Releases: Azure/aks-secure-tls-bootstrap
Releases · Azure/aks-secure-tls-bootstrap
client/v1.1.3
What's Changed
- feat(client): improve retry logic for standard IMDS client by @cameronmeissner in #177
- fix(client): harden existing kubeconfig validation by @cameronmeissner in #176
Full Changelog: client/v1.1.2...client/v1.1.3
Contributors
cameronmeissner
Assets 5
client/v1.1.2
What's Changed
- ci(client): support E2E testing linux/arm64 client binaries by @cameronmeissner in #173
- feat: general repository hardening and augmentation by @cameronmeissner in #174
- fix(client): add grpc.ConnectParams with Backoff override to avoid conflicting retry/backoff strategies by @cameronmeissner in #175
Full Changelog: client/v1.1.1...client/v1.1.2
Contributors
cameronmeissner
Assets 5
client/v1.1.1
What's Changed
- fix(client): remove insecure --insecure-skip-tls-verify flag and all related code by @Copilot in #169
- fix(client): restrict guest agent telemetry event file permissions from 0777 to 0600 by @Copilot in #167
- refactor(client): migrate token acquisition from go-autorest (Track 1) to azure-sdk-for-go Track 2 by @Copilot in #165
New Contributors
- @Copilot made their first contribution in #169
Full Changelog: client/v1.1.0...client/v1.1.1
client/v1.1.0
What's Changed
- refactor(client): allow specifying RPC deadlines and streamline retry logic by @cameronmeissner in #162
Full Changelog: client/v1.0.3...client/v1.1.0
Contributors
cameronmeissner
Assets 5
client/v1.0.3
What's Changed
- chore(deps): bump google.golang.org/grpc from 1.70.0 to 1.79.3 in /service by @dependabot[bot] in #159
- chore(deps): bump google.golang.org/grpc from 1.70.0 to 1.79.3 in /client by @dependabot[bot] in #158
Full Changelog: client/v1.0.2...client/v1.0.3
Contributors
dependabot
Assets 5
client/v1.0.2
What's Changed
- fix(e2e): use AzureCLI task to authenticate with Azure within E2E tests by @cameronmeissner in #157
- chore(deps): bump golang.org/x/crypto from 0.36.0 to 0.45.0 in /client by @dependabot[bot] in #155
- feat(client): add
--tls-min-versionflag and use TLSv1.3 as default minimum TLS version by @cameronmeissner in #156
Full Changelog: client/v1.0.1...client/v1.0.2
Contributors
cameronmeissner and dependabot
Assets 5
client/v1.0.1
What's Changed
- fix(client): correctly handle b64-encoded service principal certificate credential, improve retry logic by @cameronmeissner in #154
Full Changelog: client/v1.0.0...client/v1.0.1
Contributors
cameronmeissner
Assets 5
client/v1.0.0
What's Changed
- fix: typo in apiserver-fqdn flag name by @cameronmeissner in #66
- fix: correctly set server address from fqdn by @cameronmeissner in #67
- fix: ignore sync errors from zap upon exit by @cameronmeissner in #68
- chore(deps): bump golang.org/x/net from 0.20.0 to 0.23.0 in /client by @dependabot[bot] in #71
- chore(deps): bump golang.org/x/net from 0.17.0 to 0.23.0 in /service by @dependabot[bot] in #70
- feat: specify cert and key as files within kubeconfig by @cameronmeissner in #69
- chore: add error logging and explicitly set user-agent by @cameronmeissner in #72
- chore(deps): bump github.com/hashicorp/go-retryablehttp from 0.7.5 to 0.7.7 in /client by @dependabot[bot] in #74
- chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 in /client by @dependabot[bot] in #76
- chore(deps): bump golang.org/x/crypto from 0.21.0 to 0.31.0 in /client by @dependabot[bot] in #77
- fix: bumping golang/x/net for cve-2024-45338 by @djsly in #78
- chore: cleanup readme by @cameronmeissner in #79
- chore: update gitignore by @cameronmeissner in #80
- refactor: rename primary client pkg and associated types by @cameronmeissner in #73
- refactor: update proto definitions to follow best-practices by @cameronmeissner in #81
- chore: update flows by @cameronmeissner in #82
- cleanup: tests and client impls by @cameronmeissner in #83
- chore: fix coveralls by @cameronmeissner in #84
- refactor: modify proto mocks location by @cameronmeissner in #85
- chore: bump protos and grpc dependencies in client module by @cameronmeissner in #86
- refactor: split Makefiles by @cameronmeissner in #87
- refactor: use stdlib flags and add config file support by @cameronmeissner in #88
- refactor: use console and json file logger sync by @cameronmeissner in #89
- refactor(client): internalize supporting packages by @cameronmeissner in #90
- fix(client): validate config by @cameronmeissner in #91
- feat(client): http client improvements by @cameronmeissner in #92
- fix: default go build params by @cameronmeissner in #93
- feat: wrap client config with retryable http client by @cameronmeissner in #94
- feat: inject zap logger into retryablehttp client by @cameronmeissner in #95
- chore(client): cleanup unused types from datamodel by @cameronmeissner in #97
- chore(client): fix incorrect error string by @cameronmeissner in #98
- hack(client): add upload script for testing by @cameronmeissner in #96
- fix: kubeconfig validation by @cameronmeissner in #99
- refactor: use adal lib for access token generation and add support for certificate auth by @cameronmeissner in #101
- feat(service/protos): annotate unloggable fields by @cameronmeissner in #102
- chore(deps): bump golang.org/x/net from 0.33.0 to 0.38.0 in /service by @dependabot[bot] in #107
- chore(deps): bump golang.org/x/crypto from 0.31.0 to 0.35.0 in /client by @dependabot[bot] in #106
- chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 in /client by @dependabot[bot] in #105
- chore(deps): bump golang.org/x/net from 0.33.0 to 0.38.0 in /client by @dependabot[bot] in #108
- feat: improve retry logic and generate guest agent event telemetry by @cameronmeissner in #100
- refactor(hack/upload): upload as tar archive by @cameronmeissner in #110
- refactor(client): create a single credential file for the generated cert/key pair by @cameronmeissner in #111
- fix: converted CSR Ginkgo tests function to a vanilla go test function by @rmeji3 in #112
- test: cleaning up CSR tests by @cameronmeissner in #113
- test(client): cleaning up config tests by @rmeji3 in #115
- test(client): cleaning up grpc tests by @rmeji3 in #114
- test(client): cleaning up kubeconfig tests by @rmeji3 in #120
- test(client): cleaning up validator tests by @rmeji3 in #121
- test(client): cleaning up log tests by @rmeji3 in #119
- fix(client): variable typo by @rmeji3 in #123
- test(client): cleaning up imds tests by @rmeji3 in #118
- test(client): cleaning up auth tests by @rmeji3 in #117
- test(client): cleaning up client tests by @rmeji3 in #116
- test: remove Ginkgo test suites after migration by @rmeji3 in #124
- perf(client): specify maximum MSI refresh attempts to avoid expensive exponential backoff by @cameronmeissner in #126
- feat(client): augment guest agent even telemetry with traces by @cameronmeissner in #125
- chore(client/deps): bump service protos to v1.0.2 by @cameronmeissner in #128
- chore(deps): bump golang.org/x/oauth2 from 0.24.0 to 0.27.0 in /client by @dependabot[bot] in #129
- feat: add CODEOWNERS file by @cameronmeissner in #109
- fix: CODEOWNERS by @cameronmeissner in #132
- chore: refactor required workflows by @cameronmeissner in #131
- fix: increase key length in test by @zachary-bailey in #133
- fix: rename code ql file by @zachary-bailey in #134
- chore(client): cleanup README by @cameronmeissner in #137
- feat(client): tracing enhancements, add better error handling for missing userAssignedIdentityID in cloud provider config by @cameronmeissner in #138
- feat(client): store logger on the context, logging improvements for gRPC timeouts by @cameronmeissner in #139
- feat(client): replace cred-file with cert-dir, align naming of cert file with kubelet behavior by @cameronmeissner in #140
- fix(client): add WithNoProxy gRPC dial option by @cameronmeissner in #141
- refactor(client): simplify retry logic and guest agent event telemetry by @cameronmeissner in #142
- Revert "refactor(client): simplify retry logic and guest agent event telemetry (#142) by @cameronmeissner in #143
- feat(client): add e2e tests by @cameronmeissner in #146
- feat(client): setup kubelet-client-current.pem symlink for newly-generated client certificates by @cameronmeissner in #145
- refactor(client): refine retry logic + increase test coverage by @cameronmeissner in #148
- refactor(client): add required default logic for config file usage by @cameronmeissner in #150
- fix(client):...
Contributors
djsly, cameronmeissner, and 3 other contributors
Assets 5
client/v0.1.0-alpha.11
What's Changed
- fix(client): add WithNoProxy gRPC dial option by @cameronmeissner in #141
Full Changelog: client/v0.1.0-alpha.10...client/v0.1.0-alpha.11
Contributors
cameronmeissner
Assets 5
client/v0.1.0-alpha.10
What's Changed
- feat(client): store logger on the context, logging improvements for gRPC timeouts by @cameronmeissner in #139
- feat(client): replace cred-file with cert-dir, align naming of cert file with kubelet behavior by @cameronmeissner in #140
Full Changelog: client/v0.1.0-alpha.9...client/v0.1.0-alpha.10
Contributors
cameronmeissner