Anchore Enterprise Release Notes - Version 5.8.1
Anchore Enterprise v5.8.1
Anchore Enterprise release v5.8.1 contains targeted fixes and improvements.
Attention Feed Service
In the future v5.10.0 release, the Feed Service will be obsolete and replaced by a new Enterprise service that will import feed data directly from Anchore every six (6) hours. The future v5.9.0 release will be the last to use the Feed Service on-premises. The v5.10.0 release will also provide enhanced support for air-gapped deployments. The goal of this change is to reduce operational burden for our end users and allow for faster response to changes in upstream data providers. More information about this migration will be provided leading up to the release of v5.10.0.Enterprise Service Updates
Requirements
- If upgrading from a v4.x release, please refer to the v4.x –> v5.x Migration Guide.
- If upgrading from a release in the range of v5.0.0 - v5.3.0
- The upgrade will result in an automatic schema change that will require database downtime. We are anticipating that this schema change may take more than an hour to complete depending on the amount of data in your reporting system.
- If your Anchore Enterprise deployment is on FIPS enabled hosts and your database is being hosted on Amazon RDS, an upgrade to Postgres 16 or greater is required. For more information please see the FIPS section in Requirements.
- If upgrading from a release in the range of v5.4.x - v5.6.0
- The upgrade will result in an automatic schema change that will require database downtime. We expect that this could take up to 2 hours depending on the amount of data in your system.
- If upgrading from the v5.7.0 release
- The upgrade will result in an automatic schema change that will require minimal database downtime.
- If upgrading from the v5.8.0 release, no additional action is needed.
Fixes
- Resolves an issue in the
kev listpolicy trigger added in v5.8.0 that prevented it from trigger on vulnerabilities matched from some data sources.
Deprecations
- Support for OpenStack Swift, which is an open-source object storage system, has been deprecated. Please see Object Storage for a list of supported Object Stores.
- Package Feeds and Policy Gates for
Ruby GemsandNPMs, are now deprecated. Please contact Anchore Support for more information. - The enterprise-gitlab-scan plugin is being deprecated in favor of using AnchoreCTL directly in your pipelines. Please see GitLab for more information on integrating Anchore Enterprise with GitLab.
- The Feed Service is deprecated in v5.8.0. Starting in v5.10.0 a new service will be introduced to synchronize Feed data from Anchore.
Recommended Component Versions
| Component | Supported Version | Helm Chart Version | Additional Info |
|---|---|---|---|
| Enterprise | v5.8.1 | v2.9.1 | With Syft v1.9.0 and Grype v0.79.3 |
| Enterprise Feeds | v5.8.1 | v2.8.1 | |
| Enterprise UI | v5.8.0 | ||
| AnchoreCTL | v5.8.1 | Deploying AnchoreCTL | |
| Anchore ECS Inventory | v1.3.1 | v0.0.8 | https://github.com/anchore/ecs-inventory |
| Anchore Kubernetes Inventory | v1.6.2 | v0.4.3 | https://github.com/anchore/k8s-inventory |
| Kubernetes Admission Controller | v0.6.2 | v0.6.2 | https://github.com/anchore/kubernetes-admission-controller |
| Jenkins Plugin | v3.1.2 | https://plugins.jenkins.io/anchore-container-scanner | |
| Harbor Scanner Adapter | v1.3.4 | https://github.com/anchore/harbor-scanner-adapter | |
| enterprise-gitlab-scan | v5.0.0 | docker.io/anchore/enterprise-gitlab-scan:v5.0.0 |
Anchore Helm Chart can be found at https://github.com/anchore/anchore-charts
Last modified September 30, 2024