mirror of
https://github.com/empayre/fleet.git
synced 2024-11-06 00:45:19 +00:00
Prepare Fleet v4.47.0 (#17581)
This commit is contained in:
Luke Heath
GitHub
parent
bb7da24ea1
commit
88d41915eb
50
CHANGELOG.md
50
CHANGELOG.md
@ -1,3 +1,53 @@
|
||||
## Fleet 4.47.0 (Mar 11, 2024)
|
||||
|
||||
### Endpoint operations
|
||||
- Implemented UI for team-specific host status webhooks.
|
||||
- Added Unicode and emoji support for policy and team names.
|
||||
- Allowed gitops user to access specific endpoints.
|
||||
- Enabled setting host status webhook at the team level via REST API and fleetctl.
|
||||
- GET /hosts API endpoint now populates policies with `populate_policies=true` query parameter.
|
||||
- Supported custom options set via CLI in the UI for host status webhook settings.
|
||||
- Surfaced VS code extensions in the software inventory.
|
||||
- Added a "No team" team option when running live queries from the UI.
|
||||
- Fixed tranferring hosts between teams across multiple pages.
|
||||
- Fixed policy deletion not updating policy count.
|
||||
- Fixed RuntimeError in fleetd-chrome and buggy filters for exporting hosts.
|
||||
|
||||
### Device management (MDM)
|
||||
- Added wipe command to fleetctl and the `POST /api/v1/fleet/hosts/:id/wipe` Fleet Premium API endpoint.
|
||||
- Updated `fleetctl run-script` to include new flags and `POST /scripts/run/sync` API to receive new parameters.
|
||||
- Enabled usage of `<Add>` nodes in Windows MDM profiles.
|
||||
- Added backend functionality for the new way of storing script contents and updated the script character limit.
|
||||
- Updated the database schema to support the increase in script size.
|
||||
- Prevented running cleanup tasks and re-enqueuing commands for hosts on SCEP renewals.
|
||||
- Improved osquery queries for MDM detection.
|
||||
- Prevented redundant ADE profile assignment.
|
||||
- Updated fleetctl gitops, default MDM configs were set to default values when not defined.
|
||||
- Displayed disk encryption status in macOS as "verifying."
|
||||
- Allowed GitOps user to access MDM hosts and profiles endpoints.
|
||||
- Added UI for wiping a host with Fleet MDM.
|
||||
- Rolled up MDM solutions by name on the dashboard MDM card.
|
||||
- Added functionality to surface MDM devices where DEP assignment failed.
|
||||
- Fixed MDM profile installation error visibility.
|
||||
- Fixed Windows MDM profile command "Type" column display.
|
||||
- Fixed an issue with macOS ADE enrollments getting a "method not allowed" error.
|
||||
- Fixed Munki issues truncated tooltip bug.
|
||||
- Fixed a bug causing Windows hosts to appear when filtering by bootstrap package status.
|
||||
|
||||
### Vulnerability management
|
||||
- Reduced vulnerability processing time by optimizing the vulnerability dictionary grouping.
|
||||
- Fixed an issue with `mdm.enable_disk_encryption` JSON null values causing issues.
|
||||
- Fixed vulnerability processing for non-ASCII software names.
|
||||
|
||||
### Bug fixes and improvements
|
||||
- Upgraded Golang version to 1.21.7.
|
||||
- Updated page descriptions and fixed alignment of critical policy checkboxes.
|
||||
- Adjusted font size for tooltips in the settings page to follow design guidelines.
|
||||
- Fixed a bug where the "Done" button on the add hosts modal could be covered.
|
||||
- Fixed UI styling and alignment issues across various pages and modals.
|
||||
- Fixed the position of live query/policy host search icon and UI loading states.
|
||||
- Fixed issues with how errors were captured in Sentry for improved precision and coverage.
|
||||
|
||||
## Fleet 4.46.2 (Mar 4, 2024)
|
||||
|
||||
### Bug fixes
|
||||
|
||||
@ -1 +0,0 @@
|
||||
* Added the `POST /api/v1/fleet/hosts/:id/wipe` Fleet Premium API endpoint to support remote wiping a host.
|
||||
@ -1 +0,0 @@
|
||||
* Remove filtering of private IPs in hosts' Public IP field.
|
||||
@ -1 +0,0 @@
|
||||
- Update UI tooltip and website note about public IP addresse
|
||||
@ -1 +0,0 @@
|
||||
* Automatically renew macOS identity certificates for devices 30 days prior to their expiration.
|
||||
@ -1,3 +0,0 @@
|
||||
* Allow GitOps user to access the following endpoints:
|
||||
- GET /api/latest/fleet/mdm/hosts/:host_id/profiles
|
||||
- GET /api/latest/fleet/hosts/identifier/:identifier
|
||||
@ -1 +0,0 @@
|
||||
- Added functionality to surface MDM devices where DEP assignment failed.
|
||||
@ -1 +0,0 @@
|
||||
- Update page descriptions
|
||||
@ -1 +0,0 @@
|
||||
- UI Edit team more properly labeled as rename team
|
||||
@ -1 +0,0 @@
|
||||
- Surface VS code extensions in the software inventory
|
||||
@ -1 +0,0 @@
|
||||
- Update UI's empty policy states
|
||||
@ -1 +0,0 @@
|
||||
- User settings/profile page officially renamed to account page
|
||||
@ -1 +0,0 @@
|
||||
GET /hosts API endpoint can now populate policies with populate_policies=true query parameter.
|
||||
@ -1 +0,0 @@
|
||||
- Updates to spacing on device user page
|
||||
@ -1 +0,0 @@
|
||||
* Add a "No team" team option when running live queries from the UI
|
||||
@ -1,2 +0,0 @@
|
||||
- API endpoint GET fleet/targets/count can target 'No team' with team_id=0
|
||||
- API endpoint POST fleet/queries/run (for async live queries) can target 'No team' with team_id=0
|
||||
@ -1 +0,0 @@
|
||||
In fleetd-chrome, fixed RuntimeError seen by some hosts.
|
||||
@ -1,4 +0,0 @@
|
||||
* Fixed issues with how errors were captured in Sentry:
|
||||
- The stack trace is now more precise.
|
||||
- More error paths will now get captured in Sentry.
|
||||
- **NOTE: Many more entries could be generated in Sentry compared to earlier Fleet versions.** Sentry capacity should be planned accordingly.
|
||||
@ -1 +0,0 @@
|
||||
- Update page description styling
|
||||
@ -1 +0,0 @@
|
||||
* Display disk encryption status in macOS as "verifying" while Fleet verifies if the escrowed key can be decrypted.
|
||||
@ -1 +0,0 @@
|
||||
- Fix position of live query/poilcy host search icon
|
||||
@ -1 +0,0 @@
|
||||
* Fixed an issue with `mdm.enable_disk_encryption` where a `null` JSON value caused issues with MDM profiles in the `PATCH /api/v1/fleet/config` endpoint.
|
||||
@ -1,2 +0,0 @@
|
||||
- Fixes issue where the "Type" column was empty for Windows MDM profile commands when running
|
||||
`fleetctl get mdm-commands` and `fleetctl get mdm-command-results`.
|
||||
@ -1 +0,0 @@
|
||||
- Move show query button so it shows in report page even with no results
|
||||
@ -1 +0,0 @@
|
||||
- Fixed UI styling of loading state for automatic enrollment settings page.
|
||||
@ -1,2 +0,0 @@
|
||||
- Adds another keyword for recognizing VMware WorkspaceONE as an MDM solution
|
||||
- Removes `provider_id` as a possible source for deducing Windows MDM solution names.
|
||||
@ -1,2 +0,0 @@
|
||||
* Updated the database schema to support the increase in size of scripts.
|
||||
* **NOTE**: database migration might take a few minutes to complete, depending on scripts usage. It is mostly affected by the number of script executions (anonymous scripts via `fleetctl run-script` or saved scripts), the number of hosts targeted to execute the scripts and the number of saved scripts.
|
||||
@ -1,3 +0,0 @@
|
||||
- Updated `fleetctl run-script` to include new `--team` and `--script-name` flags that enable users
|
||||
to run live script on a host using a previously saved script referenced by the script name and team ID.
|
||||
- Updated `POST /scripts/run/sync` API to receive new `script_name` and `team_id` parameters.
|
||||
@ -1,2 +0,0 @@
|
||||
- Adds backend functionality to work with the new way of storing script contents
|
||||
- Updates the script character limit from 10,000 to 500,000
|
||||
@ -1 +0,0 @@
|
||||
- Fixes an issue where some MDM profile installation errors would not be shown in Fleet.
|
||||
@ -1 +0,0 @@
|
||||
Reduced vulnerability processing time by grouping vulnerability dictionary by vendor.
|
||||
@ -1 +0,0 @@
|
||||
- fixed error during vulnerability processing on non-ascii software names
|
||||
@ -1 +0,0 @@
|
||||
- Bug fix: Correctly transfer hosts on multiple pages between teams
|
||||
@ -1 +0,0 @@
|
||||
- Fix a bug where the "Done" button on the add hosts modal for plain osquery could be covered.
|
||||
@ -1 +0,0 @@
|
||||
Added Unicode and emoji support for policy and team names.
|
||||
@ -1 +0,0 @@
|
||||
- Deleting a policy updates the policy count
|
||||
@ -1 +0,0 @@
|
||||
- Fix alignment of the critical policy checkbox when saving a new policy
|
||||
@ -1,2 +0,0 @@
|
||||
Fixed bug where updating policy name can result with multiple policies with the same name in a team.
|
||||
- This bug was introduced in fleet v4.44.1. Any duplicate policy names in the same team will be renamed by adding a number to the end of the policy name.
|
||||
@ -1 +0,0 @@
|
||||
- Implement the UI for the team-specific host status webhook feature.
|
||||
@ -1 +0,0 @@
|
||||
Enabling setting host status webhook at the team level via REST API and fleetctl apply/gitops.
|
||||
@ -1 +0,0 @@
|
||||
* Fixed a bug that caused macOS ADE enrollments gated behind SSO to get a "method not allowed" error.
|
||||
@ -1 +0,0 @@
|
||||
- Munki issues truncated tooltip bug fix
|
||||
@ -1,2 +0,0 @@
|
||||
For fleetctl gitops, when MDM configs are not explicitly defined in gitops yml file, they are now set to default values.
|
||||
- GitOps user can now read fleet config, which is needed to determine if Fleet Premium is being used.
|
||||
@ -1 +0,0 @@
|
||||
* Prevent running cleanup tasks and re-enqueuing commands for hosts on SCEP renewals.
|
||||
@ -1 +0,0 @@
|
||||
- added validation to the json request for bulk host operations for transfer and delete
|
||||
@ -1 +0,0 @@
|
||||
- Adjusted font size used for tooltips in the settings page UI to follow design guidelines.
|
||||
@ -1 +0,0 @@
|
||||
Fix 4 buggy filters for exporting hosts onto a file on the manage host page
|
||||
@ -1 +0,0 @@
|
||||
* Prevent redundant ADE profile assignment to prevent assignment failures on hosts recently added or modified
|
||||
@ -1,2 +0,0 @@
|
||||
- Fixes a bug that caused Windows hosts to show up in results when filtering hosts by bootstrap
|
||||
package status.
|
||||
@ -1 +0,0 @@
|
||||
- Fixed UI alignment bug where long URLs were not being truncated in the hosts table UI.
|
||||
@ -1 +0,0 @@
|
||||
* Improve osquery queries for MDM detection to take into account the enrollment state of the rows fetched from the registry.
|
||||
@ -1 +0,0 @@
|
||||
* Support custom options set via CLI in the UI for team and global host status webhook settings.
|
||||
@ -1,2 +0,0 @@
|
||||
- Fixes issue where a bad request response from a 3rd party MDM solution would result in a 500 error
|
||||
in Fleet during MDM migration.
|
||||
@ -1 +0,0 @@
|
||||
- Updates copy in `fleetctl` error when attempting to upload malformed profiles.
|
||||
@ -1 +0,0 @@
|
||||
- add UI for wiping a host with fleet mdm.
|
||||
@ -1 +0,0 @@
|
||||
- add wipe command to fleetctl
|
||||
@ -1 +0,0 @@
|
||||
- upgrade golang version to 1.21.7
|
||||
@ -1 +0,0 @@
|
||||
- rollup the mdm solutions by name on the dashboard mdm card
|
||||
@ -1 +0,0 @@
|
||||
- fix UI loading state for software versions and os for the inital request.
|
||||
@ -1 +0,0 @@
|
||||
- Updates the error returned when a host times out while executing a script to be more informative.
|
||||
@ -1 +0,0 @@
|
||||
- Enables usage of `<Add>` nodes in Windows MDM profiles.
|
||||
@ -8,7 +8,7 @@ version: v6.0.2
|
||||
home: https://github.com/fleetdm/fleet
|
||||
sources:
|
||||
- https://github.com/fleetdm/fleet.git
|
||||
appVersion: v4.46.2
|
||||
appVersion: v4.47.0
|
||||
dependencies:
|
||||
- name: mysql
|
||||
condition: mysql.enabled
|
||||
|
||||
@ -2,7 +2,7 @@
|
||||
# All settings related to how Fleet is deployed in Kubernetes
|
||||
hostName: fleet.localhost
|
||||
replicas: 3 # The number of Fleet instances to deploy
|
||||
imageTag: v4.46.2 # Version of Fleet to deploy
|
||||
imageTag: v4.47.0 # Version of Fleet to deploy
|
||||
podAnnotations: {} # Additional annotations to add to the Fleet pod
|
||||
serviceAccountAnnotations: {} # Additional annotations to add to the Fleet service account
|
||||
resources:
|
||||
|
||||
@ -56,7 +56,7 @@ variable "database_name" {
|
||||
|
||||
variable "fleet_image" {
|
||||
description = "the name of the container image to run"
|
||||
default = "fleetdm/fleet:v4.46.2"
|
||||
default = "fleetdm/fleet:v4.47.0"
|
||||
}
|
||||
|
||||
variable "software_inventory" {
|
||||
|
||||
@ -68,5 +68,5 @@ variable "redis_mem" {
|
||||
}
|
||||
|
||||
variable "image" {
|
||||
default = "fleet:v4.46.2"
|
||||
default = "fleet:v4.47.0"
|
||||
}
|
||||
|
||||
@ -13,7 +13,7 @@ variable "fleet_config" {
|
||||
type = object({
|
||||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
image = optional(string, "fleetdm/fleet:v4.46.2")
|
||||
image = optional(string, "fleetdm/fleet:v4.47.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
||||
@ -74,7 +74,7 @@ variable "fleet_config" {
|
||||
type = object({
|
||||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
image = optional(string, "fleetdm/fleet:v4.46.2")
|
||||
image = optional(string, "fleetdm/fleet:v4.47.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
||||
@ -17,7 +17,7 @@ provider "aws" {
|
||||
}
|
||||
|
||||
locals {
|
||||
fleet_image = "fleetdm/fleet:v4.46.2"
|
||||
fleet_image = "fleetdm/fleet:v4.47.0"
|
||||
domain_name = "example.com"
|
||||
}
|
||||
|
||||
|
||||
@ -165,7 +165,7 @@ variable "fleet_config" {
|
||||
type = object({
|
||||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
image = optional(string, "fleetdm/fleet:v4.46.2")
|
||||
image = optional(string, "fleetdm/fleet:v4.47.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
||||
@ -215,7 +215,7 @@ variable "fleet_config" {
|
||||
type = object({
|
||||
mem = optional(number, 4096)
|
||||
cpu = optional(number, 512)
|
||||
image = optional(string, "fleetdm/fleet:v4.46.2")
|
||||
image = optional(string, "fleetdm/fleet:v4.47.0")
|
||||
family = optional(string, "fleet")
|
||||
sidecars = optional(list(any), [])
|
||||
depends_on = optional(list(any), [])
|
||||
|
||||
@ -1,6 +1,6 @@
|
||||
{
|
||||
"name": "fleetctl",
|
||||
"version": "v4.46.2",
|
||||
"version": "v4.47.0",
|
||||
"description": "Installer for the fleetctl CLI tool",
|
||||
"bin": {
|
||||
"fleetctl": "./run.js"
|
||||
|
||||
Loading…
Reference in New Issue
Block a user