Skip to content

Commit 2678c75

Browse files
hiddecohiddeco
authored
Merge pull request #1095 from fluxcd/release-v1.0.0-rc.3
Release v1.0.0-rc.3
2 parents 1d5f118 + 96bf872 commit 2678c75

File tree

3 files changed

+29
-2
lines changed

3 files changed

+29
-2
lines changed

CHANGELOG.md

+27
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,33 @@
22

33
All notable changes to this project are documented in this file.
44

5+
## 1.0.0-rc.3
6+
7+
**Release date:** 2023-05-12
8+
9+
This release candidate introduces the verification of the Artifact digest in
10+
storage during reconciliation. This ensures that the Artifact is not tampered
11+
with after it was written to storage. When the digest does not match, the
12+
controller will emit a warning event and remove the file from storage, forcing
13+
the Artifact to be re-downloaded.
14+
15+
In addition, files with executable permissions are now archived with their mode
16+
set to `0o744` instead of `0o644`. Allowing the extracted file to be executable
17+
by the user.
18+
19+
Lastly, the controller's dependencies were updated to mitigate CVE-2023-1732
20+
and CVE-2023-2253, and the controller base image was updated to Alpine 3.18.
21+
22+
Improvements:
23+
- Verify digest of Artifact in Storage
24+
[#1088](https://github.com/fluxcd/source-controller/pull/1088)
25+
- build(deps): bump github.com/cloudflare/circl from 1.3.2 to 1.3.3
26+
[#1092](https://github.com/fluxcd/source-controller/pull/1092)
27+
- build(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible
28+
[#1093](https://github.com/fluxcd/source-controller/pull/1093)
29+
- storage: set `0o744` for files with exec mode set
30+
[#1094](https://github.com/fluxcd/source-controller/pull/1094)
31+
532
## 1.0.0-rc.2
633

734
**Release date:** 2023-05-09

config/manager/kustomization.yaml

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,4 +6,4 @@ resources:
66
images:
77
- name: fluxcd/source-controller
88
newName: fluxcd/source-controller
9-
newTag: v1.0.0-rc.2
9+
newTag: v1.0.0-rc.3

go.mod

+1-1
Original file line numberDiff line numberDiff line change
@@ -42,7 +42,7 @@ require (
4242
github.com/fluxcd/pkg/testserver v0.4.0
4343
github.com/fluxcd/pkg/untar v0.3.0
4444
github.com/fluxcd/pkg/version v0.2.1
45-
github.com/fluxcd/source-controller/api v1.0.0-rc.2
45+
github.com/fluxcd/source-controller/api v1.0.0-rc.3
4646
github.com/go-git/go-billy/v5 v5.4.1
4747
github.com/go-logr/logr v1.2.4
4848
github.com/google/go-containerregistry v0.15.1

0 commit comments

Comments
 (0)