Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.
The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC.
To verify the images and their provenance (SLSA level 3), please see the security documentation.
This minor release promotes the Helm APIs to GA, and comes with new features,
improvements and bug fixes.
HelmRepository
The HelmRepository API has been promoted from v1beta2 to v1 (GA).
The v1 API is backwards compatible with v1beta2.
For HelmRepository of type oci, the .spec.insecure field allows connecting
over HTTP to an insecure non-TLS container registry.
To upgrade from v1beta2, after deploying the new CRD and controller,
set apiVersion: source.toolkit.fluxcd.io/v1 in the YAML files that
contain HelmRepository definitions.
Bumping the API version in manifests can be done gradually.
It is advised not to delay this procedure as the beta versions will be removed after 6 months.
HelmChart
The HelmChart API have been promoted from v1beta2 to v1 (GA).
The v1 API is backwards compatible with v1beta2, with the exception
of the removal of the deprecated field .spec.valuesFile which was replaced with spec.valuesFiles.
A new optional field .spec.ignoreMissingValuesFiles has been added,
which allows the controller to ignore missing values files rather than failing to reconcile the HelmChart.
A new optional field .spec.ref.semverFilter has been added,
which allows the controller to filter the tags based on regular expressions
before applying the semver range. This allows
picking the latest release candidate
instead of the latest stable release.
In addition, the controller has been updated to Kubernetes v1.30.0,
Helm v3.14.4, and various other dependencies to their latest version
to patch upstream CVEs.
... (truncated)
Commits
a80a99b Merge pull request #1472 from fluxcd/release-v1.3.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the flux-deps group with 1 update: github.com/fluxcd/source-controller/api.
Updates
github.com/fluxcd/source-controller/apifrom 1.2.5 to 1.3.0Release notes
Sourced from github.com/fluxcd/source-controller/api's releases.
Changelog
Sourced from github.com/fluxcd/source-controller/api's changelog.
... (truncated)
Commits
a80a99bMerge pull request #1472 from fluxcd/release-v1.3.070901f8Release v1.3.005ab8b1Add changelog entry for v1.3.0c9bf167Merge pull request #1298 from fluxcd/phony-buildcc3d495ci: Print controller logs after e2e run0bd5b95Rename make targetbuildtomanageredccfe9Merge pull request #1470 from fluxcd/dependabot/github_actions/ci-b23e0286c69ce2d61build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 in the ci group16eeeefMerge pull request #1469 from fluxcd/dependabot/go_modules/go-deps-4411c5bc338598b8dbuild(deps): bump google.golang.org/apiDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show