Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump github.com/vmware-tanzu/velero from 1.11.1 to 1.12.0 #4841

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 25, 2023

Bumps github.com/vmware-tanzu/velero from 1.11.1 to 1.12.0.

Release notes

Sourced from github.com/vmware-tanzu/velero's releases.

v1.12.0

v1.12

2023-09-22

Download

https://github.com/vmware-tanzu/velero/releases/tag/v1.12.0

Container Image

velero/velero:v1.12.0

Documentation

https://velero.io/docs/v1.12/

Upgrading

https://velero.io/docs/v1.12/upgrade-to-1.12/

Highlights

CSI Snapshot Data Movement

CSI Snapshot Data Movement refers to back up CSI snapshot data from the volatile and limited production environment into durable, heterogeneous, and scalable backup storage in a consistent manner; and restore the data to volumes in the original or alternative environment.

CSI Snapshot Data Movement is useful in below scenarios:

  • For on-premises users, the storage usually doesn't support durable snapshots, so it is impossible/less efficient/cost ineffective to keep volume snapshots by the storage This feature helps to move the snapshot data to a storage with lower cost and larger scale for long time preservation.
  • For public cloud users, this feature helps users to fulfill the multiple cloud strategy. It allows users to back up volume snapshots from one cloud provider and preserve or restore the data to another cloud provider. Then users will be free to flow their business data across cloud providers based on Velero backup and restore

CSI Snapshot Data Movement is built according to the Volume Snapshot Data Movement design (Volume Snapshot Data Movement). More details can be found in the design.

Resource Modifiers

In many use cases, customers often need to substitute specific values in Kubernetes resources during the restoration process like changing the namespace, changing the storage class, etc.

To address this need, Resource Modifiers (also known as JSON Substitutions) offer a generic solution in the restore workflow. It allows the user to define filters for specific resources and then specify a JSON patch (operator, path, value) to apply to the resource. This feature simplifies the process of making substitutions without requiring the implementation of a new RestoreItemAction plugin. More details can be found in Volume Snapshot Resource Modifiers design (Resource Modifiers).

Multiple VolumeSnapshotClasses

Prior to version 1.12, the Velero CSI plugin would choose the VolumeSnapshotClass in the cluster based on matching driver names and the presence of the "velero.io/csi-volumesnapshot-class" label. However, this approach proved inadequate for many user scenarios.

With the introduction of version 1.12, Velero now offers support for multiple VolumeSnapshotClasses in the CSI Plugin, enabling users to select a specific class for a particular backup. More details can be found in Multiple VolumeSnapshotClasses design (Multiple VolumeSnapshotClasses).

Restore Finalizer

Before v1.12, the restore controller would only delete restore resources but wouldn’t delete restore data from the backup storage location when the command velero restore delete was executed. The only chance Velero deletes restores data from the backup storage location is when the associated backup is deleted.

In this version, Velero introduces a finalizer that ensures the cleanup of all associated data for restores when running the command velero restore delete.

Runtime and dependencies

To fix CVEs and keep pace with Golang, Velero made changes as follows:

  • Bump Golang runtime to v1.20.7.
  • Bump several dependent libraries to new versions.
  • Bump Kopia to v0.13.

... (truncated)

Commits
  • 7112c62 Merge pull request #6842 from allenxu404/release-1.12
  • dcb891a Modify changelogs for v1.12
  • 21353f0 Merge pull request #6841 from Lyndon-Li/release-1.12
  • 5e71148 doc for multiple snapshot class
  • b035680 Set data mover related properties for schedule (#6823)
  • 9eb133e Merge pull request #6821 from reasonerjt/update-kopia-repo-1.12
  • 6f1262d Switch the kopia repo to new org
  • 48e3278 Merge pull request #6814 from allenxu404/release-1.12
  • acfc6e4 Add doc changes after rc1 to v1.12 docs (#6812)
  • 993d2c7 Merge pull request #6803 from qiuming-best/finalizer-optimize
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested a review from a team as a code owner September 25, 2023 11:55
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code type::chore labels Sep 25, 2023
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/vmware-tanzu/velero-1.12.0 branch 3 times, most recently from bd665a3 to 8642e4b Compare October 9, 2023 14:30
Bumps [github.com/vmware-tanzu/velero](https://github.com/vmware-tanzu/velero) from 1.11.1 to 1.12.0.
- [Release notes](https://github.com/vmware-tanzu/velero/releases)
- [Changelog](https://github.com/vmware-tanzu/velero/blob/main/CHANGELOG.md)
- [Commits](vmware-tanzu/velero@v1.11.1...v1.12.0)

---
updated-dependencies:
- dependency-name: github.com/vmware-tanzu/velero
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/vmware-tanzu/velero-1.12.0 branch from 8642e4b to 0c1964a Compare October 9, 2023 14:45
@laverya
Copy link
Member

laverya commented Oct 11, 2023

@dependabot merge

@dependabot dependabot bot merged commit 3b72743 into main Oct 11, 2023
8 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/github.com/vmware-tanzu/velero-1.12.0 branch October 11, 2023 20:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code type::chore
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant