toboshii
fix(helm): update chart cert-manager to v1.9.2
This PR contains the following updates:
| Package | Update | Change |
|---|---|---|
| cert-manager (source) | patch | v1.9.0 -> v1.9.2 |
⚠ Dependency Lookup Warnings ⚠
Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.
Release Notes
cert-manager/cert-manager
v1.9.2
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
cert-manager v1.9.2 is a bug fix release which fixes an issue where CertificateRequests marked as InvalidRequest did not properly trigger issuance failure handling leading to 'stuck' requests, and a problem which prevented the Venafi Issuer from connecting to TPP servers where the vedauth API endpoints were configured to accept client certificates.
It is also compiled with a newer version of Go 1.18 (v1.18.8) which fixes some vulnerabilities in the Go standard library.
Changes since v1.9.1
Bug or Regression
- Fix issue where CertificateRequests marked as InvalidRequest did not properly trigger issuance failure handling leading to 'stuck' requests. (#5371, @munnerz )
- The Venafi Issuer now supports TLS 1.2 renegotiation, so that it can connect to TPP servers where the
vedauthAPI endpoints are configured to accept client certificates. (Note: This does not mean that the Venafi Issuer supports client certificate authentication). (#5577, @wallrj) - Upgrade to latest go patch release. (#5561, @SgtCoDFish)
v1.9.1
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
Version 1.9.1 is a bugfix release which removes an incorrect check in the Route53 DNS solver. This accidental change prevented the use of credentials derived from instance metadata or AWS pod metadata.
Thanks to @danquack and @ArchiFleKs for raising this issue, and @danquack and @JoshVanL for fixing it!
Changes since v1.9.0
Bug
- DNS Route53: Remove incorrect validation which rejects solvers that don't define either a
accessKeyIDorsecretAccessKeyID. (#5341, @JoshVanL @danquack )
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- [ ] If you want to rebase/retry this PR, click this checkbox.
This PR has been generated by Renovate Bot.
![chii-bot[bot] avatar](https://avatars.githubusercontent.com/in/220539?v=4 "Published by a pub.dev verified publisher"){kind=small}
Path: cluster/apps/kube-system/cert-manager/helm-release.yaml
Version: v1.9.0 -> v1.9.2
@@ -839,7 +839,7 @@
runAsNonRoot: true
containers:
- name: cert-manager
- image: "quay.io/jetstack/cert-manager-cainjector:v1.9.0"
+ image: "quay.io/jetstack/cert-manager-cainjector:v1.9.2"
imagePullPolicy: IfNotPresent
args:
- --v=2
@@ -887,7 +887,7 @@
runAsNonRoot: true
containers:
- name: cert-manager
- image: "quay.io/jetstack/cert-manager-controller:v1.9.0"
+ image: "quay.io/jetstack/cert-manager-controller:v1.9.2"
imagePullPolicy: IfNotPresent
args:
- --v=2
@@ -947,7 +947,7 @@
runAsNonRoot: true
containers:
- name: cert-manager
- image: "quay.io/jetstack/cert-manager-webhook:v1.9.0"
+ image: "quay.io/jetstack/cert-manager-webhook:v1.9.2"
imagePullPolicy: IfNotPresent
args:
- --v=2
@@ -1205,7 +1205,7 @@
runAsNonRoot: true
containers:
- name: cert-manager
- image: "quay.io/jetstack/cert-manager-ctl:v1.9.0"
+ image: "quay.io/jetstack/cert-manager-ctl:v1.9.2"
imagePullPolicy: IfNotPresent
args:
- check
MegaLinter status: ❌ ERROR
| Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
|---|---|---|---|---|---|
| ❌ COPYPASTE | jscpd | yes | 2 | 1.31s | |
| ✅ REPOSITORY | git_diff | yes | no | 0.01s | |
| ✅ REPOSITORY | secretlint | yes | no | 1.56s | |
| ✅ YAML | prettier | 1 | 0 | 0.43s | |
| ✅ YAML | yamllint | 1 | 0 | 0.11s |
See errors details in artifact MegaLinter reports on CI Job page
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff