mirror of
https://github.com/fleetdm/fleet
synced 2026-04-21 13:37:30 +00:00
Prepare Fleet v4.58.0 (#22961)
This commit is contained in:
Luke Heath
GitHub
parent
cc57d615b4
commit
fdaf7be3ad
58 changed files with 75 additions and 65 deletions
57
CHANGELOG.md
57
CHANGELOG.md
|
|
@ -1,3 +1,60 @@
|
|||
## Fleet 4.58.0 (Oct 17, 2024)
|
||||
|
||||
**Endpoint Operations:**
|
||||
|
||||
* Added builtin label for Fedora Linux. **Warning:** Migrations will fail if a pre-existing 'Fedora Linux' label exists. To resolve, delete the existing 'Fedora Linux' label.
|
||||
* Added ability to trigger script run on policy failure.
|
||||
* Updated GitOps script and software installer relative paths to now always relative to the file they're in. This change breaks existing YAML files that had to account for previous inconsistent behavior (e.g. script paths declared in no-team.yml being relative to default.yaml one directory up).
|
||||
* Improved performance for host details and Fleet Desktop, particularly in environments using high volumes of live queries.
|
||||
* Updated activity cleanup job to remove all expired live queries to improve API performance in environment using large volumes of live queries. To note, the cleanup cron may take longer on the first run after upgrade.
|
||||
* Added an event for when a policy automation triggers a script run in the activity feed.
|
||||
* Added battery status to Windows host details.
|
||||
|
||||
**Device Management (MDM):**
|
||||
|
||||
* Added the `POST /software/fleet_maintained_apps` endpoint for adding Fleet-maintained apps.
|
||||
* Added the `GET /software/fleet_maintained_apps/{app_id}` endpoint to retrieve details of a Fleet-maintained app.
|
||||
* Added API endpoint to list team available Fleet-maintained apps.
|
||||
* Added UI for managing Fleet-maintained apps.
|
||||
* Updated add software modal to be seperate pages in Fleet UI.
|
||||
* Added support for uploading RPM packages.
|
||||
* Updated the request timeouts for software installer edits to be the same as initial software installer uploads.
|
||||
* Updated UI for software uploads to include upload progress bar.
|
||||
* Improved performance of SQL queries used to determine MDM profile status for Apple hosts.
|
||||
|
||||
**Vulnerability Management:**
|
||||
|
||||
* Fixed MSRC feed pulls (for NVD release builds) in environments where GitHub access is authenticated.
|
||||
|
||||
**Bug fixes and improvements:**
|
||||
|
||||
* Added the 'Unsupported screen size' UI on the My device page.
|
||||
* Removed redundant built in label filter pills.
|
||||
* Updated success messages for lock, unlock, and wipe commands in the UI.
|
||||
* Restricted width of policy description wrappers for better UI.
|
||||
* Updated host details about section to condense information into fewer columns at smaller widths.
|
||||
* Hid CVSS severity column from Fleet Free software details > vulnerabilities sections.
|
||||
* Updated UI to remove leading/trailing whitespace when creating or editing team or query names.
|
||||
* Added UI improvements when selecting live query targets (e.g. styling, closing behavior).
|
||||
* Updated API to return 409 instead of 500 when trying to delete an installer associated with a policy automation.
|
||||
* Updated battery health definitions to be defined as cycle counts greater than 1000 or max capacity falling under 80% of designed capacity for macOS and Windows.
|
||||
* Added information on how battery health is defined to the UI.
|
||||
* Updated UI to surface duplicate label name error to user.
|
||||
* Fixed software uninstaller script for `pkg`s to only remove '.app' directories installed by the package.
|
||||
* Fixed "no rows" error when adding a software installer that matches an existing title's name and source but not its bundle ID.
|
||||
* Fixed an issue with the migration adding support for multiple VPP tokens that would happen if a token is removed prior to upgrading Fleet.
|
||||
* Fixed UI flow for observers to easily query hosts from the host details page.
|
||||
* Fixed bug with label display names always sentence casing.
|
||||
* Fixed a bug where a profile wouldn't be removed from a host if it was deleted or if the host was moved to another team before the profile was installed on the host.
|
||||
* Fixed a bug where removing a VPP or ABM token from a GitOps YAML file would leave the team assignments unchanged.
|
||||
* Fixed host software filter bug that resets dropdown filter on table changes (pagination, order by column, etc).
|
||||
* Fixed UI bug: Edit team name closes modal.
|
||||
* Fixed UI so that switching vulnerability search types does not cause page re-render.
|
||||
* Fixed UI policy automation truncation when selecting software to auto-install.
|
||||
* Fixed UI design bug where software package file name was not displayed as expected.
|
||||
* Fixed a small UI bug where a button overlapped some copy.
|
||||
* Fixed software icon for chrome packages.
|
||||
|
||||
## Fleet 4.57.3 (Oct 11, 2024)
|
||||
|
||||
### Bug fixes
|
||||
|
|
|
|||
|
|
@ -1 +0,0 @@
|
|||
* Update success messages for lock, unlock, and wipe commands in the UI.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- battery health definitions now defined as cycle counts greater than 1000 or max capacity falling under 80% of designed capacity for macOS and Windows
|
||||
|
|
@ -1,2 +0,0 @@
|
|||
- Windows host details now include battery status
|
||||
- UI includes information on how battery health is defined
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Update UI for software uploads to include upload progress bar.
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Added support for uploading RPM packages.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- UI cleanup: Host details about section condenses information into fewer columns at smaller widths
|
||||
|
|
@ -1 +0,0 @@
|
|||
- show proper software icon for chrome packages
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fix UI flow for observers to easily query hosts from the host details page
|
||||
|
|
@ -1 +0,0 @@
|
|||
- UI Improvements to selecting live query targets (e.g. styling, closing behavior)
|
||||
|
|
@ -1 +0,0 @@
|
|||
- UI: Remove redundant built in label filter pills
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fix "no rows" error when adding a software installer that matches an existing title's name and source but not its bundle ID
|
||||
|
|
@ -1 +0,0 @@
|
|||
- added builtin label for Fedora Linux. Warning: migrations will fail if a pre-existing 'Fedora Linux' label exists. To resolve, delete the existing 'Fedora Linux' label.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fleet UI: Fix host software filter bug that resets dropdown filter on table changes (pagination, order by column, etc)
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Added the definition of the Fleet maintained apps and its ingestion.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- add UI for adding fleet maintained apps
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Adds the `POST /software/fleet_maintained` endpoint for adding Fleet-maintained apps.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Add API endpoint to list team available Fleet-maintained apps
|
||||
|
|
@ -1 +0,0 @@
|
|||
- change add software modal to be seperate pages in Fleet UI
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fleet UI: Surface duplicate label name error to user
|
||||
|
|
@ -1,2 +0,0 @@
|
|||
- Fixes a bug where a profile wouldn't be removed from a host if it was deleted or if the host was
|
||||
moved to another team before the profile was installed on the host.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- UI fix: Switching vulnerability search types does not cause page re-render
|
||||
|
|
@ -1 +0,0 @@
|
|||
- updated activity cleanup job to remove all expired live queries to improve API performance in environment using large volumes of live queries. To note, the cleanup cron may take longer on the first run after upgrade.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Increased performance for Host details and Fleet Desktop, particularly in environments using high volumes of live queries
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Updates the guide for MDM migration to include the new UX in fleetd.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fixed UI design bug where software package file name was not displayed as expected.
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Add ability to trigger script run on policy failure
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Improved performance of SQL queries used to determine MDM profile status for Apple hosts.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Hide CVSS severity column from Fleet Free software details > vulnerabilities sections
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fleet UI: Fix policy automation truncation when selecting software to auto-install
|
||||
|
|
@ -1,2 +0,0 @@
|
|||
- Fixes a bug where removing a VPP or ABM token from a GitOps YAML file would leave the team
|
||||
assignments unchanged.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fix UI bug: Edit team name closes modal
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Update UI to remove leading/trailing whitespace when creating or editing team or query names.
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Add endpoint to retrieve details on fleet maintained app
|
||||
|
|
@ -1 +0,0 @@
|
|||
- Fix bug with label display names always sentence casing
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Fixed an issue with the migration adding support for multiple VPP tokens that would happen if a token is removed prior to upgrading Fleet.
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Fix a small UI bug where a button overlapped some copy.
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Show the 'Unsupported screen size' UI on the My device page
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Fix MSRC feed pulls (for NVD release builds) in environments where GitHub access is authenticated
|
||||
|
|
@ -1 +0,0 @@
|
|||
* GitOps script and software installer relative paths are now always relative to the file they're in. This change breaks existing YAML files that had to account for previous inconsistent behavior (e.g. script paths declared in no-team.yml being relative to default.yaml one directory up).
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Return 409 instead of 500 when trying to delete an installer associated with a policy automation.
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Fixed software uninstaller script for `pkg`s to only remove '.app' directories installed by the package.
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Restrict width of policy description wrappers for better UI
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Record which policy automation triggered a script run in the activity feed
|
||||
|
|
@ -1 +0,0 @@
|
|||
* Ensure request timeouts for software installer edits are just as high as for initial software installer uploads
|
||||
|
|
@ -8,7 +8,7 @@ version: v6.2.0
|
|||
home: https://github.com/fleetdm/fleet
|
||||
sources:
|
||||
- https://github.com/fleetdm/fleet.git
|
||||
appVersion: v4.57.3
|
||||
appVersion: v4.58.0
|
||||
dependencies:
|
||||
- name: mysql
|
||||
condition: mysql.enabled
|
||||
|
|
|
|||
|
|
@ -3,7 +3,7 @@
|
|||
hostName: fleet.localhost
|
||||
replicas: 3 # The number of Fleet instances to deploy
|
||||
imageRepository: fleetdm/fleet
|
||||
imageTag: v4.57.3 # Version of Fleet to deploy
|
||||
imageTag: v4.58.0 # Version of Fleet to deploy
|
||||
podAnnotations: {} # Additional annotations to add to the Fleet pod
|
||||
serviceAccountAnnotations: {} # Additional annotations to add to the Fleet service account
|
||||
resources:
|
||||
|
|
|
|||
|
|
@ -56,7 +56,7 @@ variable "database_name" {
|
|||
|
||||
variable "fleet_image" {
|
||||
description = "the name of the container image to run"
|
||||
default = "fleetdm/fleet:v4.57.3"
|
||||
default = "fleetdm/fleet:v4.58.0"
|
||||
}
|
||||
|
||||
variable "software_inventory" {
|
||||
|
|
|
|||
|
|
@ -68,7 +68,7 @@ variable "redis_mem" {
|
|||
}
|
||||
|
||||
variable "image" {
|
||||
default = "fleetdm/fleet:v4.57.3"
|
||||
default = "fleetdm/fleet:v4.58.0"
|
||||
}
|
||||
|
||||
variable "software_installers_bucket_name" {
|
||||
|
|
|
|||
|
|
@ -24,7 +24,7 @@ variable "fleet_config" {
|
|||
vuln_processing_cpu = optional(number, 2048)
|
||||
vuln_data_stream_mem = optional(number, 1024)
|
||||
vuln_data_stream_cpu = optional(number, 512)
|
||||
image = optional(string, "fleetdm/fleet:v4.57.3")
|
||||
image = optional(string, "fleetdm/fleet:v4.58.0")
|
||||
family = optional(string, "fleet-vuln-processing")
|
||||
sidecars = optional(list(any), [])
|
||||
extra_environment_variables = optional(map(string), {})
|
||||
|
|
@ -82,7 +82,7 @@ variable "fleet_config" {
|
|||
vuln_processing_cpu = 2048
|
||||
vuln_data_stream_mem = 1024
|
||||
vuln_data_stream_cpu = 512
|
||||
image = "fleetdm/fleet:v4.57.3"
|
||||
image = "fleetdm/fleet:v4.58.0"
|
||||
family = "fleet-vuln-processing"
|
||||
sidecars = []
|
||||
extra_environment_variables = {}
|
||||
|
|
|
|||
|
|
@ -16,7 +16,7 @@ variable "fleet_config" {
|
|||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
pid_mode = optional(string, null)
|
||||
image = optional(string, "fleetdm/fleet:v4.57.3")
|
||||
image = optional(string, "fleetdm/fleet:v4.58.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
|
@ -119,7 +119,7 @@ variable "fleet_config" {
|
|||
mem = 512
|
||||
cpu = 256
|
||||
pid_mode = null
|
||||
image = "fleetdm/fleet:v4.57.3"
|
||||
image = "fleetdm/fleet:v4.58.0"
|
||||
family = "fleet"
|
||||
sidecars = []
|
||||
depends_on = []
|
||||
|
|
|
|||
|
|
@ -77,7 +77,7 @@ variable "fleet_config" {
|
|||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
pid_mode = optional(string, null)
|
||||
image = optional(string, "fleetdm/fleet:v4.57.3")
|
||||
image = optional(string, "fleetdm/fleet:v4.58.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
|
@ -205,7 +205,7 @@ variable "fleet_config" {
|
|||
mem = 512
|
||||
cpu = 256
|
||||
pid_mode = null
|
||||
image = "fleetdm/fleet:v4.57.3"
|
||||
image = "fleetdm/fleet:v4.58.0"
|
||||
family = "fleet"
|
||||
sidecars = []
|
||||
depends_on = []
|
||||
|
|
|
|||
|
|
@ -17,7 +17,7 @@ provider "aws" {
|
|||
}
|
||||
|
||||
locals {
|
||||
fleet_image = "fleetdm/fleet:v4.57.3"
|
||||
fleet_image = "fleetdm/fleet:v4.58.0"
|
||||
domain_name = "example.com"
|
||||
}
|
||||
|
||||
|
|
|
|||
|
|
@ -170,7 +170,7 @@ variable "fleet_config" {
|
|||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
pid_mode = optional(string, null)
|
||||
image = optional(string, "fleetdm/fleet:v4.57.3")
|
||||
image = optional(string, "fleetdm/fleet:v4.58.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
|
@ -298,7 +298,7 @@ variable "fleet_config" {
|
|||
mem = 512
|
||||
cpu = 256
|
||||
pid_mode = null
|
||||
image = "fleetdm/fleet:v4.57.3"
|
||||
image = "fleetdm/fleet:v4.58.0"
|
||||
family = "fleet"
|
||||
sidecars = []
|
||||
depends_on = []
|
||||
|
|
|
|||
|
|
@ -63,8 +63,8 @@ module "fleet" {
|
|||
|
||||
fleet_config = {
|
||||
# To avoid pull-rate limiting from dockerhub, consider using our quay.io mirror
|
||||
# for the Fleet image. e.g. "quay.io/fleetdm/fleet:v4.57.3"
|
||||
image = "fleetdm/fleet:v4.57.3" # override default to deploy the image you desire
|
||||
# for the Fleet image. e.g. "quay.io/fleetdm/fleet:v4.58.0"
|
||||
image = "fleetdm/fleet:v4.58.0" # override default to deploy the image you desire
|
||||
# See https://fleetdm.com/docs/deploy/reference-architectures#aws for appropriate scaling
|
||||
# memory and cpu.
|
||||
autoscaling = {
|
||||
|
|
|
|||
|
|
@ -218,7 +218,7 @@ variable "fleet_config" {
|
|||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
pid_mode = optional(string, null)
|
||||
image = optional(string, "fleetdm/fleet:v4.57.3")
|
||||
image = optional(string, "fleetdm/fleet:v4.58.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
|
@ -346,7 +346,7 @@ variable "fleet_config" {
|
|||
mem = 512
|
||||
cpu = 256
|
||||
pid_mode = null
|
||||
image = "fleetdm/fleet:v4.57.3"
|
||||
image = "fleetdm/fleet:v4.58.0"
|
||||
family = "fleet"
|
||||
sidecars = []
|
||||
depends_on = []
|
||||
|
|
|
|||
|
|
@ -1,6 +1,6 @@
|
|||
{
|
||||
"name": "fleetctl",
|
||||
"version": "v4.57.3",
|
||||
"version": "v4.58.0",
|
||||
"description": "Installer for the fleetctl CLI tool",
|
||||
"bin": {
|
||||
"fleetctl": "./run.js"
|
||||
|
|
|
|||
Loading…
Reference in a new issue