Light Dark Auto


Changelog for the Grey Matter Operator

0.3.3 (February 10, 2022)

This release includes internal changes to how we source Grey Matter mesh configuration schema. Grey Matter mesh configurations are defined in CUE and bundled into this project via a Git submodule greymatter-cue. Mesh custom resources are also ingested into CUE to be parsed for installing and configuring mesh deployments.

Additionally, this release addressed a bug that prevented the operator from restoring its own internal state of existing Mesh custom resources on startup. The fix ensures that the leader replica of the operator will always have the latest state of Mesh custom resources.

This release also has been tested for local development on Rancher Desktop.


  • greymatter-cue Git submodule for importing Grey Matter CUE schemas.

  • Generated CUE schema for the Mesh custom resource definition, to be parsed within CUE when generating installation manifests and mesh configurations for a configured Mesh.

  • Fix concurrent write to a map shared among goroutines.


  • Moved all CUE packages into a single CUE module that lives in pkg/cuemodule. Each CUE package may be evaluated using the CUE CLI as well as loaded via exported loader functions defined in the cuemodule Go package.

  • Updated versions of Spire images (spire-server, spire-agent, and the k8s-workload-registrar) that the operator installs to 1.2.0. This fixes an issue on some platforms where Spire would misidentify the process as non-k8s, and fail to issue an identity.

  • Specifying --platform linux/amd64 in docker and buildah container builds to ensure M1 Macs know what to do with it, regardless of where it was built.

  • Increased memory limit (100Mi -> 300Mi) and increased initial wait period on readiness and liveness probes to accommodate slower/emulated machines (-> 120 sec).


  • Updated flag in spire server liveness probe to prevent an eventual crash of spire server.

  • Addressed a bug that kept existing Mesh custom resources from being fully registered with a new instance of the operator on startup. The bug prevented new mesh configurations from being generated for workloads within namespaces of existing meshes.

0.3.0 (January 10, 2022)


  • SPIRE as SPIFFE implementation for mutual TLS between workloads


  • Prevent greymatter apply commands to Control API from running until it has connected to Redis.


  • Support for an external Redis cache for mesh configurations, opting for an internally-managed one secured by mutual TLS (via SPIRE).

  • Catalog entry for Redis

  • JWT Security service's Redis dependency

  • Listeners using port 10707 for initial boootstrapping of mesh configuration

0.2.0 (December 10, 2021)


  • Upgrade Grey Matter CLI binary dependency from 3.0.0 to 4.0.1

0.1.2 (December 2, 2021)


  • Change GREYMATTER_DOCKER_* config env vars to GREYMATTER_REGISTRY_*

  • Change k8s-operator --username and --password flags to --registry-username and --registry-password, respectively. And remove -u and -p aliases to reserve these for future use.

0.1.0 (December 1, 2021)

This is a pre-release with basic support for installing Grey Matter core components and dependencies and bootstrapping Grey Matter mesh configurations.


  • Support for general Kubernetes distributions

  • Support for OpenShift, packaged for compatibility with the Operator Lifecycle Manager