Deckhouse

Latest version: v0.4.11

Safety actively analyzes 714973 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 8 of 72

1.61.0

Know before update


* Cluster will upgrade Kubernetes version to `1.27` if the [kubernetesVersion](https://deckhouse.io/documentation/v1/installing/configuration.html#clusterconfiguration-kubernetesversion) parameter is set to `Automatic`.
* Support for Istio 1.12 and 1.13 has been discontinued. The DKP update will not take place if Istio 1.12 or 1.13 is in use in the cluster.

Major changes

* **Ubuntu 24.04** support has been added.
* **Support for NGINX Ingress Controller 1.10** (that includes support for Nginx 1.25 and HTTP/3) has been added. Note that there may be incompatibility of directives at the configuration-snippet level and more. Also, in version 1.10, GeoIP support has been dropped in favor of GeoIP2.
* The new **static-routing-manager** module. The module allows using Kubernetes resources to manage static routing ([RoutingTable](https://deckhouse.io/documentation/v1.61/modules/025-static-routing-manager/cr.html#routingtable) resource) and routing policies (policy routing, [IPRuleSet](https://deckhouse.io/documentation/v1.61/modules/025-static-routing-manager/cr.html#ipruleset) resource) on nodes.
* A feature to implement a fault-tolerant Egress Gateway has been added. You can configure it using the [EgressGateway](https://deckhouse.io/documentation/v1.61/modules/021-cni-cilium/cr.html#egressgateway) and [EgressGatewayPolicy](https://deckhouse.io/documentation/v1.61/modules/021-cni-cilium/cr.html#egressgatewaypolicy) custom resources. The EgressGateway resource allows you to allocate a group of nodes as gateways for external requests. The active node is then selected out of those nodes to process external requests. The EgressGatewayPolicy resource defines how external application requests will be routed through the configured gateways (only available when using the cni-cilium module).
* Additional pre-installation checks prior to the installation using the dhct tool have been added (checks to make sure that the data to connect to container registry and establish SSH connections is valid as well as a check to make sure that containerd is not installed).
* Metrics for monitoring by node groups have been added. Refer to the [documentation](https://deckhouse.io/documentation/v1.61/modules/040-node-manager/#monitoring) for more details.
* The [fencing](https://github.com/deckhouse/deckhouse/pull/6421) feature automatically isolates problem nodes in a Kubernetes cluster to improve its reliability and fault tolerance. When the system detects that a node loses connection to the Kubernetes API, it initiates the process of disconnecting that node. This prevents possible failures and minimizes the risks of data loss, ensuring more reliable operation of Stateful applications.


Component version updates
- Kubernetes control plane: `v1.27.14`, `v1.28.10`, `v1.29.5`
- deckhouse-cli (d8 tool): `v0.1.2`
- image-availability-exporter (extended-monitoring): `v0.8.0`

A list of internal modules or their components that will be restarted during the upgrade

- **Kubernetes control plane**
- **Ingress controller**
- cloud-provider-vcd
- cloud-provider-yandex
- documentation
- image-availability-exporter (extended-monitoring)
- kube-dns
- node-manager
- user-authn


See [CHANGELOG v1.61](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.61.md) for more details.

1.60.7

Fixes


- **[node-manager]** Create `status.errors` object for all _NodeUsers_ (migration) and add a conversion webhook for the same logic. [8962](https://github.com/deckhouse/deckhouse/pull/8962)


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.60.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.60.0).

1.60.6

Fixes


- **[dhctl]** Fix working with registries on non-standard ports. [8727](https://github.com/deckhouse/deckhouse/pull/8727)
registry-packages-proxy should be restarted
- **[registry-packages-proxy]** Fix working with registries on non-standard ports. [8727](https://github.com/deckhouse/deckhouse/pull/8727)
registry-packages-proxy should be restarted


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.60.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.60.0).

1.60.5

Fixes


- **[istio]** Fixed Istio module release requirements checker. [8705](https://github.com/deckhouse/deckhouse/pull/8705)


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.60.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.60.0).

1.60.4

Fixes


- **[dhctl]** Fix registry path calculation. [8646](https://github.com/deckhouse/deckhouse/pull/8646)
Registry packages proxy should be restarted.
- **[ingress-nginx]** Fix pod descheduling from a not-ready node. [8647](https://github.com/deckhouse/deckhouse/pull/8647)
Kruise controller's pods will be recreated.
- **[node-manager]** Fix RBAC permissions and startup schedule cleanup of NodeUser creation errors. [8639](https://github.com/deckhouse/deckhouse/pull/8639)
- **[registry-packages-proxy]** Fix registry path calculation. [8646](https://github.com/deckhouse/deckhouse/pull/8646)
Registry packages proxy should be restarted.


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.60.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.60.0).

1.60.3

Features


- **[dhctl]** Improve config validation error messages. [8453](https://github.com/deckhouse/deckhouse/pull/8453)

Fixes


- **[deckhouse]** Fix the number of deckhouse replicas for not bootstrapped clusters. [8526](https://github.com/deckhouse/deckhouse/pull/8526)
- **[deckhouse-controller]** Fix default module source template. [8567](https://github.com/deckhouse/deckhouse/pull/8567)
- **[deckhouse-controller]** Disable manager's internal metrics server. [8558](https://github.com/deckhouse/deckhouse/pull/8558)
- **[extended-monitoring]** Add support of mirrors for container registries for `image_availability_exporter`. [8568](https://github.com/deckhouse/deckhouse/pull/8568)

Chore


- **[registrypackages]** Update the `d8` registry package version. [8563](https://github.com/deckhouse/deckhouse/pull/8563)


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.60.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.60.0).

Page 8 of 72

Links

Releases

Has known vulnerabilities

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.