Skip to content

Commit

Permalink
[bitnami/nginx-ingress-controller] Detect non-standard images (#30961)
Browse files Browse the repository at this point in the history 
* [bitnami/nginx-ingress-controller] Detect non-standard images

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>

* Modify NOTES.txt

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>

* Modify values

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>

* Update CHANGELOG.md

Signed-off-by: Bitnami Containers <[email protected]>

* Update README.md with readme-generator-for-helm

Signed-off-by: Bitnami Containers <[email protected]>

---------

Signed-off-by: Carlos Rodríguez Hernández <[email protected]>
Signed-off-by: Bitnami Containers <[email protected]>
Co-authored-by: Bitnami Containers <[email protected]>
  • Loading branch information
@carrodher @bitnami-bot
carrodher and bitnami-bot authored Dec 10, 2024
1 parent 5149845 commit 705a15e
Show file tree
Hide file tree
Showing 6 changed files with 29 additions and 12 deletions.
10 changes: 8 additions & 2 deletions bitnami/nginx-ingress-controller/CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,8 +1,14 @@
# Changelog

## 11.5.5 (2024-12-04)
## 11.6.0 (2024-12-10)

* [bitnami/nginx-ingress-controller] Release 11.5.5 ([#30768](https://github.com/bitnami/charts/pull/30768))
* [bitnami/nginx-ingress-controller] Detect non-standard images ([#30961](https://github.com/bitnami/charts/pull/30961))

## <small>11.5.5 (2024-12-04)</small>

* [bitnami/*] docs: :memo: Add "Backup & Restore" section (#30711) ([35ab536](https://github.com/bitnami/charts/commit/35ab5363741e7548f4076f04da6e62d10153c60c)), closes [#30711](https://github.com/bitnami/charts/issues/30711)
* [bitnami/*] docs: :memo: Add "Prometheus metrics" (batch 5) (#30674) ([ed2a546](https://github.com/bitnami/charts/commit/ed2a54617faf763169e6b01a89100b9db32e1000)), closes [#30674](https://github.com/bitnami/charts/issues/30674)
* [bitnami/nginx-ingress-controller] Release 11.5.5 (#30768) ([4ad3036](https://github.com/bitnami/charts/commit/4ad3036671889e830f1c12e4b9e7697332412fe9)), closes [#30768](https://github.com/bitnami/charts/issues/30768)

## <small>11.5.4 (2024-11-08)</small>

Expand Down
6 changes: 3 additions & 3 deletions bitnami/nginx-ingress-controller/Chart.lock
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
dependencies:
- name: common
repository: oci://registry-1.docker.io/bitnamicharts
version: 2.27.2
digest: sha256:6fd86cc5a4b5094abca1f23c8ec064e75e51eceaded94a5e20977274b2abb576
generated: "2024-12-04T02:40:18.321856666Z"
version: 2.28.0
digest: sha256:5b30f0fa07bb89b01c55fd6258c8ce22a611b13623d4ad83e8fdd1d4490adc74
generated: "2024-12-10T17:20:05.413951+01:00"
2 changes: 1 addition & 1 deletion bitnami/nginx-ingress-controller/Chart.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,4 +34,4 @@ maintainers:
name: nginx-ingress-controller
sources:
- https://github.com/bitnami/charts/tree/main/bitnami/nginx-ingress-controller
version: 11.5.5
version: 11.6.0
15 changes: 10 additions & 5 deletions bitnami/nginx-ingress-controller/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -119,11 +119,12 @@ As an alternative, you can use of the preset configurations for pod affinity, po

### Global parameters

| Name | Description | Value |
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------ |
| `global.imageRegistry` | Global Docker image registry | `""` |
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |
| Name | Description | Value |
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------- |
| `global.imageRegistry` | Global Docker image registry | `""` |
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
| `global.security.allowInsecureImages` | Allows skipping image verification | `false` |
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |

### Common parameters

Expand Down Expand Up @@ -461,6 +462,10 @@ Find more information about how to deal with common errors related to Bitnami's

## Upgrading

### To 11.6.0

This version introduces image verification for security purposes. To disable it, set `global.security.allowInsecureImages` to `true`. More details at [GitHub issue](https://github.com/bitnami/charts/issues/30850).

### To 11.0.0

This major bump changes the following security defaults:
Expand Down
3 changes: 2 additions & 1 deletion bitnami/nginx-ingress-controller/templates/NOTES.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -94,4 +94,5 @@ If TLS is enabled for the Ingress, a Secret containing the certificate and key m
{{- include "common.warnings.rollingTag" .Values.image }}
{{- include "common.warnings.rollingTag" .Values.defaultBackend.image }}
{{- include "common.warnings.resources" (dict "sections" (list "defaultBackend" "") "context" $) }}
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.image .Values.defaultBackend.image) "context" $) }}
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.image .Values.defaultBackend.image) "context" $) }}
{{- include "common.errors.insecureImages" (dict "images" (list .Values.image .Values.defaultBackend.image) "context" $) }}
5 changes: 5 additions & 0 deletions bitnami/nginx-ingress-controller/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,11 @@ global:
## - myRegistryKeySecretName
##
imagePullSecrets: []
## Security parameters
##
security:
## @param global.security.allowInsecureImages Allows skipping image verification
allowInsecureImages: false
## Compatibility adaptations for Kubernetes platforms
##
compatibility:
Expand Down

0 comments on commit 705a15e

Please sign in to comment.