diff --git a/stable/openvscode-server/1.0.11/CHANGELOG.md b/stable/openvscode-server/1.0.12/CHANGELOG.md similarity index 88% rename from stable/openvscode-server/1.0.11/CHANGELOG.md rename to stable/openvscode-server/1.0.12/CHANGELOG.md index 3913b58c71..70a08eb888 100644 --- a/stable/openvscode-server/1.0.11/CHANGELOG.md +++ b/stable/openvscode-server/1.0.12/CHANGELOG.md @@ -1,6 +1,15 @@ # Changelog
+ +### [openvscode-server-1.0.12](https://github.com/truecharts/apps/compare/openvscode-server-1.0.11...openvscode-server-1.0.12) (2022-04-05) + +#### Chore + +* make connectionToken optional as it changed upstream ([#2428](https://github.com/truecharts/apps/issues/2428)) + + + ### [openvscode-server-1.0.11](https://github.com/truecharts/apps/compare/openvscode-server-1.0.10...openvscode-server-1.0.11) (2022-04-03) @@ -88,12 +97,3 @@ * update helm general non-major helm releases ([#1999](https://github.com/truecharts/apps/issues/1999)) - - - -### [openvscode-server-0.0.28](https://github.com/truecharts/apps/compare/openvscode-server-0.0.27...openvscode-server-0.0.28) (2022-02-28) - -#### Chore - -* rename `web_portal` to `open` ([#1957](https://github.com/truecharts/apps/issues/1957)) -* update docker general non-major ([#1980](https://github.com/truecharts/apps/issues/1980)) diff --git a/stable/openvscode-server/1.0.11/CONFIG.md b/stable/openvscode-server/1.0.12/CONFIG.md similarity index 100% rename from stable/openvscode-server/1.0.11/CONFIG.md rename to stable/openvscode-server/1.0.12/CONFIG.md diff --git a/stable/openvscode-server/1.0.11/Chart.lock b/stable/openvscode-server/1.0.12/Chart.lock similarity index 80% rename from stable/openvscode-server/1.0.11/Chart.lock rename to stable/openvscode-server/1.0.12/Chart.lock index 3cba1592d2..3c1db7253c 100644 --- a/stable/openvscode-server/1.0.11/Chart.lock +++ b/stable/openvscode-server/1.0.12/Chart.lock @@ -3,4 +3,4 @@ dependencies: repository: https://library-charts.truecharts.org version: 9.2.7 digest: sha256:927fec2499d55b3de8a7522d936aaf4f21f668370deb33239fb06f12051ff5b1 -generated: "2022-04-03T16:16:39.722716215Z" +generated: "2022-04-05T08:24:11.278552753Z" diff --git a/stable/openvscode-server/1.0.11/Chart.yaml b/stable/openvscode-server/1.0.12/Chart.yaml similarity index 98% rename from stable/openvscode-server/1.0.11/Chart.yaml rename to stable/openvscode-server/1.0.12/Chart.yaml index 7c9114a9ff..a20375a451 100644 --- a/stable/openvscode-server/1.0.11/Chart.yaml +++ b/stable/openvscode-server/1.0.12/Chart.yaml @@ -1,7 +1,7 @@ apiVersion: v2 kubeVersion: ">=1.16.0-0" name: openvscode-server -version: 1.0.11 +version: 1.0.12 appVersion: "1.66.0" description: Openvscode-server provides a version of VS Code that runs a server on a remote machine. type: application diff --git a/stable/openvscode-server/1.0.11/README.md b/stable/openvscode-server/1.0.12/README.md similarity index 100% rename from stable/openvscode-server/1.0.11/README.md rename to stable/openvscode-server/1.0.12/README.md diff --git a/stable/openvscode-server/1.0.11/app-readme.md b/stable/openvscode-server/1.0.12/app-readme.md similarity index 100% rename from stable/openvscode-server/1.0.11/app-readme.md rename to stable/openvscode-server/1.0.12/app-readme.md diff --git a/stable/openvscode-server/1.0.11/charts/common-9.2.7.tgz b/stable/openvscode-server/1.0.12/charts/common-9.2.7.tgz similarity index 100% rename from stable/openvscode-server/1.0.11/charts/common-9.2.7.tgz rename to stable/openvscode-server/1.0.12/charts/common-9.2.7.tgz diff --git a/stable/openvscode-server/1.0.11/helm-values.md b/stable/openvscode-server/1.0.12/helm-values.md similarity index 83% rename from stable/openvscode-server/1.0.11/helm-values.md rename to stable/openvscode-server/1.0.12/helm-values.md index a24fb545c2..ed1a3c196c 100644 --- a/stable/openvscode-server/1.0.11/helm-values.md +++ b/stable/openvscode-server/1.0.12/helm-values.md @@ -19,10 +19,8 @@ You will, however, be able to use all values referenced in the common chart here | persistence.varrun.enabled | bool | `true` | | | podSecurityContext.runAsGroup | int | `0` | | | podSecurityContext.runAsUser | int | `0` | | -| portal.path | string | `"/?tkn={{ .Values.secret.CONNECTION_TOKEN }}"` | | -| secret.CONNECTION_TOKEN | string | `"somerandomstring"` | | -| securityContext.readOnlyRootFilesystem | bool | `false` | | -| securityContext.runAsNonRoot | bool | `false` | | +| secret | object | `{}` | | +| securityContext | object | `{"readOnlyRootFilesystem":false,"runAsNonRoot":false}` | path: "/?tkn={{ .Values.secret.CONNECTION_TOKEN }}" | | service.main.ports.main.port | int | `10135` | | | service.main.ports.main.targetPort | int | `3000` | | diff --git a/stable/openvscode-server/1.0.11/ix_values.yaml b/stable/openvscode-server/1.0.12/ix_values.yaml similarity index 77% rename from stable/openvscode-server/1.0.11/ix_values.yaml rename to stable/openvscode-server/1.0.12/ix_values.yaml index 8cdeaa2acb..a7d26d1fe7 100644 --- a/stable/openvscode-server/1.0.11/ix_values.yaml +++ b/stable/openvscode-server/1.0.12/ix_values.yaml @@ -3,8 +3,8 @@ image: pullPolicy: IfNotPresent tag: v1.66.0 -portal: - path: "/?tkn={{ .Values.secret.CONNECTION_TOKEN }}" +# portal: + # path: "/?tkn={{ .Values.secret.CONNECTION_TOKEN }}" securityContext: runAsNonRoot: false @@ -14,8 +14,8 @@ podSecurityContext: runAsUser: 0 runAsGroup: 0 -secret: - CONNECTION_TOKEN: "somerandomstring" +secret: {} + # CONNECTION_TOKEN: "somerandomstring" service: main: diff --git a/stable/openvscode-server/1.0.11/questions.yaml b/stable/openvscode-server/1.0.12/questions.yaml similarity index 99% rename from stable/openvscode-server/1.0.11/questions.yaml rename to stable/openvscode-server/1.0.12/questions.yaml index 9f7b9d9da3..f27b179a5a 100644 --- a/stable/openvscode-server/1.0.11/questions.yaml +++ b/stable/openvscode-server/1.0.12/questions.yaml @@ -178,13 +178,20 @@ questions: attrs: - variable: CONNECTION_TOKEN label: "CONNECTION_TOKEN" + description: "Optional security token for accessing the Web UI (ie. supersecrettoken)." schema: type: string private: true - required: true + default: "" + - variable: CONNECTION_SECRET + label: "CONNECTION_SECRET" + description: "Optional path to a file inside the container that contains the security token for accessing the Web UI (ie. /path/to/file). Overrides CONNECTION_TOKEN." + schema: + type: string default: "" - variable: SUDO_PASSWORD label: "SUDO_PASSWORD" + description: "If this optional variable is set, user will have sudo access in the openvscode-server terminal with the specified password." schema: type: string private: true diff --git a/stable/openvscode-server/1.0.11/security.md b/stable/openvscode-server/1.0.12/security.md similarity index 97% rename from stable/openvscode-server/1.0.11/security.md rename to stable/openvscode-server/1.0.12/security.md index 44e280d255..5554997a29 100644 --- a/stable/openvscode-server/1.0.11/security.md +++ b/stable/openvscode-server/1.0.12/security.md @@ -59,6 +59,8 @@ hide: | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| busybox | CVE-2022-28391 | UNKNOWN | 1.34.1-r4 | 1.34.1-r5 |
Expand...https://git.alpinelinux.org/aports/plain/main/busybox/0001-libbb-sockaddr2str-ensure-only-printable-characters-.patch
https://git.alpinelinux.org/aports/plain/main/busybox/0002-nslookup-sanitize-all-printed-strings-with-printable.patch
https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
| +| ssl_client | CVE-2022-28391 | UNKNOWN | 1.34.1-r4 | 1.34.1-r5 |
Expand...https://git.alpinelinux.org/aports/plain/main/busybox/0001-libbb-sockaddr2str-ensure-only-printable-characters-.patch
https://git.alpinelinux.org/aports/plain/main/busybox/0002-nslookup-sanitize-all-printed-strings-with-printable.patch
https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
| | zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| @@ -70,6 +72,8 @@ hide: | Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | |:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| busybox | CVE-2022-28391 | UNKNOWN | 1.34.1-r4 | 1.34.1-r5 |
Expand...https://git.alpinelinux.org/aports/plain/main/busybox/0001-libbb-sockaddr2str-ensure-only-printable-characters-.patch
https://git.alpinelinux.org/aports/plain/main/busybox/0002-nslookup-sanitize-all-printed-strings-with-printable.patch
https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
| +| ssl_client | CVE-2022-28391 | UNKNOWN | 1.34.1-r4 | 1.34.1-r5 |
Expand...https://git.alpinelinux.org/aports/plain/main/busybox/0001-libbb-sockaddr2str-ensure-only-printable-characters-.patch
https://git.alpinelinux.org/aports/plain/main/busybox/0002-nslookup-sanitize-all-printed-strings-with-printable.patch
https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
| | zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| diff --git a/stable/openvscode-server/1.0.11/templates/common.yaml b/stable/openvscode-server/1.0.12/templates/common.yaml similarity index 100% rename from stable/openvscode-server/1.0.11/templates/common.yaml rename to stable/openvscode-server/1.0.12/templates/common.yaml diff --git a/stable/openvscode-server/1.0.11/values.yaml b/stable/openvscode-server/1.0.12/values.yaml similarity index 100% rename from stable/openvscode-server/1.0.11/values.yaml rename to stable/openvscode-server/1.0.12/values.yaml