2.3.0-rc2

2.3.0-rc1 (2022-06-01)

Application Connector

• #13984 Remove Application Registry and Connector Service from the Kyma documentation (@majakurcius)
• #13891 Removal of the Application Registry, Connector Service and Connection Token Handler sources (@mvshao)

Serverless

• #14423 Improve Makefile in function controller: add targets for k3d (@dbadura)
• #14422 Use post images in fn controller (@dbadura)
• #14249 Improve logging in FC (@Cortey)
• #13859 Refactor reconciliation loop (@m00g3n)

Eventing

• #14262 Hardcode the JS stream prefix (@VladislavPaskar)
• #13329 Unify the usages of EVENT_TYPE_PREFIX and LEGACY_EVENT_TYPE_PREFIX (@thandayuthapani)
• #13880 Refactor the skr test, make it more modular, update the readme (@VladislavPaskar)
• #14198 Use default namespace in eventing documentation (@nachtmaar)
• #14189 bump dependencies in eventing controller (@FriedrichWilken)
• #14177 bump dependencies in eventing publisher proxy (@FriedrichWilken)
• #14090 Query the EPP by its backend label, fix the tests (@VladislavPaskar)
• #14101 Changed make deploy for eventing-controller to use helm templates with kustomize (@mfaizanse)

Security

• #14230 Bump ory components to latest version (#14157) (@dariusztutaj)

Monitoring

• #14353 fixed parts of the kubelet grafana dashboard (@a-thaler)
• #14355 update to grafana 7.5.16 (@a-thaler)
• #14103 Improve test coverage of oauth2-proxy (@dennis-ge)

Logging

• #14333 update fluent bit image to distroless version (@a-thaler)
• #14132 Telemetry operator perf test (@rakesh-garimella)
• #14140 update to fluent-bit 1.9.3 (@a-thaler)

Documentation

• #14413 Script for Application Connector Cleanup added (@akgalwas)
• #13984 Remove Application Registry and Connector Service from the Kyma documentation (@majakurcius)
• #14295 update Adjust Volume Size instructions (@NHingerl)
• #14248 change service to Service (@grego952)
• #14198 Use default namespace in eventing documentation (@nachtmaar)
• #14099 JetStream documentation (@raypinto)

Committers: 41

• Andreas Thaler (@a-thaler)
• Andrzej Pankowski (@Cortey)
• Arkadiusz Galwas (@akgalwas)
• Bartosz Chwila (@barchw)
• Benjamin Lindner (@lindnerby)
• Christoph Kleineweber (@chrkl)
• Damian Badura (@dbadura)
• Daria Domagała (@dariadomagala)
• Dennis Geiselmann (@dennis-ge)
• Franciszek Pogodziński (@franpog859)
• Friedrich (@FriedrichWilken)
• Grzegorz Karaluch (@grego952)
• Hanna Gościniak (@hanngos)
• Jakob Möller (@jakobmoellersap)
• Jan Wozniak (@wozniakjan)
• Johannes Veicht (@veichtj)
• Klaudia Grzondziel (@klaudiagrz)
• Korbinian Stoemmer (@k15r)
• Maja Kurcius (@majakurcius)
• Marcin Szwed (@szwedm)
• Marco Bebway (@marcobebway)
• Mariusz Szymański (@Maladie)
• Mohamed Elsayed (@moelsayed)
• Muhammad Faizan (@mfaizanse)
• Nils Seip (@nachtmaar)
• Nina Hingerl (@NHingerl)
• Piotr Halama (@Halamix2)
• Piotr Kopczyński (@PK85)
• Piotr Kopec (@piotrkpc)
• Pooya Salehi (@pxsalehi)
• Przemyslaw Golicz (@koala7659)
• Rafal Foks (@mvshao)
• Rakesh Garimella (@rakesh-garimella)
• Raymond Pinto (@raypinto)
• Stanislav Khalash (@skhalash)
• Thandayuthapani (@thandayuthapani)
• Till Knuesting (@tillknuesting)
• Wojciech Nawa (@VOID404)
• @VladislavPaskar
• @dariusztutaj
• marcin witalis (@m00g3n)

2.3.0-rc1

2.3.0-rc1 (2022-06-01)

Application Connector

• #13984 Remove Application Registry and Connector Service from the Kyma documentation (@majakurcius)
• #13891 Removal of the Application Registry, Connector Service and Connection Token Handler sources (@mvshao)

Serverless

• #14423 Improve Makefile in function controller: add targets for k3d (@dbadura)
• #14422 Use post images in fn controller (@dbadura)
• #14249 Improve logging in FC (@Cortey)
• #13859 Refactor reconciliation loop (@m00g3n)

Eventing

• #14262 Hardcode the JS stream prefix (@VladislavPaskar)
• #13329 Unify the usages of EVENT_TYPE_PREFIX and LEGACY_EVENT_TYPE_PREFIX (@thandayuthapani)
• #13880 Refactor the skr test, make it more modular, update the readme (@VladislavPaskar)
• #14198 Use default namespace in eventing documentation (@nachtmaar)
• #14189 bump dependencies in eventing controller (@FriedrichWilken)
• #14177 bump dependencies in eventing publisher proxy (@FriedrichWilken)
• #14090 Query the EPP by its backend label, fix the tests (@VladislavPaskar)
• #14101 Changed make deploy for eventing-controller to use helm templates with kustomize (@mfaizanse)

Security

• #14230 Bump ory components to latest version (#14157) (@dariusztutaj)

Monitoring

• #14353 fixed parts of the kubelet grafana dashboard (@a-thaler)
• #14355 update to grafana 7.5.16 (@a-thaler)
• #14103 Improve test coverage of oauth2-proxy (@dennis-ge)

Logging

• #14333 update fluent bit image to distroless version (@a-thaler)
• #14132 Telemetry operator perf test (@rakesh-garimella)
• #14140 update to fluent-bit 1.9.3 (@a-thaler)

Documentation

• #14413 Script for Application Connector Cleanup added (@akgalwas)
• #13984 Remove Application Registry and Connector Service from the Kyma documentation (@majakurcius)
• #14295 update Adjust Volume Size instructions (@NHingerl)
• #14248 change service to Service (@grego952)
• #14198 Use default namespace in eventing documentation (@nachtmaar)
• #14099 JetStream documentation (@raypinto)

Committers: 41

• Andreas Thaler (@a-thaler)
• Andrzej Pankowski (@Cortey)
• Arkadiusz Galwas (@akgalwas)
• Bartosz Chwila (@barchw)
• Benjamin Lindner (@lindnerby)
• Christoph Kleineweber (@chrkl)
• Damian Badura (@dbadura)
• Daria Domagała (@dariadomagala)
• Dennis Geiselmann (@dennis-ge)
• Franciszek Pogodziński (@franpog859)
• Friedrich (@FriedrichWilken)
• Grzegorz Karaluch (@grego952)
• Hanna Gościniak (@hanngos)
• Jakob Möller (@jakobmoellersap)
• Jan Wozniak (@wozniakjan)
• Johannes Veicht (@veichtj)
• Klaudia Grzondziel (@klaudiagrz)
• Korbinian Stoemmer (@k15r)
• Maja Kurcius (@majakurcius)
• Marcin Szwed (@szwedm)
• Marco Bebway (@marcobebway)
• Mariusz Szymański (@Maladie)
• Mohamed Elsayed (@moelsayed)
• Muhammad Faizan (@mfaizanse)
• Nils Seip (@nachtmaar)
• Nina Hingerl (@NHingerl)
• Piotr Halama (@Halamix2)
• Piotr Kopczyński (@PK85)
• Piotr Kopec (@piotrkpc)
• Pooya Salehi (@pxsalehi)
• Przemyslaw Golicz (@koala7659)
• Rafal Foks (@mvshao)
• Rakesh Garimella (@rakesh-garimella)
• Raymond Pinto (@raypinto)
• Stanislav Khalash (@skhalash)
• Thandayuthapani (@thandayuthapani)
• Till Knuesting (@tillknuesting)
• Wojciech Nawa (@VOID404)
• @VladislavPaskar
• @dariusztutaj
• marcin witalis (@m00g3n)

2.2.0

Not so long ago in a galaxy not so far away, there was a friendly kingdom of Kyma-land ruled by king Kyma the Wise. The king once said: “It is time to improve our kingdom so that we all can lead even happier lives”. As the king had never made an empty promise, he introduced many features, such as a complete setup of the Istio metrics, Istio upgrade to 1.13.2, overriding Function runtime image and improved Eventing backend custom resource (CR) status. Read more if you want to learn about other ideas the king came up with!

API Gateway

ORY stack deprecation note

Due to the growing demand for a closer integration with our Service Mesh Istio implementation, we decided to gradually switch from the current implementation behind Kyma API Gateway (ORY Hydra and ORY Oathkeeper) to Authentication and Authorization features that Istio provides out of the box. With this change, we introduce more options in terms of configuration, flexibility, and performance to our customers. Additionally, we want to keep the Kyma stack as lean as possible.

The changes will be introduced gradually. We plan to provide as much automated migration as possible to ensure the smooth growth of Kyma API Gateway. This is just initial information, no action is required.

CLI

Removed support for Kyma 1.x

As announced in the Kyma 2.0 release notes, starting from the version 2.2, Kyma CLI no longer supports Kyma 1.x versions. All the deprecated commands have been removed and are no longer available:

• kyma install: Kyma 2.x equivalent is kyma deploy
• kyma upgrade: Kyma 2.x equivalent is kyma deploy
• kyma console: Kyma 2.x equivalent is kyma dashboard
• kyma provision minikube: Kyma 2.x equivalent is kyma provision k3d

Eventing

Improved Eventing backend CR status

We have made the Eventing backend CR status more verbose. We've replaced two of the three booleans, publisherProxyReady and subscriptionControllerReady, with the Kubernetes conditions. The eventingReady boolean remains unchanged.

Observability

Improved documentation on monitoring limitations

We added a new section outlining the limits of the shipped monitoring stack running on the production profile with the default settings. Read Monitoring limitations for more information.

Cleanup of rules and dashboards

We've continued to clean up Prometheus rules and Grafana dashboards. Several rules for Kubernetes introduced by Kyma itself have been removed, as they overlapped with the community-based rules. With that, the monitoring chart is fully based on the rules provided by the community upstream chart. Also, one more Kubernetes-related Grafana dashboard called Kyma / Pods has been removed, as it overlapped with the existing dashboards.

Complete Istio metrics

The Istio metrics setup, coming with the Kyma monitoring feature, now follows the approach recommended by Istio and provides all Istio metrics as aggregations over workload. Read Observability Best Practices for more information.

Minor upgrade of Fluent Bit

The Fluent Bit log collector, included in the Kyma logging stack, has been updated to the 1.9 release series. It brings major improvements in stability and performance.

Minor upgrade of Kiali

Kiali has been upgraded to version 1.49 and is fully supporting Istio 1.13.

Serverless

Overrides for the Function runtime image

We've extended the definition of the Function CR. Now you can override the base image of the Serverless runtime with a custom Docker image.

You may need this feature if you want to build your Functions on top of a runtime with tooling that is not included in the default Alpine-based runtime (for example, the GCC compiler).

Remember that, if you use a custom base image for your Functions, you are responsible for scanning and assessing any potential risks related to commonly known vulnerabilities that are potentially exploitable.

There is a dedicated example defining a custom runtime and a tutorial explaining how to use it in your Functions.

Service Mesh

Revert to distroless Istio images provided by Istio

With the 2.2 Kyma release, both Istio control plane and data plane again use distroless images provided by Istio.

Istio upgraded to 1.13.2

We've upgraded Istio from 1.12.3 to 1.13.2. For more details on the introduced changes, read the official Istio 1.13.2 release notes.

---

2.2.0-rc1 (2022-04-28)

Application Connector

• #14102 Prow approval flow is not used. OWNERS files are not needed. (@dekiel)
• #14008 Bump Compass Runtime Agent (@franpog859)
• #13837 Update OWNER files in application-connector to new guidelines (@koala7659)
• #13810 Fix Application connector port names in services to comply with Isti… (@cnvergence)
• #13571 Add correlation ID to requests in compass runtime agent (@krasish)
• #13627 Change the commerce-mock version used in fast integration tests (@mvshao)

Serverless

• #14096 Bump k8s-tools image (@Halamix2)
• #14102 Prow approval flow is not used. OWNERS files are not needed. (@dekiel)
• #14077 Bump busybox for serverless components (@dbadura)
• #13896 Bump k8s-tools image (@Halamix2)
• #13881 Get rid of the kubeless-npm-install.sh file (@pPrecel)
• #13631 Rewrite serverless webhooks using controller-runtime (@moelsayed)
• #13708 Support custom base image for serverless runtimes (@pPrecel)
• #13804 Update and upgrade apk modules in context of serverless components (@pPrecel)
• #13788 Fix tracing sampling in nodejs (@dbadura)
• #13803 Bump k8s-tools image (@Halamix2)
• #13696 Docs: Tracing Instrumentation doesn't work for outgoing axios requests in nodejs function runtimes (@pPrecel)
• #13743 add guide on how to install libgit2 (@grego952)
• #13710 Upgrade serverless components dependencies (@pPrecel)
• #13653 Add support for tracing in NodeJS runtime (@dbadura)

Eventing

• #14107 Update Eventing images (@marcobebway)
• #14102 Prow approval flow is not used. OWNERS files are not needed. (@dekiel)
• #14093 fix kyma-integration-k3d-telemetry (@dennis-ge)
• #13973 Call Prometheus, Loki and Jaeger via Grafana API (@dennis-ge)
• #14066 Add subscription namespacedName to consumer description (@raypinto)
• #14069 bump github.com/nats-io/nats-server/v2 from 2.8.0 to 2.8.1 in EC (@FriedrichWilken)
• #14070 bump github.com/nats-io/nats-server/v2 from 2.8.0 to 2.8.1 in EPP (@FriedrichWilken)
• #14016 Rename the backend label in the EPP deployment (@VladislavPaskar)
• #14061 Bump dependencies in EC (@FriedrichWilken)
• #14032 gomod(deps): bump k8s.io/api from 0.23.5 to 0.23.6 in /components/eventing-controller (@dependabot[bot])
• [#14024](https://...

2.2.0-rc1

2.2.0-rc1 (2022-04-28)

Application Connector

• #14102 Prow approval flow is not used. OWNERS files are not needed. (@dekiel)
• #14008 Bump Compass Runtime Agent (@franpog859)
• #13837 Update OWNER files in application-connector to new guidelines (@koala7659)
• #13810 Fix Application connector port names in services to comply with Isti… (@cnvergence)
• #13571 Add correlation ID to requests in compass runtime agent (@krasish)
• #13627 Change the commerce-mock version used in fast integration tests (@mvshao)

Serverless

• #14096 Bump k8s-tools image (@Halamix2)
• #14102 Prow approval flow is not used. OWNERS files are not needed. (@dekiel)
• #14077 Bump busybox for serverless components (@dbadura)
• #13896 Bump k8s-tools image (@Halamix2)
• #13881 Get rid of the kubeless-npm-install.sh file (@pPrecel)
• #13631 Rewrite serverless webhooks using controller-runtime (@moelsayed)
• #13708 Support custom base image for serverless runtimes (@pPrecel)
• #13804 Update and upgrade apk modules in context of serverless components (@pPrecel)
• #13788 Fix tracing sampling in nodejs (@dbadura)
• #13803 Bump k8s-tools image (@Halamix2)
• #13696 Docs: Tracing Instrumentation doesn't work for outgoing axios requests in nodejs function runtimes (@pPrecel)
• #13743 add guide on how to install libgit2 (@grego952)
• #13710 Upgrade serverless components dependencies (@pPrecel)
• #13653 Add support for tracing in NodeJS runtime (@dbadura)

Eventing

• #14107 Update Eventing images (@marcobebway)
• #14102 Prow approval flow is not used. OWNERS files are not needed. (@dekiel)
• #14093 fix kyma-integration-k3d-telemetry (@dennis-ge)
• #13973 Call Prometheus, Loki and Jaeger via Grafana API (@dennis-ge)
• #14066 Add subscription namespacedName to consumer description (@raypinto)
• #14069 bump github.com/nats-io/nats-server/v2 from 2.8.0 to 2.8.1 in EC (@FriedrichWilken)
• #14070 bump github.com/nats-io/nats-server/v2 from 2.8.0 to 2.8.1 in EPP (@FriedrichWilken)
• #14016 Rename the backend label in the EPP deployment (@VladislavPaskar)
• #14061 Bump dependencies in EC (@FriedrichWilken)
• #14032 gomod(deps): bump k8s.io/api from 0.23.5 to 0.23.6 in /components/eventing-controller (@dependabot[bot])
• #14024 bump dependencies in EPP (@FriedrichWilken)
• #14018 Update Eventing images (@marcobebway)
• #14010 bump docker build image to go 1.18.1 in EPP (@FriedrichWilken)
• #14009 Update Eventing images (@marcobebway)
• #14001 bump docker build image to golang 1.18.1 in EC (@FriedrichWilken)
• #13958 bump dependencies in ec (@FriedrichWilken)
• #13969 Fix and enable JetStream monitoring tests in eventing fast-integration (@mfaizanse)
• #13779 JetStream E2E fast integration tests (@marcobebway)
• #13965 Rename the backend label in the EPP deployment (@VladislavPaskar)
• #13949 Fix make test for eventing-controller and event-publisher-proxy (@mfaizanse)
• #13972 Fix circular dependency between Eventing and commerce mock in the fast-integration tests (@marcobebway)
• #13888 Update eventing codeowners (@nachtmaar)
• #13832 Enabled NATS metrics exporter and added JetStream dashbaord (@mfaizanse)
• #13947 Make JetStream consumer deliver policy configurable (@marcobebway)
• #13841 Make eventing backend status more verbose (@raypinto)
• #13883 fix security vulnerability in epp (@FriedrichWilken)
• #13884 fix security vulnerability in ec (@FriedrichWilken)
• #13871 Remove prometheusPortForward leftovers (@skhalash)
• #13725 fast-integration test: add debug message for expected traces (@FriedrichWilken)
• #13863 bump dependencies in eventing controller (@FriedrichWilken)
• #13864 bump dependencies in epp (@FriedrichWilken)
• #13763 Add support for event publishing to NATS in jetstream mode (@VladislavPaskar)
• #13775 Pass Jetstream environment variables to eventing publisher proxy (@VladislavPaskar)
• #13849 Bumped NATS image on main (@mfaizanse)
• #13830 Upgrade eventing images to use go 1.18 runtime (main branch) (@nachtmaar)
• #13785 Unit tests for NATS Reconcile() (@pxsalehi)
• #13746 Using eventTypePrefix as subjects filter for stream in JetStream (@mfaizanse)
• #13744 Create JetStream consumers with the recommended name length (@marcobebway)
• #13772 Bring back removed feature flag in NATS chart (@pxsalehi)
• #13703 Implement cleanup for JetStream (@raypinto)
• #13764 Switch from go-get to go-install and bump linter version (@raypinto)
• #13689 Consistent sink validation in BEB and NATS (@pxsalehi)
• #13693 Added MaxDeliver config to JetStream consumer (@mfaizanse)
• #13676 Refactor Jetstream server restart test (@raypinto)
• [#13629](htt...

2.1.3

2.1.3 (2022-04-12)

Application Connector

• #13951 Pod Preset Updates (@ralikio)

Service Mesh

• #13964 bump postgres alpine for Ory (@piotrkpc)
• #13951 Pod Preset Updates (@ralikio)

Committers: 3

• Piotr Halama (@Halamix2)
• Piotr Kopec (@piotrkpc)
• Wojciech Wrzalik (@ralikio)

2.1.2

2.1.2 (2022-04-05)

Serverless

• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13839 Cherrypick security for the serverless components (@pPrecel)
• #13805 Bump k8s-tools image in release-2.1 (@Halamix2)

Eventing

• #13853 Update eventing container images (@nachtmaar)
• #13843 Upgrade eventing images to use go 1.18 runtime (@nachtmaar)
• #13846 Bumped NATS image on 2.1 (@mfaizanse)
• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13782 Backport: disable ingress metrics in kube-state-metrics (@a-thaler)

Security

• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13805 Bump k8s-tools image in release-2.1 (@Halamix2)
• #13782 Backport: disable ingress metrics in kube-state-metrics (@a-thaler)

Service Mesh

• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13805 Bump k8s-tools image in release-2.1 (@Halamix2)
• #13782 Backport: disable ingress metrics in kube-state-metrics (@a-thaler)

Monitoring

• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13782 Backport: disable ingress metrics in kube-state-metrics (@a-thaler)

Documentation

• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13805 Bump k8s-tools image in release-2.1 (@Halamix2)
• #13782 Backport: disable ingress metrics in kube-state-metrics (@a-thaler)

Core and Supporting

• #13840 Upgrade resources after cherry-pick (@pPrecel)
• #13805 Bump k8s-tools image in release-2.1 (@Halamix2)

Committers: 6

• Andreas Thaler (@a-thaler)
• Filip Strózik (@pPrecel)
• Kamil Kasperski (@Ressetkk)
• Muhammad Faizan (@mfaizanse)
• Nils Seip (@nachtmaar)
• Piotr Halama (@Halamix2)

2.1.1

2.1.1 (2022-03-28)

Eventing

• #13769 Bring back removed feature flag in NATS chart (@pxsalehi)

Committers: 2

• Kamil Kasperski (@Ressetkk)
• Pooya Salehi (@pxsalehi)

2.1.0

Ahoy, mateys! We're calling at the port again to load up with a fresh portion of new features, improvements, and upgrades, but also to unload stuff that we no longer need on this journey and that's been slowing us down. Support for Kubernetes 1.21, a new alpha option for the deploy command, support for non-alphanumeric characters in event types, upgrade of the whole Monitoring component, and Istio refactoring are just some of those things that we happily bring aboard. Read on to find out more about this Kyma 2.1 ship!

CAUTION: Before upgrading to Kyma 2.1, read the Migration Guide.

General

With release 2.1, we now officially support and test against Kubernetes 1.21.

CLI

The deploy command: try the new dry-run option in the alpha version

With this release, a new dry-run option was added to the deploy command. It lets you trial-run the YAMLs for your Kubernetes resources and see what the output would be if they were deployed. Mind that for now, the option is in the alpha version. It cannot be used yet to apply a full Kyma installation, as the components having custom installation routines (such as Istio) are not included in the generated manifests. See the Kyma CLI documentation for more details.

The deploy command: specify components with downloadURL and version

Another addition to the deploy command is an extension to the --component flag. Previously you could specify the name and namespace for the component. Now you can also specify the two additional parameters: downloadURL and version. Again, refer to the CLI documentation for more details.

Generate schema for Function manifests

We improved the development experience for Functions developers. We added schema generation for the config.yaml manifests. This, when combined with dedicated plugins in your IDE, helps you avoid mistakes via validation and autocompletion.

• If you use the VSCode IDE to develop Function code, just use the --vscode option when generating the Function project:

  kyma init function --vscode

  This command creates the .vscode folder, which contains the schema for config.yaml. Install the YAML plugin in your IDE and VSCode will automatically pick it up for validation and autocompletion.

• If you just want to generate the schema, use the following command:

  kyma get schema serverless

  This will print out the JSON schema so that you can import it in your preferred IDE.

Support for Gardener cluster hibernation added

Starting with Kyma 2.1, it is now possible to specify a hibernation schedule for a Kyma cluster which was created using the kyma provision gardener command. To do so, specify a hibernation schedule by providing cron expressions for the start and end of the hibernation, and the timezone on which to base the schedule:

kyma provision gardener gcp -n my-cluster -p my-project -c /path/to/credentials.yaml -s gcp-secret --hibernation-start="00 18 * * 1,2,3,4,5" hibernation-end="00 09 * * 1,2,3,4,5" hibernation-location="Europe/Berlin" 

By default, all Gardener clusters have hibernation scheduled for weekdays at 6pm (18:00) in the Europe/Berlin timezone.

Provisioning commands for GKE, AKS, and AWS removed

With this release, we removed the support for provisioning Kyma clusters on the GKE, AWS, and AKS hyperscalers. Provisioning of a cluster via Gardener or k3d is still possible.

Eventing

Support for non-alphanumeric characters in event types

The naming in event types comes with certain restrictions.
Previously, we only supported ASCII alphanumeric characters from the range [a-zA-Z0-9]+. If your name contained an unsupported character, the event sending was failed.

Starting from this release, we no longer fail sending such events. Instead, the unsupported characters are automatically dropped from events sent to Kyma and also from event types specified in the Subscription CRD.

Read about the event names and Subscription CRD in more detail.

Observability

Kiali and Jaeger upgraded

With Kyma 2.1, the Kiali and Jaeger components were updated to the following recent versions:

• Kiali 1.44
• Jaeger 1.30.0

Monitoring upgraded

Speaking of upgrades, the different components of the Monitoring area also got one. While doing that, we felt inspired and updated the used Helm chart, too, and adapted it to the upstream charts. The components were upgraded to the following versions:

• Node-exporter 1.3.1
• Kube-state-metrics 2.3.0
• Prometheus 2.32.1
• Prometheus Operator 0.53.1
• Alertmanager 0.23.0
• Pushgateway 1.4.2
• Grafana 7.5.15
• Oauth2 Proxy 7.2.1

As the kube-state-metrics component got a major upgrade to version 2.x, some metrics were restructured.

The following table shows how the metrics were affected:

Previously	Now
kube_pod_container_resource_requests_cpu_cores, kube_pod_container_resource_limits_cpu_cores, kube_pod_container_resource_requests_memory_bytes, kube_pod_container_resource_limits_memory_byte	kube_pod_container_resource_requests, kube_pod_container_resource_limits
kube_node_status_capacity_pods, kube_node_status_capacity_cpu_cores, kube_node_status_capacity_memory_bytes, kube_node_status_allocatable_pods, kube_node_status_allocatable_cpu_cores, kube_node_status_allocatable_memory_bytes,	kube_node_status_capacity, kube_node_status_allocatable
kube_daemonset_updated_number_scheduled	kube_daemonset_status_updated_number_scheduled
kube_hpa_*	kube_horizontalpodautoscaler_*

Furthermore, the envoy_ metrics exposed by the Istio sidecar running with every workload are not collected by default anymore.
However, we continue to collect the more relevant istio_ metrics, which are used in the Istio-specific dashboards.
It turned out that the envoy_ metrics were helpful only in advanced troubleshooting scenarios and introduced too big a cardinality of the metrics, resulting in big resource consumption. Still, you can enable them optionally.
See #issue 13659 for more details.

Grafana dashboards improved

Several improvements were applied to the dashboards that come with Grafana in Kyma:

• The Loki dashboard was improved by adding a new top section with the most relevant metrics displayed.
• All dashboards were adjusted to the metric changes coming with the major upgrade of kube-state-metrics.
• The dashboards tagged as kubernetes-mixins were updated to the latest available version from the community.
• node-exporter and Prometheus dashboards were replaced by the version provided by the community.
• The Kyma frontends and backends dashboards were removed, as they had no additional value to the existing dashboards.
• The Kyma Controllers dashboards were revamped to have relevant reconciliation metrics included, and they were rolled out to all Kyma controllers.

The alertmanager chart revamped

The Kyma alertmanager chart, which is a sub-chart of the Monitoring component, was refactored more heavily. Mainly, we tried to remove customizations that were in contrast to the available community chart, to simplify future updates.

With that, the following changes were applied:

• The dedicated configuration options for VictorOps were removed. Use the typical options for configuration of notification channels instead.
• New alert rules were added:
  • AlertmanagerFailedToSendAlerts
  • AlertmanagerClusterFailedToSendAlerts
  • AlertmanagerClusterFailedToSendAlerts Warning
  • AlertmanagerClusterDown
  • AlertmanagerClusterCrashlooping
  • ConfigReloaderSidecarErrors
  • KubeStateMetricsShardingMismatch
  • KubeStateMetricsShardsMissing
  • KubeAPITerminatedRequests
  • NodeFileDescriptorLimit
  • PrometheusLabelLimitHit
  • PrometheusTargetSyncFailure
  • PrometheusOperatorSyncFailed
• The following alert rules were renamed:
  • AggregatedAPIDown → KubeAggregatedAPIDown
  • AggregatedAPIErrors → KubeAggregatedAPIErrors

Logging chart updated and Loki improved

We updated the Logging component to the latest available FluentBit version, 1.8.13.
Furthermore, the label map for the Loki integration was improved:

• Previously, we had the Kubernetes app label mapped to the Loki app label. Now, on top of that, we also mapped the label app.kubernetes.io/name to the Loki app label.
• We mapped the label app.kubernetes.io/component to the Loki component label.
• We removed the release and serverless.kyma-project.io/uuid labels to improve the chunk size handling in Loki.

Moreover, besides having data retention by time, we introduced a new sidecar taking care of data retention by size. With that, Loki will not crash anymore when reaching the volume size limit. Oldest data is deleted first.

Serverless

Node.js 12 deprecated

The base image for Node.js 12 will be maintained only until April 2022. Thus, following the recommendations from Node...

2.1.0-rc1

2.1.0-rc1 (2022-03-22)

Application Connector

• #13171 Proxy the X-Forwarded-* headers (@mvshao)
• #12257 Gateway skip verify in Application CR (@koala7659)
• #13170 Add a workspace prefix to the AC dockerfiles (@franpog859)
• #13076 Bump Application Connector golang runtime to 1 17 6 (@franpog859)
• #13061 Fix central-application-connectivity-validator legacy gatewayName in VirtualService (@mjakobczyk)
• #12903 Bump CRA (@franpog859)
• #12876 Add managed-by label to apps and configmap to skr (@franpog859)
• #12877 Add SKR configmap to CRA chart (@franpog859)
• #12800 Bump Application Connector images (@franpog859)
• #12786 Simplify App Conn tutorials some more (@majakurcius)
• #12721 Tests for CRUD operations on application services (@mvshao)
• #12465 Adjust Application Connectivity docs to Kyma 2.0, pt.2 (@majakurcius)
• #12470 Fix Application Mapping CRD (@franpog859)
• #12396 Update the Runtime Agent guide to reflect changes to Kyma installation (@majakurcius)
• #12294 Deleted deprecated Runtime API in Connector Service (@mvshao)
• #12324 Remove Application Connector CRDs from deprecated location (@franpog859)
• #12322 Update Application CRD (@franpog859)
• #12181 Add Central Gateway URL to the Application CustomResource using Application Registry (@franpog859)
• #12148 Migrate Application Connector requirements.yaml to Chart.yaml (@rafalpotempa)
• #12116 Fix fast integration tests with central app gateway failing (@franpog859)
• #11952 Update CODEOWNERS with Central Application Connectivity charts (@rafalpotempa)
• #11881 Upgrade dependencies in Application Operator (@rafalpotempa)
• #11846 Refactor central-application-connectivity-validator cache sync controller. (@everesio)
• #11845 Update the Application Connector chart documentation (@majakurcius)
• #11676 Add Central Connectivity Validator fast integration tests (@rafalpotempa)
• #11778 Fix a typo in the central_application_connectivity_validator parameter name (@majakurcius)
• #11728 Add liveness and readiness probes to application-operator (@skhalash)
• #11631 Move Central Application Gateway and Central Connectivity Validator to kyma-system namespace (@franpog859)
• #11623 Replace satori/go.uuid with google/uuid in Application Registry (@rafalpotempa)
• #11591 Clean Application Operator dependencies up (@franpog859)

Serverless

• #13611 Grafana function dashboard broken (@a-thaler)
• #13495 Document the OpenTelemetry Tracer object in the context of the serverless runtimes (@pPrecel)
• #13348 Add tracing sdk to function runtimes (@pPrecel)
• #13516 Fix for CVE-2022-21698 for Function-Controller (@Cortey)
• #13263 Adding the missing Cloud Event attribute (@Cortey)
• #13309 Increase python39 concurrency defaults (@moelsayed)
• #13313 Dockerfile-lint-3-2 (@ammarlakis)
• #13292 Adjust resource configuration for "S" and "XS" profiles in the documentation (@pPrecel)
• #13060 Use the latest Kaniko image (@pPrecel)
• #12759 Replace PR tags for the serverless and the rafter components (@pPrecel)
• #12339 Remove minikube from svls (@NHingerl)
• #12079 Fix the serverless-long test (@pPrecel)
• #11980 Replace all PR tags in the serverless chart (@pPrecel)
• #11968 Disable buffering in python runtimes (@pPrecel)
• #11879 Add OAuth2 secured API Rule to fast-integration tests (@tgorgol)
• #11697 Allow for easy back-channel communication from function to eventing backend (@pPrecel)
• #11752 Document easy back-channel communication from function to eventing backend (@pPrecel)
• #11744 Add missing liveness/readiness probes to serverless pods (@skhalash)
• #11708 Fix Serverless admission webhook (@tgorgol)
• #11666 Update wookiees codeowners (@pPrecel)
• #11612 Migrate serverless admission webhooks to v1 (@tgorgol)

Service Catalog

• #13536 fixing broken link after cleaning cluster-essentials (@strekm)
• #13065 Fix Helm Broker port names in services to comply with Istio convention (@mjakobczyk)

Eventing

• #13678 Update Eventing images (@marcobebway)
• #13651 Update Eventing images (@marcobebway)
• #13648 Update golang version for Eventing components (@marcobebway)
• #13645 Upgrade nats from 2.6.4 to 2.7.4 (@nachtmaar)
• #13644 Improve Eventing documentation for Event type cleanup (@marcobebway)
• #13642 Update docs for the Event name format (@marcobebway)
• #13626 Add nats config reloader (@nachtmaar)
• #13608 Support CloudEvents type cleanup while publishing (@marcobebway)
• #13605 Improve JetStream Helm chart naming and doc (@pxsalehi)
• #13247 Non-functional improvements in event-publisher-proxy (documentation, testing) (@nachtmaar)
• #13585 Add comments and documentation for JetStream environment variables (@pxsalehi)
• [#13...

1.24.11

1.24.11 (2022-02-17)

Eventing

• #13344 bump eventing images (@k15r)

Security

• #13372 Bump Console vulnerabilities (@Wawrzyn321)

Monitoring

• #13383 backport: update to grafana 7.5.15 (@a-thaler)
• #13364 Ignore all non-critical alerts in monitoring test (@rakesh-garimella)

Committers: 5

• Andreas Thaler (@a-thaler)
• Kamil Kasperski (@Ressetkk)
• Korbinian Stoemmer (@k15r)
• Piotr Wawrzyńczyk (@Wawrzyn321)
• Rakesh Garimella (@rakesh-garimella)