Skip to content

Releases: edgelesssys/constellation

v2.2.0

08 Nov 17:33
@github-actions github-actions
v2.2.0
9d3a096
This commit was signed with the committer’s verified signature.
daniel-weisse Daniel Weiße
GPG key ID: 7DD3015F3DDE4B9C
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.2.0

Added

  • Support for Constellation on AWS.
  • Sign generated SBOMs and store container image SBOMs in registry for easier usage.
  • Constellation Kubernetes services are now managed using Helm.
  • Use tags to mark all applicable resources using a Constellation's UID on Azure.
  • Use labels to mark all applicable resources using a Constellation's UID on GCP.

Changed

  • Verify measurements using Rekor transparency log.
  • The constellation create on Azure now uses Terraform to create and destroy cloud resources.
    • This is a breaking change. Cluster created with a CLI at version v2.1.0 or older cannot be terminated using the v2.2.0 CLI
  • Constellation OS images are now based on Fedora directly and are built using mkosi.
  • constellation terminate will now prompt the user for confirmation before destroying any resources (can be skipped with --yes).
  • Use the constellation-role tag instead of role to indicate an instance's role on Azure. This is a breaking change for existing clusters.
  • Use labels instead of metadata to apply the constellation-uid and constellation-role tags on GCP. This is a breaking change for existing clusters.

Deprecated

  • access-manager is no longer deployed.

Removed

  • endpoint flag of constellation init. IP is now always taken from the constellation-id.json file.
  • constellation-state.json file won't be created anymore. Resources are now managed through Terraform.
Assets 16

v2.1.0

10 Oct 12:24
@github-actions github-actions
v2.1.0
1b64951
Compare
Choose a tag to compare
v2.1.0

Added

  • Mini Constellation: Try out Constellation locally without any cloud subscription required just with one command: constellation mini up
  • Loadbalancer for control-plane recovery
  • K8s conformance mode
  • Local cluster creation based on QEMU
  • Verification of Azure trusted launch attestation keys
  • Kubernetes version v1.25 is now fully supported.
  • Enabled Konnectivity.

Changed

  • Autoscaling is now directly managed inside Kubernetes, by the Constellation node operator.
  • The constellation create on GCP now uses Terraform to create and destroy cloud resources.
  • GCP instances are now created without public IPs by default.
  • Kubernetes default version used in Constellation is now v1.24.

Removed

  • CLI options for autoscaling, as this is now managed inside Kubernetes.
  • Kubernetes version v1.22 is no longer supported.

Security

Vulnerability inside the Go standard library fixed by updating to Go 1.19.2:

View all changes

Assets 20

v2.0.0

13 Sep 08:44
@github-actions github-actions
v2.0.0
7311b9e
Compare
Choose a tag to compare
v2.0.0

This is the initial Open Source release of Constellation!

Assets 20