mirrors/talos
1
0
Fork 0
mirror of https://github.com/siderolabs/talos.git synced 2026-05-10 14:56:17 +02:00
Code Issues Packages Projects Releases Wiki Activity

docs: add API Server Cipher Suites changelog

Browse Source 
Add a changelog entry for the API Server Cipher Suites.

Signed-off-by: Mateusz Urbanek <mateusz.urbanek@siderolabs.com>
(cherry picked from commit 9945ceef37b13bc6e93637dcf395a8c9019e60ed)
This commit is contained in:
Mateusz Urbanek 2025-11-24 13:33:42 +01:00
parent fdf6fe8e62
commit 4396f09c8c
No known key found for this signature in database
GPG Key ID: F16F84591E26D77F
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
hack/release.toml
View File

@ -194,6 +194,15 @@ To avoid further issues, Talos will now only create the UEFI boot entry if it do
description = """\
The network configuration under `.machine.network` (with the exception of KubeSpan) has been deprecated, but it is still supported for backwards compatibility.
New configuration documents were created to replace it, they will be documented in the future.
"""
[notes.apiserver-cipher-suites]
title = "API Server Cipher Suites"
description = """\
The Kubernetes API server in Talos has been updated to use a more secure set of TLS cipher suites by default.
This is in line with a set of best practices documented in CIS 1.12 benchmark.
You can still expand the list of supported cipher suites via the `cluster.apiServer.extraArgs."tls-cipher-suites"` machine configuration field if needed.
"""
[make_deps]