AzurePipelinesCredential sets an additional OIDC request header so that it
receives a 401 instead of a 302 after presenting an invalid system access token
Allow logging of debugging headers for AzurePipelinesCredential and include
them in error messages
sdk/azidentity/v1.8.0-beta.3
1.8.0-beta.3 (2024-09-17)
Features Added
Added ObjectID type for ManagedIdentityCredentialOptions.ID
Other Changes
Removed redundant content from error messages
sdk/azidentity/v1.8.0-beta.2
1.8.0-beta.2 (2024-08-06)
Breaking Changes
NewManagedIdentityCredential now returns an error when a user-assigned identity
is specified on a platform whose managed identity API doesn't support that.
ManagedIdentityCredential.GetToken() formerly logged a warning in these cases.
Returning an error instead prevents the credential authenticating an unexpected
identity, causing a client to act with unexpected privileges. The affected
platforms are:
Azure Arc
Azure ML (when a resource ID is specified; client IDs are supported)
Cloud Shell
Service Fabric
Other Changes
If DefaultAzureCredential receives a non-JSON response when probing IMDS before
attempting to authenticate a managed identity, it continues to the next credential
in the chain instead of immediately returning an error.
sdk/azidentity/v1.8.0-beta.1
1.8.0-beta.1 (2024-07-17)
Features Added
Restored persistent token caching feature
Breaking Changes
These changes affect only code written against a beta version such as v1.7.0-beta.1
Redesigned the persistent caching API. Encryption is now required in all cases
and persistent cache construction is separate from credential construction.
The PersistentUserAuthentication example in the package docs has been updated
to demonstrate the new API.
... (truncated)
Commits
42def97 Add breaking changes to release notes (#21696)
⚙️ Generating VAP (Validating Admission Policy) in Gatekeeper has transitioned from using annotations to specifying fields in ConstraintTemplate and Constraint. Please find out more details using VAP through Gatekeeper.
🎬 Ability to enforce specific action for Gatekeeper webhook, audit, gator, or VAP in the same constraint through scopedEnforcementActions field under spec in Constraints.
Linux amd64 (checksum / e57e826410269d72be3113333dbfaac0d8dfdd1b0cc4e9cb08bdf97722731ca9)
Linux arm (checksum / a15a8ddfc373628b13cd2a987206756004091a1f6a91c3b9ee8de6f0b1e2ce90)
Linux arm64 (checksum / 780b5b86f0db5546769b3e9f0204713bbdd2f6696dfdaac122fbe7f2f31541d2)
Linux i386 (checksum / 92d7a47a90734b50528ffffc99cd1b2d4b9fc0f4291bac92c87ef03406a5a7b2)
Linux ppc64le (checksum / 9f0178957c94516eff9a3897778edb93d78fab1f76751bd282883f584ea81c23)
Linux s390x (checksum / 357f8b441cc535240f1b0ba30a42b44571d4c303dab004c9e013697b97160360)
Linux riscv64 (checksum / 9a2cab45b7d9282e9be7b42f86d8034dcaa2e81ab338642884843676c2f6929f)
Windows amd64 (checksum / 89952ea1bace0a9498053606296ea03cf743c48294969dfc731e7f78d1dc809a)
Windows arm64 (checksum / fc370a291ed926da5e77acf42006de48e7fd5ff94d20c3f6aa10c04fea66e53c)
This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @mattfarinakeybase account. Please use the attached signatures for verifying this release using gpg.
The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.
What's Next
3.16.2 is the next patch release and will be on October 09, 2024
3.17.0 is the next feature release and will be on January 15, 2025
Changelog
bumping version to 1.22.7 5a5449dc42be07001fd5771d56429132984ab3ab (Robert Sirchia)
Merge pull request #13327 from mattfarina/revert-11726 2cbf7fc005885cb46b60ebfcd03ff09890e43be1 (Joe Julian)
Helm v3.16.0 is a feature release. Users are encouraged to upgrade for the best experience.
The community keeps growing, and we'd love to see you there!
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot]
commented
1 month ago
Bumps the go-deps group with 4 updates in the / directory: github.com/Azure/azure-sdk-for-go/sdk/azidentity, github.com/open-policy-agent/gatekeeper/v3, golang.org/x/mod and helm.sh/helm/v3.
Updates
github.com/Azure/azure-sdk-for-go/sdk/azidentityfrom 1.7.0 to 1.8.0Release notes
Sourced from github.com/Azure/azure-sdk-for-go/sdk/azidentity's releases.
... (truncated)
Commits
42def97Add breaking changes to release notes (#21696)112db83Azcore v1.8.0 (#21694)204a3c4Prep azcore v1.7.2 for release (#21506)89497f5Add changelog entry for WASM fix (#21493)0414a4bTransport dialer: setting nil for wasm build (#21451)b1db0beEnable TLS renegotiation (#21182)Updates
github.com/open-policy-agent/gatekeeper/v3from 3.16.3 to 3.17.1Release notes
Sourced from github.com/open-policy-agent/gatekeeper/v3's releases.
... (truncated)
Commits
e8d5d49chore: Prepare v3.17.1 release (#3539)766b53bfix: liniting error in gatekeeper-controller-manager-poddisruptionbudget.yaml...0cb7ef2fix: vap error logging for rego only templates, cherry-pick (#3520) (#3525)d01aa68chore: Prepare v3.17.0 release (#3509)a5e097dchore: Prepare v3.17.0-rc.1 release (#3496)916f838fix: fixing error reporting for templates without CEL, cherry-pick (#3493) (#...3f9ba17chore: Prepare v3.17.0-rc.0 release (#3490)e23e53echore: bump golang fromaf9b40fto39b7e6ein /build/tooling (#3488)b222d13chore: Removing setting alpha flags for vap/vapb generation unless explicitly...5ef6d32chore: bump github.com/docker/docker from 26.1.4+incompatible to 26.1.5+incom...Updates
golang.org/x/expfrom 0.0.0-20240416160154-fe59bbe5cc7f to 0.0.0-20240719175910-8a7402abbf56Commits
Updates
golang.org/x/modfrom 0.20.0 to 0.21.0Commits
46a3137zip: set GIT_DIR in test when using bare repositories3afcd4ego.mod: set go version to 1.22.0b1d336cgo.mod: update required go version to go1.22Updates
helm.sh/helm/v3from 3.14.4 to 3.16.1Release notes
Sourced from helm.sh/helm/v3's releases.
... (truncated)
Commits
5a5449dbumping version to 1.22.72cbf7fcMerge pull request #13327 from mattfarina/revert-117260d439e1bump version to v3.16.01ac6fceMerge pull request #13290 from helm/dependabot/go_modules/github.com/rubenv/s...a585fdbMerge pull request #13291 from helm/dependabot/go_modules/github.com/cyphar/f...0d12150Bump github.com/cyphar/filepath-securejoin from 0.2.5 to 0.3.1b1f9f0cBump github.com/rubenv/sql-migrate from 1.6.1 to 1.7.0d66d435Merge pull request #13276 from helm/dependabot/go_modules/github.com/evanphx/...c1ed2e2Merge pull request #13286 from mattfarina/bump-sprig2dc73d8Merge pull request #13281 from giuliocalzolari/timestampDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show