Skip to content
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.

Commit d14b320

Browse files
authoredMay 7, 2025··
prepping for 1.7.0 release (#4551)
1 parent 287a3c6 commit d14b320

File tree

5 files changed

+39
-11
lines changed

5 files changed

+39
-11
lines changed
 

‎.release/security-scan.hcl

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,8 @@ container {
2424
suppress {
2525
vulnerabilites = [
2626
"CVE-2025-46394",
27-
"CVE-2024-58251"
27+
"CVE-2024-58251",
28+
"CVE-2025-47268"
2829
]
2930
}
3031
}

‎CHANGELOG.md

Lines changed: 27 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,30 @@
1+
## 1.7.0 (May 7, 2025)
2+
3+
> NOTE: Consul K8s 1.7.x is compatible with Consul 1.21.x and Consul Dataplane 1.7.x. Refer to our [compatibility matrix](https://developer.hashicorp.com/consul/docs/k8s/compatibility) for more info.
4+
5+
6+
FEATURES:
7+
8+
* control-plane: Add available Zone Kubernetes Topology Metadata for NodePort Service when Syncing Kubernetes Services. [[GH-4470](https://github.com/hashicorp/consul-k8s/issues/4470)]
9+
10+
IMPROVEMENTS:
11+
12+
* security: Support running Consul under Pod Security Admissions (PSA) restricted mode. [[GH-4478](https://github.com/hashicorp/consul-k8s/issues/4478)]
13+
* helm: Add support for `server.snapshotAgent.extraVolumes` and `server.snapshotAgent.extraEnvironmentVars` so privileged credentials can be configured for the snapshot agent. [[GH-4471](https://github.com/hashicorp/consul-k8s/issues/4471)]
14+
* security: Support running Consul under Pod Security Admissions (PSA) restricted mode. [[GH-4478](https://github.com/hashicorp/consul-k8s/issues/4478)]
15+
16+
BUG FIXES:
17+
18+
* sync-catalog: Enable the user to purge the registered services by passing parent node and necessary filters. [[GH-4255](https://github.com/hashicorp/consul-k8s/issues/4255)]
19+
20+
SECURITY:
21+
22+
* Update `golang.org/x/net` to v0.38.0 to address [GHSA-vvgc-356p-c3xw](https://github.com/advisories/GHSA-vvgc-356p-c3xw).
23+
* Update `github.com/go-jose/go-jose/v3` to v3.0.4 to address [GO-2025-3485](https://osv.dev/vulnerability/GO-2025-3485).
24+
* Update `github.com/containerd/containerd` to v1.7.27 to address [GHSA-265r-hfxg-fhmg](https://github.com/containerd/containerd/security/advisories/GHSA-265r-hfxg-fhmg).
25+
* Upgrade to Go 1.23.8 to fix CVE [GO-2025-3563](https://pkg.go.dev/vuln/GO-2025-3563)
26+
27+
128
## 1.7.0-rc2 (April 25, 2025)
229
SECURITY:
330

‎charts/consul/Chart.yaml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -3,8 +3,8 @@
33

44
apiVersion: v2
55
name: consul
6-
version: 1.7.0-rc2
7-
appVersion: 1.21.0-rc2
6+
version: 1.7.0
7+
appVersion: 1.21.0
88
kubeVersion: ">=1.22.0-0"
99
description: Official HashiCorp Consul Chart
1010
home: https://www.consul.io
@@ -13,14 +13,14 @@ sources:
1313
- https://github.com/hashicorp/consul
1414
- https://github.com/hashicorp/consul-k8s
1515
annotations:
16-
artifacthub.io/prerelease: true
16+
artifacthub.io/prerelease: false
1717
artifacthub.io/images: |
1818
- name: consul
19-
image: docker.mirror.hashicorp.services/hashicorppreview/consul:1.21.0-rc2
19+
image: hashicorp/consul:1.21.0
2020
- name: consul-k8s-control-plane
21-
image: docker.mirror.hashicorp.services/hashicorppreview/consul-k8s-control-plane:1.7.0-rc2
21+
image: hashicorp/consul-k8s-control-plane:1.7.0
2222
- name: consul-dataplane
23-
image: docker.mirror.hashicorp.services/hashicorppreview/consul-dataplane:1.7.0-rc2
23+
image: hashicorp/consul-dataplane:1.7.0
2424
- name: envoy
2525
image: envoyproxy/envoy:v1.25.11
2626
artifacthub.io/license: MPL-2.0

‎charts/consul/values.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -66,7 +66,7 @@ global:
6666
# image: "hashicorp/consul-enterprise:1.10.0-ent"
6767
# ```
6868
# @default: hashicorp/consul:<latest version>
69-
image: docker.mirror.hashicorp.services/hashicorppreview/consul:1.21.0-rc2
69+
image: hashicorp/consul:1.21.0
7070

7171
# Array of objects containing image pull secret names that will be applied to each service account.
7272
# This can be used to reference image pull secrets if using a custom consul or consul-k8s-control-plane Docker image.
@@ -86,7 +86,7 @@ global:
8686
# image that is used for functionality such as catalog sync.
8787
# This can be overridden per component.
8888
# @default: hashicorp/consul-k8s-control-plane:<latest version>
89-
imageK8S: docker.mirror.hashicorp.services/hashicorppreview/consul-k8s-control-plane:1.7.0-rc2
89+
imageK8S: hashicorp/consul-k8s-control-plane:1.7.0
9090

9191
# The image pull policy used globally for images controlled by Consul (consul, consul-dataplane, consul-k8s, consul-telemetry-collector).
9292
# One of "IfNotPresent", "Always", "Never", and "". Refer to https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy
@@ -793,7 +793,7 @@ global:
793793
# The name (and tag) of the consul-dataplane Docker image used for the
794794
# connect-injected sidecar proxies and mesh, terminating, and ingress gateways.
795795
# @default: hashicorp/consul-dataplane:<latest supported version>
796-
imageConsulDataplane: docker.mirror.hashicorp.services/hashicorppreview/consul-dataplane:1.7.0-rc2
796+
imageConsulDataplane: hashicorp/consul-dataplane:1.7.0
797797

798798
# Configuration for running this Helm chart on the Red Hat OpenShift platform.
799799
# This Helm chart currently supports OpenShift v4.x+.

‎version/version.go

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -22,7 +22,7 @@ var (
2222
// A pre-release marker for the version. If this is "" (empty string)
2323
// then it means that it is a final release. Otherwise, this is a pre-release
2424
// such as "dev" (in development), "beta", "rc1", etc.
25-
VersionPrerelease = "dev"
25+
VersionPrerelease = ""
2626
)
2727

2828
// GetHumanVersion composes the parts of the version in a way that's suitable

0 commit comments

Comments
 (0)
Please sign in to comment.