feat(github-action): update fluxcd/flux2 ( v2.2.3 → v2.3.0 )

[jarvis-plus-bot[bot]]

This PR contains the following updates:

Package	Type	Update	Change	OpenSSF
fluxcd/flux2	action	minor	v2.2.3 -> v2.3.0

---

[!WARNING] Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

fluxcd/flux2 (fluxcd/flux2)

### [`v2.3.0`](https://redirect.github.com/fluxcd/flux2/releases/tag/v2.3.0) [Compare Source](https://redirect.github.com/fluxcd/flux2/compare/v2.2.3...v2.3.0) #### Highlights Flux v2.3.0 is a feature release. Users are encouraged to upgrade for the best experience. For a compressive overview of new features and API changes included in this release, please refer to the [Announcing Flux 2.3 GA blog post](https://fluxcd.io/blog/2024/05/flux-v2.3.0/). This release marks the General Availability (GA) of Flux Helm features and APIs, including helm-controller, the `HelmRelease`, `HelmChart`, and `HelmRepository` APIs. The `HelmRepository` v2 API comes with new features, such as the ability to reference Helm charts from `OCIRepository` sources, reuse existing `HelmChart` resources, and verify the integrity of Helm chart artifacts signed with Notary Notation. ❤️ Big thanks to all the Flux contributors that helped us with this release! ##### Kubernetes compatibility This release is compatible with the following Kubernetes versions: | Kubernetes version | Minimum required | |--------------------|------------------| | `v1.28` | `>= 1.28.0` | | `v1.29` | `>= 1.29.0` | | `v1.30` | `>= 1.30.0` | > \[!NOTE] > Note that the Flux project offers support only for the latest three minor versions of Kubernetes. > Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as > [ControlPlane](https://control-plane.io/enterprise-for-flux-cd/) that provide enterprise support for Flux. #### API changes ##### HelmRelease v2 The [HelmRelease](https://fluxcd.io/flux/components/helm/helmreleases/) kind was promoted from v2beta2 to v2 (GA). The v2 API is backwards compatible with v2beta2, with the exception of the deprecated fields which have been removed. Removed fields: - `.spec.chart.spec.valuesFile` replaced by `.spec.chart.spec.valuesFiles`. - `.spec.postRenderers.kustomize.patchesJson6902` replaced by `.spec.postRenderers.kustomize.patches`. - `.spec.postRenderers.kustomize.patchesStrategicMerge` replaced by `.spec.postRenderers.kustomize.patches`. - `.status.lastAppliedRevision` replaced by `.status.history.chartVersion`. New fields: - `.spec.chartRef` allows referencing chart artifacts from `OCIRepository` and `HelmChart` objects. - `.spec.chart.spec.ignoreMissingValuesFiles` allows ignoring missing values files instead of failing to reconcile. ##### HelmChart v1 The [HelmChart](https://fluxcd.io/flux/components/source/helmcharts/) kind was promoted from v1beta2 to v1 (GA). The v1 API is backwards compatible with v1beta2, with the exception of the deprecated fields which have been removed. Removed fields: - `.spec.valuesFile` replaced by `.spec.chart.valuesFiles`. New fields: - `.spec.ignoreMissingValuesFiles` allows ignoring missing values files instead of failing to reconcile. - `.spec.verify.provider: notation` verify the signature of a Helm OCI artifacts using Notation trust policy and CA certificate. ##### HelmRepository v1 The [HelmRepository](https://fluxcd.io/flux/components/source/helmrepositories/) kind was promoted from v1beta2 to v1 (GA). The v1 API is backwards compatible with v1beta2. ##### OCIRepository v1beta2 The [OCIRepository](https://fluxcd.io/flux/components/source/ocirepositoies/) kind gains new optional fields with no breaking changes. New fields: - `.spec.ref.semverFilter` allows filtering the tags based on regular expressions before applying the semver range. - `.spec.verify.provider: notation` verify the signature of OCI artifacts using Notation trust policy and CA certificate. ##### Kustomization v1 The Flux [Kustomization](https://fluxcd.io/flux/components/kustomize/kustomizations/) kind gains new optional fields with no breaking changes. New fields: - `.spec.namePrefix` allows setting a name prefix for the generated resources. - `.spec.nameSuffix` allows setting a name suffix for the generated resources. ##### ImageUpdateAutomation v1beta2 The [ImageUpdateAutomation](https://fluxcd.io/flux/components/image/imageupdateautomations/) kind was promoted from v1beta1 to v1beta2. The v1beta2 API is backwards compatible with v1beta1. Deprecated fields: - `Updated` template data has been deprecated in favour of `Changed` that is designed to accommodate for all the types of updates made. New fields: - `.spec.policySelector` allows filtering `ImagePolicy` based on labels. ##### Receiver v1 The [Receiver](https://fluxcd.io/flux/components/notification/receivers/) kind gains new optional fields with no breaking changes. New fields: - `.spec.type: cdevents` allows receiving, validating and filtering of CDEvents. #### Upgrade procedure Upgrade Flux from `v2.x` to `v2.3.0` either by [rerunning bootstrap](https://fluxcd.io/flux/installation/#bootstrap-upgrade) or by using the [Flux GitHub Action](https://redirect.github.com/fluxcd/flux2/tree/main/action). For more details, please refer to the upgrade guide from the [Announcing Flux 2.3 GA blog post](https://fluxcd.io/blog/2024/05/flux-v2.3.0/#installing-or-upgrading-flux). #### Components changelog - source-controller [v1.3.0](https://redirect.github.com/fluxcd/source-controller/blob/v1.3.0/CHANGELOG.md) - kustomize-controller [v1.3.0](https://redirect.github.com/fluxcd/kustomize-controller/blob/v1.3.0/CHANGELOG.md) - notification-controller [v1.3.0](https://redirect.github.com/fluxcd/notification-controller/blob/v1.3.0/CHANGELOG.md) - helm-controller [v1.0.0](https://redirect.github.com/fluxcd/helm-controller/blob/v1.0.0/CHANGELOG.md) [v1.0.1](https://redirect.github.com/fluxcd/helm-controller/blob/v1.0.1/CHANGELOG.md) - image-reflector-controller [v0.32.0](https://redirect.github.com/fluxcd/image-reflector-controller/blob/v0.32.0/CHANGELOG.md) - image-automation-controller [v0.38.0](https://redirect.github.com/fluxcd/image-automation-controller/blob/v0.38.0/CHANGELOG.md) ##### New Documentation - [HelmRelease v2 specification](https://fluxcd.io/flux/components/helm/helmreleases/) - [ImageUpdateAutomation v1beta2 specification](https://fluxcd.io/flux/components/image/imageupdateautomations/) - [Oracle VBS bootstrap guide](https://fluxcd.io/flux/installation/bootstrap/oracle-vbs-git-repositories/) - [Azure DevOps bootstrap guide for SSH RSA SHA-2](https://fluxcd.io/flux/installation/bootstrap/azure-devops/#bootstrap-using-ssh-keys) - [OpenShift installation guide and SCC configuration](https://fluxcd.io/flux/installation/configuration/openshift/) - [Air-gapped installation guide for private container registries](https://fluxcd.io/flux/installation/configuration/air-gapped/#bootstrap-flux-and-authenticate-to-a-private-container-registry) - [Bootstrap with Terraform examples](https://redirect.github.com/fluxcd/terraform-provider-flux/tree/main/examples) - [Flux hub-and-spoke example repository](https://redirect.github.com/fluxcd/flux2-hub-spoke-example) - [Flux CD Architecture Overview blog post](https://control-plane.io/posts/fluxcd-architecture-overview/) #### CLI Changelog - PR [#​4783](https://redirect.github.com/fluxcd/flux2/issues/4783) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - ci: Consolidate conformance tests - PR [#​4781](https://redirect.github.com/fluxcd/flux2/issues/4781) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Set Kubernetes 1.28 as min required version - PR [#​4780](https://redirect.github.com/fluxcd/flux2/issues/4780) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update helm-controller to v1.0.1 - PR [#​4779](https://redirect.github.com/fluxcd/flux2/issues/4779) - [@​fluxcdbot](https://redirect.github.com/fluxcdbot) - Update toolkit components - PR [#​4778](https://redirect.github.com/fluxcd/flux2/issues/4778) - [@​darkowlzz](https://redirect.github.com/darkowlzz) - tests/integration: Run flux check after installation - PR [#​4777](https://redirect.github.com/fluxcd/flux2/issues/4777) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Add k3s to the conformance test suite - PR [#​4775](https://redirect.github.com/fluxcd/flux2/issues/4775) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update `HelmRelease` API to v2 (GA) - PR [#​4773](https://redirect.github.com/fluxcd/flux2/issues/4773) - [@​makkes](https://redirect.github.com/makkes) - Add `(create|delete|export) source chart` commands - PR [#​4771](https://redirect.github.com/fluxcd/flux2/issues/4771) - [@​matheuscscp](https://redirect.github.com/matheuscscp) - Add 2.3.x release label - PR [#​4770](https://redirect.github.com/fluxcd/flux2/issues/4770) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update Flux architecture diagram - PR [#​4769](https://redirect.github.com/fluxcd/flux2/issues/4769) - [@​frekw](https://redirect.github.com/frekw) - Add `--reproducible` flag to `flux push artifact` - PR [#​4768](https://redirect.github.com/fluxcd/flux2/issues/4768) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Improve end-to-end test workflow - PR [#​4766](https://redirect.github.com/fluxcd/flux2/issues/4766) - [@​souleb](https://redirect.github.com/souleb) - Add support for HelmRelease v2 in `flux reconcile` and `flux create` - PR [#​4764](https://redirect.github.com/fluxcd/flux2/issues/4764) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - ci: Adapt image automation test to v1beta2 - PR [#​4759](https://redirect.github.com/fluxcd/flux2/issues/4759) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update Helm Source APIs to v1 (GA) - PR [#​4754](https://redirect.github.com/fluxcd/flux2/issues/4754) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Add `--ssh-hostkey-algos` flag to bootstrap command - PR [#​4747](https://redirect.github.com/fluxcd/flux2/issues/4747) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update dependencies to Kubernetes 1.30 - PR [#​4746](https://redirect.github.com/fluxcd/flux2/issues/4746) - [@​swade1987](https://redirect.github.com/swade1987) - Specifying go version in setup-go github action. - PR [#​4736](https://redirect.github.com/fluxcd/flux2/issues/4736) - [@​dependabot](https://redirect.github.com/dependabot)\[bot] - build(deps): bump the ci group with 4 updates - PR [#​4735](https://redirect.github.com/fluxcd/flux2/issues/4735) - [@​JasonTheDeveloper](https://redirect.github.com/JasonTheDeveloper) - feat(secret): add create notation secret handler - PR [#​4734](https://redirect.github.com/fluxcd/flux2/issues/4734) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Run conformance tests for Kubernetes 1.30.0 - PR [#​4729](https://redirect.github.com/fluxcd/flux2/issues/4729) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Add OpenShift to the conformance test suite - PR [#​4728](https://redirect.github.com/fluxcd/flux2/issues/4728) - [@​toomaj](https://redirect.github.com/toomaj) - bootstrap: Add support for Git HTTP/S authorization header - PR [#​4727](https://redirect.github.com/fluxcd/flux2/issues/4727) - [@​makkes](https://redirect.github.com/makkes) - Add flags for issuer/subject OCI signature verification - PR [#​4717](https://redirect.github.com/fluxcd/flux2/issues/4717) - [@​hawwwdi](https://redirect.github.com/hawwwdi) - Set `GOMAXPROCS` and `GOMEMLIMIT` to all Flux controllers - PR [#​4710](https://redirect.github.com/fluxcd/flux2/issues/4710) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Add `flux envsubst` command - PR [#​4709](https://redirect.github.com/fluxcd/flux2/issues/4709) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Add `--strict-substitute` flag to `flux build ks` and `flux diff ks` - PR [#​4706](https://redirect.github.com/fluxcd/flux2/issues/4706) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Add `--registry-creds` flag to bootstrap and install commands - PR [#​4705](https://redirect.github.com/fluxcd/flux2/issues/4705) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update dependencies to Kustomize v5.4.0 - PR [#​4701](https://redirect.github.com/fluxcd/flux2/issues/4701) - [@​fluxcdbot](https://redirect.github.com/fluxcdbot) - Update toolkit components - PR [#​4699](https://redirect.github.com/fluxcd/flux2/issues/4699) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update dependencies to Go 1.22 and Kubernetes 1.29.3 - PR [#​4689](https://redirect.github.com/fluxcd/flux2/issues/4689) - [@​makkes](https://redirect.github.com/makkes) - Pin envtest version - PR [#​4687](https://redirect.github.com/fluxcd/flux2/issues/4687) - [@​carlpett](https://redirect.github.com/carlpett) - Add permissions required for flow control - PR [#​4678](https://redirect.github.com/fluxcd/flux2/issues/4678) - [@​darkowlzz](https://redirect.github.com/darkowlzz) - Update `ImageUpdateAutomation` API to v1beta2 - PR [#​4666](https://redirect.github.com/fluxcd/flux2/issues/4666) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Mark RFC-0006 as implementable - PR [#​4657](https://redirect.github.com/fluxcd/flux2/issues/4657) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - ci: Include all go modules in snyk testing - PR [#​4654](https://redirect.github.com/fluxcd/flux2/issues/4654) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Remove deprecated e2e tests - PR [#​4629](https://redirect.github.com/fluxcd/flux2/issues/4629) - [@​rishinair11](https://redirect.github.com/rishinair11) - Fix a typo in `--force` flag description - PR [#​4620](https://redirect.github.com/fluxcd/flux2/issues/4620) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update Equinix ARM64 GitHub runners - PR [#​4610](https://redirect.github.com/fluxcd/flux2/issues/4610) - [@​takp](https://redirect.github.com/takp) - Fix typo in build.go - PR [#​4589](https://redirect.github.com/fluxcd/flux2/issues/4589) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update dependencies - PR [#​4583](https://redirect.github.com/fluxcd/flux2/issues/4583) - [@​fluxcdbot](https://redirect.github.com/fluxcdbot) - Update toolkit components - PR [#​4575](https://redirect.github.com/fluxcd/flux2/issues/4575) - [@​stefanprodan](https://redirect.github.com/stefanprodan) - Update dependencies to Kubernetes v1.28.6 - PR [#​4558](https://redirect.github.com/fluxcd/flux2/issues/4558) - [@​twinguy](https://redirect.github.com/twinguy) - `flux check` should error on unrecognised args - PR [#​4557](https://redirect.github.com/fluxcd/flux2/issues/4557) - [@​twinguy](https://redirect.github.com/twinguy) - `flux stats` should error on unrecognised args - PR [#​4553](https://redirect.github.com/fluxcd/flux2/issues/4553) - [@​twinguy](https://redirect.github.com/twinguy) - Properly detect unexpected arguments during uninstall - PR [#​4534](https://redirect.github.com/fluxcd/flux2/issues/4534) - [@​adamkenihan](https://redirect.github.com/adamkenihan) - \[RFC-0006] Flux-CDEvent Receiver

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.