search

aws / secrets-store-csi-driver-provider-aws

The AWS provider for the Secrets Store CSI Driver allows you to fetch secrets from AWS Secrets Manager and AWS Systems Manager Parameter Store, and mount them into Kubernetes pods.
Apache License 2.0
459 stars 130 forks source link

Bump sigs.k8s.io/secrets-store-csi-driver from 1.2.3 to 1.3.0 #161

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps sigs.k8s.io/secrets-store-csi-driver from 1.2.3 to 1.3.0.

Release notes

Sourced from sigs.k8s.io/secrets-store-csi-driver's releases.

v1.3.0 - 2022-12-13

Changelog

Bug Fixes 🐞

  • cdf0b778 fix: put annotations in right position of daemonset
  • bb1815ab fix: escape dot in target path regex
  • 97d34520 fix: fix CVE-2022-32149 and CVE-2022-27664 (#1059)
  • d98c93cb fix: handles pfx certs in k8s secrets sync
  • 9fcdbb2c fix: update base image reference in script
  • ede4c706 fix: sanitize service account tokens in logs
  • 2ee77ca0 fix: use os.Lstat to resolve os.Stat issue in windows
  • 3ae12bd2 fix: remove files before cleanup mount point in unpublish
  • 0af24830 fix: panic when using --log-format-json
  • 830d184a fix: update err variable in defer to prevent err shadowing
  • c452ac46 fix: add unit test to validate error shadowed bug

Code Refactoring 💎

  • b0af2b93 refactor: use NewSharedInformerFactoryWithOptions for new shared informer
  • 14489c70 refactor: update mdbook install and serve

Continuous Integration 💜

  • 12cdcb42 ci: ignore slack badge in markdown link check
  • a3c0e4eb ci: add codeql action
  • 9a120eab ci: bump kubernetes version to v1.25.0
  • f8e3435f ci: bump kind version to v0.14.0
  • d1181e3c ci: add kubernetes 1.24 in e2e matrix
  • ce476721 ci: fix aws eks cluster creation
  • 384db8bb ci: fix markdown link check workflow failures
  • 12d1c991 ci: update kubernetes version matrix in staging e2e workflow
  • 0246e35d ci: update e2e_mock_provider_tests kubernetes versions
  • 2f161323 ci: add goreleaser workflow for release
  • d0e614fd ci: fix shellcheck file paths
  • 00a1445d ci: add markdown-link-check workflow

Documentation 📘

  • b8c64cca docs: add security vuln scanning to release mgmt
  • e195c553 docs: update supported releases - v1.2.x and v1.1.x
  • 3787ca2e docs: include security explanations for root/privileged/and pod tokens
  • b55eaeff docs: update instructions on generating release notes
  • c0e97a56 docs: add subPath volume mount limitation
  • 592ad7b5 docs: update supported versions and replace v1alpha1 with v1
  • 8c41c4a1 docs: remove helm repo url change note in install steps
  • 052429b0 docs: add slack badge
  • 95218a6b docs: fix dead links based on errors
  • 0391489d docs: update features and add toc
  • ba364e14 docs: Update helm README.md with linux crd image values (#797)
  • 856ad859 docs: update supported feature by current providers
  • a760c186 docs: fix typo in api version group name
  • ed9ecf3a docs: add design docs and roadmap to website

... (truncated)

Commits
  • d08eaa9 Merge pull request #1122aramase/automated-cherry-pick-of-#1121
  • 1c7fda4 release: update manifest and helm charts for v1.3.0
  • 9ababf4 Merge pull request #1120 from aramase/bump-release-1.3-v1.3.0
  • d412c88 chore: bump version to v1.3.0 in release-1.3
  • d317433 Merge pull request #1117 from aramase/fix-CVE-2022-41717
  • 369ab7b security: fix CVE-2022-41717
  • 2a72276 Merge pull request #1111 from aramase/driver-crds-v1.26
  • cdc8356 Merge pull request #1110 from aramase/tolerate-all
  • 7513988 chore: reenable trivy scan for binary
  • 4c1a8f5 chore: use kubectl v1.26.0 in driver-crds
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov-commenter commented 1 year ago

Codecov Report

Merging #161 (75c1aa4) into main (41dc61e) will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##             main     #161   +/-   ##
=======================================
  Coverage   52.88%   52.88%           
=======================================
  Files           7        7           
  Lines         711      711           
=======================================
  Hits          376      376           
  Misses        326      326           
  Partials        9        9

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

dependabot[bot] commented 1 year ago

Superseded by #173.