Docs changes v1.21.0

config.toml

@@ -111,7 +111,7 @@ privacy_policy = ""
 # current release branch - could be rc
 release_branch = "main"
 # the main version. Never is rc.
-release_version = "v1.20.5"
+release_version = "v1.21.0"
 
 slackurl = "/slack"
 

content/en/docs/installation/_index.en.md

@@ -17,7 +17,7 @@ If you already have Helm, [skip ahead to the fission install](#install-fission).
 If you don't have a Kubernetes cluster, [here's a official guide to set one up](https://kubernetes.io/docs/setup/).
 
 {{< notice info >}}
-Fission requires Kubernetes 1.25 or higher
+Fission requires Kubernetes 1.27 or higher
 {{< /notice >}}
 
 ### Kubectl

content/en/docs/releases/v1.21.0.md

@@ -0,0 +1,78 @@
+---
+title: "v1.21.0"
+linkTitle: v1.21.0
+weight: 72
+---
+
+## Deprecations/Removals
+
+- We are supporting Kubernetes version 1.27.0 and above. Older versions are no longer supported.
+- We are pushing images to GHCR repo only. The DockerHub images are deprecated and will not be updated further. This applies to all Fission components, environments and keda-connector images.
+
+## Fixes
+
+- We have fixed critical security issues in the Fission codebase.
+- We have also removed/replaced vulnerable dependencies in the Fission codebase.
+- We have SBOM, provenance and key verification for all binaries and images. This ensures the authenticity of the binaries and images.
+- Minor fixes and improvements in helm charts
+
+## Changelog
+
+* Fix: an invalid env manifest file breaks the executor component which stops the creation and deletion of envs by @soharab-ic in [#3034](https://github.com/fission/fission/pull/3034)
+* Add podSpec to generated environment manifest by @soharab-ic in [#3033](https://github.com/fission/fission/pull/3033)
+* Update K8s version for envtest to 1.30.x by @soharab-ic in [#3038](https://github.com/fission/fission/pull/3038)
+* Remove unreachable code by @soharab-ic in [#3039](https://github.com/fission/fission/pull/3039)
+* Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 by [@dependabot](https://github.com/dependabot) in [#3056](https://github.com/fission/fission/pull/3056)
+* Add path safety fixes by [@sanketsudake](https://github.com/sanketsudake) in [#3061](https://github.com/fission/fission/pull/3061)
+* Add OpenSSF Scorecard action by [@sanketsudake](https://github.com/sanketsudake) in [#3066](https://github.com/fission/fission/pull/3066)
+* Add OpenSSF scorecard badge by [@sanketsudake](https://github.com/sanketsudake) in [#3067](https://github.com/fission/fission/pull/3067)
+* Apply best security practices for OpenSSF by [@sanketsudake](https://github.com/sanketsudake) in [#3069](https://github.com/fission/fission/pull/3069)
+* Bump actions/setup-go from 5.0.2 to 5.1.0 by [@dependabot](https://github.com/dependabot) in [#3074](https://github.com/fission/fission/pull/3074)
+* Bump actions/upload-artifact from 4.4.0 to 4.4.3 by [@dependabot](https://github.com/dependabot) in [#3073](https://github.com/fission/fission/pull/3073)
+* Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by [@dependabot](https://github.com/dependabot) in [#3072](https://github.com/fission/fission/pull/3072)
+* Bump codecov/codecov-action from 4.5.0 to 5.1.1 by [@dependabot](https://github.com/dependabot) in [#3071](https://github.com/fission/fission/pull/3071)
+* Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by [@dependabot](https://github.com/dependabot) in [#3070](https://github.com/fission/fission/pull/3070)
+* Skip CI for dependabot PR and remove manual dispatch by [@sanketsudake](https://github.com/sanketsudake) in [#3080](https://github.com/fission/fission/pull/3080)
+* Update Go dependencies by [@sanketsudake](https://github.com/sanketsudake) in [#3081](https://github.com/fission/fission/pull/3081)
+* Bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5 by [@dependabot](https://github.com/dependabot) in [#3077](https://github.com/fission/fission/pull/3077)
+* Add provenance steps for release by [@sanketsudake](https://github.com/sanketsudake) in [#3083](https://github.com/fission/fission/pull/3083)
+* Update dependabot config by [@sanketsudake](https://github.com/sanketsudake) in [#3094](https://github.com/fission/fission/pull/3094)
+* Grouped dependabot updates for dockerfile and github-actions by [@sanketsudake](https://github.com/sanketsudake) in [#3111](https://github.com/fission/fission/pull/3111)
+* Bump the global group with 9 updates by [@dependabot](https://github.com/dependabot) in [#3118](https://github.com/fission/fission/pull/3118)
+* Update dependabot.yml grouping by [@sanketsudake](https://github.com/sanketsudake) in [#3119](https://github.com/fission/fission/pull/3119)
+* Bump golang.org/x/crypto from 0.28.0 to 0.31.0 in the go_modules group by [@dependabot](https://github.com/dependabot) in [#3110](https://github.com/fission/fission/pull/3110)
+* Bump the docker-images group across 5 directories with 1 update by [@dependabot](https://github.com/dependabot) in [#3121](https://github.com/fission/fission/pull/3121)
+* Bump helm/kind-action from 1.11.0 to 1.12.0 in the github-actions group by [@dependabot](https://github.com/dependabot) in [#3122](https://github.com/fission/fission/pull/3122)
+* Fix SBOM and provenance for releases  by [@sanketsudake](https://github.com/sanketsudake) in [#3124](https://github.com/fission/fission/pull/3124)
+* Update Go version to 1.23.4 by [@sanketsudake](https://github.com/sanketsudake) in [#3126](https://github.com/fission/fission/pull/3126)
+* Bump the go-dependencies group across 1 directory with 25 updates by [@dependabot](https://github.com/dependabot) in [#3125](https://github.com/fission/fission/pull/3125)
+* fix: apply kubernetes resources to the webhook-server by [@mrsimonemms](https://github.com/mrsimonemms) in [#3084](https://github.com/fission/fission/pull/3084)
+* Log only related configmap and secret by [@lx1036](https://github.com/lx1036) in [#3049](https://github.com/fission/fission/pull/3049)
+* fix: fix slice init length by [@occupyhabit](https://github.com/occupyhabit) in [#3064](https://github.com/fission/fission/pull/3064)
+* Update create.go to handle namespace isolation by [@sofsms](https://github.com/sofsms) in [#3130](https://github.com/fission/fission/pull/3130)
+* Bump the docker-images group across 5 directories with 1 update by [@dependabot](https://github.com/dependabot) in [#3132](https://github.com/fission/fission/pull/3132)
+* Bump the go-dependencies group with 3 updates by [@dependabot](https://github.com/dependabot) in [#3131](https://github.com/fission/fission/pull/3131)
+* Use controller-gen and code-generator latest version by [@sanketsudake](https://github.com/sanketsudake) in [#3133](https://github.com/fission/fission/pull/3133)
+* Use mholt/archives instead of mholt/archiver by [@sanketsudake](https://github.com/sanketsudake) in [#3128](https://github.com/fission/fission/pull/3128)
+* Update k8s versions and set minimum version to 1.27.0 by [@sanketsudake](https://github.com/sanketsudake) in [#3134](https://github.com/fission/fission/pull/3134)
+* Bump the go-dependencies group with 4 updates by [@dependabot](https://github.com/dependabot) in [#3141](https://github.com/fission/fission/pull/3141)
+* Bump the github-actions group with 4 updates by [@dependabot](https://github.com/dependabot) in [#3140](https://github.com/fission/fission/pull/3140)
+* PR-3051: Fix download deploy package out of k8s cluster by @soharab-ic in [#3136](https://github.com/fission/fission/pull/3136)
+* Update chart version v1.21.0-rc1 by [@sanketsudake](https://github.com/sanketsudake) in [#3143](https://github.com/fission/fission/pull/3143)
+* Use GHCR repo for fetcher image by default by [@sanketsudake](https://github.com/sanketsudake) in [#3145](https://github.com/fission/fission/pull/3145)
+* Bump the docker-images group across 5 directories with 1 update by [@dependabot](https://github.com/dependabot) in [#3139](https://github.com/fission/fission/pull/3139)
+* Update chart version v1.21.0-rc2 by [@sanketsudake](https://github.com/sanketsudake) in [#3146](https://github.com/fission/fission/pull/3146)
+* fix: custom runtime container name is invalid by [@lcgash](https://github.com/lcgash) in [#3065](https://github.com/fission/fission/pull/3065)
+* Bump the github-actions group with 2 updates by [@dependabot](https://github.com/dependabot) in [#3148](https://github.com/fission/fission/pull/3148)
+* Bump the docker-images group across 5 directories with 1 update by [@dependabot](https://github.com/dependabot) in [#3149](https://github.com/fission/fission/pull/3149)
+* Duplicate Job names in helm chart templates by [@sanketsudake](https://github.com/sanketsudake) in [#3150](https://github.com/fission/fission/pull/3150)
+* Adopt custom defaulter and validator interface for webhooks intead of deprecated default  by [@sanketsudake](https://github.com/sanketsudake) in [#3152](https://github.com/fission/fission/pull/3152)
+* Update SECURITY.md by [@sanketsudake](https://github.com/sanketsudake) in [#3151](https://github.com/fission/fission/pull/3151)
+* Bump the go-dependencies group with 17 updates by [@dependabot](https://github.com/dependabot) in [#3147](https://github.com/fission/fission/pull/3147)
+* Update all images used to GHCR repo by [@sanketsudake](https://github.com/sanketsudake) in [#3154](https://github.com/fission/fission/pull/3154)
+
+## References
+
+- [Environments](/environments/)
+- [Custom Resource Definition Specification](https://doc.crds.dev/github.com/fission/fission)
+- [Releases](https://github.com/fission/fission/releases)

go.mod

@@ -1,8 +1,8 @@
 module github.com/fission/fission.io
 
-go 1.23.1
+go 1.23.5
 
 require (
-	github.com/google/docsy v0.10.0 // indirect
+	github.com/google/docsy v0.11.0 // indirect
 	github.com/google/docsy/dependencies v0.7.2 // indirect
 )

go.sum

@@ -1,7 +1,7 @@
 github.com/FortAwesome/Font-Awesome v0.0.0-20230327165841-0698449d50f2/go.mod h1:IUgezN/MFpCDIlFezw3L8j83oeiIuYoj28Miwr/KUYo=
-github.com/FortAwesome/Font-Awesome v0.0.0-20240402185447-c0f460dca7f7/go.mod h1:IUgezN/MFpCDIlFezw3L8j83oeiIuYoj28Miwr/KUYo=
-github.com/google/docsy v0.10.0 h1:6tMDacPwAyRWNCfvsn/9qGOZDQ8b0aRzjRZvnZPY5dg=
-github.com/google/docsy v0.10.0/go.mod h1:c0nIAqmRTOuJ01F85U/wJPQtc3Zj9N58Kea9bOT2AJc=
+github.com/FortAwesome/Font-Awesome v0.0.0-20240716171331-37eff7fa00de/go.mod h1:IUgezN/MFpCDIlFezw3L8j83oeiIuYoj28Miwr/KUYo=
+github.com/google/docsy v0.11.0 h1:QnV40cc28QwS++kP9qINtrIv4hlASruhC/K3FqkHAmM=
+github.com/google/docsy v0.11.0/go.mod h1:hGGW0OjNuG5ZbH5JRtALY3yvN8ybbEP/v2iaK4bwOUI=
 github.com/google/docsy/dependencies v0.7.2 h1:+t5ufoADQAj4XneFphz4A+UU0ICAxmNaRHVWtMYXPSI=
 github.com/google/docsy/dependencies v0.7.2/go.mod h1:gihhs5gmgeO+wuoay4FwOzob+jYJVyQbNaQOh788lD4=
 github.com/twbs/bootstrap v5.2.3+incompatible/go.mod h1:fZTSrkpSf0/HkL0IIJzvVspTt1r9zuf7XlZau8kpcY0=

netlify.toml

@@ -5,21 +5,21 @@ publish = "public"
 [context.production.environment]
 HUGO_ENABLEGITINFO = "true"
 HUGO_ENV = "production"
-HUGO_VERSION = "0.134.2"
-GO_VERSION = "1.23.1"
+HUGO_VERSION = "0.142.0"
+GO_VERSION = "1.23.5"
 
 [context.split1.environment]
 HUGO_ENV = "production"
-HUGO_VERSION = "0.134.2"
-GO_VERSION = "1.23.1"
+HUGO_VERSION = "0.142.0"
+GO_VERSION = "1.23.5"
 
 [context.deploy-preview.environment]
-HUGO_VERSION = "0.134.2"
-GO_VERSION = "1.23.1"
+HUGO_VERSION = "0.142.0"
+GO_VERSION = "1.23.5"
 
 [context.branch-deploy.environment]
-HUGO_VERSION = "0.134.2"
-GO_VERSION = "1.23.1"
+HUGO_VERSION = "0.142.0"
+GO_VERSION = "1.23.5"
 
 [context.next.environment]
 HUGO_ENABLEGITINFO = "true"