Release changes since v0.18.0

None. This is a rebuild of all components to address vulnerabilities from the Go standard libraries.

To see a list of addressed vulnerabilities, please refer to #2065

Features

Fixes

API Changes

Docs

Misc

Release changes since v0.17.0

Features

#1972 by @hasanawad94: Added support for Tekton PipelineRuns as an alternative to TaskRuns for build execution. Configurable executor selection - users can now choose between TaskRun and PipelineRun executors via configuration.

Fixes

API Changes

Docs

Misc

#2042 by @hasanawad94: Action Required: The minimum supported Tekton version is now v0.68, the minimum supported Kubernetes version is now v1.32, the maximum supported Kubernetes version is now v1.34

#2025 by @shipwright-ci-bot: Update to the new latest Tekton LTS release v1.6.0

#2020 by @hasanawad94: Pointed writes to volumes and enabled readOnlyRootFilesystem in buildah,buildkit, and ko strategies.

#2015 by @hasanawad94: The source and image processing steps are now configured with ReadOnlyRootFilesystem. The default lock file path of the waiter container has been set to a volume instead of the rootfs.

#2000 by @SaschaSchwarze0: The image processing step now runs Trivy vulnerability scans with disabled telemetry

#1998 by @hasanawad94: Mounting a volume to be used as a home directory for source,build, image-processing containers.

#1996 by @shipwright-ci-bot: Update to the new latest Tekton LTS release v1.3.2

Release changes since v0.17.3

None. This is a rebuild of all components to address vulnerabilities from the Go standard libraries.

To see a list of addressed vulnerabilities, please refer to #2062

Features

Fixes

API Changes

Docs

Misc

Release changes since v0.17.2

Features

Fixes

API Changes

Docs

Misc

#2052 by @SaschaSchwarze0: Update golang.org/x/crypto to v0.45.0 to address GO-2025-4134 and GO-2025-4135

Release changes since v0.17.1

Features

Fixes

API Changes

Docs

Misc

#2036 by @SaschaSchwarze0: Update golang.org/x/crypto to v0.43.0 to address GO-2025-4116

Release changes since v0.17.0

None. This is a rebuild of all components to address vulnerabilities from the Go standard libraries.

To see a list of addressed vulnerabilities, please refer to #2023

Features

Fixes

API Changes

Docs

Misc

Changes since v0.16.0

Features

#1929 by @R3hankhan123: All Shipwright container images are now built with Redhat Universal Base Image 10 as a base, was version 9 before

#1925 by @adambkaplan: Build and BuildRun controllers will use an explicit field owner when creating and updating their respective resources.

Fixes

#1948 by @hasanawad94: Remove "" from VolumeSource fields

API Changes

#1956 by @hasanawad94: Added BuildExecutor field to Buildrun which will describe the the kind that is executing the build and also references the resource it self.

Misc

#1978 by @SaschaSchwarze0: Action Required: The minimum Kubernetes version is now v1.31, the minimum Tekton version is now v0.65

#1962 by @shipwright-ci-bot: Update to the new latest Tekton LTS release v1.3.1

#1955 by @hasanawad94: Added volumes and config for trivy to enable its cache and tmp data to be on a volume instead of root filesystem.

#1934 by @SaschaSchwarze0: Shipwright Build is now compiled with Go 1.24 instead of Go 1.23

Release changes since v0.16.12

None. This is a rebuild of all components to address vulnerabilities in the underlying base images.

To see a list of addressed vulnerabilities, please refer to #1974

Features

Fixes

API Changes

Docs

Misc

Release changes since v0.16.11

None. This is a rebuild of all components to address vulnerabilities in the underlying base images.

To see a list of addressed vulnerabilities, please refer to #1964

Features

Fixes

API Changes

Docs

Misc

Release changes since v0.16.10

None. This is a rebuild of all components to address vulnerabilities in the underlying base images.

To see a list of addressed vulnerabilities, please refer to #1961

Features

Fixes

API Changes

Docs

Misc