diff --git a/CHANGELOG.md b/CHANGELOG.md
index fc50459809174..545a25b4de09b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,53 @@
# Changelog
+## 11.3.25 (09/20/23)
+
+### Security fixes
+
+#### [Critical] Privilege escalation via host user creation
+
+When using automatic Linux user creation, an attacker could exploit a race
+condition in the user creation functionality to create arbitrary files on the
+system as root writable by the created user.
+
+This could allow the attacker to escalate their privileges to root.
+
+Users who aren't using automatic Linux host user creation aren’t affected by
+this vulnerability.
+
+[#32208](https://github.com/gravitational/teleport/pull/32208)
+
+#### [High] Insufficient auth token verification when signing self-hosted database certificates
+
+When signing self-hosted database certificates, Teleport did not sufficiently
+validate the authorization token type.
+
+This could allow an attacker to sign valid database access certificates using a
+guessed authorization token name.
+
+Users who aren’t using self-hosted database access aren’t affected by this
+vulnerability.
+
+[#32217](https://github.com/gravitational/teleport/pull/32217)
+
+#### [High] Privilege escalation via untrusted config file on Windows
+
+When loading the global tsh configuration file tsh.yaml on Windows, Teleport
+would look for the file in a potentially untrusted directory.
+
+This could allow a malicious user to create harmful command aliases for all tsh
+users on the system.
+
+Users who aren’t using tsh on Windows aren’t affected by this vulnerability.
+
+[#32225](https://github.com/gravitational/teleport/pull/32225)
+
+### Other fixes and improvements
+
+* Fixed directory sharing in Desktop Access for non-ascii directory names. [#31922](https://github.com/gravitational/teleport/pull/31922)
+* Fixed desktop sessions' viewport size to the size of browser window at session start. [#31522](https://github.com/gravitational/teleport/pull/31522)
+* Updated OpenSSL to 3.0.11 [#32167](https://github.com/gravitational/teleport/pull/32167)
+
## 11.3.23 (09/06/23)
* Updated Go to `v1.20.8`. [#31509](https://github.com/gravitational/teleport/pull/31509)
diff --git a/Makefile b/Makefile
index 9cf5ce15cc21f..acbe9c8900c9a 100644
--- a/Makefile
+++ b/Makefile
@@ -11,7 +11,7 @@
# Stable releases: "1.0.0"
# Pre-releases: "1.0.0-alpha.1", "1.0.0-beta.2", "1.0.0-rc.3"
# Master/dev branch: "1.0.0-dev"
-VERSION=11.3.23
+VERSION=11.3.25
DOCKER_IMAGE ?= teleport
diff --git a/api/version.go b/api/version.go
index adabec64b06d0..4fabb38efc51b 100644
--- a/api/version.go
+++ b/api/version.go
@@ -3,7 +3,7 @@
package api
const (
- Version = "11.3.23"
+ Version = "11.3.25"
)
// Gitref variable is automatically set to the output of git-describe
diff --git a/build.assets/macos/tsh/tsh.app/Contents/Info.plist b/build.assets/macos/tsh/tsh.app/Contents/Info.plist
index 19f7461fc8d5d..9f644a191128c 100644
--- a/build.assets/macos/tsh/tsh.app/Contents/Info.plist
+++ b/build.assets/macos/tsh/tsh.app/Contents/Info.plist
@@ -19,13 +19,13 @@
CFBundlePackageType
APPL
CFBundleShortVersionString
- 11.3.23
+ 11.3.25
CFBundleSupportedPlatforms
MacOSX
CFBundleVersion
- 11.3.23
+ 11.3.25
DTCompiler
com.apple.compilers.llvm.clang.1_0
DTPlatformBuild
diff --git a/build.assets/macos/tshdev/tsh.app/Contents/Info.plist b/build.assets/macos/tshdev/tsh.app/Contents/Info.plist
index c866249b90f15..8868c1f2e93ad 100644
--- a/build.assets/macos/tshdev/tsh.app/Contents/Info.plist
+++ b/build.assets/macos/tshdev/tsh.app/Contents/Info.plist
@@ -17,13 +17,13 @@
CFBundlePackageType
APPL
CFBundleShortVersionString
- 11.3.23
+ 11.3.25
CFBundleSupportedPlatforms
MacOSX
CFBundleVersion
- 11.3.23
+ 11.3.25
DTCompiler
com.apple.compilers.llvm.clang.1_0
DTPlatformBuild
diff --git a/examples/chart/teleport-cluster/Chart.yaml b/examples/chart/teleport-cluster/Chart.yaml
index eed92ce68721f..d2c8130726f92 100644
--- a/examples/chart/teleport-cluster/Chart.yaml
+++ b/examples/chart/teleport-cluster/Chart.yaml
@@ -1,4 +1,4 @@
-.version: &version "11.3.23"
+.version: &version "11.3.25"
name: teleport-cluster
apiVersion: v2
diff --git a/examples/chart/teleport-cluster/charts/teleport-operator/Chart.yaml b/examples/chart/teleport-cluster/charts/teleport-operator/Chart.yaml
index 21afa160f5078..1b3044c925839 100644
--- a/examples/chart/teleport-cluster/charts/teleport-operator/Chart.yaml
+++ b/examples/chart/teleport-cluster/charts/teleport-operator/Chart.yaml
@@ -1,4 +1,4 @@
-.version: &version "11.3.23"
+.version: &version "11.3.25"
name: teleport-operator
apiVersion: v2
diff --git a/examples/chart/teleport-cluster/tests/__snapshot__/deployment_test.yaml.snap b/examples/chart/teleport-cluster/tests/__snapshot__/deployment_test.yaml.snap
index 3fd2e9247961d..ae9434803bd38 100644
--- a/examples/chart/teleport-cluster/tests/__snapshot__/deployment_test.yaml.snap
+++ b/examples/chart/teleport-cluster/tests/__snapshot__/deployment_test.yaml.snap
@@ -3,7 +3,7 @@ sets Deployment annotations when specified:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -45,7 +45,7 @@ sets Pod annotations when specified:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -87,7 +87,7 @@ should add PersistentVolumeClaim as volume when in custom mode and persistence.e
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -129,7 +129,7 @@ should add PersistentVolumeClaim as volume when in standalone mode and persisten
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -168,7 +168,7 @@ should add PersistentVolumeClaim as volume when in standalone mode and persisten
claimName: RELEASE-NAME
should add an operator side-car when operator is enabled:
1: |
- image: public.ecr.aws/gravitational/teleport-operator:11.3.23
+ image: public.ecr.aws/gravitational/teleport-operator:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@@ -206,7 +206,7 @@ should add emptyDir for data in AWS mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -259,7 +259,7 @@ should add emptyDir for data in GCP mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -307,7 +307,7 @@ should add insecureSkipProxyTLSVerify to args when set in values:
- args:
- --diag-addr=0.0.0.0:3000
- --insecure
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -349,7 +349,7 @@ should add named PersistentVolumeClaim as volume when in custom mode and persist
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -392,7 +392,7 @@ should add named PersistentVolumeClaim as volume when in custom mode and persist
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -482,7 +482,7 @@ should expose diag port:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -524,7 +524,7 @@ should have Recreate strategy in standalone mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -578,7 +578,7 @@ should have multiple replicas when replicaCount is set:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -632,7 +632,7 @@ should mount ConfigMap for config in AWS mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -685,7 +685,7 @@ should mount ConfigMap for config in GCP mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -732,7 +732,7 @@ should mount ConfigMap for config in custom mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -774,7 +774,7 @@ should mount ConfigMap for config in standalone mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -828,7 +828,7 @@ should mount GCP credentials for initContainer in GCP mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -901,7 +901,7 @@ should mount GCP credentials in GCP mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -960,7 +960,7 @@ should mount TLS certs for initContainer when cert-manager is enabled:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1042,7 +1042,7 @@ should mount TLS certs when cert-manager is enabled:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1107,7 +1107,7 @@ should mount cert-manager TLS secret when highAvailability.certManager.enabled i
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1155,7 +1155,7 @@ should mount extraVolumes and extraVolumeMounts:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1205,7 +1205,7 @@ should mount tls.existingCASecretName and set environment when set in values:
env:
- name: SSL_CERT_FILE
value: /etc/teleport-tls-ca/ca.pem
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1264,7 +1264,7 @@ should mount tls.existingCASecretName and set extra environment when set in valu
value: some-value
- name: SSL_CERT_FILE
value: /etc/teleport-tls-ca/ca.pem
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1318,7 +1318,7 @@ should mount tls.existingSecretName when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1366,7 +1366,7 @@ should not add PersistentVolumeClaim as volume when in custom mode and persisten
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1407,7 +1407,7 @@ should not add PersistentVolumeClaim as volume when in standalone mode and persi
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1449,7 +1449,7 @@ should not add PersistentVolumeClaim as volume when in standalone mode and persi
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1491,7 +1491,7 @@ should not add PersistentVolumeClaim as volume when in standalone mode and persi
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1574,7 +1574,7 @@ should not have more than one replica in standalone mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1628,7 +1628,7 @@ should not have strategy in AWS mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1681,7 +1681,7 @@ should not have strategy in GCP mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1728,7 +1728,7 @@ should not have strategy in custom mode:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1770,7 +1770,7 @@ should not mount TLS secrets when when highAvailability.certManager.enabled is f
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1824,7 +1824,7 @@ should not mount secret when credentialSecretName is blank in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1865,7 +1865,7 @@ should not set securityContext when is empty object (default value):
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1910,7 +1910,7 @@ should provision initContainer correctly when set in values:
env:
- name: SOME_ENVIRONMENT_VARIABLE
value: some-value
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1986,7 +1986,7 @@ should set affinity when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2031,7 +2031,7 @@ should set environment when extraEnv set in values:
env:
- name: SOME_ENVIRONMENT_VARIABLE
value: some-value
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2073,7 +2073,7 @@ should set imagePullPolicy when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: Always
livenessProbe:
failureThreshold: 6
@@ -2115,7 +2115,7 @@ should set nodeSelector when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2160,7 +2160,7 @@ should set postStart command if set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
lifecycle:
postStart:
@@ -2208,7 +2208,7 @@ should set priorityClassName when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2251,7 +2251,7 @@ should set probeTimeoutSeconds when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2303,7 +2303,7 @@ should set required affinity when highAvailability.requireAntiAffinity is set:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2344,7 +2344,7 @@ should set resources when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2393,7 +2393,7 @@ should set securityContext when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2454,7 +2454,7 @@ should set tolerations when set in values:
containers:
- args:
- --diag-addr=0.0.0.0:3000
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
diff --git a/examples/chart/teleport-kube-agent/Chart.yaml b/examples/chart/teleport-kube-agent/Chart.yaml
index 586d1503ebf88..e27b7dd684ad3 100644
--- a/examples/chart/teleport-kube-agent/Chart.yaml
+++ b/examples/chart/teleport-kube-agent/Chart.yaml
@@ -1,4 +1,4 @@
-.version: &version "11.3.23"
+.version: &version "11.3.25"
name: teleport-kube-agent
apiVersion: v2
diff --git a/examples/chart/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap b/examples/chart/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap
index 1c7e28dc95da4..76669a2831ffe 100644
--- a/examples/chart/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap
+++ b/examples/chart/teleport-kube-agent/tests/__snapshot__/deployment_test.yaml.snap
@@ -30,7 +30,7 @@ sets Deployment annotations when specified if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -101,7 +101,7 @@ sets Deployment labels when specified if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -159,7 +159,7 @@ sets Pod annotations when specified if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -217,7 +217,7 @@ sets Pod labels when specified if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -275,7 +275,7 @@ should add emptyDir for data when existingDataVolume is not set if action is Upg
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -334,7 +334,7 @@ should add insecureSkipProxyTLSVerify to args when set in values if action is Up
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -392,7 +392,7 @@ should correctly configure existingDataVolume when set if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -448,7 +448,7 @@ should expose diag port if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -518,7 +518,7 @@ should have multiple replicas when replicaCount is set (using .replicaCount, dep
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -588,7 +588,7 @@ should have multiple replicas when replicaCount is set (using highAvailability.r
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -646,7 +646,7 @@ should have one replica when replicaCount is not set if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -704,7 +704,7 @@ should mount extraVolumes and extraVolumeMounts if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -769,7 +769,7 @@ should mount tls.existingCASecretName and set environment when set in values if
value: "true"
- name: SSL_CERT_FILE
value: /etc/teleport-tls-ca/ca.pem
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -837,7 +837,7 @@ should mount tls.existingCASecretName and set extra environment when set in valu
value: http://username:password@my.proxy.host:3128
- name: SSL_CERT_FILE
value: /etc/teleport-tls-ca/ca.pem
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -901,7 +901,7 @@ should provision initContainer correctly when set in values if action is Upgrade
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -995,7 +995,7 @@ should set SecurityContext if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1073,7 +1073,7 @@ should set affinity when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1131,7 +1131,7 @@ should set default serviceAccountName when not set in values if action is Upgrad
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1202,7 +1202,7 @@ should set environment when extraEnv set in values if action is Upgrade:
value: "true"
- name: HTTPS_PROXY
value: http://username:password@my.proxy.host:3128
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1318,7 +1318,7 @@ should set imagePullPolicy when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: Always
livenessProbe:
failureThreshold: 6
@@ -1376,7 +1376,7 @@ should set nodeSelector if set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1436,7 +1436,7 @@ should set not set priorityClassName when not set in values if action is Upgrade
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1506,7 +1506,7 @@ should set preferred affinity when more than one replica is used if action is Up
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1564,7 +1564,7 @@ should set priorityClassName when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1623,7 +1623,7 @@ should set probeTimeoutSeconds when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1691,7 +1691,7 @@ should set required affinity when highAvailability.requireAntiAffinity is set if
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1749,7 +1749,7 @@ should set resources when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1814,7 +1814,7 @@ should set serviceAccountName when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1872,7 +1872,7 @@ should set tolerations when set in values if action is Upgrade:
env:
- name: TELEPORT_INSTALL_METHOD_HELM_KUBE_AGENT
value: "true"
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
diff --git a/examples/chart/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap b/examples/chart/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap
index f56ed6236fefc..68aeb8c9a7cd4 100644
--- a/examples/chart/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap
+++ b/examples/chart/teleport-kube-agent/tests/__snapshot__/statefulset_test.yaml.snap
@@ -16,7 +16,7 @@ sets Pod annotations when specified:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -84,7 +84,7 @@ sets Pod labels when specified:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -176,7 +176,7 @@ sets StatefulSet labels when specified:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -255,7 +255,7 @@ should add insecureSkipProxyTLSVerify to args when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -323,7 +323,7 @@ should add volumeClaimTemplate for data volume when using StatefulSet and action
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -411,7 +411,7 @@ should add volumeClaimTemplate for data volume when using StatefulSet and is Fre
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -489,7 +489,7 @@ should add volumeMount for data volume when using StatefulSet:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -557,7 +557,7 @@ should expose diag port:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -625,7 +625,7 @@ should generate Statefulset when storage is disabled and mode is a Upgrade:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -707,7 +707,7 @@ should have multiple replicas when replicaCount is set (using .replicaCount, dep
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -787,7 +787,7 @@ should have multiple replicas when replicaCount is set (using highAvailability.r
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -855,7 +855,7 @@ should have one replica when replicaCount is not set:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -923,7 +923,7 @@ should install Statefulset when storage is disabled and mode is a Fresh Install:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -993,7 +993,7 @@ should mount extraVolumes and extraVolumeMounts:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1068,7 +1068,7 @@ should mount tls.existingCASecretName and set environment when set in values:
value: RELEASE-NAME
- name: SSL_CERT_FILE
value: /etc/teleport-tls-ca/ca.pem
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1148,7 +1148,7 @@ should mount tls.existingCASecretName and set extra environment when set in valu
value: /etc/teleport-tls-ca/ca.pem
- name: HTTPS_PROXY
value: http://username:password@my.proxy.host:3128
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1224,7 +1224,7 @@ should not add emptyDir for data when using StatefulSet:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1292,7 +1292,7 @@ should provision initContainer correctly when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1396,7 +1396,7 @@ should set SecurityContext:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1484,7 +1484,7 @@ should set affinity when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1552,7 +1552,7 @@ should set default serviceAccountName when not set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1633,7 +1633,7 @@ should set environment when extraEnv set in values:
value: RELEASE-NAME
- name: HTTPS_PROXY
value: http://username:password@my.proxy.host:3128
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1769,7 +1769,7 @@ should set imagePullPolicy when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: Always
livenessProbe:
failureThreshold: 6
@@ -1837,7 +1837,7 @@ should set nodeSelector if set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1919,7 +1919,7 @@ should set preferred affinity when more than one replica is used:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -1987,7 +1987,7 @@ should set probeTimeoutSeconds when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2065,7 +2065,7 @@ should set required affinity when highAvailability.requireAntiAffinity is set:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2133,7 +2133,7 @@ should set resources when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2208,7 +2208,7 @@ should set serviceAccountName when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2276,7 +2276,7 @@ should set storage.requests when set in values and action is an Upgrade:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2344,7 +2344,7 @@ should set storage.storageClassName when set in values and action is an Upgrade:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
@@ -2412,7 +2412,7 @@ should set tolerations when set in values:
fieldPath: metadata.namespace
- name: RELEASE_NAME
value: RELEASE-NAME
- image: public.ecr.aws/gravitational/teleport:11.3.23
+ image: public.ecr.aws/gravitational/teleport:11.3.25
imagePullPolicy: IfNotPresent
livenessProbe:
failureThreshold: 6
diff --git a/version.go b/version.go
index 16def1c7d7bb6..da22e840a164f 100644
--- a/version.go
+++ b/version.go
@@ -3,7 +3,7 @@
package teleport
const (
- Version = "11.3.23"
+ Version = "11.3.25"
)
// Gitref variable is automatically set to the output of git-describe