Merge pull request 'Update cloudflare/cloudflared Docker tag to v2025.6.0' (#103) from renovate/cloudflare-cloudflared-2025.x into main

Reviewed-on: #103

.gitea/workflows/lint-test.yaml

@@ -1,8 +1,7 @@
-name: lint-and-test-charts
+name: lint-and-test
 
 on:
   pull_request:
-    types: [opened]
 
 jobs:
   lint-test:

.gitea/workflows/process-issues.yaml

@@ -0,0 +1,35 @@
+name: process-issues
+
+on:
+  schedule:
+    - cron: '@daily'
+
+jobs:
+  process-issues:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Python Script
+        uses: actions/checkout@v4
+        with:
+          repository: alexlebens/workflow-scripts
+          ref: main
+          token: ${{ secrets.BOT_TOKEN }}
+          path: scripts
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+
+      - name: Install dependencies
+        run: pip install requests
+
+      - name: Run Script
+        env:
+          INSTANCE_URL: ${{ vars.INSTANCE_URL }}
+          REPOSITORY: ${{ gitea.repository }}
+          TOKEN: ${{ secrets.BOT_TOKEN }}
+          STALE_DAYS: 3
+          STALE_TAG: 'stale'
+          EXCLUDE_TAG: 'renovate'
+        run: python ./scripts/scripts/process-issues.py

.gitea/workflows/process-pull-requests.yaml

@@ -0,0 +1,35 @@
+name: process-pull-requests
+
+on:
+  schedule:
+    - cron: '@daily'
+
+jobs:
+  process-pull-requests:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Python Script
+        uses: actions/checkout@v4
+        with:
+          repository: alexlebens/workflow-scripts
+          ref: main
+          token: ${{ secrets.BOT_TOKEN }}
+          path: scripts
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+
+      - name: Install dependencies
+        run: pip install requests
+
+      - name: Run Script
+        env:
+          INSTANCE_URL: ${{ vars.INSTANCE_URL }}
+          REPOSITORY: ${{ gitea.repository }}
+          TOKEN: ${{ secrets.BOT_TOKEN }}
+          STALE_DAYS: 3
+          STALE_TAG: 'stale'
+          REQUIRED_TAG: 'automerge'
+        run: python ./scripts/scripts/process-pull-requests.py

.gitea/workflows/release-charts-cloudflared.yml

@@ -63,7 +63,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 4
+          priority: 3
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,successfully,completed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has successfully completed!'
@@ -76,7 +76,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 5
+          priority: 4
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,failed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has failed!'

.gitea/workflows/release-charts-generic-device-plugin.yml

@@ -63,7 +63,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 4
+          priority: 3
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,successfully,completed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has successfully completed!'
@@ -76,7 +76,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 5
+          priority: 4
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,failed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has failed!'

.gitea/workflows/release-charts-gitea-actions.yml

@@ -63,7 +63,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 4
+          priority: 3
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,successfully,completed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has successfully completed!'
@@ -76,7 +76,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 5
+          priority: 4
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,failed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has failed!'

.gitea/workflows/release-charts-postgres-cluster.yml

@@ -63,7 +63,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 4
+          priority: 3
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,successfully,completed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has successfully completed!'
@@ -76,7 +76,7 @@ jobs:
           url: '${{ secrets.NTFY_URL }}'
           topic: '${{ secrets.NTFY_TOPIC }}'
           title: "Gitea Action"
-          priority: 5
+          priority: 4
           headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
           tags: action,failed
           details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has failed!'

.gitea/workflows/release-charts.yml

@@ -1,82 +0,0 @@
-name: release-charts
-
-on:
-  push:
-    branches:
-      - main
-    paths:
-      - "charts/**"
-
-  workflow_dispatch:
-
-jobs:
-  release:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Set up Helm
-        uses: azure/setup-helm@v4
-        with:
-          token: ${{ secrets.GITEA_TOKEN }}
-          version: latest
-
-      - name: Package Helm Chart
-        run: |
-          cd $WORKFLOW_DIR
-          helm dependency build
-          echo "PACKAGE_PATH=$(helm package . | awk '{print $NF}')" >> $GITEA_ENV
-
-      - name: Publish Helm Chart to Harbor
-        run: |
-          helm registry login ${{ vars.REGISTRY_HOST }} -u ${{ vars.REGISTRY_USER }} -p ${{ secrets.REGISTRY_SECRET }}
-          helm push ${{ env.PACKAGE_PATH }} oci://${{ vars.REGISTRY_HOST }}/helm-charts
-
-      - name: Publish Helm Chart to Gitea
-        run: |
-          helm plugin install https://github.com/chartmuseum/helm-push
-          helm repo add --username ${{ gitea.actor }} --password ${{ secrets.REPOSITORY_TOKEN }} helm-charts https://${{ vars.REPOSITORY_HOST }}/api/packages/alexlebens/helm
-          helm cm-push ${{ env.PACKAGE_PATH }} helm-charts
-
-      - name: Extract Chart Metadata
-        run: |
-          cd $WORKFLOW_DIR
-          echo "CHART_VERSION=$(yq '.version' Chart.yaml)" >> $GITEA_ENV
-          echo "CHART_NAME=$(yq '.name' Chart.yaml)" >> $GITEA_ENV
-
-      - name: Release Helm Chart
-        uses: akkuman/gitea-release-action@v1
-        with:
-          name: ${{ env.CHART_NAME }}-${{ env.CHART_VERSION }}
-          tag_name: ${{ env.CHART_NAME }}-${{ env.CHART_VERSION }}
-          files: |-
-            ${{ env.PACKAGE_PATH }}
-
-      - name: ntfy Success
-        uses: niniyas/ntfy-action@master
-        if: success()
-        with:
-          url: '${{ secrets.NTFY_URL }}'
-          topic: '${{ secrets.NTFY_TOPIC }}'
-          title: "Gitea Action"
-          priority: 4
-          headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
-          tags: action,successfully,completed
-          details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has successfully completed!'
-          icon: 'https://cdn.jsdelivr.net/gh/selfhst/icons/png/gitea.png'
-
-      - name: ntfy Failed
-        uses: niniyas/ntfy-action@master
-        if: failure()
-        with:
-          url: '${{ secrets.NTFY_URL }}'
-          topic: '${{ secrets.NTFY_TOPIC }}'
-          title: "Gitea Action"
-          priority: 5
-          headers: '{"Authorization": "Bearer ${{ secrets.NTFY_CRED }}"}'
-          tags: action,failed
-          details: 'Helm Chart for ${{ env.CHART_NAME }} release workflow has failed!'
-          icon: 'https://cdn.jsdelivr.net/gh/selfhst/icons/png/gitea.png'
-          actions: '[{"action": "view", "label": "Open Gitea", "url": "https://gitea.alexlebens.dev/alexlebens/helm-charts/actions?workflow=release-charts.yml", "clear": true}]'
-          image: true

.gitea/workflows/renovate.yaml

@@ -15,16 +15,18 @@ jobs:
     runs-on: ubuntu-latest
     container: ghcr.io/renovatebot/renovate:40
     steps:
-      - uses: actions/checkout@v4
+      - name: Checkout
-      - run: renovate
+        uses: actions/checkout@v4
+
+      - name: Renovate
+        run: renovate
         env:
           RENOVATE_PLATFORM: gitea
-          RENOVATE_AUTODISCOVER: true
+          RENOVATE_ENDPOINT: ${{ vars.INSTANCE_URL }}
-          RENOVATE_ONBOARDING: true
+          RENOVATE_REPOSITORIES: alexlebens/helm-charts
-          RENOVATE_ENDPOINT: http://gitea-http.gitea:3000
           RENOVATE_GIT_AUTHOR: Renovate Bot <renovate-bot@alexlebens.net>
-          LOG_LEVEL: debug
+          LOG_LEVEL: info
           RENOVATE_TOKEN: ${{ secrets.RENOVATE_TOKEN }}
           RENOVATE_GIT_PRIVATE_KEY: ${{ secrets.RENOVATE_GIT_PRIVATE_KEY }}
           RENOVATE_GITHUB_COM_TOKEN: ${{ secrets.RENOVATE_GITHUB_COM_TOKEN }}
-          RENOVATE_REDIS_URL: redis://gitea-renovate-valkey-primary.gitea:6379
+          RENOVATE_REDIS_URL: ${{ vars.RENOVATE_REDIS_URL }}

charts/cloudflared/Chart.yaml

@@ -1,6 +1,6 @@
 apiVersion: v2
 name: cloudflared
-version: 1.15.0
+version: 1.16.0
 description: Cloudflared Tunnel
 keywords:
   - cloudflare
@@ -15,4 +15,4 @@ dependencies:
     repository: https://bjw-s-labs.github.io/helm-charts/
     version: 4.0.1
 icon: https://avatars.githubusercontent.com/u/314135?s=48&v=4
-appVersion: "2025.5.0"
+appVersion: "2025.6.0"

charts/cloudflared/README.md

@@ -1,6 +1,6 @@
 # cloudflared
 
-![Version: 1.15.0](https://img.shields.io/badge/Version-1.15.0-informational?style=flat-square) ![AppVersion: 2025.5.0](https://img.shields.io/badge/AppVersion-2025.5.0-informational?style=flat-square)
+![Version: 1.16.0](https://img.shields.io/badge/Version-1.16.0-informational?style=flat-square) ![AppVersion: 2025.6.0](https://img.shields.io/badge/AppVersion-2025.6.0-informational?style=flat-square)
 
 Cloudflared Tunnel
 
@@ -27,7 +27,7 @@ Cloudflared Tunnel
 |-----|------|---------|-------------|
 | existingSecretKey | string | `"cf-tunnel-token"` | Name of key that contains the token in the existingSecret |
 | existingSecretName | string | `"cloudflared-secret"` | Name of existing secret that contains Cloudflare token |
-| image | object | `{"pullPolicy":"IfNotPresent","repository":"cloudflare/cloudflared","tag":"2025.5.0"}` | Default image |
+| image | object | `{"pullPolicy":"IfNotPresent","repository":"cloudflare/cloudflared","tag":"2025.6.0"}` | Default image |
 | name | string | `"cloudflared"` | Name override of release |
 | resources | object | `{"requests":{"cpu":"10m","memory":"128Mi"}}` | Default resources |
 

charts/cloudflared/values.yaml

@@ -10,7 +10,7 @@ existingSecretKey: cf-tunnel-token
 # -- Default image
 image:
   repository: cloudflare/cloudflared
-  tag: "2025.5.0"
+  tag: "2025.6.0"
   pullPolicy: IfNotPresent
 
 # -- Default resources

charts/postgres-cluster/Chart.yaml

@@ -1,6 +1,6 @@
 apiVersion: v2
 name: postgres-cluster
-version: 6.4.5
+version: 6.4.4
 description: Cloudnative-pg Cluster
 keywords:
   - database

charts/postgres-cluster/values.yaml

@@ -21,7 +21,7 @@ cluster:
   # -- Default image
   image:
     repository: ghcr.io/cloudnative-pg/postgresql
-    tag: "17.5-standard-bullseye"
+    tag: "17.5-1-bullseye"
 
   # -- Image pull policy. One of Always, Never or IfNotPresent. If not defined, it defaults to IfNotPresent. Cannot be updated.
   # More info: https://kubernetes.io/docs/concepts/containers/images#updating-images