Tekton Pipelines follows the Tekton community [release policy][release-policy]
as follows:
Versions are numbered according to semantic versioning: vX.Y.Z
A new release is produced on a monthly basis
Four releases a year are chosen for long term support (LTS).
All remaining releases are supported for approximately 1 month (until the next
release is produced)
LTS releases take place in January, April, July and October every year
The first Tekton Pipelines LTS release will be v0.41.0 in October 2022
Releases happen towards the middle of the month, between the 13th and the
20th, depending on week-ends and readiness
Tekton Pipelines produces nightly builds, publicly available on
gcr.io/tekton-nightly.
Transition Process
Before release v0.41 Tekton Pipelines has worked on the basis of an undocumented
support period of four months, which will be maintained for the releases between
v0.37 and v0.40.
Release Process
Tekton Pipeline releases are made of YAML manifests and container images.
Manifests are published to cloud object-storage as well as
[GitHub][tekton-pipeline-releases]. Container images are signed by
[Sigstore][sigstore] via [Tekton Chains][tekton-chains]; signatures can be
verified through the [public key][chains-public-key] hosted by the Tekton Chains
project.
Further documentation available:
The Tekton Pipeline [release process][tekton-releases-docs]
[Installing Tekton][tekton-installation]
Standard for [release notes][release-notes-standards]
#5294: feat: localize absolute paths
#5556: feat: support labels key in transformer configuration
Bug fixes/Performance improvements
#5079: perf: improve applyOrdering by avoid call to GetByCurrentId
#5500: add testcase that check yield malformed yaml errors
chore
#5625: fix: return error instead of log.Fatalf()
#5651: fix: use fmt.Errorf instead of non-existing errors.New
Dependencies
#5672: chore(deps): bump dependencies of kustomize + sync go workspace
#5680: chore: restore version for github.com/asaskevich/govalidator
#5702: Update kyaml to v0.17.1
Commits
9cc25a5 Merge pull request #5703 from koba1t/pinToCmdConfig
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/tektoncd/pipeline | [>= 0.43.a, < 0.44] |
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the all group in /acceptance with 4 updates: github.com/enterprise-contract/enterprise-contract-controller/api, github.com/tektoncd/pipeline, sigs.k8s.io/kustomize/api and sigs.k8s.io/kustomize/kyaml.
Updates
github.com/enterprise-contract/enterprise-contract-controller/api
from 0.1.46 to 0.1.47Release notes
Sourced from github.com/enterprise-contract/enterprise-contract-controller/api's releases.
Commits
8b8d7be
Merge pull request #341 from enterprise-contract/dependabot/github_actions/ac...d1db73a
Merge pull request #340 from enterprise-contract/dependabot/github_actions/gi...d3db660
Merge pull request #339 from enterprise-contract/dependabot/github_actions/co...7fe254a
Bump actions/checkout from 4.1.5 to 4.1.61d8f08a
Bump github/codeql-action from 3.25.5 to 3.25.636061d8
Bump codecov/codecov-action from 4.3.1 to 4.4.15c0827c
Merge pull request #328 from enterprise-contract/dependabot/go_modules/sigs.k...710d23f
Rungo mod tidy
95e86b1
Bump sigs.k8s.io/controller-runtime from 0.17.4 to 0.17.5 in /api0edbef7
Bump sigs.k8s.io/controller-runtime from 0.17.4 to 0.17.5Updates
github.com/tektoncd/pipeline
from 0.59.0 to 0.60.0Release notes
Sourced from github.com/tektoncd/pipeline's releases.
... (truncated)
Changelog
Sourced from github.com/tektoncd/pipeline's changelog.
... (truncated)
Commits
d649ded
---bef4eef
---4b6fcd4
---fceed89
chore(deps): bump github.com/containerd/containerd from 1.7.15 to 1.7.174631a71
---2261ae2
---4573753
Fix: Faulty Remote Resource Accepted by Remote Resolution3dab35e
minor followup to PR 78941b74ff3
Propagate params in pipelines13f45bf
allow for retry on typically transient k8s errors in both core controller and...Updates
sigs.k8s.io/kustomize/api
from 0.17.1 to 0.17.2Release notes
Sourced from sigs.k8s.io/kustomize/api's releases.
Commits
9cc25a5
Merge pull request #5703 from koba1t/pinToCmdConfigf6ad718
Update cmd/config to v0.14.1da14e76
Merge pull request #5702 from koba1t/pinToKyaml7424956
Update kyaml to v0.17.1e244b83
Merge pull request #5688 from emirot/refactor/indexOff983846
refactor: function in stdlib now49a645f
Merge pull request #5294 from typeid/localize_absolute_pathse7a1549
fix: usefmt.Errorf
instead of non-existingerrors.New
(#5651)0d7d830
Merge pull request #5681 from emirot/remove-string-in-slicee676d05
Merge pull request #5500 from charles-chenzz/kust-target-tcUpdates
sigs.k8s.io/kustomize/kyaml
from 0.17.0 to 0.17.1Release notes
Sourced from sigs.k8s.io/kustomize/kyaml's releases.
Commits
42873c8
Merge pull request #5644 from koba1t/fix/version_subcommand_is_broken277da9e
fix version subcommand is not working after release build2b00d88
Merge pull request #5643 from koba1t/unpinEverything08d0593
unpin api31706fd
Merge pull request #5641 from koba1t/pinToApie862612
Update api to v0.17.0Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/tektoncd/pipeline | [>= 0.43.a, < 0.44] |Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show