version-checker is a Kubernetes utility for observing the current versions of images running in the cluster, as well as the latest available upstream. Additionally, it monitors the Kubernetes cluster version against the latest available releases using official Kubernetes release channels. These checks get exposed as Prometheus metrics to be viewed on a dashboard, or soft alert cluster operators.
- Container Image Version Checking: Monitor and compare container image versions running in the cluster against their latest upstream versions
- Kubernetes Version Monitoring: Track your cluster's Kubernetes version against the latest available releases from official Kubernetes channels
- Prometheus Metrics Integration: Export all version information as Prometheus metrics for monitoring and alerting
- Flexible Channel Selection: Configure which Kubernetes release channel to track (stable, latest, etc.)
- Improved Security: Ensures images and Kubernetes clusters are up-to-date, reducing the risk of using vulnerable or compromised versions.
- Enhanced Visibility: Provides a clear overview of all running container versions and cluster versions across clusters.
- Operational Efficiency: Automates image and Kubernetes version tracking and reduces manual intervention in version management.
- Compliance and Policy Enforcement: Helps maintain version consistency and adherence to organizational policies for both applications and infrastructure.
- Incremental Upgrades: Facilitates frequent, incremental updates to reduce the risk of large, disruptive upgrades.
- Add-On Compatibility: Ensures compatibility with the latest versions of Kubernetes add-ons and dependencies.
- Proactive Cluster Management: Stay informed about Kubernetes security updates and new features through automated version monitoring.
version-checker supports the following registries:
- ACR
- Docker Hub
- ECR
- GCR (inc gcr facades such as k8s.gcr.io)
- Quay
- Self Hosted (Docker V2 API compliant registries, e.g. registry, artifactory etc.). Multiple self hosted registries can be configured at once.
These registries support authentication.
A grafana dashboard is also available to view the image versions as a table.
Grafana Dashboard
From time to time, version-checker may need some of the above options applied to determine the latest version, depending on how the maintainers publish their images. We are making a conscious effort to collate some of these configurations.
See known-configurations.md for more details.