Releases: tektoncd/pipeline
Tekton Pipeline release v0.53.5 "Munchkin Maschinenmensch"
-Docs @ v0.53.5
-Examples @ v0.53.5
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.5/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77a9d50edf817e79b97e161157785b92ff8000bf03e6a52970312def3c7a407be06
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77a9d50edf817e79b97e161157785b92ff8000bf03e6a52970312def3c7a407be06
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.5/release.yaml
REKOR_UUID=24296fb24b8ad77a9d50edf817e79b97e161157785b92ff8000bf03e6a52970312def3c7a407be06
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.53.5@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
Fixes
- π [release-v0.53.x] Remove conversion configuration for
ClusterTask
(#7797)
Remove conversion webhook configuration from the ClusterTask CRD, it doesn't need it.
Misc
Docs
Thanks
Thanks to these contributors who contributed to v0.53.5!
- β€οΈ @tekton-robot
Extra shout-out for awesome release notes:
- π @tekton-robot
Tekton Pipeline release v0.47.7 "Chartreux Rachael"
-Docs @ v0.47.7
-Examples @ v0.47.7
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.47.7/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77aec77ad419d1de1867a08ec105634b5ff541aad517abfb411bac62f6f26340f07
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77aec77ad419d1de1867a08ec105634b5ff541aad517abfb411bac62f6f26340f07
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.47.7/release.yaml
REKOR_UUID=24296fb24b8ad77aec77ad419d1de1867a08ec105634b5ff541aad517abfb411bac62f6f26340f07
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.47.7@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
Fixes
- π [release-v0.47.x] Remove conversion configuration for (#7799)
emove conversion webhook configuration from the ClusterTask CRD, it doesn't need it.
Misc
Docs
Thanks
Thanks to these contributors who contributed to v0.47.7!
- β€οΈ @tekton-robot
Extra shout-out for awesome release notes:
- π @tekton-robot
Tekton Pipeline release v0.58.0 "Bombay Robbie"
π displayName
in childReferences
and dynamic specifications of secrets
and configmaps
in workspaces
π
-Docs @ v0.58.0
-Examples @ v0.58.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.58.0/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77ad32de0077ddf3d746f9072f2d536cec99e2add11d56d964943ea86f5265aec54
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77ad32de0077ddf3d746f9072f2d536cec99e2add11d56d964943ea86f5265aec54
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.58.0/release.yaml
REKOR_UUID=24296fb24b8ad77ad32de0077ddf3d746f9072f2d536cec99e2add11d56d964943ea86f5265aec54
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.58.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- β¨ TEP-0147: introduce feature flag to guard artifacts feature (#7705)
Introduces a feature flag enable-artifacts.
- β¨ TEP 0147: add inputs/outputs to stepState (#7703)
introduce inputs/outputs to stepState for future artifacts work
- β¨ implementing TEP-0150 - in (#7683)
A fully resolved displayName is now available in childReferences along with the pipelineTaskName. This is mainly beneficial to parameterize and easily distinguish matrix instances of the task.
- β¨ feat: support for variable interpolation in workspace.* (in PipelineRun and TaskRun) (#7671)
feat: support for variable interpolation in workspace.* (in PipelineRun and TaskRun)
Fixes
- π fix: avoid panic when used pipelineRef or pipelineSpec in pipeline task (#7722)
fix: avoid panic when used pipelineRef or pipelineSpec in pipeline task
- π fix: pipeline execution status test case index error (#7742)
- π Migrate jaeger to otel API (#7547)
Misc
- π¨ chore(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 (#7774)
- π¨ chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 (#7773)
- π¨ chore(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (#7772)
- π¨ chore(deps): bump tj-actions/changed-files from 42.1.0 to 43.0.0 (#7771)
- π¨ chore(deps): bump github.com/containerd/containerd from 1.7.13 to 1.7.14 (#7770)
- π¨ chore(deps): bump github/codeql-action from 3.24.6 to 3.24.8 (#7769)
- π¨ chore(deps): bump actions/checkout from 4.1.1 to 4.1.2 (#7768)
- π¨ chore(deps): bump k8s.io/api from 0.27.11 to 0.27.12 in /test/custom-task-ctrls/wait-task-beta (#7767)
- π¨ chore(deps): bump tj-actions/changed-files from 42.0.5 to 42.1.0 (#7747)
- π¨ chore(deps): bump github/codeql-action from 3.24.5 to 3.24.6 (#7735)
- π¨ chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws from 1.8.1 to 1.8.2 (#7727)
- π¨ chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/hashivault from 1.8.1 to 1.8.2 (#7723)
- π¨ chore(deps): bump github/codeql-action from 3.24.3 to 3.24.5 (#7719)
- π¨ chore(deps): bump tj-actions/changed-files from 42.0.4 to 42.0.5 (#7718)
- π¨ chore(deps): bump github.com/spiffe/spire-api-sdk from 1.8.7 to 1.9.0 (#7712)
- π¨ chore(deps): bump go.opentelemetry.io/otel/sdk from 1.23.1 to 1.24.0 (#7710)
- π¨ chore(deps): bump go.opentelemetry.io/otel from 1.23.1 to 1.24.0 (#7709)
- π¨ chore(deps): bump google.golang.org/grpc from 1.61.1 to 1.62.0 (#7702)
- π¨ chore(deps): bump go.uber.org/zap from 1.26.0 to 1.27.0 (#7696)
- π¨ chore(deps): bump github.com/cloudevents/sdk-go/v2 from 2.14.0 to 2.15.1 (#7695)
- π¨ chore(deps): bump github.com/golangci/golangci-lint from 1.56.1 to 1.56.2 in /tools (#7676)
- π¨ fix: reduce warnings caused by woke scan results (#7558)
- π¨ Bump github.com/docker/docker from 24.0.0+incompatible to 24.0.7+incompatible (#7526)
Docs
- π [TEP-0129] Move CRDs definition and update multi-tenancy docs accordingly (#7598)
Document simple installation instructions for a Tekton multi-tenancy setup.
- π docs: changing the variable camel cases (#7701)
- π fix:add missing documentation link (#7697)
- π Fix link to CEL in WhenExpression docs (#7692)
- π Fix typo in additional configs doc (#7689)
- π Add release v0.57.0 to the list of releases (#7687)
- π Add feature flags recording demo for developer guide (#7662)
- π docs: optimize examples for propagating results (#7554)
Thanks
Thanks to these contributors who contributed to v0.58.0!
- β€οΈ @AlanGreene
- β€οΈ @JeromeJu
- β€οΈ @afrittoli
- β€οΈ @cugykw
- β€οΈ @dependabot[bot]
- β€οΈ @ericzzzzzzz
- β€οΈ @katmutua
- β€οΈ @kmjayadeep
- β€οΈ @l-qing
- β€οΈ @pritidesai
- β€οΈ @vdemeester
Extra shout-out for awesome release notes:
- π @afrittoli
- π @ericzzzzzzz
- π @l-qing
- π @pritidesai
Tekton Pipeline release v0.56.2 "Persian Terminator"
-Docs @ v0.56.2
-Examples @ v0.56.2
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.2/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77a945b36a68c366cf57e421e1d269cb1cdd9b7efcfce4a1fcc9c4dfa0833912646
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77a945b36a68c366cf57e421e1d269cb1cdd9b7efcfce4a1fcc9c4dfa0833912646
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.2/release.yaml
REKOR_UUID=24296fb24b8ad77a945b36a68c366cf57e421e1d269cb1cdd9b7efcfce4a1fcc9c4dfa0833912646
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.56.2@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- β¨ [release-v0.56.x] Allow for the specified duration (#7678)
onfigure default-imagepullbackoff-timeout to allow imagePullBackOff to retry and wait for the specified duration before failing the pipeline.
Fixes
- π [release-v0.56.x] fix: avoid panic when used pipelineRef or pipelineSpec in pipeline task (#7733)
ix: avoid panic when used pipelineRef or pipelineSpec in pipeline task
Misc
Docs
Thanks
Thanks to these contributors who contributed to v0.56.2!
- β€οΈ @l-qing
- β€οΈ @pritidesai
- β€οΈ @tekton-robot
Extra shout-out for awesome release notes:
- π @l-qing
- π @pritidesai
- π @tekton-robot
Tekton Pipeline release v0.53.4 "Munchkin Maschinenmensch"
-Docs @ v0.53.4
-Examples @ v0.53.4
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.4/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77aad9dedd9e0cad28c97e14d3e1ac5b0a41089a1a91534321af5585f876bb41074
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77aad9dedd9e0cad28c97e14d3e1ac5b0a41089a1a91534321af5585f876bb41074
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.53.4/release.yaml
REKOR_UUID=24296fb24b8ad77aad9dedd9e0cad28c97e14d3e1ac5b0a41089a1a91534321af5585f876bb41074
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.53.4@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- β¨ [release-v0.53.x] wait for a given duration in case of imagePullBackOff (#7677)
Configure default-imagepullbackoff-timeout to allow imagePullBackOff to retry and wait for the specified duration before failing the pipeline.
Fixes
- π [release-v0.53.x] fix: avoid panic when used pipelineRef or pipelineSpec in pipeline task (#7734)
ix: avoid panic when used pipelineRef or pipelineSpec in pipeline task
- π [release-v0.53.x] fix: ensure clustertask annotations are synced to taskrun (#7655)
ix: ensure ClusterTask
annotations and labels are synced to TaskRun
Misc
Docs
Thanks
Thanks to these contributors who contributed to v0.53.4!
- β€οΈ @l-qing
- β€οΈ @pritidesai
- β€οΈ @tekton-robot
Extra shout-out for awesome release notes:
- π @l-qing
- π @pritidesai
- π @tekton-robot
Tekton Pipeline release v0.57.0 "Burmilla Baymax"
-Docs @ v0.57.0
-Examples @ v0.57.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.57.0/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77add7b0a9a7946185efd5c044009544db4ec1a3799c4b6a95285f979f1fd78cc75
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77add7b0a9a7946185efd5c044009544db4ec1a3799c4b6a95285f979f1fd78cc75
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.57.0/release.yaml
REKOR_UUID=24296fb24b8ad77add7b0a9a7946185efd5c044009544db4ec1a3799c4b6a95285f979f1fd78cc75
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.57.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- β¨ Allow for the specified duration (#7666)
Configure default-imagepullbackoff-timeout to allow imagePullBackOff to retry and wait for the specified duration before failing the pipeline.
- β¨ Add granular termination reason in container termination message (#7565)
Steps in a TaskRun will have more granular termination reasons indicating what exactly happened in new terminationReason field: Completed, Continued, Error, TimeoutExceeded, Skipped, TaskRunCancelled
Fixes
- π fix(pipeline): correct warning path for duplicate param name in pipeline tasks (#7651)
fix: correct warning path for duplicate param name in pipeline tasks
- π The field in Final Task cannot parse ordinary Task status information. (#7637)
The status of the referenced ordinary task is replaced before calculating the final task when.cel
.
- π fix: prevent modification of annotations on completed TaskRuns (#7603)
fix: the pipeline controller will no longer modify any annotation it has set on completed pipelineruns
- π allow pipeline runs whose task/custom runs have been deleted still timeout (#7557)
PipelineRuns that timeout will no longer be blocked on reaching a terminal, cancelled state if their underlying TaskRuns or CustomRuns were deleted beforehand.
- π update docker-in-docker testimage for s390x (#7652)
Misc
- π¨ Update releases.md (#7587)
Created v0.56 LTS release.
- π¨ matrix name updated to end with the instance count (#7563)
taskRun names updated to end with the instance count for all fan out instances of matrix.
- π¨ Isolate new env nightly feature flag test (#7686)
- π¨ chore(deps): bump github/codeql-action from 3.24.0 to 3.24.3 (#7685)
- π¨ chore(deps): bump tj-actions/changed-files from 42.0.2 to 42.0.4 (#7684)
- π¨ chore(deps): bump github.com/opencontainers/image-spec from 1.1.0-rc6 to 1.1.0 (#7682)
- π¨ chore(deps): bump github.com/google/cel-go from 0.19.0 to 0.20.0 (#7681)
- π¨ chore(deps): bump k8s.io/client-go from 0.27.8 to 0.27.11 in /test/custom-task-ctrls/wait-task-beta (#7673)
- π¨ chore(deps): bump google.golang.org/grpc from 1.61.0 to 1.61.1 (#7670)
- π¨ Patch Release v0.56.1 (#7665)
- π¨ Patch Release v0.56.1 (#7663)
- π¨ chore(deps): bump go.opentelemetry.io/otel/sdk from 1.22.0 to 1.23.1 (#7659)
- π¨ chore(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 (#7658)
- π¨ Update e2e-test script for per-feature flag test (#7657)
- π¨ Fix typo in publish task (#7648)
- π¨ Bump github.com/golangci/golangci-lint from 1.55.1 to 1.56.1 in /tools (#7646)
- π¨ Bump go.opentelemetry.io/otel from 1.22.0 to 1.23.1 (#7645)
- π¨ Bump github.com/opencontainers/image-spec from 1.1.0-rc3 to 1.1.0-rc6 (#7635)
- π¨ Bump github/codeql-action from 3.23.1 to 3.24.0 (#7634)
- π¨ TEP-0138 New features to use Per-feature flag struct (#7633)
- π¨ Bump github.com/containerd/containerd from 1.6.19 to 1.7.13 (#7628)
- π¨ Per-feature Flag Test Suite (#7627)
- π¨ Bump github.com/google/go-containerregistry from 0.18.0 to 0.19.0 (#7624)
- π¨ Bump tj-actions/changed-files from 42.0.0 to 42.0.2 (#7622)
- π¨ Bump actions/upload-artifact from 4.2.0 to 4.3.0 (#7620)
- π¨ Bump github.com/google/go-containerregistry from 0.17.0 to 0.18.0 (#7616)
- π¨ Bump google.golang.org/grpc from 1.60.1 to 1.61.0 (#7612)
- π¨ Bump github.com/google/uuid from 1.5.0 to 1.6.0 (#7611)
- π¨ Bump github.com/opencontainers/image-spec from 1.1.0-rc3 to 1.1.0-rc.6 (#7610)
- π¨ Bump github.com/containerd/containerd from 1.6.19 to 1.7.12 (#7609)
- π¨ Bump go.opentelemetry.io/otel/sdk from 1.21.0 to 1.22.0 (#7606)
- π¨ Bump github.com/jenkins-x/go-scm from 1.14.25 to 1.14.26 (#7605)
- π¨ Bump github.com/opencontainers/image-spec from 1.1.0-rc5 to 1.1.0-rc.6 (#7604)
- π¨ Bump code.gitea.io/sdk/gitea from 0.16.0 to 0.17.1 (#7597)
- π¨ Bump github.com/containerd/containerd from 1.7.11 to 1.7.12 (#7596)
- π¨ Bump github.com/google/cel-go from 0.18.1 to 0.19.0 (#7594)
- π¨ Bump tj-actions/changed-files from 41.1.1 to 42.0.0 (#7593)
- π¨ Bump github/codeql-action from 3.23.0 to 3.23.1 (#7592)
- π¨ Bump actions/upload-artifact from 4.1.0 to 4.2.0 (#7591)
- π¨ Bump go.opentelemetry.io/otel from 1.21.0 to 1.22.0 (#7586)
- π¨ Bump github.com/jenkins-x/go-scm from 1.14.24 to 1.14.25 (#7585)
- π¨ Bump github.com/spiffe/go-spiffe/v2 from 2.1.5 to 2.1.7 (#7584)
- π¨ Bump github.com/google/go-containerregistry from 0.17.0 to 0.18.0 (#7583)
- π¨ Bump github.com/go-git/go-git/v5 from 5.10.0 to 5.11.0 (#7582)
- π¨ Error sweep: fix error messages for timing out Runs (#7572)
- π¨ Label user error for failed TaskRunStatus message (#7543)
- π¨ Add pre-commit rules (#7367)
Docs
- π Pipeline v0.44.x LTS End of Life (#7613)
Release v0.44 LTS is EOL
Thanks
Thanks to these contributors who contributed to v0.57.0!
- β€οΈ @AlanGreene
- β€οΈ @Basavaraju-G
- β€οΈ @JeromeJu
- β€οΈ @afrittoli
- β€οΈ @chitrangpatel
- β€οΈ @cugykw
- β€οΈ @dependabot[bot]
- β€οΈ @gabemontero
- β€οΈ @l-qing
- β€οΈ @pritidesai
- β€οΈ @renzodavid9
- β€οΈ @roman-kiselenko
Extra shout-out for awesome release notes:
- π @afrittoli
- π @chitrangpatel
- π @cugykw
- π @gabemontero
- π @l-qing
- π @pritidesai
- π @renzodavid9
Tekton Pipeline release v0.56.1 "Persian Terminator"
-Docs @ v0.56.1
-Examples @ v0.56.1
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.1/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77ad1e4c68a476e6b180257b4a6715315a2d40370f46ce4f36ce311c893d7bef2ba
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77ad1e4c68a476e6b180257b4a6715315a2d40370f46ce4f36ce311c893d7bef2ba
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.1/release.yaml
REKOR_UUID=24296fb24b8ad77ad1e4c68a476e6b180257b4a6715315a2d40370f46ce4f36ce311c893d7bef2ba
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.56.1@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
Fixes
- π [release-v0.56.x] The field in Final Task cannot parse ordinary Task status information. (#7661)
he status of the referenced ordinary task is replaced before calculating the final task when.cel
.
- π [release-v0.56.x] fix(pipeline): correct warning path for duplicate param name in pipeline tasks (#7660)
ix: correct warning path for duplicate param name in pipeline tasks
- π [release-v0.56.x] fix: ensure clustertask annotations are synced to taskrun (#7654)
ix: ensure ClusterTask
annotations and labels are synced to TaskRun
- π [release-v0.56.x] do not allow negative requeue times (#7638)
ipelineRuns and TaskRuns that disable timeouts will no longer experience rapid requeue reconciliations
- π [release-v0.56.x] Exclude stopped injected sidecars from TaskRun status (#7653)
Misc
Docs
Thanks
Thanks to these contributors who contributed to v0.56.1!
- β€οΈ @tekton-robot
Extra shout-out for awesome release notes:
- π @tekton-robot
Tekton Pipeline release v0.56.0 "Persian Terminator LTS"
-Docs @ v0.56.0
-Examples @ v0.56.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.0/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77a0c94b8ccf25fa815c6b01ab90941b17a37373885d8f62efc99b17eea417bed4d
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77a0c94b8ccf25fa815c6b01ab90941b17a37373885d8f62efc99b17eea417bed4d
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.56.0/release.yaml
REKOR_UUID=24296fb24b8ad77a0c94b8ccf25fa815c6b01ab90941b17a37373885d8f62efc99b17eea417bed4d
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.56.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- β¨ Support overriding the SCM type and server URL (#7450)
User are now able to override the global server URL when using the git resolver to allow fetching from multiple git providers. - β¨ TEP-0142: Introduce WorkingDir in StepActions (#7461)
- β¨ TEP-0075(object params and results) promoted to stable (#7544)
TEP-0075 promoted to stable - object params and results is now possible with enable-api-fields set to stable. - β¨ kind/feature : populate-params-and-results-to-workspace-bindings (#7503)
- β¨ TEP-0142: Passing StepResults between Steps (#7458)
Enable passingStepResults
betweenSteps
in a `Task. - β¨ param substitutions not allowed in StepAction's script (#7459)
Param substitutions not allowed directly in StepAction's script
Fixes
- π fix: ensure global podTemplate configuration is merged correctly (#7552)
Merge the env
and volumes
from the podTemplate in the pipelineRun or TaskRun with the global defaults, instead of only considering the specified in the Run's.
- π Add back conversion for TaskRunStatus Resources (#7507)
restore conversion functions from taskRun and taskRunStatus resources for backwards compatibility
- π add default resource requirements to init-containers and containers of a pod (#7003)
[Bug fix]: takes default values of a resource requirements from a config map and updates to a init-container and container resource requirements value, if the value is not present
- π kind/bug allowExecution evaluation for when expression returns early when CEL is defined (#7569)
- π Fix broken import of go.opentelemetry.io/otel to v1.21.0 (#7465)
Misc
- π¨ Label for failure PipelineRun Status Message (#7475)
user error attributions can now be seen via PipelineRunStatus condition messages
- π¨ Error sweep: correct InvalidPipelineResultReference failure reason (#7459)
- π¨ Bump github.com/sigstore/sigstore from 1.7.5 to 1.8.1 (#7575)
- π¨ Bump github.com/spiffe/spire-api-sdk from 1.8.5 to 1.8.7 (#7570)
- π¨ Bump tj-actions/changed-files from 41.0.1 to 41.1.1 (#7567)
- π¨ Bump actions/upload-artifact from 4.0.0 to 4.1.0 (#7566)
- π¨ Bump github/codeql-action from 3.22.12 to 3.23.0 (#7548)
- π¨ Bump actions/checkout from 3.1.0 to 4.1.1 (#7537)
- π¨ Bump ossf/scorecard-action from 2.1.2 to 2.3.1 (#7536)
- π¨ Bump tj-actions/changed-files from 40.2.3 to 41.0.1 (#7535)
- π¨ Bump actions/upload-artifact from 3.1.0 to 4.0.0 (#7534)
- π¨ Bump github/codeql-action from 2.2.4 to 3.22.12 (#7533)
- π¨ Bump github.com/containerd/containerd from 1.7.8 to 1.7.11 (#7529)
- π¨ Bump golang.org/x/crypto from 0.16.0 to 0.17.0 (#7527)
- π¨ Hardened GitHub workflows a little bit (#7524)
- π¨ Bump k8s.io/api from 0.27.8 to 0.27.9 in /test/custom-task-ctrls/wait-task-beta (#7518)
- π¨ Bump github.com/jenkins-x/go-scm from 1.14.20 to 1.14.24 (#7515)
- π¨ Bump google.golang.org/grpc from 1.59.0 to 1.60.1 (#7506)
- π¨ Bump github.com/google/go-containerregistry from 0.16.1 to 0.17.0 (#7462)
Docs
Thanks
Thanks to these contributors who contributed to v0.56.0!
- β€οΈ @JeromeJu
- β€οΈ @Yongxuanzhang
- β€οΈ @chitrangpatel
- β€οΈ @dependabot[bot]
- β€οΈ @ericzzzzzzz
- β€οΈ @jkandasa
- β€οΈ @l-qing
- β€οΈ @vdemeester
Extra shout-out for awesome release notes:
- π @JeromeJu
- π @Yongxuanzhang
- π @chitrangpatel
- π @ericzzzzzzz
- π @jkandasa
- π @l-qing
Tekton Pipeline release v0.47.6 "Chartreux Rachael"
-Docs @ v0.47.6
-Examples @ v0.47.6
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.47.6/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77a62ebb1cced6d37e04f6bce5a7736fcb8c2cf92c823122b72fa8c812ca90bb7b0
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77a62ebb1cced6d37e04f6bce5a7736fcb8c2cf92c823122b72fa8c812ca90bb7b0
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.47.6/release.yaml
REKOR_UUID=24296fb24b8ad77a62ebb1cced6d37e04f6bce5a7736fcb8c2cf92c823122b72fa8c812ca90bb7b0
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.47.6@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
Fixes
- π [release-v0.47.x] don't return validation error when final tasks failed/skipped (#7487)
Misc
Docs
Thanks
Thanks to these contributors who contributed to v0.47.6!
- β€οΈ @vdemeester
Extra shout-out for awesome release notes:
Tekton Pipeline release v0.55.0 "Bambino Alojzy GΔ bka"
π PipelineTask.OnError and bugfixes π
-Docs @ v0.55.0
-Examples @ v0.55.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.55.0/release.yaml
Attestation
The Rekor UUID for this release is 24296fb24b8ad77acf6e7f5cf38da4c2178e88e08bc2f291dc52b756371a21d349ca985bd125ace9
Obtain the attestation:
REKOR_UUID=24296fb24b8ad77acf6e7f5cf38da4c2178e88e08bc2f291dc52b756371a21d349ca985bd125ace9
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .
Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v0.55.0/release.yaml
REKOR_UUID=24296fb24b8ad77acf6e7f5cf38da4c2178e88e08bc2f291dc52b756371a21d349ca985bd125ace9
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.55.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done
Changes
Features
- β¨ TEP-0142: Introduce WorkingDir in StepActions (#7461)
Introduce WorkingDir in StepActions
- β¨ Support overriding the SCM type and server URL (#7450)
User are now able to override the global server URL when using the git resolver to allow fetching from multiple git providers.
- β¨ [TEP-0050] Implement PipelineTask OnError (#7422)
Implement "Ignore Task Failure" with new "PipelineTask.OnError" API field (TEP-0050). User can now set pipelineTask.onError: continue
to ignore failure
Fixes
- π Fix enum validation with multiple param references (#7481)
bug fix: allow task-level param references multiple pipeline-level params with enum
- π Fix: do not fail TaskRun for concurrent modification errors (#7467)
fix: taskRuns will not fail for concurrent modification errors when stopping sideCars
- π Fix validations for Sidecars to be consistent (#7443)
sidecars are now validated at admission webhook
- π fix: resolve issue where resolutionrequest defaulted to v1alpha1 vs v1beta1 (#7438)
Resolved issue where resolutionrequest defaulted to v1alpha1 when it should be v1beta1
- π Do not require for entrypoint cancellation (#7430)
ntrypoint cancellation only requires keep-pod-on-cancel: true
feature-flag.
- π Freeze image sha for dind-sidecar example test. (#7498)
- π FIX: Prevent panic on parameter evaluation (#7488)
- π change ResultRef.ResultsIndex from int to *int (#7460)
- π don't return validation error when final tasks failed/skipped (#7407)
Misc
- π¨ Tracing: Add credentialsSecret for basic authentication to remote endpoint (#7238)
Tracing config now includes an additional optional field credentialsSecret
where users can specify the name of a secret. The username and password fields from the secret will be used to authenticate against Tracing collector endpoint.
- π¨ [TEP-0131] Update Conformance Spec for v1 api types (#7224)
Updates the conformance api spec with v1 api types in line with TEP-131
- π¨ Error sweep: complete user-facing error messages formats (#7474)
- π¨ Replace PipelineRunReasonFailedValidation with more granular reasons (#7417)
- π¨ Error sweep: Move TaskRun Reasons in pkg/pod to pkg/apis (#7406)
- π¨ Cleanup error message for Step container status (#7405)
- π¨ Error sweep: add more context for PipelineRunCouldntGetPipeline error message (#7403)
- π¨ Error sweep: refactor steps termination when failing TaskRun (#7386)
- π¨ Refactor common util functions for /test (#7369)
- π¨ Fix showing error message when validation fail (#7509)
- π¨ Git resolver: validate repo URL (#7482)
- π¨ Bump github.com/spiffe/spire-api-sdk from 1.8.4 to 1.8.5 (#7463)
- π¨ Fix some spelling in stepactions.md (#7432)
- π¨ Remove .envrc and show an example in .envrc.sample (#7429)
- π¨ Create scorecard.yml (#7409)
- π¨ Add @JeromeJu as a pipelines maintainer (#7327)
- π¨ Bump github.com/google/uuid from 1.3.1 to 1.4.0 (#7308)
Docs
- π Add
stdoutConfig
andstderrConfig
to alpha features table (#7494) - π Fix step actions documentation (#7492)
- π [TEP-0050] Add Ignore Task Failure to alpha table (#7468)
- π Update Feature Flags Documentation (#7445)
- π Update StepActions Documentation (#7441)
- π Fix typos and broken links in StepActions doc (#7431)
- π Make git resolver label explicit (#7428)
- π Update release with v0.54.0 (#7427)
- π Update release cheat sheet (#7425)
Thanks
Thanks to these contributors who contributed to v0.55.0!
- β€οΈ @AlanGreene
- β€οΈ @JeromeJu
- β€οΈ @QuanZhang-William
- β€οΈ @Yongxuanzhang
- β€οΈ @aaron-prindle
- β€οΈ @afrittoli
- β€οΈ @chitrangpatel
- β€οΈ @chmouel
- β€οΈ @dependabot[bot]
- β€οΈ @dibyom
- β€οΈ @jerop
- β€οΈ @joaosilva15
- β€οΈ @kmjayadeep
- β€οΈ @vdemeester
Extra shout-out for awesome release notes:
- π @JeromeJu
- π @QuanZhang-William
- π @aaron-prindle
- π @chitrangpatel
- π @chmouel
- π @dibyom
- π @kmjayadeep
- π @vdemeester