tobs icon indicating copy to clipboard operation
tobs copied to clipboard

Published 20 hours ago verified publisher icon timescale

chore(deps): update github actions

Open renovate[bot] opened this issue 2 years ago • 0 comments

This PR contains the following updates:

Package Type Update Change
helm/chart-testing-action action minor v2.3.1 -> v2.7.0
helm/helm minor v3.11.0 -> v3.18.3
kubescape/kubescape minor v2.0.183 -> v2.9.2
ncipollo/release-action action minor v1.12.0 -> v1.16.0

Release Notes

helm/chart-testing-action (helm/chart-testing-action)

v2.7.0

Compare Source

For ct change see https://github.com/helm/chart-testing/releases/tag/v3.12.0

What's Changed
New Contributors

Full Changelog: https://github.com/helm/chart-testing-action/compare/v2.6.1...v2.7.0

v2.6.1

Compare Source

What's Changed

Full Changelog: https://github.com/helm/chart-testing-action/compare/v2...v2.6.1

v2.6.0

Compare Source

What's Changed

Full Changelog: https://github.com/helm/chart-testing-action/compare/v2...v2.6.0

v2.5.0

Compare Source

What's Changed
New Contributors

Full Changelog: https://github.com/helm/chart-testing-action/compare/v2.4.0...v2.5.0

v2.4.0

Compare Source

What's Changed
New Contributors

Full Changelog: https://github.com/helm/chart-testing-action/compare/v2...v2.4.0

helm/helm (helm/helm)

v3.18.3: Helm 3.18.3

Compare Source

Helm v3.18.3 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading

Download Helm v3.18.3. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.18.4 is the next patch release and will be on July 09, 2025
  • 3.19.0 is the next minor release and will be on September 11, 2025
Changelog
  • build(deps): bump golang.org/x/crypto from 0.38.0 to 0.39.0 6838ebc (dependabot[bot])
  • fix: user username password for login 5b9e2f6 (Terry Howe)
  • Update pkg/registry/transport.go 2782412 (Terry Howe)
  • Update pkg/registry/transport.go e66cf6a (Terry Howe)
  • fix: add debug logging to oci transport 191f05c (Terry Howe)

v3.18.2: Helm 3.18.2

Compare Source

Helm v3.18.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.18.2. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.18.3 is the next patch release and will be on July 09, 2025
  • 3.19.0 is the next minor release and will be on September 11, 2025

Changelog

  • fix: legacy docker support broken for login 04cad46 (Terry Howe)
  • Handle an empty registry config file. bc9f8a2 (Matt Farina)

v3.18.1: Helm v3.18.1

Compare Source

Helm v3.18.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

Notes:

  • This release fixes regressions around template generation and OCI registry interaction in 3.18.0
  • There are at least 2 known regressions unaddressed in this release. They are being worked on.
    • Empty registry configuration files. When the file exists but it is empty.
    • Login to Docker Hub on some domains fails.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading

Download Helm v3.18.1. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.18.2 will contain only bug fixes.
  • 3.19.0 on September 11th, 2025 is the next feature release.
Changelog
  • fix(client): skipnode utilization for PreCopy f6f8700 (Brandt Keller)
  • fix(client): layers now returns manifest - remove duplicate from descriptors 4da7015 (Brandt Keller)
  • fix(client): return nil on non-allowed media types 1a8507f (Brandt Keller)
  • Prevent fetching newReference again as we have in calling method 015531c (Benoit Tigeot)
  • Prevent failure when resolving version tags in oras memory store 9db1a12 (Benoit Tigeot)
  • Update pkg/plugin/plugin.go e8bfa0e (Benoit Tigeot)
  • Update pkg/plugin/plugin.go 24b4490 (Benoit Tigeot)
  • Wait for Helm v4 before raising when platformCommand and Command are set 7e8f534 (Benoit Tigeot)
  • Fix 3.18.0 regression: registry login with scheme ea04cea (Scott Rigby)
  • Revert "fix (helm) : toToml` renders int as float [ backport to v3 ]" bec6609 (Matt Farina)

v3.18.0: Helm v3.18.0

Compare Source

Helm v3.18.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Notable Changes
  • Add support for JSON Schema 2020
  • Enabled cpu and memory profiling
  • Add hook annotation to output hook logs to client on error
Installation and Upgrading

Download Helm v3.18.0. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.18.1 on June 11th, 2025 will contain only bug fixes.
  • 3.19.0 on September 11th, 2025 is the next feature release.
Changelog
  • build(deps): bump the k8s-io group with 7 updates cc58e3f (dependabot[bot])
  • fix: govulncheck workflow bf1436b (Matthieu MOREL)
  • bump version to v3.18.0 d8edc2a (Robert Sirchia)
  • fix:add proxy support when mTLS configured 48377fe (Rongrong Liu)
  • docs: Note about http fallback for OCI registries cdd7c10 (Terry Howe)
  • Bump net package to avoid CVE on dev-v3 f9ab8f7 (Benoit Tigeot)
  • Bump toml 087fa18 (Benoit Tigeot)
  • backport #​30677to dev3 2a5f83b (dongjiang)
  • build(deps): bump github.com/rubenv/sql-migrate from 1.7.2 to 1.8.0 5df2f30 (dependabot[bot])
  • Add install test for TakeOwnership flag 0906fe7 (Evans Mungai)
  • Fix --take-ownership 4ee3a19 (Patrick Seidensal)
  • build(deps): bump github.com/rubenv/sql-migrate from 1.7.1 to 1.7.2 3538c2a (dependabot[bot])
  • build(deps): bump golang.org/x/crypto from 0.36.0 to 0.37.0 6fa95c8 (dependabot[bot])
  • build(deps): bump golang.org/x/term from 0.30.0 to 0.31.0 741b5be (dependabot[bot])
  • Testing text bump 017f9fa (Benoit Tigeot)
  • Permit more Go version and not only 1.23.8 6667252 (Benoit Tigeot)
  • Bumps github.com/distribution/distribution/v3 from 3.0.0-rc.3 to 3.0.0 4ad1ccd (Benoit Tigeot)
  • Unarchiving fix 3ce10e4 (Matt Farina)
  • Fix typo 422c58e (Benoit Tigeot)
  • Report as debug log, the time spent waiting for resources 5e7f12d (Benoit Tigeot)
  • build(deps): bump github.com/containerd/containerd from 1.7.26 to 1.7.27 dcc286c (dependabot[bot])
  • Update pkg/registry/fallback.go 1435ec7 (Terry Howe)
  • automatic fallback to http 674e882 (Terry Howe)
  • chore(oci): upgrade to ORAS v2 c188441 (Terry Howe)
  • Updating to 0.37.0 for x/net 2b12490 (Matt Farina)
  • build(deps): bump the k8s-io group with 7 updates 0648918 (dependabot[bot])
  • build(deps): bump golang.org/x/crypto from 0.35.0 to 0.36.0 0911b9c (dependabot[bot])
  • build(deps): bump github.com/opencontainers/image-spec 2f22d55 (dependabot[bot])
  • build(deps): bump github.com/containerd/containerd from 1.7.25 to 1.7.26 89361c9 (dependabot[bot])
  • build(deps): bump golang.org/x/crypto from 0.33.0 to 0.35.0 6d64160 (dependabot[bot])
  • Fix cherry-pick helm.sh/helm/v4 -> helm.sh/helm/v3 bcb83e4 (Scott Rigby)
  • Refactor based on review comment 2aa90b8 (Chris Berry)
  • Refactor based on review comment 5739197 (Chris Berry)
  • Add HookOutputFunc and generic yaml unmarshaller b8e1387 (Chris Berry)
  • clarify fix error message 97b0e11 (Scott Rigby)
  • fix err check 2f79afb (Scott Rigby)
  • remove comments about previous functionality c77f4ec (Scott Rigby)
  • add short circuit return 3cd6afe (Scott Rigby)
  • Update based on review comments 5367001 (Chris Berry)
  • Update based on review comments 3c44515 (Chris Berry)
  • Fix lint 4cb639e (Chris Berry)
  • Tidy up imports 20f859c (Chris)
  • Add hook annotations to output pod logs to client on success and fail ca90972 (Chris Berry)
  • chore: use []error instead of []string a9e2075 (Evans Mungai)
  • Update cmd/helm/profiling.go 996ad84 (Evans Mungai)
  • chore: update profiling doc in CONTRIBUTING.md 867c97e (Evans Mungai)
  • Update CONTRIBUTING guide af24101 (Evans Mungai)
  • Prefer environment variables to CLI flags c7dfa87 (Evans Mungai)
  • Fix linter warning b39411a (Evans Mungai)
  • Move pprof paths to HELM_PPROF env variable 4c50f01 (Evans Mungai)
  • Update CONTRIBUTING.md 3b43f7b (Evans Mungai)
  • Update CONTRIBUTING.md a32e11b (Evans Mungai)
  • Additional review fixes from PR 483ebf9 (Evans Mungai)
  • feat: Add flags to enable CPU and memory profiling 461197f (Evans Mungai)
  • build(deps): bump github.com/distribution/distribution/v3 e7fa545 (dependabot[bot])
  • build(deps): bump github.com/spf13/cobra from 1.8.1 to 1.9.1 d1687ba (dependabot[bot])
  • Moving to SetOut and SetErr for Cobra 4c2f88b (Matt Farina)
  • build(deps): bump the k8s-io group with 7 updates a2413aa (dependabot[bot])
  • build(deps): bump golang.org/x/crypto from 0.32.0 to 0.33.0 959d643 (dependabot[bot])
  • build(deps): bump golang.org/x/term from 0.28.0 to 0.29.0 3a87c68 (dependabot[bot])
  • build(deps): bump golang.org/x/text from 0.21.0 to 0.22.0 711cef8 (dependabot[bot])
  • build(deps): bump github.com/spf13/pflag from 1.0.5 to 1.0.6 7680623 (dependabot[bot])
  • build(deps): bump github.com/cyphar/filepath-securejoin 03747d9 (dependabot[bot])
  • build(deps): bump github.com/evanphx/json-patch f1db83f (dependabot[bot])
  • build(deps): bump the k8s-io group with 7 updates 3bc3751 (dependabot[bot])
  • fix: check group for resource info match 2ebce78 (Jiasheng Zhu)
  • Bump github.com/cyphar/filepath-securejoin from 0.3.6 to 0.4.0 8e86e76 (dependabot[bot])
  • add test for nullifying nested global value 326c1e3 (Ryan Hockstad)
  • Ensuring the file paths are clean prior to passing to securejoin fba9d08 (Matt Farina)
  • Bump github.com/containerd/containerd from 1.7.24 to 1.7.25 a79be7d (dependabot[bot])
  • Bump golang.org/x/crypto from 0.31.0 to 0.32.0 b029d74 (dependabot[bot])
  • Bump golang.org/x/term from 0.27.0 to 0.28.0 a1c0ae8 (dependabot[bot])
  • bump version to v3.17.0 d6db69e (Matt Farina)
  • Bump github.com/moby/term from 0.5.0 to 0.5.2 54ffefb (dependabot[bot])
  • Add test case for removing an entire object ef2eb55 (Ryan Hockstad)
  • Tests for bugfix: Override subcharts with null values #​12879 60fcce1 (Scott Rigby)
  • feat: Added multi-platform plugin hook support to v3 Signed-off-by: Steve Hipwell [email protected] 83dddb1 (Andrew Block)
  • This commit fixes the issue where the yaml.Unmarshaller converts all int values into float64, this passes in option to decoder, which enables conversion of int into . 0a6834f (Althaf M)
  • merge null child chart objects 5a58751 (Ryan Hockstad)

v3.17.3: Helm v3.17.3

Compare Source

Helm v3.17.3 is a security (patch) release. Users are strongly recommended to update to this release.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading

Download Helm v3.17.3. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.18.0 is the next minor release and will be on May 14, 2025
Changelog
  • Unarchiving fix e4da497 (Matt Farina)

v3.17.2: Helm v3.17.2

Compare Source

Helm v3.17.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Installation and Upgrading

Download Helm v3.17.2. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.17.3 is the next patch release and will be on April 09, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025
Changelog
  • Updating to 0.37.0 for x/net cc0bbbd (Matt Farina)
  • build(deps): bump the k8s-io group with 7 updates ecb7a74 (dependabot[bot])

v3.17.1: Helm v3.17.1

Compare Source

Helm v3.17.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.17.1. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.17.2 is the next patch release and will be on March 12, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025

Changelog

  • add test for nullifying nested global value 980d8ac (Ryan Hockstad)
  • Add test case for removing an entire object c23e3b6 (Ryan Hockstad)
  • Tests for bugfix: Override subcharts with null values #​12879 3110d5f (Scott Rigby)
  • merge null child chart objects 9520c71 (Ryan Hockstad)
  • build(deps): bump the k8s-io group with 7 updates ab7dedd (dependabot[bot])
  • fix: check group for resource info match a2d3602 (Jiasheng Zhu)

v3.17.0: Helm v3.17.0

Compare Source

Helm v3.17.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Notable Changes
  • Allow pulling and installation by OCI digest
  • Annotations and dependencies are now in chart metadata output
  • New --take-ownership flag for install and upgrade commands
  • SDK: Authorizer and registry authorizer are now configurable
  • Removed the Kubernetes configuration file permissions check
  • Added username/password to helm push and dependency build/update subcommands
  • Added toYamlPretty template function
Installation and Upgrading

Download Helm v3.17.0. The common platform binaries are here:

This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at @​r6by keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.17.1 is the next patch release and will be on February 12, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025
Changelog
  • bump version to v3.17.0 301108e (Matt Farina)
  • fix: make ORAS reference private 949b2e6 (Terry Howe)
  • fix: issue with helm template and oci chart aba95b9 (Terry Howe)
  • feat: allow installation by OCI digest c3e5217 (Terry Howe)
  • Bump the k8s-io group with 7 updates 33a0ee7 (dependabot[bot])
  • Upgrade golang.org/x/net to v0.33.0 to address CVE-2024-45338 79993d2 (cx)
  • Update golangci-lint version 037c18a (Matt Farina)
  • Update to Go 1.23 9f620b8 (Matt Farina)
  • ref(create): don't render empty resource fields ba180a3 (dnskr)
  • Add annotations and dependencies to get metadata output The output of helm get metadata includes a subset of the fields contained in the chart.Metadata struct. This change adds the values of the annotations field and the dependencies field to the output. 7321579 (Niladri Halder)
  • Run build-test action on dev-v3 branch 2042f7d (George Jenkins)
  • Fix dev-v3 from take ownership changes a3a9e4f (Matt Farina)
  • Bump github.com/rubenv/sql-migrate from 1.7.0 to 1.7.1 c7cd177 (dependabot[bot])
  • Bump github.com/cyphar/filepath-securejoin from 0.3.4 to 0.3.6 ca61226 (dependabot[bot])
  • Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 9421fac (dependabot[bot])
  • Bump github.com/containerd/containerd from 1.7.23 to 1.7.24 562eb54 (dependabot[bot])
  • Bump golang.org/x/crypto from 0.30.0 to 0.31.0 [6ba4c6e](https://

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar Feb 10 '23 00:02 renovate[bot]