From 8397222003c0d8ca2bebf0ac5c64448a4796dd18 Mon Sep 17 00:00:00 2001 From: Raj Chaudhuri Date: Sun, 22 Dec 2024 20:54:31 +0530 Subject: [PATCH] Add release v2.9.0 --- CHANGELOG.md | 6 ++++++ reweave/CHANGELOG.md | 7 +++++++ reweave/Makefile | 2 +- reweave/scans/badge.json | 2 +- reweave/scans/report.md | 28 ++++++++++------------------ 5 files changed, 25 insertions(+), 20 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index ebd1d6701..5e8d6ff0f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,9 @@ +## Release 2.9.0 + +This release has upgraded dependencies based on CVE recommendations. + +Also, from this release onwards, all weave images will use the `iptables-nft` backend for `iptables` by default. To use the legacy mode, set the environment variable `IPTABLES_BACKEND` to `legacy`. To do this for the Docker plugin, export the variable before using the `weave` script. For the Kubernetes addon, set the variable in the manifest. + ## Release 2.8.10 This release bumps the Go version to 1.23.1 and the alpine base image to version 3.20.3 as per CVE recommendations. diff --git a/reweave/CHANGELOG.md b/reweave/CHANGELOG.md index eaef50419..b65b78563 100644 --- a/reweave/CHANGELOG.md +++ b/reweave/CHANGELOG.md @@ -2,6 +2,13 @@ All changes made to the weave net codebase since the fork will be documented in this file. +## 2.9.0 + +### Changed + +* Changed version in `reweave/Makefile` to 2.9.0 +* Modified reweave and main CHANGELOG.md + ## 2.9.0-beta1 From this version onwards, we will assume that the default backend for `iptables` is `iptables-nft`. For backward compatibility, we will include `iptables-legacy` in the weave images, and provide a way to use that if required. diff --git a/reweave/Makefile b/reweave/Makefile index 27c8dd747..2cf5c661a 100644 --- a/reweave/Makefile +++ b/reweave/Makefile @@ -1,4 +1,4 @@ -IMAGE_VERSION ?= 2.9.0-beta1 +IMAGE_VERSION ?= 2.9.0 REGISTRY_USER ?= rajchaudhuri ALPINE_BASEIMAGE ?= alpine:3.20.3 diff --git a/reweave/scans/badge.json b/reweave/scans/badge.json index 33c1ab05c..51d6f8895 100644 --- a/reweave/scans/badge.json +++ b/reweave/scans/badge.json @@ -1 +1 @@ -{"schemaVersion": 1, "label": "Vulnerabilty count", "message": "2", "color": "orange"} +{"schemaVersion": 1, "label": "Vulnerabilty count", "message": "0", "color": "blue"} diff --git a/reweave/scans/report.md b/reweave/scans/report.md index cc617fb83..3b1dcfe61 100644 --- a/reweave/scans/report.md +++ b/reweave/scans/report.md @@ -2,8 +2,8 @@ ``` Report date: 2024-12-22 -Unique vulnerability count: 2 -Images version: 2.8.10 +Unique vulnerability count: 0 +Images version: 2.9.0 ``` ## Scanner Details @@ -23,35 +23,27 @@ Supported DB Schema: 5 ## Vulnerabilities -### weave-kube: (2) +### weave-kube: (0) ``` -NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY -golang.org/x/crypto v0.21.0 0.31.0 go-module GHSA-v778-237x-gjrc Critical -golang.org/x/net v0.23.0 0.33.0 go-module GHSA-w32m-9786-jp63 High +No vulnerabilities found ``` -### weave-npc: (2) +### weave-npc: (0) ``` -NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY -golang.org/x/crypto v0.21.0 0.31.0 go-module GHSA-v778-237x-gjrc Critical -golang.org/x/net v0.23.0 0.33.0 go-module GHSA-w32m-9786-jp63 High +No vulnerabilities found ``` -### weave: (2) +### weave: (0) ``` -NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY -golang.org/x/crypto v0.21.0 0.31.0 go-module GHSA-v778-237x-gjrc Critical -golang.org/x/net v0.23.0 0.33.0 go-module GHSA-w32m-9786-jp63 High +No vulnerabilities found ``` -### weaveexec: (2) +### weaveexec: (0) ``` -NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY -golang.org/x/crypto v0.21.0 0.31.0 go-module GHSA-v778-237x-gjrc Critical -golang.org/x/net v0.23.0 0.33.0 go-module GHSA-w32m-9786-jp63 High +No vulnerabilities found ```