Release argo-rollouts 1.6.1 (#35)

* chore(argo-workflows): Upgrade to Argo Workflows v3.4.10 (argoproj#2220)

* feat(argo-workflows): add imagePullSecret for workflow sa (argoproj#2226)

Signed-off-by: Fuochi <[email protected]>

* chore(argo-workflows): update comment for azure artifact repository blobNameFormat (argoproj#2229)

* chore(argo-cd): Upgrade Argo CD to v2.8.1 (argoproj#2230)

Signed-off-by: yu-croco <[email protected]>

* chore(argo-cd): Upgrade Argo CD to v2.8.2 (argoproj#2231)

Signed-off-by: yu-croco <[email protected]>

* fix(argo-cd): Fix applicationSet HA examples in README.md (argoproj#2232)

Signed-off-by: Joonas Venäläinen <[email protected]>

* chore(deps): bump actions/checkout from 3.5.3 to 3.6.0 (argoproj#2234)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@c85c95e...f43a0e5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore(argo-cd): Upgrade redis-exporter to 1.53.0 (argoproj#2236)

Signed-off-by: Petr Drastil <[email protected]>
Co-authored-by: Aikawa <[email protected]>

* chore(argo-cd): Remove support for legacy cert-manager APIs (argoproj#2238)

* chore(argo-cd): Remove support for legacy cert-manager APIs

Signed-off-by: Petr Drastil <[email protected]>

* Bump minor version

Signed-off-by: Petr Drastil <[email protected]>

---------

Signed-off-by: Petr Drastil <[email protected]>

* chore(argo-cd): Remove support for autoscaling/v1 (argoproj#2237)

Signed-off-by: Petr Drastil <[email protected]>

* chore(argo-events): Upgrade argo-events to 1.8.1 (argoproj#2247)

https://github.com/argoproj/argo-events/releases/tag/v1.8.1

Signed-off-by: jmeridth <[email protected]>

* fix(argo-cd): Update values.yaml - update custom css styles side bar example (argoproj#2245)

* Update values.yaml - update custom css styles side barexample

.nav-bar is no longer the css class name

Signed-off-by: JesseBot <[email protected]>

* Update Chart.yaml - update patch version for values.yaml comment update

Signed-off-by: JesseBot <[email protected]>

* Update Chart.yaml - update change log

Signed-off-by: JesseBot <[email protected]>

---------

Signed-off-by: JesseBot <[email protected]>

* chore(argo-rollouts): Upgrade Argo Rollouts to v1.6.0 (argoproj#2252)

* chore(argo-rollouts): Upgrade Argo Rollouts to v1.6.0

Signed-off-by: Gustav Kofoed Clausen <[email protected]>

* chore(argo-rollouts): Update CRDs to matching version

Signed-off-by: Gustav Kofoed Clausen <[email protected]>

---------

Signed-off-by: Gustav Kofoed Clausen <[email protected]>
Co-authored-by: Gustav Kofoed Clausen <[email protected]>

* fix(argo-cd): Make the PathType configurable when using single ingress resource in AWS (argoproj#2251)

* Make the PathType configurable when using single ingress resource in AWS

Signed-off-by: Tamas <[email protected]>

* update chart version and doc

Signed-off-by: Tamas <[email protected]>

* Fix reference to value in range

Signed-off-by: Tamas <[email protected]>

---------

Signed-off-by: Tamas <[email protected]>
Co-authored-by: Tamas <[email protected]>

* chore(argo-cd): Upgrade Argo CD to v2.8.3 (argoproj#2254)

Signed-off-by: Alexej Disterhoft <[email protected]>

* chore(argo-workflows): Upgrade Argo Workflows to v3.4.11 (argoproj#2255)

* fix(argo-cd): Restart Repo Server and Application Controller as following the change of Argo CD CM (argoproj#2235)

* fix(argo-cd): Restart Repo Server and Application Controller as following the change of Argo CD CM

Signed-off-by: yu-croco <[email protected]>

* fix(argo-cd): Aligne condition to argocd-cm

Signed-off-by: yu-croco <[email protected]>

---------

Signed-off-by: yu-croco <[email protected]>

* docs(argo-cd): Document scheduling parameters for redis-ha (argoproj#2253)

Signed-off-by: Petr Drastil <[email protected]>

* feat(argo-cd): adds toggle for helm-working-dir (argoproj#2249)

- Adds a toggle to be able to turn off the helm-working-dir for the
  repo server deployment. Using a shared helm repo storage directory can
  cause issues when multiple helm commands are being run in parallel.
  The repo server also has the ability to rebuild the repos and do
  updates in the normal flow for checking the status of an application
  so it won't cause issues if it's disabled.

Signed-off-by: Andrew Hamilton <[email protected]>

* chore(deps): bump actions/checkout from 3.6.0 to 4.0.0 (argoproj#2258)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@f43a0e5...3df4ab1)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 (argoproj#2259)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@0b7f8ab...a8a3f3a)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Aikawa <[email protected]>

* docs(argo-workflows): add an HA section (argoproj#2183)

* feat(argo-workflows): add a sample HA config

- a `values-ha.yaml` as an example for how one would set-up HA according to the Argo Workflows docs

Signed-off-by: Anton Gilgur <[email protected]>

* docs(argo-workflows): add an HA section

- plus add a test for HA, which the docs link to as an example
- link back to [upstream docs](https://argoproj.github.io/argo-workflows/high-availability/) as well

- follow the same basic structure as the [Argo CD chart for HA](https://github.com/argoproj/argo-helm/blob/3e35b0c7f7d758d553b17f369cc5940484ef5d89/charts/argo-cd/README.md?plain=1#L17)
  - as asked in review

Signed-off-by: Anton Gilgur <[email protected]>

---------

Signed-off-by: Anton Gilgur <[email protected]>
Signed-off-by: Anton Gilgur <[email protected]>
Co-authored-by: Aikawa <[email protected]>

* fix(argo-cd): Migrate leftover of applicationSet.replicaCount to applicationSet.replicas (argoproj#2261)

Signed-off-by: yu-croco <[email protected]>

* docs(argo-cd): improve changelog (argoproj#2262)

* clarify 5.19.0 changes
* revise wording

Signed-off-by: Josh Soref <[email protected]>

* fix(github): Fix changelog spelling of versions (argoproj#2263)

Signed-off-by: Josh Soref <[email protected]>
Co-authored-by: Aikawa <[email protected]>

* chore(argo-cd): Upgrade Argo CD to v2.8.4 (argoproj#2268)

* fix(argo-cd): Align redis-ha's affinity type to upstream due to warnings (argoproj#2270)

Signed-off-by: yu-croco <[email protected]>

* chore(deps): bump docker/login-action from 2.2.0 to 3.0.0 (argoproj#2271)

* fix(argo-cd): make ServiceMonitor annotations in ArgoCD server conditional (argoproj#2273)

* fix: add argocd servicemonitor annotations conditionally
Signed-off-by: Mats Willemsen <[email protected]>

* chore(argo-cd): add changelog

Signed-off-by: Mats Willemsen <[email protected]>

---------

Signed-off-by: Mats Willemsen <[email protected]>

* fix(argo-cd): Add checksum for CMP ConfigMap in repo-server Pod annotations (argoproj#2275)

Add checksum for CMP ConfigMap in repo-server

This helm chart defines the plugins as ConfigMaps -- according to the docs, when the CM is modified, the repo-server Pod must be restarted to have the sidecars pick up the latest changes:

https://argo-cd.readthedocs.io/en/stable/operator-manual/config-management-plugins/#debugging-a-cmp

The changes in this helm chart allow for a checksum to be calculated from the ConfigMap and added as a Pod annotation so whenever the CM values are modified, the Pod is restarted automatically.

Signed-off-by: sibucan <[email protected]>

* fix(argo-cd): Redis to 7.0.13 to fix CVE-2022-48174 (argoproj#2279)

* Redis to 7.0.13

Signed-off-by: Pieter van der Giessen <[email protected]>

* changelog

Signed-off-by: Pieter van der Giessen <[email protected]>

---------

Signed-off-by: Pieter van der Giessen <[email protected]>

* chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (argoproj#2280)

Bumps [actions/checkout](https://github.com/actions/checkout) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@3df4ab1...8ade135)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore(deps): bump amannn/action-semantic-pull-request from 5.2.0 to 5.3.0 (argoproj#2284)

* chore(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 (argoproj#2290)

* chore(deps): bump actions/setup-python from 4.7.0 to 4.7.1 (argoproj#2289)

* fix(argo-cd): Sync redis / redis-ha readOnlyRootFilesystem from upstream (argoproj#2294)

Signed-off-by: Marco Maurer <[email protected]>

* feat(argo-workflows): Configure declarative server auth mode (argoproj#2291)

* chore(argo-workflows): Upgrade argo-workflows to 3.5.0 (argoproj#2228)

Diff based on the rc1 branch currently here [3.4.10...3.5.0](argoproj/argo-workflows@v3.4.10...v3.5.0)

Signed-off-by: jmeridth <[email protected]>

* feat(argo-workflows): Added commonLabels (argoproj#2300)

* fix(argo-workflows): add all crds to aggregate-roles template (argoproj#2301)

fix: add all crds to aggregate-roles

Signed-off-by: Jonathan Raymond <[email protected]>

* chore(deps): bump actions/checkout from 4.1.0 to 4.1.1 (argoproj#2304)

* chore(argo-workflows): Add sample of PostgreSQL ssl entries in values.yaml (argoproj#2307)

Signed-off-by: yu-croco <[email protected]>

* feat(argo-workflows): Updated supported workers parameters (argoproj#2297)

* feat(argo-workflows): Updated supported workers parameters

Change
------
Based on argo-workflows [scaling documents](https://argoproj.github.io/argo-workflows/scaling/)
it's possible to set following workers values: `--workflow-workers`, `--workflow-ttl-workers`, `--pod-cleanup-workers`
and statring 3.5 `--cron-workflow-workers`. This change allows chart
consumers to take advatage of _all_ these parameters.

Testing
-------
```
helm upgrade argowf charts/argo-workflows -n argo --values charts/argo-workflows/values.yaml --create-namespace --debug | grep -A70 "Source: argo-workflows/templates/controller/workflow-controller-deployment.yaml" | grep workers

helm upgrade argowf charts/argo-workflows -n argo --values charts/argo-workflows/values.yaml --create-namespace --debug | grep -A70 "Source: argo-workflows/templates/controller/workflow-controller-deployment.yaml" | grep -A1 workers
          - "--workflow-workers"
          - "10"

helm upgrade argowf charts/argo-workflows -n argo --values charts/argo-workflows/values.yaml --create-namespace --debug | grep -A70 "Source: argo-workflows/templates/controller/workflow-controller-deployment.yaml" | grep -A1 workers
          - "--workflow-workers"
          - "10"
          - "--workflow-ttl-workers"
          - "20"

helm upgrade argowf charts/argo-workflows -n argo --values charts/argo-workflows/values.yaml --create-namespace --debug | grep -A70 "Source: argo-workflows/templates/controller/workflow-controller-deployment.yaml" | grep -A1 workers
          - "--workflow-workers"
          - "10"
          - "--workflow-ttl-workers"
          - "20"
          - "--pod-cleanup-workers"
          - "30"

helm upgrade argowf charts/argo-workflows -n argo --values charts/argo-workflows/values.yaml --create-namespace --debug | grep -A70 "Source: argo-workflows/templates/controller/workflow-controller-deployment.yaml" | grep -A1 workers
          - "--workflow-workers"
          - "10"
          - "--workflow-ttl-workers"
          - "20"
          - "--pod-cleanup-workers"
          - "30"
          - "--cron-workflow-workers"
          - "40"
```

Signed-off-by: Evgeny Khatko <[email protected]>
Signed-off-by: Evgeny Khatko <[email protected]>

* Addressing PR feedback.

Signed-off-by: Evgeny Khatko <[email protected]>

* newline

Signed-off-by: Tim Collins <[email protected]>

* Update Chart.yaml

Signed-off-by: Tim Collins <[email protected]>

* Update Chart.yaml

Signed-off-by: Tim Collins <[email protected]>

---------

Signed-off-by: Evgeny Khatko <[email protected]>
Signed-off-by: Evgeny Khatko <[email protected]>
Signed-off-by: Tim Collins <[email protected]>
Co-authored-by: Evgeny Khatko <[email protected]>
Co-authored-by: Tim Collins <[email protected]>

* fix(argo-rollouts): controller replicas count comparison (argoproj#2309)

* feat(argo-cd): add terminationGracePeriodSeconds (argoproj#2310)

Signed-off-by: toyamagu-2021 <[email protected]>

* chore(argo-cd): Upgrade Argo CD to v2.8.5 (argoproj#2313)

* chore(deps): bump ossf/scorecard-action from 2.3.0 to 2.3.1 (argoproj#2314)

* fix(argo-cd): Update Bitbucket SSH key (argoproj#2317)

Signed-off-by: Petr Drastil <[email protected]>

* feat(argo-cd): add notification cluster role (argoproj#2315)

* Add notification cluster role

Signed-off-by: drfaust92 <[email protected]>

* Add notification cluster role

Signed-off-by: drfaust92 <[email protected]>

* Add notification cluster role

Signed-off-by: drfaust92 <[email protected]>

* Add notification cluster role

Signed-off-by: drfaust92 <[email protected]>

---------

Signed-off-by: drfaust92 <[email protected]>

* fix(argo-rollouts): Update AnalysisRun CRD to match upstream (argoproj#2320)

* fix(github): update chart testing action due to failure (argoproj#2324)

Getting failure when running chart testing action pulling v2.0.0 from sigstore

Updating action to see if this helps

Signed-off-by: jmeridth <[email protected]>

* chore(argo-cd): Upgrade Argo CD to v2.8.6 (argoproj#2323)

* chore(argo-cd): Upgrade Argo CD to v2.8.6

Signed-off-by: Tim Collins <[email protected]>

* fix: drop unrecognized helm timeout

Signed-off-by: jmeridth <[email protected]>

---------

Signed-off-by: Tim Collins <[email protected]>
Signed-off-by: Jason Meridth <[email protected]>
Signed-off-by: jmeridth <[email protected]>
Co-authored-by: Jason Meridth <[email protected]>

* fix(argo-cd): Create notifications clusterrole and clusterrolebinding when enabled (argoproj#2326)

* Create clusterrole for nitifications only when notifications enabled

Signed-off-by: Denis Kadyshev <[email protected]>

* Create clusterrolebinding for nitifications only when notifications enbaled

Signed-off-by: Denis Kadyshev <[email protected]>

* Bump version in Chart.yaml

Signed-off-by: Denis Kadyshev <[email protected]>

* Update Chart.yaml

Signed-off-by: Denis Kadyshev <[email protected]>

* Update Chart.yaml

Signed-off-by: Denis Kadyshev <[email protected]>

---------

Signed-off-by: Denis Kadyshev <[email protected]>

* fix(argo-workflows): Fix outdated URL in values.yaml comments (argoproj#2328)

* fix outdated link branch link

Branch was renamed prior, redirects to main now

Signed-off-by: Max! <[email protected]>

* Update Chart.yaml

Signed-off-by: Max! <[email protected]>

* add to changelog

Signed-off-by: Max! <[email protected]>

---------

Signed-off-by: Max! <[email protected]>

* chore(argo-workflows): Upgrade Argo Workflows to v3.5.1 (argoproj#2329)

Signed-off-by: yu-croco <[email protected]>

* chore(deps): bump amannn/action-semantic-pull-request from 5.3.0 to 5.4.0 (argoproj#2330)

chore(deps): bump amannn/action-semantic-pull-request

Bumps [amannn/action-semantic-pull-request](https://github.com/amannn/action-semantic-pull-request) from 5.3.0 to 5.4.0.
- [Release notes](https://github.com/amannn/action-semantic-pull-request/releases)
- [Changelog](https://github.com/amannn/action-semantic-pull-request/blob/main/CHANGELOG.md)
- [Commits](amannn/action-semantic-pull-request@47b15d5...e9fabac)

---
updated-dependencies:
- dependency-name: amannn/action-semantic-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore(deps): bump helm/chart-releaser-action from 1.5.0 to 1.6.0 (argoproj#2331)

Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/helm/chart-releaser-action/releases)
- [Commits](helm/chart-releaser-action@be16258...a917fd1)

---
updated-dependencies:
- dependency-name: helm/chart-releaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore(deps): bump helm/chart-testing-action from 2.6.0 to 2.6.1 (argoproj#2332)

Bumps [helm/chart-testing-action](https://github.com/helm/chart-testing-action) from 2.6.0 to 2.6.1.
- [Release notes](https://github.com/helm/chart-testing-action/releases)
- [Commits](helm/chart-testing-action@b43128a...e6669bc)

---
updated-dependencies:
- dependency-name: helm/chart-testing-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* feat(argo-cd): Upgrade Argo CD to 2.9.0 (argoproj#2318)

Signed-off-by: Petr Drastil <[email protected]>

* chore(github): Updated security documentation and CLOMonitor exemptions (argoproj#2333)

* Updated security documentation and CLOMonitor exemptions

Signed-off-by: Eddie Knight <[email protected]>

* Added license scanning exepmtion

Signed-off-by: Eddie Knight <[email protected]>

* Added best practices badge to README

Signed-off-by: Eddie Knight <[email protected]>

---------

Signed-off-by: Eddie Knight <[email protected]>
Co-authored-by: Jason Meridth <[email protected]>

* fix(argo-workflows): Accept multi auth mode for server (argoproj#2336)

* fix(argo-workflows): Accept multi auth mode for server

Signed-off-by: yu-croco <[email protected]>

* chore(argo-workflows): improve description of authMode

Signed-off-by: yu-croco <[email protected]>

* chore(argo-workflows): keep the older value valid for now as compatibility.

Signed-off-by: yu-croco <[email protected]>

---------

Signed-off-by: yu-croco <[email protected]>

* chore(github): Add yu-cruco to * in CODEOWNERS (argoproj#2338)

chore: Add yu-cruco to * in CODEOWNERS

yu-cruco is now a maintainer and will be notified on all PRs

- [x] moved CODEOWNERS into .github folder where it belongs

Signed-off-by: jmeridth <[email protected]>

* fix(argo-cd): Add permission for Applications in any namespace (argoproj#2341)

Signed-off-by: yu-croco <[email protected]>

* chore(argo-cd): Upgrade Argo CD to v2.9.1 (argoproj#2344)

* chore(argo-rollouts): Bump rollouts to 1.6.1 (argoproj#2345)

* Bump rollouts to 1.6.2

Signed-off-by: drfaust92 <[email protected]>

* Bump to 1.6.1

Signed-off-by: drfaust92 <[email protected]>

* Bump to 1.6.1

Signed-off-by: drfaust92 <[email protected]>

---------

Signed-off-by: drfaust92 <[email protected]>
Co-authored-by: Aikawa <[email protected]>

* chore(argo-rollouts): Bump rollouts to 1.6.2 (argoproj#2347)

* fix(argo-workflows): Add parameters for tuning revisionHistoryLimit and emptyDir volumes (argoproj#2346)

* fix(argo-workflows): Align version label (argoproj#2342)

* fix(argo-workflows): Aligne version label

Signed-off-by: yu-croco <[email protected]>

* fix(argo-workflows): fix typo

Signed-off-by: yu-croco <[email protected]>

---------

Signed-off-by: yu-croco <[email protected]>

* docs(github): typo fix in security.md (argoproj#2343)

* typo fix

Signed-off-by: Kripu Khadka <[email protected]>

* Revert "typo fix"

This reverts commit b02b2fb.

Signed-off-by: Kripu Khadka <[email protected]>

* typo fix in SECURITY.md

Signed-off-by: Kripu Khadka <[email protected]>
Signed-off-by: Kripu Khadka <[email protected]>

---------

Signed-off-by: Kripu Khadka <[email protected]>
Signed-off-by: Kripu Khadka <[email protected]>
Co-authored-by: Aikawa <[email protected]>

* chore(argo-workflows): Remove xip url from test to avoid confusion (argoproj#2350)

* chore(argo-workflows): Remove xip url from test to avoid confusion

Signed-off-by: Tim Collins <[email protected]>

* Bump version

Signed-off-by: Tim Collins <[email protected]>

* More bumpings

Signed-off-by: Tim Collins <[email protected]>

* Tim can't type

Signed-off-by: Tim Collins <[email protected]>

* Swap to example.com - rfc2606

Signed-off-by: Tim Collins <[email protected]>

---------

Signed-off-by: Tim Collins <[email protected]>

* chore(argo-cd): Replace non-existing examples with official example domain (argoproj#2352)

* chore(argo-cd): Upgrade Argo CD to v2.9.2 (argoproj#2353)

Signed-off-by: yu-croco <[email protected]>

* chore(github): Update SECURITY-INSIGHTS.yml to include security-contacts (argoproj#2356)

* feat(argo-workflows): Make workflow controller ConfigMap optional (argoproj#2354)

* chore(argo-workflows): Upgrade Argo Workflows to v3.5.2 (argoproj#2357)

Signed-off-by: yu-croco <[email protected]>

* fix(argo-rollouts): Update all rollout CRDs to match upstream (argoproj#2361)

Signed-off-by: Abdulla Abdurakhmanov <[email protected]>

* change image tag

* change image tag

---------

Signed-off-by: Fuochi <[email protected]>
Signed-off-by: yu-croco <[email protected]>
Signed-off-by: Joonas Venäläinen <[email protected]>
Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: Petr Drastil <[email protected]>
Signed-off-by: jmeridth <[email protected]>
Signed-off-by: JesseBot <[email protected]>
Signed-off-by: Gustav Kofoed Clausen <[email protected]>
Signed-off-by: Tamas <[email protected]>
Signed-off-by: Alexej Disterhoft <[email protected]>
Signed-off-by: Andrew Hamilton <[email protected]>
Signed-off-by: Anton Gilgur <[email protected]>
Signed-off-by: Anton Gilgur <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Mats Willemsen <[email protected]>
Signed-off-by: sibucan <[email protected]>
Signed-off-by: Pieter van der Giessen <[email protected]>
Signed-off-by: Marco Maurer <[email protected]>
Signed-off-by: Jonathan Raymond <[email protected]>
Signed-off-by: Evgeny Khatko <[email protected]>
Signed-off-by: Evgeny Khatko <[email protected]>
Signed-off-by: Tim Collins <[email protected]>
Signed-off-by: toyamagu-2021 <[email protected]>
Signed-off-by: drfaust92 <[email protected]>
Signed-off-by: Tim Collins <[email protected]>
Signed-off-by: Jason Meridth <[email protected]>
Signed-off-by: Denis Kadyshev <[email protected]>
Signed-off-by: Max! <[email protected]>
Signed-off-by: Eddie Knight <[email protected]>
Signed-off-by: Kripu Khadka <[email protected]>
Signed-off-by: Kripu Khadka <[email protected]>
Signed-off-by: Abdulla Abdurakhmanov <[email protected]>
Co-authored-by: Jason Meridth <[email protected]>
Co-authored-by: Fuochi <[email protected]>
Co-authored-by: Jeongwon Song <[email protected]>
Co-authored-by: Aikawa <[email protected]>
Co-authored-by: Joonas Venäläinen <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Petr Drastil <[email protected]>
Co-authored-by: JesseBot <[email protected]>
Co-authored-by: Gustav Kofoed Clausen <[email protected]>
Co-authored-by: Gustav Kofoed Clausen <[email protected]>
Co-authored-by: Tamas Szasz <[email protected]>
Co-authored-by: Tamas <[email protected]>
Co-authored-by: Alexej Disterhoft <[email protected]>
Co-authored-by: Andrew Hamilton <[email protected]>
Co-authored-by: Anton Gilgur <[email protected]>
Co-authored-by: Josh Soref <[email protected]>
Co-authored-by: Mats Willemsen <[email protected]>
Co-authored-by: sibucan <[email protected]>
Co-authored-by: Pieter <[email protected]>
Co-authored-by: Marco Maurer (-Kilchhofer) <[email protected]>
Co-authored-by: Koen van Zuijlen <[email protected]>
Co-authored-by: Jonathan Raymond <[email protected]>
Co-authored-by: Ujin <[email protected]>
Co-authored-by: Evgeny Khatko <[email protected]>
Co-authored-by: Tim Collins <[email protected]>
Co-authored-by: gussan <[email protected]>
Co-authored-by: Ilia Lazebnik <[email protected]>
Co-authored-by: Denis Kadyshev <[email protected]>
Co-authored-by: Max! <[email protected]>
Co-authored-by: Eddie Knight <[email protected]>
Co-authored-by: Matt Dainty <[email protected]>
Co-authored-by: Kripu Khadka <[email protected]>
Co-authored-by: qa-florian-wende <[email protected]>
Co-authored-by: Abdulla Abdurakhmanov <[email protected]>

Author: 33 people

.clomonitor.yml

@@ -7,6 +7,12 @@ exemptions:
     reason: "Helm deps are not currently scanned. Maintainers are watching developments to dependabot-core #2237" # Justification of this exemption (mandatory, it will be displayed on the UI)
   - check: sbom
     reason: "Tracking Helm dependencies is not yet a stable practice."
+  - check: self_assessment
+    reason: "Refer to self assessments supplied by the codebases Argo Helm supports."
+  - check: signed_releases
+    reason: "Argo Helm releases are made via Artifact Hub, where they are signed. The unsigned GitHub releases are for reference only."
+  - check: license_scanning
+    reason: "Temporary exemption: pending response from CNCF Service Desk"
 
 # TODO:
 # License scanning information

CODEOWNERS .github/CODEOWNERSCODEOWNERS renamed to .github/CODEOWNERS

@@ -1,14 +1,6 @@
-# All
-*                              @mkilchhofer @jmeridth
+* @mkilchhofer @jmeridth @yu-croco
 
-# Argo Workflows
 /charts/argo-workflows/        @vladlosev @jmeridth @yu-croco @tico24
-
-# Argo CD
 /charts/argo-cd/               @mbevc1 @mkilchhofer @yu-croco @jmeridth @pdrastil @tico24
-
-# Argo Events
 /charts/argo-events/           @pdrastil @jmeridth @tico24
-
-# Argo Rollouts
 /charts/argo-rollouts/         @jmeridth

.github/configs/ct-lint.yaml

@@ -7,7 +7,6 @@ chart-dirs:
   - charts
 chart-repos:
   - dandydeveloper=https://dandydeveloper.github.io/charts/
-helm-extra-args: "--timeout 600s"  
 validate-chart-schema: false
 validate-maintainers: true
 validate-yaml: true

.github/workflows/lint-and-test.yml

@@ -13,7 +13,7 @@ jobs:
       options: --user 1001
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: Run ah lint
         working-directory: ./charts
         run: ah lint
@@ -22,7 +22,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           fetch-depth: 0
 
@@ -32,16 +32,16 @@ jobs:
           version: v3.10.1 # Also update in publish.yaml
 
       - name: Set up python
-        uses: actions/setup-python@61a6322f88396a6271a6ee3565807d608ecaddd1 # v4.7.0
+        uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4.7.1
         with:
           python-version: 3.9
 
       - name: Setup Chart Linting
         id: lint
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
         with:
           # Note: Also update in scripts/lint.sh
-          version: v3.7.0
+          version: v3.10.0
 
       - name: List changed charts
         id: list-changed

.github/workflows/pr-title.yml

@@ -19,7 +19,7 @@ jobs:
     name: Validate PR title
     runs-on: ubuntu-latest
     steps:
-      - uses: amannn/action-semantic-pull-request@c3cd5d1ea3580753008872425915e343e351ab54 # v5.2.0
+      - uses: amannn/action-semantic-pull-request@e9fabac35e210fea40ca5b14c0da95a099eff26f # v5.4.0
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:

.github/workflows/publish.yml

@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           fetch-depth: 0
 
@@ -59,7 +59,7 @@ jobs:
 
 
       - name: Run chart-releaser
-        uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
+        uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0
         with:
           config: "./.github/configs/cr.yaml"
           skip_packaging: true

.github/workflows/scorecard.yml

@@ -33,12 +33,12 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # v2.2.0
+        uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1
         with:
           results_file: results.sarif
           results_format: sarif
@@ -60,7 +60,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         with:
           name: SARIF file
           path: results.sarif

CONTRIBUTING.md

@@ -47,6 +47,8 @@ Any breaking changes to a chart (backwards incompatible) require:
 
 ### New Application Versions
 
+Helm charts are intended to be created for all non-patched releases of Argo CD, Workflows, Rollouts, and Events. Associated dependencies, such as Redis, will use the version recommended by the associated release.
+
 When selecting new application versions ensure you make the following changes:
 
 * `values.yaml`: Bump all instances of the container image version
@@ -64,7 +66,7 @@ Each release for each chart must be immutable. Any change to a chart (even just
 
 ### Chart Versioning
 
-Currently we require a chart version bump for every change to a chart, including updating information for older verions.  This may change in the future.
+Currently we require a chart version bump for every change to a chart, including updating information for older versions.  This may change in the future.
 
 ### Artifact Hub Annotations
 

README.md

@@ -6,6 +6,7 @@
 [![Artifact HUB](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/argo)](https://artifacthub.io/packages/search?repo=argo)
 [![CLOMonitor](https://img.shields.io/endpoint?url=https://clomonitor.io/api/projects/cncf/argo/badge)](https://clomonitor.io/projects/cncf/argo)
 [![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/argoproj/argo-helm/badge)](https://api.securityscorecards.dev/projects/github.com/argoproj/argo-helm)
+[![OpenSSF Best Practices](https://www.bestpractices.dev/projects/7942/badge)](https://www.bestpractices.dev/projects/7942)
 
 Argo Helm is a collection of **community maintained** charts for [https://argoproj.github.io](https://argoproj.github.io) projects. The charts can be added using following command:
 

SECURITY-INSIGHTS.yml

@@ -0,0 +1,38 @@
+header:
+  schema-version: '1.0.0'
+  expiration-date: '2024-11-04T10:00:00.000Z'
+  project-url: https://github.com/argoproj/argo-helm
+project-lifecycle:
+  status: active
+  bug-fixes-only: false
+  core-maintainers:
+  - https://github.com/mkilchhofer
+  - https://github.com/jmeridth
+contribution-policy:
+  accepts-pull-requests: true
+  accepts-automated-pull-requests: true
+  automated-tools-list:
+    - automated-tool: dependabot
+      action: allowed
+      path:
+        - /
+  contributing-policy: https://github.com/argoproj/argo-helm/blob/main/CONTRIBUTING.md
+  code-of-conduct: https://github.com/cncf/foundation/blob/master/code-of-conduct.md
+distribution-points:
+  - https://argoproj.github.io/argo-helm
+  - https://artifacthub.io/packages/search?org=argoproj&repo=argo
+security-contacts:
+  - type: website
+    value: https://github.com/argoproj/argo-helm/security/advisories/new
+    primary: true
+vulnerability-reporting:
+  accepts-vulnerability-reports: true
+  email-contact: [email protected]
+  security-policy: https://github.com/argoproj/argo-helm/blob/main/SECURITY.md
+  comment: |
+    Our preferred contact method related to vulnerabilities is the Security tab on GitHub.
+    Click the button "Report a vulnerability" to open the advisory form.
+    Please refer to the security policy for reporting information prior to using the email contact.
+dependencies:
+  env-dependencies-policy:
+    policy-url: https://github.com/argoproj/argo-helm/blob/master/CONTRIBUTING.md#new-application-versions