0c36aa0904
Merge pull request #1508 from fluxcd/external-artifact
...
[RFC-0012] Add support for `ExternalArtifact` source type
2025-09-06 09:46:08 +03:00
5329f56881
Add ExternalArtifact feature gate
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-05 23:45:26 +03:00
049a805992
Implement ExternalArtifact reconciliation
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-05 00:02:43 +03:00
3d6179cc99
Import ExternalArtifact CRD
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-04 21:31:21 +03:00
2e1ef03389
Merge pull request #1507 from fluxcd/ignore-components
...
Add `.spec.ignoreMissingComponents` field to Kustomization API
2025-09-04 20:55:59 +03:00
afdc58cd48
Add `.spec.ignoreMissingComponents` field to Kustomization API
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-04 20:12:13 +03:00
9c41b0649d
Merge pull request #1505 from fluxcd/otel-v1.38.0
...
Update otel packages to v1.38.0
2025-09-03 20:00:35 +03:00
493fbfee62
Update otel packages to v1.38.0
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-03 18:41:50 +03:00
f83bc52441
Merge pull request #1492 from fluxcd/dependabot/go_modules/github.com/docker/docker-28.3.3incompatible
...
Bump github.com/docker/docker from 28.2.2+incompatible to 28.3.3+incompatible
2025-09-02 19:15:17 +03:00
4dc270e06c
Bump github.com/docker/docker
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 28.2.2+incompatible to 28.3.3+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v28.2.2...v28.3.3 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-version: 28.3.3+incompatible
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-02 15:58:33 +00:00
ca604f3389
Merge pull request #1502 from fluxcd/status-history
...
Track reconciliation attempts over time in `.status.history`
2025-09-01 10:46:49 +03:00
cf3e7b7204
Add `.status.history` to the API docs
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-01 10:35:42 +03:00
e722bbbf50
Implement reconciliation history tracking
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-01 10:35:39 +03:00
f133b50872
api: Add reconciliation history to Kustomization status
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-09-01 10:35:38 +03:00
6b2e5e8729
Merge pull request #1504 from fluxcd/dependabot/github_actions/ci-1dcc4b39f8
...
Bump the ci group across 1 directory with 11 updates
2025-09-01 09:31:03 +03:00
0f1d6864e9
Bump the ci group across 1 directory with 11 updates
...
Bumps the ci group with 11 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `4.2.2` | `5.0.0` |
| [korthout/backport-action](https://github.com/korthout/backport-action ) | `3.2.0` | `3.3.0` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.10.0` | `3.11.1` |
| [actions/cache](https://github.com/actions/cache ) | `4.2.3` | `4.2.4` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.17.0` | `6.18.0` |
| [docker/login-action](https://github.com/docker/login-action ) | `3.4.0` | `3.5.0` |
| [docker/metadata-action](https://github.com/docker/metadata-action ) | `5.7.0` | `5.8.0` |
| [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) | `3.8.2` | `3.9.2` |
| [anchore/sbom-action](https://github.com/anchore/sbom-action ) | `0.20.0` | `0.20.5` |
| [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) | `6.3.0` | `6.4.0` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.18` | `3.29.11` |
Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](11bd71901b...08c6903cd8https://github.com/korthout/backport-action/releases )
- [Commits](436145e922...ca4972adcehttps://github.com/docker/setup-buildx-action/releases )
- [Commits](b5ca514318...e468171a9dhttps://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](5a3ec84eff...0400d5f644https://github.com/docker/build-push-action/releases )
- [Commits](1dc7386353...263435318dhttps://github.com/docker/login-action/releases )
- [Commits](74a5d14239...184bdaa072https://github.com/docker/metadata-action/releases )
- [Commits](902fa8ec7d...c1e51972afhttps://github.com/sigstore/cosign-installer/releases )
- [Commits](3454372f43...d58896d6a1https://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](e11c554f70...da167eac91https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](9c156ee8a1...e435ccd777https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ff0a06e83c...3c3833e0f8
2025-09-01 06:14:24 +00:00
2e9eb7c9fd
Merge pull request #1501 from fluxcd/k8s-1.34
...
Update to Kubernetes v1.34.0 and Go 1.25.0
2025-08-30 16:24:32 +03:00
7a399d5ec7
Build with Go 1.25
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-08-30 15:52:33 +03:00
177f19c460
Regenerate CRDs with controller-gen v0.19
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-08-30 15:49:51 +03:00
57eaa2ea00
Update dependencies to Kubernetes v1.34.0
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-08-30 15:46:49 +03:00
44cddcb72d
Merge pull request #1497 from cappyzawa/feat/object-level-config-validation
...
Add object-level configuration validation
2025-08-17 17:13:32 +01:00
eacc2a05a8
Add object-level configuration validation
...
Validates that ObjectLevelWorkloadIdentity feature gate is enabled
when default service account flags are set. This prevents
misconfiguration where lockdown flags are used without enabling
the required feature gate.
Signed-off-by: cappyzawa <cappyzawa@gmail.com>
2025-08-18 00:44:51 +09:00
e7aaaf2a3e
Merge pull request #1495 from cappyzawa/rfc-0010-multi-tenancy-lockdown
...
[RFC-0010] Add multi-tenancy lockdown for decryption and kubeconfig
2025-08-17 09:29:22 +01:00
c5f0efdced
[RFC-0010] Add multi-tenancy lockdown for decryption and kubeconfig
...
Adds two new controller flags to enforce ServiceAccount usage in
multi-tenant clusters where administrators need to lock down workload
identity access:
- --default-decryption-service-account
- --default-kubeconfig-service-account
These flags complement the existing --default-service-account flag to
provide complete multi-tenancy lockdown coverage for all three classes
of ServiceAccount fields in the Kustomization API.
Signed-off-by: cappyzawa <cappyzawa@gmail.com>
2025-08-17 17:11:50 +09:00
aaad1e033e
Merge pull request #1494 from fluxcd/remove-v1beta1-api
...
Remove deprecated APIs in group `kustomize.toolkit.fluxcd.io/v1beta1`
2025-08-11 17:54:18 +03:00
c8b9d82b71
Remove deprecated APIs in group `kustomize.toolkit.fluxcd.io/v1beta1`
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-08-08 14:43:29 +03:00
60b8f86f49
Merge pull request #1491 from fluxcd/feat-dependon-cel
...
Extend the readiness evaluation of dependencies with CEL expressions
2025-07-29 08:28:26 +03:00
fd63b520d5
controller: Move manager to a dedicated file
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-22 20:43:14 +03:00
d17e5d2514
docs: Add dependency ready expression to API docs
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-22 20:24:03 +03:00
e0e6e22272
controller: Implement CEL evaluation for dependency checks
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-22 20:23:58 +03:00
c2754dd5de
controller: Add `AdditiveCELDependencyCheck` feature gate
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-22 12:57:52 +03:00
5edcf5b394
api: Add the `readyExpr` field to `dependsOn`
...
Extend the readiness evaluation of dependencies with CEL expressions
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-22 12:57:08 +03:00
8ec3ec388d
Merge pull request #1488 from fluxcd/restconfig-azure-cloud
...
[RFC-0010] Support all Azure clouds for remote clusters at the controller level
2025-07-18 08:25:47 +01:00
0c48a16ede
[RFC-0010] Support all Azure clouds for remote clusters at the controller level
...
Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
2025-07-18 08:10:19 +01:00
c48ffbef1c
Merge pull request #1486 from fluxcd/watch-label
...
Introduce label selector for watching ConfigMaps and Secrets
2025-07-17 10:40:05 +01:00
2dcec193bb
Introduce label selector for watching ConfigMaps and Secrets
...
Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
2025-07-17 10:29:26 +01:00
b4d23e756f
Merge pull request #1487 from fluxcd/fix-substitute-doc
...
docs: Clarify `substituteFrom` overwrite order
2025-07-17 09:34:20 +03:00
2fb1fa3890
docs: Clarify `substituteFrom` overwrite order
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-17 09:00:56 +03:00
ba3c16aa45
Merge pull request #1476 from fluxcd/restconfig
...
[RFC-0010] Introduce workload identity auth for remote clusters
2025-07-14 18:45:25 +01:00
2fb1482f71
[RFC-0010] Introduce workload identity auth for remote clusters
...
Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
2025-07-14 16:47:26 +01:00
52170876d5
Merge pull request #1484 from fluxcd/ssa-staged
...
Refactor reconciler to use `ssa.ApplyAllStaged`
2025-07-08 20:25:06 +03:00
1476042b1e
Refactor reconciler to use `ssa.ApplyAllStaged`
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2025-07-08 19:42:12 +03:00
f479c3e1f6
Merge pull request #1483 from fluxcd/pick-changelog-v1.6.1
...
Add changelog entry for v1.6.1
2025-07-08 10:14:48 +01:00
bc4756a38f
Add changelog entry for v1.6.1
...
Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
(cherry picked from commit 2333a7413c
2025-07-08 10:02:19 +01:00
5703d47395
Merge pull request #1481 from fluxcd/global-secret-based-decryption
...
Introduce global decryption for SOPS age keys
2025-07-07 11:25:31 +01:00
30275f2615
Introduce global decryption for SOPS age keys
...
Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
2025-07-06 19:24:22 +01:00
a342d00602
Merge pull request #1478 from fluxcd/fix-1477
...
Fix regression in STS endpoint for SOPS decryption with AWS KMS in US Gov partition
2025-07-03 17:53:50 +01:00
4623a38989
Fix regression in STS endpoint for SOPS decryption with AWS KMS in US Gov partition
...
Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
2025-07-03 17:39:11 +01:00
124402b53a
Merge pull request #1472 from dgunzy/bump-ssa-v0.49.0
...
Bump pkg/ssa to v0.49.0 for CABundle validation fix
2025-06-29 16:56:18 +01:00
8e90ab8008
Bump pkg/ssa to v0.49.0 for CABundle validation fix
...
Includes fix for #800 : Remove CABundle from CRDs if cert is invalid
Signed-off-by: Daniel Guns <danbguns@gmail.com>
2025-06-29 12:39:09 -03:00
Stefan Prodan
dependabot[bot]
Matheus Pimenta
cappyzawa
Daniel Guns