Release v0.36.0
๐ Introducing Jikkou 0.36.0
Weโre excited to announce the release of Jikkou 0.36.0! ๐
This release brings major new features to make Jikkou more powerful, flexible, and GitOps-friendly than ever before:
- ๐ New resource for managing AWS Glue Schemas
- ๐ก๏ธ New resource for defining ValidatingResourcePolicy
- ๐ New selector based on Google Common Expression Language
- ๐ฆ New concept of Resource Repositories
- โ๏ธ Enhanced Kafka actions
- ๐ Evolved provider configuration system
To install the new version, check out the installation guide.
For detailed release notes, see the GitHub page.
๐ AWS Glue Schema Provider
We know that many developers and DevOps teams rely on Jikkou to manage their AWS MSK clusters.
With this release, weโre going one step further: Jikkou 0.36.0 adds a new provider for AWS Glue Schemas.
You can now fully manage schemas registered in AWS Glue Registries โ just like you already do with Confluent Schema Registry.
Example:
# file: ./aws-glue-schema-user.yaml
---
apiVersion: "aws.jikkou.io/v1"
kind: "AwsGlueSchema"
metadata:
name: "Person"
labels:
glue.aws.amazon.com/registry-name: Test
annotations:
glue.aws.amazon.com/normalize-schema: true
spec:
compatibility: "BACKWARD"
dataFormat: "AVRO"
schemaDefinition: |
{
"namespace": "example",
"type": "record",
"name": "Person",
"fields": [
{
"name": "id",
"type": "int",
"doc": "The person's unique ID (required)"
},
{
"name": "firstname",
"type": "string",
"doc": "The person's legal firstname (required)"
},
{
"name": "lastname",
"type": "string",
"doc": "The person's legal lastname (required)"
}
}
๐ With the Jikkou CLI, you can now run commands like:
jikkou get aws-glueschemas
๐ Learn more: AWS Provider Documentation
๐ก๏ธ ValidatingResourcePolicy for Smarter Governance
Validating resources has always been a challenge in Jikkou.
Earlier releases provided a validation chain with built-in
checks (e.g., TopicMinReplicationFactor, TopicMaxNumPartitions, TopicNamePrefix).
However, these were limited, provider-specific, and mostly resource-scoped.
With Jikkou 0.36, weโre introducing ValidatingResourcePolicy โ a declarative, reusable way to enforce governance
and compliance across any resource.
โก How It Works
A ValidatingResourcePolicy defines:
Selectors:
- Match by resource kinds or operations
- Match by labels
- Use Google CEL expressions for advanced logic
Rules:
Write expressions using Google Common Expression Language to enforce validation logic.Failure Policies:
Decide what happens when validation fails:FAILโ abort the operationCONTINUEโ log but proceedFILTERโ automatically remove invalid resources
๐ Examples
Enforcing min/max partitions for KafkaTopic:
---
apiVersion: core.jikkou.io/v1
kind: ValidatingResourcePolicy
metadata:
name: KafkaTopicPolicy
spec:
failurePolicy: FAIL
selector:
matchResources:
- kind: KafkaTopic
rules:
- name: MaxTopicPartitions
expression: "resource.spec.partitions <= 50"
messageExpression: "'Topic partitions MUST be <= 50, but was: ' + string(resource.spec.partitions)"
- name: MinTopicPartitions
expression: "resource.spec.partitions >= 3"
message: "Topic must have at least 3 partitions"
Filtering out DELETE operations on Kafka Topics:
---
apiVersion: core.jikkou.io/v1
kind: ValidatingResourcePolicy
metadata:
name: KafkaTopicPolicy
spec:
failurePolicy: FILTER
selector:
matchResources:
- kinds: KafkaTopicChange
rules:
- name: FilterDeleteOperation
expression: "resource.spec.op == 'DELETE'"
messageExpression: "'Operation ' + resource.spec.op + ' on topics is not authorized'"
๐ Learn more: ValidatingResourcePolicy Documentation
๐ฆ Resource Repositories โ GitOps-Friendly Resource Management
Managing and sharing resource definitions just got easier.
Jikkou 0.36 introduces Resource Repositories, allowing you to load resources directly from GitHub repositories
or local directories.
Repositories are perfect for:
- Reusable resources across multiple environments
- Shared definitions across teams
- Keeping transient or computed resources (e.g.,
ConfigMap,ValidatingResourcePolicy) separate from persistent ones - Injecting dynamic configuration without polluting your main repo
๐ก Use Case Spotlight:
Instead of keeping temporary validation policies or config maps in your CLI input, you can store them in a repository
and inject them dynamically. This makes transient resources clean, shareable, and environment-specific.
Example Configuration
jikkou {
repositories = [
{
name = "github-repository"
type = io.streamthoughts.jikkou.core.repository.GitHubResourceRepository
config {
repository = "streamthoughts/jikkou"
branch = "main"
paths = [
"examples/",
]
# Optionally set an access token for private repositories
# token = ${?GITHUB_TOKEN}
}
}
]
}
๐ Learn more: Repositories Documentation
๐ Expression-based CLI Selectors
Selectors just became more powerful with Google CEL.
You can now filter resources dynamically based on any attribute.
Example: List all topics with more than 12 partitions:
jikkou get kafkatopics --selector "expr: resource.spec.partitions >= 12"
๐ Learn more: Expression Documentation
โ๏ธ Actions Improvements
- Added
TruncateKafkaTopicRecordsaction โ truncate topic-partitions to a specific datetime. - Extended
KafkaConsumerGroupsResetOffsets:- Reset offsets for multiple consumer groups.
- New options:
--all: apply to all consumer groups--groups: specify consumer groups--includes: regex patterns for inclusion--excludes: regex patterns for exclusion
๐ Migration: Provider Configurations
Starting in 0.36.0, provider configuration has evolved to support future extensibility.
Before 0.36.0:
jikkou {
extension.providers {
kafka.enabled = true
}
kafka {
client {
bootstrap.servers = "localhost:9092"
}
}
}
After 0.36.0:
provider.kafka {
enabled = true
type = io.streamthoughts.jikkou.kafka.KafkaExtensionProvider
config = {
client {
bootstrap.servers = "localhost:9092"
}
}
}
โ ๏ธ Old configs still work for now, but we recommend migrating.
โ Wrapping Up
We canโt wait to see what you build with this new release.
If you encounter any issues, please open a GitHub issue on
our project page.
Donโt forget to give us a โญ๏ธ on GitHub and join the community
on Slack.