Edge Release List

Releases marked with this icon are on the upgrade path and include upgrade instructions you should follow.

edge.25-04-03

Improves Argo Events and NATS messaging reliability, adds JetStream configuration options, enables single-platform Docker builds with skipping for existing images, and adds PostgreSQL recovery from alternate backup buckets.

Event stream replication fixed in kube_argo_event_bus — events now properly replicated across all NATS servers
Fixed NATS ACK bug that could prevent event publishing entirely
New single-platform image support and skip-if-exists logic in wf_dockerfile_build
New min_node_cpu input for kube_karpenter_node_pools

edge.25-03-26

Upgrade Instructions

Separates burstable and spot instance options, improves PostgreSQL backup performance 100x with explicit backup directories, adds automatic PV garbage collection, and enhances Node.js applications with automatic memory limit configuration.

burstable_nodes_enabled no longer implies spot — must now set spot_nodes_enabled = true explicitly
PostgreSQL backup directory is now explicit via pg_backup_directory — set this to preserve existing backups
PostgreSQL backup throughput improved 100x
Automatic garbage collection of orphaned persistent volumes via kube_policies
Node.js heap size now automatically configured from container memory limits

edge.25-03-04

Prevents unnecessary MongoDB provider generation and fixes certificate issuers to properly use Cloudflare zones when creating TLS certificates.

Fixed kube_cert_issuer to correctly use cloudflare_zones input when generating certificates

edge.25-02-28

Adds SSO modules for MongoDB Atlas and GitHub, enhances PostgreSQL WAL retention and S3 access configuration, enables node-local image caching by default, and fixes Argo event source service account issues.

New authentik_atlas_mongodb_sso and authentik_github_sso SSO modules
Node-local image caching now enabled by default in Panfactum submodules
New pg_wal_keep_size_gb and s3_bucket_access_policy inputs for kube_pg_cluster

edge.25-02-21

Adds private git repository support for first-party modules, enables cluster-wide pod labels and annotations, improves DaemonSet update performance, and fixes CI/CD pipeline and region configuration issues.

First-party IaC modules now support private git repositories via GIT_USERNAME/GIT_PASSWORD env vars
New common_pod_labels and common_pod_annotations inputs in kube_policies for cluster-wide pod metadata
DaemonSet updates now take constant time (previously scaled with node count, causing timeouts)

edge.25-02-18

Contains CI/CD pipeline issues (fixed in next release). Improves provider metadata handling, fixes version pinning in first-party modules, properly respects external replica changes, and resolves cert-manager webhook configuration.

Skip this release — causes issues in CI/CD pipelines for IaC deployments (resolved in next release)

edge.25-02-10

Upgrade Instructions

Adds wait options to speed up deployments, fixes VPA CRD management issues, ensures bastion high availability with two replicas, and resolves policy deployment conflicts during bootstrapping.

Apply kube_vpa before any other module — required ordering for this release
New wait input on Kubernetes modules — set to false to skip readiness checks for faster deploys
kube_bastion now always uses two replicas for immediate tunnel reconnection

edge.25-02-07

Contains a VPA CRD bug that affects upgrades - skip this release. Improves VPA pod eviction policies, adds PostgreSQL CPU update thresholds to prevent autoscaling thrash, and fixes several deployment issues.

Skip this release — VPA CRD bug makes upgrading to the next release difficult without manual intervention

edge.25-01-09

Adds cluster-wide environment variable injection capability, pins Bottlerocket OS AMIs to prevent node crashes from unexpected AWS updates, and fixes EKS module conditions for low SLA targets.

New common_env and common_secrets inputs in kube_policies for cluster-wide environment variable injection
Bottlerocket OS AMIs now pinned to prevent unexpected node crashes from AWS AMI updates

edge.25-01-04

Upgrade Instructions

Adds Grist spreadsheet module, introduces alternative AWS credential management, supports voluntary disruption windows, and fixes critical Kyverno cluster deadlock and Cilium deployment issues.

Apply vault_auth_oidc before any other module — required ordering for this release
kube_rbac and kube_priority_classes removed — remove deployments before applying
New kube_grist module for deploying Grist spreadsheets
Fixed critical Kyverno cluster deadlock that required manual intervention

1 2 3 4 5 Next →