v3.43.0

3.43.0 (2023-01-18)

Full Changelog

⚠️ ⚠️ ⚠️
This version of the agent has issues running in --acquire-job mode
Please use v3.43.1 or later. See #1923 for more info.
⚠️ ⚠️ ⚠️

Fixed

• A nil pointer dereference introduced in 3.42.0 due to missing error handling after calling user.Current #1910 (@DrJosh9000)

Added

• A flag to allow empty results with doing an artifact search #1887 (@MatthewDolan)
• Docker Images for linux/arm64 #1901 (@triarius)
• Agent tags are added from ECS container metadata #1870 (@francoiscampbell)

Changed

• The env subcommand is now env dump #1920 (@pda)
• AcquireJob now retries while the job is locked #1894 (@triarius)
• Various miscellaneous updates and improvements (@moskyb, @triarius, @mitchbne, @dependabot[bot])

v3.42.0

v3.42.0 (2023-01-05)

Full Changelog

Added

• Add an in-built hierarchical status page #1873 (@DrJosh9000)
• Add an agent-startup hook that fires at the same time as the agent-shutdown hook is registered #1778 (@donalmacc)

Changed

• Enforce a timeout on finishJob and onUploadChunk #1854 (@DrJosh9000)
• A variety of dependency updates, documentation, and code cleanups! (@dependabot[bot] + @DrJosh9000 + @moskyb)
• Flakey test fixes and test suite enhancements (@triarius + @DrJosh9000)

Fixed

• Ensure that unrecoverable errors for Heartbeat and Ping stop the agent #1855 (@moskyb)

Security

• Update x/crypto/ssh to 0.3.0, patching CVE-2020-9283 #1857 (@moskyb)

v3.41.0

v3.41.0 (2022-11-24)

Full Changelog

Added

• Experimental buildkite-agent oidc request-token command #1827 (@triarius)
• Option to set the service name for tracing #1779 (@goodspark)

Changed

• Update windows install script to detect arm64 systems #1768 (@yob)
• Install docker compose v2 plugin in agent alpine and ubuntu docker images #1841 (@ajonei + @triarius)
• 🧹 A variety of dependency updates, documentation, and cleanups! (@dependabot + @DrJosh9000)

v3.40.0

v3.40.0 (2022-11-08)

Full Changelog

Added

• Agent binaries for windows/arm64 #1767 (@yob)
• Alpine k8s image #1771 (@dabarrell)

Security

• (Fixed in 3.39.1) A security issue in environment handling between buildkite-agent and Bash 5.2 #1781 (@moskyb)
• Secret redaction now handles secrets containing UTF-8 code points greater than 255 #1809 (@DrJosh9000)
• The update to Go 1.19.3 fixes two Go security issues (particularly on Windows):
  • The current directory (.) in $PATH is now ignored for finding executables - see https://go.dev/blog/path-security
  • Environment variable values containing null bytes are now sanitised - see golang/go#56284

Changed

• 5xx responses are now retried when attempting to start a job #1777 (@jonahbull)
• 🧹 A variety of dependency updates and cleanups!

v3.39.1

v3.39.1 (2022-10-14)

Full Changelog

Security

• Fix security issue where in certain situations, agents using bash v5.2 could have some environment variables leak to job logs. See the issue and our security advisory for more information. #1781 (@moskyb + @triarius + @pda)

v3.39.0

v3.39.0 (2022-09-08)

Full Changelog

Added

• gcp:instance-name and tweak GCP labels fetching #1742 (@pda)
• Support for not-yet-released per-job agent tokens #1745 (@moskyb)

Changed

• Retry Disconnect API calls #1761 (@pda)
• Only search for finished artifacts #1728 (@moskyb)
• Cache S3 clients between artifact downloads #1732 (@moskyb)
• Document label edge case #1718 (@plaindocs)

Fixed

• Docker: run /sbin/tini without -g for graceful termination #1763 (@pda @com6056)
• Fix multiple-nested plugin repos on gitlab #1746 (@moskyb)
• Fix unowned plugin reference #1733 (@moskyb)
• Fix order of level names for logger.Level.String() #1722 (@moskyb)
• Fix warning log level #1721 (@ChrisBr)

v3.38.0

3.38.0 (2022-07-20)

Full Changelog

Added

• Add Code of Conduct based on Contributor Covenant v2.1 #1717 (@moskyb)

Changed

• Include a list of enabled features in the register request #1706 (@moskyb)
• Promote opentelemetry tracing to mainline feature status #1702 (@moskyb)
• Improve opentelemetry implementation #1699 #1705 (@moskyb)

v3.37.0

Added

• Agent metadata includes arch (e.g. arch=amd64) alongside hostname and os #1691 (moskyb)
• Allow forcing clean checkout of plugins #1636 (toothbrush)

Fixed

• Environment modification in hooks that set bash arrays #1692 (moskyb)
• Unescape backticks when parsing env from export -p output #1687 (moskyb)
• Log “Using flock-file-locks experiment 🧪” when enabled #1688 (lox)
• flock-file-locks experiment: errors logging #1689 (KevinGreen)
• Remove potentially-corrupted mirror dir if clone fails #1671 (lox)
• Improve log-level flag usage description #1676 (pzeballos)

Changed

• datadog-go major version upgrade to v5.1.1 #1666 (moskyb)
• Revert to delegating directory creation permissions to system umask #1667 (moskyb)
• Replace retry code with roko #1675 (moskyb)
• bootstrap/shell: round command durations to 5 significant digits #1651 (kevinburkesegment)

v3.36.1

v3.36.1 (2022-05-27)

Full Changelog

Fixed

• Fix nil pointer deref when using --log-format json #1653 (@moskyb)

v3.36.0

v3.36.0 (2022-05-17)

Full Changelog

Added

• Add experiment to use kernel-based flocks instead of lockfiles #1624 (@KevinGreen)
• Add option to enable temporary job log file #1564 (@albertywu)
• Add experimental OpenTelemetry Tracing Support #1631 + #1632 (@moskyb + @rajatvig)
• Add --log-level flag to all commands #1635 (@moskyb)

Fixed

• The no-plugins option now works correctly when set in the config file #1579 (@elruwen)
• Clear up usage instructions around --disconnect-after-idle-timeout and --disconnect-after-job #1599 (@moskyb)

Changed

• Refactor retry machinery to allow the use of exponential backoff #1588 (@moskyb)
• Create all directories with 0775 permissions #1616 (@moskyb)
• Dependency Updates:
  • github.com/urfave/cli: 1.22.4 -> 1.22.9 #1619 + #1638 (@dependabot[bot])
  • Golang: 1.17.6 -> 1.18.1 (yay, generics!) #1603 + #1627 (@dependabot[bot])
  • Alpine Build Images: 3.15.0 -> 3.15.4 #1626 (@dependabot[bot])
  • Alpine Release Images: 3.12 -> 3.15.4 #1628 (@moskyb)