zalando-incubator
diff --git a/‎cluster/manifests/01-coredns-local/daemonset-coredns.yaml
Lines changed: 1 addition & 1 deletion b/‎cluster/manifests/01-coredns-local/daemonset-coredns.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎cluster/manifests/03-kube-aws-iam-controller/deployment.yaml
Lines changed: 1 addition & 1 deletion b/‎cluster/manifests/03-kube-aws-iam-controller/deployment.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎cluster/manifests/deletions.yaml
Lines changed: 13 additions & 0 deletions b/‎cluster/manifests/deletions.yaml
Lines changed: 13 additions & 0 deletions
diff --git a/‎cluster/manifests/kube-metrics-adapter/deployment.yaml
Lines changed: 1 addition & 1 deletion b/‎cluster/manifests/kube-metrics-adapter/deployment.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎cluster/manifests/prometheus/statefulset.yaml
Lines changed: 1 addition & 1 deletion b/‎cluster/manifests/prometheus/statefulset.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎cluster/manifests/skipper/deployment.yaml
Lines changed: 1 addition & 1 deletion b/‎cluster/manifests/skipper/deployment.yaml
Lines changed: 1 addition & 1 deletion
diff --git a/‎cluster/manifests/z-karpenter/02-role.yaml
Lines changed: 0 additions & 27 deletions b/‎cluster/manifests/z-karpenter/02-role.yaml
Lines changed: 0 additions & 27 deletions
diff --git a/‎cluster/manifests/z-karpenter/03-rolebinding.yaml
Lines changed: 0 additions & 18 deletions b/‎cluster/manifests/z-karpenter/03-rolebinding.yaml
Lines changed: 0 additions & 18 deletions
diff --git a/‎cluster/manifests/z-karpenter/05-clusterrole-core.yaml
Lines changed: 3 additions & 11 deletions b/‎cluster/manifests/z-karpenter/05-clusterrole-core.yaml
Lines changed: 3 additions & 11 deletions
diff --git a/‎cluster/manifests/z-karpenter/07-karpenter.k8s.aws_ec2nodeclasses.yaml
Lines changed: 7 additions & 4 deletions b/‎cluster/manifests/z-karpenter/07-karpenter.k8s.aws_ec2nodeclasses.yaml
Lines changed: 7 additions & 4 deletions
@@ -75,7 +75,7 @@ spec:
           periodSeconds: 10
           timeoutSeconds: 5
 {{- end }}
-        lifecyle:
+        lifecycle:
           preStop:
             sleep:
               seconds: 25
 
@@ -27,7 +27,7 @@ spec:
       hostNetwork: true
       containers:
       - name: kube-aws-iam-controller
-        image: container-registry.zalando.net/teapot/kube-aws-iam-controller:v0.3.0-58-gff54efd
+        image: container-registry.zalando.net/teapot/kube-aws-iam-controller:v0.3.0-60-g29433b1
         env:
         - name: AWS_DEFAULT_REGION
           value: "{{.Cluster.Region}}"
 
@@ -151,6 +151,16 @@ post_apply:
   namespace: kubenurse
   kind: Service
 {{- end }}
+# Remove karpenter webhook related resources which are not used since v1.1.1
+- name: karpenter-lease
+  kind: Role
+  namespace: kube-node-lease
+- name: karpenter-lease
+  kind: RoleBinding
+  namespace: kube-node-lease
+- name: karpenter-cert
+  kind: Secret
+  namespace: kube-system
 {{ if eq .Cluster.ConfigItems.karpenter_pools_enabled "false" }}
 - name: provisioners.karpenter.sh
   kind: CustomResourceDefinition
@@ -410,3 +420,6 @@ post_apply:
   kind: ServiceAccount
   namespace: kube-system
 {{- end}}
+- name: karpenter-v1-migrator
+  namespace: "kube-system"
+  kind: CronJob
@@ -27,7 +27,7 @@ spec:
       serviceAccountName: custom-metrics-apiserver
       containers:
       - name: kube-metrics-adapter
-        image: container-registry.zalando.net/teapot/kube-metrics-adapter:kube-metrics-adapter-0.2.3-60-g6149308
+        image: container-registry.zalando.net/teapot/kube-metrics-adapter:kube-metrics-adapter-0.2.3-62-gb44fcba
         env:
         - name: AWS_REGION
           value: {{ .Cluster.Region }}
 
@@ -57,7 +57,7 @@ spec:
           mountPath: /prometheus
       containers:
       - name: prometheus
-        image: container-registry.zalando.net/teapot/prometheus:v3.1.0-master-61
+        image: container-registry.zalando.net/teapot/prometheus:v3.2.0-master-62
         args:
         - "--config.file=/prometheus/prometheus.yaml"
         - "--storage.tsdb.path=/prometheus/"
 
@@ -1,6 +1,6 @@
 {{/* image-updater-bot detects *image variables so use print to disable it for main image */}}
 
-{{ $main_image := print "container-registry.zalando.net/teapot/skipper-internal:" "v0.21.257-1079" }}
+{{ $main_image := print "container-registry.zalando.net/teapot/skipper-internal:" "v0.21.268-1090" }}
 {{ $canary_image := "container-registry.zalando.net/teapot/skipper-internal:v0.21.268-1090" }}
 
 {{/* Optional canary arguments separated by "[cf724afc]" to allow whitespaces, e.g. "-foo=has a whitespace[cf724afc]-baz=qux" */}}
 
@@ -15,15 +15,7 @@ rules:
   - apiGroups: ["coordination.k8s.io"]
     resources: ["leases"]
     verbs: ["get", "watch"]
-  - apiGroups: [""]
-    resources: ["configmaps", "secrets"]
-    verbs: ["get", "list", "watch"]
   # Write
-  - apiGroups: [""]
-    resources: ["secrets"]
-    verbs: ["update"]
-    resourceNames:
-      - "karpenter-cert"
   - apiGroups: ["coordination.k8s.io"]
     resources: ["leases"]
     verbs: ["patch", "update"]
@@ -50,23 +42,4 @@ rules:
     resources: ["services"]
     resourceNames: ["kube-dns"]
     verbs: ["get"]
----
-# Source: karpenter/templates/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: karpenter-lease
-  namespace: kube-node-lease
-  labels:
-    application: kubernetes
-    component: karpenter
-rules:
-  # Read
-  - apiGroups: ["coordination.k8s.io"]
-    resources: ["leases"]
-    verbs: ["get", "list", "watch"]
-  # Write
-  - apiGroups: ["coordination.k8s.io"]
-    resources: ["leases"]
-    verbs: ["delete"]
 {{end}}
@@ -35,22 +35,4 @@ subjects:
   - kind: ServiceAccount
     name: karpenter
     namespace: kube-system
----
-# Source: karpenter/templates/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: karpenter-lease
-  namespace: kube-node-lease
-  labels:
-    application: kubernetes
-    component: karpenter
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: karpenter-lease
-subjects:
-  - kind: ServiceAccount
-    name: karpenter
-    namespace: kube-system
 {{end}}
@@ -22,12 +22,12 @@ rules:
   - apiGroups: ["apps"]
     resources: ["daemonsets", "deployments", "replicasets", "statefulsets"]
     verbs: ["list", "watch"]
-  - apiGroups: ["apiextensions.k8s.io"]
-    resources: ["customresourcedefinitions"]
-    verbs: ["get", "watch", "list"]
   - apiGroups: ["policy"]
     resources: ["poddisruptionbudgets"]
     verbs: ["get", "list", "watch"]
+  - apiGroups: [""]
+    resources: ["events"]
+    verbs: ["get", list, "watch"]
   # Write
   - apiGroups: ["karpenter.sh"]
     resources: ["nodeclaims", "nodeclaims/status"]
@@ -47,14 +47,6 @@ rules:
   - apiGroups: [""]
     resources: ["pods"]
     verbs: ["delete"]
-  - apiGroups: ["apiextensions.k8s.io"]
-    resources: ["customresourcedefinitions/status"]
-    resourceNames: ["ec2nodeclasses.karpenter.k8s.aws", "nodepools.karpenter.sh", "nodeclaims.karpenter.sh"]
-    verbs: ["patch"]
-  - apiGroups: ["apiextensions.k8s.io"]
-    resources: ["customresourcedefinitions"]
-    resourceNames: ["ec2nodeclasses.karpenter.k8s.aws", "nodepools.karpenter.sh", "nodeclaims.karpenter.sh"]
-    verbs: ["update"]
 ---
 # Source: karpenter/templates/clusterrole-core.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 
@@ -116,7 +116,7 @@ spec:
                         additionalProperties:
                           type: string
                         description: |-
-                          Tags is a map of key/value tags used to select subnets
+                          Tags is a map of key/value tags used to select amis.
                           Specifying '*' for a value selects all values for a given tag key.
                         maxProperties: 20
                         type: object
@@ -491,7 +491,7 @@ spec:
                         additionalProperties:
                           type: string
                         description: |-
-                          Tags is a map of key/value tags used to select subnets
+                          Tags is a map of key/value tags used to select security groups.
                           Specifying '*' for a value selects all values for a given tag key.
                         maxProperties: 20
                         type: object
@@ -598,6 +598,9 @@ spec:
                   items:
                     description: AMI contains resolved AMI selector values utilized for node launch
                     properties:
+                      deprecated:
+                        description: Deprecation status of the AMI
+                        type: boolean
                       id:
                         description: ID of the AMI
                         type: string
@@ -701,7 +704,7 @@ spec:
                   type: string
                 securityGroups:
                   description: |-
-                    SecurityGroups contains the current Security Groups values that are available to the
+                    SecurityGroups contains the current security group values that are available to the
                     cluster under the SecurityGroups selectors.
                   items:
                     description: SecurityGroup contains resolved SecurityGroup selector values utilized for node launch
@@ -718,7 +721,7 @@ spec:
                   type: array
                 subnets:
                   description: |-
-                    Subnets contains the current Subnet values that are available to the
+                    Subnets contains the current subnet values that are available to the
                     cluster under the subnet selectors.
                   items:
                     description: Subnet contains resolved Subnet selector values utilized for node launch