fluxcd
/
source-controller
mirror of https://github.com/fluxcd/source-controller.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,361 Commits 28 Branches 272 Tags 16 MiB
Commit Graph

2361 Commits

Author SHA1 Message Date
Hidde Beydals ccae76f3ea
build: update Alpine to 3.19 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-12-11 09:18:21 +01:00
Hidde Beydals e7a1af96b8
Merge pull request #1311 from fluxcd/pick-changelog-v1.2.1 
Add changelog entry for v1.2.1
 2023-12-11 09:17:59 +01:00
Hidde Beydals 8d92bbbed2
Add changelog entry for v1.2.1 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
(cherry picked from commit 13f43b8201)
 2023-12-11 09:16:35 +01:00
Stefan Prodan 55b5e7d28d
Merge pull request #1313 from fluxcd/dependabot/github_actions/ci-72c9c0b121 
build(deps): bump the ci group with 5 updates
 2023-12-11 08:47:15 +01:00
dependabot[bot] 7af8651501
build(deps): bump the ci group with 5 updates 
Bumps the ci group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [korthout/backport-action](https://github.com/korthout/backport-action) | `2.1.1` | `2.2.0` |
| [actions/setup-go](https://github.com/actions/setup-go) | `4.1.0` | `5.0.0` |
| [docker/metadata-action](https://github.com/docker/metadata-action) | `5.2.0` | `5.3.0` |
| [anchore/sbom-action](https://github.com/anchore/sbom-action) | `0.15.0` | `0.15.1` |
| [github/codeql-action](https://github.com/github/codeql-action) | `2.22.8` | `2.22.9` |


Updates `korthout/backport-action` from 2.1.1 to 2.2.0
- [Release notes](https://github.com/korthout/backport-action/releases)
- [Commits](08bafb375e...b982d297e3)

Updates `actions/setup-go` from 4.1.0 to 5.0.0
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](93397bea11...0c52d547c9)

Updates `docker/metadata-action` from 5.2.0 to 5.3.0
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](e6428a5c4e...31cebacef4)

Updates `anchore/sbom-action` from 0.15.0 to 0.15.1
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Commits](fd74a6fb98...5ecf649a41)

Updates `github/codeql-action` from 2.22.8 to 2.22.9
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](407ffafae6...c0d1daa7f7)

---
updated-dependencies:
- dependency-name: korthout/backport-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: ci
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-11 02:25:47 +00:00
Hidde Beydals a83cb5cb78
Merge pull request #1308 from fluxcd/update-deps 
Update dependencies
 2023-12-08 09:30:29 +01:00
Hidde Beydals 4e6cef5075
Update dependencies 
- github.com/sigstore/cosign/v2 to v2.2.2
- google.golang.org/api to v0.153.0

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-12-08 09:17:10 +01:00
Sanskar Jaiswal b983b1a084
Merge pull request #1307 from fluxcd/backport-release-v1.2.x-label 
add `backport:release/v1.2.x` label
 2023-12-06 12:34:00 +05:30
Sanskar Jaiswal e61d80cc1d
add `backport:release/v1.2.x` label 
Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-12-06 11:42:27 +05:30
Sanskar Jaiswal c9d5be8cef
Merge pull request #1306 from fluxcd/release/v1.2.x 
Housekeeping: merge release/v1.2.x back into main
 2023-12-05 22:52:09 +05:30
Sanskar Jaiswal 452c308db4
Merge pull request #1305 from fluxcd/release-v1.2.0 
Release v1.2.0
 2023-12-05 22:26:16 +05:30
Sanskar Jaiswal 8700ca921d
Release v1.2.0 
Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-12-05 22:17:27 +05:30
Sanskar Jaiswal 677b62b3cf
Add changelog entry for v1.2.0 
Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-12-05 22:17:25 +05:30
Sanskar Jaiswal 00a71ad437
Merge pull request #1304 from fluxcd/update-deps 
Update Go dependencies
 2023-12-05 17:20:23 +05:30
Sanskar Jaiswal 2c6bd26ca2
Update Go dependencies 
Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-12-05 15:54:28 +05:30
Max Jonas Werner 1a51af280d
Merge pull request #1303 from fluxcd/dependabot/github_actions/ci-6a3fdc2cae 
build(deps): bump the ci group with 1 update
 2023-12-04 13:36:11 +01:00
dependabot[bot] e2da8c5b26
build(deps): bump the ci group with 1 update 
Bumps the ci group with 1 update: [docker/metadata-action](https://github.com/docker/metadata-action).

- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](96383f4557...e6428a5c4e)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-12-04 02:08:13 +00:00
Stefan Prodan 26595684f5
Merge pull request #1300 from fluxcd/go-git-v5.10.1 
Update Git dependencies
 2023-12-01 11:37:51 +02:00
Stefan Prodan 7df2d25495
Update Git dependencies 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-12-01 11:21:34 +02:00
Stefan Prodan 41c44b71a2
Merge pull request #1301 from somtochiama/fix-minio-chart 
Use bitnami MInio oci chart for e2e
 2023-11-30 17:02:05 +02:00
Somtochi Onyekwere 0f58d251e9 increase timeout 
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
 2023-11-30 14:29:35 +01:00
Somtochi Onyekwere 211fbaacb1 use bitnami oci chart for minio 
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
 2023-11-30 14:26:25 +01:00
Sanskar Jaiswal 99e5fe790a
Merge pull request #1299 from fluxcd/oci-insecure-fix 
oci: rename `OCIChartRepository.insecure` to `insecureHTTP`
 2023-11-30 17:10:26 +05:30
Sanskar Jaiswal 6a88d10bf1
oci: rename `OCIChartRepository.insecure` to `insecureHTTP` 
Rename `OCIChartRepository.insecure` to `OCIChartRepository.insecureHTTP` in
`internal/helm/repository` to match the code docs and the related setter
method.

Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-11-28 18:44:35 +05:30
Max Jonas Werner dc79750fbb
Merge pull request #1296 from fluxcd/dependabot/github_actions/ci-9cf97fb57d 
build(deps): bump the ci group with 3 updates
 2023-11-27 08:42:59 +01:00
dependabot[bot] a9e7ec4dd8
build(deps): bump the ci group with 3 updates 
Bumps the ci group with 3 updates: [anchore/sbom-action](https://github.com/anchore/sbom-action), [fossa-contrib/fossa-action](https://github.com/fossa-contrib/fossa-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `anchore/sbom-action` from 0.14.3 to 0.15.0
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Commits](78fc58e266...fd74a6fb98)

Updates `fossa-contrib/fossa-action` from 2.0.0 to 3.0.0
- [Release notes](https://github.com/fossa-contrib/fossa-action/releases)
- [Changelog](https://github.com/fossa-contrib/fossa-action/blob/master/CHANGELOG.md)
- [Commits](6728dc6fe9...cdc5065bcd)

Updates `github/codeql-action` from 2.22.7 to 2.22.8
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](66b90a5db1...407ffafae6)

---
updated-dependencies:
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: fossa-contrib/fossa-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-27 02:30:23 +00:00
Stefan Prodan bd95d35ee3
Merge pull request #1288 from fluxcd/helm-repo-insecure 
Add `.spec.insecure` to `HelmRepository` for `type: oci`
 2023-11-23 10:18:15 +02:00
Sanskar Jaiswal 4086c25acb
helmrepo: allow OCI helmrepos to connect to insecure registries 
Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-11-23 12:32:14 +05:30
Stefan Prodan 6e78779720
Add `.spec.insecure` to `HelmRepository` 
Allow connecting to Helm OCI repositories over plain HTTP (non-TLS endpoint).

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-11-23 12:05:37 +05:30
Stefan Prodan 936cfd6716
Merge pull request #1243 from fluxcd/helmrepo-oci-static 
Static HelmRepository OCI
 2023-11-22 19:16:51 +02:00
Sunny 1a7adeb801 Fix helmrepo reconciler unfinished worker bug 
Although all the APIs had interval as a required field, when tests
objects were created, they had the zero value of interval, which the API
server accepts. A zero interval value results in the test objects to
reconcile only once when they are created and never reconcile again
unless there's an update to the object. Most of the tests worked with
this behavior.

With HelmRepository removing the interval requirement and adding an
internal default, all the HelmRepository objects created in the tests
without any interval have a default interval value which results in
objects to reconcile automatically if they are not cleaned up after
running tests. TestHelmRepositoryReconciler_InMemoryCaching and
TestHelmChartReconciler_Reconcile create HelmRepository but doesn't
delete it at the end. This leads to a reconciliation of HelmRepository
outside of the test in the envtest environment. It just happened to be
that the reconciliation time matches with the end of test time. At the
end of the test run, the reconcilers receive shutdown signal and any
test server, like helmrepository server, are stopped. A HelmRepository
reconciliation triggered just before the shutdown signal gets stuck in
the reconciliation. HelmRepository can't download the index as the test
index server has stopped and hangs for some time. The HelmRepository
reconciler worker remains in active state, unlike other reconciler
workers that shut down, resulting in the test to timeout at the end.

The is fixed by deleting the HelmRepository object created in
TestHelmRepositoryReconciler_InMemoryCaching and
TestHelmChartReconciler_Reconcile at the end of the test similar to
other tests.

Signed-off-by: Sunny <darkowlzz@protonmail.com>
 2023-11-22 21:05:57 +05:30
Sunny 3dacb3140e optional interval and default timeout for helmrepo 
With static HelmRepository OCI, the interval become optional. Make
interval optional in the API. Introduce getters for interval, in the
form of GetRequeueAfter(), and timeout with internal default values.

HelmRepository will not have interval and timeout fields unless it's
explicitly set.

Signed-off-by: Sunny <darkowlzz@protonmail.com>
 2023-11-22 21:05:57 +05:30
Sunny b518499857 Update HelmRepository OCI spec doc 
Signed-off-by: Sunny <darkowlzz@protonmail.com>
 2023-11-22 21:05:57 +05:30
Sunny cf3735e2a2 Static helmrepository OCI 
Remove the HelmRepositoryOCI reconciler and make HelmRepository of type
OCI static. The existing HelmRepository OCI objects are migrated to
static object by removing their finalizers and status. New
HelmRepository OCI objects go through one time migration to remove the
status. These are not reconciled again, unless the type is changed to
default. On type switching from HelmRepository default to OCI, the
finalizer, status and artifact are removed to make the object static. On
switching from OCI to default, a complete reconciliation of
HelmRepository takes place to build artifact and add status and
finalizer.

The HelmRepository .spec.url has a new validation to check the URL
scheme. This is to add some validation to HelmRepository OCI since it's
not backed by a reconciler for full validation.

Add HelmRepositoryOCIMigrationPredicate predicate to detect and allow
reconciliation of HelmRepository OCI objects that need migration. The
other predicates that filtered the HelmRepository events based on the
type have been removed as all the HelmRepositories will now be
reconciled by a single reconciler. HelmRepositoryOCIMigrationPredicate
readily allows non-OCI objects and only checks if a migration is needed
for OCI type object.

Add controller tests for different migration scenarios.

Signed-off-by: Sunny <darkowlzz@protonmail.com>
 2023-11-22 21:05:51 +05:30
Max Jonas Werner f54a59c60b
Merge pull request #1291 from fluxcd/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.1 
build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1
 2023-11-22 11:46:17 +01:00
dependabot[bot] daa2166d6e
build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 
Bumps [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/go-jose/go-jose/releases)
- [Changelog](https://github.com/go-jose/go-jose/blob/v3/CHANGELOG.md)
- [Commits](https://github.com/go-jose/go-jose/compare/v3.0.0...v3.0.1)

---
updated-dependencies:
- dependency-name: github.com/go-jose/go-jose/v3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-22 08:44:48 +00:00
Stefan Prodan 76c78b87a4
Merge pull request #1289 from fluxcd/generic-secret 
helmrepo: only configure tls login option when required
 2023-11-22 08:45:34 +02:00
Sanskar Jaiswal dfcede03f2
helmrepo: only configure tls login option when required 
Modify `GetHelmClientOpts()` to only configure the TLS login option when
an authentication login option is configured. This prevents the
reconciler from trying to authenticate against public registries.

Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-11-22 10:05:45 +05:30
Stefan Prodan 9ae35e98e5
Merge pull request #1286 from fluxcd/k8s-1.28 
Update dependencies to Kubernetes v1.28
 2023-11-21 10:29:41 +02:00
Stefan Prodan bfa59f5563
Update `tonistiigi/xx` to v1.3.0 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-11-21 10:17:12 +02:00
Stefan Prodan 2feec3198b
Build with Go 1.21 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-11-20 17:20:08 +02:00
Stefan Prodan 71806b51ed
Update sigstore/cosign to v2.2.1 
Fix CVE-2023-46737

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-11-20 17:04:45 +02:00
Stefan Prodan 58828350d5
Update dependencies to Kubernetes 1.28 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-11-20 16:50:44 +02:00
Max Jonas Werner af162947d5
Merge pull request #1285 from fluxcd/dependabot/github_actions/ci-4c0557044b 
build(deps): bump the ci group with 2 updates
 2023-11-20 08:08:47 +01:00
dependabot[bot] 9df76cf451
build(deps): bump the ci group with 2 updates 
Bumps the ci group with 2 updates: [docker/build-push-action](https://github.com/docker/build-push-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `docker/build-push-action` from 5.0.0 to 5.1.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](0565240e2d...4a13e500e5)

Updates `github/codeql-action` from 2.22.5 to 2.22.7
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](74483a38d3...66b90a5db1)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-20 02:50:35 +00:00
Max Jonas Werner bf2c30f472
Merge pull request #1281 from fluxcd/dependabot/github_actions/ci-da8bbba46e 
build(deps): bump the ci group with 2 updates
 2023-11-13 08:52:00 +01:00
dependabot[bot] 60c9a3319f
build(deps): bump the ci group with 2 updates 
Bumps the ci group with 2 updates: [korthout/backport-action](https://github.com/korthout/backport-action) and [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer).


Updates `korthout/backport-action` from 2.1.0 to 2.1.1
- [Release notes](https://github.com/korthout/backport-action/releases)
- [Commits](cb79e4e5f4...08bafb375e)

Updates `sigstore/cosign-installer` from 3.1.2 to 3.2.0
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](11086d2504...1fc5bd396d)

---
updated-dependencies:
- dependency-name: korthout/backport-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-11-13 02:37:22 +00:00
Max Jonas Werner 8b0eccd322
Merge pull request #1271 from fluxcd/upgrade-git-gogit 
Upgrade `go-git` to v5.10.0
 2023-11-09 12:10:17 +01:00
Max Jonas Werner bbfe866796
Upgrade pkg/{git,git/gogit} and go-git/go-git 
fixes #1239

Signed-off-by: Max Jonas Werner <mail@makk.es>
 2023-11-08 12:01:29 +01:00
Hidde Beydals 3ab56ae4c8
Merge pull request #1276 from fluxcd/default-file-perms 
storage: change default file permissions
 2023-11-06 12:46:10 +01:00