Skip to content

Commit 41d3947

Browse files
committed
release(v1.3.0): prepare release
This is the official v1.3.0 release. Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>
1 parent ae3ed04 commit 41d3947

7 files changed

Lines changed: 78 additions & 6 deletions

File tree

.kres.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -657,7 +657,7 @@ spec:
657657
Licensor: Sidero Labs, Inc.
658658
LicensedWork: Image Factory
659659
Copyright: (c) 2026 Sidero Labs, Inc.
660-
ChangeDate: "2030-04-28"
660+
ChangeDate: "2030-05-08"
661661
ChangeLicense: Mozilla Public License, version 2.0
662662
EnterpriseLink: https://www.siderolabs.com/contact/
663663
header: |

CHANGELOG.md

Lines changed: 63 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,66 @@
1+
## [image-factory 1.3.0](https://github.com/siderolabs/image-factory/releases/tag/v1.3.0) (2026-05-08)
2+
3+
Welcome to the v1.3.0 release of image-factory!
4+
5+
6+
7+
Please try out the release binaries and report any issues at
8+
https://github.com/siderolabs/image-factory/issues.
9+
10+
### Vulnerability Scanner
11+
12+
Image Factory now includes a built-in vulnerability scanner that automatically scans the images for known vulnerabilities after the build process.
13+
This feature helps users identify and address security issues in their images before deployment.
14+
15+
**Note:** This feature is enterprise-only and is subject to the BUSL-1.1 license.
16+
17+
18+
### VEX Support
19+
20+
Image Factory now supports VEX (Vulnerability Exploitability eXchange) documents, allowing users to associate vulnerability information with their schematics.
21+
This feature enables better tracking and management of vulnerabilities in the images created with Image Factory.
22+
23+
**Note:** This feature is enterprise-only and is subject to the BUSL-1.1 license.
24+
25+
26+
### Contributors
27+
28+
* Mateusz Urbanek
29+
* Orzelius
30+
* Utku Ozdemir
31+
32+
### Changes
33+
<details><summary>6 commits</summary>
34+
<p>
35+
36+
* [`ae3ed04`](https://github.com/siderolabs/image-factory/commit/ae3ed04c72ade3576647cf85cfe4d0a206b5cebe) feat: add enterprise features with Helm chart support
37+
* [`3fb0f96`](https://github.com/siderolabs/image-factory/commit/3fb0f96a1acf9ec5920bb0c848ac2ee311d2efde) feat(enterprise): add vulnerability scanning endpoint
38+
* [`92209b6`](https://github.com/siderolabs/image-factory/commit/92209b6d5e3f53320dedc61ca51b0261b10b9f0c) feat: return normalized schematic on creation
39+
* [`ba2a46d`](https://github.com/siderolabs/image-factory/commit/ba2a46de4940e5f732029a47a9e18b65b2689716) feat(enterprise): implement VEX endpoint
40+
* [`9b40156`](https://github.com/siderolabs/image-factory/commit/9b40156959e2d659daa6c89af43c1382829b528b) feat: show schematic-id url parameter on the final wizard step
41+
* [`114bb60`](https://github.com/siderolabs/image-factory/commit/114bb60b13dec500e1f07ddb3c2f85e699a2f4d6) fix(spdx): use configured external URL in document namespace
42+
</p>
43+
</details>
44+
45+
### Changes from siderolabs/go-vex
46+
<details><summary>3 commits</summary>
47+
<p>
48+
49+
* [`7076424`](https://github.com/siderolabs/go-vex/commit/70764247d873c774f5118cd1fff6c683f1e9de9d) feat: add vulnerability scanning with Grype
50+
* [`cb3a5bc`](https://github.com/siderolabs/go-vex/commit/cb3a5bc9386e9556e5e25df4026ac8d8d8162a9d) docs: add go-vex library documentation
51+
* [`fd0fd5e`](https://github.com/siderolabs/go-vex/commit/fd0fd5ea1e799bf78e4a3b9ab1d37bb20dcd76ef) feat: initial implementation of go-vex library
52+
</p>
53+
</details>
54+
55+
### Dependency Changes
56+
57+
* **github.com/anchore/clio** v0.1.0 **_new_**
58+
* **github.com/anchore/grype** v0.112.0 **_new_**
59+
* **github.com/anchore/syft** v1.44.0 **_new_**
60+
* **github.com/siderolabs/go-vex** 70764247d873 **_new_**
61+
62+
Previous release can be found at [v1.2.0](https://github.com/siderolabs/image-factory/releases/tag/v1.2.0)
63+
164
## [image-factory 1.2.0](https://github.com/siderolabs/image-factory/releases/tag/v1.2.0) (2026-04-28)
265

366
Welcome to the v1.2.0 release of image-factory!

deploy/helm/image-factory/Chart.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -2,8 +2,8 @@ apiVersion: v2
22
name: image-factory
33
description: A Helm chart to deploy Sidero Image Factory on a Kubernetes cluster
44
type: application
5-
version: 1.2.0
6-
appVersion: "v1.2.0"
5+
version: 1.3.0
6+
appVersion: "v1.3.0"
77
home: https://github.com/siderolabs/image-factory
88
sources:
99
- https://github.com/siderolabs/image-factory

deploy/helm/image-factory/README.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
# image-factory
22

3-
![Version: 1.2.0](https://img.shields.io/badge/Version-1.2.0-informational?style=flat) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat) ![AppVersion: v1.2.0](https://img.shields.io/badge/AppVersion-v1.2.0-informational?style=flat)
3+
![Version: 1.3.0](https://img.shields.io/badge/Version-1.3.0-informational?style=flat) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat) ![AppVersion: v1.3.0](https://img.shields.io/badge/AppVersion-v1.3.0-informational?style=flat)
44

55
A Helm chart to deploy Sidero Image Factory on a Kubernetes cluster
66

enterprise/LICENSE

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@ Licensed Work: Image Factory
77
The Licensed Work is (c) 2026 Sidero Labs, Inc.
88
Additional Use Grant: None
99

10-
Change Date: 2030-04-28
10+
Change Date: 2030-05-08
1111

1212
Change License: Mozilla Public License, version 2.0
1313

hack/release.toml

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10,6 +10,15 @@ pre_release = false
1010

1111
[notes]
1212

13+
[notes.scanner]
14+
title = "Vulnerability Scanner"
15+
description = """\
16+
Image Factory now includes a built-in vulnerability scanner that automatically scans the images for known vulnerabilities after the build process.
17+
This feature helps users identify and address security issues in their images before deployment.
18+
19+
**Note:** This feature is enterprise-only and is subject to the BUSL-1.1 license.
20+
"""
21+
1322
[notes.vex]
1423
title = "VEX Support"
1524
description = """\

internal/version/data/tag

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1 @@
1-
v1.2.0
1+
v1.3.0

0 commit comments

Comments
 (0)