VPC File CSI Driver add-on version change log
- Patch updates
- Patch updates are delivered automatically by IBM and don't contain any feature updates or changes in the supported add-on and cluster versions.
- Release updates
- Release updates contain new features or changes in the supported add-on or cluster versions. You must manually apply release updates to your cluster autoscaler add-on.
To view a list of add-ons and the supported cluster versions, run the following command or see the Supported cluster add-ons table.
ibmcloud oc cluster addon versions
Review the version history for VPC File CSI Driver.
Version 2.0
Version 2.0 - v2.0.36_347951752, released 22 June 2026
Default version
- Resolves the following CVEs: CVE-2026-28390.
armada-storage-secret v1.3.55
Version 2.0 - v2.0.34_345194711, released 09 June 2026
Default version
- Resolves the following CVEs: CVE-2026-4438, CVE-2026-4046, and CVE-2026-4437.
armada-storage-secret v1.3.51
Version 2.0 - v2.0.33_343448437, released 03 June 2026
Default version
- Resolves the following CVEs: CVE-2026-33814, CVE-2026-31790, CVE-2026-29111, CVE-2026-40355, CVE-2026-40356, and CVE-2026-4878.
armada-storage-secret v1.3.50
Version 2.0 - v2.0.32_341664893, released 29 May 2026
Default version
- Resolves the following CVEs: CVE-2026-33811, CVE-2026-39979, CVE-2025-14512, CVE-2025-14087, and CVE-2026-40164.
armada-storage-secret v1.3.49
Version 2.0 - v2.0.30_338302575, released 13 May 2026
Default version
- Resolves the following CVEs: CVE-2026-4786, CVE-2026-6100, and CVE-2026-4878.
armada-storage-secret v1.2.82
Version 2.0 - v2.0.28_333900419, released 27 April 2026
Default version
- Resolves the following CVEs: CVE-2026-32281, CVE-2026-32289, and CVE-2026-4519.
- Updates Go to version
1.25.9. armada-storage-secret v1.2.80
Version 2.0 - v2.0.27_329001706, released 07 April 2026
Default version
- Resolves the following CVEs: CVE-2026-33186.
- Updates Go to version
1.25.8. armada-storage-secret v1.2.79
Version 2.0 - v2.0.26_325670948, released 24 March 2026
Default version
- Resolves the following CVEs: CVE-2025-14831, CVE-2025-15366, CVE-2025-15367, CVE-2026-1299, CVE-2024-6923, CVE-2026-0865, CVE-2026-25679, CVE-2025-12801, CVE-2026-27139, and CVE-2026-27142.
armada-storage-secret v1.2.78
Version 2.0 - v2.0.25_321043855, released 02 March 2026
Default version
- Resolves the following CVEs: CVE-2026-0861, CVE-2025-15281, and CVE-2026-0915.
- Fixed an issue where EIT enablement was not triggered for new nodes in EIT‑enabled worker pools after a storage operator restart.
armada-storage-secret v1.2.77
Version 2.0 - v2.0.24_319692587, released 26 February 2026
Default version
- Resolves the following CVEs: CVE-2025-68121, and CVE-2025-14104.
armada-storage-secret v1.2.76
Version 2.0 - v2.0.23_316463584, released 10 February 2026
Default version
- Resolves the following CVEs: CVE-2025-15467, CVE-2025-11187, CVE-2025-15468, CVE-2025-15469, CVE-2025-66199, CVE-2025-68160, CVE-2025-69418, CVE-2025-69419, CVE-2025-69420, CVE-2025-69421, CVE-2026-22795, CVE-2026-22796, and CVE-2025-9086.
armada-storage-secret v1.2.75
Version 2.0 - v2.0.22_310489003, released 21 January 2026
Default version
- Resolves the following CVEs: CVE-2025-13281, CVE-2025-8291, CVE-2025-61729, CVE-2025-61727, CVE-2025-6069, CVE-2024-5642, and CVE-2025-6075.
- Updates k8s client libraries from 1.32.8 to 1.32.10.
- Fixed an issue where the EIT enablement was not working in tainted worker pools.
armada-storage-secret v1.2.74
Version 2.0 - v2.0.21_301434433, released 05 December 2025
Default version
- Resolves the following CVEs: CVE-2025-9230.
- Updates Go to version
1.25.4. - Introduces Beta Snapshot support in the VPC File CSI Driver for DP2 and RFS profile-based storage classes.
- Introduces support for default VolumeSnapshotClasses to enhance the user experience when creating snapshots, including ibmc-vpcfile-snapshot-delete and ibmc-vpcfile-snapshot-retain.
csi-snapshotter v8.2.1armada-storage-secret v1.2.71
Version 2.0 - 2.0.20_296667134, released 12 November 2025
Default version
- Resolves the following CVEs: CVE-2025-58189, CVE-2025-61725, CVE-2025-58185, and CVE-2025-61723.
- Updates Go to version
1.25.3. armada-storage-secret v1.2.70
Version 2.0 - 2.0.19_294159886, released 05 November 2025
Default version
- Resolves the following CVEs: CVE-2025-5187.
- Updates k8s client libraries from 1.32.6 to 1.32.8
armada-storage-secret v1.2.69
Version 2.0 - 2.0.16_443, released 22 September 2025
Default version
- Resolves the following CVEs: CVE-2025-8058.
- Updates Go to version
1.23.12. - {'Adds 3 new storage classes': 'ibmc-vpc-file-regional, ibmc-vpc-file-regional-max-bandwidth, and ibmc-vpc-file-regional-max-bandwidth-sds. These classes are based on VPC regional file share profiles and are available in Beta for allowlisted accounts.'}
armada-storage-secret v1.2.66
Version 2.0 - 2.0.14_403, released 18 July 2025
Default version
- Resolves the following CVEs: CVE-2025-4802, CVE-2025-4673, and CVE-2025-4563.
- Updates Go to version
1.23.10. - Updates k8s client libraries from 1.32.3 to 1.32.6
- Updates imagePullPolicy to IfNotPresent for all containers in the deployment.
armada-storage-secret v1.2.64
Version 2.0 - 2.0.15_431, released 18 July 2025
Default version
- Updates Go to version
1.23.11. armada-storage-secret v1.2.65
Version 2.0 - 2.0.13_370, released 16 June 2025
- Resolves the following CVEs: CVE-2025-0395, CVE-2025-3576, and CVE-2025-24528.
- Updates Go to version
1.23.9. - Adds support for users to configure CPU and memory limits and requests for all file containers.
- Fixes an issue where the provisioner and resizer containers were restarting due to the client rate-limiter.
- Enables leader-election for csi-resizer.
- Fixes a warning shown in PVC during volume expansion.
- Improves error messages.
- Updates k8s client libraries to 1.32.
- {'Note': 'Users might see unwanted messages in file-csi-driver-status configmap.'}
Version 2.0 - 2.0.10_334, released 19 February 2025
- Resolves the following CVEs: CVE-2024-45339, and CVE-2024-45338.
- Resiliency improvement to use VPC Storage service API for tagging volumes. This doesn't impact existing or new PVCs. This reduces the number of Kubernetes service API calls.
- Updates the golang base image to 1.22.12.
- Updates the armada-storage-secret to v1.2.55.
Version 1.2
Version 1.2 - 1.2.14_332, released 19 February 2025
- Resolves the following CVEs: CVE-2024-45339, and CVE-2024-45338.
- Resiliency improvement to use VPC Storage service API for tagging volumes. This doesn't impact existing or new PVCs. This reduces the number of Kubernetes service API calls.
- Updates the golang base image to 1.22.12.
- Updates the armada-storage-secret to v1.2.55.
Version 1.2.13_326, released 11 December 2024
- Fixes CVE-2024-51744.
- Updates the
storage-secret-sidecarimage tov1.2.52.
Version 1.2.12_312, released 3 October 2024
- Updates the golang base image to
1.22.7. - Updates to Kubernetes 1.30 client libraries.
- Updates the CSI specification to version
1.9.0. - Fixes a security issue for the CSI sidecar liveness probe. The sidecar now runs as non-root in the Node Server pod.
- Updates the following sidecar images:
csi-provisioner:v5.0.2,csi-resizer:v1.11.2,livenessprobe:v2.13.1, andcsi-node-driver-registrar:v2.11.1. - Resolves CVE-2024-2398, CVE-2024-37370, CVE-2024-37371.
Version 1.2.10_254, released 15 July 2024
- Updates the golang image to
1.21.12-community. - Updates the
armada-storage-secrettov1.2.40. - Resolves CVE-2024-28182 and CVE-2023-2953.
Version 1.2.9_245, released 21 June 2024
- Updates
golangto1.21.11-community. - Updates the
armada-storage-secrettov1.3.8. - Resolves: CVE-2024-26458, CVE-2024-26461, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602, CVE-2024-2961, and CVE-2024-33599.
Version 1.2.8_174, released 10 May 2024
- Updates
golangto1.21.9-community. - Removes
curlpackage from base image. - Updates the
armada-storage-secrettov1.2.35. - Sets
handle-volume-inuse-errorflag tofalsein thecsi-resizerto reduce costs associated with watching all pods in the cluster which can causeOOM Killederrors for thecsi-resizer. - Resolves CVE-2023-46218, CVE-2023-28322, and CVE-2023-38546.
Version 1.2.7_154, released 08 March 2024
- Base image migrated from UBI to golang.
Version 1.2.6_130, released 08 February 2024
- Fixes hanging issue related to mounting and unmounting after node server restart.
- Introduces granular locking mounting and unmounting at the
targetPathlevel. - Disables the CSI NodeExpansion method as it is not required for the file share. The PVC can still be expanded.
- Changes how the IAM endpoint is determined for VPC Gen2 clusters.
- Upgrades Kubernetes client library to 1.28.
- Upgrades CSI spec to 1.8.0.
- Resolves the following CVEs: CVE-2022-48560, CVE-2022-48564, CVE-2023-39615, CVE-2023-43804, CVE-2023-45803, and CVE-2023-5981.
- Updates the following sidecar images:
armada-storage-secrettov1.2.31.csi-node-driver-registrartov2.9.3.csi-provisionertov3.6.3.csi-resizertov1.9.3.livenessprobetov2.11.0.
Version 1.2.5_107, released 10 January 2024
- Resolves CVE-2023-3446, CVE-2023-3817, and CVE-2023-5678.
- Applies a security fix to use the correct socket path following SElinux policy module changes and CSI recommendations to use
/var/lib/kubelet/plugins/.
Version 1.2.3_97, released 27 November 2023
- Updates Golang to
1.20.11. - Updates UBI image to
8.9.1029. - Updates the
armada-storage-secrettov1.2.29. - Resolves the following CVEs: CVE-2023-22745, CVE-2007-4559, CVE-2023-40217, and CVE-2023-4641.
Version version 1.2.0, released 31 October 2023
- Tiered and custom profile storage classes are no longer supported. Update your PVCs to use a
dp2storage classes. - Adds support for granular authorization via the Virtual Network Interface VNI (Elastic Network Interface ENI).
- Adds support for cross zone mounting by default. Pods can now mount storage volumes across zones.
- Allows you to bring your own security group to control granular authorization at the worker node, zone, or worker pool level.
- Adds bring your own subnet support to control which subnet the virtual network interface (VNI) IP for storage is assigned and created in.
- Adds bring your own IP support existing
PrimaryIPwhich the VNI will assign. - Allows you to set a custom
PrimaryIPAddresswithin the subnet range where the VNI IP is assigned and created.
Version 1.1
Version 1.1.10_93, released 27 November 2023
- Updates Golang to
1.20.11. - Updates UBI image to
8.9.1029. - Updates the
armada-storage-secrettov1.2.29. - Resolves the following CVEs: CVE-2023-22745, CVE-2007-4559, CVE-2023-40217, and CVE-2023-4641.
Version 1.1.9_87, released 13 November 2023
- Updates the
storage-secret-sidecarimage to1.2.27. - Updates Golang to
1.20.10. - Resolves CVE-2023-44487, CVE-2023-4911, CVE-2023-4527, CVE-2023-4806, CVE-2023-4813.
Version 1.1.7_49, released 14 September 2023
- Updates UBI image to
8.8-1037. - Updates Golang to
1.19.12. - Resolves the following CVEs: