- Replace
amazon-ecr-containerd-resolverwith Docker resolver inhost-ctr(#760) - Add MPS control daemon support to
nvidia-k8s-device-plugin(#789) - Add trn3 device ids to
pciclient(#800) - Switch to using Go built-in runtime FIPS support (#783)
- Update
docker-cli-29,docker-engine-29(#785) - Patch
containerd-2.1to update GRPC (#801) - Update
libnvme,xfsprogs,nvme-cli,makedumpfile,keyutils,e2fsprogs(#794) - Update
readline,libxcrypt,liburcu,libcap(#795) - Update
ecr-credential-helper(#796)
- Add latest instance types to
eni-max-podsmapping (#805)
- Update
aws-signing-helper,aws-iam-authenticator,containerd-1.7,containerd-2.1(#784)
- Update
twoliterto v0.16.0 (#793)
- Update
kubernetes-1.35package with official sources (#792)
- Update to latest versions of
kubernetespackages (#784)
- Add
audit-rulessubpackage tolibauditandjournald-auditsubpackage tosystemd(#781) - Add
rocm-container-toolkitpackage for AMD GPU support (#778) - Override SBOM generation for Rust packages (#787)
- Update
twoliterto v0.15.1 (#779)
- Add
multi-user.targetdrop-in for kubelet restarts across all versions (#773) - Add
kubernetes-1.35package with beta source andecr-credential-provider-1.35package with official source (#777) - Add latest instance types to
eni-max-podsmapping (#776, #782)
- Remove OCI consideration from BUILDING.md (#615)
- Revert updates to
libnvidia-container,nvidia-container-toolkit, andnvidia-k8s-device-plugin(#775)
- Disable concurrent layer fetch by default in
containerd-2.1(#764) - Add latest instance types to
eni-max-podsmapping (#763) - Update
host-ctrgo dependencies (#758) - Update ordering for drivers target to load before settings are applied (#749)
- Update
amazon-ssm-agent(#768) - Update core system utilities:
bash,chrony,coreutils,iproute,strace, andopen-vm-tools(#765) - Update multiple core libraries:
libnftnl,nftables,libpcre,libglib,libelf,libdevmapper, andlibncurses(#767) - Update
rdma-coreand enable PCI support inhwloc(#725) - Update
soci-snapshotter(#759) - Update to latest versions of
ecr-credential-providerandkubernetespackages (#758) - Update
libnvidia-container,nvidia-container-toolkit, andnvidia-k8s-device-plugin(#758)
- Drop
kubernetes-1.28andecr-credential-provider-1.28packages (#761)
- Provide
libdrmandrocm-k8s-device-pluginpackages for AMD GPU detection (#748) - Add latest instance types to
eni-max-podsmapping (#752)
- Return
enableDebuggingHandlersto default behaviour (#747)
- Add image signing verification for ECR images signed by AWS Signer (#722)
- Add an apiclient command to lockdown the datastore to prevent further changes (#727)
- Provide
rottweiler, a unified storage encryption helper (#717) - Add support for encrypted storage (#721)
- Fix
whippetdefaults and wildcard replacements (#720) - Add apiclient support to exclude settings prefixes and canonicalize output (#716)
- Add
apiclient network configuresubcommand (#714) - Ensure that bootconfig keys are written in a consistent order (#735)
- Enhance
bloodhoundCIS compliance checks (#665, #738) - Decouple the network stack initialization from the DATA partition (#638)
- Add EBS volumes support for ephemeral storage (#395) - Thanks @jesseanttila-cai
- Build
systemd-257withcryptsetupsupport (#691) - Update
host-ctrgo dependencies (#723) - Build
libcryptsetupandlibdevmapperwith udev support (#706) - Support kdump for zboot kernels on aarch64 (#707)
- Add
hwlocpackage (#672) - Update
systemd-252to v252.39 (#700) - Update
systemd-257to v257.9 (#691) - Drop
socatpackage (#742) - Update
libexpat(#695) - Add
libudevpackage (#706) - Update
kexec-tools(#707) - Add
docker-cli-29,docker-engine-29packages (#711, #743, #745) - Update
aws-otel-collector,aws-signing-helper(#715) - Update
containerd-1.7,containerd-2.0,containerd-2.1(#724)
- Add changelog validation improvements (#699)
- Update
bottlerocket-settings-modelsto v0.17.0 (#689) - Update
twoliterfrom v0.12.0 to v0.13.0 (#736)
- Update DNS IP generation to support IPv6 (#734)
- Update to latest versions of
ecr-credential-providerandkubernetespackages (#715) - Add
enableDebuggingHandlers,imageMinimumGCAge,maxParallelImagePulls,ImageMaximumGCAgeand CPU manager settings (#689)
- Default to containerd's transfer service for
docker-engine-29(#730)
- Patch
ecr-credential-providerto support AWS EUSC (#729)
- Patch runc to set the correct mode for tmpfs mounts (#731)
- Update runc to v1.2.8 (#708)
- Update runc to v1.2.7 and include CVE patches (#6813a59b, #6e3d3e2e, #f330515a)
- containerd-2.1: fix image pull error when range-get request is ignored (#702)
- Update
bottlerocket-sdkfrom 0.65.0 to 0.65.1 (#698)
- Provide command to detect first and third-party accelerated hardware (#644)
- Provide
whippetas an alternativedbus-launcher(#661, #678) - Make
dbus-brokerrequiredbus-launchercapability (#677) - Provide
dbus-broker-launcheras a separate package (#677) - Allow multiple sequential calls of
apiclient ephemeral-storage bind(#679) - Log pending settings only for
debugor higher log levels (#690) - Thanks @fletcherw
- Add a patch for
libnvidia-containerto support glibc (#687)
- Update Rust dependencies for first-party sources (#673)
- Update Go dependencies for first-party sources (#673)
- Patch
systemdto suppress a warning log that is not applicable to Bottlerocket (#681)
- Update
glibcanddocker-engine(#676, #671) - Update core libraries:
libpcre,readline,libz,libtirpc,libnftl,libbncurses,libinih,libglib,libffi,libbpf,libdevmapper, andlibscrypsetup(#683) - Update core system utilities:
iproute,strace,nvme-cli,libnvme,xfsprogs,ethtool,util-linux,pciutils,dbus-broker, ande2fsprogs(#675, #680)
- Update
bottlerocket-settings-modelsto v0.16.0 (#646)
- Add
pidresource tokubeReservedsetting (#646)
- Update ECR parsing in
host-ctrafteraws-sdk-go-v2migration (#664)
- Support arguments with a
--separator inapiclient execsubcommand (#647) - Backport
systemdpatch to suppressENOENTerror logs (#655) - Install
driverdogfor all variants (#656) - Thanks @fletcherw
- Update
libexpat,aws-iam-authenticator,containerd-1.7,containerd-2.0,kubernetes-1.28-1.34(#663, #666)
- Update
bottlerocket-settings-modelsto 0.15.0 (#658)
- Add command field to override default entrypoint for host and bootstrap containers (#594) - Thanks @kasimeka
- Update
systemd-257to remove shutdown timeout patch, migrate mount-rate patch to bootconfig, and remove kernel cmdline requirement forcgroupsv1(#636) - Add
containerd-2.1setting forconcurrent-download-chunk-size(#645) - Add support for more AWS regions in
schnauzerandhost-ctr(#651)
- Update
bottlerocket-settings-modelsto 0.14.0 (#645)
- Update
kubernetes-1.34andecr-credential-provider-1.34packages with official sources (#653)
- Add default bind directories for ephemeral storage (#632)
- Extend netdog to look for
net.tomlunder/usr/share/bottlerocket(#524) - Thanks @pb80 - Add
containerd-2.1package (#621)- Transfer service for image pull is now the default
- Multipart layer fetch support was added and has a default of 8MiB in Bottlerocket
- Containerd 2.1 removes the support for Schema 1 images
- Add
systemd-257package (#581) - Update
host-ctrto migrate toaws-sdk-go-v2and bump to go 1.24 (#642)
- Enable
MutableCSINodeAllocatableCountfeature gate on kubelet for kubernetes-1.34 (#634) - Thanks @torredil - Add support for new Kubernetes Setting
static-pods-enabled(#641)
- Add kubernetes-1.34 and ecr-credential-provider-1.34 packages with pre-release sources (#627)
- Update bottlerocket-sdk from 0.63.0 to 0.64.0 (#629)
- Revert
ecs-agentupdate (#625)
- Fix
containerd-2.0settings formax_concurrent_downloads(#623)
- Add
libjanssonpackage to enable JSON support for nftables (#614) - Refactor
schnauzerto multicall binary for v1 and v2 (#561) - Fix
logindservice ordering in release package (#609) - Thanks @115100 - Lowercase hostnames provided by the hostname helpers (#619) - Thanks @tzneal
- Update
amazon-ssm-agent,docker-engine, andecs-agentpackages (#616) - Update to latest versions for
aws-iam-authenticator,aws-otel-collector,aws-signing-helper,nvidia-k8s-device-plugin,ecr-credential-provider, andkubernetespackages (#611)
- Fix ECS_DISABLE_PRIVILEGED in
ecs-agent(#610) - Thanks @vermdeep
- Inject a trait into check execution to allow unit testing (#601) - Thanks @tzneal
- Add Amazon Q development rules and Git formatting guidelines (#561)
- Backport a patch to fix kubelet drop-in config merge behavior in kubernetes-1.28 (#613)
- Deprecate wicked package (#560)
- Fix file descriptor leak in
apiserver exec(#595) - Add release subpackage to enable zram-backed
swap(#590)
- Update
cni,cni-plugins,libaudit,libbpf,libdevmapper,libglib, andlibncurses(#600)
- Add soci-snapshotter support
- Configure soci-snapshotter for parallel pull unpack feature (#569)
- Optionally configure containerd and kubelet with soci-snapshotter via drop-in configuration files (#576)
- Extend selinux-policy to cover soci-snapshotter (#579)
- Add
configure-snapshotter.serviceto reset state directories of snapshotters on boot when selected snapshotter changes (#582) - Apply upstream patches to soci-snapshotter (#599)
- Drop CLI from
soci-snapshotter(#569)
- Support extending kubelet configuration via drop-in files (#576)
- Update to the latest CIS K8s guidance v1.11.1 (#563) - Thanks @tzneal
- Drop
kubernetes-1.27andecr-credential-provider-1.27(#605)
- Update
twoliterto 0.11.0 (#592)
- Add latest instance types to
eni-max-podsmapping (96d45ad5)
- Namespace
systemdtosystemd-252(#537) - Pass proxy environment variables to bootstrap-containers (#564) - Thanks @abhay-krishna
- Pass proxy environment variables to the soci-snapshotter service (#584)
- Allowlist
soci-snapshotterpaths to ephemeral storage (#571) - Add
nftablesandiptables-nft(#549) - Enable support for SELinux efficient relabling (#573)
- Enable DynamicResourceAllocation feature gate on kubelet for k8s-1.33 (#567)
- Update bottlerocket-sdk from 0.62.0 to 0.63.0 (#587)
- Add an option to write settings once during boot (#548)
- Update
libcryptopatches (#546) - Update to latest versions of kubernetes packages (#551)
- Update
nvidia-container-toolkitandlibnvidia-containerto 1.17.8 (#552) - Update core system utilities:
kexec-tools,open-vm-tools, andiputils(#553)
- Add support for Kubernetes setting
memory-swap-behaviour(#541) Thanks @teskje
- Add support for default configuration file in
xfsprogs(#521) - Add support for more AWS regions in
schnauzerandhost-ctr(#535) - Backport systemd fix to speed up
systemctl daemon-reload(#528) - Replace
systemctl isolatewithsystemctl start(#528) - Add capability markers
ioctl_skip_cloexecanduserspace_initial_contextto SELinux policy (#534) - Add
zramctltoutil-linuxpackage (#543)
- Update to latest versions of
aws-iam-authenticator,ecr-credential-provider, andkubernetespackages (#531) - Update multiple core libraries: SELinux components,
libseccomp,libinih,libffi,libnftnl,libelf,liburcu,libglib, andlibcap(#515) - Update core system utilities:
ethtool,grep,iproute,strace,makedumpfile,nvme-cli, andlibnvme(#532)
- Fix clippy warnings for Rust 1.87.0 (#525)
- Build
glibcwith frame pointers (#527) - Fix various build warnings and LTO compatibility issues in packages (#526)
- Update
bottlerocket-sdkfrom 0.61.0 to 0.62.0 (#542)
- Drop
kubernetes-1.26andecr-credential-provider-1.26(#523) - Make
soci-snapshottera socket-activated systemd service (#529) - Add latest instance types to
eni-max-podsmapping (#538)
- Third party package updates (#494, #498, #513, #514)
- Extend
ghostdogfor Infiniband detection and configuration (#499) - Enable
cryptsetupandtpm2functionality for systemd (#518)
- Update
twoliterfrom 0.9.0 to 0.10.1 (#491, #509) - Update bottlerocket-settings-models to 0.10.0 (#520)
- Migrate ECS to use CDI (#482)
- Support CDI and legacy NVIDIA Container Runtime modes (#459, #500, #507, #511)
- Patch
nvidia-k8s-device-pluginto add ldcache parsing (#501) - Apply upstream patches for EKS 1.26 (#517)
- Fix
containerd-2.0settings forcontainer-registry(#504)
- Add
containerd-2.0package (#485) - Update
containerd-1.7CRI spec to match upstream (#485) - Update
containerd-1.7service withOOMScoreAdjustto match upstream (#485)
- Add support for more Kubernetes Settings (#487, #489)
containerLogMaxWorkerscontainerLogMonitorIntervalsingleProcessOOMKill
- Update
kubernetes-1.33andecr-credential-provider-1.33packages with official sources (#488)
- Update
twoliterfrom 0.8.1 to 0.9.0 (#478)
- Drop
kubernetes-1.25andecr-credential-provider-1.25(#484)
- Revert CDI migration for ECS (#480)
- Fix aws-signing-helper and IAM Roles Anywhere (#451)
- Clear configuration-files and services in migrator (#456)
- Drop shimpei and oci-add-hooks packages (#458)
- Restrict kernel dump collection to x86_64 (#465)
- Third party package updates (#469, #472)
- Apply upstream patches for EKS 1.25-1.27 (#472)
- Let kubelet start when swap is on (#473)
- Add kubernetes-1.33 and ecr-credential-provider-1.33 packages with pre-release sources (#476)
- Migrate ECS to use CDI (#471)
- Add cryptsetup package and its dependencies (#444) - Thanks @mikn !
- Third party package updates (#457)
- Update runc from 1.1.15 to 1.2.6 (#463)
- Allow lookups of
.localdomains using unicast DNS (#464) - Thanks @tzneal !
- Update EKS 1.28-1.32 versions to latest (#457)
- Update readline from 8.2 to 8.2.13 (#446)
- Update glibc from 2.40 to 2.41 (#437)
- Fix usage of
/var/runin mdadm tmpfiles snippet (#442) - Refactor systemd to explicitly list packaged files (#438)
- Switch to igzip (x86_64) or pigz with zlib-ng (aarch64) to decompress container images (#443)
- Add support for more AWS regions in schnauzer and host-ctr (#454)
- Remove bottlerocket-variant crate (#435)
- Third party package updates (#432, #434)
- Update host-ctr dependencies (#431)
- Update containerd from 1.7.26 to 1.7.27 (#434)
- Update
twoliterfrom 0.8.0 to 0.8.1 (#428)
- Apply upstream patches for EKS 1.25-1.26 (#434)
- Update ecr-credential-provider 1.29-1.32 to latest (#434)
- Add ecr-credential-provider 1.26 and 1.28 (#434)
- Persist sysctl setting changes to /etc/sysctl.d (#333) - Thanks @aetimmes
- Updated cis report to account for formatting change in iptables (#390)
- Update MIG template to handle the no-default case (#399)
- Third party package updates (#365, #371, #383, #384, #403, #404, #406)
- Update
bottlerocket-sdkfrom 0.50.1 to 0.60.0 (#375, #402) - Update
twoliterfrom 0.7.3 to 0.8.0 (#368, #398)
- Update
twoliterfrom 0.6.0 to 0.7.3 (#382)
- Update
containerdfrom 1.7.24 to 1.7.25 (#374) - Patch
containerd1.7.25 to address issues in runc shim and CRI plugin (#374)
- Add the ability to run custom transaction checks when committing transactions to Bottlerocket’s datastore (#294)
- Add support for
weaksettings values, which are deleted on update (#294) - Only return
strongsettings-generators from the apiserver’s /metadata/settings-generator route (#294) - Always delete and re-populate metadata on first boot or update (#294)
- Add support for dynamic settings-generators via the depth attribute (#294)
- Add NVIDIA Multi-Instance GPU (MIG) settings to nvidia-k8s-device-plugin (#258)
- Conditionalize source and mode in Bootstrap container template (#335)
- Update host-ctr dependencies (#337)
- Accept comment lines in boot config (#361)
- Drop Kubernetes 1.24 variants (#364)
- Update nvidia-container-toolkit and libnvidia-container to v1.17.4 (#358)
- Update Bottlerocket SDK to v0.50.1 (#345)
- Update EKS 1.28-1.31 versions to latest (#356)
- Allow bind mounts prefixed with /mnt/ for ephemeral storage (#320) - Thanks @zaheerm!
- Improve API Server error message for invalid metadata (#342)
- Add support for
device-ownership-from-security-contextto nvidia (#343)
- Update
ecs-agentto 1.89.2 and update theamazon-ecs-cni-plugins(#341)
- Update bottlerocket-settings-models to 0.7.0 (#329)
- Add GPG verification where possible (#321)
- Update
golang.org/x/cryptofrom 0.27.0 to 0.31.0 in /sources/host-ctr (#315)
- Add beta sources for kubernetes-1.32 and ecr-credential-provider-1.32 (#317)
- Update binutils to 2.41 (#306)
- Update bottlerocket-sdk to v0.5.0 (#306)
- Remove the following packages and migrate them to the kernel-kit (#313)
- grub
- kernel-5.10
- kernel-5.15
- kernel-6.1
- kmod-5.10-nvidia
- kmod-5.15-nvidia
- kmod-6.1-nvidia
- libkcapi
- linux-firmware
- microcode
- shim
- Enable plugins and detailed EBS volume stats for
nvme-cli(#269) - Set
LoaderTimeInitUSecandLoaderTimeExecUSecin GRUB (#273) - Third party package updates (#303, #308, #311)
- Update kernel to v6.1.119 (#309)
- Update twoliter to 0.6.0 (#302)
- Normalize
amazon-ecs-cni-pluginsversion (#277) - Add host certs to host containers using a volume mount (#278)
- Fix
host-ctrto correctly extract regions from ECR URIs (#287) - Run udev after the SELinux Policy files are available (#290)
- Update
nvidia-container-toolkitandlibnvidia-container(#296)
- Disable BPF preload and bpfilter helpers for kernel (#261)
- Allow overriding max-pods file with one from variant (#279)
- Update libdbus and libexpat (#270)
- Remove acpid package (#280)
- Prevent io_uring calls from hanging (#284)
- Update EKS 1.28-1.31 versions to latest (#281)
- Use upstream sources for packages sourced from Amazon Linux (#265)
- Update twoliter to v0.5.1 (#259)
- Drop "dependencies" table for all packages (#262)
- Add kernel-5.15 patch to fix IPv6 typo (#266)
- Update kernel 5.10.228 and kernel 6.1.115 (#263)
- Add latest instance types to eni-max-pods mapping (#250)
- Include
rdma-corein AWS variants (#252) - Add
libstdc++subpackage tolibgcc(#253) - Update third-party packages (#254)
- Provide FIPS binaries for first-party rust programs (#173)
- Support ECR FIPS endpoints for host containers (#204)
- Adjust SELinux Policy to allow execute programs in NFS filesystems (#205)
- Mount
binfmt_micsfilesystem at boot (#206) - Add proxy support for pluto FIPS binary (#213)
- Generate default AWS config file (#218)
- Adjust SELinux Policy for first-party FIPS rust programs (#222)
- Update third-party packages (#210, #212, #214, #219, #220, #246)
- Add
rdma-coreto packages (#223) - Use Amazon Linux 2023 as upstream for
libkcapi(#224) - Set AWS_SDK_LOAD_CONFIG for system services (#243)
- Add proxy support for
cfsignal(#234)
- Add
insertFinalNewlinefor VSCode Workspaces (#242)
- Wait for kubelet device-manager socket before starting nvidia-k8s-device-plugin (#228)
- Update kernel 5.10.227 and kernel 5.15.168 (#235)
- Update kernel 6.1.112-124 (#231)
- Add kernel-6.1 patch to fix io statistics for cgroup v1 (#225)
- Revert system-wide configuration to block writeable/executable memory in systemd services (#215)
- Update NVIDIA driver versions to 535.216.01 (#209)
- Set Epoch to 1 in necessary packages (#208)
- Apply upstream patches for Kubernetes v1.24 to v1.31 (#186)
- Drop kubernetes-1.23 (#184)
- Move kmod-5.10-nvidia from branch R470 to R535 (#181)
- Block writeable/executable memory in systemd services by default (#158)
- Update twoliter to 0.5.0 (#195)
- Update bottlerocket-sdk to 0.46.0 (#191)
- Update
toughandreqwestto latest versions (#197) - Set Epoch to 1 in necessary packages (#180)
- Drop dependency on glibc for nvidia kmods (#194)
- Update kernels to 5.10.226, 5.15.167 and 6.1.112 (#200)
- Add nvidia-persistenced and nvidia-modprobe to kmod-*-nvidia (#122)
- Add NVIDIA time-slicing settings to nvidia-k8s-device-plugin (#169)
- libcap: fix cross-compile toolchain usage (#174)
- login: start the getty services earlier (#175)
- Update amazon-ssm-agent to v3.3.987.0 (#182)
- Update kernels to 5.10.226 and 5.15.167 (#177)
- Exclude more object files from kernel-6.1-devel (#172)
- Fix driver unit dependencies for ecs-gpu-init (#166)
- Install squashed kernel-devel if erofs is not positively selected (#163)
- Choose the correct checksum when validating a twoliter binary (#157)
- Use open GPU drivers on P4 and P5 instances (#114)
- Add package-level support for EROFS as a root filesystem (#159)
- Update libnvidia-container and nvidia-container-toolkit to 1.16.2 (#161)
- Update twoliter to 0.4.6 (#153)
- Add the ability for ghostdog to detect EFA devices attachment (#141)
- Apply higher MEMLOCK limits in oci-defaults when EFA devices are detected (#141)
- Add the ability for corndog to generate the hugepages setting (#141)
- Compile
host-ctrwith go 1.23 (#146) - Update
host-ctrdependencies (#146) - Include
nvidia-cdi-hookinnvidia-container-toolkit(#150) - Update kernels to 5.10.225 and 5.15.166 (#154)
- Use Go 1.22 for kubernetes 1.23, 1.24, 1.25, 1.26, 1.27, 1.28, 1.29 (#155)
- Validate
twoliterupon install (#147)
- Add the ability for driverdog to copy modules (#119)
- Add pciclient crate for high level access to
lspci(#149) - Update 6.1 kernel to 6.1.109 (#151)
- Build open source NVIDIA kernel modules (#118)
- Update third party packages (#129, #143)
- Split ECS and VPC CNI plugins from ecs-agent (#85)
- Add helper functions for ipcidr (#116)
- Add aws-otel-collector package (#50)
- Add pciutils package (#142)
- Use kubelet-device-plugins API (#132)
- Add ephemeral-storage commands (#15) - thanks @tzneal
- Add support for bootstrap commands (#62, #127)
- Update runc to 1.1.14 (#123)
- Update kernels to 5.10.224, 5.15.165 and 6.1.106 (#128, #126)
- Add Kubernetes 1.31 packages (#117)
- Apply EKS-D upstream patches for Kubernetes v1.23 to v1.26 (#121)
- Add latest instance types to eni-max-pods mapping (#120)
- Update Twoliter to 0.4.5 (#106)
- schnauzer: add reflective template helpers (#105)
- Update bottlerocket-sdk to v0.44.0 (#109)
- Third party package updates (#108)
- Fix issue where a null value would fail to render the credential provider template for Kubernetes (#101)
- Improve EBS volume udev rules by adding a symlink to
/dev/by-ebs-idand remove/dev/from the device name returned by ghostdog (#98) - Update kernels to 5.10.223-212 and 6.1.102-111 (#99)
- Add collect-kernel-config script to tools (#84)
- Update libnvidia-container to v550.54.14 and nvidia-container-toolkit to v1.16.1 (#88)
- Fix a bug in sundog that caused it to regenerate populated settings (#94)
- kubernetes 1.24, 1.25, 1.26: Apply upstream patches (#76, #77, #78)
- packages: use
GO_MAJORfor selecting Go version (#86)
- pluto: use settings SDK to parse API response (#89)
- schnauzer: add support for update repository & ecr registry in ISO-E (#91)
- ecr-credential-provider: update to 1.25.15 (#66)
- ecr-credential-provider-1.27: update to 1.27.8 (#66)
- ecr-credential-provider-1.29: update to 1.29.6 (#66)
- ecr-credential-provider-1.30: update to 1.30.3 (#66)
- soci-snapshotter: update to 0.7.0 (#66)
- Re-enable fmt and licenses lints in CI (#69)
- Use workspace dependencies for all dependencies (#70)
- Update datastore serializer to expect JSON and correctly handle null values (#80, #87)
- Update docker-engine to v25.0.6 (#55)
- nvidia-container-runtime, nvidia-k8s-device-plugin: support Nvidia settings APIs #48
- Support hostname-override-source (#59)
- Update containerd to 1.7.20 (#40)
- Update runc to 1.1.13 (#40)
- Update kernels: 5.10.220, 5.15.162, and 6.1.97 (#46)
- Add kmod-6.1-neuron-devel (#42)
- Add latest instance types to eni-max-pods mapping (#43)
- Update Twoliter to 0.4.3 (#39)
- Add libbpf (#24, thanks @ndbaker1)
- Add kube-proxy (#25, thanks @tzneal)
- Third party package updates (#28, #35, #36)
- Update rust dependencies for first-party sources (#34)
- Update kernels: 5.10.220, 5.15.161, and 6.1.96 (#29)
- Fix
diff-kernel-configto work with Core Kit (#32)
- Update kernels: 5.10.219, 5.15.160-104, and 6.1.94 (#13, #17)
- Add kmod-6.1-neuron package in core kit (#21)
- Provide SSM agent as a system service (#22)
- Enable host containers and in-place updates to be optional (#23)
- Move dockershim link to relative path (#18)
- Add mdadm packages for software RAID (#4035) - Thanks tzneal!
- Update kernels: 5.10.217, 5.15.156, and 6.1.92(#4049,#4039, #4005, #3972, #3976)
- Update containerd to 1.7.17 (#4016)
- Change pluto to act more like a settings generator (#4032)
- Update pluto for kits and Out of Tree Builds (#3828)
- Remove API Client dependency on the Settings model (#3987)
- Create CloudFormation settings extension (#4010)
- Add symlink to latest version for amazon-ssm-agent (#3986)
- Prepare os package for build system changes (#4006)
- Move to DNS settings extension (#3980)
- Move to OCI Hooks Settings Extension (#3978)
- Add Metrics Settings Extension (#3963)
- Move to PKI Settings Extension (#3971)
- Remove metadata migration (#3958)
- Remove version from makefile (#4)
- Improve cache behavior (#6)
- Twoliter updates (#8)