From a001fbf3ec9ad4a330c2a2bfdd985aa97b6caec8 Mon Sep 17 00:00:00 2001 From: Luke Heath Date: Tue, 11 Jul 2023 14:38:57 -0700 Subject: [PATCH] Prepare v4.34.0 (#12706) --- CHANGELOG.md | 94 +++++++++++++++++++ changes/10292-optimize-macos-cis-query-5.1.5 | 1 - .../11037-privacy_preferences-chromeos-table | 1 - changes/11355-software-page-rendering-bugs | 1 - changes/11655-hide-osquery-table-info | 1 - changes/11927-vuln-false-positive-icloud | 3 - changes/12310-setup-styling | 1 - changes/12368-copy-message | 1 - changes/12582-nudge-mdm | 1 - ...atelimits-should-return-proper-status-code | 3 - changes/bug-10867-output-warns-to-stdout | 1 - changes/bug-11636-vuln-dropdown | 1 - changes/bug-11898-targets-selector-styling | 1 - changes/bug-12108-weird-scroll-behavior | 1 - changes/bug-12308-sandbox-software-image | 1 - changes/bug-12332-dashboard-loading-state | 1 - changes/bug-12403-fix-post-eula-status-code | 1 - ...g-12701-windows-mdm-missing-identity-certs | 1 - changes/bug-2642-fix-msrc-error | 1 - changes/bug-2790-return-proper-status-code | 1 - ...-return-proper-status-code-if-smtp-invalid | 1 - changes/bug-2888-validate-metadataurl | 1 - ...g-add-mdm-feature-flag-in-modify-appconfig | 1 - changes/issue-11861-filevault-key | 2 - changes/issue-11932-improve-abm-400-error | 1 - changes/issue-11952-UI-for-windows-mdm-on-off | 1 - .../issue-12129-activity-transferred-hosts | 1 - changes/issue-12257-windows-mdm-feature-flag | 1 - changes/issue-12259-windows-mdm-settings | 1 - ...issue-12260-trigger-windows-mdm-enrollment | 1 - ...sue-12261-microsoft-mdm-discovery-endpoint | 1 - .../issue-12262-microsoft-mdm-policy-endpoint | 1 - .../issue-12263-microsoft-mdm-enroll-endpoint | 1 - changes/issue-12288-windows-mdm-activities | 1 - ...289-add-enable-disable-windows-activtiy-UI | 1 - .../issue-12297-ui-transferred-hosts-activity | 1 - changes/issue-12330-mdm-verification-failed | 2 - ...sue-12342-trigger-windows-mdm-unenrollment | 1 - changes/issue-12392-use-primary | 2 - ...73-fix-tooltip-line-breaking-on-table-cell | 1 - changes/issue-12568-add-org-support-url-input | 1 - .../issue-12589-host-details-software-search | 2 - changes/mdm-turn-on | 1 - ...eedback-fleetctl-login-when-using-env-vars | 1 - changes/sso-display-name-case | 1 - ...custom-table-for-macos-cis-5.1.6-and-5.1.7 | 1 - charts/fleet/Chart.yaml | 2 +- charts/fleet/values.yaml | 2 +- .../dogfood/terraform/aws/variables.tf | 2 +- .../dogfood/terraform/gcp/variables.tf | 2 +- .../sandbox/JITProvisioner/jitprovisioner.tf | 2 +- tools/fleetctl-npm/package.json | 2 +- 52 files changed, 100 insertions(+), 59 deletions(-) delete mode 100644 changes/10292-optimize-macos-cis-query-5.1.5 delete mode 100644 changes/11037-privacy_preferences-chromeos-table delete mode 100644 changes/11355-software-page-rendering-bugs delete mode 100644 changes/11655-hide-osquery-table-info delete mode 100644 changes/11927-vuln-false-positive-icloud delete mode 100644 changes/12310-setup-styling delete mode 100644 changes/12368-copy-message delete mode 100644 changes/12582-nudge-mdm delete mode 100644 changes/bug-10720-ratelimits-should-return-proper-status-code delete mode 100644 changes/bug-10867-output-warns-to-stdout delete mode 100644 changes/bug-11636-vuln-dropdown delete mode 100644 changes/bug-11898-targets-selector-styling delete mode 100644 changes/bug-12108-weird-scroll-behavior delete mode 100644 changes/bug-12308-sandbox-software-image delete mode 100644 changes/bug-12332-dashboard-loading-state delete mode 100644 changes/bug-12403-fix-post-eula-status-code delete mode 100644 changes/bug-12701-windows-mdm-missing-identity-certs delete mode 100644 changes/bug-2642-fix-msrc-error delete mode 100644 changes/bug-2790-return-proper-status-code delete mode 100644 changes/bug-2888-return-proper-status-code-if-smtp-invalid delete mode 100644 changes/bug-2888-validate-metadataurl delete mode 100644 changes/bug-add-mdm-feature-flag-in-modify-appconfig delete mode 100644 changes/issue-11861-filevault-key delete mode 100644 changes/issue-11932-improve-abm-400-error delete mode 100644 changes/issue-11952-UI-for-windows-mdm-on-off delete mode 100644 changes/issue-12129-activity-transferred-hosts delete mode 100644 changes/issue-12257-windows-mdm-feature-flag delete mode 100644 changes/issue-12259-windows-mdm-settings delete mode 100644 changes/issue-12260-trigger-windows-mdm-enrollment delete mode 100644 changes/issue-12261-microsoft-mdm-discovery-endpoint delete mode 100644 changes/issue-12262-microsoft-mdm-policy-endpoint delete mode 100644 changes/issue-12263-microsoft-mdm-enroll-endpoint delete mode 100644 changes/issue-12288-windows-mdm-activities delete mode 100644 changes/issue-12289-add-enable-disable-windows-activtiy-UI delete mode 100644 changes/issue-12297-ui-transferred-hosts-activity delete mode 100644 changes/issue-12330-mdm-verification-failed delete mode 100644 changes/issue-12342-trigger-windows-mdm-unenrollment delete mode 100644 changes/issue-12392-use-primary delete mode 100644 changes/issue-12473-fix-tooltip-line-breaking-on-table-cell delete mode 100644 changes/issue-12568-add-org-support-url-input delete mode 100644 changes/issue-12589-host-details-software-search delete mode 100644 changes/mdm-turn-on delete mode 100644 changes/provide-feedback-fleetctl-login-when-using-env-vars delete mode 100644 changes/sso-display-name-case delete mode 100644 changes/use-custom-table-for-macos-cis-5.1.6-and-5.1.7 diff --git a/CHANGELOG.md b/CHANGELOG.md index 23d06b070c..a4834bfa4e 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,97 @@ +## Fleet 4.34.0 (Jul 11, 2023) + +* Added execution of programmatic Windows MDM enrollment on eligible devices when Windows MDM is enabled. + +* Microsoft MDM Enrollment Protocol: Added support for the RequestSecurityToken messages. + +* Microsoft MDM Enrollment Protocol: Added support for the DiscoveryRequest messages. + +* Microsoft MDM Enrollment Protocol: Added support for the GetPolicies messages. + +* Added `enabled_windows_mdm` and `disabled_windows_mdm` activities when a user turns on/off Windows MDM. + +* Added support to enable and configure Windows MDM and to notify devices that are able to programmatically enroll. + +* Added ability to turn Windows MDM on and off from the Fleet UI. + +* Added enable and disable Windows MDM activity UI. + +* Updated MDM detail query ingestion to switch MDM profiles from "verifying" or "verified" status to "failed" status when osquery reports that this profile is not installed on the host. + +* Added notification and execution of programmatic Windows MDM unenrollment on eligible devices when Windows MDM is disabled. + +* Added the `FLEET_DEV_MDM_ENABLED` environment variable to enable the Windows MDM feature during its development and beta period. + +* Added the `mdm_enabled` feature flag information to the response payload of the `PATCH /config` endpoint. + +* When creating a PolicySpec, return the proper HTTP status code if the team is not found. + +* Added CPEMatchingRule type, used for correcting false positives caused by incorrect entries in the NVD dataset. + +* Optimized macOS CIS query "Ensure Appropriate Permissions Are Enabled for System Wide Applications" (5.1.5). + +* Updated macOS CIS policies 5.1.6 and 5.1.7 to use a new fleetd table `find_cmd` instead of relying on the osquery `file` table to improve performance. + +* Implemented the privacy_preferences table for the Fleetd Chrome extension. + +* Warnings in fleetctl now go to stderr instead of stdout. + +* Updated UI for transferred hosts activity items. + +* Added Organization support URL input on the setting page organization info form. + +* Added improved ABM 400 error message to the UI. + +* Hide any osquery tables or columns from Fleet UI that has hidden set to true to match Fleet website. + +* Ignore casing in SAML response for display name. For example the display name attribute can be provided now as `displayname` or `displayName`. + +* Provide feedback to users when `fleetctl login` is using EMAIL and PASSWORD environment variables. + +* Added a new activity `transferred_hosts` created when hosts are transferred to a new team (or no team). + +* Added milliseconds to the timestamp of auto-generated team name when creating a new team in `GET /mdm/apple/profiles/match`. + +* Improved dashboard loading states. + +* Improved UI for selecting targets. + +* Made sure that all configuration profiles and commands are sent to devices if MDM is turned on, even if the device never turned off MDM. + +* Fixed bug when reading filevault key in osquery and created new Fleet osquery extension table to read the file directly rather than via filelines table. + +* Fixed UI bug on host details and device user pages that caused the software search to not work properly when searching by CVE. + +* Fixed not validating the schema used in the Metadata URL. + +* Fixed improper HTTP status code if SMTP is invalid. + +* Fixed false positives for iCloud on macOS. + +* Fixed styling of copy message when copying fields. + +* Fixed a bug where an empty file uploaded to `POST /api/latest/fleet/mdm/apple/setup/eula` resulted in a 500; now returns a 400 Bad Request. + +* Fixed vulnerability dropdown that was hiding if no vulnerabilities. + +* Fixed scroll behavior with disk encryption status. + +* Fixed empty software image in sandbox mode. + +* Fixed improper HTTP status code when `fleet/forgot_password` endpoint is rate limited. + +* Fixed MaxBurst limit parameter for `fleet/forgot_password` endpoint. + +* Fixed a bug where reading from the replica would not read recent writes when matching a set of MDM profiles to a team (the `GET /mdm/apple/profiles/match` endpoint). + +* Fixed an issue that displayed Nudge to macOS hosts if MDM was configured but MDM features weren't turned on for the host. + +* Fixed tooltip word wrapping on the error cell in the macOS settings table. + +* Fixed extraneous loading spinner rendering on the software page. + +* Fixed styling bug on setup caused by new font being much wider. + ## Fleet 4.33.1 (Jun 20, 2023) * Fixed ChromeOS add host instructions to use variable Fleet URL. diff --git a/changes/10292-optimize-macos-cis-query-5.1.5 b/changes/10292-optimize-macos-cis-query-5.1.5 deleted file mode 100644 index 63ff07e47a..0000000000 --- a/changes/10292-optimize-macos-cis-query-5.1.5 +++ /dev/null @@ -1 +0,0 @@ -* Optimize macOS CIS query "Ensure Appropriate Permissions Are Enabled for System Wide Applications" (5.1.5). diff --git a/changes/11037-privacy_preferences-chromeos-table b/changes/11037-privacy_preferences-chromeos-table deleted file mode 100644 index be1c659b88..0000000000 --- a/changes/11037-privacy_preferences-chromeos-table +++ /dev/null @@ -1 +0,0 @@ -* Implement the privacy_preferences table for the Fleetd Chrome extension diff --git a/changes/11355-software-page-rendering-bugs b/changes/11355-software-page-rendering-bugs deleted file mode 100644 index e0ee3a148c..0000000000 --- a/changes/11355-software-page-rendering-bugs +++ /dev/null @@ -1 +0,0 @@ -- Fix a bug where an extraneous loading spinner was rendered on the Software page. diff --git a/changes/11655-hide-osquery-table-info b/changes/11655-hide-osquery-table-info deleted file mode 100644 index abb6d9b3dc..0000000000 --- a/changes/11655-hide-osquery-table-info +++ /dev/null @@ -1 +0,0 @@ -- Hide any osquery tables or columns from Fleet UI that has hidden set to true to match Fleet website diff --git a/changes/11927-vuln-false-positive-icloud b/changes/11927-vuln-false-positive-icloud deleted file mode 100644 index 0ca4fcfd6b..0000000000 --- a/changes/11927-vuln-false-positive-icloud +++ /dev/null @@ -1,3 +0,0 @@ -- Added CPEMatchingRule type, used for correcting false positives caused by incorrect entries in the - NVD dataset. -- Fixed false positives for iCloud on macOS. diff --git a/changes/12310-setup-styling b/changes/12310-setup-styling deleted file mode 100644 index 4a17a3c5f3..0000000000 --- a/changes/12310-setup-styling +++ /dev/null @@ -1 +0,0 @@ -Fix styling bug on setup caused by new font being much wider diff --git a/changes/12368-copy-message b/changes/12368-copy-message deleted file mode 100644 index b2b7b17bfd..0000000000 --- a/changes/12368-copy-message +++ /dev/null @@ -1 +0,0 @@ -- Fix styling of copy message when copying fields diff --git a/changes/12582-nudge-mdm b/changes/12582-nudge-mdm deleted file mode 100644 index 4656110d23..0000000000 --- a/changes/12582-nudge-mdm +++ /dev/null @@ -1 +0,0 @@ -* Fixed an issue that displayed Nudge to macOS hosts if MDM was configured but MDM features weren't turned on for the host diff --git a/changes/bug-10720-ratelimits-should-return-proper-status-code b/changes/bug-10720-ratelimits-should-return-proper-status-code deleted file mode 100644 index 0ecf815db1..0000000000 --- a/changes/bug-10720-ratelimits-should-return-proper-status-code +++ /dev/null @@ -1,3 +0,0 @@ -- If the `fleet/forgot_password` endpoint is rate limited it should return the proper HTTP status - code. -- Fixed MaxBurst limit parameter for `fleet/forgot_password` endpoint. diff --git a/changes/bug-10867-output-warns-to-stdout b/changes/bug-10867-output-warns-to-stdout deleted file mode 100644 index 5fc2bf7263..0000000000 --- a/changes/bug-10867-output-warns-to-stdout +++ /dev/null @@ -1 +0,0 @@ -- Warnings in fleetctl should go to stderr instead of stdout. diff --git a/changes/bug-11636-vuln-dropdown b/changes/bug-11636-vuln-dropdown deleted file mode 100644 index db1a094732..0000000000 --- a/changes/bug-11636-vuln-dropdown +++ /dev/null @@ -1 +0,0 @@ -- Fix vuln dropdown that was hiding if no vulnerabilities diff --git a/changes/bug-11898-targets-selector-styling b/changes/bug-11898-targets-selector-styling deleted file mode 100644 index 74d487378b..0000000000 --- a/changes/bug-11898-targets-selector-styling +++ /dev/null @@ -1 +0,0 @@ -Cleaner UI for selecting targets diff --git a/changes/bug-12108-weird-scroll-behavior b/changes/bug-12108-weird-scroll-behavior deleted file mode 100644 index 91817c5b9a..0000000000 --- a/changes/bug-12108-weird-scroll-behavior +++ /dev/null @@ -1 +0,0 @@ -- Fix funky scroll behavior with disk encryption status diff --git a/changes/bug-12308-sandbox-software-image b/changes/bug-12308-sandbox-software-image deleted file mode 100644 index b1ac9b07d1..0000000000 --- a/changes/bug-12308-sandbox-software-image +++ /dev/null @@ -1 +0,0 @@ -- Fix empty software image in sandbox mode diff --git a/changes/bug-12332-dashboard-loading-state b/changes/bug-12332-dashboard-loading-state deleted file mode 100644 index 526bdfbdb7..0000000000 --- a/changes/bug-12332-dashboard-loading-state +++ /dev/null @@ -1 +0,0 @@ -- Clean up dashboard loading states diff --git a/changes/bug-12403-fix-post-eula-status-code b/changes/bug-12403-fix-post-eula-status-code deleted file mode 100644 index 4f444e35ca..0000000000 --- a/changes/bug-12403-fix-post-eula-status-code +++ /dev/null @@ -1 +0,0 @@ -* Fixed a bug where an empty file uploaded to `POST /api/latest/fleet/mdm/apple/setup/eula` resulted in a 500, now returns a 400 Bad Request. diff --git a/changes/bug-12701-windows-mdm-missing-identity-certs b/changes/bug-12701-windows-mdm-missing-identity-certs deleted file mode 100644 index b9da645073..0000000000 --- a/changes/bug-12701-windows-mdm-missing-identity-certs +++ /dev/null @@ -1 +0,0 @@ -* Fleet panicked when Windows MDM identity providers were not set and MDM programmatic enrollment was performed. diff --git a/changes/bug-2642-fix-msrc-error b/changes/bug-2642-fix-msrc-error deleted file mode 100644 index 6b0465cb4e..0000000000 --- a/changes/bug-2642-fix-msrc-error +++ /dev/null @@ -1 +0,0 @@ -- Don't use the MSRC scanner on non-windows OS. diff --git a/changes/bug-2790-return-proper-status-code b/changes/bug-2790-return-proper-status-code deleted file mode 100644 index 61c1aaa0be..0000000000 --- a/changes/bug-2790-return-proper-status-code +++ /dev/null @@ -1 +0,0 @@ -- When creating a PolicySpec, return the proper HTTP status code if the Team is not found. \ No newline at end of file diff --git a/changes/bug-2888-return-proper-status-code-if-smtp-invalid b/changes/bug-2888-return-proper-status-code-if-smtp-invalid deleted file mode 100644 index 3e13217052..0000000000 --- a/changes/bug-2888-return-proper-status-code-if-smtp-invalid +++ /dev/null @@ -1 +0,0 @@ -- Return the proper HTTP status code if SMTP is invalid. diff --git a/changes/bug-2888-validate-metadataurl b/changes/bug-2888-validate-metadataurl deleted file mode 100644 index 2800f5931b..0000000000 --- a/changes/bug-2888-validate-metadataurl +++ /dev/null @@ -1 +0,0 @@ -- When setting up SSO, validate the scheme used in the Metadata URL diff --git a/changes/bug-add-mdm-feature-flag-in-modify-appconfig b/changes/bug-add-mdm-feature-flag-in-modify-appconfig deleted file mode 100644 index b9c1f6788e..0000000000 --- a/changes/bug-add-mdm-feature-flag-in-modify-appconfig +++ /dev/null @@ -1 +0,0 @@ -* Added the `mdm_enabled` feature flag information to the response payload of the `PATCH /config` endpoint. diff --git a/changes/issue-11861-filevault-key b/changes/issue-11861-filevault-key deleted file mode 100644 index 75adc53f85..0000000000 --- a/changes/issue-11861-filevault-key +++ /dev/null @@ -1,2 +0,0 @@ -- Fixed bug when reading filevault key in osquery and created new Fleet osquery - extension table to read the file directly rather than via filelines table. diff --git a/changes/issue-11932-improve-abm-400-error b/changes/issue-11932-improve-abm-400-error deleted file mode 100644 index 3d6fc2a0cb..0000000000 --- a/changes/issue-11932-improve-abm-400-error +++ /dev/null @@ -1 +0,0 @@ -- add improved ABM 400 error message to the UI diff --git a/changes/issue-11952-UI-for-windows-mdm-on-off b/changes/issue-11952-UI-for-windows-mdm-on-off deleted file mode 100644 index 4a6eaa7f6e..0000000000 --- a/changes/issue-11952-UI-for-windows-mdm-on-off +++ /dev/null @@ -1 +0,0 @@ -- add ability to turn windows mdm on and off from the fleet UI diff --git a/changes/issue-12129-activity-transferred-hosts b/changes/issue-12129-activity-transferred-hosts deleted file mode 100644 index 11c8197385..0000000000 --- a/changes/issue-12129-activity-transferred-hosts +++ /dev/null @@ -1 +0,0 @@ -* Added a new activity `transferred_hosts` created when hosts are transferred to a new team (or no team). diff --git a/changes/issue-12257-windows-mdm-feature-flag b/changes/issue-12257-windows-mdm-feature-flag deleted file mode 100644 index 4c9f3d2392..0000000000 --- a/changes/issue-12257-windows-mdm-feature-flag +++ /dev/null @@ -1 +0,0 @@ -* Added the `FLEET_DEV_MDM_ENABLED` environment variable to enable the Windows MDM feature during its development and beta period. diff --git a/changes/issue-12259-windows-mdm-settings b/changes/issue-12259-windows-mdm-settings deleted file mode 100644 index ba95180f7e..0000000000 --- a/changes/issue-12259-windows-mdm-settings +++ /dev/null @@ -1 +0,0 @@ -* Added support to enable and configure Windows MDM and to notify devices that are able to programmatically enroll. diff --git a/changes/issue-12260-trigger-windows-mdm-enrollment b/changes/issue-12260-trigger-windows-mdm-enrollment deleted file mode 100644 index 771bed72e6..0000000000 --- a/changes/issue-12260-trigger-windows-mdm-enrollment +++ /dev/null @@ -1 +0,0 @@ -* Added execution of programmatic Windows MDM enrollment on eligible devices when Windows MDM is enabled. diff --git a/changes/issue-12261-microsoft-mdm-discovery-endpoint b/changes/issue-12261-microsoft-mdm-discovery-endpoint deleted file mode 100644 index 805a2e4907..0000000000 --- a/changes/issue-12261-microsoft-mdm-discovery-endpoint +++ /dev/null @@ -1 +0,0 @@ -* Microsoft MDM Enrollment Protocol: Added support for the DiscoveryRequest messages diff --git a/changes/issue-12262-microsoft-mdm-policy-endpoint b/changes/issue-12262-microsoft-mdm-policy-endpoint deleted file mode 100644 index 690d09b700..0000000000 --- a/changes/issue-12262-microsoft-mdm-policy-endpoint +++ /dev/null @@ -1 +0,0 @@ -* Microsoft MDM Enrollment Protocol: Added support for the GetPolicies messages diff --git a/changes/issue-12263-microsoft-mdm-enroll-endpoint b/changes/issue-12263-microsoft-mdm-enroll-endpoint deleted file mode 100644 index 06b1e2cb0b..0000000000 --- a/changes/issue-12263-microsoft-mdm-enroll-endpoint +++ /dev/null @@ -1 +0,0 @@ -* Microsoft MDM Enrollment Protocol: Added support for the RequestSecurityToken messages diff --git a/changes/issue-12288-windows-mdm-activities b/changes/issue-12288-windows-mdm-activities deleted file mode 100644 index 4b82ab8528..0000000000 --- a/changes/issue-12288-windows-mdm-activities +++ /dev/null @@ -1 +0,0 @@ -* Added `enabled_windows_mdm` and `disabled_windows_mdm` activities when a user turns on/off Windows MDM. diff --git a/changes/issue-12289-add-enable-disable-windows-activtiy-UI b/changes/issue-12289-add-enable-disable-windows-activtiy-UI deleted file mode 100644 index c270d96a9d..0000000000 --- a/changes/issue-12289-add-enable-disable-windows-activtiy-UI +++ /dev/null @@ -1 +0,0 @@ -- add enable and disable windows mdm activity UI diff --git a/changes/issue-12297-ui-transferred-hosts-activity b/changes/issue-12297-ui-transferred-hosts-activity deleted file mode 100644 index cbfcf1e25f..0000000000 --- a/changes/issue-12297-ui-transferred-hosts-activity +++ /dev/null @@ -1 +0,0 @@ -- Updated UI for transferred hosts activity items. \ No newline at end of file diff --git a/changes/issue-12330-mdm-verification-failed b/changes/issue-12330-mdm-verification-failed deleted file mode 100644 index afeba36053..0000000000 --- a/changes/issue-12330-mdm-verification-failed +++ /dev/null @@ -1,2 +0,0 @@ -- Updated MDM detail query ingestion to switch MDM profiles from "verifying" or "verified" - status to "failed" status when osquery reports that this profile is not installed on the host. diff --git a/changes/issue-12342-trigger-windows-mdm-unenrollment b/changes/issue-12342-trigger-windows-mdm-unenrollment deleted file mode 100644 index 78f4d9003f..0000000000 --- a/changes/issue-12342-trigger-windows-mdm-unenrollment +++ /dev/null @@ -1 +0,0 @@ -* Added notification and execution of programmatic Windows MDM unenrollment on eligible devices when Windows MDM is disabled. diff --git a/changes/issue-12392-use-primary b/changes/issue-12392-use-primary deleted file mode 100644 index 71a5c5e51a..0000000000 --- a/changes/issue-12392-use-primary +++ /dev/null @@ -1,2 +0,0 @@ -* Fixed a bug where reading from the replica would not read recent writes when matching a set of MDM profiles to a team (the `GET /mdm/apple/profiles/match` endpoint). -* Added milliseconds to the timestamp of auto-generated team name when creating a new team in `GET /mdm/apple/profiles/match`. diff --git a/changes/issue-12473-fix-tooltip-line-breaking-on-table-cell b/changes/issue-12473-fix-tooltip-line-breaking-on-table-cell deleted file mode 100644 index 55781d4974..0000000000 --- a/changes/issue-12473-fix-tooltip-line-breaking-on-table-cell +++ /dev/null @@ -1 +0,0 @@ -- fix tooltip word wrapping on the error cell in the macOS settings table diff --git a/changes/issue-12568-add-org-support-url-input b/changes/issue-12568-add-org-support-url-input deleted file mode 100644 index 586b727ab1..0000000000 --- a/changes/issue-12568-add-org-support-url-input +++ /dev/null @@ -1 +0,0 @@ -- add Organization support URL input on the setting page Organization info form. diff --git a/changes/issue-12589-host-details-software-search b/changes/issue-12589-host-details-software-search deleted file mode 100644 index fdbf0e75a2..0000000000 --- a/changes/issue-12589-host-details-software-search +++ /dev/null @@ -1,2 +0,0 @@ -- Fixed UI bug on host details and device user pages that caused the software search to not work - properly when searching by CVE. diff --git a/changes/mdm-turn-on b/changes/mdm-turn-on deleted file mode 100644 index 0fae47d7a1..0000000000 --- a/changes/mdm-turn-on +++ /dev/null @@ -1 +0,0 @@ -* Make sure that all configuration profiles and commands are sent to devices if MDM is turned on, even if the device never turned off MDM. diff --git a/changes/provide-feedback-fleetctl-login-when-using-env-vars b/changes/provide-feedback-fleetctl-login-when-using-env-vars deleted file mode 100644 index bb46f22c69..0000000000 --- a/changes/provide-feedback-fleetctl-login-when-using-env-vars +++ /dev/null @@ -1 +0,0 @@ -* Provide feedback to users when `fleetctl login` is using EMAIL and PASSWORD environment variables. diff --git a/changes/sso-display-name-case b/changes/sso-display-name-case deleted file mode 100644 index 9df3502db9..0000000000 --- a/changes/sso-display-name-case +++ /dev/null @@ -1 +0,0 @@ -- Ignore casing in SAML response for display name. For example the display name attribute can be provided now as `displayname` or `displayName`. diff --git a/changes/use-custom-table-for-macos-cis-5.1.6-and-5.1.7 b/changes/use-custom-table-for-macos-cis-5.1.6-and-5.1.7 deleted file mode 100644 index 8825608f96..0000000000 --- a/changes/use-custom-table-for-macos-cis-5.1.6-and-5.1.7 +++ /dev/null @@ -1 +0,0 @@ -* For performance reasons, update macOS CIS policies 5.1.6 and 5.1.7 to use a new fleetd table `find_cmd` instead of relying on the osquery `file` table. diff --git a/charts/fleet/Chart.yaml b/charts/fleet/Chart.yaml index c9763a9fd8..f2bf04d399 100644 --- a/charts/fleet/Chart.yaml +++ b/charts/fleet/Chart.yaml @@ -8,4 +8,4 @@ version: v5.0.1 home: https://github.com/fleetdm/fleet sources: - https://github.com/fleetdm/fleet.git -appVersion: v4.33.1 +appVersion: v4.34.0 diff --git a/charts/fleet/values.yaml b/charts/fleet/values.yaml index acf07184f9..988330312e 100644 --- a/charts/fleet/values.yaml +++ b/charts/fleet/values.yaml @@ -2,7 +2,7 @@ # All settings related to how Fleet is deployed in Kubernetes hostName: fleet.localhost replicas: 3 # The number of Fleet instances to deploy -imageTag: v4.33.1 # Version of Fleet to deploy +imageTag: v4.34.0 # Version of Fleet to deploy podAnnotations: {} # Additional annotations to add to the Fleet pod serviceAccountAnnotations: {} # Additional annotations to add to the Fleet service account resources: diff --git a/infrastructure/dogfood/terraform/aws/variables.tf b/infrastructure/dogfood/terraform/aws/variables.tf index 9f09d843b7..9a491153db 100644 --- a/infrastructure/dogfood/terraform/aws/variables.tf +++ b/infrastructure/dogfood/terraform/aws/variables.tf @@ -56,7 +56,7 @@ variable "database_name" { variable "fleet_image" { description = "the name of the container image to run" - default = "fleetdm/fleet:v4.33.1" + default = "fleetdm/fleet:v4.34.0" } variable "software_inventory" { diff --git a/infrastructure/dogfood/terraform/gcp/variables.tf b/infrastructure/dogfood/terraform/gcp/variables.tf index cf4f244b9d..8095a8d024 100644 --- a/infrastructure/dogfood/terraform/gcp/variables.tf +++ b/infrastructure/dogfood/terraform/gcp/variables.tf @@ -68,5 +68,5 @@ variable "redis_mem" { } variable "image" { - default = "fleet:v4.33.1" + default = "fleet:v4.34.0" } diff --git a/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf b/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf index 097c9a2a85..40bed07ec2 100644 --- a/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf +++ b/infrastructure/sandbox/JITProvisioner/jitprovisioner.tf @@ -206,7 +206,7 @@ resource "random_uuid" "jitprovisioner" { # Use the local to make the trigger work. locals { - fleet_tag = "v4.33.1" + fleet_tag = "v4.34.0" } resource "null_resource" "standard-query-library" { diff --git a/tools/fleetctl-npm/package.json b/tools/fleetctl-npm/package.json index b5f0642426..1af1cccd5e 100644 --- a/tools/fleetctl-npm/package.json +++ b/tools/fleetctl-npm/package.json @@ -1,6 +1,6 @@ { "name": "fleetctl", - "version": "v4.33.1", + "version": "v4.34.0", "description": "Installer for the fleetctl CLI tool", "bin": { "fleetctl": "./run.js"