Releases: edgelesssys/constellation
Releases · edgelesssys/constellation
v2.2.0
Added
- Support for Constellation on AWS.
- Sign generated SBOMs and store container image SBOMs in registry for easier usage.
- Constellation Kubernetes services are now managed using Helm.
- Use tags to mark all applicable resources using a Constellation's UID on Azure.
- Use labels to mark all applicable resources using a Constellation's UID on GCP.
Changed
- Verify measurements using Rekor transparency log.
- The
constellation create
on Azure now uses Terraform to create and destroy cloud resources.- This is a breaking change. Cluster created with a CLI at version v2.1.0 or older cannot be terminated using the v2.2.0 CLI
- Constellation OS images are now based on Fedora directly and are built using mkosi.
constellation terminate
will now prompt the user for confirmation before destroying any resources (can be skipped with--yes
).- Use the
constellation-role
tag instead ofrole
to indicate an instance's role on Azure. This is a breaking change for existing clusters. - Use labels instead of metadata to apply the
constellation-uid
andconstellation-role
tags on GCP. This is a breaking change for existing clusters.
Deprecated
access-manager
is no longer deployed.
Removed
endpoint
flag ofconstellation init
. IP is now always taken from theconstellation-id.json
file.constellation-state.json
file won't be created anymore. Resources are now managed through Terraform.
v2.1.0
Added
- Mini Constellation: Try out Constellation locally without any cloud subscription required just with one command:
constellation mini up
- Loadbalancer for control-plane recovery
- K8s conformance mode
- Local cluster creation based on QEMU
- Verification of Azure trusted launch attestation keys
- Kubernetes version v1.25 is now fully supported.
- Enabled Konnectivity.
Changed
- Autoscaling is now directly managed inside Kubernetes, by the Constellation node operator.
- The
constellation create
on GCP now uses Terraform to create and destroy cloud resources. - GCP instances are now created without public IPs by default.
- Kubernetes default version used in Constellation is now v1.24.
Removed
- CLI options for autoscaling, as this is now managed inside Kubernetes.
- Kubernetes version v1.22 is no longer supported.
Security
Vulnerability inside the Go standard library fixed by updating to Go 1.19.2:
View all changes
v2.0.0
This is the initial Open Source release of Constellation!