Releases: hashicorp/consul-k8s
Releases · hashicorp/consul-k8s
v1.7.1
1.7.1 (May 26, 2025)
SECURITY:
- Updated base image for ubi builds to ubi9-minimal:9.5-x to fix (CVE-2024-3596)[https://nvd.nist.gov/vuln/detail/CVE-2024-3596], (CVE-2024-56171)[https://nvd.nist.gov/vuln/detail/CVE-2024-56171] and (CVE-2025-24928)[https://nvd.nist.gov/vuln/detail/CVE-2025-24928] [GH-4570]
IMPROVEMENTS:
- cni: Add autorotate Token feature for consul CNI for time bound SA tokens enforced in K8s environments.
- cni: CNI update strategy to be fixed to pod by pod rolling update and removed older CNI updateStrategy configuration
v1.6.5
1.6.5 (May 26, 2025)
SECURITY:
- Updated base image for ubi builds to ubi9-minimal:9.5-x to fix (CVE-2024-3596)[https://nvd.nist.gov/vuln/detail/CVE-2024-3596], (CVE-2024-56171)[https://nvd.nist.gov/vuln/detail/CVE-2024-56171] and (CVE-2025-24928)[https://nvd.nist.gov/vuln/detail/CVE-2025-24928] [GH-4570]
v1.5.8
1.5.8 (May 26, 2025)
SECURITY:
- Updated base image for ubi builds to ubi9-minimal:9.5-x to fix (CVE-2024-3596)[https://nvd.nist.gov/vuln/detail/CVE-2024-3596], (CVE-2024-56171)[https://nvd.nist.gov/vuln/detail/CVE-2024-56171] and (CVE-2025-24928)[https://nvd.nist.gov/vuln/detail/CVE-2025-24928] [GH-4570]
v1.7.0
1.7.0 (May 7, 2025)
NOTE: Consul K8s 1.7.x is compatible with Consul 1.21.x and Consul Dataplane 1.7.x. Refer to our compatibility matrix for more info.
FEATURES:
- control-plane: Add available Zone Kubernetes Topology Metadata for NodePort Service when Syncing Kubernetes Services. [GH-4470]
IMPROVEMENTS:
- security: Support running Consul under Pod Security Admissions (PSA) restricted mode. [GH-4478]
- helm: Add support for
server.snapshotAgent.extraVolumesandserver.snapshotAgent.extraEnvironmentVarsso privileged credentials can be configured for the snapshot agent. [GH-4471] - security: Support running Consul under Pod Security Admissions (PSA) restricted mode. [GH-4478]
BUG FIXES:
- sync-catalog: Enable the user to purge the registered services by passing parent node and necessary filters. [GH-4255]
SECURITY:
- Update
golang.org/x/netto v0.38.0 to address GHSA-vvgc-356p-c3xw. - Update
github.com/go-jose/go-jose/v3to v3.0.4 to address GO-2025-3485. - Update
github.com/containerd/containerdto v1.7.27 to address GHSA-265r-hfxg-fhmg. - Upgrade to Go 1.23.8 to fix CVE GO-2025-3563
v1.6.4
1.6.4 (April 24, 2025)
SECURITY:
- Update
golang.org/x/netto v0.38.0 to address GHSA-vvgc-356p-c3xw. - Upgrade to Go 1.23.8 to fix CVE GO-2025-3563
v1.7.0-rc2
1.7.0-rc2 (April 25, 2025)
SECURITY:
- Update
golang.org/x/netto v0.38.0 to address GHSA-vvgc-356p-c3xw. - Update
github.com/go-jose/go-jose/v3to v3.0.4 to address GO-2025-3485. - Update
github.com/containerd/containerdto v1.7.27 to address GHSA-265r-hfxg-fhmg. - Upgrade to Go 1.23.8 to fix CVE GO-2025-3563
v1.5.7
1.5.7 (April 24, 2025)
SECURITY:
- Update
golang.org/x/netto v0.38.0 to address GHSA-vvgc-356p-c3xw. - Upgrade to Go 1.23.8 to fix CVE GO-2025-3563
v1.4.10
1.4.10 (April 24, 2025)
SECURITY:
- Update
golang.org/x/netto v0.38.0 to address GHSA-vvgc-356p-c3xw. - Upgrade to Go 1.23.8 to fix CVE GO-2025-3563