clank/kubernetes-state
1
0
Fork 0
Code Issues 1 Pull Requests Projects Releases Wiki Activity

Update dependency fluxcd/flux2 to v2.4.0 #18

Merged
kjuulh merged 1 commits from renovate/all into main 2024-10-01 06:41:48 +02:00
Conversation 0 Commits 1 Files Changed 1 +6615 -3789
kjuulh commented 2023-12-19 19:02:22 +01:00
Owner
Copy Link

This PR contains the following updates:

Package Update Change
fluxcd/flux2 minor v2.2.1 -> v2.4.0

Release Notes

fluxcd/flux2 (fluxcd/flux2)

v2.4.0

Compare Source

Highlights

Flux v2.4.0 is a feature release. Users are encouraged to upgrade for the best experience.

For a compressive overview of new features and API changes included in this release, please refer to the Announcing Flux 2.4 GA blog post.

This release marks the General Availability (GA) of Flux Bucket API. The Bucket v1 API comes with new features including: proxy support, mTLS and custom STS configuration for AWS S3 and MinIO LDAP authentication.

The GitRepository v1 API gains support for OIDC authentication. Starting with this version, you can authenticate against Azure DevOps repositories using AKS Workload Identity.

The OCIRepository v1beta2 API gains support for proxy configuration thus allowing dedicated HTTP/S Proxy authentication on multi-tenant Kubernetes clusters.

The HelmRelease v2 API gains support for disabling JSON schema validation of the Helm release values during installation and upgrade. And allows adopting existing Kubernetes resources during Helm release installation.

The Flux controllers are now built with Go 1.23 and their dependencies have been updated to Kubernetes 1.31, Helm 3.16, SOPS 3.9 Cosign 2.4 and Notation 1.2.

❤️ Big thanks to all the Flux contributors that helped us with this release!

Kubernetes compatibility

This release is compatible with the following Kubernetes versions:

Kubernetes version Minimum required
v1.29 >= 1.29.0
v1.30 >= 1.30.0
v1.31 >= 1.31.0 
!NOTE]
Note that the Flux project offers support only for the latest three minor versions of Kubernetes.
Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as
[ControlPlane](https://control-plane.io/enterprise-for-flux-cd/) that provide enterprise support for Flux.
OpenShift compatibility

Flux can be installed on Red Hat OpenShift cluster directly from OperatorHub using Flux Operator.
The operator allows the configuration of Flux multi-tenancy lockdown, network policies, persistent storage, sharding, vertical scaling and the synchronization of the cluster state from Git repositories, OCI artifacts and S3-compatible storage.

API changes
Bucket v1

The Bucket kind was promoted from v1beta2 to v1 (GA).

The v1 API is backwards compatible with v1beta2.

New fields:

  • .spec.proxySecretRef allows configuring HTTP/S Proxy authentication for the S3-compatible storage service.
  • .spec.certSecretRef allows custom TLS client certificate and CA for secure communication with the S3-compatible storage service.
  • .spec.sts allows custom STS configuration for AWS S3 and MinIO LDAP authentication.
GitRepository v1

The GitRepository kind gains new optional fields with no breaking changes.

New fields:

  • .spec.provider allows specifying an OIDC provider used for authentication purposes. Currently, only the azure provider is supported.
OCIRepository v1beta2

The OCIRepository kind gains new optional fields with no breaking changes.

New fields:

  • .spec.proxySecretRef allows configuring HTTP/S Proxy authentication for the container registry service.
HelmRelease v2

The HelmRelease kind gains new optional fields with no breaking changes.

New fields:

  • .spec.install.disableSchemaValidation allows disabling the JSON schema validation of the Helm release values during installation.
  • .spec.upgrade.disableSchemaValidation allows disabling the JSON schema validation of the Helm release values during upgrade.
Upgrade procedure

Upgrade Flux from v2.3.0 to v2.4.0 either by rerunning bootstrap or by using the Flux GitHub Action.

To upgrade the APIs, make sure the new CRDs and controllers are deployed, and then change the manifests in Git:

  1. Set apiVersion: source.toolkit.fluxcd.io/v1 in the YAML files that contain Bucket definitions.
  2. Commit, push and reconcile the API version changes.

Bumping the APIs version in manifests can be done gradually.
It is advised to not delay this procedure as the deprecated versions will be removed after 6 months.

Components changelog
New Documentation
CLI Changelog

v2.3.0

Compare Source

Highlights

Flux v2.3.0 is a feature release. Users are encouraged to upgrade for the best experience.

For a compressive overview of new features and API changes included in this release, please refer to the Announcing Flux 2.3 GA blog post.

This release marks the General Availability (GA) of Flux Helm features and APIs, including helm-controller, the HelmRelease, HelmChart, and HelmRepository APIs.

The HelmRepository v2 API comes with new features, such as the ability to reference Helm charts from OCIRepository sources, reuse existing HelmChart resources, and verify the integrity of Helm chart artifacts signed with Notary Notation.

❤️ Big thanks to all the Flux contributors that helped us with this release!

Kubernetes compatibility

This release is compatible with the following Kubernetes versions:

Kubernetes version Minimum required
v1.28 >= 1.28.0
v1.29 >= 1.29.0
v1.30 >= 1.30.0 
!NOTE]
Note that the Flux project offers support only for the latest three minor versions of Kubernetes.
Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as
[ControlPlane](https://control-plane.io/enterprise-for-flux-cd/) that provide enterprise support for Flux.

API changes

HelmRelease v2

The HelmRelease kind was promoted from v2beta2 to v2 (GA).

The v2 API is backwards compatible with v2beta2, with the exception of the deprecated fields which have been removed.

Removed fields:

  • .spec.chart.spec.valuesFile replaced by .spec.chart.spec.valuesFiles.
  • .spec.postRenderers.kustomize.patchesJson6902 replaced by .spec.postRenderers.kustomize.patches.
  • .spec.postRenderers.kustomize.patchesStrategicMerge replaced by .spec.postRenderers.kustomize.patches.
  • .status.lastAppliedRevision replaced by .status.history.chartVersion.

New fields:

  • .spec.chartRef allows referencing chart artifacts from OCIRepository and HelmChart objects.
  • .spec.chart.spec.ignoreMissingValuesFiles allows ignoring missing values files instead of failing to reconcile.
HelmChart v1

The HelmChart kind was promoted from v1beta2 to v1 (GA).

The v1 API is backwards compatible with v1beta2, with the exception of the deprecated fields which have been removed.

Removed fields:

  • .spec.valuesFile replaced by .spec.chart.valuesFiles.

New fields:

  • .spec.ignoreMissingValuesFiles allows ignoring missing values files instead of failing to reconcile.
  • .spec.verify.provider: notation verify the signature of a Helm OCI artifacts using Notation trust policy and CA certificate.
HelmRepository v1

The HelmRepository kind was promoted from v1beta2 to v1 (GA).

The v1 API is backwards compatible with v1beta2.

OCIRepository v1beta2

The OCIRepository kind gains new optional fields with no breaking changes.

New fields:

  • .spec.ref.semverFilter allows filtering the tags based on regular expressions before applying the semver range.
  • .spec.verify.provider: notation verify the signature of OCI artifacts using Notation trust policy and CA certificate.
Kustomization v1

The Flux Kustomization kind gains new optional fields with no breaking changes.

New fields:

  • .spec.namePrefix allows setting a name prefix for the generated resources.
  • .spec.nameSuffix allows setting a name suffix for the generated resources.
ImageUpdateAutomation v1beta2

The ImageUpdateAutomation kind was promoted from v1beta1 to v1beta2.

The v1beta2 API is backwards compatible with v1beta1.

Deprecated fields:

  • Updated template data has been deprecated in favour of Changed that is designed to accommodate for all the types of updates made.

New fields:

  • .spec.policySelector allows filtering ImagePolicy based on labels.
Receiver v1

The Receiver kind gains new optional fields with no breaking changes.

New fields:

  • .spec.type: cdevents allows receiving, validating and filtering of CDEvents.

Upgrade procedure

Upgrade Flux from v2.x to v2.3.0 either by rerunning bootstrap or by using the Flux GitHub Action.

For more details, please refer to the upgrade guide from the Announcing Flux 2.3 GA blog post.

Components changelog

New Documentation

CLI Changelog

v2.2.3

Compare Source

Highlights

Flux v2.2.3 is a patch release which comes with various fixes and improvements. Users are encouraged to upgrade for the best experience.

💡 For upgrading to Flux v2.2, please see the procedure documented in 2.2.0.

This release updates the Kubernetes dependencies to v1.28.6 and various other dependencies to their latest version to patch upstream CVEs.

All controllers are built with Go 1.21.6 using Alpine Linux 3.19.1 base image.

!NOTE]
Due to breaking changes in [Helm v3.14.0](https://github.com/helm/helm/releases/tag/v3.14.0), the helm-controller version included in this patch release comes with Helm SDK v3.13.3.
A preview build of the helm-controller with the latest Helm SDK is available at [helm-controller#879](https://github.com/fluxcd/helm-controller/pull/879).

Fixes:

  • Reconciling empty directories and directories without Kubernetes manifests no longer results in an error. This regressing bug was introduced with the kustomize-controller upgrade to Kustomize v5.3 and has been fixed in this patch release.
  • The regression due to which Roles and ClusterRoles with aggregated roles were continuous reconciled by kustomize-controller has been fixed.
  • Fix the Git revision displaying when notification-controller sends alerts to Grafana.
  • The HelmRelease status reporting has been improved by ensuring that the stale failure conditions get updated after failure recovery.

See the components changelog for a full list of bug fixes.

Components changelog

CLI Changelog

v2.2.2

Compare Source

Highlights

Flux v2.2.2 is a patch release that addresses an issue with the label selector sharding functionality in the helm-controller. Users are encouraged to upgrade for the best experience.

💡 For upgrading to Flux v2.2, please see the procedure documented in 2.2.0.

Components changelog

CLI Changelog

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [fluxcd/flux2](https://github.com/fluxcd/flux2) | minor | `v2.2.1` -> `v2.4.0` | --- ### Release Notes <details> <summary>fluxcd/flux2 (fluxcd/flux2)</summary> ### [`v2.4.0`](https://github.com/fluxcd/flux2/releases/tag/v2.4.0) [Compare Source](https://github.com/fluxcd/flux2/compare/v2.3.0...v2.4.0) ##### Highlights Flux v2.4.0 is a feature release. Users are encouraged to upgrade for the best experience. For a compressive overview of new features and API changes included in this release, please refer to the [Announcing Flux 2.4 GA blog post](https://fluxcd.io/blog/2024/09/flux-v2.4.0/). This release marks the General Availability (GA) of Flux Bucket API. The `Bucket` v1 API comes with new features including: proxy support, mTLS and custom STS configuration for AWS S3 and MinIO LDAP authentication. The `GitRepository` v1 API gains support for OIDC authentication. Starting with this version, you can authenticate against Azure DevOps repositories using AKS Workload Identity. The `OCIRepository` v1beta2 API gains support for proxy configuration thus allowing dedicated HTTP/S Proxy authentication on multi-tenant Kubernetes clusters. The `HelmRelease` v2 API gains support for disabling JSON schema validation of the Helm release values during installation and upgrade. And allows adopting existing Kubernetes resources during Helm release installation. The Flux controllers are now built with Go 1.23 and their dependencies have been updated to Kubernetes 1.31, Helm 3.16, SOPS 3.9 Cosign 2.4 and Notation 1.2. ❤️ Big thanks to all the Flux contributors that helped us with this release! ##### Kubernetes compatibility This release is compatible with the following Kubernetes versions: | Kubernetes version | Minimum required | |--------------------|------------------| | `v1.29` | `>= 1.29.0` | | `v1.30` | `>= 1.30.0` | | `v1.31` | `>= 1.31.0` | > \[!NOTE] > Note that the Flux project offers support only for the latest three minor versions of Kubernetes. > Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as > [ControlPlane](https://control-plane.io/enterprise-for-flux-cd/) that provide enterprise support for Flux. ##### OpenShift compatibility Flux can be installed on Red Hat OpenShift cluster directly from OperatorHub using [Flux Operator](https://operatorhub.io/operator/flux-operator). The operator allows the configuration of Flux multi-tenancy lockdown, network policies, persistent storage, sharding, vertical scaling and the synchronization of the cluster state from Git repositories, OCI artifacts and S3-compatible storage. ##### API changes ##### Bucket v1 The [Bucket](https://fluxcd.io/flux/components/source/buckets/) kind was promoted from v1beta2 to v1 (GA). The v1 API is backwards compatible with v1beta2. New fields: - `.spec.proxySecretRef` allows configuring HTTP/S Proxy authentication for the S3-compatible storage service. - `.spec.certSecretRef` allows custom TLS client certificate and CA for secure communication with the S3-compatible storage service. - `.spec.sts` allows custom STS configuration for AWS S3 and MinIO LDAP authentication. ##### GitRepository v1 The [GitRepository](https://fluxcd.io/flux/components/source/gitrepositoies/) kind gains new optional fields with no breaking changes. New fields: - `.spec.provider` allows specifying an OIDC provider used for authentication purposes. Currently, only the `azure` provider is supported. ##### OCIRepository v1beta2 The [OCIRepository](https://fluxcd.io/flux/components/source/ocirepositoies/) kind gains new optional fields with no breaking changes. New fields: - `.spec.proxySecretRef` allows configuring HTTP/S Proxy authentication for the container registry service. ##### HelmRelease v2 The [HelmRelease](https://fluxcd.io/flux/components/helm/helmreleases/) kind gains new optional fields with no breaking changes. New fields: - `.spec.install.disableSchemaValidation` allows disabling the JSON schema validation of the Helm release values during installation. - `.spec.upgrade.disableSchemaValidation` allows disabling the JSON schema validation of the Helm release values during upgrade. ##### Upgrade procedure Upgrade Flux from `v2.3.0` to `v2.4.0` either by [rerunning bootstrap](https://fluxcd.io/flux/installation/#bootstrap-upgrade) or by using the [Flux GitHub Action](https://github.com/fluxcd/flux2/tree/main/action). To upgrade the APIs, make sure the new CRDs and controllers are deployed, and then change the manifests in Git: 1. Set `apiVersion: source.toolkit.fluxcd.io/v1` in the YAML files that contain `Bucket` definitions. 2. Commit, push and reconcile the API version changes. Bumping the APIs version in manifests can be done gradually. It is advised to not delay this procedure as the deprecated versions will be removed after 6 months. ##### Components changelog - source-controller [v1.4.0](https://github.com/fluxcd/source-controller/blob/v1.4.0/CHANGELOG.md) [v1.4.1](https://github.com/fluxcd/source-controller/blob/v1.4.1/CHANGELOG.md) - kustomize-controller [v1.4.0](https://github.com/fluxcd/kustomize-controller/blob/v1.4.0/CHANGELOG.md) - notification-controller [v1.4.0](https://github.com/fluxcd/notification-controller/blob/v1.4.0/CHANGELOG.md) - helm-controller [v1.1.0](https://github.com/fluxcd/helm-controller/blob/v1.1.0/CHANGELOG.md) - image-reflector-controller [v0.33.0](https://github.com/fluxcd/image-reflector-controller/blob/v0.33.0/CHANGELOG.md) - image-automation-controller [v0.39.0](https://github.com/fluxcd/image-automation-controller/blob/v0.39.0/CHANGELOG.md) ##### New Documentation - [Bucket v1 specification](https://fluxcd.io/flux/components/source/buckets/) - [Azure DevOps OIDC auth configuration](https://fluxcd.io/flux/components/source/gitrepositories/#provider) ##### CLI Changelog - PR [#&#8203;5014](https://github.com/fluxcd/flux2/issues/5014) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update Kubernetes dependencies to v1.31.1 - PR [#&#8203;5011](https://github.com/fluxcd/flux2/issues/5011) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Remove TLS deprecated flags from `flux create secret` - PR [#&#8203;5010](https://github.com/fluxcd/flux2/issues/5010) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `flux create secret proxy` command - PR [#&#8203;5009](https://github.com/fluxcd/flux2/issues/5009) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `--proxy-secret-ref` to `flux create source` commands - PR [#&#8203;5008](https://github.com/fluxcd/flux2/issues/5008) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Promote `bucket` commands to GA - PR [#&#8203;5007](https://github.com/fluxcd/flux2/issues/5007) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Run conformance tests for Kubernetes 1.29-1.31 - PR [#&#8203;5005](https://github.com/fluxcd/flux2/issues/5005) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#&#8203;5004](https://github.com/fluxcd/flux2/issues/5004) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update source-controller to v1.4.1 - PR [#&#8203;4986](https://github.com/fluxcd/flux2/issues/4986) - [@&#8203;dipti-pai](https://github.com/dipti-pai) - \[RFC-0007] Add `--provider` flag to `flux create source git` - PR [#&#8203;4970](https://github.com/fluxcd/flux2/issues/4970) - [@&#8203;JasonTheDeveloper](https://github.com/JasonTheDeveloper) - Update notaryproject/notation-go to 1.2.1 - PR [#&#8203;4967](https://github.com/fluxcd/flux2/issues/4967) - [@&#8203;mxtw](https://github.com/mxtw) - tests: use tempdir to avoid manual gc - PR [#&#8203;4959](https://github.com/fluxcd/flux2/issues/4959) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Fix GitHub bootstrap for repositories with custom properties - PR [#&#8203;4948](https://github.com/fluxcd/flux2/issues/4948) - [@&#8203;harshitasao](https://github.com/harshitasao) - fix: fixed GHA token-permission and pinned dependencies issue - PR [#&#8203;4939](https://github.com/fluxcd/flux2/issues/4939) - [@&#8203;bkreitch](https://github.com/bkreitch) - Recursively diff Kustomizations - PR [#&#8203;4936](https://github.com/fluxcd/flux2/issues/4936) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Build with Go 1.23 - PR [#&#8203;4934](https://github.com/fluxcd/flux2/issues/4934) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies to Kubernetes v1.31.0 - PR [#&#8203;4922](https://github.com/fluxcd/flux2/issues/4922) - [@&#8203;bkreitch](https://github.com/bkreitch) - Stop spinner on cancel of flux diff kustomization - PR [#&#8203;4918](https://github.com/fluxcd/flux2/issues/4918) - [@&#8203;matheuscscp](https://github.com/matheuscscp) - Fix reconcile helmrelease command description - PR [#&#8203;4892](https://github.com/fluxcd/flux2/issues/4892) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Run conformance tests for Kubernetes v1.31 - PR [#&#8203;4871](https://github.com/fluxcd/flux2/issues/4871) - [@&#8203;harshitasao](https://github.com/harshitasao) - changed the scorecard badge link to the standard format - PR [#&#8203;4866](https://github.com/fluxcd/flux2/issues/4866) - [@&#8203;nagyv](https://github.com/nagyv) - Introduce visibility flag for bootstrap gitlab - PR [#&#8203;4863](https://github.com/fluxcd/flux2/issues/4863) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update conformance tests to Kubernetes v1.30.2 - PR [#&#8203;4845](https://github.com/fluxcd/flux2/issues/4845) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Run ARM64 e2e tests on GitHub runners - PR [#&#8203;4842](https://github.com/fluxcd/flux2/issues/4842) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `part-of` label to controllers base - PR [#&#8203;4835](https://github.com/fluxcd/flux2/issues/4835) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - ci: Adapt config to GoRelease v2 - PR [#&#8203;4806](https://github.com/fluxcd/flux2/issues/4806) - [@&#8203;dipti-pai](https://github.com/dipti-pai) - \[RFC] Passwordless authentication for Git repositories ### [`v2.3.0`](https://github.com/fluxcd/flux2/releases/tag/v2.3.0) [Compare Source](https://github.com/fluxcd/flux2/compare/v2.2.3...v2.3.0) #### Highlights Flux v2.3.0 is a feature release. Users are encouraged to upgrade for the best experience. For a compressive overview of new features and API changes included in this release, please refer to the [Announcing Flux 2.3 GA blog post](https://fluxcd.io/blog/2024/05/flux-v2.3.0/). This release marks the General Availability (GA) of Flux Helm features and APIs, including helm-controller, the `HelmRelease`, `HelmChart`, and `HelmRepository` APIs. The `HelmRepository` v2 API comes with new features, such as the ability to reference Helm charts from `OCIRepository` sources, reuse existing `HelmChart` resources, and verify the integrity of Helm chart artifacts signed with Notary Notation. ❤️ Big thanks to all the Flux contributors that helped us with this release! ##### Kubernetes compatibility This release is compatible with the following Kubernetes versions: | Kubernetes version | Minimum required | |--------------------|------------------| | `v1.28` | `>= 1.28.0` | | `v1.29` | `>= 1.29.0` | | `v1.30` | `>= 1.30.0` | > \[!NOTE] > Note that the Flux project offers support only for the latest three minor versions of Kubernetes. > Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as > [ControlPlane](https://control-plane.io/enterprise-for-flux-cd/) that provide enterprise support for Flux. #### API changes ##### HelmRelease v2 The [HelmRelease](https://fluxcd.io/flux/components/helm/helmreleases/) kind was promoted from v2beta2 to v2 (GA). The v2 API is backwards compatible with v2beta2, with the exception of the deprecated fields which have been removed. Removed fields: - `.spec.chart.spec.valuesFile` replaced by `.spec.chart.spec.valuesFiles`. - `.spec.postRenderers.kustomize.patchesJson6902` replaced by `.spec.postRenderers.kustomize.patches`. - `.spec.postRenderers.kustomize.patchesStrategicMerge` replaced by `.spec.postRenderers.kustomize.patches`. - `.status.lastAppliedRevision` replaced by `.status.history.chartVersion`. New fields: - `.spec.chartRef` allows referencing chart artifacts from `OCIRepository` and `HelmChart` objects. - `.spec.chart.spec.ignoreMissingValuesFiles` allows ignoring missing values files instead of failing to reconcile. ##### HelmChart v1 The [HelmChart](https://fluxcd.io/flux/components/source/helmcharts/) kind was promoted from v1beta2 to v1 (GA). The v1 API is backwards compatible with v1beta2, with the exception of the deprecated fields which have been removed. Removed fields: - `.spec.valuesFile` replaced by `.spec.chart.valuesFiles`. New fields: - `.spec.ignoreMissingValuesFiles` allows ignoring missing values files instead of failing to reconcile. - `.spec.verify.provider: notation` verify the signature of a Helm OCI artifacts using Notation trust policy and CA certificate. ##### HelmRepository v1 The [HelmRepository](https://fluxcd.io/flux/components/source/helmrepositories/) kind was promoted from v1beta2 to v1 (GA). The v1 API is backwards compatible with v1beta2. ##### OCIRepository v1beta2 The [OCIRepository](https://fluxcd.io/flux/components/source/ocirepositoies/) kind gains new optional fields with no breaking changes. New fields: - `.spec.ref.semverFilter` allows filtering the tags based on regular expressions before applying the semver range. - `.spec.verify.provider: notation` verify the signature of OCI artifacts using Notation trust policy and CA certificate. ##### Kustomization v1 The Flux [Kustomization](https://fluxcd.io/flux/components/kustomize/kustomizations/) kind gains new optional fields with no breaking changes. New fields: - `.spec.namePrefix` allows setting a name prefix for the generated resources. - `.spec.nameSuffix` allows setting a name suffix for the generated resources. ##### ImageUpdateAutomation v1beta2 The [ImageUpdateAutomation](https://fluxcd.io/flux/components/image/imageupdateautomations/) kind was promoted from v1beta1 to v1beta2. The v1beta2 API is backwards compatible with v1beta1. Deprecated fields: - `Updated` template data has been deprecated in favour of `Changed` that is designed to accommodate for all the types of updates made. New fields: - `.spec.policySelector` allows filtering `ImagePolicy` based on labels. ##### Receiver v1 The [Receiver](https://fluxcd.io/flux/components/notification/receivers/) kind gains new optional fields with no breaking changes. New fields: - `.spec.type: cdevents` allows receiving, validating and filtering of CDEvents. #### Upgrade procedure Upgrade Flux from `v2.x` to `v2.3.0` either by [rerunning bootstrap](https://fluxcd.io/flux/installation/#bootstrap-upgrade) or by using the [Flux GitHub Action](https://github.com/fluxcd/flux2/tree/main/action). For more details, please refer to the upgrade guide from the [Announcing Flux 2.3 GA blog post](https://fluxcd.io/blog/2024/05/flux-v2.3.0/#installing-or-upgrading-flux). #### Components changelog - source-controller [v1.3.0](https://github.com/fluxcd/source-controller/blob/v1.3.0/CHANGELOG.md) - kustomize-controller [v1.3.0](https://github.com/fluxcd/kustomize-controller/blob/v1.3.0/CHANGELOG.md) - notification-controller [v1.3.0](https://github.com/fluxcd/notification-controller/blob/v1.3.0/CHANGELOG.md) - helm-controller [v1.0.0](https://github.com/fluxcd/helm-controller/blob/v1.0.0/CHANGELOG.md) [v1.0.1](https://github.com/fluxcd/helm-controller/blob/v1.0.1/CHANGELOG.md) - image-reflector-controller [v0.32.0](https://github.com/fluxcd/image-reflector-controller/blob/v0.32.0/CHANGELOG.md) - image-automation-controller [v0.38.0](https://github.com/fluxcd/image-automation-controller/blob/v0.38.0/CHANGELOG.md) ##### New Documentation - [HelmRelease v2 specification](https://fluxcd.io/flux/components/helm/helmreleases/) - [ImageUpdateAutomation v1beta2 specification](https://fluxcd.io/flux/components/image/imageupdateautomations/) - [Oracle VBS bootstrap guide](https://fluxcd.io/flux/installation/bootstrap/oracle-vbs-git-repositories/) - [Azure DevOps bootstrap guide for SSH RSA SHA-2](https://fluxcd.io/flux/installation/bootstrap/azure-devops/#bootstrap-using-ssh-keys) - [OpenShift installation guide and SCC configuration](https://fluxcd.io/flux/installation/configuration/openshift/) - [Air-gapped installation guide for private container registries](https://fluxcd.io/flux/installation/configuration/air-gapped/#bootstrap-flux-and-authenticate-to-a-private-container-registry) - [Bootstrap with Terraform examples](https://github.com/fluxcd/terraform-provider-flux/tree/main/examples) - [Flux hub-and-spoke example repository](https://github.com/fluxcd/flux2-hub-spoke-example) - [Flux CD Architecture Overview blog post](https://control-plane.io/posts/fluxcd-architecture-overview/) #### CLI Changelog - PR [#&#8203;4783](https://github.com/fluxcd/flux2/issues/4783) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - ci: Consolidate conformance tests - PR [#&#8203;4781](https://github.com/fluxcd/flux2/issues/4781) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Set Kubernetes 1.28 as min required version - PR [#&#8203;4780](https://github.com/fluxcd/flux2/issues/4780) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update helm-controller to v1.0.1 - PR [#&#8203;4779](https://github.com/fluxcd/flux2/issues/4779) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#&#8203;4778](https://github.com/fluxcd/flux2/issues/4778) - [@&#8203;darkowlzz](https://github.com/darkowlzz) - tests/integration: Run flux check after installation - PR [#&#8203;4777](https://github.com/fluxcd/flux2/issues/4777) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add k3s to the conformance test suite - PR [#&#8203;4775](https://github.com/fluxcd/flux2/issues/4775) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update `HelmRelease` API to v2 (GA) - PR [#&#8203;4773](https://github.com/fluxcd/flux2/issues/4773) - [@&#8203;makkes](https://github.com/makkes) - Add `(create|delete|export) source chart` commands - PR [#&#8203;4771](https://github.com/fluxcd/flux2/issues/4771) - [@&#8203;matheuscscp](https://github.com/matheuscscp) - Add 2.3.x release label - PR [#&#8203;4770](https://github.com/fluxcd/flux2/issues/4770) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update Flux architecture diagram - PR [#&#8203;4769](https://github.com/fluxcd/flux2/issues/4769) - [@&#8203;frekw](https://github.com/frekw) - Add `--reproducible` flag to `flux push artifact` - PR [#&#8203;4768](https://github.com/fluxcd/flux2/issues/4768) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Improve end-to-end test workflow - PR [#&#8203;4766](https://github.com/fluxcd/flux2/issues/4766) - [@&#8203;souleb](https://github.com/souleb) - Add support for HelmRelease v2 in `flux reconcile` and `flux create` - PR [#&#8203;4764](https://github.com/fluxcd/flux2/issues/4764) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - ci: Adapt image automation test to v1beta2 - PR [#&#8203;4759](https://github.com/fluxcd/flux2/issues/4759) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update Helm Source APIs to v1 (GA) - PR [#&#8203;4754](https://github.com/fluxcd/flux2/issues/4754) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `--ssh-hostkey-algos` flag to bootstrap command - PR [#&#8203;4747](https://github.com/fluxcd/flux2/issues/4747) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies to Kubernetes 1.30 - PR [#&#8203;4746](https://github.com/fluxcd/flux2/issues/4746) - [@&#8203;swade1987](https://github.com/swade1987) - Specifying go version in setup-go github action. - PR [#&#8203;4736](https://github.com/fluxcd/flux2/issues/4736) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 4 updates - PR [#&#8203;4735](https://github.com/fluxcd/flux2/issues/4735) - [@&#8203;JasonTheDeveloper](https://github.com/JasonTheDeveloper) - feat(secret): add create notation secret handler - PR [#&#8203;4734](https://github.com/fluxcd/flux2/issues/4734) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Run conformance tests for Kubernetes 1.30.0 - PR [#&#8203;4729](https://github.com/fluxcd/flux2/issues/4729) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add OpenShift to the conformance test suite - PR [#&#8203;4728](https://github.com/fluxcd/flux2/issues/4728) - [@&#8203;toomaj](https://github.com/toomaj) - bootstrap: Add support for Git HTTP/S authorization header - PR [#&#8203;4727](https://github.com/fluxcd/flux2/issues/4727) - [@&#8203;makkes](https://github.com/makkes) - Add flags for issuer/subject OCI signature verification - PR [#&#8203;4717](https://github.com/fluxcd/flux2/issues/4717) - [@&#8203;hawwwdi](https://github.com/hawwwdi) - Set `GOMAXPROCS` and `GOMEMLIMIT` to all Flux controllers - PR [#&#8203;4710](https://github.com/fluxcd/flux2/issues/4710) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `flux envsubst` command - PR [#&#8203;4709](https://github.com/fluxcd/flux2/issues/4709) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `--strict-substitute` flag to `flux build ks` and `flux diff ks` - PR [#&#8203;4706](https://github.com/fluxcd/flux2/issues/4706) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Add `--registry-creds` flag to bootstrap and install commands - PR [#&#8203;4705](https://github.com/fluxcd/flux2/issues/4705) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies to Kustomize v5.4.0 - PR [#&#8203;4701](https://github.com/fluxcd/flux2/issues/4701) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#&#8203;4699](https://github.com/fluxcd/flux2/issues/4699) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies to Go 1.22 and Kubernetes 1.29.3 - PR [#&#8203;4689](https://github.com/fluxcd/flux2/issues/4689) - [@&#8203;makkes](https://github.com/makkes) - Pin envtest version - PR [#&#8203;4687](https://github.com/fluxcd/flux2/issues/4687) - [@&#8203;carlpett](https://github.com/carlpett) - Add permissions required for flow control - PR [#&#8203;4678](https://github.com/fluxcd/flux2/issues/4678) - [@&#8203;darkowlzz](https://github.com/darkowlzz) - Update `ImageUpdateAutomation` API to v1beta2 - PR [#&#8203;4666](https://github.com/fluxcd/flux2/issues/4666) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Mark RFC-0006 as implementable - PR [#&#8203;4657](https://github.com/fluxcd/flux2/issues/4657) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - ci: Include all go modules in snyk testing - PR [#&#8203;4654](https://github.com/fluxcd/flux2/issues/4654) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Remove deprecated e2e tests - PR [#&#8203;4629](https://github.com/fluxcd/flux2/issues/4629) - [@&#8203;rishinair11](https://github.com/rishinair11) - Fix a typo in `--force` flag description - PR [#&#8203;4620](https://github.com/fluxcd/flux2/issues/4620) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update Equinix ARM64 GitHub runners - PR [#&#8203;4610](https://github.com/fluxcd/flux2/issues/4610) - [@&#8203;takp](https://github.com/takp) - Fix typo in build.go - PR [#&#8203;4589](https://github.com/fluxcd/flux2/issues/4589) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies - PR [#&#8203;4583](https://github.com/fluxcd/flux2/issues/4583) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#&#8203;4575](https://github.com/fluxcd/flux2/issues/4575) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies to Kubernetes v1.28.6 - PR [#&#8203;4558](https://github.com/fluxcd/flux2/issues/4558) - [@&#8203;twinguy](https://github.com/twinguy) - `flux check` should error on unrecognised args - PR [#&#8203;4557](https://github.com/fluxcd/flux2/issues/4557) - [@&#8203;twinguy](https://github.com/twinguy) - `flux stats` should error on unrecognised args - PR [#&#8203;4553](https://github.com/fluxcd/flux2/issues/4553) - [@&#8203;twinguy](https://github.com/twinguy) - Properly detect unexpected arguments during uninstall - PR [#&#8203;4534](https://github.com/fluxcd/flux2/issues/4534) - [@&#8203;adamkenihan](https://github.com/adamkenihan) - \[RFC-0006] Flux-CDEvent Receiver ### [`v2.2.3`](https://github.com/fluxcd/flux2/releases/tag/v2.2.3) [Compare Source](https://github.com/fluxcd/flux2/compare/v2.2.2...v2.2.3) #### Highlights Flux v2.2.3 is a patch release which comes with various fixes and improvements. Users are encouraged to upgrade for the best experience. :bulb: For upgrading to Flux v2.2, please see [the procedure documented in 2.2.0](https://github.com/fluxcd/flux2/releases/tag/v2.2.0). This release updates the Kubernetes dependencies to v1.28.6 and various other dependencies to their latest version to patch upstream CVEs. All controllers are built with Go 1.21.6 using Alpine Linux 3.19.1 base image. > \[!NOTE] > Due to breaking changes in [Helm v3.14.0](https://github.com/helm/helm/releases/tag/v3.14.0), the helm-controller version included in this patch release comes with Helm SDK v3.13.3. > A preview build of the helm-controller with the latest Helm SDK is available at [helm-controller#879](https://github.com/fluxcd/helm-controller/pull/879). Fixes: - Reconciling empty directories and directories without Kubernetes manifests no longer results in an error. This regressing bug was introduced with the kustomize-controller upgrade to Kustomize v5.3 and has been fixed in this patch release. - The regression due to which `Roles` and `ClusterRoles` with aggregated roles were continuous reconciled by kustomize-controller has been fixed. - Fix the Git revision displaying when notification-controller sends alerts to Grafana. - The HelmRelease status reporting has been improved by ensuring that the stale failure conditions get updated after failure recovery. See the components changelog for a full list of bug fixes. #### Components changelog - source-controller [v1.2.4](https://github.com/fluxcd/source-controller/blob/v1.2.4/CHANGELOG.md) - kustomize-controller [v1.2.2](https://github.com/fluxcd/kustomize-controller/blob/v1.2.2/CHANGELOG.md) - notification-controller [v1.2.4](https://github.com/fluxcd/notification-controller/blob/v1.2.4/CHANGELOG.md) - helm-controller [v0.37.4](https://github.com/fluxcd/helm-controller/blob/v0.37.4/CHANGELOG.md) - image-reflector-controller [v0.31.2](https://github.com/fluxcd/image-reflector-controller/blob/v0.31.2/CHANGELOG.md) - image-automation-controller [v0.37.1](https://github.com/fluxcd/image-automation-controller/blob/v0.37.1/CHANGELOG.md) #### CLI Changelog - PR [#&#8203;4589](https://github.com/fluxcd/flux2/issues/4589) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies - PR [#&#8203;4585](https://github.com/fluxcd/flux2/issues/4585) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 3 updates - PR [#&#8203;4583](https://github.com/fluxcd/flux2/issues/4583) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#&#8203;4575](https://github.com/fluxcd/flux2/issues/4575) - [@&#8203;stefanprodan](https://github.com/stefanprodan) - Update dependencies to Kubernetes v1.28.6 - PR [#&#8203;4573](https://github.com/fluxcd/flux2/issues/4573) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 5 updates - PR [#&#8203;4558](https://github.com/fluxcd/flux2/issues/4558) - [@&#8203;twinguy](https://github.com/twinguy) - `flux check` should error on unrecognised args - PR [#&#8203;4557](https://github.com/fluxcd/flux2/issues/4557) - [@&#8203;twinguy](https://github.com/twinguy) - `flux stats` should error on unrecognised args - PR [#&#8203;4554](https://github.com/fluxcd/flux2/issues/4554) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 3 updates - PR [#&#8203;4553](https://github.com/fluxcd/flux2/issues/4553) - [@&#8203;twinguy](https://github.com/twinguy) - Properly detect unexpected arguments during uninstall - PR [#&#8203;4535](https://github.com/fluxcd/flux2/issues/4535) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump github.com/cloudflare/circl from 1.3.6 to 1.3.7 - PR [#&#8203;4533](https://github.com/fluxcd/flux2/issues/4533) - [@&#8203;darkowlzz](https://github.com/darkowlzz) - tests/int: Add separate resource cleanup step ### [`v2.2.2`](https://github.com/fluxcd/flux2/releases/tag/v2.2.2) [Compare Source](https://github.com/fluxcd/flux2/compare/v2.2.1...v2.2.2) #### Highlights Flux v2.2.2 is a patch release that addresses an issue with the label selector sharding functionality in the helm-controller. Users are encouraged to upgrade for the best experience. :bulb: For upgrading to Flux v2.2, please see [the procedure documented in 2.2.0](https://github.com/fluxcd/flux2/releases/tag/v2.2.0). #### Components changelog - helm-controller [v0.37.2](https://github.com/fluxcd/helm-controller/blob/v0.37.2/CHANGELOG.md) #### CLI Changelog - PR [#&#8203;4505](https://github.com/fluxcd/flux2/issues/4505) - [@&#8203;hiddeco](https://github.com/hiddeco) - Update helm-controller to v0.37.2 in tests - PR [#&#8203;4501](https://github.com/fluxcd/flux2/issues/4501) - [@&#8203;fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#&#8203;4499](https://github.com/fluxcd/flux2/issues/4499) - [@&#8203;stuebingerb](https://github.com/stuebingerb) - Fix typo in Git bootstrap - PR [#&#8203;4495](https://github.com/fluxcd/flux2/issues/4495) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 in /tests/integration - PR [#&#8203;4494](https://github.com/fluxcd/flux2/issues/4494) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 - PR [#&#8203;4493](https://github.com/fluxcd/flux2/issues/4493) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 in /tests/azure - PR [#&#8203;4491](https://github.com/fluxcd/flux2/issues/4491) - [@&#8203;dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 3 updates </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNC4xNjAuMCIsInVwZGF0ZWRJblZlciI6IjM3LjQyNC4zIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->
kjuulh added 1 commit 2023-12-19 19:02:23 +01:00
Update dependency fluxcd/flux2 to v2.2.2
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
continuous-integration/drone/pr Build encountered an error
Details
dbe615d4ec
kjuulh changed title from Update dependency fluxcd/flux2 to v2.2.2 to Update dependency fluxcd/flux2 to v2.2.3 2024-02-05 16:15:14 +01:00
kjuulh force-pushed renovate/all from dbe615d4ec to 80a0591ba8 2024-02-05 16:15:15 +01:00 Compare
kjuulh changed title from Update dependency fluxcd/flux2 to v2.2.3 to Update dependency fluxcd/flux2 to v2.3.0 2024-05-13 16:16:56 +02:00
kjuulh force-pushed renovate/all from 80a0591ba8 to 2dca436966 2024-05-13 16:16:59 +02:00 Compare
kjuulh changed title from Update dependency fluxcd/flux2 to v2.3.0 to Update dependency fluxcd/flux2 to v2.4.0 2024-10-01 02:43:45 +02:00
kjuulh force-pushed renovate/all from 2dca436966 to 730269f97a 2024-10-01 02:43:47 +02:00 Compare
kjuulh merged commit 730269f97a into main 2024-10-01 06:41:48 +02:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: clank/kubernetes-state#18
No description provided.
Delete Branch "renovate/all"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?