As part of our regular upgrade cycle, the following Kubernetes cluster components have been updated. These changes have already been rolled out to all clusters.
Focus of most changes resolve several CVEs, bug fixes and minor improvements.
AKS specific
- aad-pod-identity 1.8.12
- Note: We’ll start migrating from AAD Pod Identity to the new Azure Workload Identity in the coming weeks/months
EKS specific
- aws-ebs-csi-driver 1.11.3
- aws-efs-csi-driver 1.4.1
- aws-load-balancer-controller 2.4.4
- aws-node-termination-handler 1.17.3
- aws-vpc-cni 1.11.4
- csi-snapshot-controller 6.1.1
- kube-proxy 1.22.11
- secrets-store-csi-driver 1.2.4
- tigera-operator & calico 3.24.1
Shared Addons (AKS & EKS)
Click each link to go to the full upstream changelog.
- actions-runner-controller 0.26.0
- Rootless DinD runners
- cert-manager 1.9.1
- cloudwatch-exporter 0.15.0
- dex 2.35.1
- This release fixes a major vulnerability!
- external-dns 0.12.2
- grafana-agent 0.27.1
- fluent-bit 1.9.8
- keda 2.8.1
- Introduction of new AWS DynomoDB Streams & NATS JetStream scalers.
- Support for specifying minReplicaCount in ScaledJob.
- Support to customize the HPA name.
- Support for permission segregation when using Azure AD Pod / Workload Identity
- Additional features to various scalers such as AWS SQS, Azure Pipelines, CPU, GCP Stackdriver, Kafka, Memory, Prometheus
- DEPRECATION:
rolloutStrategyinScaledJobis deprecated in favor ofrollout.strategy - Make sure to check out the KEDA documentation on using these new features
- kube-prometheus-stack chart 40.3.1
- This brings updates to alertmanager, prometheus-operator, prometheus, grafana, etc.
- grafana 9.1.6
- prometheus 2.38.0
- prometheus-operator 0.59.2
- kubernetes-dashboard 2.6.1
- nginx-ingress 1.3.1
- prometheus-blackbox-exporter 0.22.0
- velero 1.9.2
- vertical-pod-autoscaler 0.12.0