alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 4 Actions Activity

chore(deps): update valkey/valkey docker tag to v9.0.3 #5285

Merged
alexlebens merged 1 commits from renovate/unified-valkey into main 2026-04-08 02:14:25 +00:00
Conversation 0 Commits 1 Files Changed 1 +1 -1
renovate-bot commented 2026-03-30 02:51:14 +00:00
Collaborator
Copy Link

This PR contains the following updates:

Package Update Change
valkey/valkey patch 9.0.0-alpine9.0.3-alpine

Release Notes

valkey-io/valkey (valkey/valkey)

v9.0.3

Compare Source

Valkey 9.0.3

Upgrade urgency SECURITY: This release includes security fixes we recommend you
apply as soon as possible.

Security fixes
  • (CVE-2025-67733) RESP Protocol Injection via Lua error_reply
  • (CVE-2026-21863) Remote DoS with malformed Valkey Cluster bus message
  • (CVE-2026-27623) Reset request type after handling empty requests
Bug fixes
  • Avoids crash during MODULE UNLOAD when ACL rules reference a module command and subcommand (#​3160)
  • Fix server assert on ACL LOAD when current user loses permission to channels (#​3182)
  • Fix bug causing no response flush sometimes when IO threads are busy (#​3205)

v9.0.2

Compare Source

Upgrade urgency HIGH: There are critical bugs that may affect a subset of users.

Bug fixes

  • Avoid memory leak of new argv when HEXPIRE commands target only non-exiting fields (#​2973)
  • Fix HINCRBY and HINCRBYFLOAT to update volatile key tracking (#​2974)
  • Avoid empty hash object when HSETEX added no fields (#​2998)
  • Fix case-sensitive check for the FNX and FXX arguments in HSETEX (#​3000)
  • Prevent assertion in active expiration job after a hash with volatile fields is overwritten (#​3003, #​3007)
  • Fix HRANDFIELD to return null response when no field could be found (#​3022)
  • Fix HEXPIRE to not delete items when validation rules fail and expiration is in the past (#​3023, #​3048)
  • Fix how hash is handling overriding of expired fields overwrite (#​3060)
  • HSETEX - Always issue keyspace notifications after validation (#​3001)
  • Make zero a valid TTL for hash fields during import mode and data loading (#​3006)
  • Trigger prepareCommand on argc change in module command filters (#​2945)
  • Restrict TTL from being negative and avoid crash in import-mode (#​2944)
  • Fix chained replica crash when doing dual channel replication (#​2983)
  • Skip slot cache optimization for AOF client to prevent key duplication and data corruption (#​3004)
  • Fix used_memory_dataset underflow due to miscalculated used_memory_overhead (#​3005)
  • Avoid duplicate calculations of network-bytes-out in slot stats with copy-avoidance (#​3046)
  • Fix XREAD returning error on empty stream with + ID (#​2742)

Performance/Efficiency Improvements

  • Track reply bytes in I/O threads if commandlog-reply-larger-than is -1 (#​3086, #​3126).
    This makes it possible to mitigate a performance regression in 9.0.1 caused by the bug fix #​2652.

Full Changelog: https://github.com/valkey-io/valkey/compare/9.0.1...9.0.2

v9.0.1

Compare Source

Upgrade urgency MODERATE: Program an upgrade of the server, but it's not urgent.

Bug fixes

  • Authenticate slot migration client on source node to internal user (#​2785)
  • Bug fix: reset io_last_written on c->buf resize to prevent stale pointers (#​2786)
  • Sentinel: fix regression requiring "+failover" ACL in failover path (#​2780)
  • Cluster: Avoid usage of light weight messages to nodes with not ready bidirectional links (#​2817)
  • Send duplicate multi meet packet only for node which supports it in mixed clusters (#​2840)
  • Fix: LTRIM should not call signalModifiedKey when no elements are removed (#​2787)
  • Fix build on some 32-bit ARM by only using NEON on AArch64 (#​2873)
  • Fix deadlock in IO-thread shutdown during panic (#​2898)
  • Fix COMMANDLOG large-reply when using reply copy avoidance (#​2652)
  • Fix CLUSTER SLOTS crash when called from module timer callback (#​2915)

Full Changelog: https://github.com/valkey-io/valkey/compare/9.0.0...9.0.1

Configuration

📅 Schedule: (in timezone America/Chicago)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [valkey/valkey](https://github.com/valkey-io/valkey) | patch | `9.0.0-alpine` → `9.0.3-alpine` | --- ### Release Notes <details> <summary>valkey-io/valkey (valkey/valkey)</summary> ### [`v9.0.3`](https://github.com/valkey-io/valkey/releases/tag/9.0.3) [Compare Source](https://github.com/valkey-io/valkey/compare/9.0.2...9.0.3) ### Valkey 9.0.3 Upgrade urgency SECURITY: This release includes security fixes we recommend you apply as soon as possible. ##### Security fixes - (CVE-2025-67733) RESP Protocol Injection via Lua error\_reply - (CVE-2026-21863) Remote DoS with malformed Valkey Cluster bus message - (CVE-2026-27623) Reset request type after handling empty requests ##### Bug fixes - Avoids crash during MODULE UNLOAD when ACL rules reference a module command and subcommand ([#&#8203;3160](https://github.com/valkey-io/valkey/issues/3160)) - Fix server assert on ACL LOAD when current user loses permission to channels ([#&#8203;3182](https://github.com/valkey-io/valkey/issues/3182)) - Fix bug causing no response flush sometimes when IO threads are busy ([#&#8203;3205](https://github.com/valkey-io/valkey/issues/3205)) ### [`v9.0.2`](https://github.com/valkey-io/valkey/releases/tag/9.0.2) [Compare Source](https://github.com/valkey-io/valkey/compare/9.0.1...9.0.2) Upgrade urgency HIGH: There are critical bugs that may affect a subset of users. ## Bug fixes - Avoid memory leak of new argv when HEXPIRE commands target only non-exiting fields ([#&#8203;2973](https://github.com/valkey-io/valkey/issues/2973)) - Fix HINCRBY and HINCRBYFLOAT to update volatile key tracking ([#&#8203;2974](https://github.com/valkey-io/valkey/issues/2974)) - Avoid empty hash object when HSETEX added no fields ([#&#8203;2998](https://github.com/valkey-io/valkey/issues/2998)) - Fix case-sensitive check for the FNX and FXX arguments in HSETEX ([#&#8203;3000](https://github.com/valkey-io/valkey/issues/3000)) - Prevent assertion in active expiration job after a hash with volatile fields is overwritten ([#&#8203;3003](https://github.com/valkey-io/valkey/issues/3003), [#&#8203;3007](https://github.com/valkey-io/valkey/issues/3007)) - Fix HRANDFIELD to return null response when no field could be found ([#&#8203;3022](https://github.com/valkey-io/valkey/issues/3022)) - Fix HEXPIRE to not delete items when validation rules fail and expiration is in the past ([#&#8203;3023](https://github.com/valkey-io/valkey/issues/3023), [#&#8203;3048](https://github.com/valkey-io/valkey/issues/3048)) - Fix how hash is handling overriding of expired fields overwrite ([#&#8203;3060](https://github.com/valkey-io/valkey/issues/3060)) - HSETEX - Always issue keyspace notifications after validation ([#&#8203;3001](https://github.com/valkey-io/valkey/issues/3001)) - Make zero a valid TTL for hash fields during import mode and data loading ([#&#8203;3006](https://github.com/valkey-io/valkey/issues/3006)) - Trigger prepareCommand on argc change in module command filters ([#&#8203;2945](https://github.com/valkey-io/valkey/issues/2945)) - Restrict TTL from being negative and avoid crash in import-mode ([#&#8203;2944](https://github.com/valkey-io/valkey/issues/2944)) - Fix chained replica crash when doing dual channel replication ([#&#8203;2983](https://github.com/valkey-io/valkey/issues/2983)) - Skip slot cache optimization for AOF client to prevent key duplication and data corruption ([#&#8203;3004](https://github.com/valkey-io/valkey/issues/3004)) - Fix used\_memory\_dataset underflow due to miscalculated used\_memory\_overhead ([#&#8203;3005](https://github.com/valkey-io/valkey/issues/3005)) - Avoid duplicate calculations of network-bytes-out in slot stats with copy-avoidance ([#&#8203;3046](https://github.com/valkey-io/valkey/issues/3046)) - Fix XREAD returning error on empty stream with + ID ([#&#8203;2742](https://github.com/valkey-io/valkey/issues/2742)) ## Performance/Efficiency Improvements - Track reply bytes in I/O threads if commandlog-reply-larger-than is -1 ([#&#8203;3086](https://github.com/valkey-io/valkey/issues/3086), [#&#8203;3126](https://github.com/valkey-io/valkey/issues/3126)). This makes it possible to mitigate a performance regression in 9.0.1 caused by the bug fix [#&#8203;2652](https://github.com/valkey-io/valkey/issues/2652). **Full Changelog**: <https://github.com/valkey-io/valkey/compare/9.0.1...9.0.2> ### [`v9.0.1`](https://github.com/valkey-io/valkey/releases/tag/9.0.1) [Compare Source](https://github.com/valkey-io/valkey/compare/9.0.0...9.0.1) Upgrade urgency MODERATE: Program an upgrade of the server, but it's not urgent. ## Bug fixes - Authenticate slot migration client on source node to internal user ([#&#8203;2785](https://github.com/valkey-io/valkey/issues/2785)) - Bug fix: reset io\_last\_written on c->buf resize to prevent stale pointers ([#&#8203;2786](https://github.com/valkey-io/valkey/issues/2786)) - Sentinel: fix regression requiring "+failover" ACL in failover path ([#&#8203;2780](https://github.com/valkey-io/valkey/issues/2780)) - Cluster: Avoid usage of light weight messages to nodes with not ready bidirectional links ([#&#8203;2817](https://github.com/valkey-io/valkey/issues/2817)) - Send duplicate multi meet packet only for node which supports it in mixed clusters ([#&#8203;2840](https://github.com/valkey-io/valkey/issues/2840)) - Fix: LTRIM should not call signalModifiedKey when no elements are removed ([#&#8203;2787](https://github.com/valkey-io/valkey/issues/2787)) - Fix build on some 32-bit ARM by only using NEON on AArch64 ([#&#8203;2873](https://github.com/valkey-io/valkey/issues/2873)) - Fix deadlock in IO-thread shutdown during panic ([#&#8203;2898](https://github.com/valkey-io/valkey/issues/2898)) - Fix COMMANDLOG large-reply when using reply copy avoidance ([#&#8203;2652](https://github.com/valkey-io/valkey/issues/2652)) - Fix CLUSTER SLOTS crash when called from module timer callback ([#&#8203;2915](https://github.com/valkey-io/valkey/issues/2915)) **Full Changelog**: <https://github.com/valkey-io/valkey/compare/9.0.0...9.0.1> </details> --- ### Configuration 📅 **Schedule**: (in timezone America/Chicago) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My45OS4xIiwidXBkYXRlZEluVmVyIjoiNDMuMTA5LjEiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbImF1dG9tZXJnZSIsImRvY2tlciIsImRvY2tlciJdfQ==-->
renovate-bot added the docker label 2026-03-30 02:51:14 +00:00
renovate-bot changed title from chore(deps): update valkey docker tag to v0.5.0 to Update valkey Docker tag to v0.5.0 2026-04-03 18:10:36 +00:00
renovate-bot changed title from Update valkey Docker tag to v0.5.0 to chore(deps): update valkey docker tag to v0.5.0 2026-04-06 00:41:51 +00:00
renovate-bot changed title from chore(deps): update valkey docker tag to v0.5.0 to Update valkey Docker tag to v0.5.0 2026-04-06 05:36:15 +00:00
renovate-bot changed title from Update valkey Docker tag to v0.5.0 to chore(deps): update valkey docker tag to v0.5.0 2026-04-06 22:20:14 +00:00
renovate-bot changed title from chore(deps): update valkey docker tag to v0.5.0 to chore(deps): update valkey 2026-04-06 23:27:21 +00:00
renovate-bot added the automerge label 2026-04-06 23:27:21 +00:00
renovate-bot changed title from chore(deps): update valkey to Update valkey 2026-04-07 07:11:46 +00:00
renovate-bot changed title from Update valkey to chore(deps): update valkey 2026-04-07 16:46:22 +00:00
renovate-bot added 1 commit 2026-04-08 02:11:08 +00:00
chore(deps): update valkey/valkey docker tag to v9.0.3
All checks were successful
renovate/stability-days Updates have met minimum release age requirement
Details
lint-test-helm / lint-helm (pull_request) Successful in 31s
Details
lint-test-helm / validate-kubeconform (pull_request) Successful in 30s
Details
render-manifests / render-manifests (pull_request) Successful in 54s
Details
5456428592
renovate-bot force-pushed renovate/unified-valkey from 765d69e6c4 to 5456428592 2026-04-08 02:11:08 +00:00 Compare
renovate-bot changed title from chore(deps): update valkey to chore(deps): update valkey/valkey docker tag to v9.0.3 2026-04-08 02:11:08 +00:00
alexlebens merged commit 0a7bbf21bd into main 2026-04-08 02:14:25 +00:00
alexlebens deleted branch renovate/unified-valkey 2026-04-08 02:14:27 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
Renovate
Issue generated by Renovate.
 automerge
This PR will be automerged by Renovate.
 chart
Chart update generated by Renovate.
 docker
Docker update generated by Renovate.
github-actions
Github Action update generated by Renovate.
helm
Helm update generated by Renovate.
image
Image update generated by Renovate.
 stale
PR or Issue that has not been updated recently.
No Label automerge docker
Milestone
No items
No Milestone
Assignees
Clear assignees
gitea-bot renovate-bot alexlebens
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: alexlebens/infrastructure#5285
Delete Branch "renovate/unified-valkey"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?