v1.129.3

Changelog

• 6214eb6 Update KOTS image dependency tags (#5759)
• a3ad2b7 fix: required release can be skipped (#5757)
• 62621d8 Update glob and react-router (#5756)
• 8712b3f Update sigstore/fulcio to 1.8.5 (#5754)
• 7a4a5c8 fix(ci): strip v prefix when promoting kurl addon (#5755)
• 1da9f2c Update npm dependencies (#5753)

v1.129.2

Changelog

• b7cedb7 Free disk space for gorelease (#5752)
• 83fe392 Do not error on license data validation errors (#5751)
• 3e3091b Improve --skip-preflights flag description (#5750)
• aa94d8b Pin Helm version to v3 in apko (#5749)
• b882d3a Fix bug where nonce is incorrectly reused (#5747)
• ec9be37 Update KOTS image dependency tags (#5748)
• 66167bb fix: Add version-agnostic fingerprints to Grype SARIF output (#5746)
• dd3da4b Update KOTS image dependency tags (#5745)
• 82aa657 Update KOTS image dependency tags (#5744)
• 3495bdc Update KOTS image dependency tags (#5743)
• aa33392 Update KOTS image dependency tags (#5742)
• c91be0e Update KOTS image dependency tags (#5741)
• 28f4730 Bump kubernetes module (#5739)
• 612b3de Distribute artifacts on app-only upgrades (#5730)
• 4dcbf33 chore(deps): bump chainguard-images/actions (#5738)
• e138705 chore(deps): bump chainguard-images/actions (#5737)
• 26a9fce Update KOTS image dependency tags (#5736)
• 67f9a94 bump kots kinds (#5733)
• 6995723 Set to always run full cluster upgrade (#5729)
• b8b858e chore(deps): bump chainguard-images/actions (#5724)
• d525242 chore(deps): bump actions/download-artifact from 6 to 7 (#5719)
• 78c3fd5 chore(deps): bump actions/upload-artifact from 5 to 6 (#5717)
• 40eb331 chore(deps): bump actions/download-artifact (#5722)
• bfb91f7 chore(deps): bump actions/upload-artifact (#5723)
• 70172c6 chore(deps): bump actions/upload-artifact (#5725)
• e7c43e5 chore(deps): bump actions/upload-artifact in /.github/actions/kots-e2e (#5726)
• 3ed58c5 chore(deps): bump actions/upload-artifact in /.github/actions/scan-image (#5727)
• 063b42e chore(deps): bump go version to 1.25.5 (#5728)
• f62fdb1 fix(ec): fix check for kots bin path (#5716)
• 0021ba8 Update KOTS image dependency tags (#5714)
• eafb0e4 chore(deps): bump actions/checkout from 5 to 6 (#5712)
• 927502c chore(deps): bump github.com/sigstore/fulcio (#5710)
• 0032555 chore(ci): fix publish kurl addon action, strip v prefix from tag (#5711)

v1.129.1

Changelog

• 1865300 Shifts license verification upstream (#5699)
• ba9fe42 Add registry prefix to kotsadm images (#5707)
• b1d09eb Update KOTS image dependency tags (#5709)
• eabf32a Update KOTS image dependency tags (#5708)
• 9cafc5e chore(deps): bump chainguard-images/actions (#5660)
• 893f4e9 chore(deps): bump chainguard-images/actions (#5658)
• 0e43e47 chore(ci): update artifact actions (#5706)
• 577d095 fix(ci): fix workflow promote-kurl-release (#5705)
• 08f4124 fix(ci): kurl addon release should not be marked as released until promotion (#5704)
• 6f82494 Update KOTS image dependency tags (#5703)
• f994357 fix broken redactor link (#5694)
• b8ccbc9 Update KOTS image dependency tags (#5701)
• 5de7d7f chore(deps): bump actions/checkout from 5 to 6 (#5700)
• aadee49 Adds missing fields to LicenseFieldValue (#5698)
• 3b204ca chore(ci): use cve0 for kotsadm migrations image (#5697)
• 0857fe2 chore(deps): bump the go_modules group across 2 directories with 1 update (#5696)
• 44cf9f8 chore(deps): bump github.com/opencontainers/selinux from 1.12.0 to 1.13.1 (#5695)
• 61e5e49 chore(ci): use rqlite securebuild image (#5692)
• e7736ec chore(ci): print scan results on failed severity cutoff (#5691)
• 711b2ed Update KOTS image dependency tags (#5693)
• c927363 chore(ci): fix regression tests (#5686)
• a083def Update KOTS image dependency tags (#5688)
• 9c5c8e3 chore(ci): use dex securebuild image (#5687)
• 7b5e977 Update KOTS image dependency tags (#5685)
• d30d1b1 Revert "Update KOTS image dependency tags (#5668)" (#5684)
• bbc1e7c Update KOTS image dependency tags (#5683)
• 390ac89 Updates node package in melange build (#5682)
• b72b158 chore(deps): bump min-document (#5681)
• 0c0671a Update Go to 1.25.4 (#5678)
• 9776dd8 Add support for v1beta2 License API (#5675)
• 511861c Update KOTS image dependency tags (#5679)
• d5e214f chore(deps): bump github.com/containerd/containerd (#5677)
• befe425 chore(deps): bump github.com/opencontainers/runc (#5676)
• 89872d7 feat: Implement KOTS linter migration (#5670)
• cdd93be Update KOTS image dependency tags (#5674)
• 1089524 Add app redirect path unit tests (#5673)
• a9de104 Update KOTS image dependency tags (#5672)

v1.129.0

Changelog

• c927363 chore(ci): fix regression tests (#5686)
• a083def Update KOTS image dependency tags (#5688)
• 9c5c8e3 chore(ci): use dex securebuild image (#5687)
• 7b5e977 Update KOTS image dependency tags (#5685)
• d30d1b1 Revert "Update KOTS image dependency tags (#5668)" (#5684)
• bbc1e7c Update KOTS image dependency tags (#5683)
• 390ac89 Updates node package in melange build (#5682)
• b72b158 chore(deps): bump min-document (#5681)
• 0c0671a Update Go to 1.25.4 (#5678)
• 9776dd8 Add support for v1beta2 License API (#5675)
• 511861c Update KOTS image dependency tags (#5679)
• d5e214f chore(deps): bump github.com/containerd/containerd (#5677)
• befe425 chore(deps): bump github.com/opencontainers/runc (#5676)
• 89872d7 feat: Implement KOTS linter migration (#5670)
• cdd93be Update KOTS image dependency tags (#5674)
• 1089524 Add app redirect path unit tests (#5673)
• a9de104 Update KOTS image dependency tags (#5672)

v1.128.3

Changelog

• 167ead1 revert cosign-installer back to v3 (#5669)
• 783a860 Update KOTS image dependency tags (#5668)
• c89dd29 Disable dependabot for npm and go deps (#5657)
• 6766f78 revert dex image bump (#5656)
• b11d97a fix(ci): playwright selector strict mode violation (#5655)
• 3ebc832 fix(ec): use latest sequence when setting config and deploying (#5653)
• 10ed60d Update KOTS image dependency tags (#5652)
• 7678cb1 Add pod namespace for EC embedded registry creds check (#5638)
• dab482e Improve tag validation in the release-for-ec action (#5651)
• bbfa5e6 chore(deps): bump playwright (#5650)
• 8a66e19 chore(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 (#5642)
• 4629cdf chore(deps): bump github.com/go-git/go-git/v5 from 5.13.2 to 5.16.3 (#5647)
• b05d0b8 chore(deps): bump chainguard-dev/actions (#5648)
• 8db9522 chore(deps): bump golang.org/x/oauth2 from 0.31.0 to 0.32.0 (#5646)
• 748d79e chore(deps): bump actions/setup-node from 5 to 6 (#5643)
• b062a46 chore(deps): bump the security group with 2 updates (#5644)
• 9f0b2cf chore(deps): bump chainguard-images/actions (#5649)
• d3c335e chore(deps-dev): bump the security group in /web with 3 updates (#5639)
• add8f28 chore(deps-dev): bump jest from 30.1.3 to 30.2.0 in /web (#5640)
• c476214 chore(deps): bump chainguard-dev/actions (#5615)
• a28b929 chore(deps): bump google.golang.org/api from 0.249.0 to 0.252.0 (#5629)
• c9c05b9 Update KOTS image dependency tags (#5637)
• 5354aac Add fully qualified registry prefix for kots (#5635)
• 42c2096 chore(deps): bump semver in /.github/actions/kurl-addon-kots-publisher (#5626)
• 8059b26 chore(deps): bump semver in /.github/actions/cmx-versions (#5625)
• bfa76b5 Update KOTS image dependency tags (#5636)
• b44e49d chore(deps): bump github.com/open-policy-agent/opa from 1.8.0 to 1.9.0 (#5599)
• ff28368 chore(deps): bump github/codeql-action in /.github/actions/scan-image (#5632)
• d26ebd2 chore(deps-dev): bump typescript-eslint (#5607)
• 6a7f83b chore(deps): bump cloud.google.com/go/storage from 1.56.2 to 1.57.0 (#5596)
• 724b662 chore(deps): bump github.com/onsi/ginkgo/v2 from 2.25.3 to 2.26.0 (#5613)
• 09a4044 chore(deps): bump chainguard-images/actions (#5630)
• 2a639c6 chore(deps): bump github.com/nwaples/rardecode/v2 from 2.1.1 to 2.2.0 in the go_modules group across 1 directory (#5624)
• 9f106af chore(web): fix http timeout ci failures (#5634)
• 861487c chore(deps): bump chainguard-images/actions (#5631)
• a069f21 chore(deps): bump golang.org/x/oauth2 in /.github/actions/copy-assets (#5633)
• 8f09bd3 chore(deps): bump github/codeql-action from 3 to 4 (#5628)
• 984aab2 chore(deps): bump the security group across 1 directory with 6 updates (#5627)
• fcb41bd fix: skip automatic update check after channel switch in Embedded Cluster to prevent skipped infrastructure upgrades (#5622)
• 9886b3e chore(deps): bump github.com/quic-go/quic-go (#5621)
• f8b6944 feat: ability to not process airgap bundle as part of deploy command (#5620)
• 406dde7 chore(deps): bump chainguard-images/actions (#5616)
• d356564 chore(deps-dev): bump mocha (#5610)
• 68632b6 Update KOTS image dependency tags (#5617)
• 4ea48a1 chore(deps): bump peter-evans/repository-dispatch from 3 to 4 (#5611)
• 54aa860 chore(deps-dev): bump chai in /.github/actions/kurl-addon-kots-publisher (#5609)
• e0a8786 Update KOTS image dependency tags (#5604)
• 3ecca59 Update KOTS image dependency tags (#5603)
• ee7e727 fix(web): sidebar disappears on update (#5601)
• d14404b chore(deps-dev): bump the security group across 1 directory with 3 updates (#5602)

v1.128.2

Changelog

• 2de5911 chore(deps): bump the security group across 1 directory with 4 updates (#5593)
• caedbc1 fix(ci): use bitnamilegacy for regression tests (#5591)
• 8c64f63 chore(deps): bump github.com/gin-gonic/gin in /kurl_proxy (#5595)
• 3c259c2 Update KOTS image dependency tags (#5592)
• a8826e7 chore: remove cpu resource limits from k8s objects (#5590)
• c5f45ef fix: tailor login failure error message to embedded cluster (#5589)
• 944526c chore(deps): bump chainguard-images/actions (#5582)
• e2ba990 chore(deps): bump @vercel/ncc in /.github/actions/cmx-versions (#5575)
• e1c4b20 chore(deps): bump @vercel/ncc in /.github/actions/version-tag (#5577)
• aaef021 chore(deps): bump @vercel/ncc (#5576)
• c93b91c chore(deps): bump chainguard-dev/actions (#5583)
• 5c1fcf6 chore(deps): bump universal-cookie from 7.2.2 to 8.0.1 in /web (#5580)
• 6091332 chore(deps): bump chainguard-images/actions (#5584)
• 1d61ef4 chore(deps): bump anchore/scan-action in /.github/actions/scan-image (#5585)
• 03f7afa chore(deps-dev): bump typescript-eslint (#5579)
• 97368ea Update KOTS image dependency tags (#5586)
• 365f2b5 chore(deps): bump helm.sh/helm/v3 from 3.18.6 to 3.19.0 (#5570)
• ae1a3f2 chore(deps): bump the security group in /kurl_proxy with 4 updates (#5567)
• d8a2591 chore(deps): bump the security group across 1 directory with 4 updates (#5574)
• b61ac73 Update KOTS image dependency tags (#5573)
• 53408eb chore(deps): bump google.golang.org/api from 0.248.0 to 0.249.0 (#5569)
• eeab9e0 chore(deps): bump axios in /web in the security group (#5563)
• 8608aac chore(deps): bump sigstore/cosign-installer from 3.9.2 to 3.10.0 (#5566)
• 78e3ee4 chore(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 (#5571)
• 80f1e67 chore(deps): bump github.com/bitnami-labs/sealed-secrets (#5572)
• 87f75fb New hidden KOTS command for V3 EC to sync license, download update, update config and deploy in a single operation (#5562)
• 5cc00ae chore(deps-dev): bump the typescript-eslint group in /web with 3 updates (#5564)
• dca5ebb chore(deps-dev): bump msw from 2.10.5 to 2.11.2 in /web (#5565)
• 751affd chore(web): support for defaultProps will be removed in react warning (#5561)
• 33f6d43 chore(ci): upgrade cmx openshift version to 4.19.0-okd (#5557)
• a2f733b chore(deps): bump query-string from 6.14.1 to 9.2.2 in /web (#5560)
• 06ac42b chore(deps): bump k8s.io/cluster-bootstrap (#5559)
• 8fa7e5b chore(deps): bump axios (#5558)

v1.128.1

Changelog

• 71385eb chore: update troubleshoot go v0.122.0 (#5554)
• 680808c chore: quiet noisy log lines (#5556)
• a133e7c chore(deps): bump the k8s-io group with 8 updates (#5544)
• e326955 Include channel ID and sequence in get versions command (#5553)
• db6e1dc chore(ci): fix regression test flakes (#5552)
• 3c30a9b fix: include entitlement field signatures in downloaded license (#5549)
• 3c9e0db chore(ci): fix regression test flake (#5550)
• 7e9ffea chore(deps): bump chainguard-images/actions (#5545)
• e3df358 chore(ci): use go version from file (#5542)
• 4e2dbca chore(deps): bump chainguard-dev/actions (#5546)
• 0684b3c chore(deps): bump chainguard-images/actions (#5547)
• f25d314 chore(deps): bump golang.org/x/oauth2 in /.github/actions/copy-assets (#5548)
• e67c2ad chore(ci): fix e2e test flake (#5543)
• c3cbd6f chore(deps-dev): bump @babel/core (#5527)
• f329f15 chore(deps-dev): bump mocha (#5528)
• cf661c9 chore(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#5537)
• 2f22d47 chore(deps): bump the security group in /web with 7 updates (#5529)
• c850b77 chore(deps): bump the k8s-io group in /kurl_proxy with 3 updates (#5516)
• e3d9e6c chore(deps): bump actions/setup-node from 4 to 5 (#5534)
• 39e0a8a chore(deps): bump actions/github-script from 7 to 8 (#5532)
• 2484ee5 chore(deps): bump the security group with 3 updates (#5535)
• b0005a6 chore(deps-dev): bump the typescript-eslint group in /web with 3 updates (#5530)
• 7b9919f chore(deps): bump actions/setup-go from 5 to 6 (#5533)
• af4019d Update KOTS image dependency tags (#5541)
• 2cc8ded chore(deps): bump github.com/open-policy-agent/opa from 1.7.1 to 1.8.0 (#5540)
• 5468ab2 fix(e2e): regression test flakiness (#5526)
• c7773ff fix: bump timeout for apply stdout logs validation in regression tests (#5525)
• 547efcc chore(deps): upgrade jest (#5517)
• 6d08a5a chore(deps): use the maintained repo of go-yaml (#5512) (#5519)
• 4cbecad Update KOTS image dependency tags (#5522)
• 70a97de chore(e2e): address flakiness in deployment check (#5521)

v1.128.0

Changelog

• 423650c chore(deps): bump react-router-dom from 7.7.1 to 7.8.2 in /web (#5497)
• 67a0c86 chore(deps): bump the security group across 1 directory with 4 updates (#5520)
• a970a9b chore(deps): bump the security group across 1 directory with 5 updates (#5515)
• a10658d Update KOTS image dependency tags (#5513)
• 1bfae19 chore(deps): upgrade typescript-eslint (#5514)
• 8b6bc2b chore(deps): bump chainguard-dev/actions (#5506)
• b927287 feat(updates): hide/show demoted/un-demoted releases when updated upstream (#5505)
• 49e6a88 chore(deps-dev): bump chai in /.github/actions/kurl-addon-kots-publisher (#5496)
• 16cb9f7 chore(deps): bump github.com/bitnami-labs/sealed-secrets (#5501)
• f9f4264 chore(deps): bump cipher-base (#5510)
• 2bda8b2 chore(deps): bump github.com/onsi/ginkgo/v2 from 2.23.4 to 2.25.1 (#5502)
• a074c7b chore(deps): bump github.com/ulikunitz/xz in the go_modules group (#5511)

v1.127.2

Changelog

• 1a5972e chore(npm): upgrade cipher-base (#5509)
• 7f9836d chore(deps): bump github.com/go-viper/mapstructure/v2 (#5492)
• 5f150c2 chore: fix regression tests (#5507)
• ab3f970 chore(deps): bump sha.js in /web in the npm_and_yarn group (#5494)
• 4e3c832 chore(deps): remove unused deps (#5463)

v1.127.1

Changelog

• bc6cf06 Revert "feat(updates): hide/show demoted/un-demoted releases when updated ups…" (#5503)
• b406011 chore(deps): bump google.golang.org/api from 0.247.0 to 0.248.0 (#5500)
• ebf910a feat(ec): do not deploy the app for v3 installs (#5495)
• 8650766 feat(updates): hide/show demoted/un-demoted releases when updated upstream (#5490)
• 264f656 Update KOTS image dependency tags (#5476)
• 931d1be chore(deps-dev): bump the security group in /web with 7 updates (#5477)
• e5331fe chore(deps): bump google.golang.org/api from 0.244.0 to 0.247.0 (#5487)
• 40948cd chore(deps): bump the security group in /kurl_proxy with 3 updates (#5483)
• 001831b chore(deps): bump actions/checkout from 4 to 5 (#5484)
• 869c86b chore(deps): bump github.com/hashicorp/go-getter in the go_modules group (#5489)
• 85d43ec chore(deps): bump the security group with 8 updates (#5485)
• e174bd0 chore(local-dev): don't set REPLICATED_API_ENDPOINT (#5488)