search

nlamirault / dotfiles

My dotfiles
Other
0 stars 0 forks source link

Update dependency flux2 to v0.41.2 #73

Closed renovate[bot] closed 1 year ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Update Change
flux2 minor 0.15.1 -> 0.41.2

Release Notes

fluxcd/flux2 ### [`v0.41.2`](https://togithub.com/fluxcd/flux2/releases/tag/v0.41.2) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.41.1...v0.41.2) Flux v0.41.2 is a patch release which fixes a range of bugs found in the controllers. Please refer to the individual component changelogs for more information. :bulb: For more information about other features introduced in v0.41.0, please refer to [the changelog for this version](https://togithub.com/fluxcd/flux2/releases/tag/v0.41.0). #### Components Changelog - source-controller [v0.36.1](https://togithub.com/fluxcd/source-controller/blob/v0.36.1/CHANGELOG.md) - kustomize-controller [v0.35.1](https://togithub.com/fluxcd/kustomize-controller/blob/v0.35.1/CHANGELOG.md) - helm-controller [v0.31.2](https://togithub.com/fluxcd/helm-controller/blob/v0.31.2/CHANGELOG.md) - image-reflector-controller [v0.26.1](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.26.1/CHANGELOG.md) #### CLI Changelog - PR [#​3710](https://togithub.com/fluxcd/flux2/issues/3710) - [@​hiddeco](https://togithub.com/hiddeco) - tests/azure: update toolkit components - PR [#​3707](https://togithub.com/fluxcd/flux2/issues/3707) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3706](https://togithub.com/fluxcd/flux2/issues/3706) - [@​hiddeco](https://togithub.com/hiddeco) - build: update `actions/setup-go` in workflows - PR [#​3704](https://togithub.com/fluxcd/flux2/issues/3704) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump peter-evans/create-pull-request from 4.2.3 to 4.2.4 - PR [#​3703](https://togithub.com/fluxcd/flux2/issues/3703) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump github/codeql-action from 2.2.6 to 2.2.7 - PR [#​3701](https://togithub.com/fluxcd/flux2/issues/3701) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump actions/checkout from 3.3.0 to 3.4.0 - PR [#​3685](https://togithub.com/fluxcd/flux2/issues/3685) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump actions/cache from 3.2.6 to 3.3.0 - PR [#​3684](https://togithub.com/fluxcd/flux2/issues/3684) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump github/codeql-action from 2.2.5 to 2.2.6 - PR [#​3683](https://togithub.com/fluxcd/flux2/issues/3683) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump docker/setup-buildx-action from 2.4.1 to 2.5.0 ### [`v0.41.1`](https://togithub.com/fluxcd/flux2/releases/tag/v0.41.1) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.41.0...v0.41.1) Flux v0.41.1 is a patch release which extends the helm-controller's OOM watch feature introduced in v0.41.0 with support for automatic detection of cgroup v1 paths, and flags to configure alternative paths using `--oom-watch-max-memory-path` and `--oom-watch-current-memory-path`. :bulb: For more information about other features introduced in v0.41.0, please refer to [the changelog for this version](https://togithub.com/fluxcd/flux2/releases/tag/v0.41.0). #### Components changelog - helm-controller [v0.31.1](https://togithub.com/fluxcd/helm-controller/blob/v0.31.1/CHANGELOG.md) #### CLI Changelog - PR [#​3680](https://togithub.com/fluxcd/flux2/issues/3680) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3676](https://togithub.com/fluxcd/flux2/issues/3676) - [@​stefanprodan](https://togithub.com/stefanprodan) - Disable drift detection for kube-prometheus-stack webhooks ### [`v0.41.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.41.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.40.2...v0.41.0) Flux v0.41.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. #### Features and improvements - Experimental support of drift detection of Helm releases compared to cluster-state. - Improved handling of `SIGTERM` signals received by the helm-controller, which will now terminate running Helm install or upgrade actions, instead of potentially leaving them in a pending state. - Opt-in OOM watcher in helm-controller to handle graceful termination of the controller before it is forcefully killed by Kubernetes' OOM killer. - Kubernetes client and Custom Resource Definition life-cycle improvements to reduce the memory consumption of the helm-controller, with observed reductions up to 50%. - Opt-in allowance of DNS lookups during the rendering of Helm templates in the helm-controller via feature gate. - Optional disabling of the cache of the status poller used to determine the health of the resources applied by the kustomize-controller. This may improve memory usage on large scale clusters at the cost of more direct API calls. - Changes to the logging of all controllers to ensure Kubernetes components like the discovery client use the configured logging format. - New `flux events` command to display Kubernetes events for Flux resources, including the events of a referenced resource. - Custom annotations can now be set with `flux push` using `--annotations`. #### New documentation - Cheatsheet: [Enable Helm drift detection](https://fluxcd.io/flux/cheatsheets/bootstrap/#enable-helm-drift-detection) - Cheatsheet: [Enable Helm near OOM detection](https://fluxcd.io/flux/cheatsheets/bootstrap/#enable-helm-near-oom-detection) - Cheatsheet: [Allow Helm DNS lookups](https://fluxcd.io/flux/cheatsheets/bootstrap/#allow-helm-dns-lookups) - Controller: [New helm-controller feature gates and options](https://fluxcd.io/flux/components/helm/options/#feature-gates) - Controller: [New kustomize-controller feature gate](https://fluxcd.io/flux/components/kustomize/options/#feature-gates) - Spec: [HelmRelease drift detection](https://fluxcd.io/flux/components/helm/helmreleases/#drift-detection) #### Components changelog - source-controller [v0.36.0](https://togithub.com/fluxcd/source-controller/blob/v0.36.0/CHANGELOG.md) - kustomize-controller [v0.35.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.35.0/CHANGELOG.md) - helm-controller [v0.31.0](https://togithub.com/fluxcd/helm-controller/blob/v0.31.0/CHANGELOG.md) - notification-controller [v0.33.0](https://togithub.com/fluxcd/notification-controller/blob/v0.33.0/CHANGELOG.md) - image-reflector-controller [v0.26.0](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.26.0/CHANGELOG.md) - image-automation-controller [v0.31.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.31.0/CHANGELOG.md) #### CLI Changelog - PR [#​3628](https://togithub.com/fluxcd/flux2/issues/3628) - [@​somtochiama](https://togithub.com/somtochiama) - Add `flux events` command - PR [#​3674](https://togithub.com/fluxcd/flux2/issues/3674) - [@​hiddeco](https://togithub.com/hiddeco) - Update dependencies - PR [#​3673](https://togithub.com/fluxcd/flux2/issues/3673) - [@​stefanprodan](https://togithub.com/stefanprodan) - ci: Use latest available images of kindest/node - PR [#​3672](https://togithub.com/fluxcd/flux2/issues/3672) - [@​hiddeco](https://togithub.com/hiddeco) - tests/azure: update dependencies - PR [#​3670](https://togithub.com/fluxcd/flux2/issues/3670) - [@​hiddeco](https://togithub.com/hiddeco) - Update Go to 1.20 - PR [#​3669](https://togithub.com/fluxcd/flux2/issues/3669) - [@​hiddeco](https://togithub.com/hiddeco) - Update GitHub Action workflows - PR [#​3667](https://togithub.com/fluxcd/flux2/issues/3667) - [@​hiddeco](https://togithub.com/hiddeco) - Update helm-controller to v0.31.0 - PR [#​3666](https://togithub.com/fluxcd/flux2/issues/3666) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3653](https://togithub.com/fluxcd/flux2/issues/3653) - [@​stefanprodan](https://togithub.com/stefanprodan) - Allow custom annotations to be set when pushing OCI artifacts ### [`v0.40.2`](https://togithub.com/fluxcd/flux2/releases/tag/v0.40.2) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.40.1...v0.40.2) Flux v0.40.2 is a patch release which includes an update of the notification-controller to prevent an issue with the default API version used for ImageRepositories when no specific version is configured on a Receiver. Users are encouraged to upgrade for the best experience. :warning: Note that v0.40.0 contained breaking changes, please refer to [the changelog](https://togithub.com/fluxcd/flux2/releases/tag/v0.40.0) for more information. #### Components changelog - notification-controller [v0.32.1](https://togithub.com/fluxcd/notification-controller/blob/v0.32.1/CHANGELOG.md) #### CLI Changelog - PR [#​3645](https://togithub.com/fluxcd/flux2/issues/3645) - [@​hiddeco](https://togithub.com/hiddeco) - Update dependencies - PR [#​3644](https://togithub.com/fluxcd/flux2/issues/3644) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3638](https://togithub.com/fluxcd/flux2/issues/3638) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump actions/cache from 3.2.5 to 3.2.6 - PR [#​3637](https://togithub.com/fluxcd/flux2/issues/3637) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump github/codeql-action from 2.2.4 to 2.2.5 ### [`v0.40.1`](https://togithub.com/fluxcd/flux2/releases/tag/v0.40.1) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.40.0...v0.40.1) Flux v0.40.1 is a patch release which includes an update of the source-controller to prevent excessive memory usage while reconciling HelmRepository objects. Users are encouraged to upgrade for the best experience. :warning: Note that v0.40.0 contained breaking changes, please refer to [the changelog](https://togithub.com/fluxcd/flux2/releases/tag/v0.40.0) for more information. #### Components changelog - source-controller [v0.35.2](https://togithub.com/fluxcd/source-controller/blob/v0.35.2/CHANGELOG.md) #### CLI Changelog - PR [#​3626](https://togithub.com/fluxcd/flux2/issues/3626) - [@​hiddeco](https://togithub.com/hiddeco) - Update dependencies - PR [#​3624](https://togithub.com/fluxcd/flux2/issues/3624) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3615](https://togithub.com/fluxcd/flux2/issues/3615) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update implementation history of RFC-0003 and RFC-0005 ### [`v0.40.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.40.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.39.0...v0.40.0) #### Highlights Flux v0.40.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Breaking changes **Image Automation** The image-reflector-controller autologin flags have been deprecated and are no longer used. Please see the new API specification and migration instructions in the controller [changelog](https://togithub.com/fluxcd/image-reflector-controller/blob/main/CHANGELOG.md#​0250). **Notifications** The source revision format reported by the Flux controllers has changed according to [RFC-0005](https://togithub.com/fluxcd/flux2/tree/main/rfcs/0005-artifact-revision-and-digest). The events referring to Git repositories, will report the revision in the format `@​sha1:` instead of `/`. For more details please see the source-controller [changelog](https://togithub.com/fluxcd/source-controller/blob/main/CHANGELOG.md#​0350). **OCI artifacts** The OCI artifacts produced with `flux push artifact` have now custom media types: - artifact media type `application/vnd.oci.image.manifest.v1+json` - config media type `application/vnd.cncf.flux.config.v1+json` - content media type `application/vnd.cncf.flux.content.v1.tar+gzip` ##### Features and improvements - The `GitRepository` API has a new optional field `.spec.ref.name` for specifying a [Git Reference](https://git-scm.com/book/en/v2/Git-Internals-Git-References). This allows Flux to reconcile resources from GitHub Pull Requests (`refs/pull//head`) and GitLab Merge Requests (`refs/merge-requests//head`). - The `ImageRepository` and `ImagePolicy` APIs have been promoted to `v1beta2`. - Allow specifying the cloud provider contextual login for container registries with `ImageRepository.spec.provider`. - Improve observability of `ImageRepository` by showing the latest scanned tags under `.status.lastScanResult.latestTags`. - Improve observability of `ImagePolicy` by reporting the current and previous image tag in status and events. - The Kubernetes builtin cluster roles: `view`, `edit` and `admin` have been extended to allow access to Flux custom resources. - Print a report of Flux custom resources and the amount of cumulative storage used for each source type with `flux stats -A`. ##### New Documentation - API: [ImageRepository v1beta2](https://fluxcd.io/flux/components/image/imagerepositories/) - API: [ImagePolicy v1beta2](https://fluxcd.io/flux/components/image/imagepolicies/) - Security: [Aggregated cluster roles](https://fluxcd.io/flux/security/#controller-permissions) - Bootstrap: [Disable Kubernetes cluster role aggregations](https://fluxcd.io/flux/cheatsheets/bootstrap/#disable-kubernetes-cluster-role-aggregations) - Blog: [How Flux and Pulumi give each other superpowers](https://fluxcd.io/blog/2023/02/flux-pulumi-superpowers/) #### Components changelog - source-controller [v0.35.1](https://togithub.com/fluxcd/source-controller/blob/v0.35.1/CHANGELOG.md) [v0.35.0](https://togithub.com/fluxcd/source-controller/blob/v0.35.0/CHANGELOG.md) - kustomize-controller [v0.34.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.34.0/CHANGELOG.md) - helm-controller [v0.30.0](https://togithub.com/fluxcd/helm-controller/blob/v0.30.0/CHANGELOG.md) - notification-controller [v0.32.0](https://togithub.com/fluxcd/notification-controller/blob/v0.32.0/CHANGELOG.md) - image-reflector-controller [v0.25.0](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.25.0/CHANGELOG.md) - image-automation-controller [v0.30.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.30.0/CHANGELOG.md) #### CLI Changelog - PR [#​3612](https://togithub.com/fluxcd/flux2/issues/3612) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump fossa-contrib/fossa-action from 1.2.0 to 2.0.0 - PR [#​3610](https://togithub.com/fluxcd/flux2/issues/3610) - [@​hiddeco](https://togithub.com/hiddeco) - Update dependencies - PR [#​3606](https://togithub.com/fluxcd/flux2/issues/3606) - [@​hiddeco](https://togithub.com/hiddeco) - build: further solve issue release workflow - PR [#​3605](https://togithub.com/fluxcd/flux2/issues/3605) - [@​hiddeco](https://togithub.com/hiddeco) - build: ensure newlines work with $GITHUB_OUTPUT - PR [#​3604](https://togithub.com/fluxcd/flux2/issues/3604) - [@​hiddeco](https://togithub.com/hiddeco) - build: convert ::set-output to $GITHUB_OUTPUT - PR [#​3603](https://togithub.com/fluxcd/flux2/issues/3603) - [@​stefanprodan](https://togithub.com/stefanprodan) - Remove deprecated flags - PR [#​3602](https://togithub.com/fluxcd/flux2/issues/3602) - [@​hiddeco](https://togithub.com/hiddeco) - Update source-controller to v0.35.1 - PR [#​3601](https://togithub.com/fluxcd/flux2/issues/3601) - [@​stefanprodan](https://togithub.com/stefanprodan) - ci: Fix Snyk Go build VCS stamping error - PR [#​3598](https://togithub.com/fluxcd/flux2/issues/3598) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3592](https://togithub.com/fluxcd/flux2/issues/3592) - [@​hiddeco](https://togithub.com/hiddeco) - tests: only provide template values when used - PR [#​3587](https://togithub.com/fluxcd/flux2/issues/3587) - [@​hiddeco](https://togithub.com/hiddeco) - Support shortening of revision with digest - PR [#​3585](https://togithub.com/fluxcd/flux2/issues/3585) - [@​darkowlzz](https://togithub.com/darkowlzz) - Update image-reflector API to v1beta2 - PR [#​3584](https://togithub.com/fluxcd/flux2/issues/3584) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump docker/setup-buildx-action from 2.4.0 to 2.4.1 - PR [#​3583](https://togithub.com/fluxcd/flux2/issues/3583) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump snyk/actions from [`e25b2e6`](https://togithub.com/fluxcd/flux2/commit/e25b2e6f5658d1bb7a6671b113260f13134cc3af) to [`8061827`](https://togithub.com/fluxcd/flux2/commit/806182742461562b67788a64410098c9d9b96adb) - PR [#​3582](https://togithub.com/fluxcd/flux2/issues/3582) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump actions/cache from 3.2.4 to 3.2.5 - PR [#​3581](https://togithub.com/fluxcd/flux2/issues/3581) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump github/codeql-action from 2.2.1 to 2.2.4 - PR [#​3578](https://togithub.com/fluxcd/flux2/issues/3578) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add `flux stats` command to print the reconcilers status - PR [#​3575](https://togithub.com/fluxcd/flux2/issues/3575) - [@​stefanprodan](https://togithub.com/stefanprodan) - RFC-0003: Introduce Flux OCI media type - PR [#​3566](https://togithub.com/fluxcd/flux2/issues/3566) - [@​stefanprodan](https://togithub.com/stefanprodan) - rbac: Add view and edit aggregated cluster roles - PR [#​3563](https://togithub.com/fluxcd/flux2/issues/3563) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump actions/cache from 3.2.3 to 3.2.4 - PR [#​3562](https://togithub.com/fluxcd/flux2/issues/3562) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump goreleaser/goreleaser-action from 4.1.1 to 4.2.0 - PR [#​3560](https://togithub.com/fluxcd/flux2/issues/3560) - [@​stefanprodan](https://togithub.com/stefanprodan) - docs: Add permissions to update workflow ### [`v0.39.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.39.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.38.3...v0.39.0) #### Highlights Flux v0.39.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. Starting with this version, the Flux controllers come with [SBOMs and SLSA Provenance Attestations](https://fluxcd.io/flux/security/) embedded in their container images. The [Flux Terraform Provider](https://togithub.com/fluxcd/terraform-provider-flux) has a new resource for bootstrapping Flux, without depending on third-party Terraform providers, that allows customising the controllers at install time. Users are encouraged to migrate to this new resources and provide feedback. The Flux CLI is now included in [Wolfi OS](https://togithub.com/wolfi-dev/os), the Linux (Un)distro designed for securing the software supply chain. The Chainguard team and Wolfi maintainers are shipping updates for the Flux package on a regular basis. ##### Features and improvements - Recreate immutable resources (e.g. Kubernetes Jobs) by annotating or labeling them with `kustomize.toolkit.fluxcd.io/force: enabled`. - Support for HTTPS bearer token authentication for Git repositories. - Improve memory usage by disabling the caching of Secret and ConfigMap resources in all controllers. - Better observability with progressive status updates for Sources (Git, OCI, Helm, S3 Buckets). - Allow extracting the OCI artifact SHA256 digest for Cosign with `flux push artifact -o json`. - Track CRDs managed by Flux, `flux trace` and `flux tree` will show which HelmRelease deployed which CRDs. - Allow the Flux GitHub Action to use a GitHub token when checking for updates to avoid rate limiting. ##### New documentation - Security: [Software Bill of Materials](https://fluxcd.io/flux/security/#software-bill-of-materials) - Security: [SLSA Provenance Attestations](https://fluxcd.io/flux/security/#slsa-provenance-attestations) - Security: [Scanning Flux images for CVEs](https://fluxcd.io/flux/security/#scanning-for-cves) #### Components changelog - source-controller [v0.34.0](https://togithub.com/fluxcd/source-controller/blob/v0.34.0/CHANGELOG.md) - kustomize-controller [v0.33.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.33.0/CHANGELOG.md) - helm-controller [v0.29.0](https://togithub.com/fluxcd/helm-controller/blob/v0.29.0/CHANGELOG.md) - notification-controller [v0.31.0](https://togithub.com/fluxcd/notification-controller/blob/v0.31.0/CHANGELOG.md) - image-reflector-controller [v0.24.0](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.24.0/CHANGELOG.md) - image-automation-controller [v0.29.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.29.0/CHANGELOG.md) #### CLI Changelog - PR [#​3550](https://togithub.com/fluxcd/flux2/issues/3550) - [@​stefanprodan](https://togithub.com/stefanprodan) - flux tree: Set CRDs GroupKind in output - PR [#​3549](https://togithub.com/fluxcd/flux2/issues/3549) - [@​stefanprodan](https://togithub.com/stefanprodan) - flux tree: Track CRDs managed by HelmReleases - PR [#​3545](https://togithub.com/fluxcd/flux2/issues/3545) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3542](https://togithub.com/fluxcd/flux2/issues/3542) - [@​stefanprodan](https://togithub.com/stefanprodan) - flux tree: Add namespaces to objects reconciled from HRs - PR [#​3540](https://togithub.com/fluxcd/flux2/issues/3540) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add json/yaml output to flux push artifact - PR [#​3537](https://togithub.com/fluxcd/flux2/issues/3537) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update dependencies to Kubernetes v1.26.1 - PR [#​3532](https://togithub.com/fluxcd/flux2/issues/3532) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update Alpine to v3.17 and kubectl to v1.26.1 in flux-cli image - PR [#​3531](https://togithub.com/fluxcd/flux2/issues/3531) - [@​makkes](https://togithub.com/makkes) - fix misleading messaging when using `-A` flag - PR [#​3529](https://togithub.com/fluxcd/flux2/issues/3529) - [@​dependabot](https://togithub.com/dependabot)\[bot] - build(deps): bump docker/setup-buildx-action from 2.2.1 to 2.4.0 - PR [#​3526](https://togithub.com/fluxcd/flux2/issues/3526) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump anchore/sbom-action from 0.13.1 to 0.13.3 - PR [#​3525](https://togithub.com/fluxcd/flux2/issues/3525) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump github/codeql-action from 2.1.38 to 2.2.1 - PR [#​3524](https://togithub.com/fluxcd/flux2/issues/3524) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump goreleaser/goreleaser-action from 4.1.0 to 4.1.1 - PR [#​3517](https://togithub.com/fluxcd/flux2/issues/3517) - [@​jooooel](https://togithub.com/jooooel) - Fix broken GitHub Action and handle case where VERSION is provided as an input - PR [#​3507](https://togithub.com/fluxcd/flux2/issues/3507) - [@​thezanke](https://togithub.com/thezanke) - Update prometheus-community helm repo due to the suspension of OCI builds - PR [#​3501](https://togithub.com/fluxcd/flux2/issues/3501) - [@​kingdonb](https://togithub.com/kingdonb) - Add GITHUB_TOKEN to Flux GitHub Action - PR [#​3488](https://togithub.com/fluxcd/flux2/issues/3488) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump snyk/actions from [`1cc9026`](https://togithub.com/fluxcd/flux2/commit/1cc9026f51d822442cb4b872d8d7ead8cc69a018) to [`e25b2e6`](https://togithub.com/fluxcd/flux2/commit/e25b2e6f5658d1bb7a6671b113260f13134cc3af) - PR [#​3487](https://togithub.com/fluxcd/flux2/issues/3487) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/cache from 3.2.2 to 3.2.3 - PR [#​3486](https://togithub.com/fluxcd/flux2/issues/3486) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump github/codeql-action from 2.1.37 to 2.1.38 - PR [#​3477](https://togithub.com/fluxcd/flux2/issues/3477) - [@​raffis](https://togithub.com/raffis) - fix(install-script): support $GITHUB_TOKEN ### [`v0.38.3`](https://togithub.com/fluxcd/flux2/releases/tag/v0.38.3) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.38.2...v0.38.3) #### Highlights Flux v0.38.3 is a patch release that comes with fixes and small improvements to the CLI. Users are encouraged to upgrade for the best experience. #### CLI Changelog - PR [#​3476](https://togithub.com/fluxcd/flux2/issues/3476) - [@​aryan9600](https://togithub.com/aryan9600) - Update git/gogit to v0.4.1 - PR [#​3469](https://togithub.com/fluxcd/flux2/issues/3469) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/checkout from 3.2.0 to 3.3.0 - PR [#​3465](https://togithub.com/fluxcd/flux2/issues/3465) - [@​kingdonb](https://togithub.com/kingdonb) - Fix [fluxcd/website#​1347](https://togithub.com/fluxcd/website/issues/1347) - PR [#​3457](https://togithub.com/fluxcd/flux2/issues/3457) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/cache from 3.0.11 to 3.2.2 - PR [#​3441](https://togithub.com/fluxcd/flux2/issues/3441) - [@​stefanprodan](https://togithub.com/stefanprodan) - check: Show the latest stored version of CRDs ### [`v0.38.2`](https://togithub.com/fluxcd/flux2/releases/tag/v0.38.2) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.38.1...v0.38.2) Flux v0.38.2 is a patch release that comes with fixes for the Notification API `v1beta1` to `v1beta2` upgrade. In addition, this release improves the handling of the graceful shutdown for helm-controller. Users are encouraged to update Flux directly to v0.38.2 for the best experience. #### Components changelog - notification-controller [v0.30.2](https://togithub.com/fluxcd/notification-controller/blob/v0.30.2/CHANGELOG.md) - helm-controller [v0.28.1](https://togithub.com/fluxcd/helm-controller/blob/v0.28.1/CHANGELOG.md) #### CLI Changelog - PR [#​3437](https://togithub.com/fluxcd/flux2/issues/3437) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components ### [`v0.38.1`](https://togithub.com/fluxcd/flux2/releases/tag/v0.38.1) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.38.0...v0.38.1) Flux v0.38.1 is a patch release that comes with fixes for the Notification API `v1beta1` to `v1beta2` upgrade. Users are encouraged to update Flux directly to v0.38.1 for the best experience. #### Changelog - PR [#​3429](https://togithub.com/fluxcd/flux2/issues/3429) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update CLI commands to Notification API v1beta2 - PR [#​3428](https://togithub.com/fluxcd/flux2/issues/3428) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update notification-controller to v0.30.1 ### [`v0.38.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.38.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.37.0...v0.38.0) #### Highlights Flux v0.38.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Notification API v1beta2 This release graduates the Notification APIs to `v1beta2`. After upgrading the controllers on your clusters, you need to update the notification Custom Resources in Git by replacing `notification.toolkit.fluxcd.io/v1beta1` with `notification.toolkit.fluxcd.io/v1beta2` in all YAML manifests. ##### Breaking changes - The `Alert.spec.summary` has a max length of 255 characters. - The `Provider.spec.address` and `Provider.spec.proxy` have a max length of 2048 characters. - The `Receiver.status.url` was deprecated in favour of `Receiver.status.webhookPath`. For more details about `v1beta2` please see the notification-controller [chagelog](https://togithub.com/fluxcd/notification-controller/blob/main/CHANGELOG.md#​0300) and the [API spec documentation](https://fluxcd.io/flux/components/notification/). ##### Features and improvements - Support for defining Kustomize components with `Kustomization.spec.components`. - Support for piping multi-doc YAMLs when publishing OCI artifacts with `kustomize build . | flux push artifact --path=-`. - Support for Gitea commit status updates with `Provider.spec.type` set to `gitea`. - Improve the memory usage of helm-controller by disabling the caching of Secret and ConfigMap resources. - Update the Helm SDK to v3.10.3 (fix for Helm CVEs). - All code references to `libgit2` were removed, and the `GitRepository.spec.gitImplementation` field is no longer being honored. ##### Documentation improvements The official [example repository](https://togithub.com/fluxcd/flux2-kustomize-helm-example) was refactored. The new version comes with the following improvements: - Make the example compatible with ARM64 Kubernetes clusters. - Add Weave GitOps Helm release to showcase the [Flux UI](https://togithub.com/fluxcd/flux2-kustomize-helm-example#access-the-flux-ui). - Replace the `ingress-nginx` Bitnami chart with the official one that contains multi-arch container images. - Add `cert-manager` Helm release to showcase how to install CRDs and custom resources using `dependsOn`. - Add Let's Encrypt `ClusterIssuer` to showcase how to patch resources in production with Flux Kustomization. - Add the `flux-system` overlay to showcase how to configure Flux at bootstrap time. #### Components changelog - source-controller [v0.33.0](https://togithub.com/fluxcd/source-controller/blob/v0.33.0/CHANGELOG.md) - kustomize-controller [v0.32.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.32.0/CHANGELOG.md) - helm-controller [v0.28.0](https://togithub.com/fluxcd/helm-controller/blob/v0.28.0/CHANGELOG.md) - notification-controller [v0.30.0](https://togithub.com/fluxcd/notification-controller/blob/v0.30.0/CHANGELOG.md) - image-reflector-controller [v0.23.1](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.23.1/CHANGELOG.md) - image-automation-controller [v0.28.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.28.0/CHANGELOG.md) #### CLI Changelog - PR [#​3427](https://togithub.com/fluxcd/flux2/issues/3427) - [@​hiddeco](https://togithub.com/hiddeco) - Update dependencies - PR [#​3424](https://togithub.com/fluxcd/flux2/issues/3424) - [@​pjbgf](https://togithub.com/pjbgf) - build: Revert sigstore/cosign-installer to v2.8.1 - PR [#​3423](https://togithub.com/fluxcd/flux2/issues/3423) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump github/codeql-action from 2.1.36 to 2.1.37 - PR [#​3422](https://togithub.com/fluxcd/flux2/issues/3422) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 - PR [#​3421](https://togithub.com/fluxcd/flux2/issues/3421) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/setup-go from 3.4.0 to 3.5.0 - PR [#​3420](https://togithub.com/fluxcd/flux2/issues/3420) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/checkout from 3.1.0 to 3.2.0 - PR [#​3418](https://togithub.com/fluxcd/flux2/issues/3418) - [@​somtochiama](https://togithub.com/somtochiama) - Fix path on `flux push` - PR [#​3415](https://togithub.com/fluxcd/flux2/issues/3415) - [@​souleb](https://togithub.com/souleb) - Fix dry-run still loading kubeconfig issue - PR [#​3413](https://togithub.com/fluxcd/flux2/issues/3413) - [@​aryan9600](https://togithub.com/aryan9600) - Update dependencies - PR [#​3408](https://togithub.com/fluxcd/flux2/issues/3408) - [@​souleb](https://togithub.com/souleb) - Update fluxcd/pkg/kustomize dependency - PR [#​3404](https://togithub.com/fluxcd/flux2/issues/3404) - [@​stefanprodan](https://togithub.com/stefanprodan) - e2e: Fix Azure test suite - PR [#​3394](https://togithub.com/fluxcd/flux2/issues/3394) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Update sigstore/cosign-installer requirement to [`b6757d8`](https://togithub.com/fluxcd/flux2/commit/b6757d8360bb6b9803c38b68e8cb7442baaf7eb5) - PR [#​3393](https://togithub.com/fluxcd/flux2/issues/3393) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump github/codeql-action from 2.1.35 to 2.1.36 - PR [#​3389](https://togithub.com/fluxcd/flux2/issues/3389) - [@​somtochiama](https://togithub.com/somtochiama) - Push/Build artifacts from stdin - PR [#​3377](https://togithub.com/fluxcd/flux2/issues/3377) - [@​aryan9600](https://togithub.com/aryan9600) - bootstrap: fallback to default known_hosts - PR [#​3372](https://togithub.com/fluxcd/flux2/issues/3372) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump peter-evans/create-pull-request from 4.2.2 to 4.2.3 - PR [#​3371](https://togithub.com/fluxcd/flux2/issues/3371) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump snyk/actions from [`a8dd587`](https://togithub.com/fluxcd/flux2/commit/a8dd587d8a94f5663fa3d67d51abd0cc66aff244) to [`1cc9026`](https://togithub.com/fluxcd/flux2/commit/1cc9026f51d822442cb4b872d8d7ead8cc69a018) - PR [#​3370](https://togithub.com/fluxcd/flux2/issues/3370) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/setup-go from 3.3.1 to 3.4.0 - PR [#​3369](https://togithub.com/fluxcd/flux2/issues/3369) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump github/codeql-action from 2.1.33 to 2.1.35 - PR [#​3360](https://togithub.com/fluxcd/flux2/issues/3360) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3352](https://togithub.com/fluxcd/flux2/issues/3352) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump peter-evans/create-pull-request from 4.2.0 to 4.2.2 - PR [#​3350](https://togithub.com/fluxcd/flux2/issues/3350) - [@​stefanprodan](https://togithub.com/stefanprodan) - Set notification-controller container image to GHCR - PR [#​3345](https://togithub.com/fluxcd/flux2/issues/3345) - [@​stefanprodan](https://togithub.com/stefanprodan) - e2e: Refactor Azure test suite to use go-git ### [`v0.37.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.37.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.36.0...v0.37.0) #### Highlights Flux v0.37.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Breaking changes ##### Deprecation of `gitImplementation` The interpretation of the `gitImplementation` field of `GitRepository` by source-controller and image-automation-controller has been deprecated, and will effectively always use `go-git`. This now supports all Git servers, including Azure DevOps and AWS CodeCommit, which previously were only supported by `libgit2`. To opt-out from this behaviour, and get the controller to honour the field `.spec.gitImplementation`, start the controller with: `--feature-gates=ForceGoGitImplementation=false`. For more information on this change, refer to the controllers's respective changelogs [listed below](#components-changelog). ##### Automatic force-push of `ImageUpdateAutomation` Starting from this version, `ImageUpdateAutomation` objects with a `.spec.PushBranch` specified will have the push branch refreshed automatically via force push. To opt-out from this behaviour, start the controller with: `--feature-gates=GitForcePushBranch=false.` ##### Features and improvements - Support for bootstrapping Azure DevOps and AWS CodeCommit repositories using `flux bootstrap git`. - Support cloning of Git v2 protocol (Azure DevOps and AWS CodeCommit) for `go-git` Git provider. - Support force-pushing `ImageUpdateAutomation` repositories. - Allow a dry-run of `flux build kustomization` with `--dry-run` and `--kustomization-file ./path/to/local/my-app.yaml`. Using these flags, variable substitutions from Secrets and ConfigMaps are skipped, and no connection to the cluster is made. - Use signed OCI Helm chart for [kube-prometheus-stack](https://fluxcd.io/flux/guides/monitoring/). ##### New documentation - Guide: [AWS CodeCommit bootstrap](https://fluxcd.io/flux/use-cases/aws-codecommit) - Guide: [Azure DevOps bootstrap](https://fluxcd.io/flux/use-cases/azure/#flux-installation-for-azure-devops) #### Components changelog - source-controller [v0.32.1](https://togithub.com/fluxcd/source-controller/blob/v0.32.1/CHANGELOG.md) - kustomize-controller [v0.31.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.31.0/CHANGELOG.md) - helm-controller [v0.27.0](https://togithub.com/fluxcd/helm-controller/blob/v0.27.0/CHANGELOG.md) - notification-controller [v0.29.0](https://togithub.com/fluxcd/notification-controller/blob/v0.29.0/CHANGELOG.md) - image-reflector-controller [v0.23.0](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.23.0/CHANGELOG.md) - image-automation-controller [v0.27.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.27.0/CHANGELOG.md) #### CLI Changelog - PR [#​3339](https://togithub.com/fluxcd/flux2/issues/3339) - [@​hiddeco](https://togithub.com/hiddeco) - Update dependencies - PR [#​3326](https://togithub.com/fluxcd/flux2/issues/3326) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3324](https://togithub.com/fluxcd/flux2/issues/3324) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update kubectl and remove nsswitch.conf in flux-cli image - PR [#​3323](https://togithub.com/fluxcd/flux2/issues/3323) - [@​pjbgf](https://togithub.com/pjbgf) - build: Pin GitHub Actions - PR [#​3317](https://togithub.com/fluxcd/flux2/issues/3317) - [@​souleb](https://togithub.com/souleb) - Add a dry-run mode to flux build kustomization - PR [#​3303](https://togithub.com/fluxcd/flux2/issues/3303) - [@​stefanprodan](https://togithub.com/stefanprodan) - monitoring: Use kube-prometheus-stack signed OCI Helm chart - PR [#​3299](https://togithub.com/fluxcd/flux2/issues/3299) - [@​aryan9600](https://togithub.com/aryan9600) - Refactor bootstrap process to use `fluxcd/pkg/git` - PR [#​3294](https://togithub.com/fluxcd/flux2/issues/3294) - [@​phillebaba](https://togithub.com/phillebaba) - Aggregate errors in uninstall functions - PR [#​3288](https://togithub.com/fluxcd/flux2/issues/3288) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump hashicorp/setup-terraform from 2.0.2 to 2.0.3 - PR [#​3281](https://togithub.com/fluxcd/flux2/issues/3281) - [@​stefanprodan](https://togithub.com/stefanprodan) - Refactor ARM64 e2e test suite - PR [#​3269](https://togithub.com/fluxcd/flux2/issues/3269) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump actions/setup-go from 2 to 3 - PR [#​3249](https://togithub.com/fluxcd/flux2/issues/3249) - [@​phillebaba](https://togithub.com/phillebaba) - Remove file reading from bootstrap package ### [`v0.36.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.36.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.35.0...v0.36.0) #### Highlights Flux v0.36.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Features and improvements - Verify OCI Helm charts signed by Cosign (including keyless) with [HelmChart.spec.verify](https://fluxcd.io/docs/cheatsheets/oci-artifacts/#verify-helm-charts). - Allow publishing a single YAML file to OCI with `flux push artifact --path=deploy/install.yaml`. - Detect changes to local files before pushing to OCI with `flux diff artifact --path=`. - New Alert Provider type named `generic-hmac` for authenticating the webhook requests coming from notification-controller. - The `Kustomization.status.conditions` have been aligned with Kubernetes standard conditions and kstatus. - The kustomize-controller memory usage was reduced by 90% when performing artifact operations. ##### New documentation - Guide: [How to deploy Flagger with Flux using signed Helm charts and OCI artifacts](https://fluxcd.io/flagger/install/flagger-install-with-flux/) - FAQ: [Should I be using Kustomize remote bases?](https://fluxcd.io/flux/faq/#should-i-be-using-kustomize-remote-bases) - FAQ: [Should I be using Kustomize Helm chart plugin?](https://fluxcd.io/flux/faq/#should-i-be-using-kustomize-helm-chart-plugin) #### Components changelog - source-controller [v0.31.0](https://togithub.com/fluxcd/source-controller/blob/v0.31.0/CHANGELOG.md) - kustomize-controller [v0.30.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.30.0/CHANGELOG.md) - helm-controller [v0.26.0](https://togithub.com/fluxcd/helm-controller/blob/v0.26.0/CHANGELOG.md) - notification-controller [v0.28.0](https://togithub.com/fluxcd/notification-controller/blob/v0.28.0/CHANGELOG.md) - image-reflector-controller [v0.22.1](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.22.1/CHANGELOG.md) - image-automation-controller [v0.26.1](https://togithub.com/fluxcd/image-automation-controller/blob/v0.26.1/CHANGELOG.md) #### CLI Changelog - PR [#​3242](https://togithub.com/fluxcd/flux2/issues/3242) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update dependencies - PR [#​3237](https://togithub.com/fluxcd/flux2/issues/3237) - [@​phillebaba](https://togithub.com/phillebaba) - Move bootstrap package from internal to pkg - PR [#​3236](https://togithub.com/fluxcd/flux2/issues/3236) - [@​stefanprodan](https://togithub.com/stefanprodan) - ci: Refactor GitHub workflows - PR [#​3232](https://togithub.com/fluxcd/flux2/issues/3232) - [@​eddie-knight](https://togithub.com/eddie-knight) - Additional workflow permissions tweaks - PR [#​3231](https://togithub.com/fluxcd/flux2/issues/3231) - [@​eddie-knight](https://togithub.com/eddie-knight) - Adjusted workflow permissions - PR [#​3229](https://togithub.com/fluxcd/flux2/issues/3229) - [@​stefanprodan](https://togithub.com/stefanprodan) - RFC-0002: Add Cosign verification for Helm OCI charts - PR [#​3224](https://togithub.com/fluxcd/flux2/issues/3224) - [@​developer-guy](https://togithub.com/developer-guy) - Add `diff artifact` command - PR [#​3220](https://togithub.com/fluxcd/flux2/issues/3220) - [@​stefanprodan](https://togithub.com/stefanprodan) - Only run e2e tests for Dependabot PRs - PR [#​3219](https://togithub.com/fluxcd/flux2/issues/3219) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump github/codeql-action from 1 to 2 - PR [#​3218](https://togithub.com/fluxcd/flux2/issues/3218) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump peter-evans/create-pull-request from 3 to 4 - PR [#​3217](https://togithub.com/fluxcd/flux2/issues/3217) - [@​dependabot](https://togithub.com/dependabot)\[bot] - Bump hashicorp/setup-terraform from 1 to 2.0.2 - PR [#​3216](https://togithub.com/fluxcd/flux2/issues/3216) - [@​stefanprodan](https://togithub.com/stefanprodan) - Enable Dependabot for GitHub Actions - PR [#​3214](https://togithub.com/fluxcd/flux2/issues/3214) - [@​eddie-knight](https://togithub.com/eddie-knight) - Added ArtifactHub badge - PR [#​3213](https://togithub.com/fluxcd/flux2/issues/3213) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add FOSSA license scanning badge - PR [#​3198](https://togithub.com/fluxcd/flux2/issues/3198) - [@​phillebaba](https://togithub.com/phillebaba) - Add nop logger - PR [#​3197](https://togithub.com/fluxcd/flux2/issues/3197) - [@​phillebaba](https://togithub.com/phillebaba) - Move uninstall code to pkg - PR [#​3190](https://togithub.com/fluxcd/flux2/issues/3190) - [@​developer-guy](https://togithub.com/developer-guy) - Accept a file path as input for `flux build|push artifact` - PR [#​3187](https://togithub.com/fluxcd/flux2/issues/3187) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3174](https://togithub.com/fluxcd/flux2/issues/3174) - [@​phillebaba](https://togithub.com/phillebaba) - Update libgit2 version in Azure e2e tests - PR [#​3162](https://togithub.com/fluxcd/flux2/issues/3162) - [@​somtochiama](https://togithub.com/somtochiama) - Update golden file for `get source oci` - PR [#​3161](https://togithub.com/fluxcd/flux2/issues/3161) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update RFC-0003 implementation history ### [`v0.35.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.35.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.34.0...v0.35.0) #### Highlights Flux v0.35.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Breaking changes Strict validation rules have been put in place for API fields which define a time duration, such as `.spec.interval`. Effectively, this means values without a time unit (e.g. `ms`, `s`, `m`, `h`) will now be rejected by the API server. ##### Features and improvements - Verify OCI artifacts signed by Cosign (including keyless) with [OCIRepository.spec.verify](https://fluxcd.io/docs/components/source/ocirepositories/#verification). - Allow pulling Helm charts dependencies from HTTPS repositories with mixed self-signed TLS and public CAs. - Allow pulling Helm charts from OCI artifacts stored at the root of AWS ECR. - Allow running bootstrap for insecure HTTP Git servers with `flux bootstrap git --allow-insecure-http --token-auth`. - Improve health checking for global objects such as ClusterClass, GatewayClass, StorageClass, etc. - The controllers and the Flux CLI are now built with Go 1.19. For more information on OCI and Cosign support please see the [Flux documentation](https://fluxcd.io/docs/cheatsheets/oci-artifacts/#signing-and-verification). #### Components changelog - source-controller [v0.30.0](https://togithub.com/fluxcd/source-controller/blob/v0.30.0/CHANGELOG.md) - kustomize-controller [v0.29.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.29.0/CHANGELOG.md) - helm-controller [v0.25.0](https://togithub.com/fluxcd/helm-controller/blob/v0.25.0/CHANGELOG.md) - notification-controller [v0.27.0](https://togithub.com/fluxcd/notification-controller/blob/v0.27.0/CHANGELOG.md) - image-reflector-controller [v0.22.0](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.22.0/CHANGELOG.md) - image-automation-controller [v0.26.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.26.0/CHANGELOG.md) #### CLI Changelog - PR [#​3154](https://togithub.com/fluxcd/flux2/issues/3154) - [@​stefanprodan](https://togithub.com/stefanprodan) - \[RFC-0003] Add Cosign keyless specification - PR [#​3153](https://togithub.com/fluxcd/flux2/issues/3153) - [@​stefanprodan](https://togithub.com/stefanprodan) - Build with Go 1.19 - PR [#​3149](https://togithub.com/fluxcd/flux2/issues/3149) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3145](https://togithub.com/fluxcd/flux2/issues/3145) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add component label for controllers and their CRDs - PR [#​3117](https://togithub.com/fluxcd/flux2/issues/3117) - [@​carlosonunez-vmw](https://togithub.com/carlosonunez-vmw) - Maintain original scheme when using --token-auth - PR [#​3098](https://togithub.com/fluxcd/flux2/issues/3098) - [@​Santosh1176](https://togithub.com/Santosh1176) - \[Grafana] Use `container_memory_working_set_bytes` to report memory consumption ### [`v0.34.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.34.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.33.0...v0.34.0) #### Highlights Flux v0.34.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Breaking changes The Flux controller logs have been aligned with the Kubernetes structured logging. For more details on the new logging structure please see: [fluxcd/flux2#​3051](https://togithub.com/fluxcd/flux2/issues/3051). ##### Features and improvements - [OCIRepository.spec.insecure](https://fluxcd.io/docs/components/source/ocirepositories/#insecure) Allow pulling artifacts from an in-cluster Docker Registry over plain HTTP. - Allow defining OCI sources for non-TLS container registries with `flux create source oci --insecure`. - Enable contextual login when publishing OCI artifacts from a Cloud VM using `flux push artifact --provider=aws|azure|gcp`. - Prioritise static credentials over OIDC providers when pulling OCI artifacts from container registries on multi-tenant cluster. - Reconcile Kubernetes Class types (ClusterClass, GatewayClass, StorageClass, etc) in a dedicated stage before any other custom resources like Clusters, Gateways, Volumes, etc. - When multiple SOPS providers are available, run the offline decryption methods first to avoid failures due to KMS unavailability. - Add finalizers to the notification API to properly record the reconciliation metrics for deleted resources. - Publish the Flux install manifests as OCI artifacts on GitHub and DockerHub container registries under `fluxcd/flux-manifests`. #### Components Changelog - source-controller [v0.29.0](https://togithub.com/fluxcd/source-controller/blob/v0.27.0/CHANGELOG.md) - kustomize-controller [v0.28.0](https://togithub.com/fluxcd/kustomize-controller/blob/v0.28.0/CHANGELOG.md) - helm-controller [v0.24.0](https://togithub.com/fluxcd/helm-controller/blob/v0.24.0/CHANGELOG.md) - notification-controller [v0.26.0](https://togithub.com/fluxcd/notification-controller/blob/v0.26.0/CHANGELOG.md) - image-reflector-controller [v0.21.0](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.21.0/CHANGELOG.md) - image-automation-controller [v0.25.0](https://togithub.com/fluxcd/image-automation-controller/blob/v0.25.0/CHANGELOG.md) #### CLI Changelog - PR [#​3097](https://togithub.com/fluxcd/flux2/issues/3097) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add `--insecure` flag to `flux create source oci` - PR [#​3091](https://togithub.com/fluxcd/flux2/issues/3091) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​3088](https://togithub.com/fluxcd/flux2/issues/3088) - [@​stefanprodan](https://togithub.com/stefanprodan) - Publish the install manifests to GHCR and DockerHub as OCI artifacts - PR [#​3087](https://togithub.com/fluxcd/flux2/issues/3087) - [@​somtochiama](https://togithub.com/somtochiama) - Remove finalizers for notification CRs on uninstall - PR [#​3085](https://togithub.com/fluxcd/flux2/issues/3085) - [@​souleb](https://togithub.com/souleb) - \[bootstrap] Make sure we reconcile with the right reconciliation method - PR [#​3082](https://togithub.com/fluxcd/flux2/issues/3082) - [@​stefanprodan](https://togithub.com/stefanprodan) - Remove finalizers for OCI repositories on uninstall - PR [#​3079](https://togithub.com/fluxcd/flux2/issues/3079) - [@​adrien-f](https://togithub.com/adrien-f) - Support autologin when pushing OCI artifacts - PR [#​3073](https://togithub.com/fluxcd/flux2/issues/3073) - [@​acondrat](https://togithub.com/acondrat) - Filter out non-running pods in Prometheus - PR [#​3063](https://togithub.com/fluxcd/flux2/issues/3063) - [@​somtochiama](https://togithub.com/somtochiama) - Update `flux logs` to accomodate the new format - PR [#​3053](https://togithub.com/fluxcd/flux2/issues/3053) - [@​dholbach](https://togithub.com/dholbach) - Revert "Fix broken "edit this page" links in Flux CLI section" - PR [#​3052](https://togithub.com/fluxcd/flux2/issues/3052) - [@​dholbach](https://togithub.com/dholbach) - update to new doc links structure - PR [#​3050](https://togithub.com/fluxcd/flux2/issues/3050) - [@​stefanprodan](https://togithub.com/stefanprodan) - Status update for RFC-0002 and RFC-0003 ### [`v0.33.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.33.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.32.0...v0.33.0) #### Highlights Flux v0.33.0 comes with new features and improvements. Users are encouraged to upgrade for the best experience. ##### Features and improvements - [HelmRepository.spec.provider](https://fluxcd.io/docs/components/source/helmrepositories/#provider) Enable contextual login to container registries when pulling Helm charts from Amazon Elastic Container Registry, Azure Container Registry and Google Artifact Registry. - [OCIRepository.spec.layerSelector](https://fluxcd.io/docs/components/source/ocirepositories/#layer-selector) Select which layer contains the Kubernetes configs by specifying a matching OCI media type. - [Bucket.spec.secretRef](https://fluxcd.io/docs/components/source/buckets/#azure-blob-sas-token-example) Authenticate to Azure Blob storage using SAS tokens. - Allow filtering OCI artifacts by semver and regex when listing artifact with `flux list artifacts`. - Allow excluding local files and directories when building and publishing artifacts with `flux push artifact`. - Mitigate denial-of-service on multi-tenant clusters by automatically recovering from panics encountered during reconciliation. - Update controllers to Kubernetes v1.25.0, Kustomize v4.5.7 and Helm v3.9.4. ##### New documentation - [Secrets Management](https://fluxcd.io/docs/security/secrets-management/) - [Contextual Authorization](https://fluxcd.io/docs/security/contextual-authorization/) #### Components changelog - source-controller [v0.27.0](https://togithub.com/fluxcd/source-controller/blob/v0.27.0/CHANGELOG.md) [v0.28.0](https://togithub.com/fluxcd/source-controller/blob/v0.28.0/CHANGELOG.md) - kustomize-controller [v0.27.1](https://togithub.com/fluxcd/kustomize-controller/blob/v0.27.1/CHANGELOG.md) - helm-controller [v0.23.1](https://togithub.com/fluxcd/helm-controller/blob/v0.23.1/CHANGELOG.md) - notification-controller [v0.25.2](https://togithub.com/fluxcd/notification-controller/blob/v0.25.2/CHANGELOG.md) - image-reflector-controller [v0.20.1](https://togithub.com/fluxcd/image-reflector-controller/blob/v0.20.1/CHANGELOG.md) - image-automation-controller [v0.24.2](https://togithub.com/fluxcd/image-automation-controller/blob/v0.24.2/CHANGELOG.md) #### CLI Changelog - PR [#​3049](https://togithub.com/fluxcd/flux2/issues/3049) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update Kubernetes dependencies to v1.25.0 - PR [#​3034](https://togithub.com/fluxcd/flux2/issues/3034) - [@​snebel29](https://togithub.com/snebel29) - Fix broken "edit this page" links in Flux CLI section - PR [#​3028](https://togithub.com/fluxcd/flux2/issues/3028) - [@​snebel29](https://togithub.com/snebel29) - Update tests/azure github.com/hashicorp/terraform-exec to v0.16.1 - PR [#​3025](https://togithub.com/fluxcd/flux2/issues/3025) - [@​stefanprodan](https://togithub.com/stefanprodan) - \[RFC-0002] Add auth specification for Helm OCI - PR [#​3024](https://togithub.com/fluxcd/flux2/issues/3024) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add version validation to install commands - PR [#​3019](https://togithub.com/fluxcd/flux2/issues/3019) - [@​somtochiama](https://togithub.com/somtochiama) - Improve error message in get cmd - PR [#​3014](https://togithub.com/fluxcd/flux2/issues/3014) - [@​stefanprodan](https://togithub.com/stefanprodan) - \[RFC-0003] Select layer by OCI media type - PR [#​2999](https://togithub.com/fluxcd/flux2/issues/2999) - [@​fluxcdbot](https://togithub.com/fluxcdbot) - Update toolkit components - PR [#​2998](https://togithub.com/fluxcd/flux2/issues/2998) - [@​somtochiama](https://togithub.com/somtochiama) - Add `--filter-semver` and `--filter-regex` flags to `list artifacts` - PR [#​2997](https://togithub.com/fluxcd/flux2/issues/2997) - [@​stefanprodan](https://togithub.com/stefanprodan) - Use ghcr.io in the static manifests - PR [#​2996](https://togithub.com/fluxcd/flux2/issues/2996) - [@​stefanprodan](https://togithub.com/stefanprodan) - Update dependencies - PR [#​2995](https://togithub.com/fluxcd/flux2/issues/2995) - [@​stefanprodan](https://togithub.com/stefanprodan) - Add `--ignore-paths` arg to `flux build|push artifact` - PR [#​2979](https://togithub.com/fluxcd/flux2/issues/2979) - [@​stefanprodan](https://togithub.com/stefanprodan) - Status update for RFC-0002 and RFC-0003 ### [`v0.32.0`](https://togithub.com/fluxcd/flux2/releases/tag/v0.32.0) [Compare Source](https://togithub.com/fluxcd/flux2/compare/v0.31.5...v0.32.0) #### Highlights Flux v0.32.0 comes with support for distributing Kubernetes manifests, Kustomize overlays and Terraform code as OCI artifacts. For more information please see the [Flux OCI documentation](https://fluxcd.io/docs/cheatsheets/oci-artifacts/). ##### New features - New Flux CLI commands `flux push|pull|tag artifact` for publishing OCI Artifacts to container registries. - New source type [OCIRepository](https://f

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.