Releases: openkcm/cmk
Releases · openkcm/cmk
v0.8.0
0.8.0 (2026-04-21)
Features
- add allowBYOK landscape feature gate (#243) (7cac3c2)
- add key rotate audit log (#248) (6828a68)
- add OpenTelemetry tracing support for database connections (#238) (256fe37)
- Asynq Fanout Mechanism and HYOK Refresh Frequency (#191) (6054ef8)
- extend system event task data with crypto certificate subject (#245) (b3b7fd2)
- support HYOK key rotation (#233) (e5b4eff)
Bug Fixes
- add missing landscape config to event reconciler (#242) (74803f5)
- deps: bump the gomod-group group across 1 directory with 10 updates (#240) (598997b)
- event error too big (#250) (53b2be9)
- fix broken unit test (#247) (7eabe88)
- get latest key version ID from DB for system events (#232) (ccd1035)
- import postgres driver for tracing (#246) (4de3508)
- provided task config does not override Enabled flag if not specified (#235) (0b7f1ce)
- remove unused blueprints (#237) (cea3bed)
- skip worklow expiry if transition is not available (#241) (40a7023)
- system error metadata join with wrong field (#253) (05d4462)
- systems filter by region (#236) (b554d3f)
- update tracing wrapper for DB to use multitenancy postgres (#249) (f6b7f58)
v0.7.0
0.7.0 (2026-04-09)
Features
- add traces creation (#203) (5b9abf7)
- Configurable crypto certs (#214) (1d8ecdf)
- database auth properties (#211) (38ba08a)
- refactor key rotate event (#216) (f17aa7e)
Bug Fixes
- change keystore pool monitor to OTLP metric (#220) (faa1596)
- deps: bump the gomod-group group across 1 directory with 7 updates (#213) (488db22)
- deps: bump the gomod-group group across 1 directory with 9 updates (#225) (6f3072f)
- refactor tenant decommissioning (#175) (ba4f90d)
- refresh repo authz data (#230) (445ca41)
- tidy go mod (#226) (abe9ae0)
- update common-sdk (#218) (22cee0f)
- Update Go version (#215) (12d6a32)
- validate group roles when processing client data (#227) (b0bcdd8)
v0.6.1
v0.6.0
v0.5.0
0.5.0 (2026-03-16)
Features
Bug Fixes
- change cert issuer, IDM and notification plugins to use go interfaces (#184) (6c27d4d)
- deps: bump github.com/getkin/kin-openapi from 0.133.0 to 0.134.0 in the gomod-group group (#198) (d80ac03)
- deps: bump the gomod-group group with 3 updates (#194) (7fe3dac)
- Fix order when listing systems (#196) (662270b)
- group rename expand and db-migrator to goose provider (#156) (0e11e6c)
- sql migration files required for db-migrator (#197) (4b1a52d)
- update db-migrator command to support dynamic command configuration (#192) (3368ec5)
- Update dependabot config (#193) (0272ae6)
v0.4.1
v0.4.0
0.4.0 (2026-03-06)
Features
- add noop plugins (#136) (3935230)
- Add Tenant Name (#110) (d9e548f)
- deploy data migrator post hook (#87) (81d2149)
- Enable workflow for primary key switch (#126) (5191639)
- grant key admin permission to access tenantInfo (#155) (7e968fd)
- include the SCIM identity management as builtin plugin (#77) (939439e)
- order systems by identifier ascending (#149) (4c2d1ff)
- remove mixed roles check for allow list APIs (#160) (3607c24)
Bug Fixes
- add dockerfiles to be used to create different images (#170) (103f816)
- add missing sections in reconciler cfgmap (#145) (bb69cb3)
- add plugin service api and wrappers from plugin-sdk (#125) (7d8818e)
- add plugins to event reconciler configmap (#150) (878585a)
- add sonar separate workflow (#173) (eb15052)
- change keyIDTo for system events on pkey change (#131) (819af68)
- change tenant-manager podDisruptionBudgets name and labels (#147) (90628bc)
- include static configuration for identity management builtin plugin (#157) (dfb83c6)
- remove usage name of plugins for single plugins (#151) (247ac75)
- update the plugin-sdk version introducing back buildinfo (#146) (7acc30c)
- use system user context for all batched periodic tasks (#130) (9019edc)
- wrong ctx on tasks (#161) (8b63a07)
v0.3.0
0.3.0 (2026-02-23)
Features
- add component-specific resource overrides for deployments (#82) (88f31f8)
- create separate component for event reconciler (#104) (5ad0d66)
- enable event reconciler by default in values.yaml (#122) (54bd66e)
- system and workflow pkey check (#66) (8da013f)
- update tenant info (#102) (0095366)
- Update workflow email (#54) (dc00b93)
- workflow settings configurable (#56) (1684142)
Bug Fixes
- allow unlink when system in failed state (#129) (b0f1e6a)
- auditor readonly all keyconfigs (#100) (746fbd8)
- deps: update plugin-sdk version to v0.9.5 (#137) (7245ba9)
- include the pull-requests: read into workflow permission (#117) (66d4765)
- keyconfig cert returning exists by default (#112) (94fc75c)
- keyconfig count (#79) (6ef65e1)
- linter pre-alloc errors (#108) (20bbd8f)
- listing duplicated workflow tasks (#121) (dd362ab)
- only unmap system from tenant on unlink system action (#62) (2304821)
- pagination on system refresh and toLower type (#140) (5f7683d)
- prepare plugins to switch from raw grpc interface -> abstract golang interface (#123) (478e97b)
- release please configuration (#73) (66c5836)
- removed unused/dead code (#115) (423849b)
- rotate certs in batch (#90) (4ebea43)
- system information switch to golang interfaces (#124) (3d5389b)
- system type must be lowercase for registry (#61) (627bb71)
- Unable to Switch Primary keys , while connected to System (#58) (a00a23c)
- unmap system only run on tenant termination system unlink (#64) (1f3cd91)
- update keystores endpoint resource type (#107) (8b448ff)
- update plugin-sdk to v0.9.6 (#139) (4b95d1e)
- upgrade the plugin-sdk version to v0.9.2 (#116) (5bb8d9b)
- use common-sdk status serve that cover default checks (#111) (d143b29)
- verify name on creation and white space validation (#93) (a9e680b)
- workflow expiry task (#76) (9af4390)