Tekton Operator release v0.79.1 "Scarlet Macaw"

-Docs @ v0.79.1
-Examples @ v0.79.1

Installation one-liner

kubectl apply -f https://infra.tekton.dev/tekton-releases/operator/previous/v0.79.1/release.yaml

Attestation

The Rekor UUID for this release is 108e9186e8c5677aa336929892f348ac411b8b068739fdcf3a20de7df41aad18a7b61a5c9928ac4a

Obtain the attestation:

REKOR_UUID=108e9186e8c5677aa336929892f348ac411b8b068739fdcf3a20de7df41aad18a7b61a5c9928ac4a
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Changes

Fixes

• 🐛 [Cherry Pick release-v0.79.x] Fix authorization field in pipeline_console_plugin.yaml (#3294)
• 🐛 (fix): Add TektonScheduler, syncerservice and TektonMulticlusterProxyAAE CRDs to Helm chart (#3266)

Misc

• 🔨 fix: version mismatch issue in release automation (#3371)
• 🔨 [cherry-pick: release-v0.79.x] chore: pin base image (#3397)
• 🔨 [release 0.79.x] Freezing Component versions and updating version labels (#3369)
• 🔨 [Release v0.79.x] bump payload version (#3368)
• 🔨 [cherry-pick-release-v0.79.x] chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 (#3304)
• 🔨 generate operator bundle for version 0.79.0 (#3275)

Thanks

Thanks to these contributors who contributed to v0.79.1!

• ❤️ @anithapriyanatarajan
• ❤️ @jkhelil
• ❤️ @khrm
• ❤️ @mbpavan
• ❤️ @pramodbindal
• ❤️ @pratap0007
• ❤️ @tekton-robot

Extra shout-out for awesome release notes:

• 😍 @tekton-robot

Tekton Operator release v0.79.0 "Scarlet macaw"

-Docs @ v0.79.0
-Examples @ v0.79.0

Installation one-liner

kubectl apply -f https://infra.tekton.dev/tekton-releases/operator/previous/v0.79.0/release.yaml

Changes

Features

• ✨ feat(Tekton Multicluster ProxyAAE): onboard MulticlusterProxyAAE component (#3201)

• ✨ feat (Tekton Scheduler) : Onboard Tekton Scheduler to operator (#2934)

• ✨ feat(syncer-service): onboard syncer-service component (#3198)

Fixes

• 🐛 proxy-aae: override WORKERS_SECRET_NAMESPACE for OpenShift (#3244)
• 🐛 Rename MultiCluster Proxy container name to proxy-aae (#3241)
• 🐛 fix(scheduler): make multi-cluster-role case-insensitive (#3235)
• 🐛 fix(console-plugin): update proxy-aae service port to 443 (#3230)
• 🐛 fix SRVKP-8901: webhooks are missing namespace owner reference (#3203)
• 🐛 fix pac settings map pointer reconciliation Loop (#3195)
• 🐛 Fix PAC Controller Cycling and Remove Multiple Versions from kodata (#3194)
• 🐛 chore(ci): update cherry-pick workflow to fix multi-commit PRs (#3181)
• 🐛 fix: multi-arch-build failures due to ko build issue (#3106)
• 🐛 fix: empty image signing issue for operator images (#3094)
• 🐛 Remove default Artifacthub url override (#3091)
• 🐛 fix: prevent unintended directory overwrite from PR #3057 (#3079)
• 🐛 Fix: Pruner Config resetting to default when set to null (#3078)
• 🐛 Override the catalog URL only when the Hub catalog type is set to artifacthub (#3068)

Misc

• 🔨 ci: Add CI summary fan-in check (#3233)
• 🔨 Update Hub repo org name (#3231)
• 🔨 Remove GHCR migration notice from the readme (#3103)
• 🔨 fix: correct sed command to extract operator image SHA (#3089)
• 🔨 chore: correct cheatsheet aligning to latest working params and versions (#3067)
• 🔨 chore(deps): bump github.com/cert-manager/cert-manager from 1.19.3 to 1.19.4 (#3260)
• 🔨 chore(deps): bump actions/setup-go from 6.2.0 to 6.3.0 (#3259)
• 🔨 chore(deps): bump github/codeql-action from 4.32.4 to 4.32.5 (#3258)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.6.4 to 1.6.5 (#3256)
• 🔨 chore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (#3255)
• 🔨 chore(deps): bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 (#3251)
• 🔨 Downgrade repetitive Info-level logs to Debug level to reduce operato… (#3245)
• 🔨 Add khrm to reviewers list (#3243)
• 🔨 Enable authorization for Services in Console Plugin (#3242)
• 🔨 chore(deps): bump github.com/tektoncd/pipeline from 1.9.0 to 1.9.1 (#3238)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.6.1 to 1.6.4 (#3237)
• 🔨 chore(deps): bump github/codeql-action from 4.32.3 to 4.32.4 (#3236)
• 🔨 Update release-cheat-sheet.md (#3226)
• 🔨 chore(deps): bump github.com/tektoncd/triggers from 0.34.0 to 0.35.0 (#3223)
• 🔨 chore(deps): bump github/codeql-action from 4.32.2 to 4.32.3 (#3222)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.5.16 to 1.6.1 (#3221)
• 🔨 chore(deps): bump golang.org/x/mod from 0.32.0 to 0.33.0 (#3213)
• 🔨 chore(deps): bump github.com/openshift-pipelines/pipelines-as-code from 0.41.0 to 0.41.1 (#3212)
• 🔨 chore(deps): bump github.com/tektoncd/pipeline from 1.7.0 to 1.9.0 (#3211)
• 🔨 chore(deps): bump step-security/harden-runner from 2.14.1 to 2.14.2 (#3210)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.5.14 to 1.5.16 (#3209)
• 🔨 chore(deps): bump github/codeql-action from 4.32.1 to 4.32.2 (#3208)
• 🔨 chore: update chains version and add release test (#3204)
• 🔨 chore(deps): bump github.com/cert-manager/cert-manager from 1.19.2 to 1.19.3 (#3193)
• 🔨 chore(deps): bump github/codeql-action from 4.31.11 to 4.32.1 (#3192)
• 🔨 chore(deps): bump actions/cache from 5.0.2 to 5.0.3 (#3191)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.5.13 to 1.5.14 (#3190)
• 🔨 chore(deps): bump github.com/theupdateframework/go-tuf/v2 from 2.3.1 to 2.4.1 (#3180)
• 🔨 chore(deps): bump github.com/openshift-pipelines/pipelines-as-code from 0.40.0 to 0.41.0 (#3179)
• 🔨 chore(deps): bump step-security/harden-runner from 2.14.0 to 2.14.1 (#3178)
• 🔨 chore(deps): bump github/codeql-action from 4.31.10 to 4.31.11 (#3177)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.5.12 to 1.5.13 (#3176)
• 🔨 chore(deps): bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (#3175)
• 🔨 chore(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#3174)
• 🔨 chore(deps): bump github.com/sigstore/sigstore from 1.10.3 to 1.10.4 (#3173)
• 🔨 chore(deps): bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 (#3172)
• 🔨 chore(deps): bump github.com/theupdateframework/go-tuf/v2 from 2.3.0 to 2.3.1 (#3171)
• 🔨 chore(deps): bump actions/setup-go from 6.1.0 to 6.2.0 (#3169)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.5.11 to 1.5.12 (#3168)
• 🔨 chore(deps): bump actions/cache from 5.0.1 to 5.0.2 (#3167)
• 🔨 chore: remove temp files from git and add to .gitignore (#3165)
• 🔨 chore(deps): bump github.com/sigstore/fulcio from 1.8.4 to 1.8.5 (#3159)
• 🔨 Fix golangci-lint action step for large diff (#3157)
• 🔨 chore(deps): bump golang.org/x/mod from 0.31.0 to 0.32.0 (#3156)
• 🔨 chore(deps): bump github.com/sigstore/cosign/v2 from 2.5.2 to 2.6.2 (#3155)
• 🔨 chore(deps): bump chainguard-dev/actions from 1.5.10 to 1.5.11 (#3154)
• 🔨 chore(deps): bump github/codeql-action from 4.31.9 to 4.31.10 (#3153)
• 🔨 bump fulcio and cosign to fix cve CVE-2025-66506 (#3146)
• 🔨 Bump tektoncd/pruner from v0.3.4 to v0.3.5 (#3142)
• 🔨 chore(deps): bump github.com/openshift-pipelines/pipelines-as-code from 0.39.3 to 0.40.0 (#3134)
• 🔨 chore(deps): bump peter-evans/slash-command-dispatch from 5.0.1 to 5.0.2 (#3133)
• 🔨 Fix path to nightly releases used by fetch-releases script (#3126)
• 🔨 chore(deps): bump github/codeql-action from 4.31.8 to 4.31.9 (#3122)
• 🔨 .github/workflows: Add comment for dependabot to pick up updates (#3117)
• 🔨 chore: update release.md and readme.md with latest release version (#3115)
• 🔨 chore: bump results from v0.17.1 to v0.17.2 (#3109)
• 🔨 chore(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 (#3102)
• 🔨 chore(deps): bump actions/cache from 4.3.0 to 5.0.1 (#3101)
• 🔨 chore(deps): bump peter-evans/create-pull-request from 7.0.11 to 8.0.0 (#3100)
• 🔨 chore(deps): bump step-security/harden-runner from 2.13.2 to 2.14.0 (#3099)
• 🔨 chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8 (#3098)
• 🔨 chore(deps): bump golang.org/x/mod from 0.30.0 to 0.31.0 (#3097)
• 🔨 chore: migrate retest workflow to use plumbing reusable workflow (#3086)
• 🔨 chore: migrate cherry-pick workflow to use plumbing reusable workflow (#3085)
• 🔨 cmd/tool: do not fail if a tag doesn't follow semantic versionning (#3080)
• 🔨 chore(deps): bump golang.org/x/sync from 0.18.0 to 0.19.0 (#3077)
• 🔨 chore(deps): bump peter-evans/create-pull-request from 7.0.9 to 7.0.11 (#3076)
• 🔨 chore(deps): bump github/codeql-action from 4.31.6 to 4.31.7 (#3075)
• 🔨 chore(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 (#3074)
• 🔨 chore(deps): bump golangci/golangci-lint-action from 9.1.0 to 9.2.0 (#3073)
• 🔨 chore(deps): bump actions/checkout from 6.0.0 to 6.0.1 (#3072)
• 🔨 chore(deps): bump github.com/tektoncd/pipeline from 1.6.0 to 1.7.0 (#3071)
• 🔨 chore(deps): bump peter-evans/slash-command-dispatch from 5.0.0 to 5.0.1 (#3070)
• 🔨 chore: bump pipeline from v1.6.0 to v1.7.0 (#3066)
• 🔨 chore: add cherrypick workflow action (#3060)
• 🔨 Use CHATOPS_TOKEN in bump payload workflows (#3043)
• 🔨 Bump github/codeql-action from 4.31.5 to 4.31.6 (#3028)
• 🔨 Bump peter-evans/slash-command-dispatch from 4.0.0 to 5.0.0 (#3027)
• 🔨 Bump golangci/golangci-lint-action from 9.0.0 to 9.1.0 (#3026)
• 🔨 Bump actions/setup-go from 6.0.0 to 6.1.0 (#3002)
• 🔨 Bump actions/checkout from 5.0.0 to 6.0.0 (#3001)
• 🔨 Bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 (#3000)
• 🔨 Bump github/codeql-action from 4.31.2 to 4.31.5 (#2999)
• 🔨 Bump chainguard-dev/actions from 1.5.8 to 1.5.10 (#2998)

Docs

Thanks

Thanks to these contributors who contributed to v0.79.0!

• ❤️ @AlanGreene
• ❤️ @ab-ghosh
• ❤️ @anithapriyanatarajan
• ❤️ @dependabot[bot]
• ❤️ @enarha
• ❤️ @infernus01
• ❤️ @jkhelil
• ❤️ @khrm
• ❤️ @mbpavan
• ❤️ @ngelman1
• ❤️ @pramodbindal
• ❤️ @pratap0007
• ❤️ @tekton-robot
• ❤️ @vdemeester

Extra shout-out for awesome release notes:

• 😍 @ab-ghosh
• 😍 @jkhelil
• 😍 @mbpavan
• 😍 @pramodbindal
• 😍 @pratap0007

tekton-operator-0.79.0

A Helm chart to deploy the Tekton Operator and its CRDs

Tekton Operator release v0.78.1 "Ringneck Parakeets"

-Docs @ v0.78.1
-Examples @ v0.78.1

Installation one-liner

kubectl apply -f https://infra.tekton.dev/tekton-releases/operator/previous/v0.78.1/release.yaml

Attestation

The Rekor UUID for this release is 108e9186e8c5677a676ad8d1de42ccf0121438fc0ddbcbc89f47470effae10f52e7c0f13216c1157

Obtain the attestation:

REKOR_UUID=108e9186e8c5677a676ad8d1de42ccf0121438fc0ddbcbc89f47470effae10f52e7c0f13216c1157
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Changes

Features

Fixes

• 🐛 [cherry-pick: release-v0.78.x] fix: prevent unintended directory overwrite from PR #3057 (#3083)
• 🐛 [cherry-pick: release-v0.78.x] Override the catalog URL only when the Hub catalog type is set to artifacthub (#3082)

Misc

• 🔨 [cherry-pick#3106:release-0.78.x] fix: multi-arch-build failures due to ko build issue (#3110)

Docs

Thanks

Thanks to these contributors who contributed to v0.78.1!

• ❤️ @anithapriyanatarajan
• ❤️ @mbpavan
• ❤️ @tekton-robot

Extra shout-out for awesome release notes:

• 😍 @mbpavan

tekton-operator-0.78.1

A Helm chart to deploy the Tekton Operator and its CRDs

Tekton Operator release v0.78.0 "Oituri Batis"

-Docs @ v0.78.0
-Examples @ v0.78.0

Installation one-liner

kubectl apply -f https://infra.tekton.dev/tekton-releases/operator/previous/v0.78.0/release.yaml

Changes

Features

• ✨ Add Route support for Tekton Results (#2877)

Enable Route support in Tekton Results. By default, a Route is created on the cluster, and users can optionally configure a custom host and path.

Fixes

• 🐛 replace container args by key and avoid duplicates (#2862)

Binary file (standard input) matches

Misc

• 🔨 Pin actions by commit SHA (#2917)

• 🔨 Add GitHub Actions workflow for go coverage job (#2913)

• 🔨 Update dependabot labels for github actions (#2939)

• 🔨 Bump golang.org/x/crypto from 0.43.0 to 0.45.0 (#2988)

• 🔨 feat: update release targeting oci bucket (#2975)

• 🔨 Bump golang.org/x/sync from 0.17.0 to 0.18.0 (#2962)

• 🔨 Bump github.com/tektoncd/triggers from 0.32.0 to 0.34.0 (#2961)

• 🔨 Bump chainguard-dev/actions from 1.5.7 to 1.5.8 (#2960)

• 🔨 Bump step-security/harden-runner from 2.13.1 to 2.13.2 (#2959)

• 🔨 Bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 (#2958)

• 🔨 Bump github.com/tektoncd/pipeline from 1.5.0 to 1.6.0 (#2941)

• 🔨 Bump github/codeql-action from 4.31.0 to 4.31.2 (#2940)

• 🔨 Bump golang.org/x/mod from 0.28.0 to 0.29.0 (#2925)

• 🔨 Bump github.com/tektoncd/pipeline from 1.4.0 to 1.5.0 (#2915)

• 🔨 Bump github.com/spf13/viper from 1.20.1 to 1.21.0 (#2891)

• 🔨 Bump k8s.io/apiextensions-apiserver from 0.32.8 to 0.32.9 (#2890)

• 🔨 Bump golang.org/x/mod from 0.27.0 to 0.28.0 (#2883)

• 🔨 Bump golang.org/x/sync from 0.16.0 to 0.17.0 (#2882)

• 🔨 Bump github.com/tektoncd/pipeline from 1.3.1 to 1.4.0 (#2881)

• 🔨 [bot] bump payload versions (#2878)

• 🔨 Bump github.com/stretchr/testify from 1.11.0 to 1.11.1 (#2872)

• 🔨 Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#2871)

• 🔨 Bump github.com/stretchr/testify from 1.10.0 to 1.11.0 (#2860)

• 🔨 Bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 (#2857)

Docs

Thanks

Thanks to these contributors who contributed to v0.78.0!

• ❤️ @AlanGreene
• ❤️ @aThorp96
• ❤️ @ab-ghosh
• ❤️ @anithapriyanatarajan
• ❤️ @dependabot[bot]
• ❤️ @divyansh42
• ❤️ @github-actions[bot]
• ❤️ @jkhelil
• ❤️ @mbpavan
• ❤️ @pramodbindal
• ❤️ @pratap0007
• ❤️ @sybernatus
• ❤️ @tekton-robot
• ❤️ @vdemeester
• ❤️ @waveywaves
• ❤️ @zakisk

Extra shout-out for awesome release notes:

• 😍 @AlanGreene
• 😍 @aThorp96
• 😍 @ab-ghosh
• 😍 @anithapriyanatarajan
• 😍 @jkhelil
• 😍 @mbpavan
• 😍 @pramodbindal
• 😍 @pratap0007
• 😍 @sybernatus
• 😍 @waveywaves

Tekton Operator release v0.77.0 "Amethyst woodstar"

-Docs @ v0.77.0
-Examples @ v0.77.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/operator/previous/v0.77.0/release.yaml

Attestation

Obtain the attestation:

REKOR_UUID=
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/operator/previous/v0.77.0/release.yaml
REKOR_UUID=

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.77.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

• add init container support to tekton-operator deployment (#2809)
• Add service monitoring for pruner (#2844)
• Fix proxy namespace for tekton-results-api-service in ConsolePlugin (#2841)
• update s2i image (#2837)
• Bump actions/checkout from 4 to 5 (#2827)
• Update OPC task image reference in OpenShift config (#2825)
• ADD: buildah-ns task as a part of openshift-pipelines namespace (#2824)
• cleanup: Remove the unnecessary preUpgrade function from the pre-upgrade step (#2820)
• Delete default tekton results tls secret during pre upgrade (#2819)
• fix(openshift git resolver): mount the trusted-ca-configmap into component's system ca store in Openshift (#2814)
• fix: prevent panic when pruner field is nil during upgrade (#2810)
• add additionalEnvs capability to operator deployment (#2808)
• Hide Tekton Pruner cr from openshift console UI (#2806)
• Fix: Corrected PostgreSQL PGDATA and volume mount path to ensure data persistence (#2799)
• Bump golangci/golangci-lint-action from 7.0.0 to 8.0.0 (#2798)
• Update PostgreSQL version from 13 to 16 (#2797)
• Enable TektonPruner Configuration from tektonconfig (#2794)
• OCPBUGS-58034: Update steps for 'Deploying an application with a pipeline' quick start (#2790)
• make triggers install optional (#2780)
• chore(fetch): bump task‑containers tasks from v0.7.0 to v0.7.1 (#2769)
• feat: add recursive manifest fetching support (#2766)
• Decouple RBAC and Trusted CA Bundle configurations in OpenShift extension (#2764)
• Update TektonPruner.Disabled to *bool so it can be set to default value if not set. (#2750)
• update list supported releases (#2745)
• fix release script (#2744)
• Add ServiceMonitor for Results (#2739)
• Restrict pipeline service account permissions for openshift (#2702)

Fixes

Misc

• 🔨 Bump k8s.io/apiextensions-apiserver from 0.32.6 to 0.32.8 (#2846)
• 🔨 Bump golang.org/x/mod from 0.26.0 to 0.27.0 (#2829)
• 🔨 Bump github.com/tektoncd/pipeline from 1.3.0 to 1.3.1 (#2828)
• 🔨 Bump github.com/tektoncd/pipeline from 1.2.0 to 1.3.0 (#2821)
• 🔨 Bump golang.org/x/mod from 0.25.0 to 0.26.0 (#2801)
• 🔨 Bump golang.org/x/sync from 0.15.0 to 0.16.0 (#2800)
• 🔨 Bump github.com/tektoncd/pipeline from 1.1.0 to 1.2.0 (#2791)
• 🔨 Bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 (#2785)
• 🔨 Bump github.com/openshift-pipelines/pipelines-as-code from 0.35.1 to 0.36.0 (#2784)
• 🔨 Bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 (#2783)
• 🔨 Bump github.com/sigstore/cosign/v2 from 2.5.0 to 2.5.2 (#2775)
• 🔨 Bump k8s.io/apiextensions-apiserver from 0.32.5 to 0.32.6 (#2774)
• 🔨 Bump github.com/cloudflare/circl from 1.3.7 to 1.6.1 (#2761)
• 🔨 Bump github.com/openshift-pipelines/pipelines-as-code from 0.35.0 to 0.35.1 (#2754)
• 🔨 Bump golang.org/x/mod from 0.24.0 to 0.25.0 (#2753)
• 🔨 Bump golang.org/x/sync from 0.14.0 to 0.15.0 (#2752)
• 🔨 Bump github.com/tektoncd/pipeline from 1.0.0 to 1.1.0 (#2751)

Docs

Thanks

Thanks to these contributors who contributed to v0.77.0!

• ❤️ @aThorp96
• ❤️ @ab-ghosh
• ❤️ @cmorinupgrade
• ❤️ @dependabot[bot]
• ❤️ @infernus01
• ❤️ @jkhelil
• ❤️ @l-qing
• ❤️ @mbpavan
• ❤️ @pramodbindal
• ❤️ @pratap0007
• ❤️ @seiya-koji
• ❤️ @vikram-raj

Extra shout-out for awesome release notes:

• 😍 @aThorp96
• 😍 @ab-ghosh
• 😍 @jkhelil
• 😍 @l-qing
• 😍 @mbpavan
• 😍 @pramodbindal
• 😍 @pratap0007
• 😍 @seiya-koji

tekton-operator-0.77.0

A Helm chart to deploy the Tekton Operator and its CRDs

Tekton Operator release v0.76.0 "Amethyst sunbird"

-Docs @ v0.76.0
-Examples @ v0.76.0

Installation one-liner

kubectl apply -f https://storage.googleapis.com/tekton-releases/operator/previous/v0.76.0/release.yaml

Attestation

The Rekor UUID for this release is ``

Obtain the attestation:

REKOR_UUID=
rekor-cli get --uuid $REKOR_UUID --format json | jq -r .Attestation | jq .

Verify that all container images in the attestation are in the release file:

RELEASE_FILE=https://storage.googleapis.com/tekton-releases/operator/previous/v0.76.0/release.yaml
REKOR_UUID=

# Obtains the list of images with sha from the attestation
REKOR_ATTESTATION_IMAGES=$(rekor-cli get --uuid "$REKOR_UUID" --format json | jq -r .Attestation | jq -r '.subject[]|.name + ":v0.76.0@sha256:" + .digest.sha256')

# Download the release file
curl "$RELEASE_FILE" > release.yaml

# For each image in the attestation, match it to the release file
for image in $REKOR_ATTESTATION_IMAGES; do
  printf $image; grep -q $image release.yaml && echo " ===> ok" || echo " ===> no match";
done

Changes

Features

• Add TektonPruner CRD,CR and Type Specs
• Add Controller for TektonPruner
• Support custom DB secret in Results
• Add html_url to github-push CTB to fix clone issue Git clone was failing with a 403 error when using git-repo-url because body.repository.url points to the GitHub API URL. To resolve this, a new parameter git-repo-html-url has been introduced, which uses body.repository.html_url — the correct URL for cloning the repository.
• Add KUBERNETES_MIN_VERSION env to kuberneted based installation
• Convert result watcher deployment to statefulset ordinals
• chore: Add pac cancel-in-progress setting in docs and tests
• update: Added skip-push-event settings for PaC
• Add LoggingPluginMultipartRegex for ResultsAPI
• Improve operator logging for installerset reconcile operations
• Improve operator logging for trigger reconcile operations
• Improve operator logging for result reconcile operations
• Improve operator logging for dashboard reconcile operations
• Improve operator logging for mag reconcile operations
• Improve operator logging for pipeline reconcile operations
• Improve operator logging for chains reconcile operations
• Improve operator logging for tektonconfig reconcile operations
• enforce stricter securityContext rules on operator and webhook containers

Fixes

• 🐛 Fix the rbac for ecosystem tasks and stepactions (#2732)

• 🐛 Update Result API container env (#2622)

Before this fix, changes in Result API properties didn't used to apply to running results API server pod and required a manual start.

• 🐛 fix(docs): correct configuration error in TektonResult (#2604)

docs: corrected the configuration error in the example of TektonResult

Misc

• 🔨 Fix subpath capitalisation (#2729)

• 🔨 Bump k8s.io/apiextensions-apiserver from 0.32.4 to 0.32.5 (#2741)

• 🔨 Bump github.com/open-policy-agent/opa from 1.1.0 to 1.4.0 (#2713)

• 🔨 Bump golang.org/x/sync from 0.13.0 to 0.14.0 (#2711)

• 🔨 Bump github.com/sigstore/cosign/v2 from 2.4.3 to 2.5.0 (#2686)

• 🔨 Bump golang.org/x/sync from 0.12.0 to 0.13.0 (#2676)

• 🔨 Bump github.com/spf13/viper from 1.20.0 to 1.20.1 (#2667)

• 🔨 Bump github.com/spf13/viper from 1.19.0 to 1.20.0 (#2656)

• 🔨 Bump k8s.io/apiextensions-apiserver from 0.29.14 to 0.29.15 (#2655)

• 🔨 Bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 (#2652)

• 🔨 [bot] bump payload versions (#2646)

• 🔨 Bump golang.org/x/net from 0.35.0 to 0.36.0 (#2629)

• 🔨 Bump gomodules.xyz/jsonpatch/v2 from 2.4.0 to 2.5.0 (#2628)

• 🔨 Bump golang.org/x/mod from 0.23.0 to 0.24.0 (#2627)

• 🔨 Bump golang.org/x/sync from 0.11.0 to 0.12.0 (#2626)

• 🔨 Bump github.com/go-jose/go-jose/v3 from 3.0.3 to 3.0.4 (#2609)

• 🔨 Bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.0.5 (#2608)

• 🔨 Bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#2607)

• 🔨 Bump github.com/sigstore/cosign/v2 from 2.4.2 to 2.4.3 (#2606)

Docs

• 📖 Add ghcr.io migration banner to README.md. (#2681)

Thanks

Thanks to these contributors who contributed to v0.76.0!

• ❤️ @AlanGreene
• ❤️ @PuneetPunamiya
• ❤️ @Tamronimus
• ❤️ @ab-ghosh
• ❤️ @anithapriyanatarajan
• ❤️ @dependabot[bot]
• ❤️ @enarha
• ❤️ @github-actions[bot]
• ❤️ @infernus01
• ❤️ @jkhelil
• ❤️ @khrm
• ❤️ @l-qing
• ❤️ @mbpavan
• ❤️ @pramodbindal
• ❤️ @pratap0007
• ❤️ @savitaashture
• ❤️ @twoGiants
• ❤️ @vdemeester
• ❤️ @zakisk

Extra shout-out for awesome release notes:

• 😍 @AlanGreene
• 😍 @PuneetPunamiya
• 😍 @ab-ghosh
• 😍 @enarha
• 😍 @jkhelil
• 😍 @khrm
• 😍 @l-qing
• 😍 @mbpavan
• 😍 @pramodbindal
• 😍 @pratap0007
• 😍 @savitaashture
• 😍 @twoGiants
• 😍 @zakisk

tekton-operator-0.76.0

A Helm chart to deploy the Tekton Operator and its CRDs