π 1.0.0 is live π StepActions are GA and Git resolvers enhancements π
-Docs @ v1.0.0
-Examples @ v1.0.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/pipeline/previous/v1.0.0/release.yamlAttestation
The Rekor UUID for this release is 108e9186e8c5677a3c232a877172a3c7967bdcb84afa4bc0a3819fe35e8796e324bbc364356d4349
Obtain the attestation:
REKOR_UUID=108e9186e8c5677a3c232a877172a3c7967bdcb84afa4bc0a3819fe35e8796e324bbc364356d4349
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .Verify that all container images in the attestation are in the release file:
RELEASE_FILE=https://storage.googleapis.com/tekton-releases/pipeline/previous/v1.0.0/release.yaml
REKOR_UUID=108e9186e8c5677a3c232a877172a3c7967bdcb84afa4bc0a3819fe35e8796e324bbc364356d4349
# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v1.0.0@sha256:" + .digest.sha256')
# Download the release file
curl "$RELEASE_FILE" > release.yaml
# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
doneChanges
Features
- β¨ fix: resolve Git Anonymous Resolver excessive memory usage (#8677)
RemoteResolutions using the Git Resolver now use the git binary instead of the Golang library go-git to shallow-clone, shallow-fetch, then checkout the provided repository at the given revision. This reduces resolution time and memory significantly. Some git providers such as Gitea may not support fetching revisions if the revision is a SHA which is not reachable via a ref or is not at a ref/head. In general, no user action is required.
See also: https://git-scm.com/docs/protocol-capabilities#_allow_reachable_sha1_in_want
Resolves #8652
- β¨ feat(pipeline): allow variable substitution in pipeline.tasks[].onError (#8600)
feat(pipeline): allow variable substitution in pipeline.tasks[].onError
- β¨ Add configuration for custom bundle resolver backoff (#8574)
Enables the configuration of backoffs for a bundle resolver requests.
- β¨ feat: promote StepActions to GA (#8546)
StepActions promoted to GA and is available by default. The enable-step-actions feature flag exists as a no-op flag to ensure that existing user workflows which might rely on this flag are not disabled. This flag will be removed completely in a later release.
- β¨ feat: add support for authenticated git clone (#8537)
n optional token can now be passed to the git clone method (using go-git library) to
bypass token limit when using the API.
Fixes
- π fix: add stepaction as a valid kind in the hub resolver (#8635)
the hub resolver now validates StepActions as a valid kind
- π fix: avoid fan out matrix task failed due to result ref (#8487)
fix: avoid fan out matrix task failed due to result ref
- π fix: handle subPath directory creation errors gracefully (#8683)
Misc
- π¨ cleanup: [TEP-0135] remove deprecated disable-affinity-assistant feature flag (#8603)
Binary file (standard input) matches
- π¨ cleanup: remove clustertask support (#8601)
Remove ClusterTask support completely
- π¨ Bump go.mod and tools/go.mod to go 1.23 (#8482)
Updating go to 1.23
- π¨ misc: promote to beta (#8343)
keep-pod-on-cancel feature flag will be enabled in default
- π¨ build(deps): bump github/codeql-action from 3.28.15 to 3.28.16 (#8729)
- π¨ build(deps): bump step-security/harden-runner from 2.11.1 to 2.12.0 (#8728)
- π¨ build(deps): bump the all group in /tekton with 4 updates (#8727)
- π¨ build(deps): bump github.com/sigstore/sigstore from 1.8.15 to 1.9.4 (#8724)
- π¨ build(deps): bump k8s.io/apimachinery from 0.32.2 to 0.32.4 (#8723)
- π¨ build(deps): bump the all group in /tekton with 2 updates (#8722)
- π¨ build(deps): bump tj-actions/changed-files from be393a90381e27c9fec2c8c2e02b00f005710145 to c34c1c13a740b06851baff92ab9a653d93ad6ce7 (#8721)
- π¨ build(deps): bump github/codeql-action from 3.28.14 to 3.28.15 (#8705)
- π¨ build(deps): bump tj-actions/changed-files from 6abeaa506a419f85fa9e681260b443adbeebb3d4 to be393a90381e27c9fec2c8c2e02b00f005710145 (#8704)
- π¨ build(deps): bump ko-build/setup-ko from 0.8 to 0.9 (#8703)
- π¨ build(deps): bump the all group in /tekton with 4 updates (#8702)
- π¨ build(deps): bump github/codeql-action from 3.28.13 to 3.28.14 (#8690)
- π¨ build(deps): bump tj-actions/changed-files from 27ae6b33eaed7bf87272fdeb9f1c54f9facc9d99 to 6abeaa506a419f85fa9e681260b443adbeebb3d4 (#8689)
- π¨ build(deps): bump actions/dependency-review-action from 4.5.0 to 4.6.0 (#8688)
- π¨ build(deps): bump step-security/harden-runner from 2.11.0 to 2.11.1 (#8687)
- π¨ build(deps): bump the all group in /tekton with 2 updates (#8686)
- π¨ build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5 (#8680)
- π¨ build(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 (#8678)
- π¨ build(deps): bump go.opentelemetry.io/otel from 1.34.0 to 1.35.0 (#8676)
- π¨ Consume release pipeline images and task bundles from GHCR (#8674)
- π¨ build(deps): bump k8s.io/code-generator from 0.31.6 to 0.31.7 (#8645)
Docs
- π Add v0.70 to the releases doc and fix dates of v0.64 and v0.69 releases (#8699)
- π Move Step
whenexpressions documentation from StepActions to Tasks documetnation. (#8672) - π Update link to section on overriding task requests (#8650)
- π chore: param enum usage example for stepaction (#8605)
Thanks
Thanks to these contributors who contributed to v1.0.0!
- β€οΈ @AlanGreene
- β€οΈ @aThorp96
- β€οΈ @arewm
- β€οΈ @chengjoey
- β€οΈ @chmouel
- β€οΈ @dependabot[bot]
- β€οΈ @l-qing
- β€οΈ @samdoran
- β€οΈ @twoGiants
- β€οΈ @vdemeester
- β€οΈ @waveywaves
Extra shout-out for awesome release notes:
- π @aThorp96
- π @arewm
- π @chengjoey
- π @chmouel
- π @l-qing
- π @vdemeester
- π @waveywaves
