v0.14.1

Commits

• 4846d98: 🧩 Add an Angular Language Service extension to the Code Server system (Neal DeBuhr)
• be89813: 🔒 Autogenerate the OAuth2 client secret and cookie secret for a simplified and more secure setup (Neal DeBuhr)
• 25e0f2f: 🔖 Cut a v0.14.1 release (Neal DeBuhr)

v0.14.0

Commits

• e5b2bdd: 🤐 Add a zip utility to the Jupyter setup (ndebuhr)
• c982b40: 🐘 Add Git LFS to the Code Server setup (ndebuhr)
• 6aadfac: ⚙️ Use a more robust PIDs, process spawning/reaping, and signal handlers approach by not overwriting the tini-based Jupyter Docker image entrypoint (ndebuhr)
• 7b2af75: 💿 Create and use a smaller initializers image by switching from a Debian base image to an Alpine base image (ndebuhr)
• def662e: ⚙️ Switch Grafana initialization to a tini-based entrypoint for improved process spawning/reaping and signal handling (ndebuhr)
• b0a5931: 👷 Restructure the Code Server image build to better use the Docker build cache (ndebuhr)
• 02a054d: ➕ Enable horizontal pod autoscaling for the OAuth2 Proxy (ndebuhr)
• eb6fd8a: 📏 Reduce the max pods per node in GKE provisioning so that smaller CIDR ranges are provisioned (workstations do not have high pod counts) (ndebuhr)
• b7421b5: 📌 Pin Terraform to v1.1.2 in the Code Server setup and GitHub Actions deployment workflow (ndebuhr)
• b00da61: ⏪️ Revert "📏 Reduce the max pods per node in GKE provisioning so that smaller CIDR ranges are provisioned (workstations do not have high pod counts)" (ndebuhr)
• dd27c60: 🚚 Rename the addon-heavy, beta-feature-dependent GKE provisioning (ndebuhr)
• 6385303: 📈 Use a custom metric for OAuth2 Proxy horizontal pod autoscaling - this avoids multidimensional pod autoscaling complexities with the gke-beta provisioning spec (ndebuhr)
• fd59a8c: 🛂 Add a policy to prohibit the use of latest-tagged base images (ndebuhr)
• 7f496d7: 🧪 Install conftest in the Code Server setup (ndebuhr)
• d5a5048: 🔒️ Hardening - reduce OpenVPN preconfiguration and runtime privilege (Linux capabilities) (ndebuhr)
• 112fd22: 🔖 Cut a v0.14.0 release (ndebuhr)

v0.13.1

Commits

• a126737: ⬆️ Upgrade the Keycloak operator (ndebuhr)
• 8882bee: 🐳 Upgrade the Code Server dind sidecar to v20 (ndebuhr)
• 323af29: 🐿 Clean up the Code Server Go installation, including a revised approach to PATH environment variable definition (ndebuhr)
• e36b666: 🌌 Upgrade Jupyter v6.4.3→v6.4.6 (ndebuhr)
• 9703162: 🤖 Upgrade Certbot containers to v1.22 (ndebuhr)
• 85692e1: ⬆️ Upgrade chart dependencies SonarQube (v9.8.2→v9.9.0) and Redis (v15.5.5→v15.6.8) (ndebuhr)
• edf700e: ⬆️ Upgrade Docker images for monitoring systems and proxy systems, including Keycloak operator (v15.0.2→v16.1.0), OAuth2 Proxy (v7.1.3→v7.2.1), Prometheus (v2.29.2→v2.32.1), and Grafana (v8.1.3→v8.3.3) (ndebuhr)
• 8135421: ⬆️ Upgrade Kanboard from v1.2.20 to v1.2.21 (ndebuhr)
• a668e08: ⬆️ Upgrade cluster preparation chart dependencies, including Ingress Nginx (v4.0.3→v4.0.13), OPA Gatekeeper (v3.6.0→v3.7.0), and AWS EFS CSI Driver (v2.2.0→v2.2.2) (ndebuhr)
• ebc4f95: 🔗 Add SonarCloud project metadata - links to the project homepage, CI, issue tracker, and SCM (ndebuhr)
• d8d2394: 🔖 Cut a v0.13.1 release (ndebuhr)

v0.13.0

Commits

• 6338cf9: ⚰️ Remove residual noVNC image assets - the image is no longer needed for v0.10+ workstations (ndebuhr)
• ddf2a05: 🛂 Add a system for Dockerfile policies, based on conftest (ndebuhr)
• 2ae6808: 💻 Specify the type of machine for conftest workflow runs (ndebuhr)
• 502a2d3: 🧽 Clean up Dockerfiles, with a particular focus on ShellCheck-based refactoring/improvements (ndebuhr)
• 92f6b75: 👥 Refine the AWS provisioning spec to support multiple workstations (each on a separate cluster) (ndebuhr)
• 54b911e: 🦊 Expand Selenium Grid capabilities to (optionally) include Firefox nodes (ndebuhr)
• 83c7770: 🦊 Expand network policies to include Selenium Firefox nodes (ndebuhr)
• 9cd7de5: 🗃️ Add an SFTP server component (ndebuhr)
• 385b8f1: 🧪 Expand the scope of deployment tests (ndebuhr)
• ee52113: 🏭 Standardize node disk sizes across Kubernetes provisioning systems - GKE (100→64 GB) and EKS (10→64 GB) (ndebuhr)
• 39b998d: ✍️ Improve Terraform code formatting (ndebuhr)
• e6245eb: 🤖 Expand Selenium Grid capabilities to (optionally) include Edge nodes (ndebuhr)
• d3d19b3: 🛂 Restructure Selenium Grid network policies (ndebuhr)
• f9e88b9: 📝 Update the README to reflect the latest breadth of components (ndebuhr)
• 19851a2: 📁 Adjust the CRD installation script so that it is not dependent upon the shell current working directory (ndebuhr)
• e3b8fc3: 🔖 Cut a v0.13.0 release (ndebuhr)

v0.12.0

Commits

• 47eb3dc: ⬆️ Upgrade to Helm API v2, across preparation and deployment charts (ndebuhr)
• 8271c15: 🖼️ Add icons to the Helm charts metadata (ndebuhr)
• 193a7f1: ✂️ Simplify the specification of component resources and adjust associated OPA policies (ndebuhr)
• c302d38: 🔥 Remove the residual resources limit OPA policy (ndebuhr)
• 69af2d3: 💨 Add a GKE specification with node auto-provisioning and vertical pod autoscaling (ndebuhr)
• 0c282d3: 🖼️ Update the architecture diagram to include Kanboard (ndebuhr)
• 4a2c526: 🖼️ Add Kanboard to the technology logos in the README (ndebuhr)
• 7e31351: 🌗 Darken the Cloud Native Workstation logo in the README for improved contrast on light theme README viewers (ndebuhr)
• a545e2b: 🖼️ Add Pgweb to the technology logos section of the README (ndebuhr)
• 81b72ef: 🔖 Cut a v0.12.0 release (ndebuhr)

v0.11.1

Commits

• 167f91b: 🏛️ Improve the structure and usage of Helm values (ndebuhr)
• a2d5915: 🧽 Clean up templates by leveraging restartPolicy and imagePullPolicy defaults (ndebuhr)
• 974d295: 🔖 Cut a v0.11.1 release (ndebuhr)

v0.11.0

Commits

• 121e5f5: 📝 Add a Kanboard component for task management (ndebuhr)
• c37ecb4: 🧹 Clean up the deployment chart values.yaml (ndebuhr)
• ab93d39: 🔎 Improve parameterization and retention of Prometheus metrics (ndebuhr)
• 6908e34: 🛠️ Add jsonnet installation to the Code Server build (ndebuhr)
• edcc640: 🔖 Cut a v0.11.0 release (ndebuhr)

v0.10.0

Commits

• ae28ba0: 🌐 Install additional networking utilities during the Code Server build (ndebuhr)
• 424d8f7: 🔥 Remove placeholder/commented main ingress annotations, since custom auth header manipulations have proven unnecessary (ndebuhr)
• 4342ba5: 🍪 Reduce cookies reliance by shifting OAuth2 Proxy session storage to Redis (ndebuhr)
• 0fd1074: ⬆️ Upgrade Selenium Grid to v4, by replacing the deprecated Helm chart with standard Kubernetes templates (ndebuhr)
• d2ac9a4: ⬆️ Upgrade the Keycloak operator (ndebuhr)
• 9da9d15: 🛠️ Install Linux system utilities during the Jupyter build (ndebuhr)
• 8ed8afc: 🔖 Cut a v0.10.0 release (ndebuhr)

v0.9.1

Commits

• 6af091f: 🖼️ Update the README architecture diagram - include the Pgweb component (ndebuhr)
• a09b3e1: 🔒 Expand OpenVPN preconfiguration (disabled by default) to Code Server and Jupyter (ndebuhr)
• 36fd530: 🧼 Clean up persistent volume ownership management across Code Server and Grafana components (ndebuhr)
• e0938b2: ⬆️ Upgrade Terraform (to v1.0.11), Helm (to v3.7.1), and Golang (to v1.17.3) (ndebuhr)
• 22b335f: 🔖 Cut a v0.9.1 release (ndebuhr)

v0.9.0

Commits

• af362a9: ☁️ Expand cloud provider options to include AWS (EKS, Route 53, and EFS) (ndebuhr)
• 1c69832: 📖 Update the README table of contents (ndebuhr)
• 0d921d5: 📖 Fix a broken link in the table of contents (ndebuhr)
• 1393be5: 🔑 Expand the use of resource specifications for certbot-related containers (ndebuhr)
• a3c4bde: 👥 Add an AWS SSO utility to the Code Server build (ndebuhr)
• f7a0d3e: 🔒 Set encryption to enabled, by default, for EFS (AWS) (ndebuhr)
• ac301cf: 🔖 Cut a v0.9.0 release (ndebuhr)