devtron-labs
diff --git a/‎CHANGELOG/release-notes-v0.6.14.md‎
Lines changed: 73 additions & 0 deletions b/‎CHANGELOG/release-notes-v0.6.14.md‎
Lines changed: 73 additions & 0 deletions
diff --git a/‎api/restHandler/app/BuildPipelineRestHandler.go‎
Lines changed: 3 additions & 1 deletion b/‎api/restHandler/app/BuildPipelineRestHandler.go‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎charts/devtron/Chart.yaml‎
Lines changed: 2 additions & 2 deletions b/‎charts/devtron/Chart.yaml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎charts/devtron/devtron-bom.yaml‎
Lines changed: 24 additions & 11 deletions b/‎charts/devtron/devtron-bom.yaml‎
Lines changed: 24 additions & 11 deletions
diff --git a/‎charts/devtron/templates/app-sync-job.yaml‎
Lines changed: 18 additions & 2 deletions b/‎charts/devtron/templates/app-sync-job.yaml‎
Lines changed: 18 additions & 2 deletions
diff --git a/‎charts/devtron/templates/dashboard.yaml‎
Lines changed: 10 additions & 1 deletion b/‎charts/devtron/templates/dashboard.yaml‎
Lines changed: 10 additions & 1 deletion
diff --git a/‎charts/devtron/templates/devtron.yaml‎
Lines changed: 8 additions & 0 deletions b/‎charts/devtron/templates/devtron.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎charts/devtron/templates/dex.yaml‎
Lines changed: 12 additions & 0 deletions b/‎charts/devtron/templates/dex.yaml‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎charts/devtron/templates/install.yaml‎
Lines changed: 8 additions & 0 deletions b/‎charts/devtron/templates/install.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎charts/devtron/templates/kubelink.yaml‎
Lines changed: 9 additions & 1 deletion b/‎charts/devtron/templates/kubelink.yaml‎
Lines changed: 9 additions & 1 deletion
@@ -0,0 +1,73 @@
+## v0.6.14
+
+## Bugs
+- fix: scale workloads for helm app created on Devtron  (#3131)
+- fix: select image not working for external webhook (#3187)
+- fix: eks nodegroup label added (#3184)
+- fix:http status fix for access to jobs (#3176)
+- fix:wire issue fixed (#3179)
+- fix:notes.txt throws error when charts require special KubeVersion (#3170)
+- fix: Gitops validate and update with empty token (#3168)
+- fix:Manifest output throws error when charts require special KubeVersion (#3162)
+- fix: onlyDevtronCharts flag changed type from boolean to integer (#3161)
+- fix: Optimize app grouping apis (#3125)
+- fix: log api panic (#3156)
+- fix: kubernetes external secret not accessible (#3143)
+- fix: apps in progressing state indefinitely (#3137)
+- fix: ci artifacts not coming for linked CI pipeline (#3134)
+- fix: Helm repository deleted from argocd-cm when deleted from UI (Github Issue #1399) (#2970)
+- fix: pg prom metrics not getting exported when pg query logging is disabled (#3124)
+- fix: Send webhook data(source value and source type) in pipeline api response (#3120)
+- fix: updated condition for adding kubectl apply synced timeline (#3115)
+- fix: json unmarshal panic error temperory fix. (#3095)
+- fix: added otel for deployment history info api (#3107)
+- fix:showing right image imagetags in multiplecolons in registry url (#3103)
+- fix: cd metrics nil ptr fix (#3099)
+- fix: getting all environmets for super admin only (#3096)
+- fix: logs issue for init containers (#3076)
+- fix: pod resources not visible even if user have access on those pods. (#3071)
+- fix: unable to create container registry with deleted name (#2963)
+- fix: helm app deployment failure (#3060)
+- fix: logs file path issue fix and docker file update for non root user (#3024)
+- fix: urls pipeline fetching bug fix (#3063)
+- fix: app grouping appid appname (#3058)
+## Enhancements
+- feat:migration files for notes.txt (#3192)
+- feat:store notes.txt in db and fetch from db  (#3183)
+- feat: Add timer telemetry for App List (#3185)
+- feat:Sorting applist according to deployed time (#3108)
+- feat:git material source type editable (#3015)
+- feat: Using server url in application object (#3175)
+- feat: Add timer/counter telemetry for GitOps (#3119)
+- feat: show notes txt for  helmapps deployed by  helm (#2966)
+- feat: enable auto deployment trigger option after deployment app change (#3110)
+- feat: jobs feature (#3074)
+- feat: Disabling global secrets for application environment. (#3126)
+- feat: Review config changes before deployment (#3077)
+- feat: global secrets for pre/post cd (#3073)
+- feat: export pg query metrics to prometheus (#3118)
+- feat: Add timer/counter telemetry for CI process (#3081)
+- feat: Git, GitOps, Container Registries and SSO login token hide from dashboard (#2952)
+- feat:show notes for gitops app (#3082)
+- feat: autoselect node,error messaging improvement , node group and custom shell support (#2925)
+- feat: Option to run post-ci scripts even if build fails (#3065)
+- feat: branch name field added in API response for a cd Artifact material (#3064)
+- feat: github PR updater plugin added (#3051)
+## Documentation
+- docs: added jobs section (#3097)
+- docs: added K8s client doc (#3028)
+- docs: doc for GCP external secret (#3029)
+## Others
+- chore: ADO sync action changes (#3167)
+- chore: Enterprise repo sync (#3146)
+- chore: version upgrade of github action (ado-sync) (#3160)
+- chore: ado-sync workflow (#3153)
+- chore: ado-sync workflow changes  (#3151)
+- chore: ADO-sync github action changes (#3149)
+- chore: Helm lint mechanism and azure ADO sync github action (#3138)
+- chore:  enterprise-repo-sync.yaml (#3127)
+- task: restricted deployment status updation cron to fetch pipelines deployed within hours (#3104)
+- chore: upgrade common-lib dependency (#3052)
+- feat - Use cluster-name instead of server url in Argo cd application objects  (#2958)
+
+
@@ -277,12 +277,14 @@ func (handler PipelineConfigRestHandlerImpl) PatchCiPipelines(w http.ResponseWri
 	}
 
 	createResp, err := handler.pipelineBuilder.PatchCiPipeline(&patchRequest)
-	createResp.AppName = app.AppName
 	if err != nil {
 		handler.Logger.Errorw("service err, PatchCiPipelines", "err", err, "PatchCiPipelines", patchRequest)
 		common.WriteJsonResp(w, err, nil, http.StatusInternalServerError)
 		return
 	}
+	if createResp != nil && app != nil {
+		createResp.AppName = app.AppName
+	}
 	common.WriteJsonResp(w, err, createResp, http.StatusOK)
 }
 
 
@@ -1,6 +1,6 @@
 apiVersion: v2
 name: devtron-operator
-appVersion: 0.6.13
+appVersion: 0.6.14
 description: Chart to configure and install Devtron. Devtron is a Kubernetes Orchestration system.
 keywords:
   - Devtron
@@ -11,7 +11,7 @@ keywords:
   - argocd
   - Hyperion
 engine: gotpl
-version: 0.22.51
+version: 0.22.52
 sources:
   - https://github.com/devtron-labs/charts
 dependencies:
 
@@ -1,33 +1,43 @@
+global:
+  podSecurityContext:
+    fsGroup: 1000
+    runAsGroup: 1000
+    runAsUser: 1000
+  containerSecurityContext:
+    allowPrivilegeEscalation: false
+    runAsUser: 1000
+    runAsNonRoot: true
+
 installer:
-  release: "v0.6.13"
+  release: "v0.6.14"
   image: "quay.io/devtron/inception"
-  tag: "1d2b87e5-185-11095"
+  tag: "44b30917-185-13275"
 
 components:
   dashboard:
-    image: "quay.io/devtron/dashboard:de186b14-325-12876"
+    image: "quay.io/devtron/dashboard:be354866-325-13271"
   devtron:
-    image: "quay.io/devtron/hyperion:e3c5a3a2-280-12878"
-    cicdImage: "quay.io/devtron/devtron:e3c5a3a2-434-12877"
+    image: "quay.io/devtron/hyperion:85c4a6d7-280-13270"
+    cicdImage: "quay.io/devtron/devtron:85c4a6d7-434-13269"
   argocdDexServer:
-    image: "ghcr.io/dexidp/dex:v2.35.3"
+    image: "ghcr.io/dexidp/dex:v2.30.2"
     initContainer:
-      authenticator: "quay.io/devtron/authenticator:6e466830-393-11943"
+      authenticator: "quay.io/devtron/authenticator:e414faff-393-13273"
   kubelink:
-    image: "quay.io/devtron/kubelink:a5e179d4-318-12564"
+    image: "quay.io/devtron/kubelink:d2406e8a-318-13263"
   postgres:
     image: "quay.io/devtron/postgres:11.9.0-debian-10-r26"
     armImage: "quay.io/devtron/postgres:11.9"
 
   migrator:
-    image: "quay.io/devtron/migrator:71748de9-149-11112"
+    image: "quay.io/devtron/migrator:ec1dcab8-149-13278"
     envVars:
       devtron:
         GIT_BRANCH: "main"
-        GIT_HASH: "e3c5a3a2893f7e00b9cb482abe2ac76f5038de13"
+        GIT_HASH: "85c4a6d76492f9a1cc45360dd910f03fabac1b13"
       casbin:
         GIT_BRANCH: "main"
-        GIT_HASH: "e3c5a3a2893f7e00b9cb482abe2ac76f5038de13"
+        GIT_HASH: "85c4a6d76492f9a1cc45360dd910f03fabac1b13"
 
 argo-cd:
   global:
@@ -36,5 +46,8 @@ argo-cd:
       tag: "v2.5.2"
       imagePullPolicy: IfNotPresent
 
+security:
+  image: "quay.io/devtron/image-scanner:b7873c95-334-13266"
+
 notifier:
   image: "quay.io/devtron/notifier:6c7a356a-372-11107"
@@ -25,9 +25,17 @@ spec:
         {{- end }}
         {{- end }}
         {{- end }}
+      {{- if and $.Values.global $.Values.global.podSecurityContext }}
+      securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 8 }}
+      {{- end }}
       containers:
       - name: chart-sync
-        image: quay.io/devtron/chart-sync:07ac8fd7-150-11120
+        image: quay.io/devtron/chart-sync:6bdaa674-150-13276
+        {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+        securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 10 }}
+        {{- end }}
         env:
         - name: PG_ADDR
           value: postgresql-postgresql.devtroncd
@@ -66,9 +74,17 @@ spec:
     spec:
       template:
         spec:
+          {{- if and $.Values.global $.Values.global.podSecurityContext }}
+          securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 12 }}
+          {{- end }}
           containers:
           - name: chart-sync
-            image: quay.io/devtron/chart-sync:07ac8fd7-150-11120
+            image: quay.io/devtron/chart-sync:6bdaa674-150-13276
+            {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+            securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 14 }}
+           {{- end }}
             env:
             - name: PG_ADDR
               value: postgresql-postgresql.devtroncd
 
@@ -24,6 +24,7 @@ data:
   SENTRY_ENABLED: {{ .config.sentry | default "false" | quote }}
   SENTRY_ENV: {{ .config.sentryEnv | default "PRODUCTION" | quote }}
   APPLICATION_METRICS_ENABLED: {{ .config.applicationMetrics | default "true" | quote }}
+  HIDE_APPLICATION_GROUPS: {{ .config.hideApplicationGroups | default "false" | quote }}
 {{- end }} 
 ---
 apiVersion: v1
@@ -69,13 +70,21 @@ spec:
     spec:
       terminationGracePeriodSeconds: 30
       restartPolicy: Always
+      {{- if and $.Values.global $.Values.global.podSecurityContext }}
+      securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 8 }}
+      {{- end }}
       containers:
         - name: dashboard
           image: {{ .image }}
           imagePullPolicy: {{ .imagePullPolicy }}
+          {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+          securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 12 }}
+          {{- end }}
           ports:
             - name: app
-              containerPort: 80
+              containerPort: 8080
               protocol: TCP
           env:
             - name: DEVTRON_APP_NAME
 
@@ -97,6 +97,10 @@ spec:
       terminationGracePeriodSeconds: 30
       restartPolicy: Always
       serviceAccountName: devtron
+      {{- if and $.Values.global $.Values.global.podSecurityContext }}
+      securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 8 }}
+      {{- end }}
       containers:
         - name: devtron
           {{- if $.Values.installer.modules }}
@@ -109,6 +113,10 @@ spec:
           image: {{ $.Values.components.devtron.image }}
           {{- end }}
           imagePullPolicy: {{ .imagePullPolicy }}
+          {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+          securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 12 }}
+          {{- end }}
           lifecycle:
             preStop:
               exec:
 
@@ -68,13 +68,21 @@ spec:
                   app.kubernetes.io/part-of: argocd
               topologyKey: kubernetes.io/hostname
             weight: 5
+      {{- if and $.Values.global $.Values.global.podSecurityContext }}
+      securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 8 }}
+      {{- end }}
       containers:
       - command:
         - /shared/authenticator
         - rundex
         image: {{ .image }}
         imagePullPolicy: {{ .imagePullPolicy }}
         name: dex
+        {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+        securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 10 }}
+        {{- end }}
         ports:
         - containerPort: 5556
         - containerPort: 5557
@@ -95,6 +103,10 @@ spec:
         image: {{ .initContainer.authenticator }}
         imagePullPolicy: IfNotPresent
         name: copyutil
+        {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+        securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 10 }}
+        {{- end }}
         volumeMounts:
         - mountPath: /shared
           name: static-files
 
@@ -80,6 +80,10 @@ spec:
       labels:
         app: inception
     spec:
+      {{- if and $.Values.global $.Values.global.podSecurityContext }}
+      securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 8 }}
+      {{- end }}
       containers:
         -
         {{- if $.Values.installer.tag }}
@@ -89,6 +93,10 @@ spec:
         {{- end }}
           imagePullPolicy: IfNotPresent
           name: inception
+          {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+          securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 12 }}
+          {{- end }}
           ports:
             -
               containerPort: 8080
 
@@ -22,10 +22,18 @@ spec:
       terminationGracePeriodSeconds: 30
       restartPolicy: Always
       serviceAccount: devtron
+      {{- if and $.Values.global $.Values.global.podSecurityContext }}
+      securityContext:
+{{- toYaml $.Values.global.podSecurityContext | nindent 8 }}
+      {{- end }}
       containers:
         - name: kubelink
           image: {{ .image }}
           imagePullPolicy: {{ .imagePullPolicy }}
+          {{- if and $.Values.global $.Values.global.containerSecurityContext }}
+          securityContext:
+{{- toYaml $.Values.global.containerSecurityContext | nindent 12 }}
+          {{- end }}
           ports:
             - name: app
               containerPort: 50051
@@ -62,4 +70,4 @@ spec:
     app: kubelink
   sessionAffinity: None
   type: ClusterIP
-{{- end }}
+{{- end }}
Original file line number	Diff line number	Diff line change
`@@ -277,12 +277,14 @@ func (handler PipelineConfigRestHandlerImpl) PatchCiPipelines(w http.ResponseWri`
`277`	`277`	`}`
`278`	`278`
`279`	`279`	`createResp, err := handler.pipelineBuilder.PatchCiPipeline(&patchRequest)`
`280`		`- createResp.AppName = app.AppName`
`281`	`280`	`if err != nil {`
`282`	`281`	`handler.Logger.Errorw("service err, PatchCiPipelines", "err", err, "PatchCiPipelines", patchRequest)`
`283`	`282`	`common.WriteJsonResp(w, err, nil, http.StatusInternalServerError)`
`284`	`283`	`return`
`285`	`284`	`}`
	`285`	`+ if createResp != nil && app != nil {`
	`286`	`+ createResp.AppName = app.AppName`
	`287`	`+ }`
`286`	`288`	`common.WriteJsonResp(w, err, createResp, http.StatusOK)`
`287`	`289`	`}`
`288`	`290`