Red Hat SummitChapter 1. Builds for Red Hat OpenShift release notes
Release notes contain information about new and deprecated features, breaking changes, and known issues. The following release notes apply for the most recent Builds releases on OpenShift Container Platform.
Builds is an extensible build framework based on the Shipwright project, which you can use to build container images on an OpenShift Container Platform cluster. You can build container images from source code and Dockerfiles by using image build tools, such as Source-to-Image (S2I) and Buildah. You can create and apply build resources, view logs of build runs, and manage builds in your OpenShift Container Platform namespaces.
Builds includes the following capabilities:
- Standard Kubernetes-native API for building container images from source code and Dockerfiles
-
Support for Source-to-Image (S2I) and
Buildahbuild strategies - Extensibility with your own custom build strategies
- Execution of builds from source code in a local directory
- Shipwright CLI for creating and viewing logs, and managing builds on the cluster
- Integrated user experience with the Developer perspective of the OpenShift Container Platform web console
For more information about Builds, see Overview of Builds.
1.1. Compatibility and support matrix
In the table, components are marked with the following statuses:
| TP | Technology Preview |
| GA | General Availability |
The Technology Preview features are experimental features and are not intended for production use.
| Builds Version | Component Version | Compatible Openshift Pipelines Version | OpenShift Version | Support | |
|---|---|---|---|---|---|
| Operator | Builds (Shipwright) | CLI | |||
| 1.7 | 0.18.0 (GA) | 0.18.0 (GA) | 1.18-1.21 | 4.16-4.21 | GA |
| 1.6 | 0.17.0 (GA) | 0.17.0 (GA) | 1.18-1.21 | 4.16-4.20 | GA |
1.2. Release notes for Builds 1.7
Builds 1.7 is now available on OpenShift Container Platform 4.16-4.21.
With this release, you can use a new migration tool, Crane. It automatically converts the BuildConfig resources to Build resources, which simplifies adopting the builds for Red Hat OpenShift application. To learn more about this tool and its benefits, see Migrate BuildConfig resources to Builds for Red Hat OpenShift with Crane.
1.2.1. New features
The following sections highlight what is new in Builds 1.7.
- Read-only root file systems enforced for containers
-
With this update, you must set the
readOnlyRootFilesystemparameter totruefor your containers in OpenShift Container Platform. This change addresses security audits and protects containers from potential vulnerabilities. - Operator pod containers now use read-only root file systems
- With this update, the root filesystems of the Operator pod container and the shared resource container are set to read-only. This enhancement improves security by preventing runtime modifications to internal container files. The update also includes an end-to-end (E2E) test to validate the workflow.
1.2.2. Fixed issues
- Buffer overflow in error logging resolved
- Before this update, non-standard input could trigger a buffer overflow in error logging, leading to user data loss. With this update, improved database connection settings resolve the issue, ensuring error logging functions correctly and preventing data loss.
- CSI driver correctly enforces RBAC permissions for Secrets and ConfigMaps
-
Before this update, the Container Storage Interface (CSI) driver ignored forbidden errors when attempting to fetch source
SecretorConfigMapresources, mounting an empty volume instead of failing the operation and bypassing RBAC controls. With this update, the CSI driver correctly returns API client errors and requires an explicitRoleBindingto access resources.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}