Immutable
release. Only release title and notes can be modified.
What's Changed
🎁 New features
- cli/generate: add flag for insecure debug shell access by @katexochen in #1894
- manifest: support URI address as SAN by @burgerdev in #1822
- docs: registry authentication by @charludo in #1900
🐛 Bug fixes
- atls: add timeout for optional endorsement fetching by @katexochen in #1904
- kata/runtime: assign GPU devices to multiple containers by @charludo in #1903
🔧 Other changes
- cli: print AMD product name in version command by @katexochen in #1873
- coordinator: reduce log level of non-critical errors by @burgerdev in #1879
- cli/generate: ignore unsupported resources by @davidweisse in #1842
- nodeinstaller: remove serviceaccount and clusterrole by @davidweisse in #1889
- kata.runtime: 3.21.0 -> 3.22.0 by @katexochen in #1902
- nixos/nvidia-driver: 580.95.05 -> 580.105.08 by @katexochen in #1908
- kata.runtime: support full DeploymentSpec, JobSpec by @katexochen in #1912
- resources: ensure emptyDir for secrets is memory-backed by @katexochen in #1939
📖 Documentation
- docs: update resources that influence policy by @katexochen in #1874
- docs: add 'immutable deployment' howto by @charludo in #1840
- docs: mention terminationMessagePath limitation by @burgerdev in #1920
- docs: update supported CC GPUs by @katexochen in #1924
- docs: use reported TCB in manifest by @katexochen in #1925
- docs: update how to obtain TDX MrSeam by @katexochen in #1926
- docs: update how to obtain AMD TCB SVNs by @katexochen in #1927
Full Changelog: v1.14.0...v1.15.0
Contributors
burgerdev, charludo, and 2 other contributors