Sourced from github.com/coder/coder/v2's releases.
v2.18.4
Stable (since January 23, 2025)
Changelog
Bug fixes
- Return first workspace agent script timing per script (#16203, bd6f4266a) (
@DanielleMaywood)Fixes a memory leak in the dashboard and prevents startup scripts from running if the agent crashes.
- Change precedence order between coder_workspace_tags and request_tags (#16119, 803e2c767) (
@johnstcn)Fixes an issue where setting workspace tags using variables would fail.
- Fetch custom roles from workspace agent context to fix broken endpoints (#16237, 612535856) (
@Emyrk)- Examples: Persist
/home/coderinstead of/home/${local.user}on Docker template (#16190, 075269a94) (@phorcys420)Compare:
v2.18.3...v2.18.4Container image
docker pull ghcr.io/coder/coder:v2.18.4Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
6125358
fix: fetch custom roles from workspace agent context (cherry-pick #16237)
(#1...803e2c7
fix: change precedence order between coder_workspace_tags and
request_tags (#...bd6f426
fix: return first workspace agent script timing per script (cherry-pick
#1620...075269a
fix(examples/templates/docker): persist /home/coder instead
of `/home/${loc...Sourced from github.com/hashicorp/terraform-plugin-go's releases.
v0.26.0
BREAKING CHANGES:
- tfprotov5+tfprotov6:
EphemeralResourceServerinterface is now required inProviderServer. Implementations not needing ephemeral resource support can return errors from the*EphemeralResourcemethods. (#442)- tfprotov5+tfprotov6: Removed temporary
ProviderServerWithEphemeralResourcesinterface type. UseEphemeralResourceServerinstead. (#442)NOTES:
- all: To prevent compilation errors, ensure your Go module is updated to at least terraform-plugin-framework@v1.13.0, terraform-plugin-mux@v0.17.0, terraform-plugin-sdk/v2@v2.35.0, and terraform-plugin-testing@v1.11.0 before upgrading this dependency. (#442)
FEATURES:
- tfprotov5+tfprotov6: Upgraded protocols and added types to support write-only attributes (#462)
Sourced from github.com/hashicorp/terraform-plugin-go's changelog.
0.26.0 (January 22, 2025)
BREAKING CHANGES:
- tfprotov5+tfprotov6:
EphemeralResourceServerinterface is now required inProviderServer. Implementations not needing ephemeral resource support can return errors from the*EphemeralResourcemethods. (#442)- tfprotov5+tfprotov6: Removed temporary
ProviderServerWithEphemeralResourcesinterface type. UseEphemeralResourceServerinstead. (#442)NOTES:
- all: To prevent compilation errors, ensure your Go module is updated to at least terraform-plugin-framework@v1.13.0, terraform-plugin-mux@v0.17.0, terraform-plugin-sdk/v2@v2.35.0, and terraform-plugin-testing@v1.11.0 before upgrading this dependency. (#442)
FEATURES:
- tfprotov5+tfprotov6: Upgraded protocols and added types to support write-only attributes (#462)
a106af9
Update changelogeeca0d0
build(deps): Bump golang.org/x/net from 0.29.0 to 0.33.0 in /tools (#464)7ff6ef6
tfprotov5+tfprotov6: Require EphemeralResourceServer in
ProviderServer (#...afd18f1
tfprotov5+tfprotov6: Write-only Attribute Implementation (#462)707c7af
build(deps): Bump google.golang.org/protobuf from 1.36.2 to 1.36.3 (#461)f9370f2
build(deps): Bump github.com/hashicorp/terraform-registry-address (#460)5da0acf
build(deps): Bump google.golang.org/grpc from 1.69.2 to 1.69.4 (#459)a54e1cc
build(deps): Bump google.golang.org/protobuf from 1.36.1 to 1.36.2 (#458)54b2010
Result of tsccr-helper -log-level=info gha update -latest .github/ (#457)f946e2a
build(deps): Bump google.golang.org/protobuf from 1.35.2 to 1.36.1 (#455)Sourced from github.com/coder/coder/v2's releases.
v2.18.5
Stable (since January 29, 2025)
Changelog
- Migrate to coder/websocket 1.8.12 (#15898, 2c7f8ac65) (
@spikecurtis)- Update coder/tailscale to latest main (#15927, 2bba3d7b7) (
@Emyrk)Resolves SSH panic.
- Provisioner: Add support for built-in Terraform functions (#16183, 4ba0b39f0) (
@johnstcn)- Provisioner: Allow empty values in
coder_workspace_tagdefaults (#16303, 76adde91d)Compare:
v2.18.4...v2.18.5Container image
docker pull ghcr.io/coder/coder:v2.18.5Install/upgrade
Refer to our docs to install or upgrade Coder, or use a release asset below.
Sourced from goreleaser/goreleaser-action's releases.
v6.2.1
What's Changed
This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the
-prosuffix). Older versions should work fine.[!WARNING] This version is required for GoReleaser Pro v2.7.0+. Read more here.
Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v6.2.0...v6.2.1
v6.2.0
What's Changed
This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the
-prosuffix). Older versions should work fine.[!WARNING] This version is required for GoReleaser Pro v2.7.0+. Read more here.
Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v6.1.0...v6.2.0
90a3faa
chore(deps): bake vendor0262998
test: fixes450d3a4
test: fix configs25b92ab
chore(deps): update semver and tool-cachebc0ac76
chore(deps): update actions842e7cc
feat: update for goreleaser v2.7d28c982
chore(deps): bump cross-spawn from 7.0.3 to 7.0.6 (#482)Sourced from github.com/go-jose/go-jose/v4's releases.
v4.0.5
What's Changed
- Don't allow unbounded amounts of splits by
@mcpherrinmin go-jose/go-jose#167Fixes https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78
Various other dependency updates, small fixes, and documentation updates in the full changelog
New Contributors
@tgeogheganmade their first contribution in go-jose/go-jose#161Full Changelog: https://github.com/go-jose/go-jose/compare/v4.0.4...v4.0.5
Version 4.0.4
Fixed
- Reverted "Allow unmarshalling JSONWebKeySets with unsupported key types" as a breaking change. See #136 / #137.
Version 4.0.3
Changed
Sourced from github.com/go-jose/go-jose/v4's changelog.
v4.0.4
Fixed
- Reverted "Allow unmarshalling JSONWebKeySets with unsupported key types" as a breaking change. See #136 / #137.
v4.0.3
Changed
99b346c
Don't allow unbounded amounts of splits (#167)22811e7
Fix broken link in README.md (#161)9dde849
Remove CLA mentions from CONTRIBUTING.md (#160)89172c5
Bump golang.org/x/crypto from 0.31.0 to 0.32.0 (#158)ee05e01
Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#157)c0aef3e
Bump golang.org/x/crypto from 0.25.0 to 0.31.0 (#156)fdc2ceb
Remove export disclaimer (#146)10c69ef
Short circuit return errors from JSONWebKey.UnmarshalJSON()
(#141)15bc4c2
Update CHANGELOG for 4.0.4 (#138)f3534ca
Revert #130:
JSONWebKeySet: ignore unsupported key types (#137)Sourced from github.com/docker/docker's releases.
v28.0.0
28.0.0
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
- docker/cli, 28.0.0 milestone
- moby/moby, 28.0.0 milestone
- Deprecated and removed features, see Deprecated Features.
- Changes to the Engine API, see API version history.
New
- Add ability to mount an image inside a container via
--mount type=image. moby/moby#48798
- You can also specify
--mount type=image,image-subpath=[subpath],...option to mount a specific path from the image. docker/cli#5755docker images --treenow shows metadata badges. docker/cli#5744docker load,docker save, anddocker historynow support a--platformflag allowing you to choose a specific platform for single-platform operations on multi-platform images. docker/cli#5331- Add
OOMScoreAdjtodocker service createanddocker stack. docker/cli#5145docker buildx prunenow supportsreserved-space,max-used-space,min-free-spaceandkeep-bytesfilters. moby/moby#48720- Windows: Add support for running containerd as a child process of the daemon, instead of using a system-installed containerd. moby/moby#47955
Networking
- The
docker-proxybinary has been updated, older versions will not work with the updateddockerd. moby/moby#48132
- Close a window in which the userland proxy (
docker-proxy) could accept TCP connections, that would then fail afteriptablesNAT rules were set up.- The executable
rootlesskit-docker-proxyis no longer used, it has been removed from the build and distribution.- DNS nameservers read from the host's
/etc/resolv.confare now always accessed from the host's network namespace. moby/moby#48290
- When the host's
/etc/resolv.confcontains no nameservers and there are no--dnsoverrides, Google's DNS servers are no longer used, apart from by the default bridge network and in build containers.- Container interfaces in bridge and macvlan networks now use randomly generated MAC addresses. moby/moby#48808
- Gratuitous ARP / Neighbour Advertisement messages will be sent when the interfaces are started so that, when IP addresses are reused, they're associated with the newly generated MAC address.
- IPv6 addresses in the default bridge network are now IPAM-assigned, rather than being derived from the MAC address.
- The deprecated OCI
prestarthook is now only used by build containers. For other containers, network interfaces are added to the network namespace after task creation is complete, before the container task is started. moby/moby#47406- Add a new
gw-priorityoption todocker run,docker container create, anddocker network connect. This option will be used by the Engine to determine which network provides the default gateway for a container. Ondocker run, this option is only available through the extended--networksyntax. docker/cli#5664- Add a new netlabel
com.docker.network.endpoint.ifnameto customize the interface name used when connecting a container to a network. It's supported by all built-in network drivers on Linux. moby/moby#49155
- When a container is created with multiple networks specified, there's no guarantee on the order networks will be connected to the container. So, if a custom interface name uses the same prefix as the auto-generated names, for example
eth, the container might fail to start.- The recommended practice is to use a different prefix, for example
en0, or a numerical suffix high enough to never collide, for exampleeth100.- This label can be specified on
docker network connectvia the--driver-optflag, for exampledocker network connect --driver-opt=com.docker.network.endpoint.ifname=foobar ….- Or via the long-form
--networkflag ondocker run, for exampledocker run --network=name=bridge,driver-opt=com.docker.network.endpoint.ifname=foobar …- If a custom network driver reports capability
GwAllocCheckerthen, before a network is created, it will get aGwAllocCheckerRequestwith the network's options. The custom driver may then reply that no gateway IP address should be allocated. moby/moby#49372Port publishing in bridge networks
dockerdnow requiresipsetsupport in the Linux kernel. moby/moby#48596
- The
iptablesandip6tablesrules used to implement port publishing and network isolation have been extensively modified. This enables some of the following functional changes, and is a first step in refactoring to enable nativenftablessupport in a future release. moby/moby#48815- If it becomes necessary to downgrade to an earlier version of the daemon, some manual cleanup of the new rules will be necessary. The simplest and surest approach is to reboot the host, or use
iptables -Fandip6tables -Fto flush all existingiptablesrules from thefiltertable before starting the older version of the daemon. When that is not possible, run the following commands as root:
iptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPTiptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -j DOCKER; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -j DOCKER- If you were previously running with the iptables filter-FORWARD policy set to
ACCEPTand need to restore access to unpublished ports, also delete per-bridge-network rules from theDOCKERchains. For example,iptables -D DOCKER ! -i docker0 -o docker0 -j DROP.- Fix a security issue that was allowing remote hosts to connect directly to a container on its published ports. moby/moby#49325
- Fix a security issue that was allowing neighbor hosts to connect to ports mapped on a loopback address. moby/moby#49325
... (truncated)
af898ab
Merge pull request #49495
from vvoland/update-buildkitd67f035
vendor: github.com/moby/buildkit v0.20.000ab386
Merge pull request #49491
from vvoland/update-buildkit1fde8c4
builder-next: fix cdi managercde9f07
vendor: github.com/moby/buildkit v0.20.0-rc389e1429
Merge pull request #49490
from thaJeztah/dockerfile_lintingb2b5590
Dockerfile: fix linting warnings62bc597
Merge pull request #49480
from thaJeztah/docs_api_1.48670cd81
Merge pull request #49485
from vvoland/c8d-list-panica3628f3
docs/api: add documentation for API v1.48Sourced from github.com/hashicorp/terraform-plugin-framework-validators's releases.
v0.17.0
FEATURES:
- boolvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- dynamicvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- float32validator: Added
PreferWriteOnlyAttributevalidator (#263)- float64validator: Added
PreferWriteOnlyAttributevalidator (#263)- int32validator: Added
PreferWriteOnlyAttributevalidator (#263)- int64validator: Added
PreferWriteOnlyAttributevalidator (#263)- listvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- mapvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- numbervalidator: Added
PreferWriteOnlyAttributevalidator (#263)- objectvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- resourcevalidator: Added
PreferWriteOnlyAttributevalidator (#263)- setvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- stringvalidator: Added
PreferWriteOnlyAttributevalidator (#263)
Sourced from github.com/hashicorp/terraform-plugin-framework-validators's changelog.
0.17.0 (February 19, 2025)
FEATURES:
- boolvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- dynamicvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- float32validator: Added
PreferWriteOnlyAttributevalidator (#263)- float64validator: Added
PreferWriteOnlyAttributevalidator (#263)- int32validator: Added
PreferWriteOnlyAttributevalidator (#263)- int64validator: Added
PreferWriteOnlyAttributevalidator (#263)- listvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- mapvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- numbervalidator: Added
PreferWriteOnlyAttributevalidator (#263)- objectvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- resourcevalidator: Added
PreferWriteOnlyAttributevalidator (#263)- setvalidator: Added
PreferWriteOnlyAttributevalidator (#263)- stringvalidator: Added
PreferWriteOnlyAttributevalidator (#263)
75974fc
Update changelog13b6d4d
Add PreferWriteOnlyAttribute() validators to
resourcevalidator and all va...6be3c39
build(deps): bump github.com/hashicorp/terraform-plugin-framework (#266)47cad1b
Result of tsccr-helper -log-level=info gha update -latest .github/ (#264)e0fa613
Update golangci config and resolve copyloopvar (#265)e0dda54
Result of tsccr-helper -log-level=info gha update -latest .github/ (#262)08b59e2
Result of tsccr-helper -log-level=info gha update -latest .github/ (#261)c534568
build(deps): bump github.com/hashicorp/copywrite in /tools (#260)bcaf368
build(deps): bump golang.org/x/net from 0.23.0 to 0.33.0 in /tools (#259)9d17e39
Result of tsccr-helper -log-level=info gha update -latest .github/ (#257)Sourced from github.com/hashicorp/terraform-plugin-framework's releases.
v1.14.1
BUG FIXES:
- internal/fwserver: fixed bug where write-only attributes set in configuration would cause perpetual diffs for computed attributes. (#1097)
v1.14.0
NOTES:
- Write-only attribute support is in technical preview and offered without compatibility promises until Terraform 1.11 is generally available. (#1044)
- ephemeral: Ephemeral resources are now considered generally available and protected by compatibility promises. (#1052)
FEATURES:
- resource/schema: Added
WriteOnlyschema field for managed resource schemas to indicate a write-only attribute. Write-only attribute values are not saved to the Terraform plan or state artifacts. (#1044)BUG FIXES:
Sourced from github.com/hashicorp/terraform-plugin-framework's changelog.
1.14.1 (February 20, 2025)
BUG FIXES:
- internal/fwserver: fixed bug where write-only attributes set in configuration would cause perpetual diffs for computed attributes. (#1097)
1.14.0 (February 19, 2025)
NOTES:
- Write-only attribute support is in technical preview and offered without compatibility promises until Terraform 1.11 is generally available. (#1044)
- ephemeral: Ephemeral resources are now considered generally available and protected by compatibility promises. (#1052)
FEATURES:
- resource/schema: Added
WriteOnlyschema field for managed resource schemas to indicate a write-only attribute. Write-only attribute values are not saved to the Terraform plan or state artifacts. (#1044)BUG FIXES:
083644c
Update changelog3000d8c
internal/fwserver: Move write-only nullification to earlier in
PlanResourceCh...7c9193d
Update changelog8288f62
Result of tsccr-helper -log-level=info gha update -latest .github/ (#1094)ecd80f6
resource/schema: Add validation to prevent write-only attributes in sets
and ...0724df1
Improve dynamic attribute internal validation handling (#1090)d91ccc1
docs: Remove experimental verbiage from ephemeral resources (#1092)fbfbe5c
chore: Update golangci-lint linters and apply fixes (#1091)bf1d023
internal/fwschemadata: Rewrite SetValue semantic equality
logic to ignore o...e1e6866
Add support for write only attributes (#1044)Sourced from github.com/hashicorp/terraform-plugin-docs's releases.
v0.21.0
FEATURES:
- generate: Add support for write-only arguments (#434)
Sourced from github.com/hashicorp/terraform-plugin-docs's changelog.
0.21.0 (February 27, 2025)
FEATURES:
- generate: Add support for write-only arguments (#434)
34ba7c2
Update changelog660c8d8
Result of tsccr-helper -log-level=info gha update -latest .github/ (#452)2ad3f4c
Bump github.com/hashicorp/copywrite from 0.20.0 to 0.21.0 in /tools (#450)e36f96d
generate: Add hyperlinks to user documentation and version callouts for
write...80d1c8e
Result of tsccr-helper -log-level=info gha update -latest .github/ (#449)411d870
Added write-only support to generate (#434)40e402f
Bump golang.org/x/text from 0.21.0 to 0.22.0 (#444)e77d9f6
Bump github.com/hashicorp/cli from 1.1.6 to 1.1.7 (#441)ecbdcf3
Result of tsccr-helper -log-level=info gha update -latest .github/ (#443)301169a
Bump github.com/bmatcuk/doublestar/v4 from 4.8.0 to 4.8.1 (#440)Sourced from github.com/docker/docker's releases.
v28.0.1
28.0.1
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Networking
- Remove dependency on kernel modules
ip_set,ip_set_hash_netandnetfilter_xt_set.
- The dependency was introduced in release 28.0.0 but proved too disruptive. The iptables rules using these modules have been replaced. moby/moby#49530
- Allow daemon startup on a host with IPv6 disabled without requiring
--ip6tables=false. moby/moby#49525- Fix a bug that was causing containers with
--restart=alwaysand a published port already in use to restart in a tight loop. moby/moby#49507- Fix an issue with Swarm ingress, caused by incorrect ordering of iptables rules. moby/moby#49538
- Fix creation of a swarm-scoped network from a
--config-onlynetwork. moby/moby#49521- Fix
docker network inspectreporting an IPv6 gateway with CIDR suffix for a newly created network with no specific IPAM config, until a daemon restart. moby/moby#49520- Improve the error reported when kernel modules
ip_set,ip_set_hash_netandnetilter_xt_setare not available. moby/moby#49524- Move most of Docker's iptables rules out of the filter-FORWARD chain, so that other applications are free to append rules that must follow Docker's rules. moby/moby#49518
- Update
--helpoutput and man page lo state which options only apply to the default bridge network. moby/moby#49522Bug fixes and enhancements
- Fix
docker context createalways returning an error when using the"skip-tls-verify"option. docker/cli#5850- Fix shell completion suggesting IDs instead of names for services and nodes. docker/cli#5848
- Fix unintentionally printing exit status to standard error output when
docker exec/runreturns a non-zero status. docker/cli#5854- Fix regression
protocol "tcp" is not supported by the RootlessKit port driver "slirp4netns". moby/moby#49514- containerd image store: Fix
docker inspectnot being able to show multi-platform images with missing layers for all platforms. moby/moby#49533- containerd image store: Fix
docker images --treereporting wrong content size. moby/moby#49535- Fix compilation on i386 moby/moby#49526
Packaging updates
- Update
github.com/go-jose/go-jose/v4to v4.0.5 to address. GHSA-c6gw-w398-hv78 / CVE-2025-27144 docker/cli#5867- Update Buildx to v0.21.1. docker/docker-ce-packaging#1167
- Update Compose to v2.33.1. docker/docker-ce-packaging#1168
API
- containerd image store: Fix
GET /images/json?manifests=1not fillingManifestsfor index-only images. moby/moby#49533- containerd image store: Fix
GET /images/json and /images/<name>/jsonSize.Contentfield including the size of content that's not available locally. moby/moby#49535
bbd0a17
Merge pull request #49538
from robmry/docker_ingress8ae4858
Merge pull request #49545
from robmry/revert_check-config_ipset1814363
Revert "contrib/check-config: add ipset related flags"558da63
Jump to DOCKER-INGRESS from DOCKER-FORWARDf92fdfe
Merge pull request #49530
from robmry/disable_ip_set88bc9a3
Merge pull request #49535
from vvoland/c8d-fixcontentsize76417bf
Don't use ipsetc35159e
c8d/manifests: Fix Content size including missing content0510499
Merge pull request #49533
from vvoland/c8d-inspectlist-indeximg0274c63
Merge pull request #49518
from robmry/docker_forward_chain