Kured 1.12.2
This patch release only contains dependency updates, which should make your CVE checker happy again.
Build and Testing
- build(deps): bump alpine from 3.17.1 to 3.17.2
- build(deps): bump github.com/prometheus/common from 0.39.0 to 0.40.0
- build(deps): bump lycheeverse/lychee-action from 1.5.4 to 1.6.1
- build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2
- build(deps): bump github.com/prometheus/common from 0.40.0 to 0.41.0
- build(deps): bump aquasecurity/trivy-action from 0.9.1 to 0.9.2
- build(deps): bump github.com/prometheus/common from 0.41.0 to 0.42.0
- update relevant deps
- Move to aquasecurity/trivy-action instead
- Try to dropping golang.org/x/text replacement
- lychee: exclude slack:// and teams:// urls as well
- update Go to 1.19, it's used in k8s 1.24 as well
- Add ports config to DaemonSet yaml. Closes #741 (#742)
Kubernetes Version Compatibility
The daemon image contains a 1.25.x k8s.io/{client-go,kubectl} for the purposes of maintaining the lock and draining worker nodes. Kubernetes aims to provide forwards & backwards compatibility of one minor version between client and server, so this should work on 1.24.x, 1.25.x and 1.26.x
Thanks a lot to everyone who contributed to kured since 1.12.1.