v1.3.0

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

Warning

This release is unstable and should not be used in production.
PR #212 introduced a bug in TLS certificate handling.
The issue is fixed in #227.

Recommended action: Skip this version and upgrade to the release containing the fix.

---

What's Changed

• Adding a CI action to validate helm chart renderings by @Shivs11 in #199
• Helm chart bug Fix: Make sure image has nonRoot by @Shivs11 in #195
• fix: use CA certificate from mTLS secret for server verification by @Shivs11 in #212
• Bump golang.org/x/crypto from 0.37.0 to 0.45.0 by @dependabot[bot] in #185
• Bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 in /internal/tests by @dependabot[bot] in #201
• Bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 by @dependabot[bot] in #202
• Add event recording and status conditions for worker deployments by @thearcticwatch in #203
• Bump go.opentelemetry.io/otel/sdk from 1.34.0 to 1.40.0 by @dependabot[bot] in #213
• Add CI check to verify Helm chart image references are pullable by @carlydf in #222
  • This PR replaces the deprecated gcr.io/kubebuilder/kube-rbac-proxy:v0.14.1 image with registry.k8s.io/kubebuilder/kube-rbac-proxy:v0.14.1, and adds a CI check to ensure that this issue won't happen in the future.
• Shorten deployment names when over 47 characters by @carlydf in #204

New Contributors

• @thearcticwatch made their first contribution in #203

Full Changelog: v1.2.0...v1.3.0

v1.1.2

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

Contains fix: migrate kube-rbac-proxy image from deprecated gcr.io to registry.k8s.io #219 on top of the v1.1.1 release, solving the ImagePullBackoff issue caused by the deprecation of gcr.io/kubebuilder/kube-rbac-proxy in favor of registry.k8s.io.

Full Changelog: v1.1.1...v1.1.2

v1.2.1

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

Warning

This release is unstable and should not be used in production.
PR #212 introduced a bug in TLS certificate handling.
The issue is fixed in #227.

Recommended action: Skip this version and upgrade to the release containing the fix.

---

What's Changed

• fix: use CA certificate from mTLS secret for server verification by @Shivs11 in #212
  • This just enables our CI test environment to use the controller correctly for upgrade-downgrade tests

Full Changelog: v1.2.0...v1.2.1

v1.2.0

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

Warning

This release is unstable and should not be used in production.
The kube-rbac-proxy project has officially announced the deprecation of gcr.io/kubebuilder/kube-rbac-proxy in favor of registry.k8s.io. The controller Helm chart in this release the now-unavailable gcr.io/kubebuilder/kube-rbac-proxy image. The controller will therefore fail to start up with ImagePullBackoff.
The issue is fixed in #219 and #222, so any subsequent releases with either of those PRs will solve this issue.

Recommended action: Skip this version and upgrade to a release containing the fix.

---

What's Changed

• Add docs for how users can go from versioned -> unversioned workers. by @Shivs11 in #172
• Optimize Docker builds: Add .dockerignore, improve caching, and enhance Dockerfile structure by @lilydoar in #164
• Min Server for bug-free Worker Versioning is v1.29.1 by @carlydf in #175
• Update README.md migration links by @mgleason97 in #184
• Bump golang.org/x/crypto from 0.37.0 to 0.45.0 in /internal/tests by @dependabot[bot] in #170
• feat(api): add stable build ID override via spec.workerOptions.customBuildID by @tshtark in #177
• Improve docs by @carlydf in #188
• Rename CustomBuildID -> UnsafeCustomBuildID and integration test it by @carlydf in #189
• Helm chart improvements by @nikolaitsarenkov in #179
• Fix helm chart: Remove templating from values file by @carlydf in #190

New Contributors

• @lilydoar made their first contribution in #164
• @mgleason97 made their first contribution in #184
• @tshtark made their first contribution in #177
• @nikolaitsarenkov made their first contribution in #179

Full Changelog: v1.1.1...v1.2.0

v1.1.1

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

Warning

This release is unstable and should not be used in production.
The kube-rbac-proxy project has officially announced the deprecation of gcr.io/kubebuilder/kube-rbac-proxy in favor of registry.k8s.io. The controller Helm chart in this release and in earlier releases references the now-unavailable gcr.io/kubebuilder/kube-rbac-proxy image. The controller will therefore fail to start up with ImagePullBackoff.
The issue is fixed in #219 and #222, so any subsequent releases with either of those PRs will solve this issue.

Recommended action: Skip this version and upgrade to a release containing the fix. We are running validations on v1.1.2 now and will mark it as latest ASAP.

---

Highlights

PR #163 fixes a bug that arises when v1.1.0 of the controller tries to roll out the version after matching.maxVersionsInDeployment (so the 101st version by default). This will also be fixed in v1.29.2 of the open source server, so users can avoid hitting the bug either by upgrading their server or by upgrading to v1.1.1 of the controller.

If you do hit this bug and cannot upgrade your controller or server version right away, see docs/ownership.md for instructions to move forward with your deployment.

The symptom of the bug will be that your 101st version is stuck in "Inactive" state, and the controller will log error messages pointing to docs/ownership.md. The controller needs to be prompted via the Temporal CLI to move forward with the rollout.

What's Changed

• feat: add support for gating rollouts behind successful workflow executions by @kianjones9 in #152
• Refactor integration tests so they can be run one at a time in IDE by @carlydf in #155
• Document API key setup and add details about secret creation by @carlydf in #160
• Ownership docs: Update the docs to reflect the right command. by @Shivs11 in #161
• VLN-516: Set explicit permissions for GitHub Actions workflows by @picatz in #159
• Bug Fix: Ignore LastModifierIdentity if server deleted a version for garbage collection by @carlydf in #163

New Contributors

• @kianjones9 made their first contribution in #152
• @picatz made their first contribution in #159

Full Changelog: v1.1.0...v1.1.1

v1.1.0

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

Highlights

• Added API Key support
• Follow Helm conventions for installation of CRDs

What's Changed

• Move helm/temporal-worker-controller/templates/crds to helm/temporal-worker-controller/crds by @carlydf in #153
• Add API key support for the worker-controller by @Shivs11 in #149
• Use an intermediate environment variable in GHA by @jackdawm in #156
• update documentation to reflect connectionRef and mutualTLSSecretRef changes in #136 by @wadhah101 in #154

New Contributors

• @wadhah101 made their first contribution in #154

Full Changelog: v1.0.2...v1.1.0

v1.0.2

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

What's Changed

Fixes an issue that prevented the Gate configuration from working correctly on an initial green field rollout. See #148 for more information on the bug and fix.

Also added more test coverage.

Commits:

• Update demo scripts by @jlegrone in #145
• Fix: Initial deployment without current version does not get promoted by @Shivs11 in #148
• Refactor and add integration tests by @Shivs11 in #150
• Remove nonexistent Gate options from docs by @carlydf in #151

Full Changelog: v1.0.1...v1.0.2

v1.0.1

Warning

This release is unstable and should not be used in production.

Helm chart versions <0.20.0 were built using manifests from the main branch at release time instead of the release branch. As a result, deployed manifests may not match the expected code version.

Required action:
Upgrade to v1.3.1 (Helm Chart 0.20.0). This is the first version with corrected manifests and a tested upgrade path from affected releases.

Recommended next step:
After upgrading to v1.3.1, continue upgrading to the latest GA release (v1.7.0) for production use.
For production environments, upgrade one minor version at a time after 0.20.0.
See docs/release.md for full details on versioning and upgrade paths.

---

What's Changed

Fixes a rare but consequential bug in v1.0.0. See #147 for more information on the bug and fix.

• Bump go.temporal.io/server from 1.28.0 to 1.28.1 in /internal/tests by @dependabot[bot] in #143
• Only Delete Deployments of NotRegistered versions if TemporalState is non-empty by @carlydf in #147

Full Changelog: v1.0.0...v1.0.1

v1.0.0

What's Changed

🚀 Public Preview: This project is in Public Preview and ready for production use cases, with API breaking changes kept to a minimum.

• Fix CI workflow to use go-version-file instead of hardcoded Go version by @jlegrone in #121
• Update Temporal Go SDK to v1.35.0 and index versions by build ID by @jlegrone in #119
• Add test cases and arbitrary test case setup function by @carlydf in #127
• [Breaking change] Update TEMPORAL_ injected env vars to match those expected by SDKs by @jlegrone in #130
• LastModifier-based ownership transfer with docs by @carlydf in #131
• Keep dots in Build IDs and format Worker Deployment names <k8s-namespace>/<twd-name> by @carlydf in #133
• Check versioned and unversioned pollers in certain cases by @carlydf in #132
• Fix log spam by @carlydf in #135
• Add migration doc draft. by @robholland in #91
• [Breaking change] Follow k8s API conventions by @jlegrone in #136
• Sanitize build IDs to match k8s label value requirements by @jlegrone in #138
• Update integration test by @jlegrone in #139
• pin artifact onto specific arch by @Shivs11 in #141
• Refactor README for Public Preview by @carlydf in #137

Full Changelog: v0.1.7...v1.0.0

v0.1.7

Update release.yml (#124)

Address the error in the actions logs

<!--- Note to EXTERNAL Contributors -->
<!-- Thanks for opening a PR! 
If it is a significant code change, please **make sure there is an open
issue** for this.
We work best with you when we have accepted the idea first before you
code. -->

<!--- For ALL Contributors 👇 -->

## What was changed
<!-- Describe what has changed in this PR -->

## Why?
<!-- Tell your future self why have you made these changes -->

## Checklist
<!--- add/delete as needed --->

1. Closes <!-- add issue number here -->

2. How was this tested:
<!--- Please describe how you tested your changes/how we can test them
-->

3. Any docs updates needed?
<!--- update README if applicable
      or point out where to update docs.temporal.io -->