feat: add pod options GUI items for TrueNAS SCALE

.all-contributorsrc

@@ -504,8 +504,7 @@
       "avatar_url": "https://avatars.githubusercontent.com/u/18377483?v=4",
       "profile": "https://github.com/j0hnby",
       "contributions": [
-        "bug",
-        "doc"
+        "bug"
       ]
     },
     {
@@ -1061,8 +1060,7 @@
       "profile": "https://github.com/ZasX",
       "contributions": [
         "doc",
-        "mentoring",
-        "code"
+        "mentoring"
       ]
     },
     {
@@ -1689,8 +1687,7 @@
       "avatar_url": "https://avatars.githubusercontent.com/u/1540233?v=4",
       "profile": "https://github.com/nautilus7",
       "contributions": [
-        "bug",
-        "code"
+        "bug"
       ]
     },
     {
@@ -1783,363 +1780,9 @@
         "code",
         "bug"
       ]
-    },
-    {
-      "login": "marcofaggian",
-      "name": "Marco Faggian",
-      "avatar_url": "https://avatars.githubusercontent.com/u/19221001?v=4",
-      "profile": "https://marcofaggian.com",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "Emalton",
-      "name": "John P",
-      "avatar_url": "https://avatars.githubusercontent.com/u/9328458?v=4",
-      "profile": "https://github.com/Emalton",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "kryojenik",
-      "name": "kryojenik",
-      "avatar_url": "https://avatars.githubusercontent.com/u/845427?v=4",
-      "profile": "https://github.com/kryojenik",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "malcolmcdixon",
-      "name": "Malcolm",
-      "avatar_url": "https://avatars.githubusercontent.com/u/56974882?v=4",
-      "profile": "https://github.com/malcolmcdixon",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "depasseg",
-      "name": "depasseg",
-      "avatar_url": "https://avatars.githubusercontent.com/u/3201827?v=4",
-      "profile": "https://github.com/depasseg",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "j1mbl3s",
-      "name": "j1mbl3s",
-      "avatar_url": "https://avatars.githubusercontent.com/u/44634577?v=4",
-      "profile": "https://github.com/j1mbl3s",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "VictorienXP",
-      "name": "VictorienXP",
-      "avatar_url": "https://avatars.githubusercontent.com/u/1633366?v=4",
-      "profile": "https://github.com/VictorienXP",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "yelhouti",
-      "name": "yelhouti",
-      "avatar_url": "https://avatars.githubusercontent.com/u/5471639?v=4",
-      "profile": "https://github.com/yelhouti",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "svetlemodry",
-      "name": "Jaroslav Lichtblau",
-      "avatar_url": "https://avatars.githubusercontent.com/u/8712544?v=4",
-      "profile": "https://github.com/svetlemodry",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "Maximilian-Staab",
-      "name": "MaximilianS",
-      "avatar_url": "https://avatars.githubusercontent.com/u/20892091?v=4",
-      "profile": "https://github.com/Maximilian-Staab",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "dionlarson",
-      "name": "Dion Larson",
-      "avatar_url": "https://avatars.githubusercontent.com/u/1843883?v=4",
-      "profile": "http://dionlarson.com",
-      "contributions": [
-        "code",
-        "doc"
-      ]
-    },
-    {
-      "login": "Physics-Dude",
-      "name": "Physics-Dude",
-      "avatar_url": "https://avatars.githubusercontent.com/u/22563517?v=4",
-      "profile": "https://github.com/Physics-Dude",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "waflint",
-      "name": "waflint",
-      "avatar_url": "https://avatars.githubusercontent.com/u/94139453?v=4",
-      "profile": "https://github.com/waflint",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "Shrinks99",
-      "name": "Henry Wilkinson",
-      "avatar_url": "https://avatars.githubusercontent.com/u/5672810?v=4",
-      "profile": "https://github.com/Shrinks99",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "cedstrom",
-      "name": "cedstrom",
-      "avatar_url": "https://avatars.githubusercontent.com/u/6175957?v=4",
-      "profile": "https://github.com/cedstrom",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "v3DJG6GL",
-      "name": "v3DJG6GL",
-      "avatar_url": "https://avatars.githubusercontent.com/u/72495210?v=4",
-      "profile": "https://github.com/v3DJG6GL",
-      "contributions": [
-        "bug"
-      ]
-    },
-    {
-      "login": "polarstack",
-      "name": "polarstack",
-      "avatar_url": "https://avatars.githubusercontent.com/u/42521003?v=4",
-      "profile": "https://github.com/polarstack",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "K1Hyve",
-      "name": "Keyvan",
-      "avatar_url": "https://avatars.githubusercontent.com/u/53298451?v=4",
-      "profile": "https://github.com/K1Hyve",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "MickaelFontes",
-      "name": "MickaelFontes",
-      "avatar_url": "https://avatars.githubusercontent.com/u/81414455?v=4",
-      "profile": "https://github.com/MickaelFontes",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "blastik",
-      "name": "David CM",
-      "avatar_url": "https://avatars.githubusercontent.com/u/3662083?v=4",
-      "profile": "https://github.com/blastik",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "aamirazad",
-      "name": "Aamir Azad",
-      "avatar_url": "https://avatars.githubusercontent.com/u/82281117?v=4",
-      "profile": "http://tigertutoringtool.aamira.me",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "jordan-woyak",
-      "name": "Jordan Woyak",
-      "avatar_url": "https://avatars.githubusercontent.com/u/1768214?v=4",
-      "profile": "https://github.com/jordan-woyak",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "simon-hofmann",
-      "name": "Simon Hofman",
-      "avatar_url": "https://avatars.githubusercontent.com/u/23562420?v=4",
-      "profile": "https://github.com/simon-hofmann",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "notyouraveragegamer",
-      "name": "notyouraveragegamer",
-      "avatar_url": "https://avatars.githubusercontent.com/u/104248676?v=4",
-      "profile": "https://github.com/NotYourAverageGamer",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "varac",
-      "name": "Varac",
-      "avatar_url": "https://avatars.githubusercontent.com/u/488213?v=4",
-      "profile": "https://www.varac.net",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "tuxpizza",
-      "name": "tuxsudo",
-      "avatar_url": "https://avatars.githubusercontent.com/u/84710786?v=4",
-      "profile": "https://tux.pizza",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "TylerRudie",
-      "name": "TylerRudie",
-      "avatar_url": "https://avatars.githubusercontent.com/u/2695916?v=4",
-      "profile": "https://github.com/TylerRudie",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "qnb59bny5x",
-      "name": "qnb59bny5x",
-      "avatar_url": "https://avatars.githubusercontent.com/u/108427982?v=4",
-      "profile": "https://github.com/qnb59bny5x",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "drndos",
-      "name": "Filip Bednárik",
-      "avatar_url": "https://avatars.githubusercontent.com/u/5576134?v=4",
-      "profile": "https://blog.drndos.sk",
-      "contributions": [
-        "bug"
-      ]
-    },
-    {
-      "login": "sshcherbinin",
-      "name": "Serhii Shcherbinin",
-      "avatar_url": "https://avatars.githubusercontent.com/u/92396963?v=4",
-      "profile": "https://github.com/sshcherbinin",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "qraynaud",
-      "name": "Quentin Raynaud",
-      "avatar_url": "https://avatars.githubusercontent.com/u/65991?v=4",
-      "profile": "https://github.com/qraynaud",
-      "contributions": [
-        "bug"
-      ]
-    },
-    {
-      "login": "thegcat",
-      "name": "Felix Schäfer",
-      "avatar_url": "https://avatars.githubusercontent.com/u/22835?v=4",
-      "profile": "http://fachschaften.org",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "jndeverteuil",
-      "name": "Julien Nicolas de Verteuil",
-      "avatar_url": "https://avatars.githubusercontent.com/u/6644855?v=4",
-      "profile": "https://github.com/jndeverteuil",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "gabrieldonadel",
-      "name": "Gabriel Donadel Dall'Agnol",
-      "avatar_url": "https://avatars.githubusercontent.com/u/11707729?v=4",
-      "profile": "https://github.com/gabrieldonadel",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "jon-stumpf",
-      "name": "Jon S. Stumpf",
-      "avatar_url": "https://avatars.githubusercontent.com/u/7144996?v=4",
-      "profile": "https://github.com/jon-stumpf",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "Tanguille",
-      "name": "Tanguille",
-      "avatar_url": "https://avatars.githubusercontent.com/u/91473554?v=4",
-      "profile": "https://github.com/Tanguille",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "Plinsboorg",
-      "name": "Dennis",
-      "avatar_url": "https://avatars.githubusercontent.com/u/42300339?v=4",
-      "profile": "https://github.com/Plinsboorg",
-      "contributions": [
-        "bug",
-        "doc"
-      ]
-    },
-    {
-      "login": "TheIceCreamTroll",
-      "name": "TheIceCreamTroll",
-      "avatar_url": "https://avatars.githubusercontent.com/u/33820904?v=4",
-      "profile": "https://github.com/TheIceCreamTroll",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "atanaspam",
-      "name": "Atanas Pamukchiev",
-      "avatar_url": "https://avatars.githubusercontent.com/u/9085090?v=4",
-      "profile": "https://github.com/atanaspam",
-      "contributions": [
-        "code"
-      ]
     }
   ],
   "contributorsPerLine": 7,
   "skipCi": true,
-  "commitConvention": "angular",
-  "commitType": "docs"
+  "commitConvention": "angular"
 }

.github/CODEOWNERS

@@ -5,5 +5,5 @@
 /charts/dependency/     @truecharts/enterprise-maintainers @ornias1993
 /charts/enterprise/     @truecharts/enterprise-maintainers @ornias1993
 /charts/dev/            @ornias1993
-/.github/               @truecharts/ci-maintainers @ornias1993
+/.github/               @truecharts/ci-maintainers @ornias1993 
 docs/                   @truecharts/docs-maintainers @ornias1993

.github/README.md

@@ -48,7 +48,7 @@ For big changes we do have a roadmap, every spot on the roadmap is synced to a T
 
 **Restructure of the Project - TrueNAS SCALE "Bluefin" 22.xx ALPHA 1**
 
-_The current project is hitting internal performance issues, for this reason we need to rework the structure and split some parts of the project into separate repositories._
+_The current project is hitting internal performance issues, for this reason we need to rework the structure and split some parts of the project into seperate repositories._
 
 <br />
 
@@ -60,7 +60,7 @@ _The shared Common (chart) basis, used by all our Charts, needs some significant
 
 **Increased test coverage - TrueNAS SCALE "Bluefin" 22.xx BETA 1**
 
-_With most parts of our project somewhat cleaned up, we need to work on increasing the coverage of our test system. Our unit tests should cover all features and we should also take upgrades into account when testing Chart changes_
+_With most parts of our project somewhat cleaned up, we need to work on increasing the coverage of our test system. Our unittests should cover all features and we should also take upgrades into account when testing Chart changes_
 
 <br />
 
@@ -124,7 +124,7 @@ A lot of our work is based on the great effort of others. We would love to exten
 ## Contributors ✨
 
 <!-- ALL-CONTRIBUTORS-BADGE:START - Do not remove or modify this section -->
-[![All Contributors](https://img.shields.io/badge/all_contributors-229-orange.svg?style=for-the-badge)](#contributors)
+[![All Contributors](https://img.shields.io/badge/all_contributors-191-orange.svg?style=for-the-badge)](#contributors)
 <!-- ALL-CONTRIBUTORS-BADGE:END -->
 
 Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/docs/en/emoji-key)):
@@ -201,7 +201,7 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
     </tr>
     <tr>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/eingemaischt"><img src="https://avatars.githubusercontent.com/u/151498?v=4?s=100" width="100px;" alt="Philipp"/><br /><sub><b>Philipp</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aeingemaischt" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/j0hnby"><img src="https://avatars.githubusercontent.com/u/18377483?v=4?s=100" width="100px;" alt="John"/><br /><sub><b>John</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aj0hnby" title="Bug reports">🐛</a> <a href="https://github.com/truecharts/charts/commits?author=j0hnby" title="Documentation">📖</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/j0hnby"><img src="https://avatars.githubusercontent.com/u/18377483?v=4?s=100" width="100px;" alt="John"/><br /><sub><b>John</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aj0hnby" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/john-parton"><img src="https://avatars.githubusercontent.com/u/2071543?v=4?s=100" width="100px;" alt="John Parton"/><br /><sub><b>John Parton</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Ajohn-parton" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/Amasis"><img src="https://avatars.githubusercontent.com/u/7325217?v=4?s=100" width="100px;" alt="Marc"/><br /><sub><b>Marc</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3AAmasis" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/fdzaebel"><img src="https://avatars.githubusercontent.com/u/46503230?v=4?s=100" width="100px;" alt="fdzaebel"/><br /><sub><b>fdzaebel</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Afdzaebel" title="Bug reports">🐛</a></td>
@@ -277,7 +277,7 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/uranderu"><img src="https://avatars.githubusercontent.com/u/71091366?v=4?s=100" width="100px;" alt="uranderu"/><br /><sub><b>uranderu</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Auranderu" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/heytcass"><img src="https://avatars.githubusercontent.com/u/11260288?v=4?s=100" width="100px;" alt="Tom Cassady"/><br /><sub><b>Tom Cassady</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aheytcass" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/Huftierchen"><img src="https://avatars.githubusercontent.com/u/16015778?v=4?s=100" width="100px;" alt="Huftierchen"/><br /><sub><b>Huftierchen</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3AHuftierchen" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/ZasX"><img src="https://avatars.githubusercontent.com/u/806452?v=4?s=100" width="100px;" alt="ZasX"/><br /><sub><b>ZasX</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=ZasX" title="Documentation">📖</a> <a href="#mentoring-ZasX" title="Mentoring">🧑‍🏫</a> <a href="https://github.com/truecharts/charts/commits?author=ZasX" title="Code">💻</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/ZasX"><img src="https://avatars.githubusercontent.com/u/806452?v=4?s=100" width="100px;" alt="ZasX"/><br /><sub><b>ZasX</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=ZasX" title="Documentation">📖</a> <a href="#mentoring-ZasX" title="Mentoring">🧑‍🏫</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/aeolus811tw"><img src="https://avatars.githubusercontent.com/u/4956319?v=4?s=100" width="100px;" alt="Kevin T."/><br /><sub><b>Kevin T.</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aaeolus811tw" title="Bug reports">🐛</a></td>
     </tr>
     <tr>
@@ -366,7 +366,7 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/CommanderStarhump"><img src="https://avatars.githubusercontent.com/u/91758053?v=4?s=100" width="100px;" alt="CommanderStarhump"/><br /><sub><b>CommanderStarhump</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3ACommanderStarhump" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/vianchiel"><img src="https://avatars.githubusercontent.com/u/123665622?v=4?s=100" width="100px;" alt="Vianchiel"/><br /><sub><b>Vianchiel</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Avianchiel" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/b-m-f"><img src="https://avatars.githubusercontent.com/u/2843450?v=4?s=100" width="100px;" alt="Maximilian Ehlers"/><br /><sub><b>Maximilian Ehlers</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Ab-m-f" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/nautilus7"><img src="https://avatars.githubusercontent.com/u/1540233?v=4?s=100" width="100px;" alt="nautilus7"/><br /><sub><b>nautilus7</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Anautilus7" title="Bug reports">🐛</a> <a href="https://github.com/truecharts/charts/commits?author=nautilus7" title="Code">💻</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/nautilus7"><img src="https://avatars.githubusercontent.com/u/1540233?v=4?s=100" width="100px;" alt="nautilus7"/><br /><sub><b>nautilus7</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Anautilus7" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/kqmaverick"><img src="https://avatars.githubusercontent.com/u/121722567?v=4?s=100" width="100px;" alt="kqmaverick"/><br /><sub><b>kqmaverick</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Akqmaverick" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/ccalby"><img src="https://avatars.githubusercontent.com/u/680553?v=4?s=100" width="100px;" alt="ccalby"/><br /><sub><b>ccalby</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Accalby" title="Bug reports">🐛</a></td>
     </tr>
@@ -377,59 +377,11 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/schopenhauer"><img src="https://avatars.githubusercontent.com/u/2085103?v=4?s=100" width="100px;" alt="schopenhauer"/><br /><sub><b>schopenhauer</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aschopenhauer" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/Zackptg5"><img src="https://avatars.githubusercontent.com/u/5107713?v=4?s=100" width="100px;" alt="Zackptg5"/><br /><sub><b>Zackptg5</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3AZackptg5" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://bradackerman.com/"><img src="https://avatars.githubusercontent.com/u/115895?v=4?s=100" width="100px;" alt="Brad Ackerman"/><br /><sub><b>Brad Ackerman</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Abackerman" title="Bug reports">🐛</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/snazy2000"><img src="https://avatars.githubusercontent.com/u/1378836?v=4?s=100" width="100px;" alt="Stephen"/><br /><sub><b>Stephen</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Asnazy2000" title="Bug reports">🐛</a></td>
+    </tr>
+    <tr>
       <td align="center" valign="top" width="14.28%"><a href="https://hachyderm.io/@mcspiff"><img src="https://avatars.githubusercontent.com/u/7252551?v=4?s=100" width="100px;" alt="mcspiff313"/><br /><sub><b>mcspiff313</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Amcspiff313" title="Bug reports">🐛</a></td>
-    </tr>
-    <tr>
       <td align="center" valign="top" width="14.28%"><a href="https://fnichol.com"><img src="https://avatars.githubusercontent.com/u/261548?v=4?s=100" width="100px;" alt="Fletcher Nichol"/><br /><sub><b>Fletcher Nichol</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=fnichol" title="Code">💻</a> <a href="https://github.com/truecharts/charts/issues?q=author%3Afnichol" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://marcofaggian.com"><img src="https://avatars.githubusercontent.com/u/19221001?v=4?s=100" width="100px;" alt="Marco Faggian"/><br /><sub><b>Marco Faggian</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=marcofaggian" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Emalton"><img src="https://avatars.githubusercontent.com/u/9328458?v=4?s=100" width="100px;" alt="John P"/><br /><sub><b>John P</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=Emalton" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/kryojenik"><img src="https://avatars.githubusercontent.com/u/845427?v=4?s=100" width="100px;" alt="kryojenik"/><br /><sub><b>kryojenik</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=kryojenik" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/malcolmcdixon"><img src="https://avatars.githubusercontent.com/u/56974882?v=4?s=100" width="100px;" alt="Malcolm"/><br /><sub><b>Malcolm</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=malcolmcdixon" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/depasseg"><img src="https://avatars.githubusercontent.com/u/3201827?v=4?s=100" width="100px;" alt="depasseg"/><br /><sub><b>depasseg</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=depasseg" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/j1mbl3s"><img src="https://avatars.githubusercontent.com/u/44634577?v=4?s=100" width="100px;" alt="j1mbl3s"/><br /><sub><b>j1mbl3s</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=j1mbl3s" title="Documentation">📖</a></td>
-    </tr>
-    <tr>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/VictorienXP"><img src="https://avatars.githubusercontent.com/u/1633366?v=4?s=100" width="100px;" alt="VictorienXP"/><br /><sub><b>VictorienXP</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=VictorienXP" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/yelhouti"><img src="https://avatars.githubusercontent.com/u/5471639?v=4?s=100" width="100px;" alt="yelhouti"/><br /><sub><b>yelhouti</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=yelhouti" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/svetlemodry"><img src="https://avatars.githubusercontent.com/u/8712544?v=4?s=100" width="100px;" alt="Jaroslav Lichtblau"/><br /><sub><b>Jaroslav Lichtblau</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=svetlemodry" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Maximilian-Staab"><img src="https://avatars.githubusercontent.com/u/20892091?v=4?s=100" width="100px;" alt="MaximilianS"/><br /><sub><b>MaximilianS</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=Maximilian-Staab" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="http://dionlarson.com"><img src="https://avatars.githubusercontent.com/u/1843883?v=4?s=100" width="100px;" alt="Dion Larson"/><br /><sub><b>Dion Larson</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=dionlarson" title="Code">💻</a> <a href="https://github.com/truecharts/charts/commits?author=dionlarson" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Physics-Dude"><img src="https://avatars.githubusercontent.com/u/22563517?v=4?s=100" width="100px;" alt="Physics-Dude"/><br /><sub><b>Physics-Dude</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=Physics-Dude" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/waflint"><img src="https://avatars.githubusercontent.com/u/94139453?v=4?s=100" width="100px;" alt="waflint"/><br /><sub><b>waflint</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=waflint" title="Code">💻</a></td>
-    </tr>
-    <tr>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Shrinks99"><img src="https://avatars.githubusercontent.com/u/5672810?v=4?s=100" width="100px;" alt="Henry Wilkinson"/><br /><sub><b>Henry Wilkinson</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=Shrinks99" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/cedstrom"><img src="https://avatars.githubusercontent.com/u/6175957?v=4?s=100" width="100px;" alt="cedstrom"/><br /><sub><b>cedstrom</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=cedstrom" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/v3DJG6GL"><img src="https://avatars.githubusercontent.com/u/72495210?v=4?s=100" width="100px;" alt="v3DJG6GL"/><br /><sub><b>v3DJG6GL</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Av3DJG6GL" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/polarstack"><img src="https://avatars.githubusercontent.com/u/42521003?v=4?s=100" width="100px;" alt="polarstack"/><br /><sub><b>polarstack</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=polarstack" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/K1Hyve"><img src="https://avatars.githubusercontent.com/u/53298451?v=4?s=100" width="100px;" alt="Keyvan"/><br /><sub><b>Keyvan</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=K1Hyve" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/MickaelFontes"><img src="https://avatars.githubusercontent.com/u/81414455?v=4?s=100" width="100px;" alt="MickaelFontes"/><br /><sub><b>MickaelFontes</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=MickaelFontes" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/blastik"><img src="https://avatars.githubusercontent.com/u/3662083?v=4?s=100" width="100px;" alt="David CM"/><br /><sub><b>David CM</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=blastik" title="Code">💻</a></td>
-    </tr>
-    <tr>
-      <td align="center" valign="top" width="14.28%"><a href="http://tigertutoringtool.aamira.me"><img src="https://avatars.githubusercontent.com/u/82281117?v=4?s=100" width="100px;" alt="Aamir Azad"/><br /><sub><b>Aamir Azad</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=aamirazad" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/jordan-woyak"><img src="https://avatars.githubusercontent.com/u/1768214?v=4?s=100" width="100px;" alt="Jordan Woyak"/><br /><sub><b>Jordan Woyak</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=jordan-woyak" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/simon-hofmann"><img src="https://avatars.githubusercontent.com/u/23562420?v=4?s=100" width="100px;" alt="Simon Hofman"/><br /><sub><b>Simon Hofman</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=simon-hofmann" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/NotYourAverageGamer"><img src="https://avatars.githubusercontent.com/u/104248676?v=4?s=100" width="100px;" alt="notyouraveragegamer"/><br /><sub><b>notyouraveragegamer</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=notyouraveragegamer" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://www.varac.net"><img src="https://avatars.githubusercontent.com/u/488213?v=4?s=100" width="100px;" alt="Varac"/><br /><sub><b>Varac</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=varac" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://tux.pizza"><img src="https://avatars.githubusercontent.com/u/84710786?v=4?s=100" width="100px;" alt="tuxsudo"/><br /><sub><b>tuxsudo</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=tuxpizza" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/TylerRudie"><img src="https://avatars.githubusercontent.com/u/2695916?v=4?s=100" width="100px;" alt="TylerRudie"/><br /><sub><b>TylerRudie</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=TylerRudie" title="Documentation">📖</a></td>
-    </tr>
-    <tr>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/qnb59bny5x"><img src="https://avatars.githubusercontent.com/u/108427982?v=4?s=100" width="100px;" alt="qnb59bny5x"/><br /><sub><b>qnb59bny5x</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=qnb59bny5x" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://blog.drndos.sk"><img src="https://avatars.githubusercontent.com/u/5576134?v=4?s=100" width="100px;" alt="Filip Bednárik"/><br /><sub><b>Filip Bednárik</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Adrndos" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/sshcherbinin"><img src="https://avatars.githubusercontent.com/u/92396963?v=4?s=100" width="100px;" alt="Serhii Shcherbinin"/><br /><sub><b>Serhii Shcherbinin</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=sshcherbinin" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/qraynaud"><img src="https://avatars.githubusercontent.com/u/65991?v=4?s=100" width="100px;" alt="Quentin Raynaud"/><br /><sub><b>Quentin Raynaud</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aqraynaud" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="http://fachschaften.org"><img src="https://avatars.githubusercontent.com/u/22835?v=4?s=100" width="100px;" alt="Felix Schäfer"/><br /><sub><b>Felix Schäfer</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=thegcat" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/jndeverteuil"><img src="https://avatars.githubusercontent.com/u/6644855?v=4?s=100" width="100px;" alt="Julien Nicolas de Verteuil"/><br /><sub><b>Julien Nicolas de Verteuil</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=jndeverteuil" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/gabrieldonadel"><img src="https://avatars.githubusercontent.com/u/11707729?v=4?s=100" width="100px;" alt="Gabriel Donadel Dall'Agnol"/><br /><sub><b>Gabriel Donadel Dall'Agnol</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=gabrieldonadel" title="Documentation">📖</a></td>
-    </tr>
-    <tr>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/jon-stumpf"><img src="https://avatars.githubusercontent.com/u/7144996?v=4?s=100" width="100px;" alt="Jon S. Stumpf"/><br /><sub><b>Jon S. Stumpf</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=jon-stumpf" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Tanguille"><img src="https://avatars.githubusercontent.com/u/91473554?v=4?s=100" width="100px;" alt="Tanguille"/><br /><sub><b>Tanguille</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=Tanguille" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Plinsboorg"><img src="https://avatars.githubusercontent.com/u/42300339?v=4?s=100" width="100px;" alt="Dennis"/><br /><sub><b>Dennis</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3APlinsboorg" title="Bug reports">🐛</a> <a href="https://github.com/truecharts/charts/commits?author=Plinsboorg" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/TheIceCreamTroll"><img src="https://avatars.githubusercontent.com/u/33820904?v=4?s=100" width="100px;" alt="TheIceCreamTroll"/><br /><sub><b>TheIceCreamTroll</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=TheIceCreamTroll" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/atanaspam"><img src="https://avatars.githubusercontent.com/u/9085090?v=4?s=100" width="100px;" alt="Atanas Pamukchiev"/><br /><sub><b>Atanas Pamukchiev</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=atanaspam" title="Code">💻</a></td>
     </tr>
   </tbody>
 </table>

.github/SUPPORT.md

@@ -1,7 +1,3 @@
----
-sidebar_position: 3
----
-
 # Support Policy
 
 ## TrueCharts on TrueNAS SCALE
@@ -12,39 +8,13 @@ This document highlights which versions of TrueCharts (or rather branches), supp
 
 We also document which versions of TrueNAS will receive TrueCharts updates and for which versions we are accepting bug reports.
 
-### Supported Versions of TrueNAS SCALE
+### Supported Versions
 
-| TrueNAS version    | Branch   | Supported with updates | Accepting Support tickets | Accepting Bug Reports | Notes                                                                                                                       |
-| ------------------ | -------- | ---------------------- | ------------------------- | --------------------- | --------------------------------------------------------------------------------------------------------------------------- |
-| 22.12.4.1 or prior | `master` | :x:                    | :x:                       | :x:                   | Update to 23.10.X Supported Version [TrueNAS SCALE](https://www.truenas.com/docs/scale/23.10/)                              |
-| 22.12.4.2          | `master` | :white_check_mark:     | :white_check_mark:        | :x:                   | Stable Release as of 2023-10-13 Recommended to update to 23.10.x [TrueNAS SCALE](https://www.truenas.com/docs/scale/23.10/) |
-| 23.10.0            | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Stable Release as of 2023-10-24                                                                                             |
-| 23.10.0.1          | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Stable Release as of 2023-10-31                                                                                             |
-| Nightly            | `master` | :white_check_mark:     | :x:                       | :white_check_mark:    | Please only submit bug reports during codefreeze                                                                            |
-| 23.10.1            | `master` | :white_check_mark:     | :x:                       | :x:                   | To Be Released                                                                                                              |
-
-## TrueCharts on Talos-OS
-
-Support for Talos-OS with either Rancher or FluxCD are in early alpha.
-
-### Supported Versions of Talos-OS
-
-| Talos-OS version | Branch   | Supported with updates | Accepting Support tickets | Accepting Bug Reports | Notes |
-| ---------------- | -------- | ---------------------- | ------------------------- | --------------------- | ----- |
-| 1.5              | `master` | :white_check_mark:     | :x:                       | :x:                   |       |
-| 1.6              | `master` | :white_check_mark:     | :x:                       | :x:                   |       |
-
-### Supported Versions of FluxCD
-
-| FluxCD version | Branch   | Supported with updates | Accepting Support tickets | Accepting Bug Reports | Notes |
-| -------------- | -------- | ---------------------- | ------------------------- | --------------------- | ----- |
-| 1.2.1 or prior | `master` | :white_check_mark:     | :x:                       | :x:                   |       |
-
-### Rancher Versions of Rancher
-
-| TrueNAS version | Branch   | Supported with updates | Accepting Support tickets | Accepting Bug Reports | Notes |
-| --------------- | -------- | ---------------------- | ------------------------- | --------------------- | ----- |
-| v2.7.9 or prior | `master` | :white_check_mark:     | :x:                       | :x:                   |       |
+| TrueNAS version  | Branch   | Supported with updates | Accepting Support tickets | Accepting Bug Reports | Notes                                                                                                          |
+| ---------------- | -------- | ---------------------- | ------------------------- | --------------------- | -------------------------------------------------------------------------------------------------------------- | --- |
+| 22.02.4 or prior | `master` | :x:     | :x:                       | :x:                   | Advised to update to 22.12.1 release of [TrueNAS SCALE](https://www.truenas.com/docs/scale/scalereleasenotes/) |     |
+| 22.12.1          | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Most Stable Release as of 2023-02-21                                                                           |
+| Nightly          | `master` | :white_check_mark:     | :x:                       | :white_check_mark:    | Please only submit bug reports during codefreeze                                                               |
 
 :::warning Support Guidelines
 
@@ -62,7 +32,7 @@ please report them to our [github](https://github.com/truecharts/charts/issues/n
 ## Incubator Train Charts
 
 Our support policy for `incubator` train charts is different for those on the `stable` train. Those charts are work in progress,
-may break at anytime and we're still going through many of the charts from unRAID. We won't accept support tickets for `incubator` train
-charts on our [discord](https://discord.gg/tVsPTHWTtr). However, we have an **#incubator-chat** channel for these apps to help get them running and/or receive feedback.
-With enough positive feedback a chart can be promoted to `stable` train. Feedback about bugs is also accepted there which can be used to fix them.
+may break at anytime and we're still going through many of the charts from unRAID. We won't accept support tickets on our discord for `incubator` train
+charts on our [discord](https://discord.gg/tVsPTHWTtr). However we have an **#incubator-chat** channel for these apps to help get them running and/or receive feedback.
+With enough posivite feedback a chart can be promoted to `stable` train. Feedback about bugs is also accepted there which can be used to fix them.
 Assume anything in the `incubator` train is in beta and you're testing it. As well, anything installed in `incubator` will have to be REINSTALLED once it moves to the `stable` train.

.github/actions/collect-changes/action.yaml

@@ -42,13 +42,12 @@ runs:
         for CHARTPATH in "${PATHS[@]}"
         do
           IFS='/' read -r -a path_parts <<< "${CHARTPATH}"
-          CHARTS+=("${path_parts[0]}/${path_parts[1]}/${path_parts[2]}")
+          CHARTS+=("${path_parts[1]}/${path_parts[2]}")
         done
 
         # Remove duplicates
         CHARTS=( `printf "%s\n" "${CHARTS[@]}" | sort -u` )
         # Set output to changed charts
-        echo "Changed charts: ${CHARTS[*]}"
         printf "::set-output name=addedOrModified::%s\n" "${CHARTS[*]}"
 
     - name: Collect bumped charts after last tag
@@ -107,9 +106,11 @@ runs:
 
         # Remove duplicates
         CHARTS=( `printf "%s\n" "${CHARTS[@]}" | sort -u` )
+        # Set output to changed charts
+        printf "::set-output name=addedOrModified::%s\n" "${CHARTS[*]}"
 
         echo "Number of detected changed charts: ${#CHARTS[@]}"
-        if [ ${#CHARTS[@]} -eq 0 ] || [ "${CHARTS[0]}" == ' ' ] || [ "${CHARTS[0]}" == '/' ]; then
+        if [ ${#CHARTS[@]} -eq 0 ] || [ "${CHARTS[0]}" = " " ] || [ "${CHARTS[0]}" = "/" ]; then
           echo "No Changed Charts detected since latest tag..."
           printf "::set-output name=changesDetectedAfterTag::%s\n" "false"
         else
@@ -119,7 +120,7 @@ runs:
           # Get only the chart paths
 
           # Set output to changed charts
-          echo "Changed charts since latest tag: ${CHARTS[*]}"
+          echo "Changed charts: ${CHARTS[*]}"
           printf "::set-output name=modifiedChartsAfterTag::%s\n" "${CHARTS[*]}"
         fi
         popd > /dev/null

.github/actions/label-from-status/action.yaml

@@ -0,0 +1,48 @@
+name: "Set issue labels based on status"
+description: "Sets / removes issue labels based on CI job status"
+inputs:
+  token:
+    required: true
+    description: "The Github API token to use"
+  issue-number:
+    required: true
+    description: "The issue to label"
+  prefix:
+    required: true
+    description: "The label prefix (e.g. lint, install)"
+  job-status:
+    required: true
+    description: "The status of the CI job"
+  remove-on-skipped:
+    required: false
+    default: false
+    description: "Remove the label if the job was skipped"
+
+runs:
+  using: "composite"
+  steps:
+    - name: Label success
+      uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90 # tag=1.0.4
+      if: ${{ inputs.job-status == 'success' }}
+      with:
+        repo-token: ${{ inputs.token }}
+        issue-number: ${{ inputs.issue-number }}
+        add-labels: "${{ inputs.prefix }}:ok"
+        remove-labels: "${{ inputs.prefix }}:failed"
+
+    - name: Label failure
+      uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90 # tag=1.0.4
+      if: ${{ inputs.job-status == 'failure' }}
+      with:
+        repo-token: ${{ inputs.token }}
+        issue-number: ${{ inputs.issue-number }}
+        add-labels: "${{ inputs.prefix }}:failed"
+        remove-labels: "${{ inputs.prefix }}:ok"
+
+    - name: Remove label
+      uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90 # tag=1.0.4
+      if: ${{ (inputs.job-status == 'skipped') && (inputs.remove-on-skipped == 'true') }}
+      with:
+        repo-token: ${{ inputs.token }}
+        issue-number: ${{ inputs.issue-number }}
+        remove-labels: "${{ inputs.prefix }}:ok, ${{ inputs.prefix }}:failed"

.github/cr.yaml

@@ -0,0 +1,7 @@
+owner: truecharts
+git-repo: charts
+repo: charts
+charts-dir: charts/*
+charts_repo_url: "https://charts.truecharts.org"
+SkipExisting: true
+skipExisting: true

.github/ct-install.yaml

@@ -1,44 +1,40 @@
 remote: origin
 target-branch: master
-helm-extra-args: --timeout 250s
+helm-extra-args: --timeout 300s
 chart-yaml-schema: .github/chart_schema.yaml
 chart-dirs:
   - charts/incubator
   - charts/stable
   - charts/dependency
+  - charts/core
   - charts/dev
+  - charts/games
   - charts/enterprise
-  - charts/operators
+  - charts/SCALE
 excluded-charts:
   - charts/dependency/subchart
-  - charts/incubator/twingate-connector
-  - charts/incubator/docassemble
-  - charts/incubator/eco
-  - charts/incubator/midarr
+  - charts/incubator/frigate
   - charts/incubator/orbital-sync
   - charts/incubator/plex-meta-manager
-  - charts/incubator/telepush
   - charts/library/common
   - charts/stable/alertmanager-bot
   - charts/stable/alertmanager-bot
   - charts/stable/alertmanager-discord
   - charts/stable/amcrest2mqtt
-  - charts/stable/arksurvivalevolved
-  - charts/stable/tauticord
   - charts/stable/discordgsm
   - charts/stable/facebox
   - charts/stable/foundryvtt
+  - charts/stable/foundryvtt
+  - charts/stable/frigate
   - charts/stable/heimdall
-  - charts/stable/mc-router
   - charts/stable/multus
-  - charts/stable/local-ai
   - charts/stable/orbital-sync
   - charts/stable/plex-meta-manager
   - charts/stable/pod-gateway
   - charts/stable/promcord
+  - charts/stable/promcord
   - charts/stable/rdesktop
   - charts/stable/reg
-  - charts/stable/romm
   - charts/stable/ser2sock
   - charts/stable/storj-node
   - charts/stable/tailscale
@@ -48,9 +44,6 @@ excluded-charts:
 chart-repos:
   - truecharts=https://charts.truecharts.org
   - truecharts-library=https://library-charts.truecharts.org
-  - truecharts-deps=https://deps.truecharts.org
-  - jetstack=https://charts.jetstack.io
-  - vmwaretanzu=https://vmware-tanzu.github.io/helm-charts
-  - cnpg=https://cloudnative-pg.github.io/charts
-  - metallb=https://metallb.github.io/metallb
-  - prometheus-community=https://prometheus-community.github.io/helm-charts
+  - bitnami=https://charts.bitnami.com/bitnami
+  - grafana=https://grafana.github.io/helm-charts
+  - prometheus=https://prometheus-community.github.io/helm-charts

.github/ct-lint.yaml

@@ -1,21 +1,20 @@
 remote: origin
 target-branch: master
 chart-yaml-schema: .github/chart_schema.yaml
-helm-extra-args: --timeout 120s
+helm-extra-args: --timeout 600s
 chart-dirs:
   - charts/incubator
   - charts/stable
   - charts/dependency
+  - charts/core
   - charts/dev
+  - charts/games
   - charts/enterprise
-  - charts/operators
+  - charts/SCALE
 excluded-charts: []
 chart-repos:
   - truecharts=https://charts.truecharts.org
   - truecharts-library=https://library-charts.truecharts.org
-  - truecharts-deps=https://deps.truecharts.org
-  - jetstack=https://charts.jetstack.io
-  - vmwaretanzu=https://vmware-tanzu.github.io/helm-charts
-  - cnpg=https://cloudnative-pg.github.io/charts
-  - metallb=https://metallb.github.io/metallb
-  - prometheus-community=https://prometheus-community.github.io/helm-charts
+  - bitnami=https://charts.bitnami.com/bitnami
+  - grafana=https://grafana.github.io/helm-charts
+  - prometheus=https://prometheus-community.github.io/helm-charts

.github/renovate-config.js

@@ -0,0 +1,23 @@
+module.exports = {
+  dryRun: false,
+  username: "truecharts-admin",
+  gitAuthor: "truecharts-admin <bot@truecharts.org>",
+  onboarding: false,
+  platform: "github",
+  repositories: ["truecharts/charts"],
+  packageRules: [
+    {
+      description: "lockFileMaintenance",
+      matchUpdateTypes: [
+        "pin",
+        "digest",
+        "patch",
+        "minor",
+        "major",
+        "lockFileMaintenance",
+      ],
+      dependencyDashboardApproval: false,
+      stabilityDays: 0,
+    },
+  ],
+};

.github/renovate.json5

@@ -8,10 +8,10 @@
   "commitMessageExtra": "to {{newVersion}}",
   "commitMessageSuffix": "",
   "rebaseWhen": "conflicted",
-  "prConcurrentLimit": 150,
+  "prConcurrentLimit": 50,
   "timezone":"Europe/Amsterdam",
   "pinDigests": true,
-  "automerge": false,
+  "automerge": true,
   "gitAuthor": "TrueCharts-Admin <bot@truecharts.org>",
   "helm-values": {
     "fileMatch": ["charts/.+/.*values\\.yaml$", "charts/.+/SCALE/.*_values\\.yaml$"]
@@ -20,12 +20,6 @@
     "fileMatch": ["charts/.+/Chart\\.yaml$"]
   },
   "packageRules": [
-    // Bundle Github Actions
-    {
-      "matchManagers": ["github-actions"],
-      "groupName": "Github-Actions",
-      "automerge": true
-    },
     // Setup datasources for dep updates
     {
       "datasources": ["helm"],
@@ -35,19 +29,28 @@
     // global docker datasource settings
     {
       "datasources": ["docker"],
+      "matchManagers": ["helm-values"],
       "enabled": true,
       "pinDigests": true,
-      "automerge": false,
-      "autoApprove": true,
+      "automerge": true,
+      "commitMessageTopic": "container image {{depName}}",
+      "commitMessageExtra": "to {{#if isSingleVersion}}v{{{newVersion}}}{{else}}{{{newValue}}}{{/if}}",
+      "matchUpdateTypes": ["major", "minor", "patch", "digest"],
+    },
+    {
+      "datasources": ["docker"],
+      "enabled": true,
+      "pinDigests": true,
+      "automerge": true,
       "separateMinorPatch": true,
       "commitMessageTopic": "container image {{depName}}",
-      "commitMessageExtra": "to {{#if isSingleVersion}}v{{{newVersion}}}{{else}}{{{newValue}}}{{/if}}@{{newDigestShort}}",
+      "commitMessageExtra": "to {{#if isSingleVersion}}v{{{newVersion}}}{{else}}{{{newValue}}}{{/if}}",
     },
     // Setup datasources for github actions
     {
       "matchManagers": ["github-actions"],
       "excludePackageNames": ["stefanzweifel/git-auto-commit-action"],
-      "automerge": true,
+      "automerge": false,
     },
     //
     // helm deps
@@ -59,22 +62,22 @@
       "bumpVersion": "major",
       "labels": ["update/helm/dependency/major"],
       "groupName": ["helm dependency major"],
-      "matchPaths": ["charts/dependency/**", "templates/**"],
+      "matchPaths": ["charts/dependency/**"],
     },
     {
       "matchDatasources": ["helm"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "minor",
         "patch"
       ],
       "bumpVersion": "patch",
-      "labels": ["update/helm/dependency/non-major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "templates/**"],
+      "labels": ["update/helm/dependency/non-major"],
+      "matchPaths": ["charts/dependency/**"],
       "groupName": "helm dependency non-major",
     },
     //
-    // helm ent and operators
+    // helm ent
     //
     {
       "matchDatasources": ["helm"],
@@ -83,22 +86,7 @@
       "enabled": true,
       "labels": ["update/helm/general/major"],
       "groupName": ["helm general major"],
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
-      "schedule": [
-        "before 10pm on tuesday"
-      ],
-    },
-    {
-      "matchDatasources": ["helm"],
-      "automerge": false,
-      "matchUpdateTypes": [
-        "minor"
-      ],
-      "enabled": true,
-      "bumpVersion": "patch",
-      "labels": ["update/helm/general/non-major", "automerge"],
-      "groupName": "helm general non-major",
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "matchPaths": ["charts/enterprise/**"],
       "schedule": [
         "before 10pm on tuesday"
       ],
@@ -107,15 +95,14 @@
       "matchDatasources": ["helm"],
       "automerge": true,
       "matchUpdateTypes": [
-        "digest",
-        "patch",
-        "pin"
+        "minor",
+        "patch"
       ],
       "enabled": true,
       "bumpVersion": "patch",
-      "labels": ["update/helm/general/non-major", "automerge"],
+      "labels": ["update/helm/general/non-major"],
       "groupName": "helm general non-major",
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "matchPaths": ["charts/enterprise/**"],
       "schedule": [
         "before 10pm on tuesday"
       ],
@@ -135,33 +122,16 @@
         "before 10pm on tuesday"
       ],
     },
-
     {
       "matchDatasources": ["helm"],
       "automerge": true,
       "enabled": true,
       "matchUpdateTypes": [
-        "minor"
+        "minor",
+        "patch"
       ],
       "bumpVersion": "patch",
-      "labels": ["update/helm/general/non-major", "automerge"],
-      "groupName": "helm general non-major",
-      "matchPaths": ["charts/incubator/**", "charts/SCALE/**", "charts/dev/**", "charts/stable/**", "templates/app/**"],
-      "schedule": [
-        "before 10pm on tuesday"
-      ],
-    },
-    {
-      "matchDatasources": ["helm"],
-      "automerge": true,
-      "enabled": true,
-      "matchUpdateTypes": [
-        "digest",
-        "patch",
-        "pin"
-      ],
-      "bumpVersion": "patch",
-      "labels": ["update/helm/general/non-major", "automerge"],
+      "labels": ["update/helm/general/non-major"],
       "groupName": "helm general non-major",
       "matchPaths": ["charts/incubator/**", "charts/SCALE/**", "charts/dev/**", "charts/stable/**", "templates/app/**"],
       "schedule": [
@@ -169,26 +139,26 @@
       ],
     },
     //
-    // Tag updates for semantic Docker tags on enterprise and operatorApps
+    // Tag updates for semantic tags on enterprise Apps
     //
     {
       "matchDatasources": ["docker"],
       "updateTypes": ["major"],
       "enabled": true,
       "bumpVersion": "major",
-      "labels": ["update/docker/major"],
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "labels": ["update/docker/enterprise/major"],
+      "matchPaths": ["charts/enterprise/**"],
     },
     {
       "matchDatasources": ["docker"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "minor",
       ],
       "enabled": true,
-      "bumpVersion": "minor",
-      "labels": ["update/docker/minor"],
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "bumpVersion": "patch",
+      "labels": ["update/docker/enterprise/minor"],
+      "matchPaths": ["charts/enterprise/**"],
     },
     {
       "matchDatasources": ["docker"],
@@ -200,78 +170,33 @@
       ],
       "bumpVersion": "patch",
       "enabled": true,
-      "labels": ["update/docker/patch", "automerge"],
-      "matchPaths": ["charts/enterprise/**", "charts/operator/**"],
+      "labels": ["update/docker/enterprise/patch"],
+      "matchPaths": ["charts/enterprise/**"],
     },
     //
-    // Tag updates for semantic tags on incubator and dev charts
+    // Tag updates for semantic tags on all but enterprise Apps
     //
     {
       "matchDatasources": ["docker"],
       "updateTypes": ["major"],
       "bumpVersion": "minor",
       "enabled": false,
-      "labels": ["update/docker/incubator/major", "automerge"],
-      "matchPaths": ["charts/incubator/**", "charts/dev/**"],
-    },
-    {
-      "matchDatasources": ["docker"],
-      "automerge": false,
-      "matchUpdateTypes": [
-        "minor",
-        "patch",
-        "digest",
-      ],
-      "bumpVersion": "patch",
-      "enabled": false,
-      "labels": ["update/docker/incubator/non-major", "automerge"],
-      "matchPaths": ["charts/incubator/**", "charts/dev/**"],
-    },
-    {
-      "matchDatasources": ["docker"],
-      "automerge": false,
-      "matchUpdateTypes": [
-        "pin",
-      ],
-      "bumpVersion": "patch",
-      "enabled": false,
-      "labels": ["update/docker/incubator/non-major", "automerge"],
-      "matchPaths": ["charts/incubator/**", "charts/dev/**"],
-    },
-    //
-    // Tag updates for semantic tags on all but enterprise, operator and incubator Apps
-    //
-    {
-      "matchDatasources": ["docker"],
-      "updateTypes": ["major"],
-      "bumpVersion": "minor",
-      "enabled": true,
       "labels": ["update/docker/general/major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/stable/**", "templates/app/**"],
+      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/incubator/**", "charts/dev/**", "charts/stable/**", "templates/app/**"],
     },
     {
       "matchDatasources": ["docker"],
       "automerge": true,
       "matchUpdateTypes": [
         "minor",
-      ],
-      "bumpVersion": "minor",
-      "enabled": true,
-      "labels": ["update/docker/general/non-major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/library/**", "charts/stable/**", "templates/app/**"],
-    },
-    {
-      "matchDatasources": ["docker"],
-      "automerge": true,
-      "matchUpdateTypes": [
         "patch",
         "digest",
         "pin",
       ],
       "bumpVersion": "patch",
-      "enabled": true,
+      "enabled": false,
       "labels": ["update/docker/general/non-major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/library/**", "charts/stable/**", "templates/app/**"],
+      "matchPaths": ["charts/dependency/**", "charts/SCALE/**",  "charts/incubator/**", "charts/dev/**", "charts/library/**", "charts/stable/**", "templates/app/**"],
     },
     //
     // Tag semantic version type based on regex
@@ -294,7 +219,7 @@
     {
       "matchDatasources": ["docker"],
       "versioning": "regex:^v(?<major>\\d+)-(?<minor>\\d+)$",
-      "matchPackagePrefixes": ["jupyter"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/jupyter"],
       "groupName": "jupyter",
     },
     {
@@ -305,14 +230,9 @@
     },
     {
       "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["altran1502/immich"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/immich"],
       "groupName": "immich",
     },
-    {
-      "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["portainer"],
-      "groupName": "portainer",
-    },
     {
       "matchDatasources": ["docker"],
       "matchPackagePrefixes": ["tccr.io/truecharts/neko"],
@@ -320,14 +240,9 @@
     },
     {
       "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["https://lscr.io/linuxserver/webtop"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/webtop"],
       "groupName": "webtop",
     },
-    {
-      "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["tccr.io/truecharts/metallb"],
-      "groupName": "metallb",
-    },
     {
       "matchDatasources": ["docker"],
       "matchPackagePrefixes": ["tccr.io/truecharts/zabbix"],
@@ -335,7 +250,7 @@
     },
     {
       "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["vikunja"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/vikunja"],
       "groupName": "vikunja",
     },
     {
@@ -345,12 +260,12 @@
     },
     {
       "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["itzg/bungeecord"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/bungeecord"],
       "groupName": "bungeecord",
     },
     {
       "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["itzg/minecraft-java"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/minecraft-java"],
       "groupName": "minecraft-java",
     },
     {
@@ -370,7 +285,7 @@
     },
     {
       "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["ghcr.io/goauthentik/"],
+      "matchPackagePrefixes": ["tccr.io/truecharts/authentik"],
       "groupName": "authentik",
     },
     {
@@ -412,305 +327,6 @@
       "matchDatasources": ["docker"],
       "matchPackagePrefixes": ["tccr.io/truecharts/ersatztv"],
       "groupName": "ersatztv",
-    },
-    // matchPackagePatterns
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>14)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackagePatterns": ["^bitnami/postgresql$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{4})-(?<minor>\\d{2})-(?<patch>\\d{2})$",
-      "matchPackagePatterns": ["^.*oznu\\/homebridge$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)$",
-      "matchPackagePatterns": ["^jupyter\\/.+$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-ubuntu$",
-      "matchPackagePatterns": ["^zabbix\\/zabbix-.*$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^stable-(?<major>\\d{1})(?<minor>\\d{1})(?<patch>\\d{2}).*$",
-      "matchPackagePatterns": ["^jitsi\\/.*$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackagePatterns": ["^penpot\\/.*$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^\\d*-jammy-(?<variant>.+)-v(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackagePatterns": ["^.+\\/koush\\/scrypted$"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^version-(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-.*$",
-      "matchPackagePatterns": ["^.*linuxserver\\/deluge$"],
-      "automerge": true,
-    },
-    // matchPackageNames
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-postgres-tomcat$",
-      "matchPackageNames": ["xwiki"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^version-(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["fireflyiii/core"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^v(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-\\d+\\.\\d+\\.\\d+$",
-      "matchPackageNames": ["netboxcommunity/netbox"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{2})(?<minor>\\d{2})(?<patch>\\d{2})$",
-      "matchPackageNames": ["photoprism/photoprism"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["cloudflare/cloudflared"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^version-(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["linuxserver/calibre-web"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^version-v(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["linuxserver/heimdall"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^postgresql-v(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["ghcr.io/umami-software/umami"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^version-v(?<major>\\d+)\\.(?<minor>\\d+)\\.?(?<patch>\\d*)$",
-      "matchPackageNames": ["linuxserver/mylar3"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^[a-z0-9]{9}-v(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-go\\d+\\.\\d+\\.\\d+$",
-      "matchPackageNames": ["storjlabs/storagenode"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-php8\\.0-apache$",
-      "matchPackageNames": ["joyqi/typecho"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^v\\.(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["difegue/lanraragi"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^RELEASE\\.(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)T\\d+-\\d+-\\d+Z$",
-      "matchPackageNames": ["minio/minio"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^RELEASE\\.(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)T\\d+-\\d+-\\d+Z$",
-      "matchPackageNames": ["minio/mc"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^apache-(?<major>\\d+)\\.(?<minor>\\d+)\\.?(?<patch>\\d*)-prod$",
-      "matchPackageNames": ["kimai/kimai2"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)$",
-      "matchPackageNames": ["rssbridge/rss-bridge"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)$",
-      "matchPackageNames": ["alexta69/metube"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^focal-(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["codeproject/senseai-server"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^latest-(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)$",
-      "matchPackageNames": ["wangqiru/ttrss"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)(-\\d+)?$",
-      "matchPackageNames": ["kiwix/kiwix-serve"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^v(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-omnibus$",
-      "matchPackageNames": ["ghcr.io/analogj/scrutiny"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)-(?<minor>\\d+)-(?<patch>\\d+)$",
-      "matchPackageNames": ["diygod/rsshub"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-amd64(nvidia)?$",
-      "matchPackageNames": ["blakeblackshear/frigate"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{1,4})\\.(?<minor>\\d+)\\.(?<patch>\\d+)$",
-      "matchPackageNames": ["kopia/kopia"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{4})\\.(?<minor>\\d{1,2})\\.(?<patch>\\d{1,2).*$",
-      "matchPackageNames": ["alicevision/meshroom"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{4})\\.(?<minor>\\d{1,2})\\.(?<patch>\\d{1,2})$",
-      "matchPackageNames": ["itzg/bungeecord"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^java8-(?<major>\\d{4})\\.(?<minor>\\d{1,2})\\.(?<patch>\\d{1,2})$",
-      "matchPackageNames": ["itzg/bungeecord"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^java11-(?<major>\\d{4})\\.(?<minor>\\d{1,2})\\.(?<patch>\\d{1,2})$",
-      "matchPackageNames": ["itzg/bungeecord"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^java17-(?<major>\\d{4})\\.(?<minor>\\d{1,2})\\.(?<patch>\\d{1,2})$",
-      "matchPackageNames": ["itzg/bungeecord"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{4})\\.(?<minor>\d{1,2})\\.(?<patch>\\d{1,2})(-java\\d{1,2}.*)?$",
-      "matchPackageNames": ["itzg/minecraft-server"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d{4})(?<minor>\\d{2})(?<patch>\\d{2})$",
-      "matchPackageNames": ["ankicommunity/anki-sync-server"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)-jdk17$",
-      "matchPackageNames": ["jenkins/jenkins"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^x64-v(?<major>\\d*)\\.(?<minor>\\d*)\\.(?<patch>\\d*)$",
-      "matchPackageNames": ["housewrecker/gaps"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d*)\\.(?<minor>\\d*)\\.(?<patch>\\d*)-\\d*$",
-      "matchPackageNames": ["sameersbn/apt-cacher-ng"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^release-(?<major>\\d*)\\.(?<minor>\\d*)$",
-      "matchPackageNames": ["mattermost/mattermost-enterprise-edition"],
-      "automerge": true,
-    },
-    {
-      "matchDatasources": ["docker"],
-      "versioning": "regex:^(?<major>\\d+)\\.(?<minor>\\d+)\\.(?<patch>\\d+)-.+$",
-      "matchPackageNames": ["corentinth/it-tools"],
-      "automerge": true,
-    },
-    //
-    // Version strategies
-    //
-    // Versioning for linuxserver two-three digit container versions
-    {
-      "packagePatterns": ["^linuxserver\\/","^deepquestai\\/"],
-      "versionScheme": "regex:^(?<compatibility>.*?(\\d+\\.)??)(?<major>\\d+)\\.(?<minor>\\d+)\\.?(?<patch>\\d+)?(-r?p?\\d)?$"
-    },
-    {
-      "matchDatasources": [
-        "docker"
-      ],
-      "versioning": "loose",
-      "matchPackageNames": [
-        "ghcr.io/onedr0p/plex",
-        "ghcr.io/onedr0p/qbittorrent",
-        "sirfragalot/hyperion.ng",
-      ],
-    },
-    {
-      "matchDatasources": [
-        "docker"
-      ],
-      "matchPackageNames": [
-        "quay.io/helmpack/chart-releaser",
-        "jnorwood/helm-docs",
-        "quay.io/git-chglog/git-chglog"
-      ],
-      "automerge": false,
-      "matchUpdateTypes": ["major", "minor", "patch", "digest", "pin"],
-      "labels": ["renovate/image", "ci"],
-    },
-
+    }
   ]
 }

.github/scripts/build-catalog.sh

@@ -74,23 +74,7 @@ patch_apps() {
     cat ${target}/Chart.yaml | grep "icon" >> catalog/${train}/${chartname}/item.yaml
     sed -i "s|^icon:|icon_url:|g" catalog/${train}/${chartname}/item.yaml
     echo "categories:" >> catalog/${train}/${chartname}/item.yaml
-    category=$(cat ${target}/Chart.yaml | yq '.annotations."truecharts.org/category"' -r)
-    echo "- $category" >> catalog/${train}/${chartname}/item.yaml
-
-    # Generate screenshots
-    screenshots=""
-    if [[ -d "${target}/screenshots" ]]; then
-        screenshots=$(ls ${target}/screenshots)
-    fi
-    if [[ -n $screenshots ]]; then
-        echo "screenshots:" >> catalog/${train}/${chartname}/item.yaml
-        for screenshot in $screenshots; do
-            echo "  - https://truecharts.org/img/hotlink-ok/chart-screenshots/${chartname}/${screenshot}" >> catalog/${train}/${chartname}/item.yaml
-        done
-    else
-        echo "screenshots: []" >> catalog/${train}/${chartname}/item.yaml
-    fi
-    rm -rf ${target}/screenshots
+    cat ${target}/Chart.yaml | yq '.annotations."truecharts.org/catagories"' -r >> catalog/${train}/${chartname}/item.yaml
     # Copy changelog from website
     if [[ ! -f "website/docs/charts/${train}/${chartname}/CHANGELOG.md" ]]; then
         touch "website/docs/charts/${train}/${chartname}/CHANGELOG.md"

.github/scripts/fetch_helm_deps.sh

@@ -19,21 +19,8 @@ trains=(
     "stable"
     "incubator"
     "dependency"
-    "operators"
 )
 
-load_gpg_key() {
-echo ""
-echo "⏬ Downloading and Loading TrueCharts pgp Public Key"
-gpg_dir=.cr-gpg
-mkdir -p "$gpg_dir"
-curl --silent https://keybase.io/truecharts/pgp_keys.asc | gpg --dearmor > $gpg_dir/pubring.gpg || echo "❌ Couldn't load  Public Key."
-curl --silent https://cert-manager.io/public-keys/cert-manager-keyring-2021-09-20-1020CF3C033D4F35BAE1C19E1226061C665DF13E.gpg > $gpg_dir/certman.gpg || echo "❌ Couldn't load certman Public Key."
-echo "✅ Public Key loaded successfully..."
-echo ""
-}
-export -f load_gpg_key
-
 download_deps() {
 local train_chart="$1"
 
@@ -94,88 +81,21 @@ for idx in $(eval echo "{0..$length}"); do
             # Extract url from repo_url. It's under .entries.DEP_NAME.urls. We filter the specific version first (.version)
             dep_url=$(v="$version" n="$name" go-yq '.entries.[env(n)].[] | select (.version == env(v)) | .urls.[0]' "$index_cache/$repo_dir/index.yaml")
 
-            # tmp hotpatch for cert-manager
-            if [[ !  "$dep_url" == "https"* ]]; then
-              dep_url="https://charts.jetstack.io/${dep_url}"
-            fi
-
             echo ""
             echo "⏬ Downloading dependency $name-$version from $dep_url..."
             mkdir -p "$cache_path/$repo_dir"
             wget --quiet "$dep_url" -P "$cache_path/$repo_dir"
-            wget --quiet "$dep_url.prov" -P "$cache_path/$repo_dir" || echo "failed downloading .prov"
-
             if [ ! $? ]; then
                 echo "❌ wget encountered an error..."
-              if [[ "$train_chart" =~ incubator\/.* ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "velero" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "metallb" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "cloudnative-pg" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "kube-prometheus-stack" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "cert-manager" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/certman.gpg || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/certman.gpg || exit 1
-              else
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || exit 1
-              fi
+                helm dependency build "$charts_path/$train_chart/Chart.yaml" || helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
             fi
 
             if [ -f "$cache_path/$repo_dir/$name-$version.tgz" ]; then
                 echo "✅ Dependency Downloaded!"
-                if [[ "$name" =~ "cert-manager" ]]; then
-                  helm verify $cache_path/$repo_dir/$name-$version.tgz --keyring $gpg_dir/certman.gpg || \
-                  helm verify $cache_path/$repo_dir/$name-$version.tgz --keyring $gpg_dir/certman.gpg || exit 1
-                elif [[ "$name" =~ "velero" ]]; then
-                   echo "Velero is not signed..."
-                elif [[ "$name" =~ "metallb" ]]; then
-                   echo "metallb is not signed..."
-                elif [[ "$name" =~ "cloudnative-pg" ]]; then
-                   echo "cloudnative-pg is not signed..."
-                elif [[ "$name" =~ "kube-prometheus-stack" ]]; then
-                   echo "kube-prometheus-stack is not signed..."
-                elif [[ ! "$train_chart" =~ incubator\/.* ]]; then
-                  echo "Validating dependency signature..."
-                  helm verify $cache_path/$repo_dir/$name-$version.tgz --keyring $gpg_dir/pubring.gpg || \
-                  helm verify $cache_path/$repo_dir/$name-$version.tgz --keyring $gpg_dir/pubring.gpg || exit 1
-                else
-                  echo "Skipping dependency signature verification for $train_chart..."
-                fi
             else
                 echo "❌ Failed to download dependency"
                 # Try helm dependency build/update or otherwise fail fast if a dep fails to download...
-              if [[ "$train_chart" =~ incubator\/.* ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "velero" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "metallb" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "cloudnative-pg" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "kube-prometheus-stack" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              elif [[ "$name" =~ "cert-manager" ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/certman.gpg || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/certman.gpg || exit 1
-              else
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || exit 1
-              fi
+                helm dependency build "$charts_path/$train_chart/Chart.yaml" || helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
             fi
         fi
         echo ""
@@ -190,16 +110,13 @@ for idx in $(eval echo "{0..$length}"); do
         else
             echo "❌ Failed to copy dependency"
             # Try helm dependency build/update or otherwise fail fast if a dep fails to copy...
-            helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-            helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
+            helm dependency build "$charts_path/$train_chart/Chart.yaml" || helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
         fi
     fi
 done
 }
 export -f download_deps
 
-load_gpg_key
-
 if [ -z "$1" ]; then
   for train in "${trains[@]}"; do
       for chart in $(ls "$charts_path/$train"); do

.github/scripts/tc-lint.sh

@@ -1,277 +0,0 @@
-#!/bin/bash
-
-function check_version() {
-    chart_path=${1:?"No chart path provided to [Version Check]"}
-    target_branch=${2:?"No target branch provided to [Version Check]"}
-
-    # If only docs changed, skip version check
-    # git diff target_branch, filter only on $chart_path and invert match for $chart_path/docs
-    # note that it requires branches to be up to date for this to work.
-    chart_changes=$(git diff --name-status "$target_branch" -- "$chart_path" | grep -v "$chart_path/docs")
-    echo -e "\tChange files: \n\n$chart_changes"
-
-    if [[ -z "$chart_changes" ]]; then
-        echo -e "\tLooks like only docs changed. Skipping chart version check"
-        echo -e "\t✅ Chart version: No bump required"
-        echo ''
-        return
-    fi
-
-    new=$(git diff "$target_branch" -- "$chart_path" | sed -nr 's/^\+version: (.*)$/\1/p')
-    old=$(git diff "$target_branch" -- "$chart_path" | sed -nr 's/^\-version: (.*)$/\1/p')
-
-    if [[ -z "$new" ]]; then
-        echo -e "\t❌ Chart version: Not changed"
-        curr_result=1
-    fi
-
-    if [[ -n "$new" ]]; then
-        echo -e "\t🔙 Old Chart Version: $old"
-        echo -e "\t🆕 New Chart Version: $new"
-
-        if [[ $(echo "$new\n$old" | sort -V -r | head -n1) != "$old" ]]; then
-            echo -e "\t✅ Chart version: Bumped"
-        else
-            echo -e "\t❌ Chart version: Not bumped or downgraded"
-            curr_result=1
-        fi
-    fi
-    echo ''
-}
-export -f check_version
-
-function check_chart_schema(){
-    chart_path=${1:?"No chart path provided to [Chart.yaml lint]"}
-
-    yamale_output=$(yamale --schema .github/chart_schema.yaml "$chart_path/Chart.yaml")
-    yamale_exit_code=$?
-    while IFS= read -r line; do
-        if [[ -n $line ]]; then
-            echo -e "\t$line"
-        fi
-    done <<< "$yamale_output"
-
-    if [ $yamale_exit_code -ne 0 ]; then
-        echo -e "\t❌ Chart Schema: Failed"
-        curr_result=1
-    else
-        echo -e "\t✅ Chart Schema: Passed"
-    fi
-    echo ''
-}
-export -f check_chart_schema
-
-function helm_lint(){
-    chart_path=${1:?"No chart path provided to [Helm lint]"}
-
-    # Print only errors and warnings
-    helm_lint_output=$(helm lint --quiet "$chart_path")
-    helm_lint_exit_code=$?
-    while IFS= read -r line; do
-        if [[ -n $line ]]; then
-            echo -e "\t$line"
-        fi
-    done <<< "$helm_lint_output"
-
-    if [ $helm_lint_exit_code -ne 0 ]; then
-        echo -e "\t❌ Helm Lint: Failed"
-        curr_result=1
-    else
-        echo -e "\t✅ Helm Lint: Passed"
-    fi
-    echo ''
-}
-export -f helm_lint
-
-function helm_template(){
-    chart_path=${1:?"No chart path provided to [Helm template]"}
-    values=${2:-}
-
-    if [[ -n "$values" ]]; then
-        values="-f $values"
-    fi
-
-    # Print only errors and warnings
-    helm_template_output=$(helm template $values "$chart_path" 2>&1 >/dev/null)
-    helm_template_exit_code=$?
-    while IFS= read -r line; do
-        if [[ -n $line ]]; then
-            echo -e "\t$line"
-        fi
-    done <<< "$helm_template_output"
-
-    if [ $helm_template_exit_code -ne 0 ]; then
-        echo -e "\t❌ Helm template: Failed"
-        curr_result=1
-    else
-        echo -e "\t✅ Helm template: Passed"
-    fi
-    echo ''
-}
-export -f helm_template
-
-function yaml_lint(){
-    file_path=${1:?"No file path provided to [YAML lint]"}
-
-    yaml_lint_output=$(yamllint --config-file .github/yaml-lint-conf.yaml "$file_path")
-    yaml_lint_exit_code=$?
-    while IFS= read -r line; do
-        if [[ -n $line ]]; then
-            echo -e "\t$line"
-        fi
-    done <<< "$yaml_lint_output"
-
-    if [ $yaml_lint_exit_code -ne 0 ]; then
-        echo -e "\t❌ YAML Lint: Failed [$file_path]"
-        curr_result=1
-    else
-        echo -e "\t✅ YAML Lint: Passed [$file_path]"
-    fi
-    echo ''
-}
-export -f yaml_lint
-
-function lint_chart(){
-    chart_path=${1:?"No chart path provided to [Lint Chart]"}
-    target_branch=${2:?"No target branch provided to [Lint Chart]"}
-    status_file=${3:?"No status file provided to [Lint Chart]"}
-
-    curr_result_file=/tmp/$(basename "$chart_path")
-    curr_result=0
-    {
-        start_time=$(date +%s)
-        echo '---------------------------------------------------------------------------------------'
-        echo "## 🔍Linting [$chart_path]"
-        echo '----------------------------------------------'
-        echo ''
-        echo "👣 Helm Lint - [$chart_path]"
-        helm_lint "$chart_path"
-
-        # FIXME: Comment out for now as it requires deps installed in linting.
-        # if [[ ! $(ls $chart_path/ci/*values.yaml) ]]; then
-        #     echo "👣 Helm Template - [$chart_path]"
-        #     helm_template "$chart_path"
-        # fi
-
-        # for values in $chart_path/ci/*values.yaml; do
-        #     if [ -f "${values}" ]; then
-        #         echo "👣 Helm Template - [$values]"
-        #         helm_template "$chart_path" "$values"
-        #     fi
-        # done
-
-        echo "👣 Chart Version - [$chart_path] against [$target_branch]"
-        check_version "$chart_path" "$target_branch"
-
-        echo "👣 Chart Schema - [$chart_path]"
-        check_chart_schema "$chart_path"
-
-        echo "👣 YAML Lint - [$chart_path/Chart.yaml]"
-        yaml_lint "$chart_path/Chart.yaml"
-
-        echo "👣 YAML Lint - [$chart_path/values.yaml]"
-        yaml_lint "$chart_path/values.yaml"
-
-        for values in $chart_path/ci/*values.yaml; do
-            if [ -f "${values}" ]; then
-                echo "👣 YAML Lint - [$values]"
-                yaml_lint "$values"
-            fi
-        done
-
-        end_time=$(date +%s)
-        diff_time=$((end_time - start_time))
-
-        echo -e "\nResult:"
-        if [ $curr_result -ne 0 ]; then
-            echo "❌ Linting [$chart_path]: Failed - Took $diff_time seconds" | tee -a "$result_file"
-        else
-            echo "✅ Linting [$chart_path]: Passed - Took $diff_time seconds" | tee -a "$result_file"
-        fi
-        echo '---------------------------------------------------------------------------------------'
-        echo ''
-    } > "$curr_result_file"
-    cat "$curr_result_file"
-    # $curr_result starts with 0, and it gets set to 1 only when a linting step fails
-    echo $curr_result >> "$status_file"
-}
-export -f lint_chart
-
-# Start of script
-
-charts=$1
-target_branch=${2:-"origin/master"}
-status_file="/tmp/status"
-exit_code=0
-
-result_file=${result_file:?"No result file provided"}
-
-rm -f "$status_file"
-rm -f "$status_file"
-
-command -v yamale >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "yamale (https://github.com/23andMe/Yamale#pip) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'pip install yamale'"
-    exit 1
-}
-
-command -v yamllint >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "yamllint (https://yamllint.readthedocs.io/en/stable/quickstart.html#installing-yamllint) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'pip install yamllint'"
-    exit 1
-}
-
-command -v helm >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "helm (https://helm.sh/docs/intro/install) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'curl https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 | bash'"
-    exit 1
-}
-
-command -v parallel >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "parallel (https://www.gnu.org/software/parallel) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'sudo apt install parallel'"
-    exit 1
-}
-
-changed=$(echo $charts | jq --raw-output '.[]')
-
-echo "📂 Charts to lint:"
-for chart in $changed; do
-    echo -e "\t- 📄 $chart"
-done
-echo ''
-
-start_time=$(date +%s)
-# Run lint_chart in parallel
-parallel --jobs $(($(nproc) * 2)) "lint_chart {} $target_branch $status_file" ::: $changed || true
-if grep -q 1 "$status_file"; then
-    exit_code=1
-fi
-end_time=$(date +%s)
-diff_time=$((end_time - start_time))
-
-echo '------------------------------------'
-
-# Print summary
-sorted=$(cat "$result_file" | sort)
-sorted=$(echo "$sorted" | sed 's/✅/:heavy_check_mark:/g')
-sorted=$(echo "$sorted" | sed 's/❌/:heavy_multiplication_x:/g')
-echo "# 📝 Linting results:" | tee "$result_file"
-echo '====================================================================================='
-echo "$sorted" | tee -a "$result_file"
-echo ''
-echo -e "Total Charts Linted: **$(echo "$sorted" | wc -l)**" | tee -a "$result_file"
-echo -e "Total Charts Passed: **$(echo "$sorted" | grep -c 'heavy_check_mark')**" | tee -a "$result_file"
-echo -e "Total Charts Failed: **$(echo "$sorted" | grep -c 'heavy_multiplication_x')**" | tee -a "$result_file"
-echo '====================================================================================='
-echo '' | tee -a "$result_file"
-
-if [ $exit_code -ne 0 ]; then
-    echo "❌ Linting: **Failed** - Took $diff_time seconds" | tee -a "$result_file"
-    echo "🖱️ Open [Lint Charts and Verify Dependencies] job" | tee -a "$result_file"
-    echo "👀 Expand [Run Chart Linting] step to view the results" | tee -a "$result_file"
-else
-    echo "✅ Linting: **Passed** - Took $diff_time seconds" | tee -a "$result_file"
-fi
-
-exit $exit_code

.github/scripts/updateTraefikMiddlewareVersions.sh

@@ -0,0 +1,53 @@
+#! /bin/bash
+
+trainsPath="./charts"
+traefikTrain="enterprise"
+
+get_latest_release() {
+    # Get latest release from GitHub api, NOTE: Remove the header when running locally (or add a valid token)
+    curl --silent \
+         --header 'authorization: Bearer ${{ secrets.GITHUB_TOKEN }}' \
+         --url "https://api.github.com/repos/$1/releases/latest" |
+    # Get tag line
+    grep '"tag_name":' |
+    # Pluck JSON value
+    sed -E 's/.*"([^"]+)".*/\1/'
+}
+
+set_key_to_version() {
+    key="$1"
+    version="$2"
+    traefikValuesFile="$trainsPath/$traefikTrain/traefik/values.yaml"
+    echo "Setting $key to $version..."
+    sed -i "s/${key}: .*/${key}: ${version}/" $traefikValuesFile
+
+    content=$(grep "$key:" "$traefikValuesFile" | sed "s/\s*${key}:\s*//" )
+    echo "New content of $key in values.yaml: $content"
+    echo ""
+}
+
+update_plugin() {
+    repo="$1"
+    key="$2"
+    pluginName="$3"
+
+    version=$(get_latest_release "$repo")
+    if [ -z "$version" ]
+    then
+        echo "Got empty version, skipping..."
+    else
+        echo "Fetched $pluginName plugin version: $version"
+        set_key_to_version "$key" "$version"
+    fi;
+}
+# Example
+# update_plugin "repo" "key_holding_version_in_values.yaml" "plugin_name_used_for_verbose_printing_only"
+
+# Real IP
+update_plugin "soulbalz/traefik-real-ip" "realIPVersion" "RealIP"
+
+# Theme Park
+update_plugin "packruler/traefik-themepark" "themeParkVersion" "ThemePark"
+
+# GeoBlock
+update_plugin "PascalMinder/geoblock" "geoBlockVersion" "GeoBlock"

.github/workflows/catalog-test.yaml

@@ -15,9 +15,9 @@ jobs:
     name: Test SCALE Catalog
     runs-on: ubuntu-latest
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
-      - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         name: Checkout
         with:
           fetch-depth: 100
@@ -26,13 +26,19 @@ jobs:
       - name: Setting repo parent dir as safe safe.directory
         run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
 
-      ## TODO: Only run on the existing catalog when CI or template changes are actually detected
-      # - name: Checkout
-      #   uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
-      #   with:
-      #     repository: truecharts/catalog
-      #     path: catalog
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          repository: truecharts/catalog
+          path: catalog
 
       - name: build-and-run
         run: |
           tools/build-release.sh
+
+      - uses: vishnudxb/cancel-workflow@c3c77eb4383ba7d023e6614a07d94fe990501ac6 # tag=v1.2
+        if: failure()
+        with:
+          repo: truecharts/charts
+          workflow_id: ${{ github.run_id }}
+          access_token: ${{ github.token }}

.github/workflows/charts-changelog.yaml

@@ -0,0 +1,89 @@
+name: "Charts: Update README"
+
+on:
+  workflow_dispatch:
+    inputs:
+      modifiedCharts:
+        required: true
+        type: string
+      isRenovatePR:
+        required: true
+        type: string
+    outputs:
+      commitHash:
+        description: "The most recent commit hash at the end of this workflow"
+        value: ${{ jobs.generate-changelog.outputs.commitHash }}
+
+jobs:
+  validate-changelog:
+    name: Validate changelog
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+
+      - name: Check changelog annotations
+        if: inputs.isRenovatePR != 'true'
+        run: |
+          CHARTS=(${{ inputs.modifiedCharts }})
+          for i in "${CHARTS[@]}"
+          do
+              IFS='/' read -r -a chart_parts <<< "$i"
+              ./.github/scripts/check-releasenotes.sh "charts/${chart_parts[0]}/${chart_parts[1]}"
+              echo ""
+          done
+
+  generate-changelog:
+    name: Generate changelog annotations
+    runs-on: ubuntu-latest
+    needs:
+      - validate-changelog
+    outputs:
+      commitHash: ${{ steps.save-commit-hash.outputs.commit_hash }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+
+      - name: Install Kubernetes tools
+        if: inputs.isRenovatePR == 'true'
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            yq
+          yq: "4.20.1"
+
+      - name: Annotate Charts.yaml for Renovate PR's
+        if: inputs.isRenovatePR == 'true'
+        env:
+          DEFAULT_BRANCH: "${{ github.event.repository.default_branch }}"
+        run: |
+          CHARTS=(${{ inputs.modifiedCharts }})
+          for i in "${CHARTS[@]}"
+          do
+              IFS='/' read -r -a chart_parts <<< "$i"
+                ./.github/scripts/renovate-releasenotes.sh "charts/${chart_parts[0]}/${chart_parts[1]}"
+              echo ""
+          done
+
+      - name: Create commit
+        id: create-commit
+        if: inputs.isRenovatePR == 'true'
+        uses: stefanzweifel/git-auto-commit-action@3ea6ae190baf489ba007f7c92608f33ce20ef04a # v4
+        with:
+          file_pattern: charts/**/
+          commit_message: "chore: Auto-update chart metadata [skip ci]"
+          commit_user_name: ${{ github.actor }}
+          commit_user_email: ${{ github.actor }}@users.noreply.github.com
+
+      - name: Save commit hash
+        id: save-commit-hash
+        run: |
+          if [ "${{ steps.create-commit.outputs.changes_detected || 'unknown' }}" == "true" ]; then
+            echo '::set-output name=commit_hash::${{ steps.create-commit.outputs.commit_hash }}'
+          else
+            echo "::set-output name=commit_hash::${GITHUB_SHA}"
+          fi

.github/workflows/charts-lint.yaml

@@ -9,130 +9,359 @@ on:
       chartChangesDetected:
         required: true
         type: string
-      modifiedFiles:
-        required: true
-        type: string
-      modifiedCharts:
-        required: true
-        type: string
 
 jobs:
-  lint-and-verify:
-    name: Lint Charts and Verify Dependencies
+  generate-lint-matrix:
+    name: Generate matrix for lint
     runs-on: ubuntu-latest
+    outputs:
+      matrix1: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts1 }}
+        }
+      matrix2: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts2 }}
+        }
+      matrix3: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts3 }}
+        }
+      matrix4: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts4 }}
+        }
+      matrix5: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts5 }}
+        }
+      matrix6: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts6 }}
+        }
+      detected1: ${{ steps.list-changed.outputs.detected1 }}
+      detected2: ${{ steps.list-changed.outputs.detected2 }}
+      detected3: ${{ steps.list-changed.outputs.detected3 }}
+      detected4: ${{ steps.list-changed.outputs.detected4 }}
+      detected5: ${{ steps.list-changed.outputs.detected5 }}
+      detected6: ${{ steps.list-changed.outputs.detected6 }}
     steps:
-      - name: Checkout [master]
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
-          ref: master
-
-      - name: Checkout [commit]
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
-        with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Setting repo parent dir as safe safe.directory
-        run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
-      - name: Install go-yq
-        run: |
-          mkdir -p $HOME/.local/bin
-          wget https://github.com/mikefarah/yq/releases/download/v4.26.1/yq_linux_amd64 -O $HOME/.local/bin/go-yq && \
-          chmod +x $HOME/.local/bin/go-yq
-          echo "$HOME/.local/bin" >> $GITHUB_PATH
-
-      - name: Install pre-commit, yamale and yamllint
-        run: |
-          pip3 install --no-cache-dir pre-commit yamale yamllint
-
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
-        with:
-          version: v3.13.2
-
-      - name: Prep Helm
-        run: |
-          helm repo add truecharts https://charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
-          helm repo add truecharts-library https://library-charts.truecharts.org
-          helm repo add jetstack https://charts.jetstack.io
-          helm repo add vmwaretanzu https://vmware-tanzu.github.io/helm-charts
-          helm repo add cnpg https://cloudnative-pg.github.io/charts
-          helm repo add metallb https://metallb.github.io/metallb
-          helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
-          helm repo update
-
-      - name: Collect changes (branch-based)
+      - name: Collect changes
         id: list-changed
         if: inputs.chartChangesDetected == 'true'
         shell: bash
         run: |
-          CHARTS="${{ inputs.modifiedCharts }}"
-          echo "Modified Charts: ${CHARTS}"
-
-          EXCLUDED_JSON=$(go-yq eval -o=json '.excluded-charts // []' .github/ct-lint.yaml)
-          CHARTS_JSON=$(echo "${CHARTS}" | jq --raw-input '.' | jq --compact-output --slurp '.')
-          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED_JSON}, \"all\": ${CHARTS_JSON}}" | jq --compact-output '.all-.excluded')
-
-          echo CHANGED_CHARTS=${OUTPUT_JSON} >> "$GITHUB_OUTPUT"
-          if [[ $(echo ${OUTPUT_JSON} | jq --compact-output '. | length') -gt 0 ]]; then
-            echo "detected=true" >> "$GITHUB_OUTPUT"
+          EXCLUDED=$(yq eval -o=json '.excluded-charts // []' .github/ct-lint.yaml)
+          CHARTS=$(ct list-changed --config .github/ct-lint.yaml)
+          CHARTS_JSON=$(echo "${CHARTS}" | jq -R -s -c 'split("\n")[:-1]')
+          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED}, \"all\": ${CHARTS_JSON}}" | jq -c '.all-.excluded')
+          OUTPUT_JSON1=$((echo $OUTPUT_JSON | jq -r -c '.[:50]'; echo $OUTPUT_JSON | jq -r -c '.[301:350]'; echo $OUTPUT_JSON | jq -r -c '.[601:650]'; echo $OUTPUT_JSON | jq -r -c '.[901:950]'; echo $OUTPUT_JSON | jq -r -c '.[1201:1250]') | jq -s add)
+          OUTPUT_JSON2=$((echo $OUTPUT_JSON | jq -r -c '.[51:100]'; echo $OUTPUT_JSON | jq -r -c '.[351:400]'; echo $OUTPUT_JSON | jq -r -c '.[651:700]'; echo $OUTPUT_JSON | jq -r -c '.[951:1000]'; echo $OUTPUT_JSON | jq -r -c '.[1251:1300]') | jq -s add)
+          OUTPUT_JSON3=$((echo $OUTPUT_JSON | jq -r -c '.[101:150]'; echo $OUTPUT_JSON | jq -r -c '.[401:450]'; echo $OUTPUT_JSON | jq -r -c '.[701:750]'; echo $OUTPUT_JSON | jq -r -c '.[1001:1050]'; echo $OUTPUT_JSON | jq -r -c '.[1301:1350]') | jq -s add)
+          OUTPUT_JSON4=$((echo $OUTPUT_JSON | jq -r -c '.[151:200]'; echo $OUTPUT_JSON | jq -r -c '.[451:500]'; echo $OUTPUT_JSON | jq -r -c '.[751:800]'; echo $OUTPUT_JSON | jq -r -c '.[1051:1100]'; echo $OUTPUT_JSON | jq -r -c '.[1351:1400]') | jq -s add)
+          OUTPUT_JSON5=$((echo $OUTPUT_JSON | jq -r -c '.[201:250]'; echo $OUTPUT_JSON | jq -r -c '.[501:550]'; echo $OUTPUT_JSON | jq -r -c '.[801:850]'; echo $OUTPUT_JSON | jq -r -c '.[1101:1150]'; echo $OUTPUT_JSON | jq -r -c '.[1401:1450]') | jq -s add)
+          OUTPUT_JSON6=$((echo $OUTPUT_JSON | jq -r -c '.[251:300]'; echo $OUTPUT_JSON | jq -r -c '.[551:600]'; echo $OUTPUT_JSON | jq -r -c '.[851:900]'; echo $OUTPUT_JSON | jq -r -c '.[1151:1200]'; echo $OUTPUT_JSON | jq -r -c '.[1451:1500]') | jq -s add)
+          echo ::set-output name=charts1::${OUTPUT_JSON1}
+          echo ::set-output name=charts2::${OUTPUT_JSON2}
+          echo ::set-output name=charts3::${OUTPUT_JSON3}
+          echo ::set-output name=charts4::${OUTPUT_JSON4}
+          echo ::set-output name=charts5::${OUTPUT_JSON5}
+          echo ::set-output name=charts6::${OUTPUT_JSON6}
+          if [[ $(echo ${OUTPUT_JSON1} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected1::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON2} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected2::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON3} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected3::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON4} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected4::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON5} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected5::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON6} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected6::true"
           fi
 
-      - name: Test and Fix Pre-Commit Issues
-        shell: bash
-        # TODO: Only run pre-commit on changed files
-        # TODO: Commit fixes
-        if: inputs.chartChangesDetected == 'true'
-        run: |
-          echo "Running pre-commit test-and-cleanup..."
-          # Fix sh files to always be executable
-          find . -name '*.sh' | xargs chmod +x
-          pre-commit run --all || pre-commit run --all
-
-      - name: Fetch and Verify dependencies
-        shell: bash
-        if: steps.list-changed.outputs.detected == 'true'
-        env:
-          charts_path: "./"
-        run: |
-          CHANGED=$(echo '${{ steps.list-changed.outputs.CHANGED_CHARTS }}' | jq --raw-output '.[]')
-          for changed in ${CHANGED}; do
-            .github/scripts/fetch_helm_deps.sh "${changed}"
-          done
-
-      - name: Run Chart Linting
-        continue-on-error: true
-        id: lint
-        if: steps.list-changed.outputs.detected == 'true'
-        env:
-          result_file: /tmp/lint_result.txt
-        run: |
-          CHANGED=$(echo '${{ steps.list-changed.outputs.CHANGED_CHARTS }}' | jq --raw-output '.[]')
-          # If the github.base_ref is empty (eg it runs outside of a PR) it fails back to origin/master
-          .github/scripts/tc-lint.sh '${{ steps.list-changed.outputs.CHANGED_CHARTS }}' "origin/${{ github.base_ref }}"
-
-      - name: Create/Update comment
-        if: steps.list-changed.outputs.detected == 'true'
-        continue-on-error: true
-        uses: thollander/actions-comment-pull-request@1d3973dc4b8e1399c0620d3f2b1aa5e795465308 # v2
+  lint-charts1:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected1 == 'true'
+    name: Lint charts Part 1
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix1) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          filePath: /tmp/lint_result.txt
-          comment_tag: lint_results
-          mode: recreate
-          GITHUB_TOKEN: ${{ github.token }}
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
 
-      - name: Lint Result
-        if: steps.list-changed.outputs.detected == 'true'
-        shell: bash
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts2:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected2 == 'true'
+    name: Lint charts Part 2
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix2) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts3:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected3 == 'true'
+    name: Lint charts Part 3
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix3) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts4:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected4 == 'true'
+    name: Lint charts Part 4
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix4) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts5:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected5 == 'true'
+    name: Lint charts Part 5
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix5) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts6:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected6 == 'true'
+    name: Lint charts Part 6
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix6) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  # Summarize matrix https://github.community/t/status-check-for-a-matrix-jobs/127354/7
+  lint_success:
+    needs:
+      - generate-lint-matrix
+      - lint-charts1
+      - lint-charts2
+      - lint-charts3
+      - lint-charts4
+      - lint-charts5
+      - lint-charts6
+    if: |
+      always()
+    name: Lint successful
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check lint matrix status
         run: |
-          if [ "${{ steps.lint.outcome }}" != "success" ]; then
-            echo "❌ Linting failed ❌"
-            echo '###############################################################'
-            echo '## 👀 Expand [Run Chart Linting] step to view the results 👀 ##'
-            echo '###############################################################'
+          res1="${{needs.lint-charts1.result}}"
+          res2="${{needs.lint-charts2.result}}"
+          res3="${{needs.lint-charts3.result}}"
+          res4="${{needs.lint-charts4.result}}"
+          res5="${{needs.lint-charts5.result}}"
+          res6="${{needs.lint-charts6.result}}"
+
+          if [[ $res1 == "success" || $res1 == "skipped" ]]; then
+            echo "lint tests 1 successfull..."
+          else
+            echo "lint tests 1 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res2 == "success" || $res2 == "skipped" ]]; then
+            echo "lint tests 2 successfull..."
+          else
+            echo "lint tests 2 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res3 == "success" || $res3 == "skipped" ]]; then
+            echo "lint tests 3 successfull..."
+          else
+            echo "lint tests 3 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res4 == "success" || $res4 == "skipped" ]]; then
+            echo "lint tests 4 successfull..."
+          else
+            echo "lint tests 4 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res5 == "success" || $res5 == "skipped" ]]; then
+            echo "lint tests 5 successfull..."
+          else
+            echo "lint tests 5 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res6 == "success" || $res6 == "skipped" ]]; then
+            echo "lint tests 6 successfull..."
+          else
+            echo "lint tests 6 error, stopping due to failure..."
             exit 1
           fi
 

.github/workflows/charts-release.yaml

@@ -11,25 +11,26 @@ on:
       - "charts/**"
 
 jobs:
+
   release-helm:
     runs-on: ubuntu-latest
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 1
-
+          
       - name: Checkout Helm-Staging
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           fetch-depth: 1
           repository: truecharts/helm-staging
           token: ${{ secrets.BOT_TOKEN }}
           path: helm
-
+          
       - name: Fix Pre-Commit issues
         shell: bash
         run: |
@@ -37,7 +38,7 @@ jobs:
           pre-commit run --all ||:
           # Fix sh files to always be executable
           find . -name '*.sh' | xargs chmod +x
-
+          
       - name: Commit Helm Changes
         run: |
           rm -rf helm/charts
@@ -59,44 +60,26 @@ jobs:
     outputs:
       ref: ${{ steps.save-commit-hash.outputs.commit_hash }}
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
       - name: Install Kubernetes tools
         uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
           setup-tools: |
             helmv3
-          helm: "3.13.2"
+          helm: "3.8.0"
 
       - name: Prep Helm
         run: |
           helm repo add truecharts https://charts.truecharts.org
           helm repo add truecharts-library https://library-charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
-          helm repo add jetstack https://charts.jetstack.io
-          helm repo add vmwaretanzu https://vmware-tanzu.github.io/helm-charts
-          helm repo add cnpg https://cloudnative-pg.github.io/charts
-          helm repo add metallb https://metallb.github.io/metallb
+          helm repo add bitnami https://charts.bitnami.com/bitnami
+
+          helm repo add prometheus https://prometheus-community.github.io/helm-charts
           helm repo update
 
-      # Optional step if GPG signing is used
-      - name: Prepare GPG key
-        shell: bash
-        run: |
-          gpg_dir=.cr-gpg
-          mkdir -p "$gpg_dir"
-          keyring="$gpg_dir/secring.gpg"
-          base64 -d <<< "$GPG_KEYRING_BASE64" > "$keyring"
-          passphrase_file="$gpg_dir/passphrase"
-          echo "$GPG_PASSPHRASE" > "$passphrase_file"
-          echo "CR_PASSPHRASE_FILE=$passphrase_file" >> "$GITHUB_ENV"
-          echo "CR_KEYRING=$keyring" >> "$GITHUB_ENV"
-        env:
-          GPG_KEYRING_BASE64: "${{ secrets.GPG_KEYRING_BASE64 }}"
-          GPG_PASSPHRASE: "${{ secrets.GPG_PASSPHRASE }}"
-
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 0
@@ -128,7 +111,7 @@ jobs:
           find . -name '*.sh' | xargs chmod +x
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         if: |
           steps.collect-changes.outputs.changesDetectedAfterTag == 'true'
         with:
@@ -188,7 +171,6 @@ jobs:
                 mkdir -p website/docs/charts/${train}/${chart} || echo "chart path already exists, continuing..."
                 yes | cp -rf charts/${train}/${chart}/docs/* website/docs/charts/${train}/${chart}/ 2>/dev/null || :
                 yes | cp -rf charts/${train}/${chart}/icon.png website/static/img/hotlink-ok/chart-icons/${chart}.png 2>/dev/null || :
-                yes | cp -rf charts/${train}/${chart}/screenshots/* website/static/img/hotlink-ok/chart-screenshots/${chart}/ 2>/dev/null || :
 
                 # Copy over kept documents
                 mv -f tmp/website/docs/charts/${train}/${chart}/CHANGELOG.md website/docs/charts/${train}/${chart}/CHANGELOG.md 2>/dev/null || :
@@ -209,10 +191,6 @@ jobs:
                 echo "" >> website/docs/charts/${train}/${chart}/index.md
                 cat charts/${train}/${chart}/Chart.yaml | yq .description -r >> website/docs/charts/${train}/${chart}/index.md
                 echo "" >> website/docs/charts/${train}/${chart}/index.md
-                echo "## Chart Sources" >> website/docs/charts/${train}/${chart}/index.md
-                echo "" >> website/docs/charts/${train}/${chart}/index.md
-                cat charts/${train}/${chart}/Chart.yaml | go-yq .sources -r >> website/docs/charts/${train}/${chart}/index.md
-                echo "" >> website/docs/charts/${train}/${chart}/index.md
                 echo "## Available Documentation" >> website/docs/charts/${train}/${chart}/index.md
                 echo "" >> website/docs/charts/${train}/${chart}/index.md
 
@@ -245,9 +223,10 @@ jobs:
           git add --all
           git commit -sm "Commit released docs for TrueCharts" || exit 0
           git push
+        
 
       - name: Checkout Catalog
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         if: |
           steps.collect-changes.outputs.changesDetectedAfterTag == 'true'
         with:
@@ -293,30 +272,13 @@ jobs:
           git config user.name "TrueCharts-Bot"
           git config user.email "bot@truecharts.org"
 
-        # Optional step if GPG signing is used
-      - name: Prepare GPG key
-        shell: bash
-        run: |
-          gpg_dir=.cr-gpg
-          mkdir -p "$gpg_dir"
-          keyring="$gpg_dir/secring.gpg"
-          base64 -d <<< "$GPG_KEYRING_BASE64" > "$keyring"
-          passphrase_file="$gpg_dir/passphrase"
-          echo "$GPG_PASSPHRASE" > "$passphrase_file"
-          echo "CR_PASSPHRASE_FILE=$passphrase_file" >> "$GITHUB_ENV"
-          echo "CR_KEYRING=$keyring" >> "$GITHUB_ENV"
-        env:
-          GPG_KEYRING_BASE64: "${{ secrets.GPG_KEYRING_BASE64 }}"
-          GPG_PASSPHRASE: "${{ secrets.GPG_PASSPHRASE }}"
-
       - name: Run chart-releaser for dependency apps
-        uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0
+        uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
         if: |
           steps.collect-changes.outputs.changesDetectedAfterTag == 'true'
         with:
           charts_dir: charts/dependency
           charts_repo_url: https://deps.truecharts.org
-          config: cr.yaml
         env:
           CR_TOKEN: "${{ secrets.BOT_TOKEN }}"
           CR_SKIP_EXISTING: "true"

.github/workflows/charts-test.yaml

@@ -9,11 +9,42 @@ on:
       chartChangesDetected:
         required: true
         type: string
-      modifiedCharts:
-        required: true
-        type: string
 
 jobs:
+  unit-test:
+    name: Run unit tests
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - name: Install Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: 2.7
+
+      - name: Install dependencies
+        env:
+          RUBYJQ_USE_SYSTEM_LIBRARIES: 1
+        run: |
+          sudo apt-get update
+          sudo apt-get install libjq-dev
+          bundle install
+
+      - name: Run tests
+        run: |
+          bundle exec m -r ./test/
+
   generate-install-matrix:
     name: Generate matrix for install
     runs-on: ubuntu-latest
@@ -50,57 +81,51 @@ jobs:
       detected6: ${{ steps.list-changed.outputs.detected6 }}
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install go-yq
-        run: |
-          mkdir -p $HOME/.local/bin
-          wget https://github.com/mikefarah/yq/releases/download/v4.26.1/yq_linux_amd64 -O $HOME/.local/bin/go-yq && \
-          chmod +x $HOME/.local/bin/go-yq
-          echo "$HOME/.local/bin" >> $GITHUB_PATH
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Run chart-testing (list-changed)
         id: list-changed
         if: inputs.chartChangesDetected == 'true'
-        shell: bash
         run: |
-          CHARTS="${{ inputs.modifiedCharts }}"
-          echo "Modified Charts: ${CHARTS}"
-          EXCLUDED_JSON=$(go-yq eval -o=json '.excluded-charts // []' .github/ct-install.yaml)
-          CHARTS_JSON=$(echo ${CHARTS} | jq --raw-input '.' | jq --compact-output --slurp '.' | jq 'map(. |= split(" "))[]' )
-          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED_JSON}, \"all\": ${CHARTS_JSON}}" | jq --compact-output '.all-.excluded')
+          EXCLUDED=$(yq eval -o=json '.excluded-charts // []' .github/ct-install.yaml)
+          CHARTS=$(ct list-changed --config .github/ct-install.yaml)
+          CHARTS_JSON=$(echo "${CHARTS}" | jq -R -s -c 'split("\n")[:-1]')
+          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED}, \"all\": ${CHARTS_JSON}}" | jq -c '.all-.excluded')
           OUTPUT_JSON1=$((echo $OUTPUT_JSON | jq -r -c '.[:50]'; echo $OUTPUT_JSON | jq -r -c '.[301:350]'; echo $OUTPUT_JSON | jq -r -c '.[601:650]'; echo $OUTPUT_JSON | jq -r -c '.[901:950]'; echo $OUTPUT_JSON | jq -r -c '.[1201:1250]') | jq -s add)
           OUTPUT_JSON2=$((echo $OUTPUT_JSON | jq -r -c '.[51:100]'; echo $OUTPUT_JSON | jq -r -c '.[351:400]'; echo $OUTPUT_JSON | jq -r -c '.[651:700]'; echo $OUTPUT_JSON | jq -r -c '.[951:1000]'; echo $OUTPUT_JSON | jq -r -c '.[1251:1300]') | jq -s add)
           OUTPUT_JSON3=$((echo $OUTPUT_JSON | jq -r -c '.[101:150]'; echo $OUTPUT_JSON | jq -r -c '.[401:450]'; echo $OUTPUT_JSON | jq -r -c '.[701:750]'; echo $OUTPUT_JSON | jq -r -c '.[1001:1050]'; echo $OUTPUT_JSON | jq -r -c '.[1301:1350]') | jq -s add)
           OUTPUT_JSON4=$((echo $OUTPUT_JSON | jq -r -c '.[151:200]'; echo $OUTPUT_JSON | jq -r -c '.[451:500]'; echo $OUTPUT_JSON | jq -r -c '.[751:800]'; echo $OUTPUT_JSON | jq -r -c '.[1051:1100]'; echo $OUTPUT_JSON | jq -r -c '.[1351:1400]') | jq -s add)
           OUTPUT_JSON5=$((echo $OUTPUT_JSON | jq -r -c '.[201:250]'; echo $OUTPUT_JSON | jq -r -c '.[501:550]'; echo $OUTPUT_JSON | jq -r -c '.[801:850]'; echo $OUTPUT_JSON | jq -r -c '.[1101:1150]'; echo $OUTPUT_JSON | jq -r -c '.[1401:1450]') | jq -s add)
           OUTPUT_JSON6=$((echo $OUTPUT_JSON | jq -r -c '.[251:300]'; echo $OUTPUT_JSON | jq -r -c '.[551:600]'; echo $OUTPUT_JSON | jq -r -c '.[851:900]'; echo $OUTPUT_JSON | jq -r -c '.[1151:1200]'; echo $OUTPUT_JSON | jq -r -c '.[1451:1500]') | jq -s add)
-          echo charts1=${OUTPUT_JSON1} >> $GITHUB_OUTPUT
-          echo charts2=${OUTPUT_JSON2} >> $GITHUB_OUTPUT
-          echo charts3=${OUTPUT_JSON3} >> $GITHUB_OUTPUT
-          echo charts4=${OUTPUT_JSON4} >> $GITHUB_OUTPUT
-          echo charts5=${OUTPUT_JSON5} >> $GITHUB_OUTPUT
-          echo charts6=${OUTPUT_JSON6} >> $GITHUB_OUTPUT
+          echo ::set-output name=charts1::${OUTPUT_JSON1}
+          echo ::set-output name=charts2::${OUTPUT_JSON2}
+          echo ::set-output name=charts3::${OUTPUT_JSON3}
+          echo ::set-output name=charts4::${OUTPUT_JSON4}
+          echo ::set-output name=charts5::${OUTPUT_JSON5}
+          echo ::set-output name=charts6::${OUTPUT_JSON6}
           if [[ $(echo ${OUTPUT_JSON1} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected1=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected1::true"
           fi
           if [[ $(echo ${OUTPUT_JSON2} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected2=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected2::true"
           fi
           if [[ $(echo ${OUTPUT_JSON3} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected3=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected3::true"
           fi
           if [[ $(echo ${OUTPUT_JSON4} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected4=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected4::true"
           fi
           if [[ $(echo ${OUTPUT_JSON5} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected5=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected5::true"
           fi
           if [[ $(echo ${OUTPUT_JSON6} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected6=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected6::true"
           fi
 
   install-charts1:
@@ -115,68 +140,38 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
-          version: v3.13.2
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
         with:
-          version: latest
+          version: v1.24
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Prep Helm
-        run: |
-          helm repo add truecharts https://charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
-          helm repo add truecharts-library https://library-charts.truecharts.org
-          helm repo add jetstack https://charts.jetstack.io
-          helm repo add vmwaretanzu https://vmware-tanzu.github.io/helm-charts
-          helm repo add cnpg https://cloudnative-pg.github.io/charts
-          helm repo add metallb https://metallb.github.io/metallb
-          helm repo add prometheus-community https://prometheus-community.github.io/helm-charts
-          helm repo update
-
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" == "charts/operators/metallb-config" ]]; then
-            helm install metallb truecharts/metallb --namespace metallb --create-namespace --wait
-          fi
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" == "charts/enterprise/clusterissuer" ]]; then
-            helm install cert-manager truecharts/cert-manager --namespace cert-manager --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            helm install cloudnative-pg truecharts/cloudnative-pg --namespace cloudnative-pg --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            helm install prometheus-operator truecharts/prometheus-operator --namespace prometheus-operator --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/enterprise/traefik" ]]; then
-            helm install traefik truecharts/traefik --namespace traefik --create-namespace --wait
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts2:
     needs:
@@ -190,27 +185,29 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
-          version: v3.13.2
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
         with:
-          version: latest
+          version: v1.24
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
@@ -219,27 +216,8 @@ jobs:
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" == "charts/operators/metallb-config" ]]; then
-            helm install metallb truecharts/metallb --namespace metallb --create-namespace --wait
-          fi
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" == "charts/enterprise/clusterissuer" ]]; then
-            helm install cert-manager truecharts/cert-manager --namespace cert-manager --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            helm install cloudnative-pg truecharts/cloudnative-pg --namespace cloudnative-pg --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            helm install prometheus-operator truecharts/prometheus-operator --namespace prometheus-operator --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/enterprise/traefik" ]]; then
-            helm install traefik truecharts/traefik --namespace traefik --create-namespace --wait
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts3:
     needs:
@@ -253,56 +231,38 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
-          version: v3.13.2
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
         with:
-          version: latest
+          version: v1.24
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" == "charts/operators/metallb-config" ]]; then
-            helm install metallb truecharts/metallb --namespace metallb --create-namespace --wait
-          fi
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" == "charts/enterprise/clusterissuer" ]]; then
-            helm install cert-manager truecharts/cert-manager --namespace cert-manager --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            helm install cloudnative-pg truecharts/cloudnative-pg --namespace cloudnative-pg --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            helm install prometheus-operator truecharts/prometheus-operator --namespace prometheus-operator --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/enterprise/traefik" ]]; then
-            helm install traefik truecharts/traefik --namespace traefik --create-namespace --wait
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts4:
     needs:
@@ -316,56 +276,38 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
-          version: v3.13.2
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
         with:
-          version: latest
+          version: v1.24
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" == "charts/operators/metallb-config" ]]; then
-            helm install metallb truecharts/metallb --namespace metallb --create-namespace --wait
-          fi
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" == "charts/enterprise/clusterissuer" ]]; then
-            helm install cert-manager truecharts/cert-manager --namespace cert-manager --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            helm install cloudnative-pg truecharts/cloudnative-pg --namespace cloudnative-pg --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            helm install prometheus-operator truecharts/prometheus-operator --namespace prometheus-operator --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/enterprise/traefik" ]]; then
-            helm install traefik truecharts/traefik --namespace traefik --create-namespace --wait
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts5:
     needs:
@@ -379,56 +321,38 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
-          version: v3.13.2
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
         with:
-          version: latest
+          version: v1.24
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" == "charts/operators/metallb-config" ]]; then
-            helm install metallb truecharts/metallb --namespace metallb --create-namespace --wait
-          fi
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" == "charts/enterprise/clusterissuer" ]]; then
-            helm install cert-manager truecharts/cert-manager --namespace cert-manager --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            helm install cloudnative-pg truecharts/cloudnative-pg --namespace cloudnative-pg --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            helm install prometheus-operator truecharts/prometheus-operator --namespace prometheus-operator --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/enterprise/traefik" ]]; then
-            helm install traefik truecharts/traefik --namespace traefik --create-namespace --wait
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts6:
     needs:
@@ -442,56 +366,38 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
         with:
-          version: v3.13.2
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@65d7f2d534ac1bc67fcd62888c5f4f3d2cb2b236 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
         with:
-          version: latest
+          version: v1.24
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" == "charts/operators/metallb-config" ]]; then
-            helm install metallb truecharts/metallb --namespace metallb --create-namespace --wait
-          fi
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" == "charts/enterprise/clusterissuer" ]]; then
-            helm install cert-manager truecharts/cert-manager --namespace cert-manager --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            helm install cloudnative-pg truecharts/cloudnative-pg --namespace cloudnative-pg --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            helm install prometheus-operator truecharts/prometheus-operator --namespace prometheus-operator --create-namespace --wait
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/enterprise/traefik" ]]; then
-            helm install traefik truecharts/traefik --namespace traefik --create-namespace --wait
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   # Summarize matrix https://github.community/t/status-check-for-a-matrix-jobs/127354/7
   install_success:
@@ -517,43 +423,43 @@ jobs:
           res6="${{needs.install-charts6.result}}"
 
           if [[ $res1 == "success" || $res1 == "skipped" ]]; then
-            echo "Install test suite [1] was successful..."
+            echo "install tests 1 successfull..."
           else
-            echo "Install test suite [1] failed, stopping..."
+            echo "install tests 1 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res2 == "success" || $res2 == "skipped" ]]; then
-            echo "Install test suite [2] was successful..."
+            echo "install tests 2 successfull..."
           else
-            echo "Install test suite [2] failed, stopping..."
+            echo "install tests 2 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res3 == "success" || $res3 == "skipped" ]]; then
-            echo "Install test suite [3] was successful..."
+            echo "install tests 3 successfull..."
           else
-            echo "Install test suite [3] failed, stopping..."
+            echo "install tests 3 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res4 == "success" || $res4 == "skipped" ]]; then
-            echo "Install test suite [4] was successful..."
+            echo "install tests 4 successfull..."
           else
-            echo "Install test suite [4] failed, stopping..."
+            echo "install tests 4 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res5 == "success" || $res5 == "skipped" ]]; then
-            echo "Install test suite [5] was successful..."
+            echo "install tests 5 successfull..."
           else
-            echo "Install test suite [5] failed, stopping..."
+            echo "install tests 5 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res6 == "success" || $res6 == "skipped" ]]; then
-            echo "Install test suite [6] was successful..."
+            echo "install tests 6 successfull..."
           else
-            echo "Install test suite [6] failed, stopping..."
+            echo "install tests 6 error, stopping due to failure..."
             exit 1
           fi

.github/workflows/daily.yaml

@@ -0,0 +1,389 @@
+name: "Chore: Daily Tasks"
+
+on:
+  schedule:
+    - cron: "0 0 * * *"
+  workflow_dispatch:
+
+permissions:
+  issues: write
+  pull-requests: write
+
+concurrency:
+  group: lock
+
+jobs:
+  generate-readme:
+    runs-on: ubuntu-latest
+    name: "Generate readme files"
+    container:
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          fetch-depth: 1
+
+      - name: Setting repo parent dir as safe safe.directory
+        run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
+
+      - name: generate readme.md
+        shell: bash
+        run: |
+          for train in stable SCALE incubator games enterprise develop non-free deprecated dependency core; do
+            for chart in charts/${train}/*; do
+              if [ -d "${chart}" ]; then
+                echo "Generating readme.md for ${train}/${chart}"
+                cp "templates/README.md.tpl" "${chart}/README.md"
+                sed -i "s/TRAINPLACEHOLDER/${train}/" "${chart}/README.md"
+                sed -i "s/CHARTPLACEHOLDER/${chartname}/" "${chart}/README.md"
+              fi
+            done
+          done
+      - name: generate HelmIgnore
+        shell: bash
+        run: |
+          for train in stable SCALE incubator games enterprise develop non-free deprecated dependency core; do
+            for chart in charts/${train}/*; do
+              if [ -d "${chart}" ]; then
+                echo "Attempting to sync HelmIgnore file for: ${chartname}"
+                rm -rf ${chart}/.helmignore
+                cp templates/chart/.helmignore ${chart}/
+              fi
+            done
+          done
+
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          repository: truecharts/website
+          path: website
+          fetch-depth: 1
+          token: ${{ secrets.BOT_TOKEN }}
+
+      - name: Bump and Sync
+        shell: bash
+        run: |
+          # Designed to ensure the appversion in Chart.yaml is in sync with the primary Chart tag if found
+          # Also makes sure that home link is pointing to the correct url
+          sync_tag() {
+            local chart="$1"
+            local chartname="$2"
+            local train="$3"
+            echo "Attempting to sync primary tag with appversion for: ${chartname}"
+            local tag="$(cat ${chart}/values.yaml | grep '^  tag: ' | awk -F" " '{ print $2 }' | head -1)"
+            tag="${tag%%@*}"
+            tag="${tag:-auto}"
+            tag=$(echo $tag | sed "s/release-//g")
+            tag=$(echo $tag | sed "s/release_//g")
+            tag=$(echo $tag | sed "s/version-//g")
+            tag=$(echo $tag | sed "s/version_//g")
+            tag="${tag#*V.}"
+            tag="${tag#*v-}"
+            tag="${tag#*v}"
+            tag="${tag%-*}"
+            tag="${tag:0:10}"
+            tag="${tag%-}"
+            tag="${tag%_}"
+            tag="${tag%.}"
+            echo "Updating tag of ${chartname} to ${tag}..."
+            sed -i -e "s|appVersion: .*|appVersion: \"${tag}\"|" "${chart}/Chart.yaml"
+            echo "Updating icon of ${chartname}..."
+            sed -i -e "s|icon: .*|icon: https:\/\/truecharts.org\/img\/hotlink-ok\/chart-icons\/${chartname}.png|" "${chart}/Chart.yaml"
+            echo "Updating home of ${chartname}..."
+            sed -i -e "s|home: .*|home: https:\/\/truecharts.org\/charts\/${train}\/${chartname}|" "${chart}/Chart.yaml"
+            echo "Attempting to update sources of ${chartname}..."
+            echo "Using go-yq verion: <$(go-yq -V)>"
+            # Get current sources, exluding those that may have been added automatically.
+            curr_sources=$(
+              go-yq '
+                .sources[] |
+                select(
+                  . != "https://github.com/truecharts*" and
+                  . != "https://ghcr*" and
+                  . != "docker.io*" and
+                  . != "https://docker.io*" and
+                  . != "https://hub.docker*" and
+                  . != "https://fleet.*" and
+                  . != "https://github.com/truecharts/containers/tree/master/mirror/*" and
+                  . != "https://public.ecr.aws*" and
+                  . != "https://ocir.io*" and
+                  . != "https://gcr*" and
+                  . != "https://azurecr*" and
+                  . != "https://quay*" and
+                  . != "https://lscr*" and
+                  . != "https://github.com/truecharts/containers*" and
+                  . == "http*"
+                )
+                ' \
+              "${chart}/Chart.yaml"
+            )
+            # Empty sources list in-place
+            go-yq -i 'del(.sources.[])' "${chart}/Chart.yaml"
+            # Add truechart source
+            tcsource="https://github.com/truecharts/charts/tree/master/charts/$train/$chartname" go-yq -i '.sources += env(tcsource)' "${chart}/Chart.yaml"
+            # Get the container image name that was parsed out of the Dockerfile for the website.
+            container=$(cat website/docs/charts/description_list.md | grep "\[${chartname}\]" | cut -f3 -d '|' | grep -v 'Not Found' || echo "")
+            # Convert the container image name to a URL.
+            if [ ! -z "$container" ]; then
+              prefix=""
+              case "$container" in
+                lscr.io/linuxserver/*)
+                  prefix="https://fleet.linuxserver.io/image?name="
+                  container=${container#lscr.io/}
+                  ;;
+                tccr.io/truecharts/*)
+                  prefix="https://github.com/truecharts/containers/tree/master/mirror"
+                  container=${container#tccr.io/truecharts/}
+                  ;;
+                mcr.microsoft.com/*)
+                  prefix=""
+                  ;;
+                public.ecr.aws/*)
+                  prefix="https://gallery.ecr.aws/"
+                  container=${container#public.ecr.aws/}
+                  ;;
+                ghcr.io/*)
+                  prefix="https://"
+                  ;;
+                quay.io/*)
+                  prefix="https://"
+                  ;;
+                gcr.io/*)
+                  prefix="https://"
+                  ;;
+                *.azurecr.io/*)
+                  prefix=""
+                  ;;
+                *.ocir.io/*)
+                  prefix=""
+                  ;;
+                # There have been a number of domains used for the Docker Hub registry over the years.
+                # NOTE:  This is also the default case!
+                docker.io/*|index.docker.io/*|registry-1.docker.io/*|registry.hub.docker.com/*|*)
+                  prefix="https://hub.docker.com/r/"
+                  container=${container#docker.io/}
+                  container=${container#index.docker.io/}
+                  container=${container#registry-1.docker.io/}
+                  container=${container#registry.hub.docker.com/}
+                  # If the image name does not contain a slash it is a Docker Official Image.
+                  if [ "$container" == "${container////}" ]; then
+                    prefix="https://hub.docker.com/_/"
+                  # If the user name is library it is a Docker Official Image.
+                  elif [ "${container%%/*}" == "library" ]; then
+                    prefix="https://hub.docker.com/_/"
+                    container=${container#library/}
+                  fi
+                  # Avoid creating a bad link since an unsupported registry may have been used.
+                  slashes=${container//[^\/]/}
+                  # Bail out if the image name has more than 1 slash.
+                  if [ ${#slashes} -gt 1 ]; then
+                    prefix=""
+                    echo "WARNING: Not assuming '$container' is a Docker Hub image"
+                  fi
+                  ;;
+              esac
+              if [ -n "${prefix}" ]; then
+                container="${prefix}${container}" go-yq -i '.sources += env(container) | .sources |= unique' "${chart}/Chart.yaml"
+              fi
+            fi
+            # Add the rest of the sources
+            while IFS= read -r line; do
+              src="$line" go-yq -i '.sources += env(src)' "${chart}/Chart.yaml" || echo "src set error"
+            done <<< "$curr_sources"
+            echo "Sources of ${chartname} updated!"
+          }
+          export -f sync_tag
+
+          for train in enterprise stable incubator dependency; do
+            echo "Correcting Chart.yaml for Train: ${train}..."
+            for chart in $(ls "charts/${train}"); do
+              echo "Correcting Chart.yaml for Chart: ${chart}..."
+              sync_tag "charts/${train}/${chart}" "${chart}" "${train}"
+            done
+          done
+
+      - name: Cleanup
+        run: |
+          rm -rf changes.json
+          rm -rf master
+
+      - name: Commit changes
+        run: |
+          git config user.name "TrueCharts-Bot"
+          git config user.email "bot@truecharts.org"
+          git pull
+          git add --all
+          git commit -sm "Commit daily changes" || exit 0
+          git push
+
+  generate-security-reports:
+    runs-on: ubuntu-latest
+    name: "Generate Security Reports"
+    container:
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
+    steps:
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - name: Prep Helm
+        run: |
+          helm repo add truecharts https://charts.truecharts.org
+          helm repo add truecharts-library https://library-charts.truecharts.org
+          helm repo add bitnami https://charts.bitnami.com/bitnami
+          helm repo add prometheus https://prometheus-community.github.io/helm-charts
+          helm repo update
+
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          fetch-depth: 1
+
+      - name: Setting repo parent dir as safe safe.directory
+        run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
+
+      - name: Checkout website
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 1
+          repository: truecharts/website
+          token: ${{ secrets.BOT_TOKEN }}
+          path: website
+
+      - name: fetch dependencies
+        shell: bash
+        run: |
+          .github/scripts/fetch_helm_deps.sh
+
+      - name: generate security reports
+        shell: bash
+        run: |
+          #!/bin/bash
+          render() {
+              local chart="$1"
+              local chartname="$2"
+              local train="$3"
+              echo "Rendering helm-template for ${chartname}"
+              mkdir -p ${chart}/render
+              helm template ${chart} >> ${chart}/render/app.yaml || echo "Helm template failed..."
+          }
+          helm_sec_scan() {
+              local chart="$1"
+              local chartname="$2"
+              local train="$3"
+              echo "Scanning helm security for ${chartname}"
+              mkdir -p ${chart}/render
+              rm -rf website/docs/charts/${train}/${chartname}/helm-security.md || echo "removing old helm-security file failed..."
+              echo "# Helm Security" >> website/docs/charts/${train}/${chartname}/helm-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/helm-security.md
+              echo "## Helm-Chart" >> website/docs/charts/${train}/${chartname}/helm-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/helm-security.md
+              echo "##### Scan Results" >> website/docs/charts/${train}/${chartname}/helm-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/helm-security.md
+              trivy config --namespaces builtin.kubernetes.* -f template --template "@./templates/trivy-config.tpl" ${chart}/render >> website/docs/charts/${train}/${chartname}/helm-security.md || echo "trivy scan failed..."
+              }
+          container_sec_scan() {
+              local chart="$1"
+              local chartname="$2"
+              local train="$3"
+              echo "Scanning container security for ${chartname}"
+              mkdir -p ${chart}/render
+              rm -rf website/docs/charts/${train}/${chartname}/container-security.md || echo "removing old container-security file failed..."
+              echo "# Container Security" >> website/docs/charts/${train}/${chartname}/container-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/container-security.md
+              echo "##### Detected Containers" >> website/docs/charts/${train}/${chartname}/container-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/container-security.md
+              find ${chart}/render/ -name '*.yaml' -type f -exec cat {} \; | grep image: | sed "s/image: //g" | sed "s/\"//g" >> ${chart}/render/containers.tmp
+              cat ${chart}/render/containers.tmp >> website/docs/charts/${train}/${chartname}/container-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/container-security.md
+              echo "##### Scan Results" >> website/docs/charts/${train}/${chartname}/container-security.md
+              echo "" >> website/docs/charts/${train}/${chartname}/container-security.md
+              for container in $(cat ${chart}/render/containers.tmp | sort | uniq); do
+                if [[ "$container" == *"truecharts/alpine"* || "$container" == *"truecharts/ubuntu"* || "$container" == *"truecharts/kubectl"* ]]; then
+                  echo "Skipping ${container}, as it's a shared common container..."
+                else
+                  echo "**Container: ${container}**" >> website/docs/charts/${train}/${chartname}/container-security.md
+                  echo "" >> website/docs/charts/${train}/${chartname}/container-security.md
+                  trivy image --security-checks vuln -f template --template "@./templates/trivy-container.tpl" ${container} >> website/docs/charts/${train}/${chartname}/container-security.md || echo "trivy container scan failed..."
+                  echo "" >> website/docs/charts/${train}/${chartname}/container-security.md
+                fi
+              done
+              }
+          cleanfiles() {
+              local chart="$1"
+              local chartname="$2"
+              local train="$3"
+              echo "sanitising website output for ${chartname}..."
+              rm -rf ${chart}/render
+              sed -i 's|<br>|<br />|g' website/docs/charts/${train}/${chartname}/helm-security.md ||:
+              sed -i 's|<br>|<br />|g' website/docs/charts/${train}/${chartname}/container-security.md ||:
+              sed -i 's|<hr>|<hr />|g' website/docs/charts/${train}/${chartname}/helm-security.md ||:
+              sed -i 's|<hr>|<hr />|g' website/docs/charts/${train}/${chartname}/container-security.md ||:
+              }
+          for train in enterprise stable incubator dependency; do
+            echo "Processing Charts for Train: ${train}..."
+            for chart in $(ls "charts/${train}"); do
+              render "charts/${train}/${chart}" ${chart} ${train} || echo "rendering failed for ${chart}"
+             helm_sec_scan "charts/${train}/${chart}" ${chart} ${train} || echo "helm chart processing failed for ${chart}"
+              if [ ${train} == "enterprise" ]; then
+                container_sec_scan "charts/${train}/${chart}" ${chart} ${train} || echo "container processing failed for ${chart}"
+              fi
+              cleanfiles "charts/${train}/${chart}" ${chart} ${train} || echo "cleaning failed for ${chart}"
+            done
+          done
+          echo "finsihed security scan"
+
+      - name: Commit Website Changes
+        run: |
+          cd website
+          git config user.name "TrueCharts-Bot"
+          git config user.email "bot@truecharts.org"
+          git pull
+          git add --all
+          git commit -sm "Commit released docs for TrueCharts" || exit 0
+          git push
+
+  lock-threads:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: dessant/lock-threads@c1b35aecc5cdb1a34539d14196df55838bb2f836 # v4
+        with:
+          github-token: ${{ secrets.BOT_TOKEN }}
+          issue-inactive-days: "7"
+          exclude-any-issue-labels: ""
+          issue-comment: "This issue is locked to prevent necro-posting on closed issues. Please create a new issue or contact staff on discord of the problem persists"
+          issue-lock-reason: ""
+          pr-inactive-days: "7"
+          pr-comment: "This PR is locked to prevent necro-posting on closed PRs. Please create a issue or contact staff on discord if you want to further discuss this"
+          pr-lock-reason: "resolved"
+          log-output: true
+
+  check-contributors:
+    name: Check Contributors
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          fetch-depth: 1
+
+      - uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
+        with:
+          node-version: 18
+
+      - uses: borales/actions-yarn@97ba8bebfe5b549bb7999261698a52a81fd62f1b # v4.2.0
+        with:
+          cmd: install --frozen-lockfile
+
+      - name: List missing and unknown contributors
+        env:
+          PRIVATE_TOKEN: ${{ secrets.BOT_TOKEN }}
+        run: |
+          awk -F', ' '{ for( i=1; i<=NF; i++ ) print $i }' <<<$(yarn all-contributors check)

.github/workflows/meta-label-pr-ci-status.yaml

@@ -0,0 +1,105 @@
+---
+name: "Metadata: Label pull requests CI status"
+
+on:
+  workflow_run:
+    workflows:
+      - "Pull Request: Validate"
+    types:
+      - completed
+
+jobs:
+  label-ci-status:
+    name: Label CI status
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+
+      - name: Download workflow artifact
+        uses: dawidd6/action-download-artifact@246dbf436b23d7c49e21a7ab8204ca9ecd1fe615 # v2.27.0
+        with:
+          github_token: ${{ secrets.BOT_TOKEN }}
+          workflow: pr-validate.yaml
+          run_id: ${{ github.event.workflow_run.id }}
+          name: pr_metadata
+          path: ./pr_metadata
+
+      - name: Read the pr_number file
+        id: pr_num_reader
+        uses: juliangruber/read-file-action@02bbba9876a8f870efd4ad64e3b9088d3fb94d4b # tag=v1.1.6
+        with:
+          path: ./pr_metadata/pr_number.txt
+
+      - name: "Get workflow job status"
+        uses: actions/github-script@98814c53be79b1d30f795b907e553d8679345975 # v6
+        id: get-workflow-jobs
+        with:
+          github-token: ${{ secrets.BOT_TOKEN }}
+          # https://mhagemann.medium.com/the-ultimate-way-to-slugify-a-url-string-in-javascript-b8e4a0d849e1
+          script: |
+            function slugify(string) {
+              const a = 'àáâäæãåāăąçćčđďèéêëēėęěğǵḧîïíīįìıİłḿñńǹňôöòóœøōõőṕŕřßśšşșťțûüùúūǘůűųẃẍÿýžźż·/_,:;'
+              const b = 'aaaaaaaaaacccddeeeeeeeegghiiiiiiiilmnnnnoooooooooprrsssssttuuuuuuuuuwxyyzzz------'
+              const p = new RegExp(a.split('').join('|'), 'g')
+              return string.toString().toLowerCase()
+                .replace(/\s+/g, '-') // Replace spaces with -
+                .replace(p, c => b.charAt(a.indexOf(c))) // Replace special characters
+                .replace(/&/g, '-and-') // Replace & with 'and'
+                .replace(/[^\w\-]+/g, '') // Remove all non-word characters
+                .replace(/\-\-+/g, '-') // Replace multiple - with single -
+                .replace(/^-+/, '') // Trim - from start of text
+                .replace(/-+$/, '') // Trim - from end of text
+            }
+            let result = new Object
+            const wfJobs = await github.rest.actions.listJobsForWorkflowRun({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              run_id: context.payload.workflow_run.id,
+            })
+            for (const job of wfJobs.data.jobs) {
+              result[slugify(job.name)] = job.conclusion
+            }
+            console.log(result)
+            return result
+      - name: Label pre-commit status
+        uses: ./.github/actions/label-from-status
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          issue-number: ${{ steps.pr_num_reader.outputs.content }}
+          prefix: precommit
+          job-status: |-
+            ${{ fromJSON(steps.get-workflow-jobs.outputs.result).pre-commit-check-run-pre-commit-checks || 'skipped' }}
+          remove-on-skipped: true
+
+      #- name: Label changelog status
+      #  uses: ./.github/actions/label-from-status
+      #  with:
+      #    token: ${{ secrets.BOT_TOKEN }}
+      #    issue-number: ${{ steps.pr_num_reader.outputs.content }}
+      #    prefix: changelog
+      #    job-status: |-
+      #      ${{ fromJSON(steps.get-workflow-jobs.outputs.result).charts-changelog-validate-changelog || 'skipped' }}
+      #    remove-on-skipped: true
+
+      - name: Label chart lint status
+        uses: ./.github/actions/label-from-status
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          issue-number: ${{ steps.pr_num_reader.outputs.content }}
+          prefix: lint
+          job-status: |-
+            ${{ fromJSON(steps.get-workflow-jobs.outputs.result).charts-lint-lint-successful || 'skipped' }}
+          remove-on-skipped: true
+
+      - name: Label chart install status
+        uses: ./.github/actions/label-from-status
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          issue-number: ${{ steps.pr_num_reader.outputs.content }}
+          prefix: install
+          job-status: |-
+            ${{ fromJSON(steps.get-workflow-jobs.outputs.result).charts-test-install-successful || 'skipped' }}
+          remove-on-skipped: true

.github/workflows/metadata-label-commenter.yaml

@@ -0,0 +1,32 @@
+---
+name: "Metadata: Label Commenter"
+
+on:
+  workflow_dispatch:
+  issues:
+    types:
+      - labeled
+      - unlabeled
+  pull_request_target:
+    types:
+      - labeled
+      - unlabeled
+
+permissions:
+  contents: read
+  issues: write
+  pull-requests: write
+
+jobs:
+  comment:
+    name: Label commenter
+    runs-on: ubuntu-20.04
+    steps:
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          ref: master
+
+      - uses: peaceiris/actions-label-commenter@f0dbbef043eb1b150b566db36b0bdc8b7f505579 # tag=v1
+        with:
+          github_token: ${{ secrets.BOT_TOKEN }}

.github/workflows/metadata-label-pr.yaml

@@ -0,0 +1,33 @@
+---
+name: "Metadata: Label pull requests"
+
+on:
+  workflow_dispatch:
+  pull_request_target:
+    types:
+      - opened
+      - edited
+      - closed
+      - reopened
+      - ready_for_review
+      - synchronize
+
+jobs:
+  label-size:
+    name: Label Size
+    runs-on: ubuntu-latest
+    steps:
+      - name: Label Size
+        uses: pascalgn/size-label-action@1619680c5ac1ef360b944bb56a57587ba4aa2af8 # tag=v0.4.3
+        env:
+          GITHUB_TOKEN: "${{ secrets.BOT_TOKEN }}"
+        with:
+          sizes: >
+            {
+              "0": "XS",
+              "20": "S",
+              "50": "M",
+              "200": "L",
+              "800": "XL",
+              "2000": "XXL"
+            }

.github/workflows/pr-metadata.yaml

@@ -0,0 +1,60 @@
+name: "Pull Request: Get metadata"
+
+on:
+  workflow_call:
+    outputs:
+      isRenovatePR:
+        description: "Is the PR coming from Renovate?"
+        value: ${{ jobs.pr-metadata.outputs.isRenovatePR }}
+      isFork:
+        description: "Is the PR coming from a forked repo?"
+        value: ${{ jobs.pr-metadata.outputs.isFork }}
+      addedOrModified:
+        description: "Does the PR contain any changes?"
+        value: ${{ jobs.pr-changes.outputs.addedOrModified }}
+      addedOrModifiedFiles:
+        description: "A list of the files changed in this PR"
+        value: ${{ jobs.pr-changes.outputs.addedOrModifiedFiles }}
+      addedOrModifiedCharts:
+        description: "A list of the charts changed in this PR"
+        value: ${{ jobs.pr-changes.outputs.addedOrModifiedCharts }}
+
+jobs:
+  pr-metadata:
+    name: Collect PR metadata
+    runs-on: ubuntu-latest
+    outputs:
+      isRenovatePR: ${{ startsWith(steps.branch-name.outputs.current_branch, 'renovate/') }}
+      isFork: ${{ github.event.pull_request.head.repo.full_name != github.repository }}
+    steps:
+      - name: Get branch name
+        id: branch-name
+        uses: tj-actions/branch-names@2e5354c6733793113f416314375826df030ada23 # v6.5
+
+      - name: Save PR data to file
+        env:
+          PR_NUMBER: ${{ github.event.number }}
+        run: |
+          echo $PR_NUMBER > pr_number.txt
+
+      - name: Store pr data in artifact
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+        with:
+          name: pr_metadata
+          path: ./pr_number.txt
+          retention-days: 5
+
+  pr-changes:
+    name: Collect PR changes
+    runs-on: ubuntu-latest
+    outputs:
+      addedOrModified: ${{ steps.collect-changes.outputs.changesDetected }}
+      addedOrModifiedFiles: ${{ steps.collect-changes.outputs.addedOrModifiedFiles }}
+      addedOrModifiedCharts: ${{ steps.collect-changes.outputs.addedOrModifiedCharts }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+
+      - name: Collect changes
+        id: collect-changes
+        uses: ./.github/actions/collect-changes

.github/workflows/pr-validate.yaml

@@ -8,47 +8,52 @@ concurrency:
   # cancel-in-progress: true
 
 jobs:
-  pr-changes:
-    name: Collect PR changes
-    runs-on: ubuntu-latest
-    outputs:
-      addedOrModified: ${{ steps.collect-changes.outputs.changesDetected }}
-      addedOrModifiedFiles: ${{ steps.collect-changes.outputs.addedOrModifiedFiles }}
-      addedOrModifiedCharts: ${{ steps.collect-changes.outputs.addedOrModifiedCharts }}
-    steps:
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+  pr-metadata:
+    uses: ./.github/workflows/pr-metadata.yaml
 
-      - name: Collect changes
-        id: collect-changes
-        uses: ./.github/actions/collect-changes
+  pre-commit-check:
+    uses: truecharts/.github/.github/workflows/pre-commit-check.yaml@main
+    needs:
+      - pr-metadata
+    with:
+      modifiedFiles: ${{ needs.pr-metadata.outputs.addedOrModifiedFiles }}
+
+  #charts-changelog:
+  #  uses: ./.github/workflows/charts-changelog.yaml
+  #  needs:
+  #    - pr-metadata
+  #    - pre-commit-check
+  #  with:
+  #    isRenovatePR: ${{ needs.pr-metadata.outputs.isRenovatePR }}
+  #    modifiedCharts: ${{ needs.pr-metadata.outputs.addedOrModifiedCharts }}
 
   charts-lint:
     uses: ./.github/workflows/charts-lint.yaml
     needs:
-      - pr-changes
+      - pr-metadata
+    #  - charts-changelog
     with:
       checkoutCommit: ${{ needs.charts-changelog.outputs.commitHash }}
-      chartChangesDetected: ${{ needs.pr-changes.outputs.addedOrModified }}
-      modifiedFiles: ${{ needs.pr-changes.outputs.addedOrModifiedFiles }}
-      modifiedCharts: ${{ needs.pr-changes.outputs.addedOrModifiedCharts }}
+      chartChangesDetected: ${{ needs.pr-metadata.outputs.addedOrModified }}
+
   charts-test:
     uses: ./.github/workflows/charts-test.yaml
     needs:
-      - pr-changes
+      - pr-metadata
+      #  - charts-changelog
       - charts-lint
     with:
       checkoutCommit: ${{ needs.charts-changelog.outputs.commitHash }}
-      chartChangesDetected: ${{ needs.pr-changes.outputs.addedOrModified }}
-      modifiedCharts: ${{ needs.pr-changes.outputs.addedOrModifiedCharts }}
+      chartChangesDetected: ${{ needs.pr-metadata.outputs.addedOrModified }}
 
   catalog-test:
     uses: ./.github/workflows/catalog-test.yaml
     needs:
-      - pr-changes
+      - pr-metadata
+    #  - charts-changelog
     with:
       checkoutCommit: ${{ needs.charts-changelog.outputs.commitHash }}
-      chartChangesDetected: ${{ needs.pr-changes.outputs.addedOrModified }}
+      chartChangesDetected: ${{ needs.pr-metadata.outputs.addedOrModified }}
 
   print_head_msg:
     name: print commit message
@@ -57,7 +62,7 @@ jobs:
       head-commit-message: ${{ steps.get_head_commit_message.outputs.headCommitMsg }}
     steps:
       - name: Get repo
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           ref: ${{ github.event.pull_request.head.sha }}
       - name: verbose head git commit message
@@ -68,12 +73,12 @@ jobs:
 
   automerge-and-approve:
     needs:
-      - pr-changes
+      - pr-metadata
       - catalog-test
       - charts-test
       - charts-lint
       - print_head_msg
-    if: ${{ contains( needs.print_head_msg.outputs.head-commit-message, 'update container image' ) }}
+    if: needs.print_head_msg.outputs.head-commit-message == 'Commit bumped Chart Version'
     name: Automerge and Approve build
     runs-on: ubuntu-latest
     steps:
@@ -86,4 +91,3 @@ jobs:
           GITHUB_TOKEN: "${{ secrets.BOT_TOKEN }}"
           UPDATE_RETRIES: 12
           UPDATE_RETRY_SLEEP: 60000
-          MERGE_METHOD: squash

.github/workflows/prune.yaml

@@ -9,7 +9,7 @@ jobs:
     name: "prune old releases"
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           fetch-depth: 0
       - uses: actions/delete-package-versions@0d39a63126868f5eefaa47169615edd3c0f61e20 # v4

.github/workflows/renovate-bump.yaml

@@ -0,0 +1,147 @@
+name: "Renovate: Bump on Push"
+
+on:
+  push:
+    branches:
+      - "renovate/**"
+    tags-ignore:
+      - "**"
+
+jobs:
+  renovate-bump:
+    name: Get changed Apps
+    runs-on: ubuntu-20.04
+    container:
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
+    steps:
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        name: Checkout
+        with:
+          fetch-depth: 0
+          token: ${{ secrets.BOT_TOKEN }}
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        name: Checkout
+        with:
+          fetch-depth: 0
+          ref: master
+          path: master
+
+      - name: Setting repo parent dir as safe safe.directory
+        run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
+
+      - uses: dorny/paths-filter@v2
+        id: filter
+        with:
+          list-files: json
+          filters: |
+            changed:
+            - 'charts/stable/**'
+            - 'charts/incubator/**'
+            - 'charts/SCALE/**'
+            - 'charts/library/**'
+            - 'charts/dependency/**'
+            - 'charts/core/**'
+            - 'charts/enterprise/**'
+            - 'charts/games/**'
+      - name: Filter filter-output
+        run: echo '${{ toJson(steps.filter.outputs) }}' > changes.json
+
+      - name: Bump and Sync
+        shell: bash
+        run: |
+          # Designed to ensure the appversion in Chart.yaml is in sync with the primary Chart tag if found
+          # Also makes sure that home link is pointing to the correct url
+          sync_tag() {
+              local chart="$1"
+              local chartname="$2"
+              local train="$3"
+              echo "Attempting to sync primary tag with appversion for: ${chartname}"
+              local tag="$(cat ${chart}/values.yaml | grep '^  tag: ' | awk -F" " '{ print $2 }' | head -1)"
+              tag="${tag%%@*}"
+              tag="${tag:-auto}"
+              tag=$(echo $tag | sed "s/release-//g")
+              tag=$(echo $tag | sed "s/release_//g")
+              tag=$(echo $tag | sed "s/version-//g")
+              tag=$(echo $tag | sed "s/version_//g")
+              tag="${tag#*V.}"
+              tag="${tag#*v-}"
+              tag="${tag#*v}"
+              tag="${tag%-*}"
+              tag="${tag:0:10}"
+              tag="${tag%-}"
+              tag="${tag%_}"
+              tag="${tag%.}"
+              echo "Updating tag of ${chartname} to ${tag}..."
+              sed -i -e "s|appVersion: .*|appVersion: \"${tag}\"|" "${chart}/Chart.yaml"
+              echo "Updating icon of ${chartname}..."
+              sed -i -e "s|icon: .*|icon: https:\/\/truecharts.org\/img\/hotlink-ok\/chart-icons\/${chartname}.png|" "${chart}/Chart.yaml"
+              echo "Updating home of ${chartname}..."
+              sed -i -e "s|home: .*|home: https:\/\/truecharts.org\/charts\/${train}\/${chartname}|" "${chart}/Chart.yaml"
+              echo "Attempting to update sources of ${chartname}..."
+              echo "Using go-yq verion: <$(go-yq -V)>"
+              # Get all sources (except truecharts)
+              curr_sources=$(go-yq '.sources[] | select(. != "https://github.com/truecharts*")' "${chart}/Chart.yaml")
+              # Empty sources list in-place
+              go-yq -i 'del(.sources.[])' "${chart}/Chart.yaml"
+              # Add truechart source
+              tcsource="https://github.com/truecharts/charts/tree/master/charts/$train/$chartname" go-yq -i '.sources += env(tcsource)' "${chart}/Chart.yaml"
+              # Add the rest of the sources
+              while IFS= read -r line; do
+                src="$line" go-yq -i '.sources += env(src)' "${chart}/Chart.yaml" || echo "src set error"
+              done <<< "$curr_sources"
+              echo "Sources of ${chartname} updated!"
+              }
+          export -f sync_tag
+
+          # The actual script
+          APPS=$(jq --raw-output '.changed_files | fromjson | .[] |= sub("(?<filepath>(?<first_directory>(?<root1>[\/]?)[^\/]+\/)(?<second_directory>(?<root2>[\/]?)[^\/]+\/)(?<third_directory>(?<root3>[\/]?)[^\/]+)(?<extra_paths>.+))"; "\(.third_directory)") | unique' changes.json  |  jq -r '.[]')
+          echo "changed apps: ${APPS[*]}"
+          for chart in ${APPS[*]}
+          do
+            if [[ "${chart}" == '.gitkeep' ]]; then
+              echo "Skipping..."
+              return
+            elif test -f "./charts/stable/${chart}/Chart.yaml"; then
+              train="stable"
+            elif test -f "./charts/incubator/${chart}/Chart.yaml"; then
+              train="incubator"
+            elif test -f "./charts/SCALE/${chart}/Chart.yaml"; then
+              train="SCALE"
+            elif test -f "./charts/library/${chart}/Chart.yaml"; then
+              train="library"
+            elif test -f "./charts/dependency/${chart}/Chart.yaml"; then
+              train="dependency"
+            elif test -f "./charts/core/${chart}/Chart.yaml"; then
+              train="core"
+            elif test -f "./charts/games/${chart}/Chart.yaml"; then
+              train="games"
+            elif test -f "./charts/enterprise/${chart}/Chart.yaml"; then
+              train="enterprise"
+            else
+              train="incubator"
+            fi
+            echo "Comparing versions for ${train}/${chart}"
+            master=$(cat ./master/charts/${train}/${chart}/Chart.yaml | grep "^version")
+            current=$(cat ./charts/${train}/${chart}/Chart.yaml | grep "^version")
+            echo "master version: ${master}"
+            echo "current version: ${current}"
+            if [[ "${master}" != "${current}" ]]; then
+              echo "Version does not have to be bumped"
+            else
+              echo "Bumping patch version for ${train}/${chart}"
+              ./tools/bump.sh patch ./charts/${train}/${chart}
+            fi
+
+            sync_tag "charts/${train}/${chart}" "${chart}" "${train}"
+          done
+      - name: Cleanup
+        run: |
+          rm -rf changes.json
+          rm -rf master
+      - name: Commit and Push new version
+        run: |
+          git config user.name "TrueCharts-Bot"
+          git config user.email "bot@truecharts.org"
+          git add --all
+          git commit -sm "Commit bumped Chart Version" || exit 0
+          git push

.github/workflows/renovate.yml

@@ -0,0 +1,18 @@
+name: Renovate
+on:
+  workflow_dispatch:
+  schedule:
+    - cron: "0 */1 * * *"
+jobs:
+  renovate:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+      - name: Self-hosted Renovate
+        uses: renovatebot/github-action@95cbcd7e8b9d0d69e15ba26208631839ce7eee48 # v36.0.2
+        with:
+          configurationFile: .github/renovate-config.js
+          token: ${{ secrets.BOT_TOKEN }}

.github/workflows/schedule-sync-labels.yaml

@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
 

.github/workflows/stale.yaml

@@ -8,7 +8,7 @@ on:
 
 jobs:
   stale:
-    runs-on: ubuntu-22.04
+    runs-on: ubuntu-20.04
     steps:
       - name: Check for stale issues and PRs
         uses: actions/stale@1160a2240286f5da8ec72b1c0816ce2481aabf84 # v8

.github/yaml-lint-conf.yaml

@@ -1,56 +0,0 @@
----
-rules:
-  anchors:
-    forbid-undeclared-aliases: true
-  braces:
-    forbid: non-empty
-    min-spaces-inside: 0
-    max-spaces-inside: 0
-    min-spaces-inside-empty: -1
-    max-spaces-inside-empty: -1
-  brackets:
-    forbid: false
-    min-spaces-inside: 0
-    max-spaces-inside: 0
-    min-spaces-inside-empty: -1
-    max-spaces-inside-empty: -1
-  colons:
-    max-spaces-before: 0
-    max-spaces-after: 1
-  commas:
-    max-spaces-before: 0
-    min-spaces-after: 1
-    max-spaces-after: 1
-  comments:
-    require-starting-space: true
-    min-spaces-from-content: 2
-  # No --- to start a file
-  document-start: disable
-  document-end: disable
-  empty-lines:
-    max: 1
-    max-start: 0
-    max-end: 0
-  float-values:
-    require-numeral-before-decimal: true
-    forbid-scientific-notation: true
-    forbid-nan: true
-    forbid-inf: true
-  hyphens:
-    max-spaces-after: 1
-  indentation:
-    spaces: 2
-    indent-sequences: true
-    check-multi-line-strings: false
-  key-duplicates: enable
-  # Lines can be any length
-  line-length: disable
-  new-line-at-end-of-file: enable
-  new-lines:
-    type: unix
-  octal-values:
-    forbid-implicit-octal: true
-    forbid-explicit-octal: true
-  trailing-spaces: enable
-  truthy:
-    allowed-values: ["true", "false"]

.pre-commit-config.yaml

@@ -22,7 +22,7 @@ repos:
       - id: fix-byte-order-marker # removes utf-8 byte order marker.
       - id: requirements-txt-fixer # sorts entries in requirements.txt.
       - id: check-added-large-files # prevents giant files from being committed.
-        exclude: \.(png|jpg|jpeg|svg|yaml|yml|tpl)$
+        exclude: \.(png|jpg|jpeg|svg)$
       - id: check-yaml # checks yaml files for parseable syntax.
         exclude: (templates\/.*|crds\/.*|questions.yaml|chart_schema.yaml)
       - id: detect-private-key # detects the presence of private keys.

Gemfile

@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+
+source 'https://rubygems.org'
+
+group :test do
+  gem 'm'
+  gem 'minitest'
+  gem 'minitest-implicit-subject'
+  gem 'minitest-reporters'
+  gem 'pry'
+  gem 'ruby-jq'
+end

NOTICE

@@ -0,0 +1,4 @@
+This product includes software developed at
+The K8S-At-Home (https://k8s-at-home.com/).
+
+This Product Contains modified Apache2.0 Licensed software

charts/dependency/clickhouse/Chart.yaml

@@ -1,38 +1,30 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: clickhouse
-version: 8.0.0
-appVersion: 23.10.5.20
-description: ClickHouse is a column-oriented database management system (DBMS) for
-  online analytical processing of queries (OLAP).
+appVersion: "23.2.1.253"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+deprecated: false
+description: ClickHouse is a column-oriented database management system (DBMS) for online analytical processing of queries (OLAP).
 home: https://truecharts.org/charts/dependency/clickhouse
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/clickhouse.png
-deprecated: false
-sources:
-- https://github.com/truecharts/charts/tree/master/charts/dependency/clickhouse
-- https://hub.docker.com/r/clickhouse/clickhouse-server
-- https://clickhouse.com/
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- database
-- clickhouse
-- sql
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
+  - database
+  - clickhouse
+  - sql
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: clickhouse
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/dependency/clickhouse
+  - https://clickhouse.com/
+type: application
+version: 5.0.12
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - database
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: database
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency
+  truecharts.org/grade: U

charts/dependency/clickhouse/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/dependency/clickhouse/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: clickhouseDatabase
     group: "App Configuration"
     label: "Database Name"
@@ -70,6 +69,7 @@ questions:
                               default: 8123
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/clickhouse/values.yaml

@@ -1,7 +1,8 @@
 image:
-  repository: clickhouse/clickhouse-server
+  repository: tccr.io/truecharts/clickhouse
   pullPolicy: IfNotPresent
-  tag: 23.10.5.20@sha256:8d66487fa921fd942647182cf1b18355b0760329942f4965084c2a9ce46bef7a
+  tag: 23.2.1.2537@sha256:669278d98936a2d12bf8f331067afb6a34e5570fdcb37b854bb5d0b2d8f30108
+
 workload:
   main:
     replicas: 1
@@ -27,6 +28,7 @@ workload:
             startup:
               type: http
               path: /ping
+
 securityContext:
   container:
     readOnlyRootFilesystem: false
@@ -39,6 +41,7 @@ securityContext:
     #     - IPC_LOCK
     #     - NET_ADMIN
     #     - SYS_NICE
+
 service:
   main:
     ports:
@@ -46,24 +49,30 @@ service:
         port: 8123
         protocol: http
         targetPort: 8123
+
 persistence:
   data:
     enabled: true
     mountPath: /var/lib/clickhouse
+
 clickhouseDatabase: "test"
 clickhouseUsername: "test"
 clickhouseDefaultAccessManagement: 0
+
 # -- Secret or password
 # One of these options is required, unless used as a dependency for another TrueCharts chart.
 clickhousePassword: ""
 existingSecret: ""
+
 secret:
   credentials:
     enabled: true
     data:
       clickhouse-password: '{{ ( .Values.clickhousePassword | default "empty" ) }}'
+
 portal:
   open:
     enabled: false
+
 manifestManager:
   enabled: false

charts/dependency/kube-state-metrics/Chart.yaml

@@ -1,37 +0,0 @@
-kubeVersion: '>=1.24.0'
-apiVersion: v2
-name: kube-state-metrics
-version: 4.0.0
-appVersion: 2.10.1
-description: kube-state-metrics is a simple service that listens to the Kubernetes
-  API server and generates metrics about the state of the objects.
-home: https://truecharts.org/charts/dependency/kube-state-metrics
-icon: https://truecharts.org/img/hotlink-ok/chart-icons/kube-state-metrics.png
-deprecated: false
-sources:
-- https://github.com/truecharts/charts/tree/master/charts/dependency/kube-state-metrics
-- https://hub.docker.com/r/bitnami/kube-state-metrics
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
-keywords:
-- prometheus
-- kube-state-metrics
-- monitoring
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
-annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
-  truecharts.org/SCALE-support: "true"
-  truecharts.org/category: metrics
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency

charts/dependency/kube-state-metrics/LICENSE

@@ -1,106 +0,0 @@
-Business Source License 1.1
-
-Parameters
-
-Licensor:             The TrueCharts Project, it's owner and it's contributors
-Licensed Work:        The TrueCharts "Grafana" Helm Chart
-Additional Use Grant: You may use the licensed work in production, as long
-                      as it is directly sourced from a TrueCharts provided
-                      official repository, catalog or source. You may also make private
-                      modification to the directly sourced licenced work,
-                      when used in production.
-
-                      The following cases are, due to their nature, also
-                      defined as 'production use' and explicitly prohibited:
-                      - Bundling, including or displaying the licensed work
-                      with(in) another work intended for production use,
-                      with the apparent intend of facilitating and/or
-                      promoting production use by third parties in
-                      violation of this license.
-
-Change Date:          2050-01-01
-
-Change License:       3-clause BSD license
-
-For information about alternative licensing arrangements for the Software,
-please contact: legal@truecharts.org
-
-Notice
-
-The Business Source License (this document, or the “License”) is not an Open
-Source license. However, the Licensed Work will eventually be made available
-under an Open Source License, as stated in this License.
-
-License text copyright (c) 2017 MariaDB Corporation Ab, All Rights Reserved.
-“Business Source License” is a trademark of MariaDB Corporation Ab.
-
------------------------------------------------------------------------------
-
-Business Source License 1.1
-
-Terms
-
-The Licensor hereby grants you the right to copy, modify, create derivative
-works, redistribute, and make non-production use of the Licensed Work. The
-Licensor may make an Additional Use Grant, above, permitting limited
-production use.
-
-Effective on the Change Date, or the fourth anniversary of the first publicly
-available distribution of a specific version of the Licensed Work under this
-License, whichever comes first, the Licensor hereby grants you rights under
-the terms of the Change License, and the rights granted in the paragraph
-above terminate.
-
-If your use of the Licensed Work does not comply with the requirements
-currently in effect as described in this License, you must purchase a
-commercial license from the Licensor, its affiliated entities, or authorized
-resellers, or you must refrain from using the Licensed Work.
-
-All copies of the original and modified Licensed Work, and derivative works
-of the Licensed Work, are subject to this License. This License applies
-separately for each version of the Licensed Work and the Change Date may vary
-for each version of the Licensed Work released by Licensor.
-
-You must conspicuously display this License on each original or modified copy
-of the Licensed Work. If you receive the Licensed Work in original or
-modified form from a third party, the terms and conditions set forth in this
-License apply to your use of that work.
-
-Any use of the Licensed Work in violation of this License will automatically
-terminate your rights under this License for the current and all other
-versions of the Licensed Work.
-
-This License does not grant you any right in any trademark or logo of
-Licensor or its affiliates (provided that you may use a trademark or logo of
-Licensor as expressly required by this License).
-
-TO THE EXTENT PERMITTED BY APPLICABLE LAW, THE LICENSED WORK IS PROVIDED ON
-AN “AS IS” BASIS. LICENSOR HEREBY DISCLAIMS ALL WARRANTIES AND CONDITIONS,
-EXPRESS OR IMPLIED, INCLUDING (WITHOUT LIMITATION) WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND
-TITLE.
-
-MariaDB hereby grants you permission to use this License’s text to license
-your works, and to refer to it using the trademark “Business Source License”,
-as long as you comply with the Covenants of Licensor below.
-
-Covenants of Licensor
-
-In consideration of the right to use this License’s text and the “Business
-Source License” name and trademark, Licensor covenants to MariaDB, and to all
-other recipients of the licensed work to be provided by Licensor:
-
-1. To specify as the Change License the GPL Version 2.0 or any later version,
-   or a license that is compatible with GPL Version 2.0 or a later version,
-   where “compatible” means that software provided under the Change License can
-   be included in a program with software provided under GPL Version 2.0 or a
-   later version. Licensor may specify additional Change Licenses without
-   limitation.
-
-2. To either: (a) specify an additional grant of rights to use that does not
-   impose any additional restriction on the right granted in this License, as
-   the Additional Use Grant; or (b) insert the text “None”.
-
-3. To specify a Change Date.
-
-4. Not to modify this License in any other way.

charts/dependency/kube-state-metrics/README.md

@@ -1,27 +0,0 @@
-# README
-
-## General Info
-
-TrueCharts can be installed as both *normal* Helm Charts or as Apps on TrueNAS SCALE.
-However only installations using the TrueNAS SCALE Apps system are supported.
-
-For more information about this App, please check the docs on the TrueCharts [website](https://truecharts.org/charts/dependency/)
-
-**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/charts/issues/new/choose)**
-
-
-## Support
-
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
-- See the [Website](https://truecharts.org)
-- Check our [Discord](https://discord.gg/tVsPTHWTtr)
-- Open a [issue](https://github.com/truecharts/charts/issues/new/choose)
-
----
-
-## Sponsor TrueCharts
-
-TrueCharts can only exist due to the incredible effort of our staff.
-Please consider making a [donation](https://truecharts.org/sponsor) or contributing back to the project any way you can!
-
-*All Rights Reserved - The TrueCharts Project*

charts/dependency/kube-state-metrics/questions.yaml

@@ -1,109 +0,0 @@
-# Include{groups}
-questions:
-# Include{global}
-# Include{workload}
-# Include{workloadDeployment}
-
-# Include{replicas1}
-# Include{podSpec}
-# Include{containerMain}
-# Include{containerBasic}
-# Include{containerAdvanced}
-
-
-# Include{containerConfig}
-# Include{podOptions}
-# Include{serviceRoot}
-        - variable: main
-          label: "Main Service"
-          description: "The Primary service on which the healthcheck runs, often the webUI"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{serviceSelectorClusterIP}
-# Include{serviceSelectorExtras}
-                    - variable: main
-                      label: "Main Service Port Configuration"
-                      schema:
-                        additional_attrs: true
-                        type: dict
-                        attrs:
-                          - variable: port
-                            label: "Port"
-                            description: "This port exposes the container port on the service"
-                            schema:
-                              type: int
-                              default: 8080
-                              required: true
-        - variable: selfmonitor
-          label: "selfmonitor Service"
-          description: "The Primary service on which the healthcheck runs, often the webUI"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{serviceSelectorClusterIP}
-# Include{serviceSelectorExtras}
-                    - variable: selfmonitor
-                      label: "selfmonitor Service Port Configuration"
-                      schema:
-                        additional_attrs: true
-                        type: dict
-                        attrs:
-                          - variable: port
-                            label: "Port"
-                            description: "This port exposes the container port on the service"
-                            schema:
-                              type: int
-                              default: 8081
-                              required: true
-# Include{serviceExpertRoot}
-# Include{serviceExpert}
-# Include{serviceList}
-# Include{persistenceList}
-# Include{ingressRoot}
-        - variable: main
-          label: "Main Ingress"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{ingressDefault}
-# Include{ingressTLS}
-# Include{ingressTraefik}
-# Include{ingressAdvanced}
-# Include{ingressList}
-# Include{securityContextRoot}
-
-              - variable: runAsUser
-                label: "runAsUser"
-                description: "The UserID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-              - variable: runAsGroup
-                label: "runAsGroup"
-                description: "The groupID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-# Include{securityContextContainer}
-# Include{securityContextAdvanced}
-# Include{securityContextPod}
-              - variable: fsGroup
-                label: "fsGroup"
-                description: "The group that should own ALL storage."
-                schema:
-                  type: int
-                  default: 568
-
-# Include{resources}
-# Include{metrics}
-# Include{prometheusRule}
-# Include{advanced}
-# Include{addons}
-# Include{codeserver}
-# Include{netshoot}
-# Include{vpn}
-# Include{documentation}

charts/dependency/kube-state-metrics/templates/common.yaml

@@ -1 +0,0 @@
-{{ include "tc.v1.common.loader.all" . }}

charts/dependency/kube-state-metrics/values.yaml

@@ -1,306 +0,0 @@
-image:
-  repository: bitnami/kube-state-metrics
-  pullPolicy: IfNotPresent
-  tag: 2.10.1@sha256:6819ee084fdb0ddee851ffcda90833d4e5b991987bdd1fbe4804ade61f47ccdb
-service:
-  main:
-    ports:
-      main:
-        protocol: http
-        port: 8080
-  selfmonitor:
-    enabled: true
-    ports:
-      selfmonitor:
-        enabled: true
-        protocol: http
-        port: 8081
-workload:
-  main:
-    podSpec:
-      containers:
-        main:
-          args:
-            - --resources=certificatesigningrequests
-            - --resources=configmaps
-            - --resources=cronjobs
-            - --resources=daemonsets
-            - --resources=deployments
-            - --resources=endpoints
-            - --resources=horizontalpodautoscalers
-            - --resources=ingresses
-            - --resources=jobs
-            - --resources=limitranges
-            - --resources=mutatingwebhookconfigurations
-            - --resources=namespaces
-            - --resources=networkpolicies
-            - --resources=nodes
-            - --resources=persistentvolumeclaims
-            - --resources=persistentvolumes
-            - --resources=poddisruptionbudgets
-            - --resources=pods
-            - --resources=replicasets
-            - --resources=replicationcontrollers
-            - --resources=resourcequotas
-            - --resources=secrets
-            - --resources=services
-            - --resources=statefulsets
-            - --resources=storageclasses
-            # - --resources=verticalpodautoscalers
-            - --resources=validatingwebhookconfigurations
-            - --resources=volumeattachments
-          probes:
-            liveness:
-              path: /healthz
-              port: main
-            readiness:
-              path: /healthz
-              port: main
-            startup:
-              type: tcp
-              port: main
-podOptions:
-  automountServiceAccountToken: true
-serviceAccount:
-  main:
-    enabled: true
-    primary: true
-rbac:
-  main:
-    enabled: true
-    primary: true
-    clusterWide: true
-    rules:
-      - apiGroups:
-          - certificates.k8s.io
-        resources:
-          - certificatesigningrequests
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - configmaps
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - batch
-        resources:
-          - cronjobs
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - apps
-        resources:
-          - daemonsets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - apps
-        resources:
-          - deployments
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - endpoints
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - autoscaling
-        resources:
-          - horizontalpodautoscalers
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - networking.k8s.io
-        resources:
-          - ingresses
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - batch
-        resources:
-          - jobs
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - limitranges
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - admissionregistration.k8s.io
-        resources:
-          - mutatingwebhookconfigurations
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - namespaces
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - networking.k8s.io
-        resources:
-          - networkpolicies
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - nodes
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - persistentvolumeclaims
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - persistentvolumes
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - policy
-        resources:
-          - poddisruptionbudgets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - pods
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - apps
-        resources:
-          - replicasets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - replicationcontrollers
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - resourcequotas
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - secrets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - services
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - apps
-        resources:
-          - statefulsets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - storage.k8s.io
-        resources:
-          - storageclasses
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - autoscaling.k8s.io
-        resources:
-          - verticalpodautoscalers
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - admissionregistration.k8s.io
-        resources:
-          - validatingwebhookconfigurations
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - storage.k8s.io
-        resources:
-          - volumeattachments
-        verbs:
-          - list
-          - watch
-      - apiGroups: ["discovery.k8s.io"]
-        resources:
-          - endpointslices
-        verbs: ["list", "watch"]
-metrics:
-  main:
-    # -- Enable and configure a Prometheus serviceMonitor for the chart under this key.
-    # @default -- See values.yaml
-    enabled: true
-    type: "servicemonitor"
-    endpoints:
-      - port: main
-      - port: selfmonitor
-    # -- Enable and configure Prometheus Rules for the chart under this key.
-    # @default -- See values.yaml
-    prometheusRule:
-      enabled: false
-      labels: {}
-      # -- Configure additionial rules for the chart under this key.
-      # @default -- See prometheusrules.yaml
-      rules: []
-      # - alert: UnifiPollerAbsent
-      #   annotations:
-      #     description: Unifi Poller has disappeared from Prometheus service discovery.
-      #     summary: Unifi Poller is down.
-      #   expr: |
-      #     absent(up{job=~".*unifi-poller.*"} == 1)
-      #   for: 5m
-      #   labels:
-      #     severity: critical
-portal:
-  open:
-    enabled: false

charts/dependency/mariadb/Chart.yaml

@@ -1,41 +1,33 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: mariadb
-version: 10.0.0
-appVersion: 11.1.3
-description: Fast, reliable, scalable, and easy to use open-source relational database
-  system.
+appVersion: "10.11.2"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+deprecated: false
+description: Fast, reliable, scalable, and easy to use open-source relational database system.
 home: https://truecharts.org/charts/dependency/mariadb
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/mariadb.png
-deprecated: false
-sources:
-- https://mariadb.org
-- https://github.com/bitnami/bitnami-docker-mariadb
-- https://github.com/truecharts/charts/tree/master/charts/dependency/mariadb
-- https://hub.docker.com/r/bitnami/mariadb
-- https://github.com/prometheus/mysqld_exporter
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- mariadb
-- mysql
-- database
-- sql
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
+  - mariadb
+  - mysql
+  - database
+  - sql
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: mariadb
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/dependency/mariadb
+  - https://github.com/bitnami/bitnami-docker-mariadb
+  - https://github.com/prometheus/mysqld_exporter
+  - https://mariadb.org
+type: application
+version: 7.0.13
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - database
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: database
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency
+  truecharts.org/grade: U

charts/dependency/mariadb/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/dependency/mariadb/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: mariadbDatabase
     group: "App Configuration"
     label: "Database Name"
@@ -64,6 +63,7 @@ questions:
                               default: 3306
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/mariadb/values.yaml

@@ -1,7 +1,8 @@
 image:
-  repository: bitnami/mariadb
+  repository: tccr.io/truecharts/mariadb
   pullPolicy: IfNotPresent
-  tag: 11.1.3@sha256:ec252de855742584bb2dace25f5cd83ccfdde4f61961cca00fc29a1d5200c2aa
+  tag: 10.11.2@sha256:fc01102eef1de92155b5097636ef738700c8bef1735f52a397b1505cbf455c0f
+
 workload:
   main:
     podSpec:
@@ -42,35 +43,43 @@ workload:
                 - /bin/bash
                 - -ec
                 - "until /opt/bitnami/scripts/mariadb/healthcheck.sh; do sleep 2; done"
+
 service:
   main:
     ports:
       main:
         port: 3306
         targetPort: 3306
+
 securityContext:
   container:
     readOnlyRootFilesystem: false
     runAsGroup: 0
+
 secret:
   credentials:
     enabled: true
     data:
       mariadb-password: '{{ ( .Values.mariadbPassword | default "empty" ) }}'
       mariadb-root-password: '{{ ( .Values.mariadbRootPassword | default "empty" ) }}'
+
 persistence:
   data:
     enabled: true
     mountPath: "/bitnami/mariadb"
+
 mariadbUsername: "test"
 mariadbDatabase: "test"
 mariadbRootPassword: "testroot"
+
 # -- Secret or password
 # One of these options is required, unless used as a dependency for another TrueCharts chart.
 mariadbPassword: ""
 existingSecret: ""
+
 portal:
   open:
     enabled: false
+
 manifestManager:
   enabled: false

charts/dependency/memcached/Chart.yaml

@@ -1,37 +1,32 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: memcached
-version: 9.0.0
-appVersion: 1.6.22
+appVersion: "1.6.18"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+deprecated: false
 description: Memcached is a memory-backed database caching solution
 home: https://truecharts.org/charts/dependency/memcached
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/memcached.png
-deprecated: false
-sources:
-- https://github.com/bitnami/bitnami-docker-memcached
-- https://github.com/truecharts/charts/tree/master/charts/dependency/memcached
-- https://hub.docker.com/r/bitnami/memcached
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- memcached
-- database
-- cache
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
+  - memcached
+  - database
+  - cache
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: memcached
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/dependency/memcached
+  - https://github.com/bitnami/bitnami-docker-memcached
+  - http://memcached.org/
+type: application
+version: 6.0.23
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - database
+    - cache
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: database
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency
+  truecharts.org/grade: U

charts/dependency/memcached/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/dependency/memcached/questions.yaml

@@ -9,7 +9,6 @@ questions:
 # Include{containerBasic}
 # Include{containerAdvanced}
 # Include{containerConfig}
-# Include{podOptions}
 # Include{serviceRoot}
         - variable: main
           label: "Main Service"
@@ -34,6 +33,7 @@ questions:
                               default: 11211
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceList}

charts/dependency/memcached/values.yaml

@@ -1,7 +1,8 @@
 image:
-  repository: bitnami/memcached
+  repository: tccr.io/truecharts/memcached
   pullPolicy: IfNotPresent
-  tag: 1.6.22@sha256:d4c4ba01c45b2fdbc58cbb94af8ed0690c46ce2c70b34de49751c8920042af02
+  tag: 1.6.18@sha256:49998f1e9bb4c1537c559c9e6a757c93a346d2ea6b03d03ecdca3bda3c8d4ab6
+
 service:
   main:
     ports:
@@ -9,8 +10,10 @@ service:
         port: 11211
         protocol: tcp
         targetPort: 11211
+
 portal:
   open:
     enabled: false
+
 manifestManager:
   enabled: false

charts/dependency/mongodb/Chart.yaml

@@ -1,39 +1,31 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: mongodb
-version: 9.0.1
-appVersion: 7.0.4
-description: Fast, reliable, scalable, and easy to use open-source no-sql database
-  system.
+appVersion: "6.0.4"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+deprecated: false
+description: Fast, reliable, scalable, and easy to use open-source no-sql database system.
 home: https://truecharts.org/charts/dependency/mongodb
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/mongodb.png
-deprecated: false
-sources:
-- https://www.mongodb.com
-- https://github.com/bitnami/bitnami-docker-mongodb
-- https://github.com/truecharts/charts/tree/master/charts/dependency/mongodb
-- https://hub.docker.com/r/bitnami/mongodb
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- mongodb
-- database
-- nosql
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
+  - mongodb
+  - database
+  - nosql
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: mongodb
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/dependency/mongodb
+  - https://github.com/bitnami/bitnami-docker-mongodb
+  - https://www.mongodb.com
+type: application
+version: 6.0.12
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - database
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: database
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency
+  truecharts.org/grade: U

charts/dependency/mongodb/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/dependency/mongodb/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: mongodbDatabase
     group: "App Configuration"
     label: "Database Name"
@@ -64,6 +63,7 @@ questions:
                               default: 27017
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/mongodb/values.yaml

@@ -1,7 +1,8 @@
 image:
-  repository: bitnami/mongodb
+  repository: tccr.io/truecharts/mongodb
   pullPolicy: IfNotPresent
-  tag: 7.0.4@sha256:20d7c04ac542ad5a46ac3ed0cc7f065b0da20cc72b5e9fe36ece2b565903fff1
+  tag: 6.0.4@sha256:3600c9f13d96311ddad4d2de6520d54c89a8708ee36798e4dc6fb93f59c1eab4
+
 workload:
   main:
     replicas: 1
@@ -41,6 +42,7 @@ workload:
                     - /bin/bash
                     - -ec
                     - echo "db.runCommand(\"ping\")" | mongosh --host localhost --port 27017 ${MONGODB_DATABASE} --quiet
+
             # -- Redainess probe configuration
             # @default -- See below
             readiness:
@@ -57,6 +59,7 @@ workload:
                     - /bin/bash
                     - -ec
                     - echo "db.runCommand(\"ping\")" | mongosh --host localhost --port 27017 ${MONGODB_DATABASE} --quiet
+
             # -- Startup probe configuration
             # @default -- See below
             startup:
@@ -72,35 +75,43 @@ workload:
                     - /bin/bash
                     - -ec
                     - echo "db.runCommand(\"ping\")" | mongosh --host localhost --port 27017 ${MONGODB_DATABASE} --quiet
+
 service:
   main:
     ports:
       main:
         port: 27017
         targetPort: 27017
+
 securityContext:
   container:
     runAsGroup: 0
     readOnlyRootFilesystem: false
+
 persistence:
   data:
     enabled: true
     mountPath: "/bitnami/mongodb"
+
 mongodbUsername: "test"
 mongodbDatabase: "test"
 mongodbRootPassword: "testroot"
+
 # -- Secret or password
 # One of these options is required, unless used as a dependency for another TrueCharts chart.
 mongodbPassword: ""
 existingSecret: ""
+
 secret:
   credentials:
     enabled: true
     data:
       mongodb-password: '{{ ( .Values.mongodbPassword | default "empty" ) }}'
       mongodb-root-password: '{{ ( .Values.mongodbRootPassword | default "empty" ) }}'
+
 portal:
   open:
     enabled: false
+
 manifestManager:
   enabled: false

charts/dependency/node-exporter/Chart.yaml

@@ -1,37 +0,0 @@
-kubeVersion: '>=1.24.0'
-apiVersion: v2
-name: node-exporter
-version: 4.0.0
-appVersion: 1.7.0
-description: Prometheus exporter for hardware and OS metrics exposed by UNIX kernels,
-  with pluggable metric collectors.
-home: https://truecharts.org/charts/dependency/node-exporter
-icon: https://truecharts.org/img/hotlink-ok/chart-icons/node-exporter.png
-deprecated: false
-sources:
-- https://github.com/truecharts/charts/tree/master/charts/dependency/node-exporter
-- https://hub.docker.com/r/bitnami/node-exporter
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
-keywords:
-- prometheus
-- node-exporter
-- monitoring
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
-annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
-  truecharts.org/SCALE-support: "true"
-  truecharts.org/category: metrics
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency

charts/dependency/node-exporter/LICENSE

@@ -1,106 +0,0 @@
-Business Source License 1.1
-
-Parameters
-
-Licensor:             The TrueCharts Project, it's owner and it's contributors
-Licensed Work:        The TrueCharts "Grafana" Helm Chart
-Additional Use Grant: You may use the licensed work in production, as long
-                      as it is directly sourced from a TrueCharts provided
-                      official repository, catalog or source. You may also make private
-                      modification to the directly sourced licenced work,
-                      when used in production.
-
-                      The following cases are, due to their nature, also
-                      defined as 'production use' and explicitly prohibited:
-                      - Bundling, including or displaying the licensed work
-                      with(in) another work intended for production use,
-                      with the apparent intend of facilitating and/or
-                      promoting production use by third parties in
-                      violation of this license.
-
-Change Date:          2050-01-01
-
-Change License:       3-clause BSD license
-
-For information about alternative licensing arrangements for the Software,
-please contact: legal@truecharts.org
-
-Notice
-
-The Business Source License (this document, or the “License”) is not an Open
-Source license. However, the Licensed Work will eventually be made available
-under an Open Source License, as stated in this License.
-
-License text copyright (c) 2017 MariaDB Corporation Ab, All Rights Reserved.
-“Business Source License” is a trademark of MariaDB Corporation Ab.
-
------------------------------------------------------------------------------
-
-Business Source License 1.1
-
-Terms
-
-The Licensor hereby grants you the right to copy, modify, create derivative
-works, redistribute, and make non-production use of the Licensed Work. The
-Licensor may make an Additional Use Grant, above, permitting limited
-production use.
-
-Effective on the Change Date, or the fourth anniversary of the first publicly
-available distribution of a specific version of the Licensed Work under this
-License, whichever comes first, the Licensor hereby grants you rights under
-the terms of the Change License, and the rights granted in the paragraph
-above terminate.
-
-If your use of the Licensed Work does not comply with the requirements
-currently in effect as described in this License, you must purchase a
-commercial license from the Licensor, its affiliated entities, or authorized
-resellers, or you must refrain from using the Licensed Work.
-
-All copies of the original and modified Licensed Work, and derivative works
-of the Licensed Work, are subject to this License. This License applies
-separately for each version of the Licensed Work and the Change Date may vary
-for each version of the Licensed Work released by Licensor.
-
-You must conspicuously display this License on each original or modified copy
-of the Licensed Work. If you receive the Licensed Work in original or
-modified form from a third party, the terms and conditions set forth in this
-License apply to your use of that work.
-
-Any use of the Licensed Work in violation of this License will automatically
-terminate your rights under this License for the current and all other
-versions of the Licensed Work.
-
-This License does not grant you any right in any trademark or logo of
-Licensor or its affiliates (provided that you may use a trademark or logo of
-Licensor as expressly required by this License).
-
-TO THE EXTENT PERMITTED BY APPLICABLE LAW, THE LICENSED WORK IS PROVIDED ON
-AN “AS IS” BASIS. LICENSOR HEREBY DISCLAIMS ALL WARRANTIES AND CONDITIONS,
-EXPRESS OR IMPLIED, INCLUDING (WITHOUT LIMITATION) WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND
-TITLE.
-
-MariaDB hereby grants you permission to use this License’s text to license
-your works, and to refer to it using the trademark “Business Source License”,
-as long as you comply with the Covenants of Licensor below.
-
-Covenants of Licensor
-
-In consideration of the right to use this License’s text and the “Business
-Source License” name and trademark, Licensor covenants to MariaDB, and to all
-other recipients of the licensed work to be provided by Licensor:
-
-1. To specify as the Change License the GPL Version 2.0 or any later version,
-   or a license that is compatible with GPL Version 2.0 or a later version,
-   where “compatible” means that software provided under the Change License can
-   be included in a program with software provided under GPL Version 2.0 or a
-   later version. Licensor may specify additional Change Licenses without
-   limitation.
-
-2. To either: (a) specify an additional grant of rights to use that does not
-   impose any additional restriction on the right granted in this License, as
-   the Additional Use Grant; or (b) insert the text “None”.
-
-3. To specify a Change Date.
-
-4. Not to modify this License in any other way.

charts/dependency/node-exporter/README.md

@@ -1,27 +0,0 @@
-# README
-
-## General Info
-
-TrueCharts can be installed as both *normal* Helm Charts or as Apps on TrueNAS SCALE.
-However only installations using the TrueNAS SCALE Apps system are supported.
-
-For more information about this App, please check the docs on the TrueCharts [website](https://truecharts.org/charts/dependency/)
-
-**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/charts/issues/new/choose)**
-
-
-## Support
-
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
-- See the [Website](https://truecharts.org)
-- Check our [Discord](https://discord.gg/tVsPTHWTtr)
-- Open a [issue](https://github.com/truecharts/charts/issues/new/choose)
-
----
-
-## Sponsor TrueCharts
-
-TrueCharts can only exist due to the incredible effort of our staff.
-Please consider making a [donation](https://truecharts.org/sponsor) or contributing back to the project any way you can!
-
-*All Rights Reserved - The TrueCharts Project*

charts/dependency/node-exporter/questions.yaml

@@ -1,87 +0,0 @@
-# Include{groups}
-questions:
-# Include{global}
-# Include{workload}
-# Include{workloadDeployment}
-
-# Include{replicas1}
-# Include{podSpec}
-# Include{containerMain}
-# Include{containerBasic}
-# Include{containerAdvanced}
-
-
-# Include{containerConfig}
-# Include{podOptions}
-# Include{serviceRoot}
-        - variable: main
-          label: "Main Service"
-          description: "The Primary service on which the healthcheck runs, often the webUI"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{serviceSelectorLoadBalancer}
-# Include{serviceSelectorExtras}
-                    - variable: main
-                      label: "Main Service Port Configuration"
-                      schema:
-                        additional_attrs: true
-                        type: dict
-                        attrs:
-                          - variable: port
-                            label: "Port"
-                            description: "This port exposes the container port on the service"
-                            schema:
-                              type: int
-                              default: 9100
-                              required: true
-# Include{serviceExpertRoot}
-# Include{serviceExpert}
-# Include{serviceList}
-# Include{persistenceList}
-# Include{ingressRoot}
-        - variable: main
-          label: "Main Ingress"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{ingressDefault}
-# Include{ingressTLS}
-# Include{ingressTraefik}
-# Include{ingressAdvanced}
-# Include{ingressList}
-# Include{securityContextRoot}
-
-              - variable: runAsUser
-                label: "runAsUser"
-                description: "The UserID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-              - variable: runAsGroup
-                label: "runAsGroup"
-                description: "The groupID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-# Include{securityContextContainer}
-# Include{securityContextAdvanced}
-# Include{securityContextPod}
-              - variable: fsGroup
-                label: "fsGroup"
-                description: "The group that should own ALL storage."
-                schema:
-                  type: int
-                  default: 568
-
-# Include{resources}
-# Include{metrics}
-# Include{prometheusRule}
-# Include{advanced}
-# Include{addons}
-# Include{codeserver}
-# Include{netshoot}
-# Include{vpn}
-# Include{documentation}

charts/dependency/node-exporter/templates/common.yaml

@@ -1 +0,0 @@
-{{ include "tc.v1.common.loader.all" . }}

charts/dependency/node-exporter/values.yaml

@@ -1,86 +0,0 @@
-image:
-  repository: bitnami/node-exporter
-  pullPolicy: IfNotPresent
-  tag: 1.7.0@sha256:68d9e82bc1c876bdf78bc6a81965f1f32344087dd56bbec052acac8237d86cf8
-service:
-  main:
-    ports:
-      main:
-        protocol: http
-        port: 9910
-workload:
-  main:
-    type: DaemonSet
-    podSpec:
-      containers:
-        main:
-          args:
-            - --path.rootfs=/host
-            - --path.procfs=/hostproc
-            - --path.sysfs=/hostsys
-            - --web.listen-address=0.0.0.0:{{ .Values.service.main.ports.main.port }}
-            - --collector.filesystem.mount-points-exclude="^/(dev|proc|sys|var/lib/docker/.+|var/lib/kubelet/.+|var/db/system/.+|mnt/[a-zA-Z0-9-_\\.]+/ix-applications/.+)($|/)"
-            - --collector.filesystem.fs-types-exclude="^(autofs|binfmt_misc|cgroup|configfs|debugfs|devpts|devtmpfs|fusectl|hugetlbfs|mqueue|overlay|proc|procfs|pstore|rpc_pipefs|securityfs|sysfs|tracefs)$"
-            - --collector.netdev.device-exclude="^veth.*$"
-            - --collector.netclass.ignored-devices="^veth.*$"
-          probes:
-            liveness:
-              path: /
-              port: main
-            readiness:
-              path: /
-              port: main
-            startup:
-              type: tcp
-              port: main
-podOptions:
-  hostNetwork: true
-  hostPID: true
-persistence:
-  host:
-    enabled: true
-    type: hostPath
-    hostPath: /
-    mountPath: /host
-    readOnly: true
-  proc:
-    enabled: true
-    type: hostPath
-    hostPath: /proc
-    mountPath: /hostproc
-    readOnly: true
-  sys:
-    enabled: true
-    type: hostPath
-    hostPath: /sys
-    mountPath: /hostsys
-    readOnly: true
-metrics:
-  main:
-    # -- Enable and configure a Prometheus serviceMonitor for the chart under this key.
-    # @default -- See values.yaml
-    enabled: true
-    type: "servicemonitor"
-    endpoints:
-      - port: main
-        path: /metrics
-    # -- Enable and configure Prometheus Rules for the chart under this key.
-    # @default -- See values.yaml
-    prometheusRule:
-      enabled: false
-      labels: {}
-      # -- Configure additionial rules for the chart under this key.
-      # @default -- See prometheusrules.yaml
-      rules: []
-      # - alert: UnifiPollerAbsent
-      #   annotations:
-      #     description: Unifi Poller has disappeared from Prometheus service discovery.
-      #     summary: Unifi Poller is down.
-      #   expr: |
-      #     absent(up{job=~".*unifi-poller.*"} == 1)
-      #   for: 5m
-      #   labels:
-      #     severity: critical
-portal:
-  open:
-    enabled: false

charts/dependency/redis/Chart.yaml

@@ -1,37 +1,32 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: redis
-version: 9.0.0
-appVersion: 7.2.3
+appVersion: "7.0.8"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+deprecated: false
 description: Open source, advanced key-value store.
 home: https://truecharts.org/charts/dependency/redis
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/redis.png
-deprecated: false
-sources:
-- https://github.com/bitnami/bitnami-docker-redis
-- https://github.com/truecharts/charts/tree/master/charts/dependency/redis
-- https://hub.docker.com/r/bitnami/redis
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- redis
-- keyvalue
-- database
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
+  - redis
+  - keyvalue
+  - database
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: redis
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/dependency/redis
+  - https://github.com/bitnami/bitnami-docker-redis
+  - http://redis.io/
+type: application
+version: 6.0.29
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - database
+    - cache
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: database
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency
+  truecharts.org/grade: U

charts/dependency/redis/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/dependency/redis/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: redisPassword
     group: "App Configuration"
     label: "Redis Password"
@@ -43,6 +42,7 @@ questions:
                               default: 6379
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{vctRoot}

charts/dependency/redis/values.yaml

@@ -1,7 +1,8 @@
 image:
-  repository: bitnami/redis
+  repository: tccr.io/truecharts/redis
   pullPolicy: IfNotPresent
-  tag: 7.2.3@sha256:f7db3a51e2726109819b50004c3bbf8f1c792723af274f88532b8c3e64fcde0b
+  tag: 7.0.8@sha256:13e0bbf5369ed2f219b96c0e7136b531eb1fdca1db7b7e2c72e13133adf26288
+
 workload:
   main:
     replicas: 1
@@ -44,10 +45,12 @@ workload:
                 - sh
                 - -c
                 - /health/ping_readiness_local.sh 2
+
 securityContext:
   container:
     readOnlyRootFilesystem: false
     runAsGroup: 0
+
 configmap:
   health:
     enabled: true
@@ -120,25 +123,30 @@ configmap:
         "$script_dir/ping_liveness_local.sh" $1 || exit_status=$?
         "$script_dir/ping_liveness_master.sh" $1 || exit_status=$?
         exit $exit_status
+
 secret:
   credentials:
     enabled: true
     data:
       redis-password: '{{ ( .Values.redisPassword | default "nothing" ) }}'
+
 # -- Secret or password
 # One of these options is required, unless used as a dependency for another TrueCharts chart.
 redisPassword: ""
 existingSecret: ""
+
 service:
   main:
     ports:
       main:
         port: 6379
         targetPort: 6379
+
 volumeClaimTemplates:
   data:
     enabled: true
     mountPath: "/bitnami/redis"
+
 persistence:
   redis-health:
     enabled: true
@@ -159,8 +167,10 @@ persistence:
         path: ping_liveness_local_and_master.sh
       - key: ping_readiness_local_and_master.sh
         path: ping_readiness_local_and_master.sh
+
 portal:
   open:
     enabled: false
+
 manifestManager:
   enabled: false

charts/dependency/solr/Chart.yaml

@@ -1,37 +1,30 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: solr
-version: 7.0.0
-appVersion: 9.4.0
+appVersion: "9.1.1"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+deprecated: false
 description: Apache Solr
 home: https://truecharts.org/charts/dependency/solr
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/solr.png
-deprecated: false
-sources:
-- https://github.com/apache/solr
-- https://github.com/truecharts/charts/tree/master/charts/dependency/solr
-- https://hub.docker.com/r/bitnami/solr
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- solr
-- apache
-- search
-dependencies:
-- name: common
-  version: 15.3.1
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
+  - solr
+  - apache
+  - search
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: solr
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/dependency/solr
+  - https://github.com/apache/solr
+type: application
+version: 4.0.12
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - search
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: search
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: dependency
+  truecharts.org/grade: U

charts/dependency/solr/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/dependency/solr/questions.yaml

@@ -14,7 +14,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: solrCores
     group: "App Configuration"
     label: "Solr Cores"
@@ -66,6 +65,7 @@ questions:
                               default: 8983
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/solr/values.yaml

@@ -1,7 +1,8 @@
 image:
-  repository: bitnami/solr
+  repository: tccr.io/truecharts/solr
   pullPolicy: IfNotPresent
-  tag: 9.4.0@sha256:2ed1a4738c016c0d5d6549b6ad7bc977d9690c36b59cb6c682677792c8a059da
+  tag: 9.1.1@sha256:4ac9d6e8120321349f0a3e5dbaff796192a9623de8fb164adf9f42de952479f1
+
 workload:
   main:
     replicas: 1
@@ -18,6 +19,7 @@ workload:
                 expandObjectName: "{{ if .Values.solrPassword }}true{{ else }}false{{ end }}"
                 name: '{{ if .Values.solrPassword }}credentials{{ else if .Values.existingSecret }}{{ .Values.existingSecret }}{{ else }}{{ printf "%s-%s" .Release.Name "solrcreds" }}{{ end }}'
                 key: "solr-password"
+
           # -- Probe configuration
           # -- [[ref]](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/)
           # @default -- See below
@@ -43,6 +45,7 @@ workload:
                       else
                         until curl --fail localhost:8983/solr/"${SOLR_CORES}"/admin/ping; do sleep 2; done
                       fi;
+
             # -- Redainess probe configuration
             # @default -- See below
             readiness:
@@ -84,39 +87,47 @@ workload:
                       else
                         until curl --fail localhost:8983/solr/"${SOLR_CORES}"/admin/ping; do sleep 2; done
                       fi;
+
 securityContext:
   container:
     runAsNonRoot: false
     readOnlyRootFilesystem: false
     runAsUser: 1001
     runAsGroup: 0
+
 service:
   main:
     ports:
       main:
         port: 8983
         targetPort: 8983
+
 persistence:
   db:
     enabled: true
     mountPath: "/bitnami/solr"
+
 # Currently only single core is supported, with multiple cores, probes will fail.
 solrCores: "testcore"
 solrEnableAuthentication: "yes"
 solrUsername: "test"
 # Used to pass a comma separated list of optional options like '-XX:G1HeapRegionSize=8m'
 solrOpts: ""
+
 # -- Secret or password
 # One of these options is required, unless used as a dependency for another TrueCharts chart.
 existingSecret: ""
 solrPassword: ""
+
 secret:
   credentials:
     enabled: true
     data:
       solr-password: '{{ ( .Values.solrPassword | default "empty" ) }}'
+
 portal:
   open:
     enabled: true
+
 manifestManager:
   enabled: false

charts/enterprise/authelia/Chart.yaml

@@ -1,53 +1,43 @@
-kubeVersion: '>=1.24.0'
 apiVersion: v2
-name: authelia
-version: 19.0.13
-appVersion: 4.37.5
+appVersion: "4.37.5"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+  - condition: redis.enabled
+    name: redis
+    repository: https://deps.truecharts.org
+    version: 6.0.29
+deprecated: false
 description: Authelia is a Single Sign-On Multi-Factor portal for web apps
 home: https://truecharts.org/charts/enterprise/authelia
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/authelia.png
-deprecated: false
-sources:
-- https://github.com/authelia/chartrepo
-- https://github.com/authelia/authelia
-- https://github.com/truecharts/charts/tree/master/charts/enterprise/authelia
-- https://ghcr.io/authelia/authelia
-maintainers:
-- name: TrueCharts
-  email: info@truecharts.org
-  url: https://truecharts.org
 keywords:
-- authelia
-- authentication
-- login
-- SSO
-- Authentication
-- Security
-- Two-Factor
-- U2F
-- YubiKey
-- Push Notifications
-- LDAP
-dependencies:
-- name: common
-  version: 14.3.5
-  repository: https://library-charts.truecharts.org
-  condition: ""
-  alias: ""
-  tags: []
-  import-values: []
-- name: redis
-  version: 8.0.44
-  repository: https://deps.truecharts.org
-  condition: redis.enabled
-  alias: ""
-  tags: []
-  import-values: []
+  - authelia
+  - authentication
+  - login
+  - SSO
+  - Authentication
+  - Security
+  - Two-Factor
+  - U2F
+  - YubiKey
+  - Push Notifications
+  - LDAP
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: authelia
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/enterprise/authelia
+  - https://github.com/authelia/chartrepo
+  - https://github.com/authelia/authelia
+type: application
+version: 15.1.9
 annotations:
-  max_scale_version: 23.10.1
-  min_scale_version: 22.12.4
+  truecharts.org/catagories: |
+    - security
   truecharts.org/SCALE-support: "true"
-  truecharts.org/category: security
-  truecharts.org/max_helm_version: "3.13"
-  truecharts.org/min_helm_version: "3.12"
-  truecharts.org/train: enterprise
+  truecharts.org/grade: U

charts/enterprise/authelia/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)

charts/enterprise/authelia/docs/Setup-Guide.md

@@ -1,113 +0,0 @@
-# Authelia + LLDAP + Traefik ForwardAuth Setup guide
-
-This quick guide should take you through the steps necessary to setup `Authelia` as your `forwardAuth` for `Traefik`. We'll be using `LLDAP` as the backend for `Authelia` since it's lightweight and simple enough for most users. A more complete video is available on our YouTube Channel
-
-## Prerequisites
-
-- Traefik installed (enable the `enterprise train`)
-- Clusterissuer for certificates
-- CloudnativePG operator (enable the `operators train`)
-
-## Setup LLDAP
-
-:::warning
-
-LLDAP is a `Stable` train chart and therefore isn't supported at the same level as the charts in the `Enterprise` train (Authelia and Traefik).
-
-:::
-
-- Follow the steps included in the [Installation Notes](https://truecharts.org/charts/stable/lldap/installation-notes) for [LLDAP](https://truecharts.org/charts/stable/lldap/). Pretty straightforward. Change `dc=example,dc=com` to your domain, i.e. `dc=MYDOMAIN,dc=net` and then change your password. Also make sure you have the `Operators` train enabled and `CloudnativePG` operator installed, since you'll need it for `LLDAP` and `Authelia`
-
-![LLDAP Config](img/LLDAPCatalogConfig.png)
-
-- I've set the services to `ClusterIP` since I'll be using ingress
-
-- Once in `LLDAP`, create a user inside the `lldap_password_manager` group and change your default `admin` password. That `lldap_password_manager` user will be used to bind to `Authelia`. I've created a user called `Steven`
-
-## Setup Authelia
-
-- The setup for Authelia is very specific, and the logs won't tell you where you've messed up, but there's precise steps used to integrate `LLDAP` into `Authelia`. The info comes from the [LLDAP Authelia Docs](https://truecharts.org/charts/stable/lldap/authelia) and the upstream repo.
-
-### App Configuration
-
-- Domain: `mydomain.com` - Your domain without https://
-- Default Redirection URL: `https://auth.mydomain.com` - Can be anything, but we'll stick to auth.mydomain.com. As well, this will be the ingress URL for `Authelia`
-
-### LDAP Backend Configuration
-
-`Click Enable` then ensure everything is as below or you won't be able to connect to the LLDAP backend
-
-- Implementation: `Custom` (that's the default)
-- URL: `ldap://lldap-ldap.ix-lldap.svc.cluster.local:3890`
-- Connection Timeout: 5s
-- Start TLS: (Not necessary)
-- TLS Settings: (Not necessary)
-- Server Name: Leave blank
-- Skip Certificate Verification: Leave unchecked
-- Minimum TLS version: `TLS1.2`
-- Base DN: `DC=mydomain,DC=com`
-- Username Attribute: `uid`
-- Additional Users DN: `ou=people`
-- Users Filter: `(&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))`
-- Additional Groups DN: `ou=groups`
-- Groups Filter: `(member={dn})`
-- Group name Attribute:`cn`
-- Mail Attribute:`mail`
-- Display Name Attribute:`displayName`
-- Admin User: `uid=Steven,ou=people,dc=mydomain,dc=com` - Notice the uid=Steven, most of the time people use admin and a generated password
-- Password: `RANDOMPASSWORD`
-
-#### SMTP Configuration
-
-Check your mail provider for this, generally Gmail gives you an app specific password for your email account and uses `smtp.gmail.com` and port `587`
-
-### Access Control Configuration
-
-- This section is to set rules to connect to `Authelia` and which users can go where. This is a basic general rule below where the main user (Steven) can access all the site using a wildcard
-
-Leave the default `one_factor` unless you've setup TOTP above. Then click `Add` next to `Rules` to get the screen below
-
-![AutheliaAccessControl](img/AutheliaAccessControl.png)
-
-- Add your `Domain` and a `Wildcard` for your subdomains.
-- Leave policy `one_factor`
-- Click `Add Subject` and add a subject of `group:lldap_password_manager` since `Steven` is part of that group
-
-#### Setup Authelia Ingress
-
-- Make sure you're using the same domain as the `Default Redirection URL` above, so for me that's `auth.mydomain.com`
-
-![AutheliaIngress](img/AutheliaIngress.png)
-
-## Traefik ForwardAuth Setup
-
-- This part is straight forward as long as you have a working `Traefik` install, please see our [How-To](https://truecharts.org/charts/enterprise/traefik/how-to) if you need more info on getting that running.
-
-- Scroll down to `forwardAuth` and click `Add`
-
-![TraefikForwardAuth](img/TraefikForwardAuth.png)
-
-- Name your `forwardauth` something you'll remember, since that's the middleware you'll add to your ingress going forward. Most people use `auth`
-- Address: `http://authelia.ix-authelia.svc.cluster.local:9091/api/verify?rd=https://auth.mydomain.com/` and replace the last part based on `mydomain.com`, and if you've changed ports/names you can get that from `Heavyscript`
-- Check `trustForwardHeader`
-- Add the following `authResponseHeaders` (press `Add` 4 times)
-  - `Remote-User`
-  - `Remote-Group`
-  - `Remote-Name`
-  - `Remote-Email`
-
-### Adding the forwardauth to your Apps
-
-The last step is adding the `forwardauth` along with the standard `ingress` settings for your app, for more info on setting ingress see the [ClusterIssuer Guide](https://truecharts.org/charts/enterprise/clusterissuer/how-to). What changes versus a standard setup is the `Traefik Middlewares` section, where you must add your `forwardauth` to the section.
-
-- In this example we use the same name as above, or `auth`. Click `Add` to the `Traefik Middlewares` section, and enter your `forwardauth` name.
-
-![TraefikForwardAuthMiddleware](img/TraefikForwardAuthMiddleware.png)
-
-### References
-
-The origin material for this guide is available on the [LLDAP Github](https://github.com/lldap/lldap). While further information on Authelia can be found on their [Github](https://github.com/authelia/authelia) and [website](https://www.authelia.com/).
-
-### Support
-
-If you have any issues with following this guide, we can be reached using [Discord](https://discord.gg/tVsPTHWTtr) for real-time feedback and support.

charts/enterprise/authelia/docs/authelia-rules.md

@@ -1,107 +0,0 @@
-# Authelia Rules
-
-This is a collection of some common Authelia Rules.
-
-:::note[RULE ORDER]
-
-It is important that rules are created in the correct order in Authelia. Rules are processed from top to bottom with the first matching rule being applied. The most narrow rules should be applied first with the most broad rules last.
-
-:::
-
-All rules requiring Authelia authentication were configured with `two_factor` (2FA). If you do not want 2FA on some or all rules replace the Policy with `one_factor`
-
-## API Rule
-
-This rule will bypass Authelia for API level access in most apps. This should always be your first rule.
-
-Domain: `*.domain.tld`
-
-Policy: `bypass`
-
-Subject: `Not Used (Do Not Add)`
-
-Networks: `Not Used (Do Not Add)`
-
-Resources:
-
-- `^/api([/?].*)?$`
-- `^/identity.*$`
-- `^/triggers.*$`
-- `^/meshagents.*$`
-- `^/meshsettings.*$`
-- `^/agent.*$`
-- `^/control.*$`
-- `^/meshrelay.*$`
-- `^/wl.*$`
-
-![authelia-api](./img/authelia-api.png)
-
-## Vaultwarden
-
-These rules will protect the Vaultwarden admin page with Authelia but bypass when accessing the web vault. The order of these rules is critical or the admin page will not be protected.
-
-### Rule 1
-
-Domain: `vaultwarden.domain.tld`
-
-Policy: `two_factor`
-
-Subject: `Not Used (Do Not Add)`
-
-Networks: `Not Used (Do Not Add)`
-
-Resources: `^*/admin.*$`
-
-![authelia-vw1](./img/authelia-vw1.png)
-
-### Rule 2
-
-Domain: `vaultwarden.domain.tld`
-
-Policy: `bypass`
-
-Subject: `Not Used (Do Not Add)`
-
-Networks: `Not Used (Do Not Add)`
-
-Resources: `Not Used (Do Not Add)`
-
-![authelia-vw2](./img/authelia-vw2.png)
-
-## User Rule
-
-This rule will allow users in the `lldap_user` group access to only the specified applications.
-
-Domain:
-
-- `radarr.domain.tld`
-- `sonarr.domain.tld`
-
-Policy: `two_factor`
-
-Subject: `group:lldap_user`
-
-Networks: `Not Used (Do Not Add)`
-
-Resources: `Not Used (Do Not Add)`
-
-![authelia-user](./img/authelia-user.png)
-
-## Catch All Rule
-
-This rule will catch any access requests not covered by other rules.
-
-Domain:
-
-- `domain.tld`
-- `*.domain.tld`
-
-Policy: `two_factor`
-
-Subject: `group:lldap_admin`
-
-Networks: `Not Used (Do Not Add)`
-
-Resources: `Not Used (Do Not Add)`
-
-![authelia-catch](./img/authelia-catch.png)

charts/enterprise/authelia/docs/validation.md

@@ -1,23 +0,0 @@
-# Input Validation
-
-**`Default Redirection URL`**
-
-Accepts:
-
-- `https://`
-- DNS host
-- Characters (`0-9`, `a-z`, `A-Z`, `-`, `.`)
-
-Accepted formats are:
-
-- `https://dnshost`
-- `https://DNSHOST`
-- `https://DNS-HOST`
-- `https://dns-host`
-
-Regex used to match this: `^https?:\/\/(.*)`
-You can try live [here](https://regex101.com/r/zFt9zy/1)
-
----
-
-_If you find a field that you think it needs validation, please open an issue on github_

charts/enterprise/authelia/questions.yaml

@@ -12,7 +12,6 @@ questions:
 # Include{containerBasic}
 # Include{containerAdvanced}
 # Include{containerConfig}
-# Include{podOptions}
   - variable: domain
     group: "App Configuration"
     label: "Domain"
@@ -28,7 +27,6 @@ questions:
     schema:
       type: string
       default: ""
-      valid_chars: '^https?:\/\/(.*)'
   - variable: theme
     group: "App Configuration"
     label: "Theme"
@@ -98,95 +96,6 @@ questions:
           schema:
             type: int
             default: 1
-  - variable: password_policy
-    group: "App Configuration"
-    label: "Password Policy Configuration"
-    description: "Authelia allows administrators to configure an enforced password policy."
-    schema:
-      additional_attrs: true
-      type: dict
-      attrs:
-        - variable: enabled
-          label: "Enable"
-          schema:
-            type: boolean
-            default: false
-            show_subquestions_if: true
-            subquestions:
-              - variable: standard
-                label: Standard
-                schema:
-                  additional_attrs: true
-                  type: dict
-                  attrs:
-                    - variable: enabled
-                      label: Enabled
-                      schema:
-                        type: boolean
-                        default: false
-                    - variable: min_length
-                      label: "Minimum Password Length"
-                      description: "Minimum Password Length"
-                      schema:
-                        type: int
-                        required: true
-                        show_if: [["enabled", "=", true]]
-                        default: 8
-                    - variable: max_length
-                      label: "Max Passsword Length"
-                      description: "Max Password Length"
-                      schema:
-                        type: int
-                        required: true
-                        show_if: [["enabled", "=", true]]
-                        default: 0
-                    - variable: require_uppercase
-                      label: "Require Upppercase"
-                      schema:
-                        type: boolean
-                        default: false
-                        show_if: [["enabled", "=", true]]
-                        required: true
-                    - variable: require_lowercase
-                      label: "Require Lowercase"
-                      schema:
-                        type: boolean
-                        default: false
-                        show_if: [["enabled", "=", true]]
-                        required: true
-                    - variable: require_number
-                      label: "Require Numbers"
-                      description: "Require Numbers in the password"
-                      schema:
-                        type: boolean
-                        default: false
-                        show_if: [["enabled", "=", true]]
-                        required: true
-                    - variable: require_special
-                      label: "Require Special Characters"
-                      schema:
-                        type: boolean
-                        default: false
-                        show_if: [["enabled", "=", true]]
-              - variable: zxcvbn
-                label: zxcvbn
-                schema:
-                  additional_attrs: true
-                  type: dict
-                  attrs:
-                    - variable: enabled
-                      label: Enabled
-                      schema:
-                        type: boolean
-                        default: false
-                        required: true
-                    - variable: min_score
-                      label: "Min Score"
-                      schema:
-                        type: int
-                        required: true
-                        show_if: [["enabled", "=", true]]
-                        default: 3
   - variable: duo_api
     group: "App Configuration"
     label: "DUO API Configuration"
@@ -230,20 +139,14 @@ questions:
       attrs:
         - variable: name
           label: "Cookie Name"
-          description: |
-            The name of the session cookie. By default this is set to authelia_session.
-            It’s mostly useful to change this if you are doing development or running multiple instances of Authelia.
+          description: "The name of the session cookie."
           schema:
             type: string
             required: true
             default: "authelia_session"
         - variable: same_site
           label: "SameSite Value"
-          description: |
-            You can read about the SameSite cookie in detail on the MDN. In short setting SameSite to Lax is generally
-            the most desirable option for Authelia. None is not recommended unless you absolutely know what you’re doing
-            and trust all the protected apps. Strict is not going to work in many use cases and we have not tested it in
-            this state but it’s available as an option anyway.
+          description: "Sets the Cookie SameSite value"
           schema:
             type: string
             default: "lax"
@@ -254,27 +157,21 @@ questions:
                 description: "strict"
         - variable: expiration
           label: "Expiration Time"
-          description: |
-            The period of time before the cookie expires and the session is destroyed. This is overriden by
-            remember_me_duration when the remember me box is checked.
+          description: "The time in seconds before the cookie expires and session is reset."
           schema:
             type: string
             default: "1h"
             required: true
         - variable: inactivity
           label: "Inactivity Time"
-          description: |
-            The period of time the user can be inactive for until the session is destroyed when the remember me box is
-            not checked or is otherwise disabled. Useful if you want long session timers but don’t want unused devices to be vulnerable.
+          description: "The inactivity time in seconds before the session is reset."
           schema:
             type: string
             default: "5m"
             required: true
         - variable: remember_me_duration
           label: "Remember-Me duration"
-          description: |
-            The period of time before the cookie expires and the session is destroyed when the remember me box is checked, a user
-            selecting this option negates the inactivity timeout. Setting this to -1 disables this feature entirely.
+          description: "The remember me duration"
           schema:
             type: string
             default: "5M"
@@ -295,18 +192,14 @@ questions:
             default: 3
         - variable: find_time
           label: "Find Time"
-          description: |
-            The period of time analyzed for failed attempts. For example if you set max_retries to 3 and find_time to
-            2m this means the user must have 3 failed logins in 2 minutes.
+          description: "The time range during which the user can attempt login before being banned."
           schema:
             type: string
             default: "2m"
             required: true
         - variable: ban_time
           label: "Ban Duration"
-          description: |
-            The period of time the user is banned for after meeting the max_retries and find_time configuration.
-            After this duration the account will be able to login again.
+          description: "The length of time before a banned user can login again"
           schema:
             type: string
             default: "5m"
@@ -314,9 +207,7 @@ questions:
   - variable: authentication_backend
     group: "App Configuration"
     label: "Authentication Backend Provider"
-    description: |
-      Used for verifying user passwords and retrieve information such as email
-      address and groups users belong to.
+    description: "sed for verifying user passwords and retrieve information such as email address and groups users belong to."
     schema:
       additional_attrs: true
       type: dict
@@ -423,14 +314,14 @@ questions:
                       description: "The attribute holding the username of the user"
                       schema:
                         type: string
-                        default: "uid"
+                        default: ""
                         required: true
                     - variable: additional_users_dn
                       label: "Additional Users DN"
                       description: "An additional dn to define the scope to all users."
                       schema:
                         type: string
-                        default: "OU=people"
+                        default: "OU=Users"
                         required: true
                     - variable: users_filter
                       label: "Users Filter"
@@ -458,27 +349,27 @@ questions:
                       description: "The attribute holding the name of the group"
                       schema:
                         type: string
-                        default: "cn"
+                        default: ""
                         required: true
                     - variable: mail_attribute
                       label: "Mail Attribute"
                       description: "The attribute holding the primary mail address of the user"
                       schema:
                         type: string
-                        default: "mail"
+                        default: ""
                         required: true
                     - variable: display_name_attribute
                       label: "Display Name Attribute"
                       description: "he attribute holding the display name of the user. This will be used to greet an authenticated user."
                       schema:
                         type: string
-                        default: "displayName"
+                        default: ""
                     - variable: user
                       label: "Admin User"
                       description: "The username of the admin user used to connect to LDAP."
                       schema:
                         type: string
-                        default: "CN=admin,ou=people,DC=example,DC=com"
+                        default: "CN=Authelia,DC=example,DC=com"
                         required: true
                     - variable: plain_password
                       label: "Password"
@@ -706,13 +597,10 @@ questions:
       attrs:
         - variable: default_policy
           label: "Default Policy"
-          description: |
-            The default policy defines the policy applied if no rules section apply to the information known about the request.
-            It is recommended that this is configured to deny for security reasons. Sites which you do not wish to secure at all
-            with Authelia should not be configured in your reverse proxy to perform authentication with Authelia at all for performance reasons.
+          description: "Default policy can either be 'bypass', 'one_factor', 'two_factor' or 'deny'."
           schema:
             type: string
-            default: "deny"
+            default: "two_factor"
             enum:
               - value: "bypass"
                 description: "bypass"
@@ -766,7 +654,7 @@ questions:
                   attrs:
                     - variable: domain
                       label: "Domains"
-                      description: "Defines which domain or set of domains the rule applies to."
+                      description: "defines which domain or set of domains the rule applies to."
                       schema:
                         type: list
                         default: []
@@ -779,9 +667,7 @@ questions:
                               required: true
                     - variable: policy
                       label: "Policy"
-                      description: |
-                        The specific policy to apply to the selected rule. This is not criteria for a match, this is the
-                        action to take when a match is made.
+                      description: "The policy to apply to resources. It must be either 'bypass', 'one_factor', 'two_factor' or 'deny'."
                       schema:
                         type: string
                         default: "two_factor"
@@ -796,11 +682,7 @@ questions:
                             description: "deny"
                     - variable: subject
                       label: "Subject"
-                      description: |
-                        This criteria matches identifying characteristics about the subject. Currently this is either
-                        user or groups the user belongs to. This allows you to effectively control exactly what each user is
-                        authorized to access or to specifically require two-factor authentication to specific users. Subjects
-                        are prefixed with either user: or group: to identify which part of the identity to check.
+                      description: "defines the subject to apply authorizations to. This parameter is optional and matching any user if not provided"
                       schema:
                         type: list
                         default: []
@@ -860,6 +742,7 @@ questions:
                               default: 9091
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}
@@ -882,7 +765,6 @@ questions:
 # Include{ingressDefault}
 # Include{ingressTLS}
 # Include{ingressTraefik}
-# Include{ingressAdvanced}
 # Include{ingressList}
 # Include{securityContextRoot}
               - variable: runAsUser
@@ -1009,9 +891,7 @@ questions:
                                         description: "two_factor"
                                 - variable: consent_mode
                                   label: "Consent Mode"
-                                  description: |
-                                    Configures the consent mode. This can be set to auto (default), explicit (consent required every time) or
-                                    implicit (automatically assumes consent for every authorization, never asking the user if they wish to give consent.)
+                                  description: "Configures the consent mode. This can be set to auto (default), explicit (consent required every time) or implicit (automatically assumes consent for every authorization, never asking the user if they wish to give consent.)"
                                   schema:
                                     type: string
                                     default: "auto"

charts/enterprise/authelia/templates/_configmap.tpl

@@ -32,55 +32,41 @@ enabled: true
 data:
   configuration.yaml: |
     ---
-    theme: {{ .Values.theme | default "light" }}
+    theme: {{ default "light" .Values.theme }}
     default_redirection_url: {{ default (printf "https://www.%s" .Values.domain) .Values.default_redirection_url }}
     ntp:
-      address:  {{ .Values.ntp.address | default "time.cloudflare.com:123" }}
-      version: {{ .Values.ntp.version | default 4 }}
-      max_desync: {{ .Values.ntp.max_desync | default "3s" }}
-      disable_startup_check: {{ .Values.ntp.disable_startup_check | default false }}
-      disable_failure: {{ .Values.ntp.disable_failure |  default true }}
+      address:  {{ default "time.cloudflare.com:123" .Values.ntp.address }}
+      version: {{ default 4 .Values.ntp.version }}
+      max_desync: {{ default "3s" .Values.ntp.max_desync }}
+      disable_startup_check: {{ default false .Values.ntp.disable_startup_check }}
+      disable_failure: {{ default true .Values.ntp.disable_failure }}
     server:
       host: 0.0.0.0
-      port: {{ .Values.server.port | default 9091 }}
-      {{- if ne "" (.Values.server.path | default "") }}
+      port: {{ default 9091 .Values.server.port }}
+      {{- if not (eq "" (default "" .Values.server.path)) }}
       path: {{ .Values.server.path }}
       {{- end }}
       buffers:
-        write: {{ .Values.server.write_buffer_size | default 4096 }}
-        read: {{ .Values.server.read_buffer_size | default 4096 }}
-      enable_pprof: {{ .Values.server.enable_pprof | default false }}
-      enable_expvars: {{ .Values.server.enable_expvars | default false }}
+        write: {{ default 4096 .Values.server.write_buffer_size }}
+        read: {{ default 4096 .Values.server.read_buffer_size }}
+      enable_pprof: {{ default false .Values.server.enable_pprof }}
+      enable_expvars: {{ default false .Values.server.enable_expvars }}
     log:
-      level: {{ .Values.log.level | default "info" }}
-      format: {{ .Values.log.format | default "text" }}
-      {{- if ne "" (.Values.log.file_path | default "") }}
+      level: {{ default "info" .Values.log.level }}
+      format: {{ default "text" .Values.log.format }}
+      {{- if not (eq "" (default "" .Values.log.file_path)) }}
       file_path: {{ .Values.log.file_path }}
       keep_stdout: true
       {{- end }}
     totp:
-      issuer: {{ .Values.totp.issuer | default .Values.domain }}
-      period: {{ .Values.totp.period | default 30 }}
-      skew: {{ .Values.totp.skew | default 1 }}
-    {{- if .Values.password_policy.enabled }}
-    password_policy:
-      standard:
-        enabled: {{ .Values.password_policy.standard.enabled | default false }}
-        min_length: {{ .Values.password_policy.standard.min_length | default 8 }}
-        max_length: {{ .Values.password_policy.standard.max_length | default 0 }}
-        require_uppercase: {{ .Values.password_policy.standard.require_uppercase | default false }}
-        require_lowercase: {{ .Values.password_policy.standard.require_lowercase | default false }}
-        require_number: {{ .Values.password_policy.standard.require_number | default false }}
-        require_special: {{ .Values.password_policy.standard.require_special | default false }}
-      zxcvbn:
-        enabled: {{ .Values.password_policy.zxcvbn.enabled | default false }}
-        min_score: {{ .Values.password_policy.zxcvbn.min_score | default 3 }}
-    {{- end -}}
+      issuer: {{ default .Values.domain .Values.totp.issuer }}
+      period: {{ default 30 .Values.totp.period }}
+      skew: {{ default 1 .Values.totp.skew }}
     {{- if .Values.duo_api.enabled }}
     duo_api:
       hostname: {{ .Values.duo_api.hostname }}
       integration_key: {{ .Values.duo_api.integration_key }}
-    {{- end -}}
+    {{- end }}
     {{- with $auth := .Values.authentication_backend }}
     authentication_backend:
       password_reset:
@@ -88,121 +74,95 @@ data:
     {{- if $auth.file.enabled }}
       file:
         path: {{ $auth.file.path }}
-        password:
-          {{- $p := $auth.file.password -}}
-          {{- if $p.algorithm }}
-          algorithm: {{ $p.algorithm }}
-          {{- end -}}
-          {{- if $p.iterations }}
-          iterations: {{ $p.iterations }}
-          {{- end -}}
-          {{- if $p.key_length }}
-          key_length: {{ $p.key_length }}
-          {{- end -}}
-          {{- if $p.salt_length }}
-          salt_length: {{ $p.salt_length }}
-          {{- end -}}
-          {{- if $p.memory }}
-          memory: {{ $p.memory }}
-          {{- end -}}
-          {{- if $p.parallelism }}
-          parallelism: {{ $p.parallelism }}
-          {{- end -}}
-    {{- end -}}
+        password: {{ toYaml $auth.file.password | nindent 10 }}
+    {{- end }}
     {{- if $auth.ldap.enabled }}
       ldap:
-        implementation: {{ $auth.ldap.implementation | default "custom" }}
+        implementation: {{ default "custom" $auth.ldap.implementation }}
         url: {{ $auth.ldap.url }}
-        timeout: {{ $auth.ldap.timeout | default "5s" }}
+        timeout: {{ default "5s" $auth.ldap.timeout }}
         start_tls: {{ $auth.ldap.start_tls }}
         tls:
           {{- if hasKey $auth.ldap.tls "server_name" }}
-          server_name: {{ $auth.ldap.tls.server_name | default $auth.ldap.host }}
+          server_name: {{ default $auth.ldap.host $auth.ldap.tls.server_name }}
           {{- end }}
-          minimum_version: {{ $auth.ldap.tls.minimum_version | default "TLS1.2" }}
-          skip_verify: {{ $auth.ldap.tls.skip_verify | default false }}
+          minimum_version: {{ default "TLS1.2" $auth.ldap.tls.minimum_version }}
+          skip_verify: {{ default false $auth.ldap.tls.skip_verify }}
     {{- if $auth.ldap.base_dn }}
         base_dn: {{ $auth.ldap.base_dn }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.username_attribute }}
         username_attribute: {{ $auth.ldap.username_attribute }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.additional_users_dn }}
         additional_users_dn: {{ $auth.ldap.additional_users_dn }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.users_filter }}
         users_filter: {{ $auth.ldap.users_filter }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.additional_groups_dn }}
         additional_groups_dn: {{ $auth.ldap.additional_groups_dn }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.groups_filter }}
         groups_filter: {{ $auth.ldap.groups_filter }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.group_name_attribute }}
         group_name_attribute: {{ $auth.ldap.group_name_attribute }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.mail_attribute }}
         mail_attribute: {{ $auth.ldap.mail_attribute }}
-    {{- end -}}
+    {{- end }}
     {{- if $auth.ldap.display_name_attribute }}
         display_name_attribute: {{ $auth.ldap.display_name_attribute }}
     {{- end }}
         user: {{ $auth.ldap.user }}
-    {{- end -}}
-    {{- end -}}
+    {{- end }}
+    {{- end }}
     {{- with $session := .Values.session }}
     session:
-      name: {{ $session.name | default "authelia_session" }}
+      name: {{ default "authelia_session" $session.name }}
       domain: {{ required "A valid .Values.domain entry required!" $.Values.domain }}
-      same_site: {{ $session.same_site | default "lax" }}
-      expiration: {{ $session.expiration | default "1M" }}
-      inactivity: {{ $session.inactivity | default "5m" }}
-      remember_me_duration: {{ $session.remember_me_duration | default "1M" }}
+      same_site: {{ default "lax" $session.same_site }}
+      expiration: {{ default "1M" $session.expiration }}
+      inactivity: {{ default "5m" $session.inactivity }}
+      remember_me_duration: {{ default "1M" $session.remember_me_duration }}
     {{- end }}
       redis:
         host: {{ .Values.redis.creds.plain }}
       {{- with $redis := .Values.redisProvider }}
-        port: {{ $redis.port | default 6379 }}
+        port: {{ default 6379 $redis.port }}
         {{- if not (eq $redis.username "") }}
         username: {{ $redis.username }}
         {{- end }}
-        maximum_active_connections: {{ $redis.maximum_active_connections | default 8 }}
-        minimum_idle_connections: {{ $redis.minimum_idle_connections | default 0 }}
+        maximum_active_connections: {{ default 8 $redis.maximum_active_connections }}
+        minimum_idle_connections: {{ default 0 $redis.minimum_idle_connections }}
     {{- if $redis.tls.enabled }}
         tls:
           server_name: {{ $redis.tls.server_name }}
-          minimum_version: {{ $redis.tls.minimum_version | default "TLS1.2" }}
+          minimum_version: {{ default "TLS1.2" $redis.tls.minimum_version }}
           skip_verify: {{ $redis.tls.skip_verify }}
     {{- end }}
     {{- if $redis.high_availability.enabled }}
         high_availability:
           sentinel_name: {{ $redis.high_availability.sentinel_name }}
     {{- if $redis.high_availability.nodes }}
-          nodes:
-          {{- range $node := $redis.high_availability.nodes }}
-          - host: {{ $node.host }}
-            port: {{ $node.port | default 26379 }}
-          {{- end -}}
+          nodes: {{ toYaml $redis.high_availability.nodes | nindent 10 }}
     {{- end }}
           route_by_latency: {{ $redis.high_availability.route_by_latency }}
           route_randomly: {{ $redis.high_availability.route_randomly }}
       {{- end }}
     {{- end }}
-    regulation:
-      max_retries: {{ .Values.regulation.max_retries | default 3 }}
-      find_time: {{ .Values.regulation.find_time | default "1m" }}
-      ban_time: {{ .Values.regulation.ban_time | default "5m" }}
+    regulation: {{ toYaml .Values.regulation | nindent 6 }}
     storage:
       postgres:
         host: {{ $.Values.cnpg.main.creds.host }}
     {{- with $storage := .Values.storage }}
-        port: {{ $storage.postgres.port | default 5432 }}
-        database: {{ $storage.postgres.database | default "authelia" }}
-        username: {{ $storage.postgres.username | default "authelia" }}
-        timeout: {{ $storage.postgres.timeout | default "5s" }}
+        port: {{ default 5432 $storage.postgres.port }}
+        database: {{ default "authelia" $storage.postgres.database }}
+        username: {{ default "authelia" $storage.postgres.username }}
+        timeout: {{ default "5s" $storage.postgres.timeout }}
         ssl:
-          mode: {{ $storage.postgres.sslmode | default "disable" }}
+          mode: {{ default "disable" $storage.postgres.sslmode }}
     {{- end }}
     {{- with $notifier := .Values.notifier }}
     notifier:
@@ -214,77 +174,62 @@ data:
     {{- if $notifier.smtp.enabled }}
       smtp:
         host: {{ $notifier.smtp.host }}
-        port: {{ $notifier.smtp.port | default 25 }}
-        timeout: {{ $notifier.smtp.timeout | default "5s" }}
+        port: {{ default 25 $notifier.smtp.port }}
+        timeout: {{ default "5s" $notifier.smtp.timeout }}
         {{- with $notifier.smtp.username }}
         username: {{ . }}
         {{- end }}
-        sender: {{ $notifier.smtp.sender | quote }}
-        identifier: {{ $notifier.smtp.identifier | quote }}
+        sender: {{ $notifier.smtp.sender }}
+        identifier: {{ $notifier.smtp.identifier }}
         subject: {{ $notifier.smtp.subject | quote }}
-        startup_check_address: {{ $notifier.smtp.startup_check_address | quote }}
+        startup_check_address: {{ $notifier.smtp.startup_check_address }}
         disable_require_tls: {{ $notifier.smtp.disable_require_tls }}
         disable_html_emails: {{ $notifier.smtp.disable_html_emails }}
         tls:
-          server_name: {{ $notifier.smtp.tls.server_name | default $notifier.smtp.host }}
-          minimum_version: {{ $notifier.smtp.tls.minimum_version | default "TLS1.2" }}
-          skip_verify: {{ $notifier.smtp.tls.skip_verify | default false }}
+          server_name: {{ default $notifier.smtp.host $notifier.smtp.tls.server_name }}
+          minimum_version: {{ default "TLS1.2" $notifier.smtp.tls.minimum_version }}
+          skip_verify: {{ default false $notifier.smtp.tls.skip_verify }}
     {{- end }}
     {{- end }}
     {{- if .Values.identity_providers.oidc.enabled }}
     identity_providers:
       oidc:
-        access_token_lifespan: {{ .Values.identity_providers.oidc.access_token_lifespan | default "1h" }}
-        authorize_code_lifespan: {{ .Values.identity_providers.oidc.authorize_code_lifespan | default "1m" }}
-        id_token_lifespan: {{ .Values.identity_providers.oidc.id_token_lifespan | default "1h" }}
-        refresh_token_lifespan: {{ .Values.identity_providers.oidc.refresh_token_lifespan | default "90m" }}
-        enable_client_debug_messages: {{ .Values.identity_providers.oidc.enable_client_debug_messages | default false }}
-        minimum_parameter_entropy: {{ .Values.identity_providers.oidc.minimum_parameter_entropy | default 8 }}
-        {{- if .Values.identity_providers.oidc.clients  }}
+        access_token_lifespan: {{ default "1h" .Values.identity_providers.oidc.access_token_lifespan }}
+        authorize_code_lifespan: {{ default "1m" .Values.identity_providers.oidc.authorize_code_lifespan }}
+        id_token_lifespan: {{ default "1h" .Values.identity_providers.oidc.id_token_lifespan }}
+        refresh_token_lifespan: {{ default "90m" .Values.identity_providers.oidc.refresh_token_lifespan }}
+        enable_client_debug_messages: {{ default false .Values.identity_providers.oidc.enable_client_debug_messages }}
+        minimum_parameter_entropy: {{ default 8 .Values.identity_providers.oidc.minimum_parameter_entropy }}
+        {{- if gt (len .Values.identity_providers.oidc.clients) 0 }}
         clients:
     {{- range $client := .Values.identity_providers.oidc.clients }}
         - id: {{ $client.id }}
-          description: {{ $client.description | default $client.id }}
-          secret: {{ $client.secret | default (randAlphaNum 128) }}
+          description: {{ default $client.id $client.description }}
+          secret: {{ default (randAlphaNum 128) $client.secret }}
           {{- if $client.public }}
           public: {{ $client.public }}
           {{- end }}
-          authorization_policy: {{ $client.authorization_policy | default "two_factor" }}
-          consent_mode: {{ $client.consent_mode | default "auto" }}
+          authorization_policy: {{ default "two_factor" $client.authorization_policy }}
+          consent_mode: {{ default "auto" $client.consent_mode}}
           redirect_uris:
           {{- range $client.redirect_uris }}
           - {{ . }}
           {{- end }}
           {{- if $client.audience }}
-          audience:
-            {{- range $client.audience }}
-            - {{ . }}
-            {{- end }}
-          {{- end }}
-          scopes:
-          {{- range ($client.scopes | default (list "openid" "profile" "email" "groups")) }}
-            - {{ . }}
-          {{- end }}
-          grant_types:
-          {{- range ($client.grant_types | default (list "refresh_token" "authorization_code")) }}
-            - {{ . }}
-          {{- end }}
-          response_types:
-          {{- range ($client.response_types | default (list "code")) }}
-            - {{ . }}
+          audience: {{ toYaml $client.audience | nindent 10 }}
           {{- end }}
+          scopes: {{ toYaml (default (list "openid" "profile" "email" "groups") $client.scopes) | nindent 10 }}
+          grant_types: {{ toYaml (default (list "refresh_token" "authorization_code") $client.grant_types) | nindent 10 }}
+          response_types: {{ toYaml (default (list "code") $client.response_types) | nindent 10 }}
           {{- if $client.response_modes }}
-          response_modes:
-          {{- range $client.response_modes }}
-            - {{ . }}
+          response_modes: {{ toYaml $client.response_modes | nindent 10 }}
           {{- end }}
-          {{- end }}
-          userinfo_signing_algorithm: {{ $client.userinfo_signing_algorithm | default "none" }}
+          userinfo_signing_algorithm: {{ default "none" $client.userinfo_signing_algorithm }}
     {{- end }}
     {{- end }}
     {{- end }}
     access_control:
-    {{- if not .Values.access_control.rules }}
+    {{- if (eq (len .Values.access_control.rules) 0) }}
       {{- if (eq .Values.access_control.default_policy "bypass") }}
       default_policy: one_factor
       {{- else if (eq .Values.access_control.default_policy "deny") }}
@@ -295,69 +240,15 @@ data:
     {{- else }}
       default_policy: {{ .Values.access_control.default_policy }}
     {{- end }}
-
-    {{- if not .Values.access_control.networks }}
+    {{- if (eq (len .Values.access_control.networks) 0) }}
       networks: []
     {{- else }}
-      networks:
-    {{- range $net := .Values.access_control.networks }}
-      - name: {{ $net.name }}
-        networks:
-          {{- range $net.networks }}
-          - {{ . | squote }}
-          {{- end }}
+      networks: {{ toYaml .Values.access_control.networks | nindent 6 }}
     {{- end }}
-    {{- end }}
-
-    {{- if not .Values.access_control.rules }}
+    {{- if (eq (len .Values.access_control.rules) 0) }}
       rules: []
     {{- else }}
-      rules:
-    {{- range $rule := .Values.access_control.rules }}
-      {{- if $rule.domain }}
-      - domain:
-        {{- if kindIs "string" $rule.domain }}
-          - {{ $rule.domain | squote }}
-        {{- else -}}
-          {{- range $rule.domain }}
-          - {{ . | squote }}
-          {{- end }}
-        {{- end }}
-      {{- end -}}
-      {{- with $rule.policy }}
-        policy: {{ . }}
-      {{- end -}}
-      {{- if $rule.networks }}
-        networks:
-        {{- if kindIs "string" $rule.networks }}
-          - {{ $rule.networks | squote }}
-        {{- else -}}
-          {{- range $rule.networks }}
-            - {{ . | squote }}
-          {{- end }}
-        {{- end }}
-      {{- end }}
-      {{- if $rule.subject }}
-        subject:
-        {{- if kindIs "string" $rule.subject }}
-          - {{ $rule.subject | squote }}
-        {{- else -}}
-          {{- range $rule.subject }}
-            - {{ . | squote }}
-          {{- end }}
-        {{- end }}
-      {{- end }}
-      {{- if $rule.resources }}
-        resources:
-        {{- if kindIs "string" $rule.resources }}
-          - {{ $rule.resources | squote }}
-        {{- else -}}
-          {{- range $rule.resources }}
-            - {{ . | squote }}
-          {{- end }}
-        {{- end }}
-      {{- end }}
-    {{- end }}
+      rules: {{ toYaml .Values.access_control.rules | nindent 6 }}
     {{- end }}
     ...
 {{- end -}}

charts/enterprise/authelia/values.yaml

@@ -1,9 +1,8 @@
 image:
-  repository: ghcr.io/authelia/authelia
+  repository: tccr.io/truecharts/authelia
   pullPolicy: IfNotPresent
-  tag: 4.37.5@sha256:25fc5423238b6f3a1fc967fda3f6a9212846aeb4a720327ef61c8ccff52dbbe2
-manifestManager:
-  enabled: true
+  tag: 4.37.5@sha256:76a4617539534cec140fd98a12f721b878524f2df3a3653f3df8ff2b7eaab586
+
 workload:
   main:
     replicas: 2
@@ -11,10 +10,8 @@ workload:
     podSpec:
       containers:
         main:
-          command:
-            - authelia
-          args:
-            - --config=/configuration.yaml
+          command: ["authelia"]
+          args: ["--config=/configuration.yaml"]
           envFrom:
             - configMapRef:
                 name: authelia-paths
@@ -22,32 +19,40 @@ workload:
             liveness:
               type: http
               path: "/api/health"
+
             readiness:
               type: http
               path: "/api/health"
+
             startup:
               type: http
               path: "/api/health"
+
 service:
   main:
     ports:
       main:
         port: 9091
         targetPort: 9091
+
 persistence:
   config:
     enabled: true
     mountPath: "/config"
+
 cnpg:
   main:
     enabled: true
     user: authelia
     database: authelia
+
 # Enabled redis
 # ... for more options see https://github.com/tccr.io/truecharts/charts/tree/master/tccr.io/truecharts/redis
 redis:
   enabled: true
+
 domain: example.com
+
 ##
 ## Server Configuration
 ##
@@ -57,6 +62,7 @@ server:
   ## Default is 9091 and should not need to be changed.
   ##
   port: 9091
+
   ## Buffers usually should be configured to be the same value.
   ## Explanation at https://www.authelia.com/docs/configuration/server.html
   ## Read buffer size adjusts the server's max incoming request size in bytes.
@@ -66,14 +72,18 @@ server:
   ## Set the single level path Authelia listens on.
   ## Must be alphanumeric chars and should not contain any slashes.
   path: ""
+
 log:
   ## Level of verbosity for logs: info, debug, trace.
   level: trace
+
   ## Format the logs are written as: json, text.
   format: text
+
   ## TODO: Statefulness check should check if this is set, and the configMap should enable it.
   ## File path where the logs will be written. If not set logs are written to stdout.
   # file_path: /config/authelia.log
+
 ## Default redirection URL
 ##
 ## If user tries to authenticate without any referer, Authelia does not know where to redirect the user to at the end
@@ -86,6 +96,7 @@ default_redirection_url: ""
 # default_redirection_url: https://example.com
 
 theme: light
+
 ##
 ## TOTP Configuration
 ##
@@ -102,24 +113,7 @@ totp:
   ## Warning: before changing skew read the docs link below.
   ## See: https://www.authelia.com/docs/configuration/one-time-password.html#period-and-skew to read the documentation.
   skew: 1
-##
-## Password Policy Config
-##
-## Parameters used for Password Policies
-password_policy:
-  ## See: https://www.authelia.com/configuration/security/password-policy/
-  standard:
-    enabled: false
-    min_length: 8
-    max_length: 0
-    require_uppercase: false
-    require_lowercase: false
-    require_number: false
-    require_special: false
-  zxcvbn:
-    ## See https://www.authelia.com/configuration/security/password-policy/#zxcvbn for more info
-    enabled: false
-    min_score: 3
+
 ##
 ## Duo Push API Configuration
 ##
@@ -130,13 +124,16 @@ duo_api:
   hostname: api-123456789.example.com
   integration_key: ABCDEF
   plain_api_key: ""
+
 ## NTP settings
+
 ntp:
   address: "time.cloudflare.com:123"
   version: 4
   max_desync: 3s
   disable_startup_check: false
   disable_failure: true
+
 ##
 ## Authentication Backend Provider Configuration
 ##
@@ -146,6 +143,7 @@ ntp:
 authentication_backend:
   ## Disable both the HTML element and the API for reset password functionality
   disable_reset_password: false
+
   ## The amount of time to wait before we refresh data from the authentication backend. Uses duration notation.
   ## To disable this feature set it to 'disable', this will slightly reduce security because for Authelia, users will
   ## always belong to groups they belonged to at the time of login even if they have been removed from them in LDAP.
@@ -154,6 +152,7 @@ authentication_backend:
   ## Duration Notation docs:  https://www.authelia.com/docs/configuration/index.html#duration-notation-format
   ## Refresh Interval docs: https://www.authelia.com/docs/configuration/authentication/ldap.html#refresh-interval
   refresh_interval: 5m
+
   ## LDAP backend configuration.
   ##
   ## This backend allows Authelia to be scaled to more
@@ -162,6 +161,7 @@ authentication_backend:
   ldap:
     ## Enable LDAP Backend.
     enabled: false
+
     ## The LDAP implementation, this affects elements like the attribute utilised for resetting a password.
     ## Acceptable options are as follows:
     ## - 'activedirectory' - For Microsoft Active Directory.
@@ -172,24 +172,32 @@ authentication_backend:
     ## attribute mappings have a default value that this config overrides, you can read more about these default values
     ## at https://www.authelia.com/docs/configuration/authentication/ldap.html#defaults
     implementation: activedirectory
+
     ## The url to the ldap server. Format: <scheme>://<address>[:<port>].
     ## Scheme can be ldap or ldaps in the format (port optional).
     url: ldap://openldap.default.svc.cluster.local
+
     ## Connection Timeout.
     timeout: 5s
+
     ## Use StartTLS with the LDAP connection.
     start_tls: false
+
     tls:
       ## Server Name for certificate validation (in case it's not set correctly in the URL).
       server_name: ""
+
       ## Skip verifying the server certificate (to allow a self-signed certificate).
       ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
       ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
       skip_verify: false
+
       ## Minimum TLS version for either Secure LDAP or LDAP StartTLS.
       minimum_version: TLS1.2
+
     ## The base dn for every LDAP query.
     base_dn: DC=example,DC=com
+
     ## The attribute holding the username of the user. This attribute is used to populate the username in the session
     ## information. It was introduced due to #561 to handle case insensitive search queries. For you information,
     ## Microsoft Active Directory usually uses 'sAMAccountName' and OpenLDAP usually uses 'uid'. Beware that this
@@ -198,9 +206,11 @@ authentication_backend:
     ## otherwise it would break the configuration for that user. Technically, non-unique attributes like 'mail' can also
     ## be used but we don't recommend using them, we instead advise to use the attributes mentioned above
     ## (sAMAccountName and uid) to follow https://www.ietf.org/rfc/rfc2307.txt.
-    username_attribute: "uid"
+    username_attribute: ""
+
     ## An additional dn to define the scope to all users.
     additional_users_dn: OU=Users
+
     ## The users filter used in search queries to find the user profile based on input filled in login form.
     ## Various placeholders are available in the user filter:
     ## - {input} is a placeholder replaced by what the user inputs in the login form.
@@ -218,8 +228,10 @@ authentication_backend:
     ## To allow sign in both with username and email, one can use a filter like
     ## (&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))
     users_filter: ""
+
     ## An additional dn to define the scope of groups.
     additional_groups_dn: OU=Groups
+
     ## The groups filter used in search queries to find the groups of the user.
     ## - {input} is a placeholder replaced by what the user inputs in the login form.
     ## - {username} is a placeholder replace by the username stored in LDAP (based on `username_attribute`).
@@ -234,16 +246,21 @@ authentication_backend:
     ## If your groups use the `groupOfUniqueNames` structure use this instead:
     ##    (&(uniquemember={dn})(objectclass=groupOfUniqueNames))
     groups_filter: ""
+
     ## The attribute holding the name of the group
-    group_name_attribute: "cn"
+    group_name_attribute: ""
+
     ## The attribute holding the mail address of the user. If multiple email addresses are defined for a user, only the
     ## first one returned by the LDAP server is used.
-    mail_attribute: "mail"
+    mail_attribute: ""
+
     ## The attribute holding the display name of the user. This will be used to greet an authenticated user.
-    display_name_attribute: "displayname"
+    display_name_attribute: ""
+
     ## The username of the admin user.
-    user: CN=admin,DC=example,DC=com
+    user: CN=Authelia,DC=example,DC=com
     plain_password: ""
+
   ##
   ## File (Authentication Provider)
   ##
@@ -266,6 +283,7 @@ authentication_backend:
       salt_length: 16
       memory: 1024
       parallelism: 8
+
 ##
 ## Access Control Configuration
 ##
@@ -297,6 +315,7 @@ access_control:
   ## Default policy can either be 'bypass', 'one_factor', 'two_factor' or 'deny'. It is the policy applied to any
   ## resource if there is no policy to be applied to the user.
   default_policy: deny
+
   networks: []
   # networks:
   # - name: private
@@ -351,6 +370,7 @@ access_control:
   #   policy: two_factor
   # - domain: "{user}.example.com"
   #   policy: bypass
+
 ##
 ## Session Provider Configuration
 ##
@@ -359,19 +379,24 @@ access_control:
 session:
   ## The name of the session cookie. (default: authelia_session).
   name: authelia_session
+
   ## Sets the Cookie SameSite value. Possible options are none, lax, or strict.
   ## Please read https://www.authelia.com/docs/configuration/session.html#same_site
   same_site: lax
+
   ## The time in seconds before the cookie expires and session is reset.
   expiration: 1h
+
   ## The inactivity time in seconds before the session is reset.
   inactivity: 5m
+
   ## The remember me duration.
   ## Value is in seconds, or duration notation. Value of 0 disables remember me.
   ## See: https://www.authelia.com/docs/configuration/index.html#duration-notation-format
   ## Longer periods are considered less secure because a stolen cookie will last longer giving attackers more time to
   ## spy or attack. Currently the default is 1M or 1 month.
   remember_me_duration: 1M
+
 ##
 ## Redis Provider
 ##
@@ -380,26 +405,35 @@ session:
 ## The redis connection details
 redisProvider:
   port: 6379
+
   ## Optional username to be used with authentication.
   # username: authelia
   username: ""
+
   ## This is the Redis DB Index https://redis.io/commands/select (sometimes referred to as database number, DB, etc).
   database_index: 0
+
   ## The maximum number of concurrent active connections to Redis.
   maximum_active_connections: 8
+
   ## The target number of idle connections to have open ready for work. Useful when opening connections is slow.
   minimum_idle_connections: 0
+
   ## The Redis TLS configuration. If defined will require a TLS connection to the Redis instance(s).
   tls:
     enabled: false
+
     ## Server Name for certificate validation (in case you are using the IP or non-FQDN in the host option).
     server_name: ""
+
     ## Skip verifying the server certificate (to allow a self-signed certificate).
     ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
     ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
     skip_verify: false
+
     ## Minimum TLS version for the connection.
     minimum_version: TLS1.2
+
   ## The Redis HA configuration options.
   ## This provides specific options to Redis Sentinel, sentinel_name must be defined (Master Name).
   high_availability:
@@ -407,6 +441,7 @@ redisProvider:
     enabledSecret: false
     ## Sentinel Name / Master Name
     sentinel_name: mysentinel
+
     ## The additional nodes to pre-seed the redis provider with (for sentinel).
     ## If the host in the above section is defined, it will be combined with this list to connect to sentinel.
     ## For high availability to be used you must have either defined; the host above or at least one node below.
@@ -419,8 +454,10 @@ redisProvider:
 
     ## Choose the host with the lowest latency.
     route_by_latency: false
+
     ## Choose the host randomly.
     route_randomly: false
+
 ##
 ## Regulation Configuration
 ##
@@ -429,13 +466,16 @@ redisProvider:
 regulation:
   ## The number of failed login attempts before user is banned. Set it to 0 to disable regulation.
   max_retries: 3
+
   ## The time range during which the user can attempt login before being banned. The user is banned if the
   ## authentication failed 'max_retries' times in a 'find_time' seconds window. Find Time accepts duration notation.
   ## See: https://www.authelia.com/docs/configuration/index.html#duration-notation-format
   find_time: 2m
+
   ## The length of time before a banned user can login again. Ban Time accepts duration notation.
   ## See: https://www.authelia.com/docs/configuration/index.html#duration-notation-format
   ban_time: 5m
+
 ##
 ## Storage Provider Configuration
 ##
@@ -450,6 +490,7 @@ storage:
     username: authelia
     sslmode: disable
     timeout: 5s
+
 ##
 ## Notification Provider
 ##
@@ -459,6 +500,7 @@ storage:
 notifier:
   ## You can disable the notifier startup check by setting this to true.
   disable_startup_check: false
+
   ##
   ## File System (Notification Provider)
   ##
@@ -467,6 +509,7 @@ notifier:
   filesystem:
     enabled: true
     filename: /config/notification.txt
+
   ##
   ## SMTP (Notification Provider)
   ##
@@ -496,82 +539,91 @@ notifier:
     startup_check_address: test@authelia.com
     disable_require_tls: false
     disable_html_emails: false
+
     tls:
       ## Server Name for certificate validation (in case you are using the IP or non-FQDN in the host option).
       server_name: ""
+
       ## Skip verifying the server certificate (to allow a self-signed certificate).
       ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
       ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
       skip_verify: false
+
       ## Minimum TLS version for either StartTLS or SMTPS.
       minimum_version: TLS1.2
+
 identity_providers:
   oidc:
     ## Enables this in the config map. Currently in beta stage.
     ## See https://www.authelia.com/docs/configuration/identity-providers/oidc.html#roadmap
     enabled: false
+
     access_token_lifespan: 1h
     authorize_code_lifespan: 1m
     id_token_lifespan: 1h
     refresh_token_lifespan: 90m
+
     enable_client_debug_messages: false
+
     ## SECURITY NOTICE: It's not recommended changing this option, and highly discouraged to have it below 8 for
     ## security reasons.
     minimum_parameter_entropy: 8
+
     clients: []
     # clients:
     # -
     ## The ID is the OpenID Connect ClientID which is used to link an application to a configuration.
     # id: myapp
-## The description to show to users when they end up on the consent screen. Defaults to the ID above.
-# description: My Application
 
-## The client secret is a shared secret between Authelia and the consumer of this client.
-# secret: apple123
+    ## The description to show to users when they end up on the consent screen. Defaults to the ID above.
+    # description: My Application
 
-## Sets the client to public. This should typically not be set, please see the documentation for usage.
-# public: false
+    ## The client secret is a shared secret between Authelia and the consumer of this client.
+    # secret: apple123
 
-## The policy to require for this client; one_factor or two_factor.
-# authorization_policy: two_factor
+    ## Sets the client to public. This should typically not be set, please see the documentation for usage.
+    # public: false
 
-## Configures the consent mode; auto, explicit or implicit
-# consent_mode: auto
+    ## The policy to require for this client; one_factor or two_factor.
+    # authorization_policy: two_factor
 
-## Audience this client is allowed to request.
-# audience: []
+    ## Configures the consent mode; auto, explicit or implicit
+    # consent_mode: auto
 
-## Scopes this client is allowed to request.
-# scopes:
-#   - openid
-#   - profile
-#   - email
-#   - groups
+    ## Audience this client is allowed to request.
+    # audience: []
 
-## Redirect URI's specifies a list of valid case-sensitive callbacks for this client.
-# redirect_uris:
-#   - https://oidc.example.com/oauth2/callback
+    ## Scopes this client is allowed to request.
+    # scopes:
+    #   - openid
+    #   - profile
+    #   - email
+    #   - groups
 
-## Grant Types configures which grants this client can obtain.
-## It's not recommended to configure this unless you know what you're doing.
-# grant_types:
-#   - refresh_token
-#   - authorization_code
+    ## Redirect URI's specifies a list of valid case-sensitive callbacks for this client.
+    # redirect_uris:
+    #   - https://oidc.example.com/oauth2/callback
 
-## Response Types configures which responses this client can be sent.
-## It's not recommended to configure this unless you know what you're doing.
-# response_types:
-#   - code
+    ## Grant Types configures which grants this client can obtain.
+    ## It's not recommended to configure this unless you know what you're doing.
+    # grant_types:
+    #   - refresh_token
+    #   - authorization_code
 
-## Response Modes configures which response modes this client supports.
-## It's not recommended to configure this unless you know what you're doing.
-# response_modes:
-#   - form_post
-#   - query
-#   - fragment
+    ## Response Types configures which responses this client can be sent.
+    ## It's not recommended to configure this unless you know what you're doing.
+    # response_types:
+    #   - code
 
-## The algorithm used to sign userinfo endpoint responses for this client, either none or RS256.
-# userinfo_signing_algorithm: none
+    ## Response Modes configures which response modes this client supports.
+    ## It's not recommended to configure this unless you know what you're doing.
+    # response_modes:
+    #   - form_post
+    #   - query
+    #   - fragment
+
+    ## The algorithm used to sign userinfo endpoint responses for this client, either none or RS256.
+    # userinfo_signing_algorithm: none
 
 portal:
   open:

charts/enterprise/blocky/Chart.yaml

@@ -1,41 +1,33 @@
-kubeVersion: ">=1.24.0"
 apiVersion: v2
-name: blocky
-version: 9.0.11
-appVersion: "0.22"
-description:
-  Blocky is a DNS proxy, DNS enhancer and ad-blocker for the local network
-  written in Go
+appVersion: "0.21.0"
+dependencies:
+  - name: common
+    repository: https://library-charts.truecharts.org
+    version: 12.4.21
+  - condition: redis.enabled
+    name: redis
+    repository: https://deps.truecharts.org
+    version: 6.0.29
+description: Blocky is a DNS proxy, DNS enhancer and ad-blocker for the local network written in Go
 home: https://truecharts.org/charts/enterprise/blocky
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/blocky.png
-deprecated: false
-sources:
-  - https://github.com/0xERR0R/blocky
-  - https://github.com/Mozart409/blocky-frontend
-  - https://github.com/truecharts/charts/tree/master/charts/enterprise/blocky
-  - https://hub.docker.com/r/spx01/blocky
-  - https://0xerr0r.github.io/blocky/
-maintainers:
-  - name: TrueCharts
-    email: info@truecharts.org
-    url: https://truecharts.org
 keywords:
   - dns
   - blocky
-dependencies:
-  - name: common
-    version: 14.3.5
-    repository: https://library-charts.truecharts.org
-    condition: ""
-    alias: ""
-    tags: []
-    import-values: []
-  - name: redis
-    version: 8.0.44
-    repository: https://deps.truecharts.org
-    condition: redis.enabled
-    alias: ""
-    tags: []
-    import-values: []
+kubeVersion: ">=1.16.0-0"
+maintainers:
+  - email: info@truecharts.org
+    name: TrueCharts
+    url: https://truecharts.org
+name: blocky
+sources:
+  - https://github.com/truecharts/charts/tree/master/charts/enterprise/blocky
+  - https://0xerr0r.github.io/blocky/
+  - https://github.com/0xERR0R/blocky
+  - https://github.com/Mozart409/blocky-frontend
+version: 5.0.22
 annotations:
-  truecharts.org/category: network
+  truecharts.org/catagories: |
+    - network
+  truecharts.org/SCALE-support: "true"
+  truecharts.org/grade: U

charts/enterprise/blocky/README.md

@@ -12,7 +12,7 @@ For more information about this App, please check the docs on the TrueCharts [we
 
 ## Support
 
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE/guides/scale-intro).
+- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
 - See the [Website](https://truecharts.org)
 - Check our [Discord](https://discord.gg/tVsPTHWTtr)
 - Open a [issue](https://github.com/truecharts/charts/issues/new/choose)