624 Commits

Author	SHA1	Message	Date
Renovate Bot	c18d3e5edb	Update Helm release cert-manager to v1.19.0 (#1711) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [cert-manager](https://cert-manager.io) ([source](https://github.com/cert-manager/cert-manager)) | minor | `v1.18.2` -> `v1.19.0` | --- ### Release Notes <details> <summary>cert-manager/cert-manager (cert-manager)</summary> ### [`v1.19.0`](https://github.com/cert-manager/cert-manager/releases/tag/v1.19.0) [Compare Source](https://github.com/cert-manager/cert-manager/compare/v1.18.2...v1.19.0) cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters. This release focuses on expanding platform compatibility, improving deployment flexibility, enhancing observability, and addressing key reliability issues. > 📖 Read the full release notes at cert-manager.io: <https://cert-manager.io/docs/releases/release-notes/release-notes-1.19> Changes since `v1.18.0`: #### Feature - Add IPv6 rules to the default network policy ([#&#8203;7726](https://github.com/cert-manager/cert-manager/issues/7726), [@&#8203;jcpunk](https://github.com/jcpunk)) - Add `global.nodeSelector` to helm chart to allow for a single `nodeSelector` to be set across all services. ([#&#8203;7818](https://github.com/cert-manager/cert-manager/issues/7818), [@&#8203;StingRayZA](https://github.com/StingRayZA)) - Add a feature gate to default to Ingress `pathType` `Exact` in ACME HTTP01 Ingress challenge solvers. ([#&#8203;7795](https://github.com/cert-manager/cert-manager/issues/7795), [@&#8203;sspreitzer](https://github.com/sspreitzer)) - Add generated `applyconfigurations` allowing clients to make type-safe server-side apply requests for cert-manager resources. ([#&#8203;7866](https://github.com/cert-manager/cert-manager/issues/7866), [@&#8203;erikgb](https://github.com/erikgb)) - Added API defaults to issuer references group (cert-manager.io) and kind (Issuer). ([#&#8203;7414](https://github.com/cert-manager/cert-manager/issues/7414), [@&#8203;erikgb](https://github.com/erikgb)) - Added `certmanager_certificate_challenge_status` Prometheus metric. ([#&#8203;7736](https://github.com/cert-manager/cert-manager/issues/7736), [@&#8203;hjoshi123](https://github.com/hjoshi123)) - Added `protocol` field for `rfc2136` DNS01 provider ([#&#8203;7881](https://github.com/cert-manager/cert-manager/issues/7881), [@&#8203;hjoshi123](https://github.com/hjoshi123)) - Added experimental field `hostUsers` flag to all pods. Not set by default. ([#&#8203;7973](https://github.com/cert-manager/cert-manager/issues/7973), [@&#8203;hjoshi123](https://github.com/hjoshi123)) - Support configurable resource requests and limits for ACME HTTP01 solver pods through ClusterIssuer and Issuer specifications, allowing granular resource management that overrides global `--acme-http01-solver-resource-*` settings. ([#&#8203;7972](https://github.com/cert-manager/cert-manager/issues/7972), [@&#8203;lunarwhite](https://github.com/lunarwhite)) - The `CAInjectorMerging` feature has been promoted to BETA and is now enabled by default ([#&#8203;8017](https://github.com/cert-manager/cert-manager/issues/8017), [@&#8203;ThatsMrTalbot](https://github.com/ThatsMrTalbot)) - The controller, webhook and ca-injector now log their version and git commit on startup for easier debugging and support. ([#&#8203;8072](https://github.com/cert-manager/cert-manager/issues/8072), [@&#8203;prasad89](https://github.com/prasad89)) - Updated `certificate` metrics to the collector approach. ([#&#8203;7856](https://github.com/cert-manager/cert-manager/issues/7856), [@&#8203;hjoshi123](https://github.com/hjoshi123)) #### Bug or Regression - ACME: Increased challenge authorization timeout to 2 minutes to fix `error waiting for authorization` ([#&#8203;7796](https://github.com/cert-manager/cert-manager/issues/7796), [@&#8203;hjoshi123](https://github.com/hjoshi123)) - BUGFIX: permitted URI domains were incorrectly used to set the excluded URI domains in the CSR's name constraints ([#&#8203;7816](https://github.com/cert-manager/cert-manager/issues/7816), [@&#8203;kinolaev](https://github.com/kinolaev)) - Enforced ACME HTTP-01 solver validation to properly reject configurations when multiple ingress options (`class`, `ingressClassName`, `name`) are specified simultaneously ([#&#8203;8021](https://github.com/cert-manager/cert-manager/issues/8021), [@&#8203;lunarwhite](https://github.com/lunarwhite)) - Increase maximum sizes of PEM certificates and chains which can be parsed in cert-manager, to handle leaf certificates with large numbers of DNS names or other identities ([#&#8203;7961](https://github.com/cert-manager/cert-manager/issues/7961), [@&#8203;SgtCoDFish](https://github.com/SgtCoDFish)) - Reverted adding the `global.rbac.disableHTTPChallengesRole` Helm option. ([#&#8203;7836](https://github.com/cert-manager/cert-manager/issues/7836), [@&#8203;inteon](https://github.com/inteon)) - This change removes the `path` label of core ACME client metrics and will require users to update their monitoring dashboards and alerting rules if using those metrics. ([#&#8203;8109](https://github.com/cert-manager/cert-manager/issues/8109), [@&#8203;mladen-rusev-cyberark](https://github.com/mladen-rusev-cyberark)) - Use the latest version of `ingress-nginx` in E2E tests to ensure compatibility ([#&#8203;7792](https://github.com/cert-manager/cert-manager/issues/7792), [@&#8203;wallrj](https://github.com/wallrj)) #### Other (Cleanup or Flake) - Helm: Fix naming template of `tokenrequest` RoleBinding resource to improve consistency ([#&#8203;7761](https://github.com/cert-manager/cert-manager/issues/7761), [@&#8203;lunarwhite](https://github.com/lunarwhite)) - Improve error messages when certificates, CRLs or private keys fail admission due to malformed or missing PEM data ([#&#8203;7928](https://github.com/cert-manager/cert-manager/issues/7928), [@&#8203;SgtCoDFish](https://github.com/SgtCoDFish)) - Major upgrade of Akamai SDK. NOTE: The new version has not been fully tested end-to-end due to the lack of cloud infrastructure. ([#&#8203;8003](https://github.com/cert-manager/cert-manager/issues/8003), [@&#8203;hjoshi123](https://github.com/hjoshi123)) - Update kind images to include the Kubernetes 1.33 node image ([#&#8203;7786](https://github.com/cert-manager/cert-manager/issues/7786), [@&#8203;wallrj](https://github.com/wallrj)) - Use `maps.Copy` for cleaner map handling ([#&#8203;8092](https://github.com/cert-manager/cert-manager/issues/8092), [@&#8203;quantpoet](https://github.com/quantpoet)) - Vault: Migrate Vault E2E add-on tests from deprecated `vault-client-go` to the new `vault/api` client. ([#&#8203;8059](https://github.com/cert-manager/cert-manager/issues/8059), [@&#8203;armagankaratosun](https://github.com/armagankaratosun)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNCIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS40IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/1711 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-10-08 21:40:28 +00:00
Renovate Bot	3deba648a0	Update Helm release generic-device-plugin to v0.13.0 (#1714) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [generic-device-plugin](https://github.com/bjw-s/helm-charts) ([source](https://github.com/bjw-s/helm-charts/tree/HEAD/charts/library/common)) | minor | `0.12.0` -> `0.13.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNCIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS40IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: #1714 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-10-08 21:40:19 +00:00
Renovate Bot	c7ce92002f	Update d3fk/s3cmd:latest Docker digest to 00203c8 (#1702)	2025-10-08 03:01:59 +00:00
Alex Lebens	adb6d3807e	update chart	2025-10-07 17:49:05 -05:00
Alex Lebens	ffbddceb92	switch index	2025-10-07 16:03:03 -05:00
Renovate Bot	0e013356a6	Update node-feature-discovery Docker tag to v0.18.1 (#1690)	2025-10-07 14:04:01 +00:00
Renovate Bot	e850753fe9	Update ghcr.io/kashalls/external-dns-unifi-webhook Docker tag to v0.7.0 (#1678) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/kashalls/external-dns-unifi-webhook](https://github.com/kashalls/external-dns-unifi-webhook) | minor | `v0.6.2` -> `v0.7.0` | --- ### Release Notes <details> <summary>kashalls/external-dns-unifi-webhook (ghcr.io/kashalls/external-dns-unifi-webhook)</summary> ### [`v0.7.0`](https://github.com/kashalls/external-dns-unifi-webhook/releases/tag/v0.7.0) [Compare Source](https://github.com/kashalls/external-dns-unifi-webhook/compare/v0.6.2...v0.7.0) #### What's Changed - chore(deps): update golang docker tag to v1.25 by [@&#8203;renovate](https://github.com/renovate)\[bot] in [#&#8203;127](https://github.com/kashalls/external-dns-unifi-webhook/pull/127) - chore(deps): update actions/checkout action to v5 by [@&#8203;renovate](https://github.com/renovate)\[bot] in [#&#8203;126](https://github.com/kashalls/external-dns-unifi-webhook/pull/126) - fix(deps): update module github.com/go-chi/chi/v5 to v5.2.3 by [@&#8203;renovate](https://github.com/renovate)\[bot] in [#&#8203;128](https://github.com/kashalls/external-dns-unifi-webhook/pull/128) - fix(deps): update module golang.org/x/net to v0.44.0 by [@&#8203;renovate](https://github.com/renovate)\[bot] in [#&#8203;131](https://github.com/kashalls/external-dns-unifi-webhook/pull/131) - fix(deps): update module sigs.k8s.io/external-dns to v0.19.0 by [@&#8203;renovate](https://github.com/renovate)\[bot] in [#&#8203;130](https://github.com/kashalls/external-dns-unifi-webhook/pull/130) - fix(deps): update module github.com/prometheus/client\_golang to v1.23.2 by [@&#8203;renovate](https://github.com/renovate)\[bot] in [#&#8203;129](https://github.com/kashalls/external-dns-unifi-webhook/pull/129) **Full Changelog**: <https://github.com/kashalls/external-dns-unifi-webhook/compare/v0.6.2...v0.7.0> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMzUuNCIsInVwZGF0ZWRJblZlciI6IjQxLjEzNS40IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1678 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-10-05 03:30:38 +00:00
Alex Lebens	e907ef4f62	reduce backups	2025-10-04 19:34:29 -05:00
Renovate Bot	27b0ffd80b	Update Helm release traefik to v37.1.2 (#1671)	2025-10-04 10:01:31 +00:00
Alex Lebens	78c2c46010	schedule	2025-10-04 00:52:57 -05:00
Alex Lebens	4613460b39	schedule	2025-10-04 00:44:27 -05:00
Alex Lebens	e325170af5	change backup schedule	2025-10-04 00:37:30 -05:00
Alex Lebens	afa65bfab5	fix repo	2025-10-04 00:05:16 -05:00
Alex Lebens	137d2f636e	upgrade	2025-10-03 23:50:06 -05:00
Alex Lebens	45e00fbbb7	update chart	2025-10-02 23:24:00 -05:00
Renovate Bot	404275f294	Update d3fk/s3cmd:latest Docker digest to 53e70e3 (#1629)	2025-10-01 03:01:43 +00:00
Renovate Bot	e6ee7b5057	Update Helm release tailscale-operator to v1.88.3 (#1624)	2025-09-30 15:03:20 +00:00
Renovate Bot	d144f9c87b	Update Helm release generic-device-plugin to v0.12.0 (#1618) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [generic-device-plugin](https://github.com/bjw-s/helm-charts) ([source](https://github.com/bjw-s/helm-charts/tree/HEAD/charts/library/common)) | minor | `0.11.0` -> `0.12.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: #1618 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-30 01:05:40 +00:00
Renovate Bot	5a8904eafe	Update ghcr.io/siderolabs/talosctl Docker tag to v1.11.2 (#1573)	2025-09-25 15:02:55 +00:00
Alex Lebens	d681a8044a	remove media manager	2025-09-23 22:01:54 -05:00
Renovate Bot	3d1fa9b800	Update d3fk/s3cmd:latest Docker digest to c4504f3 (#1561)	2025-09-24 03:01:44 +00:00
Renovate Bot	b320db091c	Update Helm release generic-device-plugin to v0.11.0 (#1560) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [generic-device-plugin](https://github.com/bjw-s/helm-charts) ([source](https://github.com/bjw-s/helm-charts/tree/HEAD/charts/library/common)) | minor | `0.8.0` -> `0.11.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: #1560 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-24 01:18:18 +00:00
Alex Lebens	2ebd2f7012	add media-manager	2025-09-23 19:57:55 -05:00
Renovate Bot	504f6f7364	Update Helm release node-feature-discovery to v0.17.4 (#1554)	2025-09-23 11:01:57 +00:00
Renovate Bot	f9bc559f21	Update goharbor/harbor-core Docker tag to v2.14.0 (#1495) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/harbor-core | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1495 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:18:42 +00:00
Renovate Bot	679be53415	Update goharbor/harbor-exporter Docker tag to v2.14.0 (#1496) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/harbor-exporter | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1496 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:18:21 +00:00
Renovate Bot	1f44e15a4e	Update goharbor/harbor-jobservice Docker tag to v2.14.0 (#1497) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/harbor-jobservice | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1497 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:18:02 +00:00
Renovate Bot	c00348f5c1	Update goharbor/harbor-portal Docker tag to v2.14.0 (#1498) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/harbor-portal | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1498 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:17:43 +00:00
Renovate Bot	7e9f279211	Update goharbor/harbor-registryctl Docker tag to v2.14.0 (#1499) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/harbor-registryctl | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1499 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:17:31 +00:00
Renovate Bot	5b464f70bc	Update goharbor/nginx-photon Docker tag to v2.14.0 (#1500) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/nginx-photon | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1500 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:17:15 +00:00
Renovate Bot	aa6b2f0b6c	Update goharbor/registry-photon Docker tag to v2.14.0 (#1501) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | goharbor/registry-photon | minor | `v2.13.2` -> `v2.14.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJpbWFnZSJdfQ==--> Reviewed-on: #1501 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:16:54 +00:00
Renovate Bot	1ea1eb91c4	Update Helm release harbor to v1.18.0 (#1509) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [harbor](https://goharbor.io) ([source](https://github.com/goharbor/harbor-helm)) | minor | `1.17.2` -> `1.18.0` | --- ### Release Notes <details> <summary>goharbor/harbor-helm (harbor)</summary> ### [`v1.18.0`](https://github.com/goharbor/harbor-helm/releases/tag/v1.18.0) [Compare Source](https://github.com/goharbor/harbor-helm/compare/v1.17.2...v1.18.0) <!-- Release notes generated using configuration in .github/release.yml at 1.18.0 --> Harbor OSS version: v2.14.0 #### What's Changed ##### Other Changes - Fix: fix bug where log level configuration was not applied by [@&#8203;sisilia91](https://github.com/sisilia91) in [#&#8203;2167](https://github.com/goharbor/harbor-helm/pull/2167) - Added existingSecretAdminPassword to the values.yaml file by [@&#8203;rkthtrifork](https://github.com/rkthtrifork) in [#&#8203;2180](https://github.com/goharbor/harbor-helm/pull/2180) - add proxy timeout for nginx https config by [@&#8203;MinerYang](https://github.com/MinerYang) in [#&#8203;2202](https://github.com/goharbor/harbor-helm/pull/2202) - update adapter list for replication and proxy-cache by [@&#8203;MinerYang](https://github.com/MinerYang) in [#&#8203;2223](https://github.com/goharbor/harbor-helm/pull/2223) - Fix ArgoCD sync by [@&#8203;drewhemm](https://github.com/drewhemm) in [#&#8203;2173](https://github.com/goharbor/harbor-helm/pull/2173) - feat(gw-api): add support for HTTPRoutes by [@&#8203;larivierec](https://github.com/larivierec) in [#&#8203;2175](https://github.com/goharbor/harbor-helm/pull/2175) - feat: Added support for configuring dual-stack services ([#&#8203;2212](https://github.com/goharbor/harbor-helm/issues/2212)) by [@&#8203;reasonerjt](https://github.com/reasonerjt) in [#&#8203;2226](https://github.com/goharbor/harbor-helm/pull/2226) - Add support for trivy dbRepository and javaDBRepository by [@&#8203;benji78](https://github.com/benji78) in [#&#8203;1857](https://github.com/goharbor/harbor-helm/pull/1857) - fix redis existingSecret with username url rendering by [@&#8203;MinerYang](https://github.com/MinerYang) in [#&#8203;2231](https://github.com/goharbor/harbor-helm/pull/2231) - \[Cherry-pick]Move extraEnvVars and add tests by [@&#8203;MinerYang](https://github.com/MinerYang) in [#&#8203;2236](https://github.com/goharbor/harbor-helm/pull/2236) - \[cherry-pick]bump k8s version matrix ([#&#8203;2238](https://github.com/goharbor/harbor-helm/issues/2238)) by [@&#8203;MinerYang](https://github.com/MinerYang) in [#&#8203;2239](https://github.com/goharbor/harbor-helm/pull/2239) - Bump version to 1.14.0, appVersion to 2.14.0 by [@&#8203;MinerYang](https://github.com/MinerYang) in [#&#8203;2242](https://github.com/goharbor/harbor-helm/pull/2242) #### New Contributors - [@&#8203;sisilia91](https://github.com/sisilia91) made their first contribution in [#&#8203;2167](https://github.com/goharbor/harbor-helm/pull/2167) - [@&#8203;rkthtrifork](https://github.com/rkthtrifork) made their first contribution in [#&#8203;2180](https://github.com/goharbor/harbor-helm/pull/2180) - [@&#8203;drewhemm](https://github.com/drewhemm) made their first contribution in [#&#8203;2173](https://github.com/goharbor/harbor-helm/pull/2173) - [@&#8203;larivierec](https://github.com/larivierec) made their first contribution in [#&#8203;2175](https://github.com/goharbor/harbor-helm/pull/2175) - [@&#8203;benji78](https://github.com/benji78) made their first contribution in [#&#8203;1857](https://github.com/goharbor/harbor-helm/pull/1857) **Full Changelog**: <https://github.com/goharbor/harbor-helm/compare/v1.17.0...v1.18.0> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/1509 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-20 03:15:29 +00:00
Renovate Bot	922c542054	Update Helm release tailscale-operator to v1.88.2 (#1512) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [tailscale-operator](https://github.com/tailscale/tailscale) | minor | `1.86.5` -> `1.88.2` | --- ### Release Notes <details> <summary>tailscale/tailscale (tailscale-operator)</summary> ### [`v1.88.2`](https://github.com/tailscale/tailscale/compare/v1.86.5...v1.88.2) [Compare Source](https://github.com/tailscale/tailscale/compare/v1.86.5...v1.88.2) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: #1512 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-19 18:20:24 +00:00
Renovate Bot	1bc526f37b	Update Helm release generic-device-plugin to v0.8.0 (#1494) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [generic-device-plugin](https://github.com/bjw-s/helm-charts) ([source](https://github.com/bjw-s/helm-charts/tree/HEAD/charts/library/common)) | minor | `0.7.0` -> `0.8.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xMTYuNiIsInVwZGF0ZWRJblZlciI6IjQxLjExNi42IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFydCJdfQ==--> Reviewed-on: #1494 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-18 20:23:30 +00:00
Alex Lebens	402756fa28	update chart	2025-09-17 22:57:52 -05:00
Alex Lebens	a67d1022f3	update chart	2025-09-17 22:46:54 -05:00
Renovate Bot	8412637d60	Update ghcr.io/siderolabs/talosctl Docker tag to v1.11.1 (#1409) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/siderolabs/talosctl](https://github.com/siderolabs/talos) | minor | `v1.10.4` -> `v1.11.1` | --- ### Release Notes <details> <summary>siderolabs/talos (ghcr.io/siderolabs/talosctl)</summary> ### [`v1.11.1`](https://github.com/siderolabs/talos/releases/tag/v1.11.1) [Compare Source](https://github.com/siderolabs/talos/compare/v1.11.0...v1.11.1) ##### [Talos 1.11.1](https://github.com/siderolabs/talos/releases/tag/v1.11.1) (2025-09-08) Welcome to the v1.11.1 release of Talos! Please try out the release binaries and report any issues at <https://github.com/siderolabs/talos/issues>. ##### Component Updates Linux: 6.12.45 CoreDNS: 1.12.3 Talos is built with Go 1.24.6. ##### Contributors - Andrey Smirnov - Markus Freitag - Olivier Doucet - Sammy ETUR ##### Changes <details><summary>7 commits</summary> <p> - [@&#8203;`8e85c83`](https://github.com/siderolabs/talos/commit/8e85c8362) release(v1.11.1): prepare release - [@&#8203;`ff8644c`](https://github.com/siderolabs/talos/commit/ff8644cd2) fix: correctly handle status-code 204 - [@&#8203;`7d5fe2d`](https://github.com/siderolabs/talos/commit/7d5fe2d0f) feat: update Linux kernel (memcg\_v1, ublk) - [@&#8203;`9e310a9`](https://github.com/siderolabs/talos/commit/9e310a9dd) fix: enable support for VMWare arm64 - [@&#8203;`f7620f0`](https://github.com/siderolabs/talos/commit/f7620f028) feat: update CoreDNS to 1.12.3 - [@&#8203;`01bf2f6`](https://github.com/siderolabs/talos/commit/01bf2f6f9) feat: add SOCKS5 proxy support to dynamic proxy dialer - [@&#8203;`8a578bc`](https://github.com/siderolabs/talos/commit/8a578bc4a) feat: update Linux to 6.12.45 </p> </details> ##### Changes from siderolabs/pkgs <details><summary>3 commits</summary> <p> - [siderolabs/pkgs@`1a25681`](https://github.com/siderolabs/pkgs/commit/1a25681) feat: enable ublk support - [siderolabs/pkgs@`95f0be4`](https://github.com/siderolabs/pkgs/commit/95f0be4) fix: enable memcg v1 - [siderolabs/pkgs@`e1c333c`](https://github.com/siderolabs/pkgs/commit/e1c333c) feat: update Linux to 6.12.45 </p> </details> ##### Dependency Changes - **cloud.google.com/go/compute/metadata** v0.7.0 -> v0.8.0 - **github.com/aws/aws-sdk-go-v2/config** v1.29.17 -> v1.31.2 - **github.com/aws/aws-sdk-go-v2/feature/ec2/imds** v1.16.32 -> v1.18.4 - **github.com/aws/smithy-go** v1.22.4 -> v1.22.5 - **github.com/miekg/dns** v1.1.67 -> v1.1.68 - **github.com/siderolabs/pkgs** v1.11.0-15-g2ac857a -> v1.11.0-18-g1a25681 - **github.com/siderolabs/talos/pkg/machinery** v1.11.0 -> v1.11.1 - **golang.org/x/net** v0.42.0 -> v0.43.0 - **golang.org/x/sys** v0.34.0 -> v0.35.0 - **golang.org/x/term** v0.33.0 -> v0.34.0 - **golang.org/x/text** v0.27.0 -> v0.28.0 - **google.golang.org/grpc** v1.73.0 -> v1.75.0 - **google.golang.org/protobuf** v1.36.6 -> v1.36.8 Previous release can be found at [v1.11.0](https://github.com/siderolabs/talos/releases/tag/v1.11.0) ##### Images ``` ghcr.io/siderolabs/flannel:v0.27.2 registry.k8s.io/coredns/coredns:v1.12.3 gcr.io/etcd-development/etcd:v3.6.4 registry.k8s.io/kube-apiserver:v1.34.0 registry.k8s.io/kube-controller-manager:v1.34.0 registry.k8s.io/kube-scheduler:v1.34.0 registry.k8s.io/kube-proxy:v1.34.0 ghcr.io/siderolabs/kubelet:v1.34.0 ghcr.io/siderolabs/installer:v1.11.1 registry.k8s.io/pause:3.10 ``` ### [`v1.11.0`](https://github.com/siderolabs/talos/blob/HEAD/CHANGELOG.md#Changes-since-v1110-alpha2) [Compare Source](https://github.com/siderolabs/talos/compare/v1.10.7...v1.11.0) <details><summary>1 commit</summary> <p> - [`777335f23`](777335f234) chore: improve cloud image uploader resilience </p> </details> ### [`v1.10.7`](https://github.com/siderolabs/talos/releases/tag/v1.10.7) [Compare Source](https://github.com/siderolabs/talos/compare/v1.10.6...v1.10.7) ##### [Talos 1.10.7](https://github.com/siderolabs/talos/releases/tag/v1.10.7) (2025-08-26) Welcome to the v1.10.7 release of Talos! Please try out the release binaries and report any issues at <https://github.com/siderolabs/talos/issues>. ##### Component Updates Linux: 6.12.43 Kubernetes: 1.33.4 Talos is built with Go 1.24.6. ##### Contributors - Andrey Smirnov ##### Changes <details><summary>6 commits</summary> <p> - [@&#8203;`71de2e2`](https://github.com/siderolabs/talos/commit/71de2e23b) release(v1.10.7): prepare release - [@&#8203;`d7936de`](https://github.com/siderolabs/talos/commit/d7936dec6) fix: image cache lockup on a missing volume - [@&#8203;`f6541fa`](https://github.com/siderolabs/talos/commit/f6541fa71) fix: live reload of TLS client config for discovery client - [@&#8203;`29cfd9f`](https://github.com/siderolabs/talos/commit/29cfd9fd0) fix: enforce minimum size on user volumes if not set explicitly - [@&#8203;`83dcca3`](https://github.com/siderolabs/talos/commit/83dcca3c7) feat: add [`F71808E`](https://github.com/siderolabs/talos/commit/F71808E) watchdog driver - [@&#8203;`3f05c39`](https://github.com/siderolabs/talos/commit/3f05c3922) feat: update Linux and Kubernetes </p> </details> ##### Changes from siderolabs/discovery-client <details><summary>3 commits</summary> <p> - [siderolabs/discovery-client@`0bffa6f`](https://github.com/siderolabs/discovery-client/commit/0bffa6f) fix: allow TLS config to be passed as a function - [siderolabs/discovery-client@`09c6687`](https://github.com/siderolabs/discovery-client/commit/09c6687) chore: fix project name in release.toml - [siderolabs/discovery-client@`71b0c6d`](https://github.com/siderolabs/discovery-client/commit/71b0c6d) fix: add FIPS-140-3 strict compliance </p> </details> ##### Changes from siderolabs/pkgs <details><summary>5 commits</summary> <p> - [siderolabs/pkgs@`88700c7`](https://github.com/siderolabs/pkgs/commit/88700c7) feat: update Linux to 6.12.43 - [siderolabs/pkgs@`4cf5eeb`](https://github.com/siderolabs/pkgs/commit/4cf5eeb) fix: re-enable CPUSETS\_V1 cgroups controller - [siderolabs/pkgs@`8a14125`](https://github.com/siderolabs/pkgs/commit/8a14125) feat: update backportable dependencies - [siderolabs/pkgs@`69b9cdc`](https://github.com/siderolabs/pkgs/commit/69b9cdc) feat: enable [`F71808E`](https://github.com/siderolabs/talos/commit/F71808E) watchdog driver - [siderolabs/pkgs@`7ffefa9`](https://github.com/siderolabs/pkgs/commit/7ffefa9) feat: update Go to 1.24.6 </p> </details> ##### Changes from siderolabs/tools <details><summary>1 commit</summary> <p> - [siderolabs/tools@`306d9d9`](https://github.com/siderolabs/tools/commit/306d9d9) feat: update Go to 1.24.6 </p> </details> ##### Dependency Changes - **github.com/siderolabs/discovery-client** v0.1.11 -> v0.1.13 - **github.com/siderolabs/pkgs** v1.10.0-29-g2e6dd0a -> v1.10.0-34-g88700c7 - **github.com/siderolabs/talos/pkg/machinery** v1.10.6 -> v1.10.7 - **github.com/siderolabs/tools** v1.10.0-5-g31fd099 -> v1.10.0-6-g306d9d9 - **google.golang.org/grpc** v1.71.3 -> v1.73.0 - **k8s.io/api** v0.33.2 -> v0.33.4 - **k8s.io/apiserver** v0.33.2 -> v0.33.4 - **k8s.io/client-go** v0.33.2 -> v0.33.4 - **k8s.io/component-base** v0.33.2 -> v0.33.4 - **k8s.io/kube-scheduler** v0.33.2 -> v0.33.4 - **k8s.io/kubectl** v0.33.2 -> v0.33.4 - **k8s.io/kubelet** v0.33.2 -> v0.33.4 - **k8s.io/pod-security-admission** v0.33.2 -> v0.33.4 Previous release can be found at [v1.10.6](https://github.com/siderolabs/talos/releases/tag/v1.10.6) ##### Images ``` ghcr.io/siderolabs/flannel:v0.26.7 registry.k8s.io/coredns/coredns:v1.12.1 gcr.io/etcd-development/etcd:v3.5.21 registry.k8s.io/kube-apiserver:v1.33.4 registry.k8s.io/kube-controller-manager:v1.33.4 registry.k8s.io/kube-scheduler:v1.33.4 registry.k8s.io/kube-proxy:v1.33.4 ghcr.io/siderolabs/kubelet:v1.33.4 ghcr.io/siderolabs/installer:v1.10.7 registry.k8s.io/pause:3.10 ``` ### [`v1.10.6`](https://github.com/siderolabs/talos/releases/tag/v1.10.6) [Compare Source](https://github.com/siderolabs/talos/compare/v1.10.5...v1.10.6) ##### [Talos 1.10.6](https://github.com/siderolabs/talos/releases/tag/v1.10.6) (2025-07-31) Welcome to the v1.10.6 release of Talos! Please try out the release binaries and report any issues at <https://github.com/siderolabs/talos/issues>. ##### Component Updates Linux: 6.12.40 Kubernetes: 1.33.3 Talos is built with Go 1.24.5. ##### Contributors - Andrey Smirnov - Andrew Longwill - Mateusz Urbanek ##### Changes <details><summary>8 commits</summary> <p> - [@&#8203;`cfa6c98`](https://github.com/siderolabs/talos/commit/cfa6c98ce) release(v1.10.6): prepare release - [@&#8203;`7553089`](https://github.com/siderolabs/talos/commit/755308906) fix: issues with reading GPT - [@&#8203;`bb1cdc8`](https://github.com/siderolabs/talos/commit/bb1cdc86b) fix: issue with volume remount on service restart - [@&#8203;`e8bbe4a`](https://github.com/siderolabs/talos/commit/e8bbe4a51) chore: tag aws snapshots created via ci with the image name - [@&#8203;`e595225`](https://github.com/siderolabs/talos/commit/e59522577) feat: include AMD encrypted mem modules into base - [@&#8203;`68a4852`](https://github.com/siderolabs/talos/commit/68a485269) fix: add more bootloader probe logs on upgrade - [@&#8203;`d76649d`](https://github.com/siderolabs/talos/commit/d76649dd5) fix: talos endpoint might not be created in Kubernetes - [@&#8203;`e621759`](https://github.com/siderolabs/talos/commit/e62175948) feat: update Linux to 6.12.40 </p> </details> ##### Changes from siderolabs/gen <details><summary>1 commit</summary> <p> - [siderolabs/gen@`044d921`](https://github.com/siderolabs/gen/commit/044d921) feat: add xslices.Deduplicate </p> </details> ##### Changes from siderolabs/pkgs <details><summary>5 commits</summary> <p> - [siderolabs/pkgs@`2e6dd0a`](https://github.com/siderolabs/pkgs/commit/2e6dd0a) feat: update Linux to 6.12.40 - [siderolabs/pkgs@`3657b7d`](https://github.com/siderolabs/pkgs/commit/3657b7d) feat: update Linux to 6.12.38 - [siderolabs/pkgs@`a8e77ff`](https://github.com/siderolabs/pkgs/commit/a8e77ff) feat: enable AMD encrypted memory - [siderolabs/pkgs@`8dd783f`](https://github.com/siderolabs/pkgs/commit/8dd783f) feat: update Linux to 6.12.36 and firmware - [siderolabs/pkgs@`7e49fce`](https://github.com/siderolabs/pkgs/commit/7e49fce) feat: update tools and toolchain </p> </details> ##### Changes from siderolabs/tools <details><summary>1 commit</summary> <p> - [siderolabs/tools@`31fd099`](https://github.com/siderolabs/tools/commit/31fd099) feat: update Go to 1.24.5 </p> </details> ##### Dependency Changes - **github.com/siderolabs/gen** v0.8.4 -> v0.8.5 - **github.com/siderolabs/go-blockdevice/v2** v2.0.16 -> v2.0.19 - **github.com/siderolabs/pkgs** v1.10.0-24-g28fa97d -> v1.10.0-29-g2e6dd0a - **github.com/siderolabs/talos/pkg/machinery** v1.10.5 -> v1.10.6 - **github.com/siderolabs/tools** v1.10.0-4-g9d54ed4 -> v1.10.0-5-g31fd099 - **golang.org/x/sync** v0.15.0 -> v0.16.0 - **golang.org/x/sys** v0.33.0 -> v0.34.0 - **golang.org/x/text** v0.26.0 -> v0.27.0 Previous release can be found at [v1.10.5](https://github.com/siderolabs/talos/releases/tag/v1.10.5) ##### Images ``` ghcr.io/siderolabs/flannel:v0.26.7 registry.k8s.io/coredns/coredns:v1.12.1 gcr.io/etcd-development/etcd:v3.5.21 registry.k8s.io/kube-apiserver:v1.33.3 registry.k8s.io/kube-controller-manager:v1.33.3 registry.k8s.io/kube-scheduler:v1.33.3 registry.k8s.io/kube-proxy:v1.33.3 ghcr.io/siderolabs/kubelet:v1.33.3 ghcr.io/siderolabs/installer:v1.10.6 registry.k8s.io/pause:3.10 ``` ### [`v1.10.5`](https://github.com/siderolabs/talos/releases/tag/v1.10.5) [Compare Source](https://github.com/siderolabs/talos/compare/v1.10.4...v1.10.5) ##### [Talos 1.10.5](https://github.com/siderolabs/talos/releases/tag/v1.10.5) (2025-07-03) Welcome to the v1.10.5 release of Talos! Please try out the release binaries and report any issues at <https://github.com/siderolabs/talos/issues>. ##### Azure Talos on Azure now defaults to MTU of 1400 bytes for the `eth0` interface to avoid packet fragmentation issues. The default MTU can be overriden with machine configuration. ##### Component Updates Linux: 6.12.35 Kubernetes: 1.33.2 Talos is built with Go 1.24.4. ##### Contributors - Andrey Smirnov - Noel Georgi ##### Changes <details><summary>9 commits</summary> <p> - [@&#8203;`55fc623`](https://github.com/siderolabs/talos/commit/55fc62331) release(v1.10.5): prepare release - [@&#8203;`b84e150`](https://github.com/siderolabs/talos/commit/b84e15037) feat: update Kubernetes default to 1.33.2 - [@&#8203;`2017ec2`](https://github.com/siderolabs/talos/commit/2017ec228) fix: add limited retries for not found images - [@&#8203;`b3e510a`](https://github.com/siderolabs/talos/commit/b3e510ac5) chore: improve cloud image uploader resilience - [@&#8203;`4a40cdd`](https://github.com/siderolabs/talos/commit/4a40cddbb) fix: hold user volume mount point across kubelet restarts - [@&#8203;`9e1f347`](https://github.com/siderolabs/talos/commit/9e1f347f5) fix: etcd recover with multiple advertised addresses - [@&#8203;`f85ff5f`](https://github.com/siderolabs/talos/commit/f85ff5fa8) feat: update Linux to 6.12.35 - [@&#8203;`87ed1b5`](https://github.com/siderolabs/talos/commit/87ed1b589) fix: treat context canceled as expected error on image pull - [@&#8203;`9a0644a`](https://github.com/siderolabs/talos/commit/9a0644a64) fix: set default MTU on Azure to 1400 </p> </details> ##### Changes from siderolabs/pkgs <details><summary>2 commits</summary> <p> - [siderolabs/pkgs@`28fa97d`](https://github.com/siderolabs/pkgs/commit/28fa97d) fix: iptables url - [siderolabs/pkgs@`6109fe6`](https://github.com/siderolabs/pkgs/commit/6109fe6) feat: update dependencies </p> </details> ##### Dependency Changes - **github.com/siderolabs/pkgs** v1.10.0-22-g51e388c -> v1.10.0-24-g28fa97d - **github.com/siderolabs/talos/pkg/machinery** v1.10.4 -> v1.10.5 - **k8s.io/api** v0.33.1 -> v0.33.2 - **k8s.io/apiserver** v0.33.1 -> v0.33.2 - **k8s.io/client-go** v0.33.1 -> v0.33.2 - **k8s.io/component-base** v0.33.1 -> v0.33.2 - **k8s.io/kube-scheduler** v0.33.1 -> v0.33.2 - **k8s.io/kubectl** v0.33.1 -> v0.33.2 - **k8s.io/kubelet** v0.33.1 -> v0.33.2 - **k8s.io/pod-security-admission** v0.33.1 -> v0.33.2 Previous release can be found at [v1.10.4](https://github.com/siderolabs/talos/releases/tag/v1.10.4) ##### Images ``` ghcr.io/siderolabs/flannel:v0.26.7 registry.k8s.io/coredns/coredns:v1.12.1 gcr.io/etcd-development/etcd:v3.5.21 registry.k8s.io/kube-apiserver:v1.33.2 registry.k8s.io/kube-controller-manager:v1.33.2 registry.k8s.io/kube-scheduler:v1.33.2 registry.k8s.io/kube-proxy:v1.33.2 ghcr.io/siderolabs/kubelet:v1.33.2 ghcr.io/siderolabs/installer:v1.10.5 registry.k8s.io/pause:3.10 ``` </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45OS4xIiwidXBkYXRlZEluVmVyIjoiNDEuMTE2LjUiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImltYWdlIl19--> Reviewed-on: #1409 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-18 03:43:19 +00:00
Alex Lebens	fa1ed41bce	change device	2025-09-17 18:39:04 -05:00
Renovate Bot	6479262f0e	Update Helm release app-template to v4.3.0 (#1465) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [app-template](https://github.com/bjw-s-labs/helm-charts) | minor | `4.2.0` -> `4.3.0` | --- ### Release Notes <details> <summary>bjw-s-labs/helm-charts (app-template)</summary> ### [`v4.3.0`](https://github.com/bjw-s-labs/helm-charts/releases/tag/app-template-4.3.0) [Compare Source](https://github.com/bjw-s-labs/helm-charts/compare/app-template-4.2.0...app-template-4.3.0) ##### Changelog: ##### Changed - Upgraded the common library to v4.3.0 - [Upgrade notes](https://bjw-s-labs.github.io/helm-charts/docs/app-template/upgrade-instructions/) - [Detailed release notes](https://github.com/bjw-s-labs/helm-charts/releases/tag/common-4.3.0) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45OS4xIiwidXBkYXRlZEluVmVyIjoiNDEuOTkuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiY2hhcnQiXX0=--> Reviewed-on: #1465 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-17 21:47:25 +00:00
Renovate Bot	2676ffbf6f	Update d3fk/s3cmd:latest Docker digest to 1bfc474 (#1476)	2025-09-17 03:02:19 +00:00
Renovate Bot	8ed585e4e0	Update Helm release reloader to v2.2.3 (#1467)	2025-09-16 13:03:08 +00:00
Alex Lebens	3394891245	update chart	2025-09-14 10:58:04 -05:00
Renovate Bot	190412ac59	Update Helm release generic-device-plugin to v0.6.0 (#1432) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [generic-device-plugin](https://github.com/bjw-s/helm-charts) ([source](https://github.com/bjw-s/helm-charts/tree/HEAD/charts/library/common)) | minor | `0.4.0` -> `0.6.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45OS4xIiwidXBkYXRlZEluVmVyIjoiNDEuOTkuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiY2hhcnQiXX0=--> Reviewed-on: #1432 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-14 15:52:05 +00:00
Alex Lebens	9427385c98	downgrade	2025-09-14 10:51:40 -05:00
Renovate Bot	233383763d	Update ghcr.io/squat/generic-device-plugin:latest Docker digest to df82458 (#1457)	2025-09-14 14:02:02 +00:00
Renovate Bot	94beeb012b	Update ghcr.io/squat/generic-device-plugin:latest Docker digest to f76ee32 (#1456)	2025-09-14 13:02:00 +00:00
Renovate Bot	2c3dbf7513	Update ghcr.io/squat/generic-device-plugin:latest Docker digest to df14626 (#1453)	2025-09-14 02:01:49 +00:00
Renovate Bot	ee78d181f6	Update Helm release intel-device-plugins-gpu to v0.34.0 (#1449) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [intel-device-plugins-gpu](https://github.com/intel/helm-charts) | minor | `0.32.1` -> `0.34.0` | --- ### Release Notes <details> <summary>intel/helm-charts (intel-device-plugins-gpu)</summary> ### [`v0.34.0`](https://github.com/intel/helm-charts/releases/tag/intel-device-plugins-gpu-0.34.0) [Compare Source](https://github.com/intel/helm-charts/compare/intel-device-plugins-gpu-0.32.1...intel-device-plugins-gpu-0.34.0) A Helm chart for Intel GPU Device Plugin </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45OS4xIiwidXBkYXRlZEluVmVyIjoiNDEuOTkuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiY2hhcnQiXX0=--> Reviewed-on: #1449 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-13 17:11:12 +00:00
Renovate Bot	d7da125827	Update Helm release external-dns to v1.19.0 (#1406) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [external-dns](https://github.com/kubernetes-sigs/external-dns) | minor | `1.18.0` -> `1.19.0` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45OS4xIiwidXBkYXRlZEluVmVyIjoiNDEuOTkuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiY2hhcnQiXX0=--> Reviewed-on: #1406 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-13 17:10:43 +00:00
Renovate Bot	9eff9365c4	Update Helm release intel-device-plugins-operator to v0.34.0 (#1450) ... This PR contains the following updates: | Package | Update | Change | |---|---|---| | [intel-device-plugins-operator](https://github.com/intel/helm-charts) | minor | `0.32.1` -> `0.34.0` | --- ### Release Notes <details> <summary>intel/helm-charts (intel-device-plugins-operator)</summary> ### [`v0.34.0`](https://github.com/intel/helm-charts/releases/tag/intel-device-plugins-gpu-0.34.0) [Compare Source](https://github.com/intel/helm-charts/compare/intel-device-plugins-operator-0.32.1...intel-device-plugins-operator-0.34.0) A Helm chart for Intel GPU Device Plugin </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45OS4xIiwidXBkYXRlZEluVmVyIjoiNDEuOTkuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiY2hhcnQiXX0=--> Reviewed-on: #1450 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-13 17:10:10 +00:00