Ehsan Saei
a66ee73c5a
OpenTelemetry static linking ( #9286 )
...
* static otel lib
* clean
* nginx 1.21
2022-11-14 11:50:43 -08:00
Joseph Richardson
f08369cdc6
Fixed indentation in commented-out autoscaling ( #9225 )
2022-11-13 11:29:56 -08:00
James Strong
3db3c19685
run helm release on main only and when the chart/value changes only ( #9290 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-11 07:00:10 -08:00
Michael Wittig
69a811dde9
fix broken annotation yaml ( #9243 )
2022-11-10 05:48:56 -08:00
Marco Ebert
170af7be88
PDB: Add maxUnavailable. ( #9278 )
2022-11-10 03:20:54 -08:00
pellmont
726d7e6239
add containerSecurityContext to extraModules init containers (kubernetes#9016) ( #9242 )
2022-11-10 02:38:54 -08:00
James Strong
63dbbdbb3a
udate readme, charts and static deploys for release 1.5.1 ( #9280 )
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-09 17:08:54 -08:00
James Strong
d003aae913
Merge pull request #9275 from strongjz/release-1.5.1
...
Add CVE-2022-27664 #9273 in latest release
2022-11-08 17:21:41 -05:00
James Strong
3bca5e9c19
missed CVE-2022-27664 #9273 in 1.5.0 build
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-08 15:48:44 -05:00
James Strong
70e21c5ac7
Merge pull request #9273 from esigo/fix-CVE-2022-27664
...
fix CVE-2022-27664
2022-11-08 15:32:29 -05:00
James Strong
bb5c964b0b
Merge pull request #9271 from strongjz/release-1.5.0
...
start 1.5.0 release
2022-11-08 11:55:59 -05:00
Oblivion
8949379931
fix CVE-2022-27664
2022-11-08 16:46:53 +00:00
James Strong
e03f8cc036
start 1.5.0 release
...
Signed-off-by: James Strong <strong.james.e@gmail.com>
2022-11-08 10:24:58 -05:00
Njegos Railic
4d4358f673
Adding support for disabling liveness and readiness probes in the Helm chart ( #9238 )
2022-11-08 06:44:25 -08:00
James Strong
cf00ec6099
Merge pull request #9261 from kubernetes/dependabot/go_modules/sigs.k8s.io/controller-runtime-0.13.1
...
Bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.13.1
2022-11-08 08:53:25 -05:00
dependabot[bot]
ae3c2464d6
Bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.13.1
...
Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime ) from 0.11.2 to 0.13.1.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases )
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md )
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.11.2...v0.13.1 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-08 00:00:34 +00:00
dependabot[bot]
644f05dd75
Bump aquasecurity/trivy-action from 0.7.1 to 0.8.0 ( #9264 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.7.1 to 0.8.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](d63413b0a4...9ab158e859
2022-11-07 15:52:16 -08:00
dependabot[bot]
6b22d5a744
Bump github/codeql-action from 2.1.29 to 2.1.31 ( #9263 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.29 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ec3cf9c605...c3b6fce4ee
2022-11-07 15:50:16 -08:00
dependabot[bot]
5cba77c2f9
Bump github.com/prometheus/client_golang from 1.13.0 to 1.13.1 ( #9262 )
...
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang ) from 1.13.0 to 1.13.1.
- [Release notes](https://github.com/prometheus/client_golang/releases )
- [Changelog](https://github.com/prometheus/client_golang/blob/v1.13.1/CHANGELOG.md )
- [Commits](https://github.com/prometheus/client_golang/compare/v1.13.0...v1.13.1 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-07 15:48:16 -08:00
Ehsan Saei
90a9d64575
Fix CVE-2022-1996 ( #9244 )
...
* CVE-2022-1996
* clean
* fix
* fix
2022-11-07 15:46:17 -08:00
Ehsan Saei
5a42ec4f35
Fix CVE-2022-32149 ( #9258 )
...
* Fix CVE-2022-32149
* fix CI
2022-11-07 15:44:17 -08:00
James Strong
4bd7e176d8
update base image of nginx to 1.21.6 ( #9257 )
...
* add workflow dispatch and update nginx base
Signed-off-by: James Strong <strong.james.e@gmail.com>
* e2e were failing, added a go mod tidy
Signed-off-by: James Strong <strong.james.e@gmail.com>
* e2e were failing, added a go mod tidy
Signed-off-by: James Strong <strong.james.e@gmail.com>
* push mod and sum from main
Signed-off-by: James Strong <strong.james.e@gmail.com>
* Update NGINX_BASE
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
2022-11-06 15:36:16 -08:00
Tomas Hulata
490ecffc52
fix svc long name ( #9245 )
...
Signed-off-by: tombokombo <tombo@sysart.tech>
Signed-off-by: tombokombo <tombo@sysart.tech>
2022-11-05 14:22:15 -07:00
dependabot[bot]
3c32413e30
Bump azure/setup-helm from 3.3 to 3.4 ( #9235 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 3.3 to 3.4.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Commits](b5b231a831...f382f75448
2022-11-04 09:58:14 -07:00
dependabot[bot]
cf4fb7d812
Bump actions/upload-artifact from 3.1.0 to 3.1.1 ( #9234 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](3cea537223...83fd05a356
2022-11-04 09:56:14 -07:00
dependabot[bot]
12c60288ff
Bump github.com/spf13/cobra from 1.6.0 to 1.6.1 ( #9233 )
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.6.0 to 1.6.1.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.6.0...v1.6.1 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-04 09:54:14 -07:00
dependabot[bot]
709e984ff6
Bump github/codeql-action from 2.1.28 to 2.1.29 ( #9236 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.28 to 2.1.29.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cc7986c02b...ec3cf9c605
2022-11-04 09:52:15 -07:00
dependabot[bot]
8c698778a3
Bump actions/dependency-review-action from 2.5.0 to 2.5.1 ( #9237 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fd675ced9c...0efb1d1d84
2022-10-31 09:24:45 -07:00
Jintao Zhang
0b5e068511
chore: update NGINX to 1.21.6 ( #9231 )
...
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
2022-10-31 07:10:45 -07:00
Jintao Zhang
bf8362cb50
chore: bump NGINX version v1.21.4 ( #8889 )
...
* chore: bump NGINX version v1.21.4
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
* chore: bump all others
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
* apply all patches
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
* fix files hash
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
* fix ajp module
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
2022-10-28 16:40:39 -07:00
Jaen
2488fb0064
Fix Markdown header level ( #9210 )
...
Cloud providers use level 4 headers.
2022-10-25 15:06:35 -07:00
Youssef Bel Mekki
ac1a3363bd
add:(admission-webhooks) ability to set securityContext for job-containers createSecret and patchWebhook ( #9186 )
...
Signed-off-by: ybelMekk <youssef.bel.mekki@nav.no>
Signed-off-by: ybelMekk <youssef.bel.mekki@nav.no>
2022-10-25 14:14:36 -07:00
Thomas Güttler
a383cfc551
fix typo in docs. ( #9167 )
2022-10-25 07:14:36 -07:00
dependabot[bot]
397003d7cc
Bump github.com/prometheus/client_model from 0.2.0 to 0.3.0 ( #9200 )
...
Bumps [github.com/prometheus/client_model](https://github.com/prometheus/client_model ) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/prometheus/client_model/releases )
- [Commits](https://github.com/prometheus/client_model/compare/v0.2.0...v0.3.0 )
---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-25 07:10:36 -07:00
dependabot[bot]
9216b7b099
Bump actions/download-artifact from 3.0.0 to 3.0.1 ( #9207 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](fb598a63ae...9782bd6a98
2022-10-24 13:28:35 -07:00
dependabot[bot]
f7c757c90b
Bump github/codeql-action from 2.1.27 to 2.1.28 ( #9206 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.1.27 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](807578363a...cc7986c02b
2022-10-24 13:26:36 -07:00
dependabot[bot]
60dc84476b
Bump actions/setup-go from 3.3.0 to 3.3.1 ( #9205 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](268d8c0ca0...c4a742cab1
2022-10-24 13:24:34 -07:00
dependabot[bot]
951d8196e5
Bump docker/setup-buildx-action from 2.1.0 to 2.2.1 ( #9204 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2.1.0 to 2.2.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](95cb08cb26...8c0edbc76e
2022-10-24 13:22:34 -07:00
dependabot[bot]
f4cefedc93
Bump ossf/scorecard-action from 2.0.4 to 2.0.6 ( #9203 )
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](e363bfca00...99c53751e0
2022-10-24 13:20:35 -07:00
dependabot[bot]
a500a1ec8f
Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 ( #9202 )
...
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.0 to 1.8.1.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.0...v1.8.1 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 13:18:35 -07:00
dependabot[bot]
68bcb3761c
Bump goreleaser/goreleaser-action from 3.1.0 to 3.2.0 ( #9208 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](ff11ca24a9...b508e2e3ef
2022-10-24 13:08:24 -07:00
dependabot[bot]
f2ed5d17f6
Bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0 ( #9201 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.3.1 to 2.4.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.3.1...v2.4.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 05:10:26 -07:00
Kir Shatrov
84614b99c3
Implement parseFloat for annotations ( #9195 )
2022-10-20 12:57:25 -07:00
dependabot[bot]
5f2a79495a
Bump securego/gosec from 2.13.1 to 2.14.0 ( #9182 )
...
Bumps [securego/gosec](https://github.com/securego/gosec ) from 2.13.1 to 2.14.0.
- [Release notes](https://github.com/securego/gosec/releases )
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml )
- [Commits](19fa856bad...1af1d5bb49
2022-10-19 10:47:02 -07:00
dependabot[bot]
8a83748d0f
Bump docker/setup-qemu-action from 2.0.0 to 2.1.0 ( #9181 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](8b122486ce...e81a89b173
2022-10-19 10:45:02 -07:00
dependabot[bot]
98505a2c19
Bump actions/dependency-review-action from 2.4.0 to 2.5.0 ( #9179 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](375c537008...fd675ced9c
2022-10-19 10:43:02 -07:00
dependabot[bot]
2ebb6b9c73
Bump geekyeggo/delete-artifact from 1.0.0 to 2.0.0 ( #9178 )
...
Bumps [geekyeggo/delete-artifact](https://github.com/geekyeggo/delete-artifact ) from 1.0.0 to 2.0.0.
- [Release notes](https://github.com/geekyeggo/delete-artifact/releases )
- [Commits](b73cb98674...54ab544f12
2022-10-19 10:41:01 -07:00
dependabot[bot]
c18cb467aa
Bump github.com/onsi/ginkgo/v2 from 2.2.0 to 2.3.1 ( #9177 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.2.0 to 2.3.1.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.2.0...v2.3.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-19 10:39:03 -07:00
dependabot[bot]
9f1e0fddad
Bump github.com/fsnotify/fsnotify from 1.5.4 to 1.6.0 ( #9176 )
...
Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify ) from 1.5.4 to 1.6.0.
- [Release notes](https://github.com/fsnotify/fsnotify/releases )
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md )
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.5.4...v1.6.0 )
---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-19 10:37:02 -07:00
dependabot[bot]
7dd4a6eb00
Bump k8s.io/component-base from 0.25.2 to 0.25.3 ( #9175 )
...
Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base ) from 0.25.2 to 0.25.3.
- [Release notes](https://github.com/kubernetes/component-base/releases )
- [Commits](https://github.com/kubernetes/component-base/compare/v0.25.2...v0.25.3 )
---
updated-dependencies:
- dependency-name: k8s.io/component-base
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-19 10:35:04 -07:00
