All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
chore: update redis to avoid CVE-2022-2097 (#10031)
chore: update haproxy to 2.0.29 for redis-ha (#10045)
v2.4.7 (2022-07-18)
Bug fixes
fix: Support files in argocd.argoproj.io/manifest-generate-paths annotation (#9908)
fix: terminal websocket write lock to avoid races (#10011)
fix: updated all a tags to Link tags in app summary (#9777)
fix: e2e test to use func from clusterauth instead creating one with old logic (#9989)
fix: add missing download CLI tool URL response for ppc64le, s390x (#9983)
Other
chore: upgrade parse-url to avoid SNYK-JS-PARSEURL-2936249 (#9826)
docs: use quotes to emphasize that ConfigMap value is a string (#9995)
docs: document directory app include/exclude fields (#9997)
docs: simplify Docker toolchain docs (#9966) (#10006)
docs: supported versions (#9876)
v2.4.6 (2022-07-12)
Features
feat: Treat connection reset as a retryable error (#9739)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/argoproj/argo-cd/v2 from 2.11.6 to 2.12.1.
Release notes
Sourced from github.com/argoproj/argo-cd/v2's releases.
... (truncated)
Changelog
Sourced from github.com/argoproj/argo-cd/v2's changelog.
... (truncated)
Commits
26b2039
Bump version to 2.12.1 (#19568)952838c
fix(appset): cherry-pick - fix appset-in-any-namespace issue with git generat...7af4526
fix: appset gpg limitation for templated project fields (#19492) (#19534)b156b61
fix(appset): missing permissions for cluster install (#19059) (#19430) (#19435)fd47845
fix: docs version regex changed (#18756) (#19352)ec30a48
Bump version to 2.12.0 (#19383)57e61b2
feat: Add custom health check for cluster-api AWSManagedControlPlane (#19304)...6f2ae0d
Bump version to 2.12.0-rc5 (#19349)3e31ce9
fix: ArgoCD 2.11 - Loop of PATCH calls to Application objects (#19340) (#19343)dee59f3
feat(rbac): allow validation of fine-grained policy in project (#19338) (#19339)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show