Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release v1.9.0 #2115

Closed
imjasonh opened this issue Jun 1, 2022 · 9 comments
Closed

Release v1.9.0 #2115

imjasonh opened this issue Jun 1, 2022 · 9 comments
Assignees
@chuangw6

Comments

@imjasonh
Copy link
Collaborator

imjasonh commented Jun 1, 2022

v1.8.1 was cut on April 5, about 2 months ago.

Diff since then: v1.8.1...main

Some notable changes / fixes:

ref: #2049 (comment) asking for a timeline on a new release

We might also want to wait for #2106 to land.
@chuangw6
Copy link
Contributor

chuangw6 commented Jun 1, 2022

Thanks @imjasonh! #2117 is created.

@imjasonh
Copy link
Collaborator Author

imjasonh commented Jun 1, 2022

@chuangw6 do you think we should wait for #2106?

@chuangw6
Copy link
Contributor

chuangw6 commented Jun 1, 2022
edited
Loading

@chuangw6 do you think we should wait for #2106?

sgtm! Converted #2117 to draft. I'll update the pr once #2106 is merged.

@jebatc
Copy link

jebatc commented Jun 20, 2022
edited
Loading

Will v1.9.0 update golang to v1.18.1 or newer? The current release is affected by the following vulnerability CVE-2022-24675. If so, is there any estimate for when v.1.9.0 will be release? If not, any idea when this vulnerability might be addressed?

It looks like you already have a pull request to do this. #2121

@imjasonh
Copy link
Collaborator Author

Will v1.9.0 update golang to v1.18.1 or newer? The current release is affected by the following vulnerability CVE-2022-24675. If so, is there any estimate for when v.1.9.0 will be release? If not, any idea when this vulnerability might be addressed?

It looks like you already have a pull request to do this. #2121

I've sent #2141 to build Kaniko with Go 1.18.

I'm pretty confident the vulnerability doesn't affect Kaniko, unless I'm misunderstanding, but we should be on the latest Go anyway.

I don't have an estimate for when the next Kaniko release might happen.

@imjasonh imjasonh mentioned this issue Jul 24, 2022
Open
@lappazos
Copy link

lappazos commented Jul 24, 2022
edited
Loading

@imjasonh Adding #1669 for this release - build crashes with big images. Works fine with gcr.io/kaniko-project/executor:09e70e44d9e9a3fecfcf70cb809a654445837631

@chuangw6
Copy link
Contributor

@imjasonh Adding #1669 for this release - build crashes with big images. Works fine with gcr.io/kaniko-project/executor:09e70e44d9e9a3fecfcf70cb809a654445837631

Hey @imjasonh , are we planning to include the fix for #1669 in this release? Please let me know when it's time to cut the release. Thanks

@chuangw6 chuangw6 mentioned this issue Jul 25, 2022
Merged
4 tasks
@imjasonh
Copy link
Collaborator Author

I still don't know exactly what's wrong in #1669 -- if someone can test the latest commit-tagged image and let me know if it's been fixed since 1.8.0 that would be great. There have been some snapshotting improvements from @gabyx especially that might have fixed this.

In any case, I don't think we need to block the release on that fix, there have been plenty of improvements worth releasing even if that long-standing issue isn't included.

@aaron-prindle
Copy link
Collaborator

Closing, v1.9.0 is released

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@chuangw6 chuangw6

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@imjasonh @aaron-prindle @chuangw6 @lappazos @jebatc