From d2efeba4d824b38425d04cc3362325ae31197294 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Thu, 4 Dec 2025 12:15:26 +0000 Subject: [PATCH 1/9] Update Chart.yaml and changelog for 0.26.1 release --- charts/gitops-runtime/Chart.yaml | 36 ++------------------------------ charts/gitops-runtime/README.md | 10 ++++----- 2 files changed, 7 insertions(+), 39 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 2b88b392..b63621b0 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -13,41 +13,9 @@ maintainers: url: https://codefresh-io.github.io/ annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" - artifacthub.io/changes: | - - kind: added - description: 'Multi-runtime installation support (#939, #946)' - - kind: added - description: 'Checksum annotations for improved change detection (#942)' - - kind: added - description: 'Namespace-scoped Argo Workflows support (#917)' - - kind: added - description: 'Telemetry configuration support (#848)' + artifacthub.io/changes: |- - kind: changed - description: 'Migrated to OSS Argo CD and Argo Helm charts (#823)' - - kind: changed - description: 'Moved Argo CD auth values to global.integrations.argo-cd.server.auth (#768)' - - kind: changed - description: 'Refactored event-reporters: replaced argo-events runtime and cluster event-reporters, renamed sources-server to argo-gateway (#744)' - - kind: changed - description: 'Updated app-proxy with improvements: default-git-source initialization, autoDetectArgoCd values structure update, branch data in pull request info, git-source permissions for fine-grained tokens, and git process management fixes (#956, #943, #932, #737, #902, #901, #878, #804, #802, #795, #760)' - - kind: changed - description: 'Updated cf-argocd-extras: fixed resource attribute keys, unified event reporter values, removed sharding logic (#930, #845, #819)' - - kind: changed - description: 'Updated Argo CD version constraint for compatibility (#941)' - - kind: changed - description: 'Updated installer with latest CLI v2 and kubectl versions (#849, #697)' - - kind: changed - description: 'Disabled Argo Rollouts by default (#917)' - - kind: security - description: 'Fixed security vulnerabilities in app-proxy, cf-argocd-extras, argo-rollouts, argo-events, argo-workflows, and enrichment images (#702, #725, #730, #716, #788)' - - kind: changed - description: 'Updated Argo Rollouts chart to 2.37.3-7-v1.7.2-cap-OSS-697 (#730)' - - kind: changed - description: 'Updated Argo Events chart to 2.4.9-cap-CR-30841 (#716)' - - kind: changed - description: 'Updated Argo Workflows chart to 0.45.16-v3.6.7-cap-CR-30835 (#716)' - - kind: changed - description: 'Updated codefresh-tunnel-client chart to 0.1.22 (#693)' + description: 'chore(CR-31776): updated cap-app-proxy (#985)' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index c060f4b9..15b131d4 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -1,5 +1,5 @@ ## Codefresh gitops runtime -![Version: 0.26.0](https://img.shields.io/badge/Version-0.26.0-informational?style=flat-square) ![AppVersion: 0.2.0](https://img.shields.io/badge/AppVersion-0.2.0-informational?style=flat-square) +![Version: 0.26.1](https://img.shields.io/badge/Version-0.26.1-informational?style=flat-square) ![AppVersion: 0.2.0](https://img.shields.io/badge/AppVersion-0.2.0-informational?style=flat-square) ## Table of Content @@ -222,7 +222,7 @@ We have created a helper utility to resolve this issue: The utility is packaged in a container image. Below are instructions on executing the utility using Docker: ``` -docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.0 +docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.1 ``` `output_dir` - is a local directory where the utility will output files.
`local_registry` - is your local registry where you want to mirror the images to @@ -235,7 +235,7 @@ The utility will output 4 files into the folder: For usage with external ArgoCD run the utility with `EXTERNAL_ARGOCD` environment variable set to `true`. ``` -docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.0 +docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.1 ``` ## Openshift @@ -546,14 +546,14 @@ global: | app-proxy.image-enrichment.serviceAccount.name | string | `"codefresh-image-enrichment-sa"` | Name of the service account to create or the name of the existing one to use | | app-proxy.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.image.repository | string | `"quay.io/codefresh/cap-app-proxy"` | | -| app-proxy.image.tag | string | `"28608a6"` | | +| app-proxy.image.tag | string | `"ada904f"` | | | app-proxy.imagePullSecrets | list | `[]` | | | app-proxy.initContainer.command[0] | string | `"./init.sh"` | | | app-proxy.initContainer.env | object | `{}` | | | app-proxy.initContainer.extraVolumeMounts | list | `[]` | Extra volume mounts for init container | | app-proxy.initContainer.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.initContainer.image.repository | string | `"quay.io/codefresh/cap-app-proxy-init"` | | -| app-proxy.initContainer.image.tag | string | `"28608a6"` | | +| app-proxy.initContainer.image.tag | string | `"ada904f"` | | | app-proxy.initContainer.resources.limits | object | `{}` | | | app-proxy.initContainer.resources.requests.cpu | string | `"0.2"` | | | app-proxy.initContainer.resources.requests.memory | string | `"256Mi"` | | From d33935978156100adbfc376daa56345850d4919c Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Thu, 4 Dec 2025 14:02:24 +0000 Subject: [PATCH 2/9] Update Chart.yaml and changelog for 0.26.1 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index b63621b0..4d18fbf8 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,6 +14,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: updated cli-v2 for fixing CVE-2024-25621 "github.com/containerd/containerd" (#994) - kind: changed description: 'chore(CR-31776): updated cap-app-proxy (#985)' dependencies: From b82ff448466abd0c499574beedff3457656fdffd Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Thu, 4 Dec 2025 15:41:43 +0000 Subject: [PATCH 3/9] Update Chart.yaml and changelog for 0.26.1 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 4d18fbf8..d12d794e 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,6 +14,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'chore: security fixes for k8s client in Argo Rollouts v1.7.2 (#987)' - kind: changed description: updated cli-v2 for fixing CVE-2024-25621 "github.com/containerd/containerd" (#994) - kind: changed From 84e192b2d7b618b01591102dadf399b64df1e52c Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Fri, 5 Dec 2025 06:06:45 +0000 Subject: [PATCH 4/9] Update Chart.yaml and changelog for 0.26.1 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index d12d794e..b9c25b44 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,6 +14,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'chore(CR-31388): updated gitops-operator with security fixes (#983)' - kind: changed description: 'chore: security fixes for k8s client in Argo Rollouts v1.7.2 (#987)' - kind: changed From 391d7cc350aa5d03d40fda4314ffa60925ca7492 Mon Sep 17 00:00:00 2001 From: vitaliichyrka Date: Fri, 5 Dec 2025 09:47:16 +0200 Subject: [PATCH 5/9] updated docs --- charts/gitops-runtime/Chart.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index b9c25b44..57847715 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,13 +15,13 @@ annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- - kind: changed - description: 'chore(CR-31388): updated gitops-operator with security fixes (#983)' + description: 'updated gitops-operator with security fixes: CVE-2025-5187' - kind: changed - description: 'chore: security fixes for k8s client in Argo Rollouts v1.7.2 (#987)' + description: 'updated Argo Rollouts to v1.7.2 with security fixes: CVE-2025-5187' - kind: changed - description: updated cli-v2 for fixing CVE-2024-25621 "github.com/containerd/containerd" (#994) + description: 'updated cli-v2 to v0.2.14 in runtime-installer with fixes: CVE-2024-25621' - kind: changed - description: 'chore(CR-31776): updated cap-app-proxy (#985)' + description: 'updated cap-app-proxy with security fixes' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm From 666dd09b350a6bee5d7c8678dcb5151a69882393 Mon Sep 17 00:00:00 2001 From: vitaliichyrka Date: Fri, 5 Dec 2025 11:07:31 +0200 Subject: [PATCH 6/9] updated docs --- charts/gitops-runtime/Chart.yaml | 2 +- charts/gitops-runtime/README.md | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 57847715..d42cf117 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 appVersion: 0.2.0 description: A Helm chart for Codefresh gitops runtime name: gitops-runtime -version: 0.26.1 +version: 0.26.2 home: https://github.com/codefresh-io/gitops-runtime-helm icon: https://avatars1.githubusercontent.com/u/11412079?v=3 keywords: diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index 15b131d4..ebed1409 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -1,5 +1,5 @@ ## Codefresh gitops runtime -![Version: 0.26.1](https://img.shields.io/badge/Version-0.26.1-informational?style=flat-square) ![AppVersion: 0.2.0](https://img.shields.io/badge/AppVersion-0.2.0-informational?style=flat-square) +![Version: 0.26.2](https://img.shields.io/badge/Version-0.26.2-informational?style=flat-square) ![AppVersion: 0.2.0](https://img.shields.io/badge/AppVersion-0.2.0-informational?style=flat-square) ## Table of Content @@ -222,7 +222,7 @@ We have created a helper utility to resolve this issue: The utility is packaged in a container image. Below are instructions on executing the utility using Docker: ``` -docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.1 +docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.2 ``` `output_dir` - is a local directory where the utility will output files.
`local_registry` - is your local registry where you want to mirror the images to @@ -235,7 +235,7 @@ The utility will output 4 files into the folder: For usage with external ArgoCD run the utility with `EXTERNAL_ARGOCD` environment variable set to `true`. ``` -docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.1 +docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.2 ``` ## Openshift @@ -831,7 +831,7 @@ global: | redis-ha.redis.config.save | string | `'""'` | Will save the DB if both the given number of seconds and the given number of write operations against the DB occurred. `""` is disabled | | redis-ha.redis.masterGroupName | string | `"gitops-runtime"` | Redis convention for naming the cluster group: must match `^[\\w-\\.]+$` and can be templated | | redis-ha.tolerations | list | `[]` | [Tolerations] for use with node taints for Redis pods. | -| redis-ha.topologySpreadConstraints | object | `{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}` | Assign custom [TopologySpreadConstraints] rules to the Redis pods. # https://kubernetes.io/docs/concepts/scheduling-eviction/topology-spread-constraints/ | +| redis-ha.topologySpreadConstraints | object | `{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}` | Assign custom [TopologySpreadConstraints] rules to the Redis pods. | | redis-ha.topologySpreadConstraints.enabled | bool | `false` | Enable Redis HA topology spread constraints | | redis-ha.topologySpreadConstraints.maxSkew | string | `""` (defaults to `1`) | Max skew of pods tolerated | | redis-ha.topologySpreadConstraints.topologyKey | string | `""` (defaults to `topology.kubernetes.io/zone`) | Topology key for spread | From c999d73ea56a6c00cc2c12ac5180660c1a0d58a1 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Fri, 5 Dec 2025 09:09:56 +0000 Subject: [PATCH 7/9] CI Automatic commit - align Chart version --- charts/gitops-runtime/Chart.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 08eeb7bb..5e4b6c88 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 appVersion: 0.2.0 description: A Helm chart for Codefresh gitops runtime name: gitops-runtime -version: 0.26.2 +version: 0.26.1 home: https://github.com/codefresh-io/gitops-runtime-helm icon: https://avatars1.githubusercontent.com/u/11412079?v=3 keywords: From 2046ec6907462d9edf3e8bdba5e6daa11ffc2d02 Mon Sep 17 00:00:00 2001 From: vitaliichyrka Date: Fri, 5 Dec 2025 11:26:18 +0200 Subject: [PATCH 8/9] updated docs --- charts/gitops-runtime/Chart.yaml | 2 +- charts/gitops-runtime/README.md | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 08eeb7bb..5e4b6c88 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -2,7 +2,7 @@ apiVersion: v2 appVersion: 0.2.0 description: A Helm chart for Codefresh gitops runtime name: gitops-runtime -version: 0.26.2 +version: 0.26.1 home: https://github.com/codefresh-io/gitops-runtime-helm icon: https://avatars1.githubusercontent.com/u/11412079?v=3 keywords: diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index ebed1409..6261dbab 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -1,5 +1,5 @@ ## Codefresh gitops runtime -![Version: 0.26.2](https://img.shields.io/badge/Version-0.26.2-informational?style=flat-square) ![AppVersion: 0.2.0](https://img.shields.io/badge/AppVersion-0.2.0-informational?style=flat-square) +![Version: 0.26.1](https://img.shields.io/badge/Version-0.26.1-informational?style=flat-square) ![AppVersion: 0.2.0](https://img.shields.io/badge/AppVersion-0.2.0-informational?style=flat-square) ## Table of Content @@ -222,7 +222,7 @@ We have created a helper utility to resolve this issue: The utility is packaged in a container image. Below are instructions on executing the utility using Docker: ``` -docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.2 +docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.1 ``` `output_dir` - is a local directory where the utility will output files.
`local_registry` - is your local registry where you want to mirror the images to @@ -235,7 +235,7 @@ The utility will output 4 files into the folder: For usage with external ArgoCD run the utility with `EXTERNAL_ARGOCD` environment variable set to `true`. ``` -docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.2 +docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.26.1 ``` ## Openshift @@ -700,7 +700,7 @@ global: | gitops-operator.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | gitops-operator.env.GITOPS_OPERATOR_VERSION | string | `"0.11.1"` | | | gitops-operator.fullnameOverride | string | `""` | | -| gitops-operator.image | object | `{"registry":"quay.io","repository":"codefresh/codefresh-gitops-operator","tag":"8cbca33"}` | GitOps operator image | +| gitops-operator.image | object | `{"registry":"quay.io","repository":"codefresh/codefresh-gitops-operator","tag":"0.26-de28d8b"}` | GitOps operator image | | gitops-operator.imagePullSecrets | list | `[]` | | | gitops-operator.nameOverride | string | `""` | | | gitops-operator.nodeSelector | object | `{}` | | From 038071426f4a3104aeb0c97c9a7c7c37e06b2c5e Mon Sep 17 00:00:00 2001 From: vitaliichyrka Date: Fri, 5 Dec 2025 13:36:36 +0200 Subject: [PATCH 9/9] updated docs --- charts/gitops-runtime/README.md | 2 +- tests/component-tests/setup/fixture/simple-app/README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index 6261dbab..c72f097d 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -831,7 +831,7 @@ global: | redis-ha.redis.config.save | string | `'""'` | Will save the DB if both the given number of seconds and the given number of write operations against the DB occurred. `""` is disabled | | redis-ha.redis.masterGroupName | string | `"gitops-runtime"` | Redis convention for naming the cluster group: must match `^[\\w-\\.]+$` and can be templated | | redis-ha.tolerations | list | `[]` | [Tolerations] for use with node taints for Redis pods. | -| redis-ha.topologySpreadConstraints | object | `{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}` | Assign custom [TopologySpreadConstraints] rules to the Redis pods. | +| redis-ha.topologySpreadConstraints | object | `{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}` | Assign custom [TopologySpreadConstraints] rules to the Redis pods. # https://kubernetes.io/docs/concepts/scheduling-eviction/topology-spread-constraints/ | | redis-ha.topologySpreadConstraints.enabled | bool | `false` | Enable Redis HA topology spread constraints | | redis-ha.topologySpreadConstraints.maxSkew | string | `""` (defaults to `1`) | Max skew of pods tolerated | | redis-ha.topologySpreadConstraints.topologyKey | string | `""` (defaults to `topology.kubernetes.io/zone`) | Topology key for spread | diff --git a/tests/component-tests/setup/fixture/simple-app/README.md b/tests/component-tests/setup/fixture/simple-app/README.md index 1ab4be19..dfe0feb1 100644 --- a/tests/component-tests/setup/fixture/simple-app/README.md +++ b/tests/component-tests/setup/fixture/simple-app/README.md @@ -52,4 +52,4 @@ A Helm chart for Kubernetes | volumes | list | `[]` | | ---------------------------------------------- -Autogenerated from chart metadata using [helm-docs v1.9.1](https://github.com/norwoodj/helm-docs/releases/v1.9.1) +Autogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2)