From 3c894b3f073b54366f29fd83d6eb5ff076177d85 Mon Sep 17 00:00:00 2001
From: Eric Goode <egoode@oteemo.com>
Date: Fri, 3 Dec 2021 22:54:31 +0000
Subject: [PATCH] Release 1.22.0
---
CHANGELOG.md | 4 ++++
Packages.md | 6 ++++-
README.md | 49 ++++++++++++++++++++++++++++++++---------
base/gitrepository.yaml | 2 +-
chart/Chart.yaml | 2 +-
5 files changed, 49 insertions(+), 14 deletions(-)
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0db311e1dc..ec8d6f6916 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,6 +3,10 @@
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
---
+## [1.22.0]
+
+* [!1.22.0](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests?scope=all&utf8=%E2%9C%93&state=merged&milestone_title=1.22.0); List of merge requests in this release.
+
## [1.21.0]
* [!1.21.0](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests?scope=all&utf8=%E2%9C%93&state=merged&milestone_title=1.21.0); List of merge requests in this release.
diff --git a/Packages.md b/Packages.md
index 8b34cd5f24..17f2fd522d 100644
--- a/Packages.md
+++ b/Packages.md
@@ -24,7 +24,9 @@ Columns:
| [OPA Gatekeeper](https://repo1.dso.mil/platform-one/big-bang/apps/core/policy) |  | No | No | No | [Yes](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests/626) | No |No |
| [Argocd](https://repo1.dso.mil/platform-one/big-bang/apps/core/argocd) | | No | No | No | [Yes](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests/572) | [No](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/issues/620) | No |
| [Cluster Auditor](https://repo1.dso.mil/platform-one/big-bang/apps/core/cluster-auditor) |  | No | No | No | [Yes](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests/565) | No | No |
-
+| [Kyverno](https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/kyverno)  |  | No | No | No | Yes | No | No |
+| [Promtail](https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/promtail)  |  | No | No | No | Yes | No | No |
+| [Loki](https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/loki)  |  | No | No | No | Yes | No | No |
## Security
| Package | Status | Logging | Telemetry | Tracing | Network Policies | mTLS | Behavior Detection |
@@ -33,6 +35,8 @@ Columns:
| [Twistlock](https://repo1.dso.mil/platform-one/big-bang/apps/security-tools/twistlock) |  | No | No | No | [Yes](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests/498) | [No](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/issues/618) | No |
| [Anchore Enterprise](https://repo1.dso.mil/platform-one/big-bang/apps/security-tools/anchore-enterprise) |  | No | No | No | [Yes](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests/505) | [No](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/issues/619) | No |
| [Authservice](https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/authservice) |  | No | Yes | Yes | [Yes](https://repo1.dso.mil/platform-one/big-bang/bigbang/-/merge_requests/511) | No | No |
+| [Vault](https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/vault)  |  | No | No | No | Yes | No | No |
+
## Development Tools
diff --git a/README.md b/README.md
index 8a44a749fc..92924f4905 100644
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
# bigbang
- 
+ 
Big Bang is a declarative, continuous delivery tool for core DoD hardened and approved packages into a Kubernetes cluster.
@@ -14,11 +14,11 @@ Big Bang follows a [GitOps](#gitops) approach to configuration management, using
Big Bang is intended to be used for deploying and maintaining a DoD hardened and approved set of packages into a Kubernetes cluster. Deployment and configuration of ingress/egress, load balancing, policy auditing, logging, monitoring, etc. are handled via Big Bang. Additional packages (e.g. ArgoCD, GitLab) can also be enabled and customized to extend Big Bang's baseline. Once deployed, the customer can use the Kubernetes cluster to add mission specific applications.
-Additional information can be found in [Big Bang Overview](./docs/overview.md).
+Additional information can be found in [Big Bang Overview](./docs/1_overview.md).
## Getting Started
-To start using Big Bang, you will need to create your own Big Bang environment tailored to your needs. The [Big Bang customer template](https://repo1.dso.mil/platform-one/big-bang/customers/template/) is provided for you to copy into your own Git repository and begin modifications. Follow the instructions in [Big Bang Getting Started](./docs) to customize and deploy Big Bang.
+To start using Big Bang, you will need to create your own Big Bang environment tailored to your needs. The [Big Bang customer template](https://repo1.dso.mil/platform-one/big-bang/customers/template/) is provided for you to copy into your own Git repository and begin modifications. Follow the instructions in [Big Bang Getting Started](./docs/2_getting_started.md) to customize and deploy Big Bang.
## Maintainers
@@ -121,10 +121,17 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| gatekeeper.flux | object | `{"install":{"crds":"CreateReplace"},"upgrade":{"crds":"CreateReplace"}}` | Flux reconciliation overrides specifically for the OPA Gatekeeper Package |
| gatekeeper.values | object | `{}` | Values to passthrough to the gatekeeper chart: https://repo1.dso.mil/platform-one/big-bang/apps/core/policy.git |
| gatekeeper.postRenderers | list | `[]` | Post Renderers. See docs/postrenders.md |
+| kyverno.enabled | bool | `false` | Toggle deployment of Kyverno. |
+| kyverno.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/kyverno"` | |
+| kyverno.git.path | string | `"./chart"` | |
+| kyverno.git.tag | string | `"2.1.2-bb.0"` | |
+| kyverno.flux | object | `{"install":{"crds":"CreateReplace"},"upgrade":{"crds":"CreateReplace"}}` | Flux reconciliation overrides specifically for the Kyverno Package |
+| kyverno.values | object | `{}` | Values to passthrough to the kyverno chart: https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/kyverno.git |
+| kyverno.postRenderers | list | `[]` | Post Renderers. See docs/postrenders.md |
| logging.enabled | bool | `true` | Toggle deployment of Logging (EFK). |
| logging.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/core/elasticsearch-kibana.git"` | |
| logging.git.path | string | `"./chart"` | |
-| logging.git.tag | string | `"0.1.22-bb.0"` | |
+| logging.git.tag | string | `"0.1.23-bb.0"` | |
| logging.flux | object | `{"timeout":"20m"}` | Flux reconciliation overrides specifically for the Logging (EFK) Package |
| logging.ingress.gateway | string | `""` | |
| logging.sso.enabled | bool | `false` | Toggle OIDC SSO for Kibana/Elasticsearch on and off. Enabling this option will auto-create any required secrets. |
@@ -143,14 +150,26 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| fluentbit.enabled | bool | `true` | Toggle deployment of Fluent-Bit. |
| fluentbit.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/core/fluentbit.git"` | |
| fluentbit.git.path | string | `"./chart"` | |
-| fluentbit.git.tag | string | `"0.16.6-bb.1"` | |
+| fluentbit.git.tag | string | `"0.19.3-bb.0"` | |
| fluentbit.flux | object | `{}` | Flux reconciliation overrides specifically for the Fluent-Bit Package |
| fluentbit.values | object | `{}` | Values to passthrough to the fluentbit chart: https://repo1.dso.mil/platform-one/big-bang/apps/core/fluentbit.git |
| fluentbit.postRenderers | list | `[]` | Post Renderers. See docs/postrenders.md |
+| promtail | object | `{"enabled":false,"flux":{},"git":{"path":"./chart","repo":"https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/promtail.git","tag":"3.8.1-bb.2"},"postRenderers":[],"values":{}}` | BETA support of promtail/loki logging stack |
+| promtail.enabled | bool | `false` | Toggle deployment of Promtail. |
+| promtail.flux | object | `{}` | Flux reconciliation overrides specifically for the Promtail Package |
+| promtail.values | object | `{}` | Values to passthrough to the promtail chart: https://repo1.dso.mil/platform-one/big-bang/apps/core/fluentbit.git |
+| promtail.postRenderers | list | `[]` | Post Renderers. See docs/postrenders.md |
+| loki.enabled | bool | `false` | Toggle deployment of Loki. |
+| loki.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/loki.git"` | |
+| loki.git.path | string | `"./chart"` | |
+| loki.git.tag | string | `"2.5.1-bb.2"` | |
+| loki.flux | object | `{}` | Flux reconciliation overrides specifically for the Loki Package |
+| loki.values | object | `{}` | Values to passthrough to the Loki chart: https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/loki.git |
+| loki.postRenderers | list | `[]` | Post Renderers. See docs/postrenders.md |
| monitoring.enabled | bool | `true` | Toggle deployment of Monitoring (Prometheus, Grafana, and Alertmanager). |
| monitoring.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/core/monitoring.git"` | |
| monitoring.git.path | string | `"./chart"` | |
-| monitoring.git.tag | string | `"14.0.0-bb.17"` | |
+| monitoring.git.tag | string | `"14.0.0-bb.18"` | |
| monitoring.flux | object | `{"install":{"crds":"CreateReplace"},"upgrade":{"crds":"CreateReplace"}}` | Flux reconciliation overrides specifically for the Monitoring Package |
| monitoring.ingress.gateway | string | `""` | |
| monitoring.sso.enabled | bool | `false` | Toggle SSO for monitoring components on and off |
@@ -168,7 +187,7 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| twistlock.enabled | bool | `true` | Toggle deployment of Twistlock. |
| twistlock.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/security-tools/twistlock.git"` | |
| twistlock.git.path | string | `"./chart"` | |
-| twistlock.git.tag | string | `"0.0.11-bb.0"` | |
+| twistlock.git.tag | string | `"0.0.12-bb.0"` | |
| twistlock.flux | object | `{}` | Flux reconciliation overrides specifically for the Twistlock Package |
| twistlock.ingress.gateway | string | `""` | |
| twistlock.values | object | `{}` | Values to passthrough to the twistlock chart: https://repo1.dso.mil/platform-one/big-bang/apps/security-tools/twistlock.git |
@@ -176,7 +195,7 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| addons.argocd.enabled | bool | `false` | Toggle deployment of ArgoCD. |
| addons.argocd.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/core/argocd.git"` | |
| addons.argocd.git.path | string | `"./chart"` | |
-| addons.argocd.git.tag | string | `"3.6.8-bb.10"` | |
+| addons.argocd.git.tag | string | `"3.6.8-bb.12"` | |
| addons.argocd.flux | object | `{}` | Flux reconciliation overrides specifically for the ArgoCD Package |
| addons.argocd.ingress.gateway | string | `""` | |
| addons.argocd.sso.enabled | bool | `false` | Toggle SSO for ArgoCD on and off |
@@ -204,7 +223,7 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| addons.minio.enabled | bool | `false` | Toggle deployment of minio. |
| addons.minio.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/application-utilities/minio.git"` | |
| addons.minio.git.path | string | `"./chart"` | |
-| addons.minio.git.tag | string | `"4.2.3-bb.6"` | |
+| addons.minio.git.tag | string | `"4.2.3-bb.8"` | |
| addons.minio.flux | object | `{}` | Flux reconciliation overrides specifically for the Minio Package |
| addons.minio.ingress.gateway | string | `""` | |
| addons.minio.accesskey | string | `""` | Default access key to use for minio. |
@@ -247,7 +266,7 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| addons.nexus.enabled | bool | `false` | Toggle deployment of Nexus. |
| addons.nexus.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/developer-tools/nexus.git"` | |
| addons.nexus.git.path | string | `"./chart"` | |
-| addons.nexus.git.tag | string | `"34.1.0-bb.4"` | |
+| addons.nexus.git.tag | string | `"34.1.0-bb.5"` | |
| addons.nexus.license_key | string | `""` | Base64 encoded license file. |
| addons.nexus.ingress.gateway | string | `""` | |
| addons.nexus.sso.enabled | bool | `false` | Toggle SAML SSO for NXRM. -- handles SAML SSO, a Client must be configured in Keycloak or IdP -- to complete setup. -- https://support.sonatype.com/hc/en-us/articles/1500000976522-SAML-integration-for-Nexus-Repository-Manager-Pro-3-and-Nexus-IQ-Server-with-Keycloak#h_01EV7CWCYH3YKAPMAHG8XMQ599 |
@@ -265,7 +284,7 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| addons.sonarqube.enabled | bool | `false` | Toggle deployment of SonarQube. |
| addons.sonarqube.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/developer-tools/sonarqube.git"` | |
| addons.sonarqube.git.path | string | `"./chart"` | |
-| addons.sonarqube.git.tag | string | `"9.6.3-bb.9"` | |
+| addons.sonarqube.git.tag | string | `"9.6.3-bb.10"` | |
| addons.sonarqube.flux | object | `{}` | Flux reconciliation overrides specifically for the Sonarqube Package |
| addons.sonarqube.ingress.gateway | string | `""` | |
| addons.sonarqube.sso.enabled | bool | `false` | Toggle SAML SSO for SonarQube. Enabling this option will auto-create any required secrets. |
@@ -375,6 +394,14 @@ To start using Big Bang, you will need to create your own Big Bang environment t
| addons.keycloak.ingress.key | string | `""` | Certificate/Key pair to use as the certificate for exposing Keycloak Setting the ingress cert here will automatically create the volume and volumemounts in the Keycloak Package chart |
| addons.keycloak.ingress.cert | string | `""` | |
| addons.keycloak.values | object | `{}` | Values to passthrough to the keycloak chart: https://repo1.dso.mil/platform-one/big-bang/apps/security-tools/keycloak.git |
+| addons.vault.enabled | bool | `false` | Toggle deployment of Vault. |
+| addons.vault.git.repo | string | `"https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/vault.git"` | |
+| addons.vault.git.path | string | `"./chart"` | |
+| addons.vault.git.tag | string | `"0.16.1-bb.2"` | |
+| addons.vault.flux | object | `{}` | Flux reconciliation overrides specifically for the Vault Package |
+| addons.vault.ingress.gateway | string | `""` | |
+| addons.vault.values | object | `{}` | Values to passthrough to the vault chart: https://repo1.dso.mil/platform-one/big-bang/apps/sandbox/vault.git |
+| addons.vault.postRenderers | list | `[]` | Post Renderers. See docs/postrenders.md |
## Contributing
diff --git a/base/gitrepository.yaml b/base/gitrepository.yaml
index bfa291ba69..41fc3a076a 100644
--- a/base/gitrepository.yaml
+++ b/base/gitrepository.yaml
@@ -11,4 +11,4 @@ spec:
interval: 10m
url: https://repo1.dso.mil/platform-one/big-bang/bigbang.git
ref:
- tag: 1.21.0
+ tag: 1.22.0
diff --git a/chart/Chart.yaml b/chart/Chart.yaml
index 03736e8f7f..56e0900c81 100644
--- a/chart/Chart.yaml
+++ b/chart/Chart.yaml
@@ -1,6 +1,6 @@
apiVersion: v2
name: bigbang
-version: 1.21.0
+version: 1.22.0
description: Big Bang is a declarative, continuous delivery tool for core DoD hardened and approved packages into a Kubernetes cluster.
type: application
--
GitLab