chore(deps): update harbor.alexlebens.net/images/site-profile docker tag to v3.5.0

.gitea/workflows/render-manifests-automerge.yaml

@@ -46,16 +46,6 @@ jobs:
           method: kubeconfig
           kubeconfig: ${{ secrets.KUBECONFIG }}
 
-      - name: Cache Helm Dependencies
-        uses: actions/cache@v5
-        with:
-          path: |
-            ~/.cache/helm
-            ~/.config/helm
-          key: helm-cache-${{ runner.os }}-${{ hashFiles('infrastructure/clusters/cl01tl/helm/**/Chart.yaml', 'infrastructure/clusters/cl01tl/helm/**/Chart.lock') }}
-          restore-keys: |
-            helm-cache-${{ runner.os }}-
-
       - name: Prepare Manifest Branch
         id: prepare-manifest-branch
         run: |
@@ -63,12 +53,10 @@ jobs:
 
           BRANCH_NAME="${BRANCH_NAME_BASE}-$(date +%Y%m%d%H%M%S)"
 
-          echo ""
           echo ">> Configure git to use gitea-bot as user ..."
           git config user.name "gitea-bot"
           git config user.email "gitea-bot@alexlebens.net"
 
-          echo ""
           echo ">> Creating branch ..."
           git checkout -b $BRANCH_NAME
 
@@ -79,31 +67,38 @@ jobs:
       - name: Check which Directories have Changes
         id: check-dir-changes
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
+
+          RENDER_DIR=()
 
-          echo ""
           echo ">> Checking for changes from HEAD^..HEAD ..."
+          GIT_DIFF=$(git diff --name-only HEAD^..HEAD | xargs -I {} dirname {} | sort -u | grep -E "clusters/[^/]+/helm/[^/]+")
 
-          # Extract the chart names from the git diff
+          if [ -n "${GIT_DIFF}" ]; then
-          RENDER_DIR=$(git diff --name-only HEAD^..HEAD | grep -E "^clusters/${CLUSTER}/helm/" | awk -F '/' '{print $4}' | sort -u || true)
+            echo ">> Changes detected:"
+            echo "$GIT_DIFF"
+            for path in $GIT_DIFF; do
+              RENDER_DIR+=$(echo "$path" | awk -F '/' '{print $4}')
+              RENDER_DIR+=$(echo " ")
+            done
+
+          else
+            echo ">> No changes detected"
+
+          fi
 
           if [ -n "${RENDER_DIR}" ]; then
-            echo ""
             echo ">> Directories to Render:"
-            echo "${RENDER_DIR}"
+            echo "$(echo "${RENDER_DIR}" | sort -u)"
 
             echo "----"
 
-            echo "changes-detected=true" >> "$GITEA_OUTPUT"
+            echo "changes-detected=true" >> $GITEA_OUTPUT
-            echo "render-dir<<EOF" >> "$GITEA_OUTPUT"
+            echo "render-dir<<EOF" >> $GITEA_OUTPUT
-            echo "${RENDER_DIR}" >> "$GITEA_OUTPUT"
+            echo "$(echo "${RENDER_DIR}" | sort -u)" >> $GITEA_OUTPUT
-            echo "EOF" >> "$GITEA_OUTPUT"
+            echo "EOF" >> $GITEA_OUTPUT
-
           else
-            echo ""
+            echo "changes-detected=false" >> $GITEA_OUTPUT
-            echo ">> No chart changes detected"
-            echo "changes-detected=false" >> "$GITEA_OUTPUT"
-
           fi
 
       - name: Add Repositories
@@ -111,31 +106,25 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Adding repositories for chart dependencies ..."
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            helm dependency list --max-col-width 120 "${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}" 2> /dev/null \
+            helm dependency list --max-col-width 120 ${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir 2> /dev/null \
-              | tail -n +2 \
+              | tail +2 | head -n -1 \
-              | awk 'NF > 0 { print $1, $3 }' \
+              | awk '{ print "helm repo add " $1 " " $3 }' \
-              | while read -r REPO_NAME REPO_URL; do
+              | while read cmd; do
-                if [[ "${REPO_URL}" == oci://* ]]; then
+                if [[ "$cmd" == "*oci://*" ]]; then
-                  echo ""
+                  echo ">> Ignoring OCI repo"
-                  echo ">> Ignoring OCI repo: ${REPO_URL}"
+                else
-
+                  echo "$cmd" | sh;
-                elif [[ -n "${REPO_NAME}" && -n "${REPO_URL}" ]]; then
-                  helm repo add "${REPO_NAME}" "${REPO_URL}"
-
                 fi
               done || true
           done
 
-          if helm repo list > /dev/null 2>&1; then
+          if helm repo list | tail +2 | read -r; then
-            echo ""
             echo ">> Update repository cache ..."
             helm repo update
-
           fi
 
           echo "----"
@@ -145,16 +134,15 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Remove manfiest files and rebuild from source ..."
 
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            CHART_PATH=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${DIR}
+            chart_path=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$dir
 
-            echo "${CHART_PATH}"
+            echo "$chart_path"
-            rm -rf ${CHART_PATH}/*
+            rm -rf $chart_path/*
           done
 
           echo "----"
@@ -167,57 +155,60 @@ jobs:
         run: |
           cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Rendering Manifests ..."
 
-          render_chart() {
+          for dir in ${RENDER_DIR}; do
-            local DIR="$1"
+            chart_path=${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir
-            local CHART_PATH="${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}"
+            chart_name=$(basename "$chart_path")
-            local CHART_NAME=$(basename "${CHART_PATH}")
 
             echo ""
-            echo ">> Rendering ..."
+            echo ""
-            echo ">> Chart: ${CHART_NAME}"
+            echo ">> Rendering chart: $chart_name"
-            echo ">> Path: ${CHART_PATH}"
+            echo ">> Chart path $chart_path"
 
-            if [ -f "${CHART_PATH}/Chart.yaml" ]; then
+            if [ -f "$chart_path/Chart.yaml" ]; then
-              local OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${CHART_NAME}/"
+              OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name/"
+              TEMPLATE=""
 
-              mkdir -p "${OUTPUT_FOLDER}"
+              mkdir -p ${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name
-              cd "${CHART_PATH}"
+
+              cd $chart_path
 
               echo ""
-              echo ">> Updating helm dependencies ..."
+              echo ">> Updating helm dependency ..."
-              helm dependency update --skip-refresh > /dev/null
+              helm dependency update --skip-refresh
 
               echo ""
-              echo ">> Linting helm chart ..."
+              echo ">> Building helm dependency ..."
-              helm lint --namespace "${CHART_NAME}" --quiet
+              helm dependency build --skip-refresh
 
-              local NAMESPACE="${CHART_NAME}"
+              echo ""
-              case "${CHART_NAME}" in
+              echo ">> Linting helm ..."
+              helm lint --namespace "$chart_name"
+
+              echo ""
+              echo ">> Rendering templates ..."
+              case "$chart_name" in
                 "stack")
-                  NAMESPACE="argocd"
                   echo ""
-                  echo ">> Special Rendering into 'argocd' namespace ..."
+                  echo ">> Special Rendering for stack into argocd namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace argocd --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
-                "cilium" | "coredns" | "metrics-server" | "prometheus-operator-crds")
+                "cilium" | "coredns" | "metrics-server" |"prometheus-operator-crds")
-                  NAMESPACE="kube-system"
                   echo ""
-                  echo ">> Special Rendering for ${CHART_NAME} into 'kube-system' namespace ..."
+                  echo ">> Special Rendering for $chart_name into kube-system namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace kube-system --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
                 *)
                   echo ""
-                  echo ">> Standard Rendering for ${CHART_NAME} ..."
+                  echo ">> Standard Rendering for $chart_name ..."
+                  TEMPLATE=$(helm template "$chart_name" ./ --namespace "$chart_name" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
+                  ;;
               esac
 
               echo ""
               echo ">> Formating rendered template ..."
-              local TEMPLATE
+              echo "$TEMPLATE" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"$OUTPUT_FOLDER"'" + .kind + "-" + .metadata.name + ".yaml"'
-              TEMPLATE=$(helm template "${CHART_NAME}" ./ --namespace "${NAMESPACE}" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
-
-              # Format and split rendered template
-              echo "${TEMPLATE}" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"${OUTPUT_FOLDER}"'" + .kind + "-" + .metadata.name + ".yaml"'
 
               # Strip comments again to ensure formatting correctness
               for file in "$OUTPUT_FOLDER"/*; do
@@ -225,23 +216,15 @@ jobs:
               done
 
               echo ""
-              echo ">> Manifests for ${CHART_NAME} rendered to ${OUTPUT_FOLDER}:"
+              echo ">> Manifests for $chart_name rendered to $OUTPUT_FOLDER"
               ls $OUTPUT_FOLDER
               echo ""
             else
               echo ""
-              echo ">> Directory ${CHART_PATH} does not contain a Chart.yaml. Skipping ..."
+              echo ">> Directory $chart_path does not contain a Chart.yaml. Skipping ..."
               echo ""
             fi
-          }
+          done
-
-          export -f render_chart
-          export MAIN_DIR CLUSTER MANIFEST_DIR
-
-          # Run rendering in parallel
-          for DIR in ${RENDER_DIR}; do
-            echo "${DIR}"
-          done | xargs -n 1 -P 4 -I {} bash -c 'render_chart "$@"' _ {}
 
           echo "----"
 
@@ -249,18 +232,16 @@ jobs:
         id: check-changes
         if: steps.check-dir-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
           GIT_CHANGES=$(git status --porcelain)
 
-          if [ -n "${GIT_CHANGES}" ]; then
+          if [ -n "$GIT_CHANGES" ]; then
-            echo ""
             echo ">> Changes detected"
             git status --porcelain
             echo "changes-detected=true" >> $GITEA_OUTPUT
 
           else
-            echo ""
             echo ">> No changes detected, skipping PR creation"
 
           fi
@@ -273,22 +254,19 @@ jobs:
         env:
           BRANCH_NAME: ${{ steps.prepare-manifest-branch.outputs.BRANCH_NAME }}
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Commiting changes to ${BRANCH_NAME} ..."
           git add .
           git commit -m "chore: Update manifests after automerge"
 
           REPO_URL="${{ secrets.REPO_URL }}/${{ gitea.repository }}"
-          echo ""
+          echo ">> Pushing changes to $REPO_URL ..."
-          echo ">> Pushing changes to ${REPO_URL} ..."
+          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@$(echo $REPO_URL | sed -e 's|https://||')" ${BRANCH_NAME}
-
-          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@${REPO_URL#*://}" "${BRANCH_NAME}"
 
           echo "----"
 
-          echo "push=true" >> "$GITEA_OUTPUT"
+          echo "push=true" >> $GITEA_OUTPUT
 
       - name: Create Pull Request
         id: create-pull-request

.gitea/workflows/render-manifests-dispatch.yaml

@@ -2,7 +2,7 @@ name: render-manifests-dispatch
 
 on:
   schedule:
-    - cron: '0 15 * * *'
+    - cron: '0 3 * * *'
 
   workflow_dispatch:
 
@@ -43,39 +43,24 @@ jobs:
           method: kubeconfig
           kubeconfig: ${{ secrets.KUBECONFIG }}
 
-      - name: Cache Helm Dependencies
-        uses: actions/cache@v5
-        with:
-          path: |
-            ~/.cache/helm
-            ~/.config/helm
-          key: helm-cache-${{ runner.os }}-${{ hashFiles('infrastructure/clusters/cl01tl/helm/**/Chart.yaml', 'infrastructure/clusters/cl01tl/helm/**/Chart.lock') }}
-          restore-keys: |
-            helm-cache-${{ runner.os }}-
-
       - name: Prepare Manifest Branch
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Configure git to use gitea-bot as user ..."
           git config user.name "gitea-bot"
           git config user.email "gitea-bot@alexlebens.net"
 
-          echo ""
           echo ">> Checking if PR branch exists ..."
-          if git ls-remote --exit-code --heads origin "${BRANCH_NAME}" > /dev/null 2>&1; then
+          if [[ $(git ls-remote --heads origin "${BRANCH_NAME}" | wc -l) -gt 0 ]]; then
-            echo ""
             echo ">> Branch '${BRANCH_NAME}' exists, pulling changes ..."
             git fetch origin "${BRANCH_NAME}"
             git checkout "${BRANCH_NAME}"
             git pull --rebase
 
           else
-            echo ""
             echo ">> Branch '${BRANCH_NAME}' does not exist, creating ..."
-            git checkout -b "${BRANCH_NAME}"
+            git checkout -b $BRANCH_NAME
-
           fi
 
           echo "----"
@@ -83,29 +68,25 @@ jobs:
       - name: Check which Directories have Changes
         id: check-dir-changes
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
+
+          RENDER_DIR=()
 
-          echo ""
           echo ">> Triggered on dispatch, will check all paths ..."
-
+          RENDER_DIR+=$(ls clusters/cl01tl/helm/)
-          # Extract names of charts
-          RENDER_DIR=$(find "clusters/${CLUSTER}/helm" -mindepth 1 -maxdepth 1 -type d -exec basename {} \; | sort -u)
 
           if [ -n "${RENDER_DIR}" ]; then
-            echo ""
             echo ">> Directories to Render:"
-            echo "${RENDER_DIR}"
+            echo "$(echo "${RENDER_DIR}" | sort -u)"
+
             echo "----"
 
-            echo "changes-detected=true" >> "$GITEA_OUTPUT"
+            echo "changes-detected=true" >> $GITEA_OUTPUT
-            echo "render-dir<<EOF" >> "$GITEA_OUTPUT"
+            echo "render-dir<<EOF" >> $GITEA_OUTPUT
-            echo "${RENDER_DIR}" >> "$GITEA_OUTPUT"
+            echo "$(echo "${RENDER_DIR}" | sort -u)" >> $GITEA_OUTPUT
-            echo "EOF" >> "$GITEA_OUTPUT"
+            echo "EOF" >> $GITEA_OUTPUT
-
           else
-            echo ">> No directories found"
+            echo "changes-detected=false" >> $GITEA_OUTPUT
-            echo "changes-detected=false" >> "$GITEA_OUTPUT"
-
           fi
 
       - name: Add Repositories
@@ -113,54 +94,29 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Adding repositories for chart dependencies ..."
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            helm dependency list --max-col-width 120 "${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}" 2> /dev/null \
+            helm dependency list --max-col-width 120 ${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir 2> /dev/null \
-              | tail -n +2 \
+              | tail +2 | head -n -1 \
-              | awk 'NF > 0 { print $1, $3 }' \
+              | awk '{ print "helm repo add " $1 " " $3 }' \
-              | while read -r REPO_NAME REPO_URL; do
+              | while read cmd; do
-                if [[ "${REPO_URL}" == oci://* ]]; then
+                if [[ "$cmd" == "*oci://*" ]]; then
-                  echo ""
+                  echo ">> Ignoring OCI repo"
-                  echo ">> Ignoring OCI repo: ${REPO_URL}"
+                else
-
+                  echo "$cmd" | sh;
-                elif [[ -n "${REPO_NAME}" && -n "${REPO_URL}" ]]; then
-                  helm repo add "${REPO_NAME}" "${REPO_URL}"
-
                 fi
               done || true
           done
 
-          if helm repo list > /dev/null 2>&1; then
+          if helm repo list | tail +2 | read -r; then
-            echo ""
             echo ">> Update repository cache ..."
             helm repo update
-
           fi
 
           echo "----"
 
-      - name: Remove Changed Manifest Files
-        if: steps.check-dir-changes.outputs.changes-detected == 'true'
-        env:
-          RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
-        run: |
-          cd "${MANIFEST_DIR}"
-
-          echo ""
-          echo ">> Remove manfiest files and rebuild from source ..."
-
-          for DIR in ${RENDER_DIR}; do
-            CHART_PATH=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${DIR}
-
-            echo "${CHART_PATH}"
-            rm -rf ${CHART_PATH}/*
-          done
-
-          echo "----"
-
       - name: Render Helm Manifests
         id: render-manifests
         if: steps.check-dir-changes.outputs.changes-detected == 'true'
@@ -169,57 +125,60 @@ jobs:
         run: |
           cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Rendering Manifests ..."
 
-          render_chart() {
+          for dir in ${RENDER_DIR}; do
-            local DIR="$1"
+            chart_path=${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir
-            local CHART_PATH="${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}"
+            chart_name=$(basename "$chart_path")
-            local CHART_NAME=$(basename "${CHART_PATH}")
 
             echo ""
-            echo ">> Rendering ..."
+            echo ""
-            echo ">> Chart: ${CHART_NAME}"
+            echo ">> Rendering chart: $chart_name"
-            echo ">> Path: ${CHART_PATH}"
+            echo ">> Chart path $chart_path"
 
-            if [ -f "${CHART_PATH}/Chart.yaml" ]; then
+            if [ -f "$chart_path/Chart.yaml" ]; then
-              local OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${CHART_NAME}/"
+              OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name/"
+              TEMPLATE=""
 
-              mkdir -p "${OUTPUT_FOLDER}"
+              mkdir -p ${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name
-              cd "${CHART_PATH}"
+
+              cd $chart_path
 
               echo ""
-              echo ">> Updating helm dependencies ..."
+              echo ">> Updating helm dependency ..."
-              helm dependency update --skip-refresh > /dev/null
+              helm dependency update --skip-refresh
 
               echo ""
-              echo ">> Linting helm chart ..."
+              echo ">> Building helm dependency ..."
-              helm lint --namespace "${CHART_NAME}" --quiet
+              helm dependency build --skip-refresh
 
-              local NAMESPACE="${CHART_NAME}"
+              echo ""
-              case "${CHART_NAME}" in
+              echo ">> Linting helm ..."
+              helm lint --namespace "$chart_name"
+
+              echo ""
+              echo ">> Rendering templates ..."
+              case "$chart_name" in
                 "stack")
-                  NAMESPACE="argocd"
                   echo ""
-                  echo ">> Special Rendering into 'argocd' namespace ..."
+                  echo ">> Special Rendering for stack into argocd namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace argocd --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
-                "cilium" | "coredns" | "metrics-server" | "prometheus-operator-crds")
+                "cilium" | "coredns" | "metrics-server" |"prometheus-operator-crds")
-                  NAMESPACE="kube-system"
                   echo ""
-                  echo ">> Special Rendering for ${CHART_NAME} into 'kube-system' namespace ..."
+                  echo ">> Special Rendering for $chart_name into kube-system namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace kube-system --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
                 *)
                   echo ""
-                  echo ">> Standard Rendering for ${CHART_NAME} ..."
+                  echo ">> Standard Rendering for $chart_name ..."
+                  TEMPLATE=$(helm template "$chart_name" ./ --namespace "$chart_name" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
+                  ;;
               esac
 
               echo ""
               echo ">> Formating rendered template ..."
-              local TEMPLATE
+              echo "$TEMPLATE" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"$OUTPUT_FOLDER"'" + .kind + "-" + .metadata.name + ".yaml"'
-              TEMPLATE=$(helm template "${CHART_NAME}" ./ --namespace "${NAMESPACE}" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
-
-              # Format and split rendered template
-              echo "${TEMPLATE}" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"${OUTPUT_FOLDER}"'" + .kind + "-" + .metadata.name + ".yaml"'
 
               # Strip comments again to ensure formatting correctness
               for file in "$OUTPUT_FOLDER"/*; do
@@ -227,23 +186,15 @@ jobs:
               done
 
               echo ""
-              echo ">> Manifests for ${CHART_NAME} rendered to ${OUTPUT_FOLDER}:"
+              echo ">> Manifests for $chart_name rendered to $OUTPUT_FOLDER"
               ls $OUTPUT_FOLDER
               echo ""
             else
               echo ""
-              echo ">> Directory ${CHART_PATH} does not contain a Chart.yaml. Skipping ..."
+              echo ">> Directory $chart_path does not contain a Chart.yaml. Skipping ..."
               echo ""
             fi
-          }
+          done
-
-          export -f render_chart
-          export MAIN_DIR CLUSTER MANIFEST_DIR
-
-          # Run rendering in parallel
-          for DIR in ${RENDER_DIR}; do
-            echo "${DIR}"
-          done | xargs -n 1 -P 4 -I {} bash -c 'render_chart "$@"' _ {}
 
           echo "----"
 
@@ -251,18 +202,16 @@ jobs:
         id: check-changes
         if: steps.check-dir-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
           GIT_CHANGES=$(git status --porcelain)
 
-          if [ -n "${GIT_CHANGES}" ]; then
+          if [ -n "$GIT_CHANGES" ]; then
-            echo ""
             echo ">> Changes detected"
             git status --porcelain
             echo "changes-detected=true" >> $GITEA_OUTPUT
 
           else
-            echo ""
             echo ">> No changes detected, skipping PR creation"
 
           fi
@@ -273,23 +222,20 @@ jobs:
         id: commit-push
         if: steps.check-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Commiting changes to ${BRANCH_NAME} ..."
           git add .
           git commit -m "chore: Update manifests after change"
 
           REPO_URL="${{ secrets.REPO_URL }}/${{ gitea.repository }}"
-          echo ""
+          echo ">> Pushing changes to $REPO_URL ..."
-          echo ">> Pushing changes to ${REPO_URL} ..."
+          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@$(echo $REPO_URL | sed -e 's|https://||')" ${BRANCH_NAME}
-
-          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@${REPO_URL#*://}" "${BRANCH_NAME}"
 
           echo "----"
 
-          echo "HEAD_BRANCH=${BRANCH_NAME}" >> "$GITEA_OUTPUT"
+          echo "HEAD_BRANCH=${BRANCH_NAME}" >> $GITEA_OUTPUT
-          echo "push=true" >> "$GITEA_OUTPUT"
+          echo "push=true" >> $GITEA_OUTPUT
 
       - name: Check for Pull Request
         id: check-for-pull-requst

.gitea/workflows/render-manifests-merge.yaml

@@ -47,39 +47,24 @@ jobs:
           method: kubeconfig
           kubeconfig: ${{ secrets.KUBECONFIG }}
 
-      - name: Cache Helm Dependencies
-        uses: actions/cache@v5
-        with:
-          path: |
-            ~/.cache/helm
-            ~/.config/helm
-          key: helm-cache-${{ runner.os }}-${{ hashFiles('infrastructure/clusters/cl01tl/helm/**/Chart.yaml', 'infrastructure/clusters/cl01tl/helm/**/Chart.lock') }}
-          restore-keys: |
-            helm-cache-${{ runner.os }}-
-
       - name: Prepare Manifest Branch
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Configure git to use gitea-bot as user ..."
           git config user.name "gitea-bot"
           git config user.email "gitea-bot@alexlebens.net"
 
-          echo ""
           echo ">> Checking if PR branch exists ..."
-          if git ls-remote --exit-code --heads origin "${BRANCH_NAME}" > /dev/null 2>&1; then
+          if [[ $(git ls-remote --heads origin "${BRANCH_NAME}" | wc -l) -gt 0 ]]; then
-            echo ""
             echo ">> Branch '${BRANCH_NAME}' exists, pulling changes ..."
             git fetch origin "${BRANCH_NAME}"
             git checkout "${BRANCH_NAME}"
             git pull --rebase
 
           else
-            echo ""
             echo ">> Branch '${BRANCH_NAME}' does not exist, creating ..."
-            git checkout -b "${BRANCH_NAME}"
+            git checkout -b $BRANCH_NAME
-
           fi
 
           echo "----"
@@ -87,31 +72,38 @@ jobs:
       - name: Check which Directories have Changes
         id: check-dir-changes
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
+
+          RENDER_DIR=()
 
-          echo ""
           echo ">> Checking for changes from HEAD^..HEAD ..."
+          GIT_DIFF=$(git diff --name-only HEAD^..HEAD | xargs -I {} dirname {} | sort -u | grep -E "clusters/[^/]+/helm/[^/]+")
 
-          # Extract the chart names from the git diff
+          if [ -n "${GIT_DIFF}" ]; then
-          RENDER_DIR=$(git diff --name-only HEAD^..HEAD | grep -E "^clusters/${CLUSTER}/helm/" | awk -F '/' '{print $4}' | sort -u || true)
+            echo ">> Changes detected:"
+            echo "$GIT_DIFF"
+            for path in $GIT_DIFF; do
+              RENDER_DIR+=$(echo "$path" | awk -F '/' '{print $4}')
+              RENDER_DIR+=$(echo " ")
+            done
+
+          else
+            echo ">> No changes detected"
+
+          fi
 
           if [ -n "${RENDER_DIR}" ]; then
-            echo ""
             echo ">> Directories to Render:"
-            echo "${RENDER_DIR}"
+            echo "$(echo "${RENDER_DIR}" | sort -u)"
 
             echo "----"
 
-            echo "changes-detected=true" >> "$GITEA_OUTPUT"
+            echo "changes-detected=true" >> $GITEA_OUTPUT
-            echo "render-dir<<EOF" >> "$GITEA_OUTPUT"
+            echo "render-dir<<EOF" >> $GITEA_OUTPUT
-            echo "${RENDER_DIR}" >> "$GITEA_OUTPUT"
+            echo "$(echo "${RENDER_DIR}" | sort -u)" >> $GITEA_OUTPUT
-            echo "EOF" >> "$GITEA_OUTPUT"
+            echo "EOF" >> $GITEA_OUTPUT
-
           else
-            echo ""
+            echo "changes-detected=false" >> $GITEA_OUTPUT
-            echo ">> No chart changes detected"
-            echo "changes-detected=false" >> "$GITEA_OUTPUT"
-
           fi
 
       - name: Add Repositories
@@ -119,31 +111,25 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Adding repositories for chart dependencies ..."
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            helm dependency list --max-col-width 120 "${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}" 2> /dev/null \
+            helm dependency list --max-col-width 120 ${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir 2> /dev/null \
-              | tail -n +2 \
+              | tail +2 | head -n -1 \
-              | awk 'NF > 0 { print $1, $3 }' \
+              | awk '{ print "helm repo add " $1 " " $3 }' \
-              | while read -r REPO_NAME REPO_URL; do
+              | while read cmd; do
-                if [[ "${REPO_URL}" == oci://* ]]; then
+                if [[ "$cmd" == "*oci://*" ]]; then
-                  echo ""
+                  echo ">> Ignoring OCI repo"
-                  echo ">> Ignoring OCI repo: ${REPO_URL}"
+                else
-
+                  echo "$cmd" | sh;
-                elif [[ -n "${REPO_NAME}" && -n "${REPO_URL}" ]]; then
-                  helm repo add "${REPO_NAME}" "${REPO_URL}"
-
                 fi
               done || true
           done
 
-          if helm repo list > /dev/null 2>&1; then
+          if helm repo list | tail +2 | read -r; then
-            echo ""
             echo ">> Update repository cache ..."
             helm repo update
-
           fi
 
           echo "----"
@@ -153,16 +139,15 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Remove manfiest files and rebuild from source ..."
 
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            CHART_PATH=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${DIR}
+            chart_path=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$dir
 
-            echo "${CHART_PATH}"
+            echo "$chart_path"
-            rm -rf ${CHART_PATH}/*
+            rm -rf $chart_path/*
           done
 
           echo "----"
@@ -175,57 +160,60 @@ jobs:
         run: |
           cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Rendering Manifests ..."
 
-          render_chart() {
+          for dir in ${RENDER_DIR}; do
-            local DIR="$1"
+            chart_path=${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir
-            local CHART_PATH="${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}"
+            chart_name=$(basename "$chart_path")
-            local CHART_NAME=$(basename "${CHART_PATH}")
 
             echo ""
-            echo ">> Rendering ..."
+            echo ""
-            echo ">> Chart: ${CHART_NAME}"
+            echo ">> Rendering chart: $chart_name"
-            echo ">> Path: ${CHART_PATH}"
+            echo ">> Chart path $chart_path"
 
-            if [ -f "${CHART_PATH}/Chart.yaml" ]; then
+            if [ -f "$chart_path/Chart.yaml" ]; then
-              local OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${CHART_NAME}/"
+              OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name/"
+              TEMPLATE=""
 
-              mkdir -p "${OUTPUT_FOLDER}"
+              mkdir -p ${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name
-              cd "${CHART_PATH}"
+
+              cd $chart_path
 
               echo ""
-              echo ">> Updating helm dependencies ..."
+              echo ">> Updating helm dependency ..."
-              helm dependency update --skip-refresh > /dev/null
+              helm dependency update --skip-refresh
 
               echo ""
-              echo ">> Linting helm chart ..."
+              echo ">> Building helm dependency ..."
-              helm lint --namespace "${CHART_NAME}" --quiet
+              helm dependency build --skip-refresh
 
-              local NAMESPACE="${CHART_NAME}"
+              echo ""
-              case "${CHART_NAME}" in
+              echo ">> Linting helm ..."
+              helm lint --namespace "$chart_name"
+
+              echo ""
+              echo ">> Rendering templates ..."
+              case "$chart_name" in
                 "stack")
-                  NAMESPACE="argocd"
                   echo ""
-                  echo ">> Special Rendering into 'argocd' namespace ..."
+                  echo ">> Special Rendering for stack into argocd namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace argocd --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
-                "cilium" | "coredns" | "metrics-server" | "prometheus-operator-crds")
+                "cilium" | "coredns" | "metrics-server" |"prometheus-operator-crds")
-                  NAMESPACE="kube-system"
                   echo ""
-                  echo ">> Special Rendering for ${CHART_NAME} into 'kube-system' namespace ..."
+                  echo ">> Special Rendering for $chart_name into kube-system namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace kube-system --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
                 *)
                   echo ""
-                  echo ">> Standard Rendering for ${CHART_NAME} ..."
+                  echo ">> Standard Rendering for $chart_name ..."
+                  TEMPLATE=$(helm template "$chart_name" ./ --namespace "$chart_name" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
+                  ;;
               esac
 
               echo ""
               echo ">> Formating rendered template ..."
-              local TEMPLATE
+              echo "$TEMPLATE" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"$OUTPUT_FOLDER"'" + .kind + "-" + .metadata.name + ".yaml"'
-              TEMPLATE=$(helm template "${CHART_NAME}" ./ --namespace "${NAMESPACE}" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
-
-              # Format and split rendered template
-              echo "${TEMPLATE}" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"${OUTPUT_FOLDER}"'" + .kind + "-" + .metadata.name + ".yaml"'
 
               # Strip comments again to ensure formatting correctness
               for file in "$OUTPUT_FOLDER"/*; do
@@ -233,23 +221,15 @@ jobs:
               done
 
               echo ""
-              echo ">> Manifests for ${CHART_NAME} rendered to ${OUTPUT_FOLDER}:"
+              echo ">> Manifests for $chart_name rendered to $OUTPUT_FOLDER"
               ls $OUTPUT_FOLDER
               echo ""
             else
               echo ""
-              echo ">> Directory ${CHART_PATH} does not contain a Chart.yaml. Skipping ..."
+              echo ">> Directory $chart_path does not contain a Chart.yaml. Skipping ..."
               echo ""
             fi
-          }
+          done
-
-          export -f render_chart
-          export MAIN_DIR CLUSTER MANIFEST_DIR
-
-          # Run rendering in parallel
-          for DIR in ${RENDER_DIR}; do
-            echo "${DIR}"
-          done | xargs -n 1 -P 4 -I {} bash -c 'render_chart "$@"' _ {}
 
           echo "----"
 
@@ -257,18 +237,16 @@ jobs:
         id: check-changes
         if: steps.check-dir-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
           GIT_CHANGES=$(git status --porcelain)
 
-          if [ -n "${GIT_CHANGES}" ]; then
+          if [ -n "$GIT_CHANGES" ]; then
-            echo ""
             echo ">> Changes detected"
             git status --porcelain
             echo "changes-detected=true" >> $GITEA_OUTPUT
 
           else
-            echo ""
             echo ">> No changes detected, skipping PR creation"
 
           fi
@@ -279,23 +257,20 @@ jobs:
         id: commit-push
         if: steps.check-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Commiting changes to ${BRANCH_NAME} ..."
           git add .
           git commit -m "chore: Update manifests after change"
 
           REPO_URL="${{ secrets.REPO_URL }}/${{ gitea.repository }}"
-          echo ""
+          echo ">> Pushing changes to $REPO_URL ..."
-          echo ">> Pushing changes to ${REPO_URL} ..."
+          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@$(echo $REPO_URL | sed -e 's|https://||')" ${BRANCH_NAME}
-
-          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@${REPO_URL#*://}" "${BRANCH_NAME}"
 
           echo "----"
 
-          echo "HEAD_BRANCH=${BRANCH_NAME}" >> "$GITEA_OUTPUT"
+          echo "HEAD_BRANCH=${BRANCH_NAME}" >> $GITEA_OUTPUT
-          echo "push=true" >> "$GITEA_OUTPUT"
+          echo "push=true" >> $GITEA_OUTPUT
 
       - name: Check for Pull Request
         id: check-for-pull-requst

.gitea/workflows/render-manifests-push.yaml

@@ -45,38 +45,24 @@ jobs:
           method: kubeconfig
           kubeconfig: ${{ secrets.KUBECONFIG }}
 
-      - name: Cache Helm Dependencies
-        uses: actions/cache@v5
-        with:
-          path: |
-            ~/.cache/helm
-            ~/.config/helm
-          key: helm-cache-${{ runner.os }}-${{ hashFiles('infrastructure/clusters/cl01tl/helm/**/Chart.yaml', 'infrastructure/clusters/cl01tl/helm/**/Chart.lock') }}
-          restore-keys: |
-            helm-cache-${{ runner.os }}-
-
       - name: Prepare Manifest Branch
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Configure git to use gitea-bot as user ..."
           git config user.name "gitea-bot"
           git config user.email "gitea-bot@alexlebens.net"
 
           echo ">> Checking if PR branch exists ..."
-          if git ls-remote --exit-code --heads origin "${BRANCH_NAME}" > /dev/null 2>&1; then
+          if [[ $(git ls-remote --heads origin "${BRANCH_NAME}" | wc -l) -gt 0 ]]; then
-            echo ""
             echo ">> Branch '${BRANCH_NAME}' exists, pulling changes ..."
             git fetch origin "${BRANCH_NAME}"
             git checkout "${BRANCH_NAME}"
             git pull --rebase
 
           else
-            echo ""
             echo ">> Branch '${BRANCH_NAME}' does not exist, creating ..."
-            git checkout -b "${BRANCH_NAME}"
+            git checkout -b $BRANCH_NAME
-
           fi
 
           echo "----"
@@ -84,31 +70,38 @@ jobs:
       - name: Check which Directories have Changes
         id: check-dir-changes
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
+
+          RENDER_DIR=()
 
-          echo ""
           echo ">> Checking for changes ..."
+          GIT_DIFF=$(git diff --name-only ${{ gitea.event.before }}..HEAD | xargs -I {} dirname {} | sort -u | grep -E "clusters/[^/]+/helm/[^/]+")
 
-          # Extract the chart names from the git diff
+          if [ -n "${GIT_DIFF}" ]; then
-          RENDER_DIR=$(git diff --name-only ${{ gitea.event.before }}..HEAD | grep -E "^clusters/${CLUSTER}/helm/" | awk -F '/' '{print $4}' | sort -u || true)
+            echo ">> Changes detected:"
+            echo "$GIT_DIFF"
+            for path in $GIT_DIFF; do
+              RENDER_DIR+=$(echo "$path" | awk -F '/' '{print $4}')
+              RENDER_DIR+=$(echo " ")
+            done
+
+          else
+            echo ">> No changes detected"
+
+          fi
 
           if [ -n "${RENDER_DIR}" ]; then
-            echo ""
             echo ">> Directories to Render:"
-            echo "${RENDER_DIR}"
+            echo "$(echo "${RENDER_DIR}" | sort -u)"
 
             echo "----"
 
-            echo "changes-detected=true" >> "$GITEA_OUTPUT"
+            echo "changes-detected=true" >> $GITEA_OUTPUT
-            echo "render-dir<<EOF" >> "$GITEA_OUTPUT"
+            echo "render-dir<<EOF" >> $GITEA_OUTPUT
-            echo "${RENDER_DIR}" >> "$GITEA_OUTPUT"
+            echo "$(echo "${RENDER_DIR}" | sort -u)" >> $GITEA_OUTPUT
-            echo "EOF" >> "$GITEA_OUTPUT"
+            echo "EOF" >> $GITEA_OUTPUT
-
           else
-            echo ""
+            echo "changes-detected=false" >> $GITEA_OUTPUT
-            echo ">> No chart changes detected"
-            echo "changes-detected=false" >> "$GITEA_OUTPUT"
-
           fi
 
       - name: Add Repositories
@@ -116,31 +109,25 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MAIN_DIR}"
+          cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Adding repositories for chart dependencies ..."
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            helm dependency list --max-col-width 120 "${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}" 2> /dev/null \
+            helm dependency list --max-col-width 120 ${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir 2> /dev/null \
-              | tail -n +2 \
+              | tail +2 | head -n -1 \
-              | awk 'NF > 0 { print $1, $3 }' \
+              | awk '{ print "helm repo add " $1 " " $3 }' \
-              | while read -r REPO_NAME REPO_URL; do
+              | while read cmd; do
-                if [[ "${REPO_URL}" == oci://* ]]; then
+                if [[ "$cmd" == "*oci://*" ]]; then
-                  echo ""
+                  echo ">> Ignoring OCI repo"
-                  echo ">> Ignoring OCI repo: ${REPO_URL}"
+                else
-
+                  echo "$cmd" | sh;
-                elif [[ -n "${REPO_NAME}" && -n "${REPO_URL}" ]]; then
-                  helm repo add "${REPO_NAME}" "${REPO_URL}"
-
                 fi
               done || true
           done
 
-          if helm repo list > /dev/null 2>&1; then
+          if helm repo list | tail +2 | read -r; then
-            echo ""
             echo ">> Update repository cache ..."
             helm repo update
-
           fi
 
           echo "----"
@@ -150,17 +137,15 @@ jobs:
         env:
           RENDER_DIR: ${{ steps.check-dir-changes.outputs.render-dir }}
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Remove manfiest files and rebuild from source ..."
 
-          for DIR in ${RENDER_DIR}; do
+          for dir in ${RENDER_DIR}; do
-            CHART_PATH=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${DIR}
+            chart_path=${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$dir
 
-            echo ""
+            echo "$chart_path"
-            echo "${CHART_PATH}"
+            rm -rf $chart_path/*
-            rm -rf ${CHART_PATH}/*
           done
 
           echo "----"
@@ -173,57 +158,60 @@ jobs:
         run: |
           cd ${MAIN_DIR}
 
-          echo ""
           echo ">> Rendering Manifests ..."
 
-          render_chart() {
+          for dir in ${RENDER_DIR}; do
-            local DIR="$1"
+            chart_path=${MAIN_DIR}/clusters/${CLUSTER}/helm/$dir
-            local CHART_PATH="${MAIN_DIR}/clusters/${CLUSTER}/helm/${DIR}"
+            chart_name=$(basename "$chart_path")
-            local CHART_NAME=$(basename "${CHART_PATH}")
 
             echo ""
-            echo ">> Rendering ..."
+            echo ""
-            echo ">> Chart: ${CHART_NAME}"
+            echo ">> Rendering chart: $chart_name"
-            echo ">> Path: ${CHART_PATH}"
+            echo ">> Chart path $chart_path"
 
-            if [ -f "${CHART_PATH}/Chart.yaml" ]; then
+            if [ -f "$chart_path/Chart.yaml" ]; then
-              local OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/${CHART_NAME}/"
+              OUTPUT_FOLDER="${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name/"
+              TEMPLATE=""
 
-              mkdir -p "${OUTPUT_FOLDER}"
+              mkdir -p ${MANIFEST_DIR}/clusters/${CLUSTER}/manifests/$chart_name
-              cd "${CHART_PATH}"
+
+              cd $chart_path
 
               echo ""
-              echo ">> Updating helm dependencies ..."
+              echo ">> Updating helm dependency ..."
-              helm dependency update --skip-refresh > /dev/null
+              helm dependency update --skip-refresh
 
               echo ""
-              echo ">> Linting helm chart ..."
+              echo ">> Building helm dependency ..."
-              helm lint --namespace "${CHART_NAME}" --quiet
+              helm dependency build --skip-refresh
 
-              local NAMESPACE="${CHART_NAME}"
+              echo ""
-              case "${CHART_NAME}" in
+              echo ">> Linting helm ..."
+              helm lint --namespace "$chart_name"
+
+              echo ""
+              echo ">> Rendering templates ..."
+              case "$chart_name" in
                 "stack")
-                  NAMESPACE="argocd"
                   echo ""
-                  echo ">> Special Rendering into 'argocd' namespace ..."
+                  echo ">> Special Rendering for stack into argocd namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace argocd --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
-                "cilium" | "coredns" | "metrics-server" | "prometheus-operator-crds")
+                "cilium" | "coredns" | "metrics-server" |"prometheus-operator-crds")
-                  NAMESPACE="kube-system"
                   echo ""
-                  echo ">> Special Rendering for ${CHART_NAME} into 'kube-system' namespace ..."
+                  echo ">> Special Rendering for $chart_name into kube-system namespace ..."
+                  TEMPLATE=$(helm template $chart_name ./ --namespace kube-system --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
                   ;;
                 *)
                   echo ""
-                  echo ">> Standard Rendering for ${CHART_NAME} ..."
+                  echo ">> Standard Rendering for $chart_name ..."
+                  TEMPLATE=$(helm template "$chart_name" ./ --namespace "$chart_name" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
+                  ;;
               esac
 
               echo ""
               echo ">> Formating rendered template ..."
-              local TEMPLATE
+              echo "$TEMPLATE" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"$OUTPUT_FOLDER"'" + .kind + "-" + .metadata.name + ".yaml"'
-              TEMPLATE=$(helm template "${CHART_NAME}" ./ --namespace "${NAMESPACE}" --include-crds --dry-run=server --api-versions "gateway.networking.k8s.io/v1/HTTPRoute")
-
-              # Format and split rendered template
-              echo "${TEMPLATE}" | yq '... comments=""' | yq 'select(. != null)' | yq -s '"'"${OUTPUT_FOLDER}"'" + .kind + "-" + .metadata.name + ".yaml"'
 
               # Strip comments again to ensure formatting correctness
               for file in "$OUTPUT_FOLDER"/*; do
@@ -231,23 +219,15 @@ jobs:
               done
 
               echo ""
-              echo ">> Manifests for ${CHART_NAME} rendered to ${OUTPUT_FOLDER}:"
+              echo ">> Manifests for $chart_name rendered to $OUTPUT_FOLDER"
               ls $OUTPUT_FOLDER
               echo ""
             else
               echo ""
-              echo ">> Directory ${CHART_PATH} does not contain a Chart.yaml. Skipping ..."
+              echo ">> Directory $chart_path does not contain a Chart.yaml. Skipping ..."
               echo ""
             fi
-          }
+          done
-
-          export -f render_chart
-          export MAIN_DIR CLUSTER MANIFEST_DIR
-
-          # Run rendering in parallel
-          for DIR in ${RENDER_DIR}; do
-            echo "${DIR}"
-          done | xargs -n 1 -P 4 -I {} bash -c 'render_chart "$@"' _ {}
 
           echo "----"
 
@@ -255,18 +235,16 @@ jobs:
         id: check-changes
         if: steps.check-dir-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
           GIT_CHANGES=$(git status --porcelain)
 
-          if [ -n "${GIT_CHANGES}" ]; then
+          if [ -n "$GIT_CHANGES" ]; then
-            echo ""
             echo ">> Changes detected"
             git status --porcelain
             echo "changes-detected=true" >> $GITEA_OUTPUT
 
           else
-            echo ""
             echo ">> No changes detected, skipping PR creation"
 
           fi
@@ -277,23 +255,20 @@ jobs:
         id: commit-push
         if: steps.check-changes.outputs.changes-detected == 'true'
         run: |
-          cd "${MANIFEST_DIR}"
+          cd ${MANIFEST_DIR}
 
-          echo ""
           echo ">> Commiting changes to ${BRANCH_NAME} ..."
           git add .
           git commit -m "chore: Update manifests after change"
 
           REPO_URL="${{ secrets.REPO_URL }}/${{ gitea.repository }}"
-          echo ""
+          echo ">> Pushing changes to $REPO_URL ..."
-          echo ">> Pushing changes to ${REPO_URL} ..."
+          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@$(echo $REPO_URL | sed -e 's|https://||')" ${BRANCH_NAME}
-
-          git push -u "https://oauth2:${{ secrets.BOT_TOKEN }}@${REPO_URL#*://}" "${BRANCH_NAME}"
 
           echo "----"
 
-          echo "HEAD_BRANCH=${BRANCH_NAME}" >> "$GITEA_OUTPUT"
+          echo "HEAD_BRANCH=${BRANCH_NAME}" >> $GITEA_OUTPUT
-          echo "push=true" >> "$GITEA_OUTPUT"
+          echo "push=true" >> $GITEA_OUTPUT
 
       - name: Check for Pull Request
         id: check-for-pull-requst

clusters/cl01tl/helm/argo-workflows/Chart.lock

@@ -1,12 +1,12 @@
 dependencies:
 - name: argo-workflows
   repository: https://argoproj.github.io/argo-helm
-  version: 1.0.2
+  version: 0.47.5
 - name: argo-events
   repository: https://argoproj.github.io/argo-helm
   version: 2.4.20
 - name: postgres-cluster
   repository: oci://harbor.alexlebens.net/helm-charts
   version: 7.9.1
-digest: sha256:31596af063744c13afac459184cd027d922d927f4191446eef63646bada28f8f
+digest: sha256:5b7f498040dd93f99a00c708c80fcefdb64dcdf473cfd3edcf8a94255b80b3b4
-generated: "2026-03-14T21:07:58.491981-05:00"
+generated: "2026-03-12T13:02:52.109982708Z"

clusters/cl01tl/helm/argo-workflows/Chart.yaml

@@ -18,7 +18,7 @@ maintainers:
   - name: alexlebens
 dependencies:
   - name: argo-workflows
-    version: 1.0.2
+    version: 0.47.5
     repository: https://argoproj.github.io/argo-helm
   - name: argo-events
     version: 2.4.20

clusters/cl01tl/helm/argo-workflows/values.yaml

@@ -1,14 +1,4 @@
 argo-workflows:
-  crds:
-    install: true
-    keep: true
-    # -- Use full CRDs with complete OpenAPI schemas. When false, uses minified CRDs with x-kubernetes-preserve-unknown-fields.
-    # Full CRDs are very large and are installed via a pre-install/pre-upgrade hook Job that uses server-side apply.
-    full: true
-    upgradeJob:
-      image:
-        repository: registry.k8s.io/kubectl
-        tag: v1.35.2
   controller:
     metricsConfig:
       enabled: true

clusters/cl01tl/helm/audiobookshelf/Chart.yaml

@@ -29,4 +29,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/audiobookshelf.png
 # renovate: datasource=github-releases depName=advplyr/audiobookshelf
-appVersion: 2.33.0
+appVersion: 2.32.1

clusters/cl01tl/helm/audiobookshelf/templates/persistent-volume-claim.yaml

@@ -1,52 +1,14 @@
 apiVersion: v1
 kind: PersistentVolumeClaim
 metadata:
-  name: audiobookshelf-books-nfs-storage
+  name: audiobookshelf-nfs-storage
   namespace: {{ .Release.Namespace }}
   labels:
-    app.kubernetes.io/name: audiobookshelf-books-nfs-storage
+    app.kubernetes.io/name: audiobookshelf-nfs-storage
     app.kubernetes.io/instance: {{ .Release.Name }}
     app.kubernetes.io/part-of: {{ .Release.Name }}
 spec:
-  volumeName: audiobookshelf-books-nfs-storage
+  volumeName: audiobookshelf-nfs-storage
-  storageClassName: nfs-client
-  accessModes:
-    - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-
----
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: audiobookshelf-audiobooks-nfs-storage
-  namespace: {{ .Release.Namespace }}
-  labels:
-    app.kubernetes.io/name: audiobookshelf-audiobooks-nfs-storage
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/part-of: {{ .Release.Name }}
-spec:
-  volumeName: audiobookshelf-audiobooks-nfs-storage
-  storageClassName: nfs-client
-  accessModes:
-    - ReadWriteMany
-  resources:
-    requests:
-      storage: 1Gi
-
----
-apiVersion: v1
-kind: PersistentVolumeClaim
-metadata:
-  name: audiobookshelf-podcasts-nfs-storage
-  namespace: {{ .Release.Namespace }}
-  labels:
-    app.kubernetes.io/name: audiobookshelf-podcasts-nfs-storage
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/part-of: {{ .Release.Name }}
-spec:
-  volumeName: audiobookshelf-podcasts-nfs-storage
   storageClassName: nfs-client
   accessModes:
     - ReadWriteMany

clusters/cl01tl/helm/audiobookshelf/templates/persistent-volume.yaml

@@ -1,10 +1,10 @@
 apiVersion: v1
 kind: PersistentVolume
 metadata:
-  name: audiobookshelf-books-nfs-storage
+  name: audiobookshelf-nfs-storage
   namespace: {{ .Release.Namespace }}
   labels:
-    app.kubernetes.io/name: audiobookshelf-books-nfs-storage
+    app.kubernetes.io/name: audiobookshelf-nfs-storage
     app.kubernetes.io/instance: {{ .Release.Name }}
     app.kubernetes.io/part-of: {{ .Release.Name }}
 spec:
@@ -15,57 +15,7 @@ spec:
   accessModes:
     - ReadWriteMany
   nfs:
-    path: /volume2/Storage/Books
+    path: /volume2/Storage
-    server: synologybond.alexlebens.net
-  mountOptions:
-    - vers=4
-    - minorversion=1
-    - noac
-
----
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: audiobookshelf-audiobooks-nfs-storage
-  namespace: {{ .Release.Namespace }}
-  labels:
-    app.kubernetes.io/name: audiobookshelf-audiobooks-nfs-storage
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/part-of: {{ .Release.Name }}
-spec:
-  persistentVolumeReclaimPolicy: Retain
-  storageClassName: nfs-client
-  capacity:
-    storage: 1Gi
-  accessModes:
-    - ReadWriteMany
-  nfs:
-    path: /volume2/Storage/Audiobooks
-    server: synologybond.alexlebens.net
-  mountOptions:
-    - vers=4
-    - minorversion=1
-    - noac
-
----
-apiVersion: v1
-kind: PersistentVolume
-metadata:
-  name: audiobookshelf-podcasts-nfs-storage
-  namespace: {{ .Release.Namespace }}
-  labels:
-    app.kubernetes.io/name: audiobookshelf-podcasts-nfs-storage
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/part-of: {{ .Release.Name }}
-spec:
-  persistentVolumeReclaimPolicy: Retain
-  storageClassName: nfs-client
-  capacity:
-    storage: 1Gi
-  accessModes:
-    - ReadWriteMany
-  nfs:
-    path: /volume2/Storage/Podcasts
     server: synologybond.alexlebens.net
   mountOptions:
     - vers=4

clusters/cl01tl/helm/audiobookshelf/values.yaml

@@ -9,7 +9,7 @@ audiobookshelf:
         main:
           image:
             repository: ghcr.io/advplyr/audiobookshelf
-            tag: 2.33.0
+            tag: 2.32.1
             pullPolicy: IfNotPresent
           env:
             - name: TZ
@@ -114,26 +114,12 @@ audiobookshelf:
           main:
             - path: /metadata
               readOnly: false
-    books:
-      existingClaim: audiobookshelf-books-nfs-storage
-      advancedMounts:
-        main:
-          main:
-            - path: /mnt/store/Books
-              readOnly: false
     audiobooks:
-      existingClaim: audiobookshelf-audiobooks-nfs-storage
+      existingClaim: audiobookshelf-nfs-storage
       advancedMounts:
         main:
           main:
-            - path: /mnt/store/Audiobooks
+            - path: /mnt/store/
-              readOnly: false
-    podcasts:
-      existingClaim: audiobookshelf-podcasts-nfs-storage
-      advancedMounts:
-        main:
-          main:
-            - path: /mnt/store/Podcasts
               readOnly: false
 volsync-target-config:
   pvcTarget: audiobookshelf-config

clusters/cl01tl/helm/booklore/Chart.lock

@@ -4,12 +4,12 @@ dependencies:
   version: 4.6.2
 - name: mariadb-cluster
   repository: https://helm.mariadb.com/mariadb-operator
-  version: 26.3.0
+  version: 25.10.4
 - name: volsync-target
   repository: oci://harbor.alexlebens.net/helm-charts
   version: 0.8.0
 - name: volsync-target
   repository: oci://harbor.alexlebens.net/helm-charts
   version: 0.8.0
-digest: sha256:e65fa008c652092da5431e9780eb2a87c944298a12e58e432efad61c9e826da5
+digest: sha256:d4c7bf75f72f7eab4ad968bf9f55daac9392c9b2df08f8a27c5dc4f8fffb5f57
-generated: "2026-03-14T23:57:22.721295098Z"
+generated: "2026-03-06T01:06:05.696573273Z"

clusters/cl01tl/helm/booklore/Chart.yaml

@@ -18,7 +18,7 @@ dependencies:
     repository: https://bjw-s-labs.github.io/helm-charts/
     version: 4.6.2
   - name: mariadb-cluster
-    version: 26.3.0
+    version: 25.10.4
     repository: https://helm.mariadb.com/mariadb-operator
   - name: volsync-target
     alias: volsync-target-config
@@ -30,4 +30,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/booklore.png
 # renovate: datasource=github-releases depName=booklore-app/BookLore
-appVersion: v2.2.1
+appVersion: v2.2.0

clusters/cl01tl/helm/booklore/templates/replication-destination.yaml

@@ -0,0 +1,15 @@
+apiVersion: volsync.backube/v1alpha1
+kind: ReplicationDestination
+metadata:
+  name: booklore-data-replication-destination
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app.kubernetes.io/name: booklore-data-replication-destination
+    app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/part-of: {{ .Release.Name }}
+spec:
+  rsyncTLS:
+    copyMethod: Direct
+    accessModes: ["ReadWriteMany"]
+    destinationPVC: booklore-books-nfs-storage
+    keySecret: booklore-data-replication-secret

clusters/cl01tl/helm/booklore/templates/replication-source.yaml

@@ -0,0 +1,17 @@
+apiVersion: volsync.backube/v1alpha1
+kind: ReplicationSource
+metadata:
+  name: booklore-data-replication-source
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app.kubernetes.io/name: booklore-data-replication-source
+    app.kubernetes.io/instance: {{ .Release.Name }}
+    app.kubernetes.io/part-of: {{ .Release.Name }}
+spec:
+  sourcePVC: booklore-data
+  trigger:
+    schedule: "0 0 * * *"
+  rsyncTLS:
+    keySecret: booklore-data-replication-secret
+    address: volsync-rsync-tls-dst-booklore-data-replication-destination
+    copyMethod: Snapshot

clusters/cl01tl/helm/booklore/values.yaml

@@ -9,7 +9,7 @@ booklore:
         main:
           image:
             repository: ghcr.io/booklore-app/booklore
-            tag: v2.2.1
+            tag: v2.2.0
             pullPolicy: IfNotPresent
           env:
             - name: TZ

clusters/cl01tl/helm/code-server/values.yaml

@@ -9,7 +9,7 @@ code-server:
         main:
           image:
             repository: ghcr.io/linuxserver/code-server
-            tag: 4.111.0@sha256:12c04b41f601604795562ece2ac64cade7cfca632415f4bfb1742477e3226272
+            tag: 4.110.0@sha256:8473aa16fba93fccc3ca772173d095bccd2e44d4d3104467fee923df10d57cd2
             pullPolicy: IfNotPresent
           env:
             - name: TZ

clusters/cl01tl/helm/coredns/Chart.yaml

@@ -7,7 +7,7 @@ keywords:
   - dns
   - network
   - kubernetes
-home: https://wiki.alexlebens.dev/s/
+home: https://wiki.alexlebens.dev/s/43947ec6-a034-449f-8c76-982ac493b072
 sources:
   - https://github.com/coredns/coredns
   - https://github.com/coredns/helm

clusters/cl01tl/helm/coredns/values.yaml

@@ -1,7 +1,7 @@
 coredns:
   image:
     repository: registry.k8s.io/coredns/coredns
-    tag: v1.14.2
+    tag: v1.14.1
   replicaCount: 3
   resources:
     requests:

clusters/cl01tl/helm/dawarich/Chart.yaml

@@ -26,4 +26,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons@main/png/dawarich.png
 # renovate: datasource=github-releases depName=Freika/dawarich
-appVersion: 1.3.3
+appVersion: 1.3.2

clusters/cl01tl/helm/dawarich/values.yaml

@@ -9,7 +9,7 @@ dawarich:
         main:
           image:
             repository: freikin/dawarich
-            tag: 1.3.3
+            tag: 1.3.2
             pullPolicy: IfNotPresent
           command: ["web-entrypoint.sh"]
           args: ["bin/rails", "server", "-p", "3000", "-b", "::"]
@@ -106,7 +106,7 @@ dawarich:
         sidekiq:
           image:
             repository: freikin/dawarich
-            tag: 1.3.3
+            tag: 1.3.2
             pullPolicy: IfNotPresent
           command: ["sidekiq-entrypoint.sh"]
           args: ["sidekiq"]

clusters/cl01tl/helm/garage/values.yaml

@@ -302,8 +302,8 @@ garage:
       serviceName: '{{ include "bjw-s.common.lib.chart.names.fullname" $ }}'
       endpoints:
         - port: admin
-          interval: 5m
+          interval: 1m
-          scrapeTimeout: 2m
+          scrapeTimeout: 30s
           path: /metrics
           bearerTokenSecret:
             name: garage-token-secret

clusters/cl01tl/helm/gitea/Chart.yaml

@@ -56,4 +56,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://raw.githubusercontent.com/walkxcode/dashboard-icons/main/png/gitea.png
 # renovate: datasource=github-releases depName=go-gitea/gitea
-appVersion: 1.25.5
+appVersion: 1.25.4

clusters/cl01tl/helm/gitea/values.yaml

@@ -4,7 +4,7 @@ gitea:
   replicaCount: 3
   image:
     repository: gitea/gitea
-    tag: 1.25.5
+    tag: 1.25.4
   service:
     http:
       type: ClusterIP

clusters/cl01tl/helm/grafana-operator/Chart.lock

@@ -1,7 +1,7 @@
 dependencies:
 - name: grafana-operator
   repository: https://grafana.github.io/helm-charts
-  version: 5.22.1
+  version: 5.22.0
 - name: postgres-cluster
   repository: oci://harbor.alexlebens.net/helm-charts
   version: 7.9.1
@@ -11,5 +11,5 @@ dependencies:
 - name: valkey
   repository: oci://harbor.alexlebens.net/helm-charts
   version: 0.4.0
-digest: sha256:932d9b24ad52ab2a28311f522714ecbad2bedea512ce48d26fcb95cc74b51af9
+digest: sha256:45cdb638fe815c3fc9703626b902d0f69ed8ffd0625e0f95bd7b33682126433b
-generated: "2026-03-14T19:50:53.708173087Z"
+generated: "2026-03-11T22:57:43.133815464Z"

clusters/cl01tl/helm/grafana-operator/Chart.yaml

@@ -17,7 +17,7 @@ maintainers:
   - name: alexlebens
 dependencies:
   - name: grafana-operator
-    version: 5.22.1
+    version: 5.22.0
     repository: https://grafana.github.io/helm-charts
   - name: postgres-cluster
     alias: postgres-18-cluster
@@ -33,4 +33,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/grafana.png
 # renovate: datasource=github-releases depName=grafana/grafana-operator
-appVersion: v5.22.1
+appVersion: v5.22.0

clusters/cl01tl/helm/headlamp/Chart.lock

@@ -1,6 +1,6 @@
 dependencies:
 - name: headlamp
   repository: https://kubernetes-sigs.github.io/headlamp/
-  version: 0.40.1
+  version: 0.40.0
-digest: sha256:723a57d6fe86a124b8bae7dfc1dde0c2abd60021837826b486054df00551dc03
+digest: sha256:b7f8f176f8c4902130e87660adb39211fd5ca454f89f5a7e9ed577cd4c3a2255
-generated: "2026-03-14T15:02:53.184950913Z"
+generated: "2026-02-05T18:23:45.100522813Z"

clusters/cl01tl/helm/headlamp/Chart.yaml

@@ -14,7 +14,7 @@ maintainers:
   - name: alexlebens
 dependencies:
   - name: headlamp
-    version: 0.40.1
+    version: 0.40.0
     repository: https://kubernetes-sigs.github.io/headlamp/
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/headlamp.png
 # renovate: datasource=github-releases depName=headlamp-k8s/headlamp

clusters/cl01tl/helm/headlamp/values.yaml

@@ -8,8 +8,6 @@ headlamp:
         enabled: true
         name: headlamp-oidc-secret
     watchPlugins: true
-    # Bypasses: https://github.com/kubernetes-sigs/headlamp/issues/4883
-    sessionTTL: null
   resources:
     requests:
       cpu: 10m

clusters/cl01tl/helm/home-assistant/values.yaml

@@ -21,7 +21,7 @@ home-assistant:
         code-server:
           image:
             repository: ghcr.io/linuxserver/code-server
-            tag: 4.111.0@sha256:12c04b41f601604795562ece2ac64cade7cfca632415f4bfb1742477e3226272
+            tag: 4.110.0@sha256:8473aa16fba93fccc3ca772173d095bccd2e44d4d3104467fee923df10d57cd2
             pullPolicy: IfNotPresent
           env:
             - name: TZ

clusters/cl01tl/helm/homepage/Chart.yaml

@@ -19,4 +19,4 @@ dependencies:
     version: 4.6.2
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/homepage.png
 # renovate: datasource=github-releases depName=gethomepage/homepage
-appVersion: v1.11.0
+appVersion: v1.10.1

clusters/cl01tl/helm/homepage/values.yaml

@@ -16,7 +16,7 @@ homepage:
         main:
           image:
             repository: ghcr.io/gethomepage/homepage
-            tag: v1.11.0
+            tag: v1.10.1
             pullPolicy: IfNotPresent
           env:
             - name: HOMEPAGE_ALLOWED_HOSTS

clusters/cl01tl/helm/libation/Chart.yaml

@@ -24,4 +24,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/libation.png
 # renovate: datasource=github-releases depName=rmcrackan/Libation
-appVersion: 13.3.0
+appVersion: 13.2.1

clusters/cl01tl/helm/libation/values.yaml

@@ -16,7 +16,7 @@ libation:
         main:
           image:
             repository: rmcrackan/libation
-            tag: 13.3.0
+            tag: 13.2.1
             pullPolicy: IfNotPresent
           env:
             - name: SLEEP_TIME

clusters/cl01tl/helm/loki/Chart.lock

@@ -1,9 +1,9 @@
 dependencies:
 - name: loki
   repository: https://grafana.github.io/helm-charts
-  version: 6.55.0
+  version: 6.53.0
 - name: alloy
   repository: https://grafana.github.io/helm-charts
   version: 1.6.2
-digest: sha256:463184dc134143723f8567a1ebd228353cf0253a139f0a4e76637ec65aa4aaf1
+digest: sha256:88b8ace6bcbcbff4b04727499705fbe94de7fe4b8f0b8aa254a1e7d1d2c65fac
-generated: "2026-03-14T18:16:47.779817047Z"
+generated: "2026-03-10T18:56:19.38475079Z"

clusters/cl01tl/helm/loki/Chart.yaml

@@ -16,7 +16,7 @@ maintainers:
   - name: alexlebens
 dependencies:
   - name: loki
-    version: 6.55.0
+    version: 6.53.0
     repository: https://grafana.github.io/helm-charts
   - name: alloy
     version: 1.6.2

clusters/cl01tl/helm/mariadb-operator/Chart.lock

@@ -1,9 +1,9 @@
 dependencies:
 - name: mariadb-operator
   repository: https://helm.mariadb.com/mariadb-operator
-  version: 26.3.0
+  version: 25.10.4
 - name: mariadb-operator-crds
   repository: https://helm.mariadb.com/mariadb-operator
-  version: 26.3.0
+  version: 25.10.4
-digest: sha256:95f9484c385d08f9b15f55cbb0f8d82c55b8c1a055a4c7697335d4ca51c35d7e
+digest: sha256:fcb4433060885746dd43a5fb4d8b32163d50d97dc4614fbf4c82f966a1723304
-generated: "2026-03-14T23:23:02.743862932Z"
+generated: "2026-01-08T21:21:13.446114122Z"

clusters/cl01tl/helm/mariadb-operator/Chart.yaml

@@ -15,11 +15,11 @@ maintainers:
   - name: alexlebens
 dependencies:
   - name: mariadb-operator
-    version: 26.3.0
+    version: 25.10.4
     repository: https://helm.mariadb.com/mariadb-operator
   - name: mariadb-operator-crds
-    version: 26.3.0
+    version: 25.10.4
     repository: https://helm.mariadb.com/mariadb-operator
 icon: https://mariadb-operator.github.io/mariadb-operator/assets/mariadb_profile.svg
 # renovate: datasource=github-releases depName=mariadb-operator/mariadb-operator
-appVersion: 26.3.0
+appVersion: 25.10.4

clusters/cl01tl/helm/music-grabber/values.yaml

@@ -9,7 +9,7 @@ music-grabber:
         main:
           image:
             repository: g33kphr33k/musicgrabber
-            tag: 2.4.3
+            tag: 2.3.5
             pullPolicy: IfNotPresent
           env:
             - name: MUSIC_DIR

clusters/cl01tl/helm/ollama/Chart.yaml

@@ -31,4 +31,4 @@ dependencies:
     repository: oci://harbor.alexlebens.net/helm-charts
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/ollama.png
 # renovate: datasource=github-releases depName=ollama/ollama
-appVersion: 0.18.0
+appVersion: 0.17.7

clusters/cl01tl/helm/ollama/values.yaml

@@ -22,7 +22,7 @@ ollama:
         main:
           image:
             repository: ollama/ollama
-            tag: 0.18.0
+            tag: 0.17.7
             pullPolicy: IfNotPresent
           env:
             - name: OLLAMA_KEEP_ALIVE
@@ -58,7 +58,7 @@ ollama:
         main:
           image:
             repository: ollama/ollama
-            tag: 0.18.0
+            tag: 0.17.7
             pullPolicy: IfNotPresent
           env:
             - name: OLLAMA_KEEP_ALIVE
@@ -94,7 +94,7 @@ ollama:
         main:
           image:
             repository: ollama/ollama
-            tag: 0.18.0
+            tag: 0.17.7
             pullPolicy: IfNotPresent
           env:
             - name: OLLAMA_KEEP_ALIVE

clusters/cl01tl/helm/s3-exporter/values.yaml

@@ -144,7 +144,7 @@ s3-exporter:
       endpoints:
         - port: metrics
           interval: 5m
-          scrapeTimeout: 2m
+          scrapeTimeout: 120s
           path: /metrics
     garage-local:
       selector:
@@ -156,7 +156,7 @@ s3-exporter:
       endpoints:
         - port: metrics
           interval: 5m
-          scrapeTimeout: 2m
+          scrapeTimeout: 120s
           path: /metrics
     garage-remote:
       selector:
@@ -168,5 +168,5 @@ s3-exporter:
       endpoints:
         - port: metrics
           interval: 5m
-          scrapeTimeout: 2m
+          scrapeTimeout: 120s
           path: /metrics

clusters/cl01tl/helm/searxng/values.yaml

@@ -9,7 +9,7 @@ searxng:
         main:
           image:
             repository: searxng/searxng
-            tag: latest@sha256:174f6a8498d88d2d98c265a952c2d552859bf315cd505746d1c0d4fbec37952f
+            tag: latest@sha256:5cdcc74aa8048d41b545f1577d5d3a2acebb49d56ea609c65a7adb5f3fc6791d
             pullPolicy: IfNotPresent
           env:
             - name: SEARXNG_BASE_URL
@@ -39,7 +39,7 @@ searxng:
         main:
           image:
             repository: searxng/searxng
-            tag: latest@sha256:174f6a8498d88d2d98c265a952c2d552859bf315cd505746d1c0d4fbec37952f
+            tag: latest@sha256:5cdcc74aa8048d41b545f1577d5d3a2acebb49d56ea609c65a7adb5f3fc6791d
             pullPolicy: IfNotPresent
           env:
             - name: SEARXNG_BASE_URL

clusters/cl01tl/helm/shelly-plug/values.yaml

@@ -36,7 +36,7 @@ shelly-plug:
         main:
           image:
             repository: php
-            tag: 8.5.4-apache-bookworm
+            tag: 8.5.3-apache-bookworm
             pullPolicy: IfNotPresent
           env:
             - name: SHELLY_HOSTNAME

clusters/cl01tl/helm/site-documentation/values.yaml

@@ -11,7 +11,7 @@ site-documentation:
         main:
           image:
             repository: harbor.alexlebens.net/images/site-documentation
-            tag: 0.2.0
+            tag: 0.1.7
             pullPolicy: IfNotPresent
           resources:
             requests:

clusters/cl01tl/helm/site-profile/values.yaml

@@ -11,7 +11,7 @@ site-profile:
         main:
           image:
             repository: harbor.alexlebens.net/images/site-profile
-            tag: 3.12.1
+            tag: 3.5.0
             pullPolicy: IfNotPresent
           resources:
             requests:

clusters/cl01tl/helm/tdarr/values.yaml

@@ -9,7 +9,7 @@ tdarr:
         main:
           image:
             repository: ghcr.io/haveagitgat/tdarr
-            tag: 2.63.01
+            tag: 2.62.01
             pullPolicy: IfNotPresent
           env:
             - name: TZ
@@ -48,7 +48,7 @@ tdarr:
         main:
           image:
             repository: ghcr.io/haveagitgat/tdarr_node
-            tag: 2.63.01
+            tag: 2.62.01
             pullPolicy: IfNotPresent
           env:
             - name: TZ

clusters/cl01tl/helm/whodb/Chart.yaml

@@ -20,4 +20,4 @@ dependencies:
     version: 4.6.2
 icon: https://cdn.jsdelivr.net/gh/selfhst/icons/png/whodb.png
 # renovate: datasource=github-releases depName=clidey/whodb
-appVersion: 0.99.0
+appVersion: 0.98.0

clusters/cl01tl/helm/whodb/values.yaml

@@ -8,7 +8,7 @@ whodb:
         main:
           image:
             repository: clidey/whodb
-            tag: 0.99.0
+            tag: 0.98.0
             pullPolicy: IfNotPresent
           env:
             - name: WHODB_OLLAMA_HOST

hosts/ps10rp/gitea/compose.yaml

@@ -33,7 +33,7 @@ services:
             - postgresql18:/var/lib/postgresql
 
     gitea:
-        image: gitea/gitea:1.25.5
+        image: gitea/gitea:1.25.4
         container_name: gitea
         depends_on:
             - postgresql

hosts/ps10rp/homepage/compose.yaml

@@ -32,7 +32,7 @@ services:
             - /var/run/docker.sock:/var/run/docker.sock:ro
 
     homepage:
-        image: ghcr.io/gethomepage/homepage:v1.11.0
+        image: ghcr.io/gethomepage/homepage:v1.10.1
         container_name: homepage
         labels:
             traefik.enable: true