Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update module github.com/tektoncd/pipeline to v0.62.1 #1313

Merged
merged 1 commit into from
Aug 19, 2024
Merged

fix(deps): update module github.com/tektoncd/pipeline to v0.62.1 #1313

merged 1 commit into from
Aug 19, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 19, 2024

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
github.com/tektoncd/pipeline v0.60.1 -> v0.62.1 age adoption passing confidence

Warning

Some dependencies could not be looked up. Check the warning logs for more information.

Release Notes

tektoncd/pipeline (github.com/tektoncd/pipeline)

v0.62.1: Tekton Pipeline release v0.62.1 "Birman HAL LTS"

Compare Source

-Docs @​ v0.62.1
-Examples @​ v0.62.1

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.62.1/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a888f88120c037b3b7b9b3be97d8dd4ea1950235f44033f29dce4a1123992a3d9

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a888f88120c037b3b7b9b3be97d8dd4ea1950235f44033f29dce4a1123992a3d9
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.62.1/release.yaml
REKOR_UUID=24296fb24b8ad77a888f88120c037b3b7b9b3be97d8dd4ea1950235f44033f29dce4a1123992a3d9

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.62.1@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes
  • 🐛 [release-v0.62.x] Refine check if the result is from a matrix task (#​8167)

ixed variable substitution of results from matrix TaskRuns with cardinality of 1.

Misc
Docs

Thanks

Thanks to these contributors who contributed to v0.62.1!

Extra shout-out for awesome release notes:

v0.62.0: Tekton Pipeline release v0.62.0 "Birman HAL LTS"

Compare Source

🎉 Ignore Task Failure Promoted and native sidecars adopted with k8s 1.29 🎉

-Docs @​ v0.62.0
-Examples @​ v0.62.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.62.0/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77adbcee63512553d756997c4c7efad2e1163023bda8bd9ddecafde859fcb4ebb11

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77adbcee63512553d756997c4c7efad2e1163023bda8bd9ddecafde859fcb4ebb11
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.62.0/release.yaml
REKOR_UUID=24296fb24b8ad77adbcee63512553d756997c4c7efad2e1163023bda8bd9ddecafde859fcb4ebb11

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.62.0@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • ✨ access taskRun reason in addition to status in finally task (#​8127)

Access reason in addition to the status using $(tasks.taskName.reason)

  • ✨ Capture Remote StepAction Location in TaskRun Status (#​8106)

Capture Remote StepAction Location in TaskRun Status

  • ✨ Add isBuildArtifact field to Artifacts (#​8103)

Add isBuildArtifact field to Artifacts.

Promote Ignore Task Failure to Beta

  • ✨ feat(K8s native sidecar): Add support for Kubernetes native Sidecars (#​8052)

Introducing a feature to adopt Kubernetes-native sidecars, which designates sidecar containers as initContainers. This prevents the need to pull and replace a nop image, leading to faster termination of the sidecars without unnecessary pod errors. Set enable-kubernetes-sidecar to true for Kubernetes 1.29 and later to take advantage of this feature.

  • ✨ kind/feat: passing artifacts between tasks (#​7978)

Support passing artifacts between tasks in a pipeline

  • ✨ feat: introduce when expressions to steps (#​7746)

introduce when expressions to steps.

  • ✨ [TEP-0094] Promote taskrun.spec's stepSpecs and sidecarSpecs to beta (#​8006)
Fixes
  • 🐛 fix(pipelinerun): block pipelinerun spec updates once the pipelinerun has started (#​8149)

Fix: Once a PipelineRun is created, most of the fields in the spec is not allowed to be updated; only status can be updated.

  • 🐛 fix(taskrun): block taskrun spec updates once the taskrun has started (#​8147)

Fix: Once a TaskRun is created, most of the fields in the spec is not allowed to be updated; only status and statusMessage can be updated.

  • 🐛 DryRunValidate returns the mutated object (#​8108)

DryRunValidate returns the mutated object

  • 🐛 Fix step action force replacing with default param (#​8102)

Fix incorrect param type passed to stepaction makes it use default value

  • 🐛 Perform matrix results validation on only result ref params (#​8089)

Perform matrix results validation on only result ref params

  • 🐛 Fix error message when a PipelineRun param is missing (#​8072)

Improved error string when a param is missing from a PipelineRun

  • 🐛 fix:when debug.breakpoints.onFailure is an empty string, redundant volumes appear (#​7788)

debug.breakpoints.onFailure is not allowed to be set to an empty string.

Misc
  • 🔨 Switch the image from docker.io to gcr mirror (#​8146)
  • 🔨 Bump github/codeql-action from 3.25.12 to 3.25.13 (#​8144)
  • 🔨 Bump step-security/harden-runner from 2.8.1 to 2.9.0 (#​8143)
  • 🔨 Bump the all group in /tekton with 2 updates (#​8142)
  • 🔨 Bump github.com/containerd/containerd from 1.7.18 to 1.7.20 (#​8139)
  • 🔨 Bump k8s.io/client-go from 0.27.15 to 0.27.16 in /test/custom-task-ctrls/wait-task-beta (#​8138)
  • 🔨 Bump k8s.io/code-generator from 0.29.6 to 0.29.7 (#​8137)
  • 🔨 Bump tekton-releases/dogfooding/koparse from e6641f2 to 0535413 in /tekton in the all group across 1 directory (#​8135)
  • 🔨 Bump the all group across 1 directory with 4 updates (#​8134)
  • 🔨 use tagged images to take advantage of the least expensive default image pull policy (#​8133)
  • 🔨 Bump k8s.io/api from 0.27.15 to 0.27.16 in /test/custom-task-ctrls/wait-task-beta (#​8132)
  • 🔨 Bump k8s.io/apimachinery from 0.29.6 to 0.29.7 (#​8131)
  • 🔨 Bump actions/dependency-review-action from 4.3.3 to 4.3.4 (#​8125)
  • 🔨 Bump github/codeql-action from 3.25.11 to 3.25.12 (#​8124)
  • 🔨 Bump actions/upload-artifact from 4.3.3 to 4.3.4 (#​8104)
  • 🔨 Released patch release: v0.59.2 (#​8098)
  • 🔨 Bump go.opentelemetry.io/otel from 1.27.0 to 1.28.0 (#​8092)
  • 🔨 Bump the all group in /tekton with 4 updates (#​8087)
  • 🔨 Bump github/codeql-action from 3.25.10 to 3.25.11 (#​8085)
  • 🔨 chore: remove unsupported configurations ScopeWhenExpressionsToTask (#​8078)
  • 🔨 Create release v0.61.0. (#​8077)
  • 🔨 Bump the all group in /tekton with 4 updates (#​8075)
  • 🔨 Bump tj-actions/changed-files from 44.5.2 to 44.5.5 (#​8074)
  • 🔨 Bump github.com/spiffe/spire-api-sdk from 1.9.6 to 1.10.0 (#​8073)
  • 🔨 Using image with "full" reference in tests (#​8070)
  • 🔨 Bump github.com/jenkins-x/go-scm from 1.14.34 to 1.14.37 (#​8032)
  • 🔨 Correct error message to differentiate the cause (#​8027)
Docs
  • 📖 Update min kubernetes version in the install doc (#​8122)
  • 📖 document failureIgnored (#​8111)
  • 📖 update the doc since the onError is now promoted (#​8109)

Thanks

Thanks to these contributors who contributed to v0.62.0!

Extra shout-out for awesome release notes:

v0.61.1: Tekton Pipeline release v0.61.1 "Ragdoll Data"

Compare Source

-Docs @​ v0.61.1
-Examples @​ v0.61.1

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.1/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a7bf5b4e52e97f499e0dc71aed47d629395ba503bbc0cf8a16d8b49169d2db2f5

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a7bf5b4e52e97f499e0dc71aed47d629395ba503bbc0cf8a16d8b49169d2db2f5
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.1/release.yaml
REKOR_UUID=24296fb24b8ad77a7bf5b4e52e97f499e0dc71aed47d629395ba503bbc0cf8a16d8b49169d2db2f5

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.61.1@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes
  • 🐛 [release-v0.61.x] Handle error conditions in CheckMissingResultReferences (#​8105)

mproved error handling for some invalid result reference scenarios.

Misc
Docs

Thanks

Thanks to these contributors who contributed to v0.61.1!

Extra shout-out for awesome release notes:

v0.61.0: Tekton Pipeline release v0.61.0 "Ragdoll Data"

Compare Source

-Docs @​ v0.61.0
-Examples @​ v0.61.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.0/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.61.0/release.yaml
REKOR_UUID=24296fb24b8ad77a68cb504006aa006da7ebfef6d88e038545d3f4c2d314ba34f3c1d8a57dab26a8

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.61.0@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

  • ✨ Promote Larger Results via Sidecar Logs to Beta (#​8043)

Promote Larger Results via Sidecar Logs to Beta

  • ✨ Add a flag on controllers to configure resyncPeriod (#​8023)

Binary file (standard input) matches

Fixes
  • 🐛 Cleanup resolved object before validating through dry-run (#​8051)

Cleanup resolved object before attempting to validate it through api dry-run call

  • 🐛 fix: resolve issue where results may not be obtained from sidecar logs (#​8029)

fix: resolve issue where results may not be obtained from sidecar logs

  • 🐛 Fix Validation Error Merging StepTemplates with StepRef (#​7982)

Fix Validation Error Merging StepTemplates with Step's Ref

  • 🐛 Bundle resolver can use ServiceAccount for auth (#​7969)

Fix bundle resolver so it could pull OCI image (bundle) manifest from AWS ECR private registry

  • 🐛 Fix: Example Test point to Catalog StepAction (#​8044)
Misc
  • 🔨 Remove taskref/pipelineref deprecated bundle field (#​7789)

taskRef.bundle and pipelineRef.bundle are now removed from v1beta1 API version, as they were deprecated for about a year and half. Using them will result in a error when creating an object.

action required: make sure you migrate from taskRef.bundle and pipelineRef.bundle to the bundle resolver (see https://tekton.dev/docs/pipelines/migrating-v1beta1-to-v1/#replacing-taskrefbundle-and-pipelinerefbundle-with-bundle-resolver-a-idreplacing-taskrefbundle-and-pipelinerefbundle-with-bundle-resolver-a)

  • 🔨 Bump to go 1.22 and fixes (#​8035)

ektoncd/pipeline now requires go 1.22 to be built

  • 🔨 Update knative/pkg to release-1.14 (#​7989)

he minimum Kubernetes version supported by Tekton is now 1.28.

  • 🔨 Bump k8s.io/code-generator from 0.29.2 to 0.29.6 (#​8067)
  • 🔨 Bump k8s.io/client-go from 0.29.2 to 0.29.6 (#​8066)
  • 🔨 Bump github/codeql-action from 3.25.8 to 3.25.10 (#​8061)
  • 🔨 Bump actions/checkout from 4.1.6 to 4.1.7 (#​8060)
  • 🔨 Bump github.com/spiffe/go-spiffe/v2 from 2.2.0 to 2.3.0 (#​8059)
  • 🔨 Bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 (#​8058)
  • 🔨 Bump the all group in /tekton with 4 updates (#​8057)
  • 🔨 Bump k8s.io/client-go from 0.27.14 to 0.27.15 in /test/custom-task-ctrls/wait-task-beta (#​8049)
  • 🔨 Bump k8s.io/apimachinery from 0.27.14 to 0.27.15 in /test/custom-task-ctrls/wait-task-beta (#​8048)
  • 🔨 Remove bobcatfish and lbernick from OWNERS 😿 (#​8047)
  • 🔨 Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 (#​8046)
  • 🔨 Tests before promoting LargerResults via Sidecarlogs to Beta (#​8041)
  • 🔨 Bump the all group across 1 directory with 4 updates (#​8040)
  • 🔨 Bump actions/dependency-review-action from 4.3.2 to 4.3.3 (#​8039)
  • 🔨 Bump github/codeql-action from 3.25.7 to 3.25.8 (#​8038)
  • 🔨 Bump step-security/harden-runner from 2.8.0 to 2.8.1 (#​8037)
  • 🔨 Bump github.com/golangci/golangci-lint from 1.59.0 to 1.59.1 in /tools (#​8036)
  • 🔨 README.md: fix Kubernetes min version (#​8030)
  • 🔨 Bump github.com/containerd/containerd from 1.7.17 to 1.7.18 (#​8026)
  • 🔨 Bump tj-actions/changed-files from 44.5.1 to 44.5.2 (#​8014)
  • 🔨 Bump actions/dependency-review-action from 2.5.1 to 4.3.2 (#​8013)
  • 🔨 Bump step-security/harden-runner from 2.7.0 to 2.8.0 (#​8012)
  • 🔨 Bump github/codeql-action from 3.25.6 to 3.25.7 (#​8011)
  • 🔨 Bump actions/checkout from 3.6.0 to 4.1.6 (#​8010)
  • 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/azure from 1.8.3 to 1.8.4 (#​8007)
  • 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/gcp from 1.8.3 to 1.8.4 (#​8001)
  • 🔨 Bump github.com/sigstore/sigstore from 1.8.3 to 1.8.4 (#​8000)
  • 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/hashivault from 1.8.3 to 1.8.4 (#​7999)
  • 🔨 Bump github.com/sigstore/sigstore/pkg/signature/kms/aws from 1.8.3 to 1.8.4 (#​7998)
  • 🔨 Bump the all group across 1 directory with 4 updates (#​7995)
  • 🔨 Bump step-security/harden-runner from 2.7.1 to 2.8.0 (#​7993)
  • 🔨 Bump tj-actions/changed-files from 44.4.0 to 44.5.1 (#​7992)
  • 🔨 Bump github.com/golangci/golangci-lint from 1.58.2 to 1.59.0 in /tools (#​7991)
  • 🔨 Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#​7985)
  • 🔨 Update releases.md for v0.60 (#​7976)
  • 🔨 TEP0152 - Complete V1 conformance test suite (#​7913)
  • 🔨 .github/workflows: add a dependency-review workflow (#​7846)
Docs
  • 📖 Document that task results are not enforced (#​8053)
  • 📖 Fix the document: Task Level Comp Res is beta (#​8004)
  • 📖 Patch release v0.60.1 (#​7997)

Thanks

Thanks to these contributors who contributed to v0.61.0!

Extra shout-out for awesome release notes:

v0.60.2: Tekton Pipeline release v0.60.2 "Chinchilla Tobor"

Compare Source

-Docs @​ v0.60.2
-Examples @​ v0.60.2

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.60.2/release.yaml

Attestation

The Rekor UUID for this release is 24296fb24b8ad77a1b1da05e47cee68581daf1cd5823facc5b59b76edaf9ce986efe5c68bd1a4cbe

Obtain the attestation:

REKOR_UUID=24296fb24b8ad77a1b1da05e47cee68581daf1cd5823facc5b59b76edaf9ce986efe5c68bd1a4cbe
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.60.2/release.yaml
REKOR_UUID=24296fb24b8ad77a1b1da05e47cee68581daf1cd5823facc5b59b76edaf9ce986efe5c68bd1a4cbe

### Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.60.2@​sha256:" + .digest.sha256')

### Download the release file
curl "$RELEASE_FILE" > release.yaml

### For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

Fixes
  • 🐛 [release-v0.60.x] Fix: Identify workspace usage in a Task (#​8021)
Misc
Docs

Thanks

Thanks to these contributors who contributed to v0.60.2!

Extra shout-out for awesome release notes:

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Aug 19, 2024

ℹ Artifact update notice

File name: ta-generator/go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 2 additional dependencies were updated

Details:

Package Change
github.com/klauspost/compress v1.16.6 -> v1.16.7
google.golang.org/protobuf v1.34.1 -> v1.34.2

@tnevrlka tnevrlka added this pull request to the merge queue Aug 19, 2024
Merged via the queue into main with commit 905dd09 Aug 19, 2024
13 checks passed
@renovate renovate bot deleted the renovate/github.com-tektoncd-pipeline-0.x branch August 19, 2024 11:58
@rh-tap-build-team rh-tap-build-team bot mentioned this pull request Aug 19, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tnevrlka tnevrlka tnevrlka approved these changes

@taylormadore taylormadore Awaiting requested review from taylormadore

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@tnevrlka