infrastructure

Author	SHA1	Message	Date
Renovate Bot	3584c4a2f7	Update ghcr.io/moghtech/komodo-core Docker tag to v1.19.2 All checks were successful lint-test-helm / helm-lint (pull_request) Successful in 14s Details	2025-09-03 18:37:06 +00:00
Renovate Bot	8b4f142676	Update Helm release element-web to v1.4.18 (#1378 ) All checks were successful lint-test-helm / helm-lint (push) Successful in 14s Details renovate / renovate (push) Successful in 1m0s Details	2025-09-03 18:35:32 +00:00
Renovate Bot	1c7a34bcf5	Update outlinewiki/outline Docker tag to v0.87.3 (#1359 ) Some checks failed lint-test-helm / helm-lint (push) Successful in 34s Details renovate / renovate (push) Has been cancelled Details This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [outlinewiki/outline](https://github.com/outline/outline) \| minor \| `0.86.1` -> `0.87.3` \| --- ### Release Notes <details> <summary>outline/outline (outlinewiki/outline)</summary> ### [`v0.87.3`](https://github.com/outline/outline/releases/tag/v0.87.3) [Compare Source](https://github.com/outline/outline/compare/v0.87.2...v0.87.3) #### What's Changed ##### Improvements - It is now possible to give group users "Manage" permissions so they can add and remove other users from a group. ##### Fixes - OIDC flow broken when using an authentication provider on a private network in `v0.87.0` - Importing nested lists from HTML now works correctly ### [`v0.87.2`](https://github.com/outline/outline/compare/v0.87.1...v0.87.2) [Compare Source](https://github.com/outline/outline/compare/v0.87.1...v0.87.2) ### [`v0.87.1`](https://github.com/outline/outline/compare/v0.87.0...v0.87.1) [Compare Source](https://github.com/outline/outline/compare/v0.87.0...v0.87.1) ### [`v0.87.0`](https://github.com/outline/outline/releases/tag/v0.87.0) [Compare Source](https://github.com/outline/outline/compare/v0.86.1...v0.87.0) > \[!WARNING] > Skip this version, use v0.87.3 due to a breaking issue causing failing CSP in some browsers. > \[!NOTE] > This version includes multiple proactive security fixes for issues discovered during a routine security audit. Please see associated advisories: > > - https://github.com/outline/outline/security/advisories/GHSA-fp2g-2283-rwvj > - https://github.com/outline/outline/security/advisories/GHSA-jfhx-7phw-9gq3 > - https://github.com/outline/outline/security/advisories/GHSA-gcj7-c9jv-fhgf #### What's Changed ##### Improvements - Add notifications for reactions in https://github.com/outline/outline/pull/9893 - It is now possible to split an existing code block by typing triple backticks in https://github.com/outline/outline/pull/9959 - Implement right-click context menu in https://github.com/outline/outline/pull/9883 (Available on document lists now, elsewhere soon) - Added `relationships` API endpoints in https://github.com/outline/outline/pull/9402 - Improved error boundary with option to clear cache on repeated errors… in https://github.com/outline/outline/pull/9891 - Added support for encrypted environment variables with [dotenvx](https://dotenvx.com) in https://github.com/outline/outline/pull/9921 ##### Fixes ##### Editor - fix: Line-height too compact on editor headings in https://github.com/outline/outline/pull/9942 - fix: Scroll-to-anchor reliability in https://github.com/outline/outline/pull/9945 - fix: "Table of contents" shortcut on macOS in https://github.com/outline/outline/pull/10002 - fix: Issue with draft comment being lost when navigating directly between documents in https://github.com/outline/outline/pull/9997 - Use Sorting of mentions in a table now act correctly in https://github.com/outline/outline/pull/10011 - fix: Image caption parsed as separate paragraph on copy/paste in https://github.com/outline/outline/pull/10020 - fix: Image pasted twice in copy/paste https://github.com/outline/outline/pull/9938 ##### Other - fix: Tighten rate limits on `email.callback` endpoint in https://github.com/outline/outline/pull/9917 - fix: Use `safeEqual` in `VerificationCode` verify method in https://github.com/outline/outline/pull/9915 - fix: Allow user account lookup with mismatching email capitalization in https://github.com/outline/outline/pull/9929 - fix: Remove `attachments.redirect` sw caching in https://github.com/outline/outline/pull/9927 - fix: Remove `mime-types` usage from the browser in https://github.com/outline/outline/pull/9926 - fix: Upgrade `request-filtering-agent` in https://github.com/outline/outline/pull/9937 - fix: Increase timeout on remote file storage operations in https://github.com/outline/outline/pull/9936 - fix: Properly truncate multiline labels in sidebar in https://github.com/outline/outline/pull/9940 - fix: Drafts without a collection should be publishable by all members with update rights in https://github.com/outline/outline/pull/9941 - fix: Standardize request filtering between cloud / self-hosted in https://github.com/outline/outline/pull/9914 - chore: Removed usage of `vite-static-copy` plugin in https://github.com/outline/outline/pull/9916 - fix: Document move/copy/publish dialog now behaves better in https://github.com/outline/outline/pull/9947 - fix: Usage of `ctx.attachment` overrides explicit `Content-Type` in https://github.com/outline/outline/pull/9949 - chore: More CSP hardening in https://github.com/outline/outline/pull/9951 - fix: Frontend requests do not always send `Content-Type` header in request in https://github.com/outline/outline/pull/9954 - Display correct child document structure & auto open shared document section in https://github.com/outline/outline/pull/9854 - fix: Unable to use `DATABASE_HOST` env in https://github.com/outline/outline/pull/9977 - Include collection attachments in json export in https://github.com/outline/outline/pull/10010 - Skip Notion linked database views in https://github.com/outline/outline/pull/10018 - Map export endpoint to read permissions in https://github.com/outline/outline/pull/10019 - fix documents.import permission checks for shared parent in https://github.com/outline/outline/pull/9996 - fix: Show API key creator name in settings page in https://github.com/outline/outline/pull/10041 - fix: Update unique db constraint to account for revoked share links in https://github.com/outline/outline/pull/10022 - Add CSRF middleware in https://github.com/outline/outline/pull/10051 #### New Contributors - [@volodymyrkoval](https://github.com/volodymyrkoval) made their first contribution in https://github.com/outline/outline/pull/9935 - [@esafev](https://github.com/esafev) made their first contribution in https://github.com/outline/outline/pull/10031 Full Changelog: https://github.com/outline/outline/compare/v0.86.1...v0.87.0 </details> --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zNS4wIiwidXBkYXRlZEluVmVyIjoiNDEuMzUuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiaW1hZ2UiXX0=--> Reviewed-on: #1359 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-03 18:33:46 +00:00
Renovate Bot	97a59df88a	Update ghcr.io/haveagitgat/tdarr_node Docker tag to v2.46.01 (#1352 ) Some checks failed lint-test-helm / helm-lint (push) Successful in 10s Details renovate / renovate (push) Has been cancelled Details This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [ghcr.io/haveagitgat/tdarr_node](https://github.com/linuxserver/docker-baseimage-ubuntu/packages) ([source](https://github.com/linuxserver/docker-baseimage-ubuntu)) \| minor \| `2.45.01` -> `2.46.01` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjMiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjMiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImltYWdlIl19--> Reviewed-on: #1352 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-03 18:33:01 +00:00
Renovate Bot	8e953429bf	Update ghcr.io/haveagitgat/tdarr Docker tag to v2.46.01 (#1351 ) Some checks failed lint-test-helm / helm-lint (push) Has been cancelled Details renovate / renovate (push) Has been cancelled Details This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [ghcr.io/haveagitgat/tdarr](https://github.com/linuxserver/docker-baseimage-ubuntu/packages) ([source](https://github.com/linuxserver/docker-baseimage-ubuntu)) \| minor \| `2.45.01` -> `2.46.01` \| --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xLjMiLCJ1cGRhdGVkSW5WZXIiOiI0MS4xLjMiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImltYWdlIl19--> Reviewed-on: #1351 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-03 18:32:51 +00:00
Renovate Bot	83ecc058f9	Update mirror.gcr.io/aquasec/trivy Docker tag to v0.66.0 (#1367 ) Some checks failed lint-test-helm / helm-lint (push) Has been cancelled Details renovate / renovate (push) Has been cancelled Details This PR contains the following updates: \| Package \| Update \| Change \| \|---\|---\|---\| \| [mirror.gcr.io/aquasec/trivy](https://www.aquasec.com/products/trivy/) ([source](https://github.com/aquasecurity/trivy)) \| minor \| `0.65.0` -> `0.66.0` \| --- ### Release Notes <details> <summary>aquasecurity/trivy (mirror.gcr.io/aquasec/trivy)</summary> ### [`v0.66.0`](https://github.com/aquasecurity/trivy/blob/HEAD/CHANGELOG.md#0660-2025-09-02) [Compare Source](https://github.com/aquasecurity/trivy/compare/v0.65.0...v0.66.0) ##### Features - add timeout handling for cache database operations ([#9307](https://github.com/aquasecurity/trivy/issues/9307)) ([235c24e](`235c24e71a`)) - misconf: added audit config attribute ([#9249](https://github.com/aquasecurity/trivy/issues/9249)) ([4d4a244](`4d4a2444b6`)) - secret: implement streaming secret scanner with byte offset tracking ([#9264](https://github.com/aquasecurity/trivy/issues/9264)) ([5a5e097](`5a5e0972c7`)) - terraform: use .terraform cache for remote modules in plan scanning ([#9277](https://github.com/aquasecurity/trivy/issues/9277)) ([298a994](`298a9941f0`)) ##### Bug Fixes - conda: memory leak by adding closure method for `package.json` file ([#9349](https://github.com/aquasecurity/trivy/issues/9349)) ([03d039f](`03d039f17d`)) - create temp file under composite fs dir ([#9387](https://github.com/aquasecurity/trivy/issues/9387)) ([ce22f54](`ce22f54a39`)) - cyclonedx: handle multiple license types ([#9378](https://github.com/aquasecurity/trivy/issues/9378)) ([46ab76a](`46ab76a5af`)) - fs: avoid shadowing errors in file.glob ([#9286](https://github.com/aquasecurity/trivy/issues/9286)) ([b51c789](`b51c789330`)) - image: use standardized HTTP client for ECR authentication ([#9322](https://github.com/aquasecurity/trivy/issues/9322)) ([84fbf86](`84fbf8674d`)) - misconf: ensure ignore rules respect subdirectory chart paths ([#9324](https://github.com/aquasecurity/trivy/issues/9324)) ([d3cd101](`d3cd101266`)) - misconf: ensure module source is known ([#9404](https://github.com/aquasecurity/trivy/issues/9404)) ([81d9425](`81d94253c8`)) - misconf: preserve original paths of remote submodules from .terraform ([#9294](https://github.com/aquasecurity/trivy/issues/9294)) ([1319d8d](`1319d8dc7f`)) - misconf: use correct field log\_bucket instead of target\_bucket in gcp bucket ([#9296](https://github.com/aquasecurity/trivy/issues/9296)) ([04ad0c4](`04ad0c4fc2`)) - persistent flag option typo ([#9374](https://github.com/aquasecurity/trivy/issues/9374)) ([6e99dd3](`6e99dd304c`)) - plugin: don't remove plugins when updating index.yaml file ([#9358](https://github.com/aquasecurity/trivy/issues/9358)) ([5f067ac](`5f067ac15e`)) - python: impove package name normalization ([#9290](https://github.com/aquasecurity/trivy/issues/9290)) ([1473e88](`1473e88b74`)) - repo: preserve RepoMetadata on FS cache hit ([#9389](https://github.com/aquasecurity/trivy/issues/9389)) ([4f2a44e](`4f2a44ea45`)) - repo: sanitize git repo URL before inserting into report metadata ([#9391](https://github.com/aquasecurity/trivy/issues/9391)) ([1ac9b1f](`1ac9b1f07c`)) - sbom: add support for `file` component type of `CycloneDX` ([#9372](https://github.com/aquasecurity/trivy/issues/9372)) ([aa7cf43](`aa7cf4387c`)) - suppress debug log for context cancellation errors ([#9298](https://github.com/aquasecurity/trivy/issues/9298)) ([2458d5e](`2458d5e28a`)) </details> --- ### Configuration 📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 Ignore: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4zNS4xIiwidXBkYXRlZEluVmVyIjoiNDEuMzUuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiaW1hZ2UiXX0=--> Reviewed-on: #1367 Co-authored-by: Renovate Bot <renovate-bot@alexlebens.net> Co-committed-by: Renovate Bot <renovate-bot@alexlebens.net>	2025-09-03 18:32:46 +00:00

4 changed files with 5 additions and 5 deletions

									
										2

clusters/cl01tl/applications/element-web/Chart.yaml
									
												View File
												
				@@ -17,7 +17,7 @@ maintainers:

				  - name: alexlebens

				dependencies:

				  - name: element-web

				    version: 1.4.17

				    version: 1.4.18

				    repository: https://ananace.gitlab.io/charts

				  - name: cloudflared

				    alias: cloudflared

									
										2

clusters/cl01tl/applications/outline/values.yaml
									
												View File
												
				@@ -9,7 +9,7 @@ outline:

				        main:

				          image:

				            repository: outlinewiki/outline

				            tag: 0.86.1

				            tag: 0.87.3

				            pullPolicy: IfNotPresent

				          env:

				            - name: NODE_ENV

									
										4

clusters/cl01tl/applications/tdarr/values.yaml
									
												View File
												
				@@ -9,7 +9,7 @@ tdarr:

				        main:

				          image:

				            repository: ghcr.io/haveagitgat/tdarr

				            tag: 2.45.01

				            tag: 2.46.01

				            pullPolicy: IfNotPresent

				          env:

				            - name: TZ

				@@ -48,7 +48,7 @@ tdarr:

				        main:

				          image:

				            repository: ghcr.io/haveagitgat/tdarr_node

				            tag: 2.45.01

				            tag: 2.46.01

				            pullPolicy: IfNotPresent

				          env:

				            - name: TZ

									
										2

clusters/cl01tl/monitoring/trivy/values.yaml
									
												View File
												
				@@ -16,7 +16,7 @@ trivy-operator:

				    image:

				      registry: mirror.gcr.io

				      repository: aquasec/trivy

				      tag: 0.65.0

				      tag: 0.66.0

				    storageClassEnabled: true

				    storageClassName: ceph-block

				    storageSize: "5Gi"

Compare commits

6 Commits

a1671d27c4 ... 3584c4a2f7

2

clusters/cl01tl/applications/element-web/Chart.yaml

View File

2

clusters/cl01tl/applications/outline/values.yaml

View File

4

clusters/cl01tl/applications/tdarr/values.yaml

View File

2

clusters/cl01tl/monitoring/trivy/values.yaml

View File

Compare commits

6 Commits a1671d27c4 ... 3584c4a2f7

2 clusters/cl01tl/applications/element-web/Chart.yaml Unescape Escape View File

2 clusters/cl01tl/applications/outline/values.yaml Unescape Escape View File

4 clusters/cl01tl/applications/tdarr/values.yaml Unescape Escape View File

2 clusters/cl01tl/monitoring/trivy/values.yaml Unescape Escape View File

6 Commits

a1671d27c4 ... 3584c4a2f7

2

clusters/cl01tl/applications/element-web/Chart.yaml

View File

2

clusters/cl01tl/applications/outline/values.yaml

View File

4

clusters/cl01tl/applications/tdarr/values.yaml

View File

2

clusters/cl01tl/monitoring/trivy/values.yaml

View File