v0.9.1

This is follow up release to v0.9.0 addressing a few bugs🐞 and configuration changes. Checkout the changelog below for details.

Housekeeping

With this release, our docs are moving. They can now be found at https://runtime-docs.acorn.io. These docs will be dedicated to running the runtime project stand alone in your own clusters. The main docs site - https://docs.acorn.io - will be dedicated to our managed platform.

What's Changed

• Do not allow a user to exec into a container unless they have granted perms by @ibuildthecloud in #2262
• Change auth url for logging into manager by @cjellick in #2269
• Remove advanced help (#1442) by @keyallis in #2268
• Add ability to set devSession timeout on CLI by @StrongMonkey in #2256
• Enable range syntax sugar for token type secrets (#2272) by @njhale in #2273
• Fix exec on nested acorns by @ibuildthecloud in #2274
• Remove unused replace statements by @ibuildthecloud in #2275
• Fix issue where implicitly bound volumes were counted twice for QuotaRequests by @tylerslaton in #2261
• Remove volume size defaulting logic in AppSpec.Unmarshal by @tylerslaton in #2264
• Switch beta.acorn.io to acorn.io by @ibuildthecloud in #2276
• Unhide dashboard command by @ibuildthecloud in #2280
• Set session release flag to true by default by @StrongMonkey in #2279
• Fix the replica set dependency check by @thedadams in #2266
• fix: close orphaned grpc connections in dev mode and silence related logs by @iwilltry42 in #2282
• stop recursive deletion of secrets in app rm by @keyallis in #2284
• Increase prod profile to have a 2Gi VolumeSizeDefault by @tylerslaton in #2285
• Bump aml/cli for args-file fix by @ibuildthecloud in #2286
• update docs to move to new URL by @cloudnautique in #2287

Full Changelog: v0.9.0...v0.9.1

v0.9.1-rc1

What's Changed

• Do not allow a user to exec into a container unless they have granted perms by @ibuildthecloud in #2262
• Change auth url for logging into manager by @cjellick in #2269
• Remove advanced help (#1442) by @keyallis in #2268
• Add ability to set devSession timeout on CLI by @StrongMonkey in #2256
• Enable range syntax sugar for token type secrets (#2272) by @njhale in #2273
• Fix exec on nested acorns by @ibuildthecloud in #2274
• Remove unused replace statements by @ibuildthecloud in #2275
• Fix issue where implicitly bound volumes were counted twice for QuotaRequests by @tylerslaton in #2261
• Remove volume size defaulting logic in AppSpec.Unmarshal by @tylerslaton in #2264
• Switch beta.acorn.io to acorn.io by @ibuildthecloud in #2276

Full Changelog: v0.9.0...v0.9.1-rc1

v0.9.0

🎉 Acorn v0.9.0 is now available! 🎉

New Features

AML Rewrite - We've rewritten AML (Acorn Markup Language) from the ground-up. This is the language that powers Acornfiles. This re-implementation is mostly transparent to users but gives us much more power and flexibility moving forward. The source code for AML can be found here.

Built-in cloning - The acorn dev command has a new --clone flag. This will cause the acorn dev command to clone the source code for a running app and launch a dev session using it.

Parameterized basic secret generation - When generating a basic secret, you can now control the character set and length for the username and password.

What's Changed

• Add the ability to specify unlimited for individual resources by @tylerslaton in #2109
• Publish docs for v0.8 by @njhale in #2140
• Quiet more install output by @cjellick in #2141
• Fix issue with Project storage by @tylerslaton in #2142
• Remove nightly EKS tests by @thedadams in #2147
• Fix: Importing Private Keys (SSH Keys) for signing and deny them for verification (#2063 + #2115) by @iwilltry42 in #2145
• change: adjustments to support ImageRoleBindings in Manager by @iwilltry42 in #2118
• change: always use internal image ref for IAR validation, if possible (#2067) by @iwilltry42 in #2113
• Return 403 instead of 401 when failing to pull an image for image details by @g-linville in #2151
• Refactor GenericMap to prevent managedField issues by @njhale in #2080
• Updates for new API groups by @thedadams in #2157
• fix: pulling an image twice failed as we provided the wrong repoDigest by @iwilltry42 in #2156
• add: default acorn.io/signed-name annotation for signatures (opt-out for verification) (#2149) by @iwilltry42 in #2150
• change: only exclude AcornDNS cluster domains from cert-manager annotations (#2153) by @iwilltry42 in #2154
• Add karpenter do-evict annotation when scale is nil or 1 by @StrongMonkey in #2159
• Stop setting auto-upgrade to false on update (#2161) by @thedadams in #2162
• Account for scale of a container when creating a QuotaRequest by @tylerslaton in #2165
• Fix app validation when computeclasses change on stop by @njhale in #2164
• Split resources into BaseResources and QuotaRequestResources by @tylerslaton in #2143
• Cache image metadata to speed image details call by @ibuildthecloud in #2169
• Revert "Cache image metadata to speed image details call" by @ibuildthecloud in #2172
• Cache image metadata to speed image details call by @ibuildthecloud in #2173
• require command to be passed to acorn kube command (#1184) by @keyallis in #2168
• Cancel imagedatacache purge when context is canceled by @ibuildthecloud in #2175
• change: allow non-file input for acorn image sign --key by @iwilltry42 in #2167
• Adjust RBAC to run on OpenShift by @sam6258 in #2158
• fix acorn kube -w by @keyallis in #2181
• change: early validation of signature annotations before signing (#2177) by @iwilltry42 in #2178
• Add service container labels by @thedadams in #2182
• add: ImageRoleAuthorizations and improve shared ImageSelector logic (#2148) by @iwilltry42 in #2160
• Add aditional top level keys by @cloudnautique in #2188
• Add details as a long-running resource by @thedadams in #2190
• AML Rewrite by @ibuildthecloud in #2191
• Fix broken args in acornfile by @ibuildthecloud in #2193
• Fix upgrade with existing invalid acornfiles by @ibuildthecloud in #2194
• Don't rename acornfile as that causes too obscure of errors by @ibuildthecloud in #2195
• Add pragma header to force amlv0 syntax by @ibuildthecloud in #2196
• Don't use @ in passwords as that break connections strings by @ibuildthecloud in #2197
• Switch to using Deference by @cjellick in #2198
• Bump aml by @ibuildthecloud in #2199
• fix: empty name sent via imageSAR by @iwilltry42 in #2200
• Add missing permission for jobs by @StrongMonkey in #2189
• fix: early capture non-file input for image sign by @iwilltry42 in #2202
• add: matchimageopts for imageselector (to bypass signature cache) by @iwilltry42 in #2201
• fix: newconfig always overwrote feature map by @iwilltry42 in #2203
• fix: nil map assignment in features config by @iwilltry42 in #2204
• Make the MarshalJSON method on GenericMap a pointer receiver by @thedadams in #2209
• fix: acorn:project:admin add get/list/watch for infos by @iwilltry42 in #2208
• Capture app spec in AppCreate event details by @njhale in #2210
• add: IRA Superadmin by @iwilltry42 in #2212
• Record what defaultVolumeSize was used in the Defaults section of AppInstanceStatus by @tylerslaton in #2213
• Allow images when feature flags are disabled by @thedadams in #2214
• change: move role definitions around (aws specific and infra specific) by @iwilltry42 in #2216
• Re-evaluate image permissions for failing apps by @thedadams in #2218
• Use stage app image when determining when to re-evaluate permissions by @thedadams in #2219
• Stop re-evaluating failed apps if IRA hasn't changed by @thedadams in #2220
• Make cluster-scoped permission encompass project-scoped by @thedadams in #2207
• Bump release to 1.21 by @cjellick in #2221
• Always set the defaults.VolumeSize if its nil by @tylerslaton in #2222
• Make dev logging be able to be capture and not go to stdout/err by @ibuildthecloud in #2224
• Don't set omitempty for fields in the Resources struct by @tylerslaton in #2223
• Bump baaah dependency to pickup trigger fix by @thedadams in #2227
• Don't add compute for Jobs to QuotaRequestInstances by @tylerslaton in #2225
• Improve error messaging for QuotaRequestInstances by @tylerslaton in #2217
• Add new --volume-size-default install flag by @tylerslaton in #2215
• Bump AML for bug fixes by @ibuildthecloud in #2231
• Fix for quota requests not being processed (#1378) by @thedadams in #2232
• change: ensure that we only renew the original Acorn TLS (wildcard) certificate by @iwilltry42 in #2235
• change: proper error handling for fetching pubkeys from GitHub API (#2185) by @iwilltry42 in #2183
• Fix missing permissions error message by @thedadams in #2241
• Fix issue with updates not being blocked by QuotaRequest restrictions by @tylerslaton in #2239
• Fix an issue with default VolmeStorage not being accounted for in QuotaRequests by @tylerslaton in #2240
• add dev clone to cli (#1421) by @keyallis in #2229
• Parameterize basic secret generation (#2192) by @njhale in #2242
• Fix issue where existing volumes would be double counted when bound into an App by @tylerslaton in #2244
• change: move actual permissions to .status + apply IRAs to consumed permissions by @iwilltry42 in #2226
• change: also recheck permissions if generation changed but image didn't by @iwilltry42 in #2248
• Add range syntax sugar for secret generat...

v0.9.0-rc2

What's Changed

• Add the ability to specify unlimited for individual resources by @tylerslaton in #2109
• Publish docs for v0.8 by @njhale in #2140
• Quiet more install output by @cjellick in #2141
• Fix issue with Project storage by @tylerslaton in #2142
• Remove nightly EKS tests by @thedadams in #2147
• Fix: Importing Private Keys (SSH Keys) for signing and deny them for verification (#2063 + #2115) by @iwilltry42 in #2145
• change: adjustments to support ImageRoleBindings in Manager by @iwilltry42 in #2118
• change: always use internal image ref for IAR validation, if possible (#2067) by @iwilltry42 in #2113
• Return 403 instead of 401 when failing to pull an image for image details by @g-linville in #2151
• Refactor GenericMap to prevent managedField issues by @njhale in #2080
• Updates for new API groups by @thedadams in #2157
• fix: pulling an image twice failed as we provided the wrong repoDigest by @iwilltry42 in #2156
• add: default acorn.io/signed-name annotation for signatures (opt-out for verification) (#2149) by @iwilltry42 in #2150
• change: only exclude AcornDNS cluster domains from cert-manager annotations (#2153) by @iwilltry42 in #2154
• Add karpenter do-evict annotation when scale is nil or 1 by @StrongMonkey in #2159
• Stop setting auto-upgrade to false on update (#2161) by @thedadams in #2162
• Account for scale of a container when creating a QuotaRequest by @tylerslaton in #2165
• Fix app validation when computeclasses change on stop by @njhale in #2164
• Split resources into BaseResources and QuotaRequestResources by @tylerslaton in #2143
• Cache image metadata to speed image details call by @ibuildthecloud in #2169
• Revert "Cache image metadata to speed image details call" by @ibuildthecloud in #2172
• Cache image metadata to speed image details call by @ibuildthecloud in #2173
• require command to be passed to acorn kube command (#1184) by @keyallis in #2168
• Cancel imagedatacache purge when context is canceled by @ibuildthecloud in #2175
• change: allow non-file input for acorn image sign --key by @iwilltry42 in #2167
• Adjust RBAC to run on OpenShift by @sam6258 in #2158
• fix acorn kube -w by @keyallis in #2181
• change: early validation of signature annotations before signing (#2177) by @iwilltry42 in #2178
• Add service container labels by @thedadams in #2182
• add: ImageRoleAuthorizations and improve shared ImageSelector logic (#2148) by @iwilltry42 in #2160
• Add aditional top level keys by @cloudnautique in #2188
• Add details as a long-running resource by @thedadams in #2190
• AML Rewrite by @ibuildthecloud in #2191
• Fix broken args in acornfile by @ibuildthecloud in #2193
• Fix upgrade with existing invalid acornfiles by @ibuildthecloud in #2194
• Don't rename acornfile as that causes too obscure of errors by @ibuildthecloud in #2195
• Add pragma header to force amlv0 syntax by @ibuildthecloud in #2196
• Don't use @ in passwords as that break connections strings by @ibuildthecloud in #2197
• Switch to using Deference by @cjellick in #2198
• Bump aml by @ibuildthecloud in #2199
• fix: empty name sent via imageSAR by @iwilltry42 in #2200
• Add missing permission for jobs by @StrongMonkey in #2189
• fix: early capture non-file input for image sign by @iwilltry42 in #2202
• add: matchimageopts for imageselector (to bypass signature cache) by @iwilltry42 in #2201
• fix: newconfig always overwrote feature map by @iwilltry42 in #2203
• fix: nil map assignment in features config by @iwilltry42 in #2204
• Make the MarshalJSON method on GenericMap a pointer receiver by @thedadams in #2209
• fix: acorn:project:admin add get/list/watch for infos by @iwilltry42 in #2208
• Capture app spec in AppCreate event details by @njhale in #2210
• add: IRA Superadmin by @iwilltry42 in #2212
• Record what defaultVolumeSize was used in the Defaults section of AppInstanceStatus by @tylerslaton in #2213
• Allow images when feature flags are disabled by @thedadams in #2214
• change: move role definitions around (aws specific and infra specific) by @iwilltry42 in #2216
• Re-evaluate image permissions for failing apps by @thedadams in #2218
• Use stage app image when determining when to re-evaluate permissions by @thedadams in #2219
• Stop re-evaluating failed apps if IRA hasn't changed by @thedadams in #2220
• Make cluster-scoped permission encompass project-scoped by @thedadams in #2207
• Bump release to 1.21 by @cjellick in #2221
• Always set the defaults.VolumeSize if its nil by @tylerslaton in #2222
• Make dev logging be able to be capture and not go to stdout/err by @ibuildthecloud in #2224
• Don't set omitempty for fields in the Resources struct by @tylerslaton in #2223
• Bump baaah dependency to pickup trigger fix by @thedadams in #2227
• Don't add compute for Jobs to QuotaRequestInstances by @tylerslaton in #2225
• Improve error messaging for QuotaRequestInstances by @tylerslaton in #2217
• Add new --volume-size-default install flag by @tylerslaton in #2215
• Bump AML for bug fixes by @ibuildthecloud in #2231
• Fix for quota requests not being processed (#1378) by @thedadams in #2232
• change: ensure that we only renew the original Acorn TLS (wildcard) certificate by @iwilltry42 in #2235
• change: proper error handling for fetching pubkeys from GitHub API (#2185) by @iwilltry42 in #2183
• Fix missing permissions error message by @thedadams in #2241
• Fix issue with updates not being blocked by QuotaRequest restrictions by @tylerslaton in #2239
• Fix an issue with default VolmeStorage not being accounted for in QuotaRequests by @tylerslaton in #2240
• add dev clone to cli (#1421) by @keyallis in #2229
• Parameterize basic secret generation (#2192) by @njhale in #2242
• Fix issue where existing volumes would be double counted when bound into an App by @tylerslaton in #2244
• change: move actual permissions to .status + apply IRAs to consumed permissions by @iwilltry42 in #2226
• change: also recheck permissions if generation changed but image didn't by @iwilltry42 in #2248
• Add range syntax sugar for secret generation by @njhale in #2250
• constant fix by @ibuildthecloud in #2253
• Check if dir is a git repo before adding remote in it (#2245) by @keyallis in #2249
• Fix edge case in range syntax sugar by @njhale in #2255
• handle dev clone on nested acorns (#2247) by @keyallis in #2252
• Bump aml by @ibuildthecloud in #2257
• Add info -A by @ibuildthecloud in #2099
• Ensure that the status.Defaults.VolumeSize is used if a binding has no size specified by @tylerslaton in https://github.com/acorn-io/runtime/pu...

v0.9.0-rc1

What's Changed

• Add the ability to specify unlimited for individual resources by @tylerslaton in #2109
• Publish docs for v0.8 by @njhale in #2140
• Quiet more install output by @cjellick in #2141
• Fix issue with Project storage by @tylerslaton in #2142
• Remove nightly EKS tests by @thedadams in #2147
• Fix: Importing Private Keys (SSH Keys) for signing and deny them for verification (#2063 + #2115) by @iwilltry42 in #2145
• change: adjustments to support ImageRoleBindings in Manager by @iwilltry42 in #2118
• change: always use internal image ref for IAR validation, if possible (#2067) by @iwilltry42 in #2113
• Return 403 instead of 401 when failing to pull an image for image details by @g-linville in #2151
• Refactor GenericMap to prevent managedField issues by @njhale in #2080
• Updates for new API groups by @thedadams in #2157
• fix: pulling an image twice failed as we provided the wrong repoDigest by @iwilltry42 in #2156
• add: default acorn.io/signed-name annotation for signatures (opt-out for verification) (#2149) by @iwilltry42 in #2150
• change: only exclude AcornDNS cluster domains from cert-manager annotations (#2153) by @iwilltry42 in #2154
• Add karpenter do-evict annotation when scale is nil or 1 by @StrongMonkey in #2159
• Stop setting auto-upgrade to false on update (#2161) by @thedadams in #2162
• Account for scale of a container when creating a QuotaRequest by @tylerslaton in #2165
• Fix app validation when computeclasses change on stop by @njhale in #2164
• Split resources into BaseResources and QuotaRequestResources by @tylerslaton in #2143
• Cache image metadata to speed image details call by @ibuildthecloud in #2169
• Revert "Cache image metadata to speed image details call" by @ibuildthecloud in #2172
• Cache image metadata to speed image details call by @ibuildthecloud in #2173
• require command to be passed to acorn kube command (#1184) by @keyallis in #2168
• Cancel imagedatacache purge when context is canceled by @ibuildthecloud in #2175
• change: allow non-file input for acorn image sign --key by @iwilltry42 in #2167
• Adjust RBAC to run on OpenShift by @sam6258 in #2158
• fix acorn kube -w by @keyallis in #2181
• change: early validation of signature annotations before signing (#2177) by @iwilltry42 in #2178
• Add service container labels by @thedadams in #2182
• add: ImageRoleAuthorizations and improve shared ImageSelector logic (#2148) by @iwilltry42 in #2160
• Add aditional top level keys by @cloudnautique in #2188
• Add details as a long-running resource by @thedadams in #2190
• AML Rewrite by @ibuildthecloud in #2191
• Fix broken args in acornfile by @ibuildthecloud in #2193
• Fix upgrade with existing invalid acornfiles by @ibuildthecloud in #2194
• Don't rename acornfile as that causes too obscure of errors by @ibuildthecloud in #2195
• Add pragma header to force amlv0 syntax by @ibuildthecloud in #2196
• Don't use @ in passwords as that break connections strings by @ibuildthecloud in #2197
• Switch to using Deference by @cjellick in #2198
• Bump aml by @ibuildthecloud in #2199
• fix: empty name sent via imageSAR by @iwilltry42 in #2200
• Add missing permission for jobs by @StrongMonkey in #2189
• fix: early capture non-file input for image sign by @iwilltry42 in #2202
• add: matchimageopts for imageselector (to bypass signature cache) by @iwilltry42 in #2201
• fix: newconfig always overwrote feature map by @iwilltry42 in #2203
• fix: nil map assignment in features config by @iwilltry42 in #2204
• Make the MarshalJSON method on GenericMap a pointer receiver by @thedadams in #2209
• fix: acorn:project:admin add get/list/watch for infos by @iwilltry42 in #2208
• Capture app spec in AppCreate event details by @njhale in #2210
• add: IRA Superadmin by @iwilltry42 in #2212
• Record what defaultVolumeSize was used in the Defaults section of AppInstanceStatus by @tylerslaton in #2213
• Allow images when feature flags are disabled by @thedadams in #2214
• change: move role definitions around (aws specific and infra specific) by @iwilltry42 in #2216
• Re-evaluate image permissions for failing apps by @thedadams in #2218
• Use stage app image when determining when to re-evaluate permissions by @thedadams in #2219
• Stop re-evaluating failed apps if IRA hasn't changed by @thedadams in #2220
• Make cluster-scoped permission encompass project-scoped by @thedadams in #2207
• Bump release to 1.21 by @cjellick in #2221

New Contributors

• @sam6258 made their first contribution in #2158

Full Changelog: v0.8.0...v0.9.0-rc1

v0.8.0

🎉 Acorn v0.8.0 is now available! 🎉

The release focuses largely on improvements to existing functionality and stability. Check out the “What’s Changed” section below for a detailed list of fixes and enhancements.

New Features

CLI UX Improvements - We've reworked the output for many cli commands to be more intuitive and user-friendly.

Jobs Command - We've introduced the acorn jobs subcommand to give you the ability to list and restart acorn jobs. Run acorn jobs --help for more details.

Copy Command - We've introduced the acorn copy command to give you the ability to copy acorn images between remote registries. Run acorn copy --help for more details.

Custom metrics configuration - You can now define a metrics configuration for each of you containers. This will result in prometheus scrape annotations getting added to your workloads. Details here.

Depot.dev integration - Experimental support for using depot.dev to build acorn images. Details here.

Internal registry enhancements - Acorn's in-cluster registry is now backed by a persistent volume, allowing it to now survive upgrades and re-installs.

Known Issues and Considerations

While we've tested basic upgrade scenarios, upgrades won't be fully support until the projact reaches v1.0. The most predictable path forward is to do a clean install rather than try to upgrade. We've identified the following upgrade-related issues in this release:

• Because we've changed the in-cluster registry to be backed by a persistent volume, existing in-cluster acorn images will be lost on upgrade. You should publish any local acorn images to an external registry such as ghcr.io. This also results in the inability to stop running acorns that were deployed using a local image (or directly from an Acornfile). You can still delete those apps.
• This release is not backwards compatible. You must use a v0.8+ acorn cli to interact with a v0.8+ acorn server and a v0.8+ cli will not work properly with older versions of acorn server.

We've made the following change's to functionality:

• We've disabled network-policy integration by default. This isolated projects from each other. If you want that functionality, you must turn it on explicitly during installation.
• We've removed the ability for acorn to automatically provision Let's Encrypt certificates for custom domains. You should use a tool like cert-manager instead. Note: we still provision certs for acorn-provided FDQNs. This change only applies to custom domains.
• The targetNamespace field has been dropped from the App resource.

What's Changed

• Fix acorn update so that it won't unexpectedly change the app image (#1738) by @g-linville in #1789
• Clarify project update validation message by @njhale in #1797
• Disable NetworkPolicies by default by @g-linville in #1785
• Update NetworkPolicy docs with new defaults info by @g-linville in #1801
• Remove direct lasso dependency by @ibuildthecloud in #1792
• Ensure logs -c CONTAINER_NAME only matches valid sidecars by @ibuildthecloud in #1793
• Update login command to not suggest a broken command by @tylerslaton in #1645
• Consistent json/yaml output no types by @ibuildthecloud in #1806
• Add readiness probe to acorn-controller by @thedadams in #1783
• Bump k3s to 1.27 in CI by @g-linville in #1804
• Put project region information on status by @thedadams in #1791
• Drop built-in http01 challenge, use cert-manager to issue certs for custom domain by @StrongMonkey in #1800
• Add support for metrics in containers and jobs (#830) by @g-linville in #1758
• Don't renew certs if no domain is set by @StrongMonkey in #1814
• Ensure that resource definition is completely stored in ETCD (#1744) by @thedadams in #1810
• Fix image interpolation for IDs that already contain the digest by @g-linville in #1816
• Split make test target by @njhale in #1820
• Add CPU/Memory request/limits and PriorityClasses for system components by @tylerslaton in #1811
• Refactor Resources struct and its helper functions by @tylerslaton in #1799
• Generalize event TTL logic by @njhale in #1822
• Up the memory/cpu req/limits by @tylerslaton in #1825
• Fix issue with TestJobDelete by @tylerslaton in #1827
• Add ignore-cleanup flag to rm command (#1753) by @thedadams in #1818
• Fix EKS test to actually run tests by @tylerslaton in #1829
• Add docs for metrics (#830) by @g-linville in #1830
• Use AppInstance instead of App for app subresouces that update (#1753) by @thedadams in #1828
• Raise builder limit even further by @tylerslaton in #1831
• Add PriorityClass support to ComputeClasses by @tylerslaton in #1815
• Rename to acorn-io/runtime by @thedadams in #1824
• Change goreleaser binary to acorn by @thedadams in #1837
• Ensure brew install is still acorn by @thedadams in #1840
• fix: cleanup acorn secrets reveal and general non-table output (#1812) by @iwilltry42 in #1833
• Prevent Acorn from assuming Docker Hub for auto-upgrade apps with no specified registry (#1427) by @g-linville in #1823
• Replace deprecated goreleaser flag by @njhale in #1841
• Don't hide inactive top level acorn by @ibuildthecloud in #1794
• Fix build cache issues by @ibuildthecloud in #1807
• fix: handle "image not allowed error" for both run and update (#1712) by @iwilltry42 in #1835
• Update mac-main-release to use BuildJet by @tylerslaton in #1852
• Add sudo to notarize script commands by @tylerslaton in #1856
• Temporarily disable signing and notarization for main releases by @tylerslaton in #1857
• Return early in notarize script temporarily by @tylerslaton in #1858
• Rename hub to manager by @thedadams in #1848
• Improve container port deduplication by @g-linville in #1847
• Add support for filtering events by source (#1802) by @njhale in #1846
• Update MacOS notarization to use app store connect API key by @tylerslaton in #1860
• Fix GenericMap.DeepCopyInto (#1844) by @njhale in #1850
• Improve linking docs (#1536) by @g-linville in #1862
• Output short hash with acorn ps if the tag no longer exists on the image by @g-linville in #1859
• Add critical EventSeverity by @njhale in #1864
• Fix output of acorn apps to show image names properly for Nested and Service Acorns (#1774) by @g-linville in #1851
• Add sudo to cp in notarize script by @tylerslaton in #1870
• Ensure acorn-controller doesn't restart on fresh install (#1868) by @thedadams in #1869
• Increase overhead for DMG to 30 megabytes by @tylerslaton in #1872
• Fix MacOS release name after rename by @tylerslaton in #1874
• Rename event severity warn to error and rm critical by @njhale in #1873
• Add examples to acorn update --help by @g-linville in #1871
• Fix notarize script typo and add logs by @tylerslaton in #1877
• Add new secrets to env for goreleaser by @tylerslaton in #1879
• Fix acorn update so that deployArgs are properly updated (#1826) by @g-linville in #1876
• Allow acorn rm --ignore-cleanup on services (#1795) by @g-linville in #1878
• Don't return multiple default services by @ibuildthecloud in #1882
• Use loglevel to dynamically change logrus' log level during runtime (#752) by @g-linville in #1861
• Add info about the shared image registry by @g-linville in #1885
• Switch to use a zip inste...

v0.8.0-rc8

Changelog

• 0cd578e: Add --quiet to install (@cjellick)
• 8903651: Only include MacOS zip files in releases (@tylerslaton)

v0.8.0-rc7

Changelog

• f77a2dd: Switch from .dmg to .zip for extra release files (@tylerslaton)

v0.8.0-rc6

What's Changed

• Fix acorn update so that it won't unexpectedly change the app image (#1738) by @g-linville in #1789
• Clarify project update validation message by @njhale in #1797
• Disable NetworkPolicies by default by @g-linville in #1785
• Update NetworkPolicy docs with new defaults info by @g-linville in #1801
• Remove direct lasso dependency by @ibuildthecloud in #1792
• Ensure logs -c CONTAINER_NAME only matches valid sidecars by @ibuildthecloud in #1793
• Update login command to not suggest a broken command by @tylerslaton in #1645
• Consistent json/yaml output no types by @ibuildthecloud in #1806
• Add readiness probe to acorn-controller by @thedadams in #1783
• Bump k3s to 1.27 in CI by @g-linville in #1804
• Put project region information on status by @thedadams in #1791
• Drop built-in http01 challenge, use cert-manager to issue certs for custom domain by @StrongMonkey in #1800
• Add support for metrics in containers and jobs (#830) by @g-linville in #1758
• Don't renew certs if no domain is set by @StrongMonkey in #1814
• Ensure that resource definition is completely stored in ETCD (#1744) by @thedadams in #1810
• Fix image interpolation for IDs that already contain the digest by @g-linville in #1816
• Split make test target by @njhale in #1820
• Add CPU/Memory request/limits and PriorityClasses for system components by @tylerslaton in #1811
• Refactor Resources struct and its helper functions by @tylerslaton in #1799
• Generalize event TTL logic by @njhale in #1822
• Up the memory/cpu req/limits by @tylerslaton in #1825
• Fix issue with TestJobDelete by @tylerslaton in #1827
• Add ignore-cleanup flag to rm command (#1753) by @thedadams in #1818
• Fix EKS test to actually run tests by @tylerslaton in #1829
• Add docs for metrics (#830) by @g-linville in #1830
• Use AppInstance instead of App for app subresouces that update (#1753) by @thedadams in #1828
• Raise builder limit even further by @tylerslaton in #1831
• Add PriorityClass support to ComputeClasses by @tylerslaton in #1815
• Rename to acorn-io/runtime by @thedadams in #1824
• Change goreleaser binary to acorn by @thedadams in #1837
• Ensure brew install is still acorn by @thedadams in #1840
• fix: cleanup acorn secrets reveal and general non-table output (#1812) by @iwilltry42 in #1833
• Prevent Acorn from assuming Docker Hub for auto-upgrade apps with no specified registry (#1427) by @g-linville in #1823
• Replace deprecated goreleaser flag by @njhale in #1841
• Don't hide inactive top level acorn by @ibuildthecloud in #1794
• Fix build cache issues by @ibuildthecloud in #1807
• fix: handle "image not allowed error" for both run and update (#1712) by @iwilltry42 in #1835
• Update mac-main-release to use BuildJet by @tylerslaton in #1852
• Add sudo to notarize script commands by @tylerslaton in #1856
• Temporarily disable signing and notarization for main releases by @tylerslaton in #1857
• Return early in notarize script temporarily by @tylerslaton in #1858
• Rename hub to manager by @thedadams in #1848
• Improve container port deduplication by @g-linville in #1847
• Add support for filtering events by source (#1802) by @njhale in #1846
• Update MacOS notarization to use app store connect API key by @tylerslaton in #1860
• Fix GenericMap.DeepCopyInto (#1844) by @njhale in #1850
• Improve linking docs (#1536) by @g-linville in #1862
• Output short hash with acorn ps if the tag no longer exists on the image by @g-linville in #1859
• Add critical EventSeverity by @njhale in #1864
• Fix output of acorn apps to show image names properly for Nested and Service Acorns (#1774) by @g-linville in #1851
• Add sudo to cp in notarize script by @tylerslaton in #1870
• Ensure acorn-controller doesn't restart on fresh install (#1868) by @thedadams in #1869
• Increase overhead for DMG to 30 megabytes by @tylerslaton in #1872
• Fix MacOS release name after rename by @tylerslaton in #1874
• Rename event severity warn to error and rm critical by @njhale in #1873
• Add examples to acorn update --help by @g-linville in #1871
• Fix notarize script typo and add logs by @tylerslaton in #1877
• Add new secrets to env for goreleaser by @tylerslaton in #1879
• Fix acorn update so that deployArgs are properly updated (#1826) by @g-linville in #1876
• Allow acorn rm --ignore-cleanup on services (#1795) by @g-linville in #1878
• Don't return multiple default services by @ibuildthecloud in #1882
• Use loglevel to dynamically change logrus' log level during runtime (#752) by @g-linville in #1861
• Add info about the shared image registry by @g-linville in #1885
• Switch to use a zip instead of a DMG by @tylerslaton in #1880
• Autoupgrade fixes by @g-linville in #1845
• Add image granted permissions by @ibuildthecloud in #1890
• feat: Set defaults for empty basic secrets (#347) by @pratikjagrut in #1808
• Remove auto-upgrade from help that was erroneously added by @ibuildthecloud in #1891
• Add "completed" to the appStatus by @ibuildthecloud in #1895
• Wait for the service to be ready and delete by @thedadams in #1896
• Ensure that delete jobs run when projects are deleted (#1893) by @thedadams in #1886
• Make the project namespace check configurable by @thedadams in #1900
• Remove image lookups from acorn ps by @g-linville in #1888
• Add full project name and CLI default to the acorn project json output by @ibuildthecloud in #1899
• Fix regression in assigning devMode profile at runtime by @ibuildthecloud in #1901
• Don't assign permissions to projects managed by acorn identity by @ibuildthecloud in #1902
• Always set AutoUpgrade if it is implied (#1459) by @tylerslaton in #1881
• Add --profile and component resources flags by @tylerslaton in #1863
• Always return event details (#1906) by @njhale in #1908
• Add acorn copy command (#1809) by @g-linville in #1883
• add: ImageAllowRules Prompt for autoupgrade patterns (#1698) by @iwilltry42 in #1905
• Ensure uninstall even if the runtime is unable to process objects (#1909) by @thedadams in #1910
• Drop details flag from acorn events subcommand (#1906) by @njhale in #1913
• Use z for pointer literals by @njhale in #1912
• Use rcodesign's release page instead of cargo by @tylerslaton in #1915
• Switch to creating a single wildcard record per install by @tylerslaton in #1889
• Fix issue with DNS svc and Ingress not being created by @tylerslaton in #1916
• Use a public name strategy for volumes (#1892) by @...

v0.8.0-rc5

Changelog

• db683e0: Add 409 conflict retry in subresource (@ibuildthecloud)
• c0dd94e: Add a global acorn config option (@njhale)
• a1fbe42: Add account id and project name as labels on pods (@ibuildthecloud)
• 0517559: Add install opt to set annotations on acorn-api pods (@njhale)
• 609aa56: Add jobs command and jobs restart subcommand (@tylerslaton)
• 60aac01: Add the ability to set the log level at startup (@thedadams)
• 8301f79: Bump baaah for klog/logrus integration (@ibuildthecloud)
• 37cd895: Change: verification key reference should default to acorn:// if it's not a file (#2112) (@iwilltry42)
• f280ab0: Depot integration (@ibuildthecloud)
• 9530b5a: Don't print not found errors on event truncate (@njhale)
• ab9d6ed: Ensure image is always created, not just on change (@ibuildthecloud)
• a3fe6ef: Export function for object existence in a project region (@thedadams)
• bb90c04: Fix app info for top level acorns (@ibuildthecloud)
• 2be0dfd: Fix login/logout default and dashboard for beta (@ibuildthecloud)
• 26939a8: Fix propagation of AWS permission for service consumer permissions (@ibuildthecloud)
• 7d19435: Fix status messages for external secrets and services (@ibuildthecloud)
• bd8ed75: Hide image verify/sign subcommands and hide --s, -k, -a push flags (@tylerslaton)
• be49d0b: Improve acorn copy and move all code to CLI (#2116) (@g-linville)
• dfc7bab: Improve help and error messages for acorn copy (#2119) (#2120) (@g-linville)
• 6f808e0: Print local credential usage after builds (@njhale)
• 447c218: Regenerate docs to include global config option (@njhale)
• 79e9d66: Remove "remote images" (@ibuildthecloud)
• c606350: Remove JobRestart name/namespace from client.JobRestart (@tylerslaton)
• 0c703f1: Remove confusing "SIGN: 0" code (@tylerslaton)
• 15fc547: Remove targetNamespace option (@tylerslaton)
• 54e2fa3: Rename quota-allocated condition to be just quota (@tylerslaton)
• 81d6f84: Render project name with default context for every project output (@thedadams)
• b282bb0: Stop printing stack traces when buildkitd pod is deleted (@thedadams)
• 6aaa721: Update cred usage verbiage (@njhale)
• 926a0b9: Update reference docs to include api pod annotations install option (@njhale)
• 4d00eb2: Use AppInstance type instead of App for get/list of Jobs (@tylerslaton)
• 3cb7eac: add: support OpenSSH format private keys for signing (#2063) (#2088) (@iwilltry42)
• bd13da9: add: translate registry unauthorized error when running a private image (#2101) (#2102) (@iwilltry42)
• 2406705: change: Improve Usage of ImageAllowRules (#2067 + #2064 + #2069) (#2074) (@iwilltry42)
• 82bc84d: chore: remove release jobs from repo (@drpebcak)
• 3a56f6b: fix docs code block formatting (@keyallis)
• b355e15: fix/regression: don't rely on deprecated image.Remote when pruning signatures (#2103) (@iwilltry42)
• c3e5fb2: fix: require images scope in IARs (#2062) (@iwilltry42)
• cf7b26e: update workflow runner version to latest ubuntu supported (@keyallis)