a/changes/issue-4424-kinesis-log-destination-new-lines +++ /dev/null @@ -1 +0,0 @@ -* Update Kinesis logging plugin to append newline character to raw message bytes to properly format NDJSON for downstream consumers diff --git a/changes/issue-4457-external-docs-link-to-fleetdmcom b/changes/issue-4457-external-docs-link-to-fleetdmcom deleted file mode 100644 index fba7ef956663..000000000000 --- a/changes/issue-4457-external-docs-link-to-fleetdmcom +++ /dev/null @@ -1 +0,0 @@ -* Replace any github documentation references with fleetdm.com/docs/ \ No newline at end of file diff --git a/changes/issue-4470-global-agent-options-update b/changes/issue-4470-global-agent-options-update deleted file mode 100644 index 90b634ebd95d..000000000000 --- a/changes/issue-4470-global-agent-options-update +++ /dev/null @@ -1 +0,0 @@ -* Fix bug with global agent options overriding with difference \ No newline at end of file diff --git a/charts/fleet/Chart.yaml b/charts/fleet/Chart.yaml index 6ca76e9175d5..ef8d7f223665 100644 --- a/charts/fleet/Chart.yaml +++ b/charts/fleet/Chart.yaml @@ -4,8 +4,8 @@ name: fleet keywords: - fleet - osquery -version: v4.10.0 +version: v4.11.0 home: https://github.com/fleetdm/fleet sources: - https://github.com/fleetdm/fleet.git -appVersion: v4.10.0 +appVersion: v4.11.0 diff --git a/charts/fleet/values.yaml b/charts/fleet/values.yaml index fb1f3f3d9103..1ef1803cd486 100644 --- a/charts/fleet/values.yaml +++ b/charts/fleet/values.yaml @@ -2,7 +2,7 @@ # All settings related to how Fleet is deployed in Kubernetes hostName: fleet.localhost replicas: 3 # The number of Fleet instances to deploy -imageTag: v4.10.0 # Version of Fleet to deploy +imageTag: v4.11.0 # Version of Fleet to deploy createIngress: true # Whether or not to automatically create an Ingress ingressAnnotations: {} # Additional annotation to add to the Ingress podAnnotations: {} # Additional annotations to add to the Fleet pod diff --git a/tools/fleetctl-npm/package.json b/tools/fleetctl-npm/package.json index b5be33e5fb7c..7b8b928fb9ea 100644 --- a/tools/fleetctl-npm/package.json +++ b/tools/fleetctl-npm/package.json @@ -1,6 +1,6 @@ { "name": "fleetctl", - "version": "v4.10.0", + "version": "v4.11.0", "description": "Installer for the fleetctl CLI tool", "bin": { "fleetctl": "./run.js" diff --git a/tools/terraform/gcp/variables.tf b/tools/terraform/gcp/variables.tf index 752747eff175..3c2745ccdc9c 100644 --- a/tools/terraform/gcp/variables.tf +++ b/tools/terraform/gcp/variables.tf @@ -68,5 +68,5 @@ variable "redis_mem" { } variable "image" { - default = "fleet:v4.10.0" -} \ No newline at end of file + default = "fleet:v4.11.0" +} diff --git a/tools/terraform/variables.tf b/tools/terraform/variables.tf index 2a985abe6882..e1c400300ec7 100644 --- a/tools/terraform/variables.tf +++ b/tools/terraform/variables.tf @@ -56,7 +56,7 @@ variable "database_name" { variable "fleet_image" { description = "the name of the container image to run" - default = "fleetdm/fleet:v4.10.0" + default = "fleetdm/fleet:v4.11.0" } variable "software_inventory" {