feat: add pod options GUI items for TrueNAS SCALE

.all-contributorsrc

@@ -504,8 +504,7 @@
       "avatar_url": "https://avatars.githubusercontent.com/u/18377483?v=4",
       "profile": "https://github.com/j0hnby",
       "contributions": [
-        "bug",
-        "doc"
+        "bug"
       ]
     },
     {
@@ -1061,8 +1060,7 @@
       "profile": "https://github.com/ZasX",
       "contributions": [
         "doc",
-        "mentoring",
-        "code"
+        "mentoring"
       ]
     },
     {
@@ -1689,8 +1687,7 @@
       "avatar_url": "https://avatars.githubusercontent.com/u/1540233?v=4",
       "profile": "https://github.com/nautilus7",
       "contributions": [
-        "bug",
-        "code"
+        "bug"
       ]
     },
     {
@@ -1783,64 +1780,9 @@
         "code",
         "bug"
       ]
-    },
-    {
-      "login": "marcofaggian",
-      "name": "Marco Faggian",
-      "avatar_url": "https://avatars.githubusercontent.com/u/19221001?v=4",
-      "profile": "https://marcofaggian.com",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "Emalton",
-      "name": "John P",
-      "avatar_url": "https://avatars.githubusercontent.com/u/9328458?v=4",
-      "profile": "https://github.com/Emalton",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "kryojenik",
-      "name": "kryojenik",
-      "avatar_url": "https://avatars.githubusercontent.com/u/845427?v=4",
-      "profile": "https://github.com/kryojenik",
-      "contributions": [
-        "code"
-      ]
-    },
-    {
-      "login": "malcolmcdixon",
-      "name": "Malcolm",
-      "avatar_url": "https://avatars.githubusercontent.com/u/56974882?v=4",
-      "profile": "https://github.com/malcolmcdixon",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "depasseg",
-      "name": "depasseg",
-      "avatar_url": "https://avatars.githubusercontent.com/u/3201827?v=4",
-      "profile": "https://github.com/depasseg",
-      "contributions": [
-        "doc"
-      ]
-    },
-    {
-      "login": "j1mbl3s",
-      "name": "j1mbl3s",
-      "avatar_url": "https://avatars.githubusercontent.com/u/44634577?v=4",
-      "profile": "https://github.com/j1mbl3s",
-      "contributions": [
-        "doc"
-      ]
     }
   ],
   "contributorsPerLine": 7,
   "skipCi": true,
-  "commitConvention": "angular",
-  "commitType": "docs"
+  "commitConvention": "angular"
 }

.github/CODEOWNERS

@@ -5,5 +5,5 @@
 /charts/dependency/     @truecharts/enterprise-maintainers @ornias1993
 /charts/enterprise/     @truecharts/enterprise-maintainers @ornias1993
 /charts/dev/            @ornias1993
-/.github/               @truecharts/ci-maintainers @ornias1993
+/.github/               @truecharts/ci-maintainers @ornias1993 
 docs/                   @truecharts/docs-maintainers @ornias1993

.github/README.md

@@ -124,7 +124,7 @@ A lot of our work is based on the great effort of others. We would love to exten
 ## Contributors ✨
 
 <!-- ALL-CONTRIBUTORS-BADGE:START - Do not remove or modify this section -->
-[![All Contributors](https://img.shields.io/badge/all_contributors-196-orange.svg?style=for-the-badge)](#contributors)
+[![All Contributors](https://img.shields.io/badge/all_contributors-191-orange.svg?style=for-the-badge)](#contributors)
 <!-- ALL-CONTRIBUTORS-BADGE:END -->
 
 Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/docs/en/emoji-key)):
@@ -201,7 +201,7 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
     </tr>
     <tr>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/eingemaischt"><img src="https://avatars.githubusercontent.com/u/151498?v=4?s=100" width="100px;" alt="Philipp"/><br /><sub><b>Philipp</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aeingemaischt" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/j0hnby"><img src="https://avatars.githubusercontent.com/u/18377483?v=4?s=100" width="100px;" alt="John"/><br /><sub><b>John</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aj0hnby" title="Bug reports">🐛</a> <a href="https://github.com/truecharts/charts/commits?author=j0hnby" title="Documentation">📖</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/j0hnby"><img src="https://avatars.githubusercontent.com/u/18377483?v=4?s=100" width="100px;" alt="John"/><br /><sub><b>John</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aj0hnby" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/john-parton"><img src="https://avatars.githubusercontent.com/u/2071543?v=4?s=100" width="100px;" alt="John Parton"/><br /><sub><b>John Parton</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Ajohn-parton" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/Amasis"><img src="https://avatars.githubusercontent.com/u/7325217?v=4?s=100" width="100px;" alt="Marc"/><br /><sub><b>Marc</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3AAmasis" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/fdzaebel"><img src="https://avatars.githubusercontent.com/u/46503230?v=4?s=100" width="100px;" alt="fdzaebel"/><br /><sub><b>fdzaebel</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Afdzaebel" title="Bug reports">🐛</a></td>
@@ -277,7 +277,7 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/uranderu"><img src="https://avatars.githubusercontent.com/u/71091366?v=4?s=100" width="100px;" alt="uranderu"/><br /><sub><b>uranderu</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Auranderu" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/heytcass"><img src="https://avatars.githubusercontent.com/u/11260288?v=4?s=100" width="100px;" alt="Tom Cassady"/><br /><sub><b>Tom Cassady</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aheytcass" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/Huftierchen"><img src="https://avatars.githubusercontent.com/u/16015778?v=4?s=100" width="100px;" alt="Huftierchen"/><br /><sub><b>Huftierchen</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3AHuftierchen" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/ZasX"><img src="https://avatars.githubusercontent.com/u/806452?v=4?s=100" width="100px;" alt="ZasX"/><br /><sub><b>ZasX</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=ZasX" title="Documentation">📖</a> <a href="#mentoring-ZasX" title="Mentoring">🧑‍🏫</a> <a href="https://github.com/truecharts/charts/commits?author=ZasX" title="Code">💻</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/ZasX"><img src="https://avatars.githubusercontent.com/u/806452?v=4?s=100" width="100px;" alt="ZasX"/><br /><sub><b>ZasX</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=ZasX" title="Documentation">📖</a> <a href="#mentoring-ZasX" title="Mentoring">🧑‍🏫</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/aeolus811tw"><img src="https://avatars.githubusercontent.com/u/4956319?v=4?s=100" width="100px;" alt="Kevin T."/><br /><sub><b>Kevin T.</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aaeolus811tw" title="Bug reports">🐛</a></td>
     </tr>
     <tr>
@@ -366,7 +366,7 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/CommanderStarhump"><img src="https://avatars.githubusercontent.com/u/91758053?v=4?s=100" width="100px;" alt="CommanderStarhump"/><br /><sub><b>CommanderStarhump</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3ACommanderStarhump" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/vianchiel"><img src="https://avatars.githubusercontent.com/u/123665622?v=4?s=100" width="100px;" alt="Vianchiel"/><br /><sub><b>Vianchiel</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Avianchiel" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/b-m-f"><img src="https://avatars.githubusercontent.com/u/2843450?v=4?s=100" width="100px;" alt="Maximilian Ehlers"/><br /><sub><b>Maximilian Ehlers</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Ab-m-f" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/nautilus7"><img src="https://avatars.githubusercontent.com/u/1540233?v=4?s=100" width="100px;" alt="nautilus7"/><br /><sub><b>nautilus7</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Anautilus7" title="Bug reports">🐛</a> <a href="https://github.com/truecharts/charts/commits?author=nautilus7" title="Code">💻</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/nautilus7"><img src="https://avatars.githubusercontent.com/u/1540233?v=4?s=100" width="100px;" alt="nautilus7"/><br /><sub><b>nautilus7</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Anautilus7" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/kqmaverick"><img src="https://avatars.githubusercontent.com/u/121722567?v=4?s=100" width="100px;" alt="kqmaverick"/><br /><sub><b>kqmaverick</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Akqmaverick" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/ccalby"><img src="https://avatars.githubusercontent.com/u/680553?v=4?s=100" width="100px;" alt="ccalby"/><br /><sub><b>ccalby</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Accalby" title="Bug reports">🐛</a></td>
     </tr>
@@ -377,16 +377,11 @@ Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/d
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/schopenhauer"><img src="https://avatars.githubusercontent.com/u/2085103?v=4?s=100" width="100px;" alt="schopenhauer"/><br /><sub><b>schopenhauer</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Aschopenhauer" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://github.com/Zackptg5"><img src="https://avatars.githubusercontent.com/u/5107713?v=4?s=100" width="100px;" alt="Zackptg5"/><br /><sub><b>Zackptg5</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3AZackptg5" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://bradackerman.com/"><img src="https://avatars.githubusercontent.com/u/115895?v=4?s=100" width="100px;" alt="Brad Ackerman"/><br /><sub><b>Brad Ackerman</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Abackerman" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://hachyderm.io/@mcspiff"><img src="https://avatars.githubusercontent.com/u/7252551?v=4?s=100" width="100px;" alt="mcspiff313"/><br /><sub><b>mcspiff313</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Amcspiff313" title="Bug reports">🐛</a></td>
+      <td align="center" valign="top" width="14.28%"><a href="https://github.com/snazy2000"><img src="https://avatars.githubusercontent.com/u/1378836?v=4?s=100" width="100px;" alt="Stephen"/><br /><sub><b>Stephen</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Asnazy2000" title="Bug reports">🐛</a></td>
     </tr>
     <tr>
+      <td align="center" valign="top" width="14.28%"><a href="https://hachyderm.io/@mcspiff"><img src="https://avatars.githubusercontent.com/u/7252551?v=4?s=100" width="100px;" alt="mcspiff313"/><br /><sub><b>mcspiff313</b></sub></a><br /><a href="https://github.com/truecharts/charts/issues?q=author%3Amcspiff313" title="Bug reports">🐛</a></td>
       <td align="center" valign="top" width="14.28%"><a href="https://fnichol.com"><img src="https://avatars.githubusercontent.com/u/261548?v=4?s=100" width="100px;" alt="Fletcher Nichol"/><br /><sub><b>Fletcher Nichol</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=fnichol" title="Code">💻</a> <a href="https://github.com/truecharts/charts/issues?q=author%3Afnichol" title="Bug reports">🐛</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://marcofaggian.com"><img src="https://avatars.githubusercontent.com/u/19221001?v=4?s=100" width="100px;" alt="Marco Faggian"/><br /><sub><b>Marco Faggian</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=marcofaggian" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/Emalton"><img src="https://avatars.githubusercontent.com/u/9328458?v=4?s=100" width="100px;" alt="John P"/><br /><sub><b>John P</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=Emalton" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/kryojenik"><img src="https://avatars.githubusercontent.com/u/845427?v=4?s=100" width="100px;" alt="kryojenik"/><br /><sub><b>kryojenik</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=kryojenik" title="Code">💻</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/malcolmcdixon"><img src="https://avatars.githubusercontent.com/u/56974882?v=4?s=100" width="100px;" alt="Malcolm"/><br /><sub><b>Malcolm</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=malcolmcdixon" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/depasseg"><img src="https://avatars.githubusercontent.com/u/3201827?v=4?s=100" width="100px;" alt="depasseg"/><br /><sub><b>depasseg</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=depasseg" title="Documentation">📖</a></td>
-      <td align="center" valign="top" width="14.28%"><a href="https://github.com/j1mbl3s"><img src="https://avatars.githubusercontent.com/u/44634577?v=4?s=100" width="100px;" alt="j1mbl3s"/><br /><sub><b>j1mbl3s</b></sub></a><br /><a href="https://github.com/truecharts/charts/commits?author=j1mbl3s" title="Documentation">📖</a></td>
     </tr>
   </tbody>
 </table>

.github/SUPPORT.md

@@ -1,7 +1,3 @@
----
-sidebar_position: 3
----
-
 # Support Policy
 
 ## TrueCharts on TrueNAS SCALE
@@ -15,11 +11,9 @@ We also document which versions of TrueNAS will receive TrueCharts updates and f
 ### Supported Versions
 
 | TrueNAS version  | Branch   | Supported with updates | Accepting Support tickets | Accepting Bug Reports | Notes                                                                                                          |
-| ---------------- | -------- | ---------------------- | ------------------------- | --------------------- | -------------------------------------------------------------------------------------------------------------- |
-| 22.02.4 or prior | `master` | :x:                    | :x:                       | :x:                   | Advised to update to 22.12.2 release of [TrueNAS SCALE](https://www.truenas.com/docs/scale/scalereleasenotes/) |
-| 22.12.0          | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Stable Release as of 2022-12-13                                                                                |
-| 22.12.1          | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Stable Release as of 2023-02-21                                                                                |
-| 22.12.2          | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Stable Release as of 2023-04-11                                                                                |
+| ---------------- | -------- | ---------------------- | ------------------------- | --------------------- | -------------------------------------------------------------------------------------------------------------- | --- |
+| 22.02.4 or prior | `master` | :x:     | :x:                       | :x:                   | Advised to update to 22.12.1 release of [TrueNAS SCALE](https://www.truenas.com/docs/scale/scalereleasenotes/) |     |
+| 22.12.1          | `master` | :white_check_mark:     | :white_check_mark:        | :white_check_mark:    | Most Stable Release as of 2023-02-21                                                                           |
 | Nightly          | `master` | :white_check_mark:     | :x:                       | :white_check_mark:    | Please only submit bug reports during codefreeze                                                               |
 
 :::warning Support Guidelines
@@ -38,7 +32,7 @@ please report them to our [github](https://github.com/truecharts/charts/issues/n
 ## Incubator Train Charts
 
 Our support policy for `incubator` train charts is different for those on the `stable` train. Those charts are work in progress,
-may break at anytime and we're still going through many of the charts from unRAID. We won't accept support tickets for `incubator` train
-charts on our [discord](https://discord.gg/tVsPTHWTtr). However, we have an **#incubator-chat** channel for these apps to help get them running and/or receive feedback.
-With enough positive feedback a chart can be promoted to `stable` train. Feedback about bugs is also accepted there which can be used to fix them.
+may break at anytime and we're still going through many of the charts from unRAID. We won't accept support tickets on our discord for `incubator` train
+charts on our [discord](https://discord.gg/tVsPTHWTtr). However we have an **#incubator-chat** channel for these apps to help get them running and/or receive feedback.
+With enough posivite feedback a chart can be promoted to `stable` train. Feedback about bugs is also accepted there which can be used to fix them.
 Assume anything in the `incubator` train is in beta and you're testing it. As well, anything installed in `incubator` will have to be REINSTALLED once it moves to the `stable` train.

.github/actions/collect-changes/action.yaml

@@ -42,15 +42,13 @@ runs:
         for CHARTPATH in "${PATHS[@]}"
         do
           IFS='/' read -r -a path_parts <<< "${CHARTPATH}"
-          CHARTS+=("${path_parts[0]}/${path_parts[1]}/${path_parts[2]}")
+          CHARTS+=("${path_parts[1]}/${path_parts[2]}")
         done
 
         # Remove duplicates
         CHARTS=( `printf "%s\n" "${CHARTS[@]}" | sort -u` )
         # Set output to changed charts
-        echo "Changed charts: ${CHARTS[*]}"
         printf "::set-output name=addedOrModified::%s\n" "${CHARTS[*]}"
-        
 
     - name: Collect bumped charts after last tag
       id: filter-bumped-charts
@@ -108,9 +106,11 @@ runs:
 
         # Remove duplicates
         CHARTS=( `printf "%s\n" "${CHARTS[@]}" | sort -u` )
+        # Set output to changed charts
+        printf "::set-output name=addedOrModified::%s\n" "${CHARTS[*]}"
 
         echo "Number of detected changed charts: ${#CHARTS[@]}"
-        if [ ${#CHARTS[@]} -eq 0 ] || [ "${CHARTS[0]}" == ' ' ] || [ "${CHARTS[0]}" == '/' ]; then
+        if [ ${#CHARTS[@]} -eq 0 ] || [ "${CHARTS[0]}" = " " ] || [ "${CHARTS[0]}" = "/" ]; then
           echo "No Changed Charts detected since latest tag..."
           printf "::set-output name=changesDetectedAfterTag::%s\n" "false"
         else
@@ -120,7 +120,7 @@ runs:
           # Get only the chart paths
 
           # Set output to changed charts
-          echo "Changed charts since latest tag: ${CHARTS[*]}"
+          echo "Changed charts: ${CHARTS[*]}"
           printf "::set-output name=modifiedChartsAfterTag::%s\n" "${CHARTS[*]}"
         fi
         popd > /dev/null

.github/actions/label-from-status/action.yaml

@@ -0,0 +1,48 @@
+name: "Set issue labels based on status"
+description: "Sets / removes issue labels based on CI job status"
+inputs:
+  token:
+    required: true
+    description: "The Github API token to use"
+  issue-number:
+    required: true
+    description: "The issue to label"
+  prefix:
+    required: true
+    description: "The label prefix (e.g. lint, install)"
+  job-status:
+    required: true
+    description: "The status of the CI job"
+  remove-on-skipped:
+    required: false
+    default: false
+    description: "Remove the label if the job was skipped"
+
+runs:
+  using: "composite"
+  steps:
+    - name: Label success
+      uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90 # tag=1.0.4
+      if: ${{ inputs.job-status == 'success' }}
+      with:
+        repo-token: ${{ inputs.token }}
+        issue-number: ${{ inputs.issue-number }}
+        add-labels: "${{ inputs.prefix }}:ok"
+        remove-labels: "${{ inputs.prefix }}:failed"
+
+    - name: Label failure
+      uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90 # tag=1.0.4
+      if: ${{ inputs.job-status == 'failure' }}
+      with:
+        repo-token: ${{ inputs.token }}
+        issue-number: ${{ inputs.issue-number }}
+        add-labels: "${{ inputs.prefix }}:failed"
+        remove-labels: "${{ inputs.prefix }}:ok"
+
+    - name: Remove label
+      uses: andymckay/labeler@e6c4322d0397f3240f0e7e30a33b5c5df2d39e90 # tag=1.0.4
+      if: ${{ (inputs.job-status == 'skipped') && (inputs.remove-on-skipped == 'true') }}
+      with:
+        repo-token: ${{ inputs.token }}
+        issue-number: ${{ inputs.issue-number }}
+        remove-labels: "${{ inputs.prefix }}:ok, ${{ inputs.prefix }}:failed"

.github/cr.yaml

@@ -0,0 +1,7 @@
+owner: truecharts
+git-repo: charts
+repo: charts
+charts-dir: charts/*
+charts_repo_url: "https://charts.truecharts.org"
+SkipExisting: true
+skipExisting: true

.github/ct-install.yaml

@@ -1,16 +1,19 @@
 remote: origin
 target-branch: master
-helm-extra-args: --timeout 180s
+helm-extra-args: --timeout 300s
 chart-yaml-schema: .github/chart_schema.yaml
 chart-dirs:
   - charts/incubator
   - charts/stable
   - charts/dependency
+  - charts/core
   - charts/dev
+  - charts/games
   - charts/enterprise
-  - charts/operators
+  - charts/SCALE
 excluded-charts:
   - charts/dependency/subchart
+  - charts/incubator/frigate
   - charts/incubator/orbital-sync
   - charts/incubator/plex-meta-manager
   - charts/library/common
@@ -22,6 +25,7 @@ excluded-charts:
   - charts/stable/facebox
   - charts/stable/foundryvtt
   - charts/stable/foundryvtt
+  - charts/stable/frigate
   - charts/stable/heimdall
   - charts/stable/multus
   - charts/stable/orbital-sync
@@ -31,7 +35,6 @@ excluded-charts:
   - charts/stable/promcord
   - charts/stable/rdesktop
   - charts/stable/reg
-  - charts/stable/romm
   - charts/stable/ser2sock
   - charts/stable/storj-node
   - charts/stable/tailscale
@@ -41,4 +44,6 @@ excluded-charts:
 chart-repos:
   - truecharts=https://charts.truecharts.org
   - truecharts-library=https://library-charts.truecharts.org
-  - truecharts-deps=https://deps.truecharts.org
+  - bitnami=https://charts.bitnami.com/bitnami
+  - grafana=https://grafana.github.io/helm-charts
+  - prometheus=https://prometheus-community.github.io/helm-charts

.github/ct-lint.yaml

@@ -1,16 +1,20 @@
 remote: origin
 target-branch: master
 chart-yaml-schema: .github/chart_schema.yaml
-helm-extra-args: --timeout 120s
+helm-extra-args: --timeout 600s
 chart-dirs:
   - charts/incubator
   - charts/stable
   - charts/dependency
+  - charts/core
   - charts/dev
+  - charts/games
   - charts/enterprise
-  - charts/operators
+  - charts/SCALE
 excluded-charts: []
 chart-repos:
   - truecharts=https://charts.truecharts.org
   - truecharts-library=https://library-charts.truecharts.org
-  - truecharts-deps=https://deps.truecharts.org
+  - bitnami=https://charts.bitnami.com/bitnami
+  - grafana=https://grafana.github.io/helm-charts
+  - prometheus=https://prometheus-community.github.io/helm-charts

.github/renovate.json5

@@ -8,10 +8,10 @@
   "commitMessageExtra": "to {{newVersion}}",
   "commitMessageSuffix": "",
   "rebaseWhen": "conflicted",
-  "prConcurrentLimit": 150,
+  "prConcurrentLimit": 50,
   "timezone":"Europe/Amsterdam",
   "pinDigests": true,
-  "automerge": false,
+  "automerge": true,
   "gitAuthor": "TrueCharts-Admin <bot@truecharts.org>",
   "helm-values": {
     "fileMatch": ["charts/.+/.*values\\.yaml$", "charts/.+/SCALE/.*_values\\.yaml$"]
@@ -32,7 +32,7 @@
       "matchManagers": ["helm-values"],
       "enabled": true,
       "pinDigests": true,
-      "automerge": false,
+      "automerge": true,
       "commitMessageTopic": "container image {{depName}}",
       "commitMessageExtra": "to {{#if isSingleVersion}}v{{{newVersion}}}{{else}}{{{newValue}}}{{/if}}",
       "matchUpdateTypes": ["major", "minor", "patch", "digest"],
@@ -41,7 +41,7 @@
       "datasources": ["docker"],
       "enabled": true,
       "pinDigests": true,
-      "automerge": false,
+      "automerge": true,
       "separateMinorPatch": true,
       "commitMessageTopic": "container image {{depName}}",
       "commitMessageExtra": "to {{#if isSingleVersion}}v{{{newVersion}}}{{else}}{{{newValue}}}{{/if}}",
@@ -50,7 +50,7 @@
     {
       "matchManagers": ["github-actions"],
       "excludePackageNames": ["stefanzweifel/git-auto-commit-action"],
-      "automerge": true,
+      "automerge": false,
     },
     //
     // helm deps
@@ -62,22 +62,22 @@
       "bumpVersion": "major",
       "labels": ["update/helm/dependency/major"],
       "groupName": ["helm dependency major"],
-      "matchPaths": ["charts/dependency/**", "templates/**"],
+      "matchPaths": ["charts/dependency/**"],
     },
     {
       "matchDatasources": ["helm"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "minor",
         "patch"
       ],
       "bumpVersion": "patch",
-      "labels": ["update/helm/dependency/non-major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "templates/**"],
+      "labels": ["update/helm/dependency/non-major"],
+      "matchPaths": ["charts/dependency/**"],
       "groupName": "helm dependency non-major",
     },
     //
-    // helm ent and operators
+    // helm ent
     //
     {
       "matchDatasources": ["helm"],
@@ -86,23 +86,23 @@
       "enabled": true,
       "labels": ["update/helm/general/major"],
       "groupName": ["helm general major"],
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "matchPaths": ["charts/enterprise/**"],
       "schedule": [
         "before 10pm on tuesday"
       ],
     },
     {
       "matchDatasources": ["helm"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "minor",
         "patch"
       ],
       "enabled": true,
       "bumpVersion": "patch",
-      "labels": ["update/helm/general/non-major", "automerge"],
+      "labels": ["update/helm/general/non-major"],
       "groupName": "helm general non-major",
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "matchPaths": ["charts/enterprise/**"],
       "schedule": [
         "before 10pm on tuesday"
       ],
@@ -124,14 +124,14 @@
     },
     {
       "matchDatasources": ["helm"],
-      "automerge": false,
+      "automerge": true,
       "enabled": true,
       "matchUpdateTypes": [
         "minor",
         "patch"
       ],
       "bumpVersion": "patch",
-      "labels": ["update/helm/general/non-major", "automerge"],
+      "labels": ["update/helm/general/non-major"],
       "groupName": "helm general non-major",
       "matchPaths": ["charts/incubator/**", "charts/SCALE/**", "charts/dev/**", "charts/stable/**", "templates/app/**"],
       "schedule": [
@@ -139,7 +139,7 @@
       ],
     },
     //
-    // Tag updates for semantic tags on enterprise and operatorApps
+    // Tag updates for semantic tags on enterprise Apps
     //
     {
       "matchDatasources": ["docker"],
@@ -147,35 +147,22 @@
       "enabled": true,
       "bumpVersion": "major",
       "labels": ["update/docker/enterprise/major"],
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
+      "matchPaths": ["charts/enterprise/**"],
     },
     {
       "matchDatasources": ["docker"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "minor",
       ],
       "enabled": true,
       "bumpVersion": "patch",
       "labels": ["update/docker/enterprise/minor"],
-      "matchPaths": ["charts/enterprise/**", "charts/operators/**"],
-    },
-    {
-      "matchDatasources": ["docker"],
-      "automerge": false,
-      "matchUpdateTypes": [
-        "patch",
-        "digest",
-        "pin",
-      ],
-      "bumpVersion": "patch",
-      "enabled": true,
-      "labels": ["update/docker/enterprise/patch", "automerge"],
       "matchPaths": ["charts/enterprise/**"],
     },
     {
       "matchDatasources": ["docker"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "patch",
         "digest",
@@ -183,58 +170,23 @@
       ],
       "bumpVersion": "patch",
       "enabled": true,
-      "labels": ["update/docker/operator/patch"],
-      "matchPaths": ["charts/operator/**"],
+      "labels": ["update/docker/enterprise/patch"],
+      "matchPaths": ["charts/enterprise/**"],
     },
     //
-    // Tag updates for semantic tags on incubator and dev charts
+    // Tag updates for semantic tags on all but enterprise Apps
     //
     {
       "matchDatasources": ["docker"],
       "updateTypes": ["major"],
       "bumpVersion": "minor",
       "enabled": false,
-      "labels": ["update/docker/incubator/major", "automerge"],
-      "matchPaths": ["charts/incubator/**", "charts/dev/**"],
-    },
-    {
-      "matchDatasources": ["docker"],
-      "automerge": false,
-      "matchUpdateTypes": [
-        "minor",
-        "patch",
-        "digest",
-      ],
-      "bumpVersion": "patch",
-      "enabled": false,
-      "labels": ["update/docker/incubator/non-major", "automerge"],
-      "matchPaths": ["charts/incubator/**", "charts/dev/**"],
-    },
-    {
-      "matchDatasources": ["docker"],
-      "automerge": false,
-      "matchUpdateTypes": [
-        "pin",
-      ],
-      "bumpVersion": "patch",
-      "enabled": true,
-      "labels": ["update/docker/incubator/non-major", "automerge"],
-      "matchPaths": ["charts/incubator/**", "charts/dev/**"],
-    },
-    //
-    // Tag updates for semantic tags on all but enterprise, operator and incubator Apps
-    //
-    {
-      "matchDatasources": ["docker"],
-      "updateTypes": ["major"],
-      "bumpVersion": "minor",
-      "enabled": true,
       "labels": ["update/docker/general/major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/stable/**", "templates/app/**"],
+      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/incubator/**", "charts/dev/**", "charts/stable/**", "templates/app/**"],
     },
     {
       "matchDatasources": ["docker"],
-      "automerge": false,
+      "automerge": true,
       "matchUpdateTypes": [
         "minor",
         "patch",
@@ -242,9 +194,9 @@
         "pin",
       ],
       "bumpVersion": "patch",
-      "enabled": true,
+      "enabled": false,
       "labels": ["update/docker/general/non-major", "automerge"],
-      "matchPaths": ["charts/dependency/**", "charts/SCALE/**", "charts/library/**", "charts/stable/**", "templates/app/**"],
+      "matchPaths": ["charts/dependency/**", "charts/SCALE/**",  "charts/incubator/**", "charts/dev/**", "charts/library/**", "charts/stable/**", "templates/app/**"],
     },
     //
     // Tag semantic version type based on regex
@@ -291,11 +243,6 @@
       "matchPackagePrefixes": ["tccr.io/truecharts/webtop"],
       "groupName": "webtop",
     },
-    {
-      "matchDatasources": ["docker"],
-      "matchPackagePrefixes": ["tccr.io/truecharts/metallb"],
-      "groupName": "metallb",
-    },
     {
       "matchDatasources": ["docker"],
       "matchPackagePrefixes": ["tccr.io/truecharts/zabbix"],

.github/scripts/build-catalog.sh

@@ -75,21 +75,6 @@ patch_apps() {
     sed -i "s|^icon:|icon_url:|g" catalog/${train}/${chartname}/item.yaml
     echo "categories:" >> catalog/${train}/${chartname}/item.yaml
     cat ${target}/Chart.yaml | yq '.annotations."truecharts.org/catagories"' -r >> catalog/${train}/${chartname}/item.yaml
-
-    # Generate screenshots
-    screenshots=""
-    if [[ -d "${target}/screenshots" ]]; then
-        screenshots=$(ls ${target}/screenshots)
-    fi
-    if [[ -n $screenshots ]]; then
-        echo "screenshots:" >> catalog/${train}/${chartname}/item.yaml
-        for screenshot in $screenshots; do
-            echo "  - https://truecharts.org/img/hotlink-ok/chart-screenshots/${chartname}/${screenshot}" >> catalog/${train}/${chartname}/item.yaml
-        done
-    else
-        echo "screenshots: []" >> catalog/${train}/${chartname}/item.yaml
-    fi
-    rm -rf ${target}/screenshots
     # Copy changelog from website
     if [[ ! -f "website/docs/charts/${train}/${chartname}/CHANGELOG.md" ]]; then
         touch "website/docs/charts/${train}/${chartname}/CHANGELOG.md"

.github/scripts/fetch_helm_deps.sh

@@ -19,20 +19,8 @@ trains=(
     "stable"
     "incubator"
     "dependency"
-    "operators"
 )
 
-load_gpg_key() {
-echo ""
-echo "⏬ Downloading and Loading TrueCharts pgp Public Key"
-gpg_dir=.cr-gpg
-mkdir -p "$gpg_dir"
-curl --silent https://keybase.io/truecharts/pgp_keys.asc | gpg --dearmor > $gpg_dir/pubring.gpg || echo "❌ Couldn't load  Public Key."
-echo "✅ Public Key loaded successfully..."
-echo ""
-}
-export -f load_gpg_key
-
 download_deps() {
 local train_chart="$1"
 
@@ -97,38 +85,17 @@ for idx in $(eval echo "{0..$length}"); do
             echo "⏬ Downloading dependency $name-$version from $dep_url..."
             mkdir -p "$cache_path/$repo_dir"
             wget --quiet "$dep_url" -P "$cache_path/$repo_dir"
-            wget --quiet "$dep_url.prov" -P "$cache_path/$repo_dir"
-
             if [ ! $? ]; then
                 echo "❌ wget encountered an error..."
-              if [[ "$train_chart" =~ incubator\/.* ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              else
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || exit 1
-              fi
+                helm dependency build "$charts_path/$train_chart/Chart.yaml" || helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
             fi
 
             if [ -f "$cache_path/$repo_dir/$name-$version.tgz" ]; then
                 echo "✅ Dependency Downloaded!"
-                if [[ ! "$train_chart" =~ incubator\/.* ]]; then
-                  echo "Validating dependency signature..."
-                  helm verify $cache_path/$repo_dir/$name-$version.tgz --keyring $gpg_dir/pubring.gpg || \
-                  helm verify $cache_path/$repo_dir/$name-$version.tgz --keyring $gpg_dir/pubring.gpg || exit 1
-                else
-                  echo "Skipping dependency signature verification for $train_chart..."
-                fi
             else
                 echo "❌ Failed to download dependency"
                 # Try helm dependency build/update or otherwise fail fast if a dep fails to download...
-              if [[ "$train_chart" =~ incubator\/.* ]]; then
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml"|| exit 1
-              else
-                  helm dependency build "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || \
-                  helm dependency update "$charts_path/$train_chart/Chart.yaml" --verify --keyring $gpg_dir/pubring.gpg || exit 1
-              fi
+                helm dependency build "$charts_path/$train_chart/Chart.yaml" || helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
             fi
         fi
         echo ""
@@ -143,16 +110,13 @@ for idx in $(eval echo "{0..$length}"); do
         else
             echo "❌ Failed to copy dependency"
             # Try helm dependency build/update or otherwise fail fast if a dep fails to copy...
-            helm dependency build "$charts_path/$train_chart/Chart.yaml" || \
-            helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
+            helm dependency build "$charts_path/$train_chart/Chart.yaml" || helm dependency update "$charts_path/$train_chart/Chart.yaml" || exit 1
         fi
     fi
 done
 }
 export -f download_deps
 
-load_gpg_key
-
 if [ -z "$1" ]; then
   for train in "${trains[@]}"; do
       for chart in $(ls "$charts_path/$train"); do

.github/scripts/tc-lint.sh

@@ -1,213 +0,0 @@
-#!/bin/bash
-
-function check_version() {
-    chart_path=${1:?"No chart path provided to [Version Check]"}
-    target_branch=${2:?"No target branch provided to [Version Check]"}
-
-    new=$(git diff "$target_branch" -- "$chart_path" | sed -nr 's/^\+version: (.*)$/\1/p')
-    old=$(git diff "$target_branch" -- "$chart_path" | sed -nr 's/^\-version: (.*)$/\1/p')
-
-    if [[ -z "$new" ]]; then
-        echo -e "\t❌ Chart version: Not changed"
-        curr_result=1
-    fi
-
-    if [[ -n "$new" ]]; then
-        echo -e "\t🔙 Old Chart Version: $old"
-        echo -e "\t🆕 New Chart Version: $new"
-
-        if [[ $(echo "$new\n$old" | sort -V -r | head -n1) != "$old" ]]; then
-            echo -e "\t✅ Chart version: Bumped"
-        else
-            echo -e "\t❌ Chart version: Not bumped or downgraded"
-            curr_result=1
-        fi
-    fi
-}
-export -f check_version
-
-function check_chart_schema(){
-    chart_path=${1:?"No chart path provided to [Chart.yaml lint]"}
-
-    yamale_output=$(yamale --schema .github/chart_schema.yaml "$chart_path/Chart.yaml")
-    yamale_exit_code=$?
-    while IFS= read -r line; do
-        echo -e "\t$line"
-    done <<< "$yamale_output"
-
-    if [ $yamale_exit_code -ne 0 ]; then
-        echo -e "\t❌ Chart Schema: Failed"
-        curr_result=1
-    else
-        echo -e "\t✅ Chart Schema: Passed"
-    fi
-}
-export -f check_chart_schema
-
-function helm_lint(){
-    chart_path=${1:?"No chart path provided to [Helm lint]"}
-
-    # Print only errors and warnings
-    helm_lint_output=$(helm lint --quiet "$chart_path")
-    helm_lint_exit_code=$?
-    while IFS= read -r line; do
-        echo -e "\t$line"
-    done <<< "$helm_lint_output"
-
-    if [ $helm_lint_exit_code -ne 0 ]; then
-        echo -e "\t❌ Helm Lint: Failed"
-        curr_result=1
-    else
-        echo -e "\t✅ Helm Lint: Passed"
-    fi
-}
-export -f helm_lint
-
-function yaml_lint(){
-    file_path=${1:?"No file path provided to [YAML lint]"}
-
-    yaml_lint_output=$(yamllint --config-file .github/yaml-lint-conf.yaml "$file_path")
-    yaml_lint_exit_code=$?
-    while IFS= read -r line; do
-        echo -e "\t$line"
-    done <<< "$yaml_lint_output"
-
-    if [ $yaml_lint_exit_code -ne 0 ]; then
-        echo -e "\t❌ YAML Lint: Failed [$file_path]"
-        curr_result=1
-    else
-        echo -e "\t✅ YAML Lint: Passed [$file_path]"
-    fi
-}
-export -f yaml_lint
-
-function lint_chart(){
-    chart_path=${1:?"No chart path provided to [Lint Chart]"}
-    target_branch=${2:?"No target branch provided to [Lint Chart]"}
-    status_file=${3:?"No status file provided to [Lint Chart]"}
-
-    curr_result_file=/tmp/$(basename "$chart_path")
-    curr_result=0
-    {
-        start_time=$(date +%s)
-        echo '---------------------------------------------------------------------------------------'
-        echo "## 🔍Linting [$chart_path]"
-        echo '----------------------------------------------'
-        echo ''
-        echo "👣 Helm Lint - [$chart_path]"
-        helm_lint "$chart_path"
-
-        echo "👣 Chart Version - [$chart_path] against [$target_branch]"
-        check_version "$chart_path" "$target_branch"
-
-        echo "👣 Chart Schema - [$chart_path]"
-        check_chart_schema "$chart_path"
-
-        echo "👣 YAML Lint - [$chart_path/Chart.yaml]"
-        yaml_lint "$chart_path/Chart.yaml"
-
-        echo "👣 YAML Lint - [$chart_path/values.yaml]"
-        yaml_lint "$chart_path/values.yaml"
-
-        for values in $chart_path/ci/*values.yaml; do
-            if [ -f "${values}" ]; then
-                echo "👣 YAML Lint - [$values]"
-                yaml_lint "$values"
-            fi
-        done
-
-        end_time=$(date +%s)
-        diff_time=$((end_time - start_time))
-
-        echo -e "\nResult:"
-        if [ $curr_result -ne 0 ]; then
-            echo "❌ Linting [$chart_path]: Failed - Took $diff_time seconds" | tee -a "$result_file"
-        else
-            echo "✅ Linting [$chart_path]: Passed - Took $diff_time seconds" | tee -a "$result_file"
-        fi
-        echo '---------------------------------------------------------------------------------------'
-        echo ''
-    } > "$curr_result_file"
-    cat "$curr_result_file"
-    echo $curr_result >> "$status_file"
-}
-export -f lint_chart
-
-# Start of script
-
-charts=$1
-target_branch=${2:-"origin/master"}
-status_file="/tmp/status"
-exit_code=0
-
-result_file=${result_file:?"No result file provided"}
-
-rm -f "$status_file"
-rm -f "$status_file"
-
-command -v yamale >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "yamale (https://github.com/23andMe/Yamale#pip) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'pip install yamale'"
-    exit 1
-}
-
-command -v yamllint >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "yamllint (https://yamllint.readthedocs.io/en/stable/quickstart.html#installing-yamllint) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'pip install yamllint'"
-    exit 1
-}
-
-command -v helm >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "helm (https://helm.sh/docs/intro/install) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'curl https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 | bash'"
-    exit 1
-}
-
-command -v parallel >/dev/null 2>&1 || {
-    printf >&2 "%s\n" "parallel (https://www.gnu.org/software/parallel) is not installed. Aborting."
-    printf >&2 "%s\n" "Install it with 'sudo apt install parallel'"
-    exit 1
-}
-
-changed=$(echo $charts | jq --raw-output '.[]')
-
-echo "📂 Charts to lint:"
-for chart in $changed; do
-    echo -e "\t- 📄 $chart"
-done
-echo ''
-
-start_time=$(date +%s)
-# Run lint_chart in parallel
-parallel --jobs $(($(nproc) * 2)) "lint_chart {} $target_branch $status_file" ::: $changed || true
-if grep -q 1 "$status_file"; then
-    exit_code=1
-fi
-end_time=$(date +%s)
-diff_time=$((end_time - start_time))
-
-echo '------------------------------------'
-
-# Print summary
-sorted=$(cat "$result_file" | sort)
-sorted=$(echo "$sorted" | sed 's/✅/:heavy_check_mark:/g')
-sorted=$(echo "$sorted" | sed 's/❌/:heavy_multiplication_x:/g')
-echo "# 📝 Linting results:" | tee "$result_file"
-echo '====================================================================================='
-echo "$sorted" | tee -a "$result_file"
-echo ''
-echo -e "Total Charts Linted: **$(echo "$sorted" | wc -l)**" | tee -a "$result_file"
-echo -e "Total Charts Passed: **$(echo "$sorted" | grep -c 'heavy_check_mark')**" | tee -a "$result_file"
-echo -e "Total Charts Failed: **$(echo "$sorted" | grep -c 'heavy_multiplication_x')**" | tee -a "$result_file"
-echo '====================================================================================='
-echo '' | tee -a "$result_file"
-
-if [ $exit_code -ne 0 ]; then
-    echo "❌ Linting: **Failed** - Took $diff_time seconds" | tee -a "$result_file"
-    echo "🖱️ Open [Lint Charts and Verify Dependencies] job" | tee -a "$result_file"
-    echo "👀 Expand [Run Chart Linting] step to view the results" | tee -a "$result_file"
-else
-    echo "✅ Linting: **Passed** - Took $diff_time seconds" | tee -a "$result_file"
-fi
-
-exit $exit_code

.github/workflows/catalog-test.yaml

@@ -15,9 +15,9 @@ jobs:
     name: Test SCALE Catalog
     runs-on: ubuntu-latest
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
-      - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         name: Checkout
         with:
           fetch-depth: 100
@@ -26,13 +26,19 @@ jobs:
       - name: Setting repo parent dir as safe safe.directory
         run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
 
-      ## TODO: Only run on the existing catalog when CI or template changes are actually detected
-      # - name: Checkout
-      #   uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
-      #   with:
-      #     repository: truecharts/catalog
-      #     path: catalog
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          repository: truecharts/catalog
+          path: catalog
 
       - name: build-and-run
         run: |
           tools/build-release.sh
+
+      - uses: vishnudxb/cancel-workflow@c3c77eb4383ba7d023e6614a07d94fe990501ac6 # tag=v1.2
+        if: failure()
+        with:
+          repo: truecharts/charts
+          workflow_id: ${{ github.run_id }}
+          access_token: ${{ github.token }}

.github/workflows/charts-changelog.yaml

@@ -0,0 +1,89 @@
+name: "Charts: Update README"
+
+on:
+  workflow_dispatch:
+    inputs:
+      modifiedCharts:
+        required: true
+        type: string
+      isRenovatePR:
+        required: true
+        type: string
+    outputs:
+      commitHash:
+        description: "The most recent commit hash at the end of this workflow"
+        value: ${{ jobs.generate-changelog.outputs.commitHash }}
+
+jobs:
+  validate-changelog:
+    name: Validate changelog
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+
+      - name: Check changelog annotations
+        if: inputs.isRenovatePR != 'true'
+        run: |
+          CHARTS=(${{ inputs.modifiedCharts }})
+          for i in "${CHARTS[@]}"
+          do
+              IFS='/' read -r -a chart_parts <<< "$i"
+              ./.github/scripts/check-releasenotes.sh "charts/${chart_parts[0]}/${chart_parts[1]}"
+              echo ""
+          done
+
+  generate-changelog:
+    name: Generate changelog annotations
+    runs-on: ubuntu-latest
+    needs:
+      - validate-changelog
+    outputs:
+      commitHash: ${{ steps.save-commit-hash.outputs.commit_hash }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+
+      - name: Install Kubernetes tools
+        if: inputs.isRenovatePR == 'true'
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            yq
+          yq: "4.20.1"
+
+      - name: Annotate Charts.yaml for Renovate PR's
+        if: inputs.isRenovatePR == 'true'
+        env:
+          DEFAULT_BRANCH: "${{ github.event.repository.default_branch }}"
+        run: |
+          CHARTS=(${{ inputs.modifiedCharts }})
+          for i in "${CHARTS[@]}"
+          do
+              IFS='/' read -r -a chart_parts <<< "$i"
+                ./.github/scripts/renovate-releasenotes.sh "charts/${chart_parts[0]}/${chart_parts[1]}"
+              echo ""
+          done
+
+      - name: Create commit
+        id: create-commit
+        if: inputs.isRenovatePR == 'true'
+        uses: stefanzweifel/git-auto-commit-action@3ea6ae190baf489ba007f7c92608f33ce20ef04a # v4
+        with:
+          file_pattern: charts/**/
+          commit_message: "chore: Auto-update chart metadata [skip ci]"
+          commit_user_name: ${{ github.actor }}
+          commit_user_email: ${{ github.actor }}@users.noreply.github.com
+
+      - name: Save commit hash
+        id: save-commit-hash
+        run: |
+          if [ "${{ steps.create-commit.outputs.changes_detected || 'unknown' }}" == "true" ]; then
+            echo '::set-output name=commit_hash::${{ steps.create-commit.outputs.commit_hash }}'
+          else
+            echo "::set-output name=commit_hash::${GITHUB_SHA}"
+          fi

.github/workflows/charts-lint.yaml

@@ -9,120 +9,359 @@ on:
       chartChangesDetected:
         required: true
         type: string
-      modifiedFiles:
-        required: true
-        type: string
-      modifiedCharts:
-        required: true
-        type: string
 
 jobs:
-  lint-and-verify:
-    name: Lint Charts and Verify Dependencies
+  generate-lint-matrix:
+    name: Generate matrix for lint
     runs-on: ubuntu-latest
+    outputs:
+      matrix1: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts1 }}
+        }
+      matrix2: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts2 }}
+        }
+      matrix3: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts3 }}
+        }
+      matrix4: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts4 }}
+        }
+      matrix5: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts5 }}
+        }
+      matrix6: |
+        {
+          "chart": ${{ steps.list-changed.outputs.charts6 }}
+        }
+      detected1: ${{ steps.list-changed.outputs.detected1 }}
+      detected2: ${{ steps.list-changed.outputs.detected2 }}
+      detected3: ${{ steps.list-changed.outputs.detected3 }}
+      detected4: ${{ steps.list-changed.outputs.detected4 }}
+      detected5: ${{ steps.list-changed.outputs.detected5 }}
+      detected6: ${{ steps.list-changed.outputs.detected6 }}
     steps:
-      - name: Checkout [master]
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
-          ref: master
-
-      - name: Checkout [commit]
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
-        with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Setting repo parent dir as safe safe.directory
-        run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
-      - name: Install go-yq
-        run: |
-          mkdir -p $HOME/.local/bin
-          wget https://github.com/mikefarah/yq/releases/download/v4.26.1/yq_linux_amd64 -O $HOME/.local/bin/go-yq && \
-          chmod +x $HOME/.local/bin/go-yq
-          echo "$HOME/.local/bin" >> $GITHUB_PATH
-
-      - name: Install pre-commit, yamale and yamllint
-        run: |
-          pip3 install --no-cache-dir pre-commit yamale yamllint
-
-      - name: Prep Helm
-        run: |
-          helm repo add truecharts https://charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
-          helm repo add truecharts-library https://library-charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
-          helm repo update
-
-      - name: Collect changes (branch-based)
+      - name: Collect changes
         id: list-changed
         if: inputs.chartChangesDetected == 'true'
         shell: bash
         run: |
-          CHARTS="${{ inputs.modifiedCharts }}"
-          echo "Modified Charts: ${CHARTS}"
-
-          EXCLUDED_JSON=$(go-yq eval -o=json '.excluded-charts // []' .github/ct-lint.yaml)
-          CHARTS_JSON=$(echo "${CHARTS}" | jq --raw-input '.' | jq --compact-output --slurp '.')
-          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED_JSON}, \"all\": ${CHARTS_JSON}}" | jq --compact-output '.all-.excluded')
-
-          echo CHANGED_CHARTS=${OUTPUT_JSON} >> "$GITHUB_OUTPUT"
-          if [[ $(echo ${OUTPUT_JSON} | jq --compact-output '. | length') -gt 0 ]]; then
-            echo "detected=true" >> "$GITHUB_OUTPUT"
+          EXCLUDED=$(yq eval -o=json '.excluded-charts // []' .github/ct-lint.yaml)
+          CHARTS=$(ct list-changed --config .github/ct-lint.yaml)
+          CHARTS_JSON=$(echo "${CHARTS}" | jq -R -s -c 'split("\n")[:-1]')
+          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED}, \"all\": ${CHARTS_JSON}}" | jq -c '.all-.excluded')
+          OUTPUT_JSON1=$((echo $OUTPUT_JSON | jq -r -c '.[:50]'; echo $OUTPUT_JSON | jq -r -c '.[301:350]'; echo $OUTPUT_JSON | jq -r -c '.[601:650]'; echo $OUTPUT_JSON | jq -r -c '.[901:950]'; echo $OUTPUT_JSON | jq -r -c '.[1201:1250]') | jq -s add)
+          OUTPUT_JSON2=$((echo $OUTPUT_JSON | jq -r -c '.[51:100]'; echo $OUTPUT_JSON | jq -r -c '.[351:400]'; echo $OUTPUT_JSON | jq -r -c '.[651:700]'; echo $OUTPUT_JSON | jq -r -c '.[951:1000]'; echo $OUTPUT_JSON | jq -r -c '.[1251:1300]') | jq -s add)
+          OUTPUT_JSON3=$((echo $OUTPUT_JSON | jq -r -c '.[101:150]'; echo $OUTPUT_JSON | jq -r -c '.[401:450]'; echo $OUTPUT_JSON | jq -r -c '.[701:750]'; echo $OUTPUT_JSON | jq -r -c '.[1001:1050]'; echo $OUTPUT_JSON | jq -r -c '.[1301:1350]') | jq -s add)
+          OUTPUT_JSON4=$((echo $OUTPUT_JSON | jq -r -c '.[151:200]'; echo $OUTPUT_JSON | jq -r -c '.[451:500]'; echo $OUTPUT_JSON | jq -r -c '.[751:800]'; echo $OUTPUT_JSON | jq -r -c '.[1051:1100]'; echo $OUTPUT_JSON | jq -r -c '.[1351:1400]') | jq -s add)
+          OUTPUT_JSON5=$((echo $OUTPUT_JSON | jq -r -c '.[201:250]'; echo $OUTPUT_JSON | jq -r -c '.[501:550]'; echo $OUTPUT_JSON | jq -r -c '.[801:850]'; echo $OUTPUT_JSON | jq -r -c '.[1101:1150]'; echo $OUTPUT_JSON | jq -r -c '.[1401:1450]') | jq -s add)
+          OUTPUT_JSON6=$((echo $OUTPUT_JSON | jq -r -c '.[251:300]'; echo $OUTPUT_JSON | jq -r -c '.[551:600]'; echo $OUTPUT_JSON | jq -r -c '.[851:900]'; echo $OUTPUT_JSON | jq -r -c '.[1151:1200]'; echo $OUTPUT_JSON | jq -r -c '.[1451:1500]') | jq -s add)
+          echo ::set-output name=charts1::${OUTPUT_JSON1}
+          echo ::set-output name=charts2::${OUTPUT_JSON2}
+          echo ::set-output name=charts3::${OUTPUT_JSON3}
+          echo ::set-output name=charts4::${OUTPUT_JSON4}
+          echo ::set-output name=charts5::${OUTPUT_JSON5}
+          echo ::set-output name=charts6::${OUTPUT_JSON6}
+          if [[ $(echo ${OUTPUT_JSON1} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected1::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON2} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected2::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON3} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected3::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON4} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected4::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON5} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected5::true"
+          fi
+          if [[ $(echo ${OUTPUT_JSON6} | jq -c '. | length') -gt 0 ]]; then
+            echo "::set-output name=detected6::true"
           fi
 
-      - name: Test and Fix Pre-Commit Issues
-        shell: bash
-        # TODO: Only run pre-commit on changed files
-        if: inputs.chartChangesDetected == 'true'
-        run: |
-          echo "Running pre-commit test-and-cleanup..."
-          # Fix sh files to always be executable
-          find . -name '*.sh' | xargs chmod +x
-          pre-commit run --all || pre-commit run --all
-
-      - name: Fetch and Verify dependencies
-        shell: bash
-        if: steps.list-changed.outputs.detected == 'true'
-        env:
-          charts_path: "./"
-        run: |
-          CHANGED=$(echo '${{ steps.list-changed.outputs.CHANGED_CHARTS }}' | jq --raw-output '.[]')
-          for changed in ${CHANGED}; do
-            .github/scripts/fetch_helm_deps.sh "${changed}"
-          done
-
-      - name: Run Chart Linting
-        continue-on-error: true
-        id: lint
-        if: steps.list-changed.outputs.detected == 'true'
-        env:
-          result_file: /tmp/lint_result.txt
-        run: |
-          CHANGED=$(echo '${{ steps.list-changed.outputs.CHANGED_CHARTS }}' | jq --raw-output '.[]')
-          # If the github.base_ref is empty (eg it runs outside of a PR) it fails back to origin/master
-          .github/scripts/tc-lint.sh '${{ steps.list-changed.outputs.CHANGED_CHARTS }}' "origin/${{ github.base_ref }}"
-
-      - name: Create/Update comment
-        if: steps.list-changed.outputs.detected == 'true'
-        continue-on-error: true
-        uses: thollander/actions-comment-pull-request@dadb7667129e23f12ca3925c90dc5cd7121ab57e # v2
+  lint-charts1:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected1 == 'true'
+    name: Lint charts Part 1
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix1) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          filePath: /tmp/lint_result.txt
-          comment_tag: lint_results
-          mode: recreate
-          GITHUB_TOKEN: ${{ github.token }}
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
 
-      - name: Lint Result
-        if: steps.list-changed.outputs.detected == 'true'
-        shell: bash
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts2:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected2 == 'true'
+    name: Lint charts Part 2
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix2) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts3:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected3 == 'true'
+    name: Lint charts Part 3
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix3) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts4:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected4 == 'true'
+    name: Lint charts Part 4
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix4) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts5:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected5 == 'true'
+    name: Lint charts Part 5
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix5) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  lint-charts6:
+    needs:
+      - generate-lint-matrix
+    if: needs.generate-lint-matrix.outputs.detected6 == 'true'
+    name: Lint charts Part 6
+    strategy:
+      matrix: ${{ fromJson(needs.generate-lint-matrix.outputs.matrix6) }}
+      fail-fast: false
+      max-parallel: 10
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: lint Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
+        with:
+          python-version: "3.10"
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}" || ct lint --config ".github/ct-lint.yaml" --charts "${{ matrix.chart }}"
+
+  # Summarize matrix https://github.community/t/status-check-for-a-matrix-jobs/127354/7
+  lint_success:
+    needs:
+      - generate-lint-matrix
+      - lint-charts1
+      - lint-charts2
+      - lint-charts3
+      - lint-charts4
+      - lint-charts5
+      - lint-charts6
+    if: |
+      always()
+    name: Lint successful
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check lint matrix status
         run: |
-          if [ "${{ steps.lint.outcome }}" != "success" ]; then
-            echo "❌ Linting failed ❌"
-            echo '###############################################################'
-            echo '## 👀 Expand [Run Chart Linting] step to view the results 👀 ##'
-            echo '###############################################################'
+          res1="${{needs.lint-charts1.result}}"
+          res2="${{needs.lint-charts2.result}}"
+          res3="${{needs.lint-charts3.result}}"
+          res4="${{needs.lint-charts4.result}}"
+          res5="${{needs.lint-charts5.result}}"
+          res6="${{needs.lint-charts6.result}}"
+
+          if [[ $res1 == "success" || $res1 == "skipped" ]]; then
+            echo "lint tests 1 successfull..."
+          else
+            echo "lint tests 1 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res2 == "success" || $res2 == "skipped" ]]; then
+            echo "lint tests 2 successfull..."
+          else
+            echo "lint tests 2 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res3 == "success" || $res3 == "skipped" ]]; then
+            echo "lint tests 3 successfull..."
+          else
+            echo "lint tests 3 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res4 == "success" || $res4 == "skipped" ]]; then
+            echo "lint tests 4 successfull..."
+          else
+            echo "lint tests 4 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res5 == "success" || $res5 == "skipped" ]]; then
+            echo "lint tests 5 successfull..."
+          else
+            echo "lint tests 5 error, stopping due to failure..."
+            exit 1
+          fi
+
+          if [[ $res6 == "success" || $res6 == "skipped" ]]; then
+            echo "lint tests 6 successfull..."
+          else
+            echo "lint tests 6 error, stopping due to failure..."
             exit 1
           fi
 

.github/workflows/charts-release.yaml

@@ -11,25 +11,26 @@ on:
       - "charts/**"
 
 jobs:
+
   release-helm:
     runs-on: ubuntu-latest
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 1
-
+          
       - name: Checkout Helm-Staging
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           fetch-depth: 1
           repository: truecharts/helm-staging
           token: ${{ secrets.BOT_TOKEN }}
           path: helm
-
+          
       - name: Fix Pre-Commit issues
         shell: bash
         run: |
@@ -37,7 +38,7 @@ jobs:
           pre-commit run --all ||:
           # Fix sh files to always be executable
           find . -name '*.sh' | xargs chmod +x
-
+          
       - name: Commit Helm Changes
         run: |
           rm -rf helm/charts
@@ -59,7 +60,7 @@ jobs:
     outputs:
       ref: ${{ steps.save-commit-hash.outputs.commit_hash }}
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
       - name: Install Kubernetes tools
         uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
@@ -72,27 +73,13 @@ jobs:
         run: |
           helm repo add truecharts https://charts.truecharts.org
           helm repo add truecharts-library https://library-charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
+          helm repo add bitnami https://charts.bitnami.com/bitnami
+
+          helm repo add prometheus https://prometheus-community.github.io/helm-charts
           helm repo update
 
-      # Optional step if GPG signing is used
-      - name: Prepare GPG key
-        shell: bash
-        run: |
-          gpg_dir=.cr-gpg
-          mkdir -p "$gpg_dir"
-          keyring="$gpg_dir/secring.gpg"
-          base64 -d <<< "$GPG_KEYRING_BASE64" > "$keyring"
-          passphrase_file="$gpg_dir/passphrase"
-          echo "$GPG_PASSPHRASE" > "$passphrase_file"
-          echo "CR_PASSPHRASE_FILE=$passphrase_file" >> "$GITHUB_ENV"
-          echo "CR_KEYRING=$keyring" >> "$GITHUB_ENV"
-        env:
-          GPG_KEYRING_BASE64: "${{ secrets.GPG_KEYRING_BASE64 }}"
-          GPG_PASSPHRASE: "${{ secrets.GPG_PASSPHRASE }}"
-
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 0
@@ -124,7 +111,7 @@ jobs:
           find . -name '*.sh' | xargs chmod +x
 
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         if: |
           steps.collect-changes.outputs.changesDetectedAfterTag == 'true'
         with:
@@ -184,7 +171,6 @@ jobs:
                 mkdir -p website/docs/charts/${train}/${chart} || echo "chart path already exists, continuing..."
                 yes | cp -rf charts/${train}/${chart}/docs/* website/docs/charts/${train}/${chart}/ 2>/dev/null || :
                 yes | cp -rf charts/${train}/${chart}/icon.png website/static/img/hotlink-ok/chart-icons/${chart}.png 2>/dev/null || :
-                yes | cp -rf charts/${train}/${chart}/screenshots/* website/static/img/hotlink-ok/chart-screenshots/${chart}/ 2>/dev/null || :
 
                 # Copy over kept documents
                 mv -f tmp/website/docs/charts/${train}/${chart}/CHANGELOG.md website/docs/charts/${train}/${chart}/CHANGELOG.md 2>/dev/null || :
@@ -237,9 +223,10 @@ jobs:
           git add --all
           git commit -sm "Commit released docs for TrueCharts" || exit 0
           git push
+        
 
       - name: Checkout Catalog
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         if: |
           steps.collect-changes.outputs.changesDetectedAfterTag == 'true'
         with:
@@ -285,22 +272,6 @@ jobs:
           git config user.name "TrueCharts-Bot"
           git config user.email "bot@truecharts.org"
 
-        # Optional step if GPG signing is used
-      - name: Prepare GPG key
-        shell: bash
-        run: |
-          gpg_dir=.cr-gpg
-          mkdir -p "$gpg_dir"
-          keyring="$gpg_dir/secring.gpg"
-          base64 -d <<< "$GPG_KEYRING_BASE64" > "$keyring"
-          passphrase_file="$gpg_dir/passphrase"
-          echo "$GPG_PASSPHRASE" > "$passphrase_file"
-          echo "CR_PASSPHRASE_FILE=$passphrase_file" >> "$GITHUB_ENV"
-          echo "CR_KEYRING=$keyring" >> "$GITHUB_ENV"
-        env:
-          GPG_KEYRING_BASE64: "${{ secrets.GPG_KEYRING_BASE64 }}"
-          GPG_PASSPHRASE: "${{ secrets.GPG_PASSPHRASE }}"
-
       - name: Run chart-releaser for dependency apps
         uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
         if: |
@@ -308,7 +279,6 @@ jobs:
         with:
           charts_dir: charts/dependency
           charts_repo_url: https://deps.truecharts.org
-          config: cr.yaml
         env:
           CR_TOKEN: "${{ secrets.BOT_TOKEN }}"
           CR_SKIP_EXISTING: "true"

.github/workflows/charts-test.yaml

@@ -9,11 +9,42 @@ on:
       chartChangesDetected:
         required: true
         type: string
-      modifiedCharts:
-        required: true
-        type: string
 
 jobs:
+  unit-test:
+    name: Run unit tests
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          fetch-depth: 0
+          ref: ${{ inputs.checkoutCommit }}
+
+      - name: Install Kubernetes tools
+        uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
+        with:
+          setup-tools: |
+            helmv3
+          helm: "3.8.0"
+
+      - name: Install Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version: 2.7
+
+      - name: Install dependencies
+        env:
+          RUBYJQ_USE_SYSTEM_LIBRARIES: 1
+        run: |
+          sudo apt-get update
+          sudo apt-get install libjq-dev
+          bundle install
+
+      - name: Run tests
+        run: |
+          bundle exec m -r ./test/
+
   generate-install-matrix:
     name: Generate matrix for install
     runs-on: ubuntu-latest
@@ -50,57 +81,51 @@ jobs:
       detected6: ${{ steps.list-changed.outputs.detected6 }}
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
-      - name: Install go-yq
-        run: |
-          mkdir -p $HOME/.local/bin
-          wget https://github.com/mikefarah/yq/releases/download/v4.26.1/yq_linux_amd64 -O $HOME/.local/bin/go-yq && \
-          chmod +x $HOME/.local/bin/go-yq
-          echo "$HOME/.local/bin" >> $GITHUB_PATH
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Run chart-testing (list-changed)
         id: list-changed
         if: inputs.chartChangesDetected == 'true'
-        shell: bash
         run: |
-          CHARTS="${{ inputs.modifiedCharts }}"
-          echo "Modified Charts: ${CHARTS}"
-          EXCLUDED_JSON=$(go-yq eval -o=json '.excluded-charts // []' .github/ct-install.yaml)
-          CHARTS_JSON=$(echo ${CHARTS} | jq --raw-input '.' | jq --compact-output --slurp '.' | jq 'map(. |= split(" "))[]' )
-          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED_JSON}, \"all\": ${CHARTS_JSON}}" | jq --compact-output '.all-.excluded')
+          EXCLUDED=$(yq eval -o=json '.excluded-charts // []' .github/ct-install.yaml)
+          CHARTS=$(ct list-changed --config .github/ct-install.yaml)
+          CHARTS_JSON=$(echo "${CHARTS}" | jq -R -s -c 'split("\n")[:-1]')
+          OUTPUT_JSON=$(echo "{\"excluded\": ${EXCLUDED}, \"all\": ${CHARTS_JSON}}" | jq -c '.all-.excluded')
           OUTPUT_JSON1=$((echo $OUTPUT_JSON | jq -r -c '.[:50]'; echo $OUTPUT_JSON | jq -r -c '.[301:350]'; echo $OUTPUT_JSON | jq -r -c '.[601:650]'; echo $OUTPUT_JSON | jq -r -c '.[901:950]'; echo $OUTPUT_JSON | jq -r -c '.[1201:1250]') | jq -s add)
           OUTPUT_JSON2=$((echo $OUTPUT_JSON | jq -r -c '.[51:100]'; echo $OUTPUT_JSON | jq -r -c '.[351:400]'; echo $OUTPUT_JSON | jq -r -c '.[651:700]'; echo $OUTPUT_JSON | jq -r -c '.[951:1000]'; echo $OUTPUT_JSON | jq -r -c '.[1251:1300]') | jq -s add)
           OUTPUT_JSON3=$((echo $OUTPUT_JSON | jq -r -c '.[101:150]'; echo $OUTPUT_JSON | jq -r -c '.[401:450]'; echo $OUTPUT_JSON | jq -r -c '.[701:750]'; echo $OUTPUT_JSON | jq -r -c '.[1001:1050]'; echo $OUTPUT_JSON | jq -r -c '.[1301:1350]') | jq -s add)
           OUTPUT_JSON4=$((echo $OUTPUT_JSON | jq -r -c '.[151:200]'; echo $OUTPUT_JSON | jq -r -c '.[451:500]'; echo $OUTPUT_JSON | jq -r -c '.[751:800]'; echo $OUTPUT_JSON | jq -r -c '.[1051:1100]'; echo $OUTPUT_JSON | jq -r -c '.[1351:1400]') | jq -s add)
           OUTPUT_JSON5=$((echo $OUTPUT_JSON | jq -r -c '.[201:250]'; echo $OUTPUT_JSON | jq -r -c '.[501:550]'; echo $OUTPUT_JSON | jq -r -c '.[801:850]'; echo $OUTPUT_JSON | jq -r -c '.[1101:1150]'; echo $OUTPUT_JSON | jq -r -c '.[1401:1450]') | jq -s add)
           OUTPUT_JSON6=$((echo $OUTPUT_JSON | jq -r -c '.[251:300]'; echo $OUTPUT_JSON | jq -r -c '.[551:600]'; echo $OUTPUT_JSON | jq -r -c '.[851:900]'; echo $OUTPUT_JSON | jq -r -c '.[1151:1200]'; echo $OUTPUT_JSON | jq -r -c '.[1451:1500]') | jq -s add)
-          echo charts1=${OUTPUT_JSON1} >> $GITHUB_OUTPUT
-          echo charts2=${OUTPUT_JSON2} >> $GITHUB_OUTPUT
-          echo charts3=${OUTPUT_JSON3} >> $GITHUB_OUTPUT
-          echo charts4=${OUTPUT_JSON4} >> $GITHUB_OUTPUT
-          echo charts5=${OUTPUT_JSON5} >> $GITHUB_OUTPUT
-          echo charts6=${OUTPUT_JSON6} >> $GITHUB_OUTPUT
+          echo ::set-output name=charts1::${OUTPUT_JSON1}
+          echo ::set-output name=charts2::${OUTPUT_JSON2}
+          echo ::set-output name=charts3::${OUTPUT_JSON3}
+          echo ::set-output name=charts4::${OUTPUT_JSON4}
+          echo ::set-output name=charts5::${OUTPUT_JSON5}
+          echo ::set-output name=charts6::${OUTPUT_JSON6}
           if [[ $(echo ${OUTPUT_JSON1} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected1=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected1::true"
           fi
           if [[ $(echo ${OUTPUT_JSON2} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected2=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected2::true"
           fi
           if [[ $(echo ${OUTPUT_JSON3} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected3=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected3::true"
           fi
           if [[ $(echo ${OUTPUT_JSON4} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected4=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected4::true"
           fi
           if [[ $(echo ${OUTPUT_JSON5} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected5=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected5::true"
           fi
           if [[ $(echo ${OUTPUT_JSON6} | jq -c '. | length') -gt 0 ]]; then
-            echo "detected6=true" >> $GITHUB_OUTPUT
+            echo "::set-output name=detected6::true"
           fi
 
   install-charts1:
@@ -115,9 +140,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
       - name: Install Kubernetes tools
@@ -125,14 +150,14 @@ jobs:
         with:
           setup-tools: |
             helmv3
-          helm: "3.9.4"
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@bd6b4b6205c4dbad673328db7b31b7fab9e241c0 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
@@ -141,27 +166,12 @@ jobs:
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          ## TODO: Move to our Helm Charts
-          ## TODO: Only add when required
-          if [[ "${{ matrix.chart }}" != "charts/operators/metallb" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.13.10/config/manifests/metallb-native.yaml --server-side --force-conflicts || echo "error fetching metallb manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.20/releases/cnpg-1.20.0.yaml  --server-side --force-conflicts || echo "error fetching cnpg manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            kubectl apply -f  https://github.com/prometheus-operator/prometheus-operator/releases/download/v0.65.2/bundle.yaml --server-side --force-conflicts || echo "error fetching prometheus operator manifest"
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts2:
     needs:
@@ -175,9 +185,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
       - name: Install Kubernetes tools
@@ -185,14 +195,14 @@ jobs:
         with:
           setup-tools: |
             helmv3
-          helm: "3.9.4"
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@bd6b4b6205c4dbad673328db7b31b7fab9e241c0 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
@@ -206,20 +216,8 @@ jobs:
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" != "charts/operators/metallb" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.13.10/config/manifests/metallb-native.yaml --server-side --force-conflicts || echo "error fetching metallb manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.17/releases/cnpg-1.17.5.yaml  --server-side --force-conflicts || echo "error fetching cnpg manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            kubectl apply -f  https://github.com/prometheus-operator/prometheus-operator/releases/download/v0.65.2/bundle.yaml --server-side --force-conflicts || echo "error fetching prometheus operator manifest"
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts3:
     needs:
@@ -233,9 +231,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
       - name: Install Kubernetes tools
@@ -243,14 +241,14 @@ jobs:
         with:
           setup-tools: |
             helmv3
-          helm: "3.9.4"
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@bd6b4b6205c4dbad673328db7b31b7fab9e241c0 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
@@ -259,25 +257,12 @@ jobs:
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" != "charts/operators/metallb" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.13.10/config/manifests/metallb-native.yaml --server-side --force-conflicts || echo "error fetching metallb manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.17/releases/cnpg-1.17.5.yaml  --server-side --force-conflicts || echo "error fetching cnpg manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            kubectl apply -f  https://github.com/prometheus-operator/prometheus-operator/releases/download/v0.65.2/bundle.yaml --server-side --force-conflicts || echo "error fetching prometheus operator manifest"
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts4:
     needs:
@@ -291,9 +276,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
       - name: Install Kubernetes tools
@@ -301,14 +286,14 @@ jobs:
         with:
           setup-tools: |
             helmv3
-          helm: "3.9.4"
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@bd6b4b6205c4dbad673328db7b31b7fab9e241c0 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
@@ -317,25 +302,12 @@ jobs:
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" != "charts/operators/metallb" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.13.10/config/manifests/metallb-native.yaml --server-side --force-conflicts || echo "error fetching metallb manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.17/releases/cnpg-1.17.5.yaml  --server-side --force-conflicts || echo "error fetching cnpg manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            kubectl apply -f  https://github.com/prometheus-operator/prometheus-operator/releases/download/v0.65.2/bundle.yaml --server-side --force-conflicts || echo "error fetching prometheus operator manifest"
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts5:
     needs:
@@ -349,9 +321,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
       - name: Install Kubernetes tools
@@ -359,14 +331,14 @@ jobs:
         with:
           setup-tools: |
             helmv3
-          helm: "3.9.4"
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@bd6b4b6205c4dbad673328db7b31b7fab9e241c0 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
@@ -375,25 +347,12 @@ jobs:
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" != "charts/operators/metallb" ]]; then
-            kubectl apply -f --server-side --force-conflicts https://raw.githubusercontent.com/metallb/metallb/v0.13.10/config/manifests/metallb-native.yaml
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            kubectl apply -f --server-side --force-conflicts https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.17/releases/cnpg-1.17.5.yaml
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            kubectl apply -f --server-side --force-conflicts --server-side --force-conflicts https://github.com/prometheus-operator/prometheus-operator/releases/download/v0.65.2/bundle.yaml
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   install-charts6:
     needs:
@@ -407,9 +366,9 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
-          fetch-depth: 1
+          fetch-depth: 0
           ref: ${{ inputs.checkoutCommit }}
 
       - name: Install Kubernetes tools
@@ -417,14 +376,14 @@ jobs:
         with:
           setup-tools: |
             helmv3
-          helm: "3.9.4"
+          helm: "3.8.0"
 
-      - uses: actions/setup-python@bd6b4b6205c4dbad673328db7b31b7fab9e241c0 # v4
+      - uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4
         with:
-          python-version: "3.11"
+          python-version: "3.10"
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@e8788873172cb653a90ca2e819d79d65a66d4e76 # v2.4.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec # tag=v2.3.1
 
       - name: Create k3d cluster
         uses: nolar/setup-k3d-k3s@v1
@@ -433,25 +392,12 @@ jobs:
           # Flags found here https://github.com/k3d-io/k3d
           k3d-args: --k3s-arg --disable=metrics-server@server:*
           github-token: ${{ secrets.GITHUB_TOKEN }}
-
       - name: Remove node taints
         run: |
           kubectl taint --all=true nodes node.cloudprovider.kubernetes.io/uninitialized- || true
 
-      - name: Add Dependencies
-        run: |
-          if [[ "${{ matrix.chart }}" != "charts/operators/metallb" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.13.10/config/manifests/metallb-native.yaml --server-side --force-conflicts || echo "error fetching metallb manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/cloudnative-pg" ]]; then
-            kubectl apply -f https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.17/releases/cnpg-1.17.5.yaml  --server-side --force-conflicts || echo "error fetching cnpg manifest"
-          fi
-          if [[ "${{ matrix.chart }}" != "charts/operators/prometheus-operator" ]]; then
-            kubectl apply -f  https://github.com/prometheus-operator/prometheus-operator/releases/download/v0.65.2/bundle.yaml --server-side --force-conflicts || echo "error fetching prometheus operator manifest"
-          fi
-
       - name: Run chart-testing (install)
-        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" # --upgrade
+        run: ct install --config ".github/ct-install.yaml" --charts "${{ matrix.chart }}" #--upgrade
 
   # Summarize matrix https://github.community/t/status-check-for-a-matrix-jobs/127354/7
   install_success:
@@ -477,43 +423,43 @@ jobs:
           res6="${{needs.install-charts6.result}}"
 
           if [[ $res1 == "success" || $res1 == "skipped" ]]; then
-            echo "Install test suite [1] was successful..."
+            echo "install tests 1 successfull..."
           else
-            echo "Install test suite [1] failed, stopping..."
+            echo "install tests 1 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res2 == "success" || $res2 == "skipped" ]]; then
-            echo "Install test suite [2] was successful..."
+            echo "install tests 2 successfull..."
           else
-            echo "Install test suite [2] failed, stopping..."
+            echo "install tests 2 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res3 == "success" || $res3 == "skipped" ]]; then
-            echo "Install test suite [3] was successful..."
+            echo "install tests 3 successfull..."
           else
-            echo "Install test suite [3] failed, stopping..."
+            echo "install tests 3 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res4 == "success" || $res4 == "skipped" ]]; then
-            echo "Install test suite [4] was successful..."
+            echo "install tests 4 successfull..."
           else
-            echo "Install test suite [4] failed, stopping..."
+            echo "install tests 4 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res5 == "success" || $res5 == "skipped" ]]; then
-            echo "Install test suite [5] was successful..."
+            echo "install tests 5 successfull..."
           else
-            echo "Install test suite [5] failed, stopping..."
+            echo "install tests 5 error, stopping due to failure..."
             exit 1
           fi
 
           if [[ $res6 == "success" || $res6 == "skipped" ]]; then
-            echo "Install test suite [6] was successful..."
+            echo "install tests 6 successfull..."
           else
-            echo "Install test suite [6] failed, stopping..."
+            echo "install tests 6 error, stopping due to failure..."
             exit 1
           fi

.github/workflows/daily.yaml

@@ -17,10 +17,10 @@ jobs:
     runs-on: ubuntu-latest
     name: "Generate readme files"
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 1
@@ -31,7 +31,7 @@ jobs:
       - name: generate readme.md
         shell: bash
         run: |
-          for train in stable operators SCALE incubator games enterprise develop non-free deprecated dependency core; do
+          for train in stable SCALE incubator games enterprise develop non-free deprecated dependency core; do
             for chart in charts/${train}/*; do
               if [ -d "${chart}" ]; then
                 echo "Generating readme.md for ${train}/${chart}"
@@ -44,7 +44,7 @@ jobs:
       - name: generate HelmIgnore
         shell: bash
         run: |
-          for train in stable operators SCALE incubator games enterprise develop non-free deprecated dependency core; do
+          for train in stable SCALE incubator games enterprise develop non-free deprecated dependency core; do
             for chart in charts/${train}/*; do
               if [ -d "${chart}" ]; then
                 echo "Attempting to sync HelmIgnore file for: ${chartname}"
@@ -55,7 +55,7 @@ jobs:
           done
 
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           repository: truecharts/website
           path: website
@@ -196,7 +196,7 @@ jobs:
           }
           export -f sync_tag
 
-          for train in enterprise stable operators incubator dependency; do
+          for train in enterprise stable incubator dependency; do
             echo "Correcting Chart.yaml for Train: ${train}..."
             for chart in $(ls "charts/${train}"); do
               echo "Correcting Chart.yaml for Chart: ${chart}..."
@@ -204,15 +204,6 @@ jobs:
             done
           done
 
-      - name: Fix Fixable Pre-Commit issues
-        shell: bash
-        if: inputs.chartChangesDetected == 'true'
-        run: |
-          echo "Running pre-commit test-and-cleanup..."
-          pre-commit run --all ||:
-          # Fix sh files to always be executable
-          find . -name '*.sh' | xargs chmod +x
-
       - name: Cleanup
         run: |
           rm -rf changes.json
@@ -231,7 +222,7 @@ jobs:
     runs-on: ubuntu-latest
     name: "Generate Security Reports"
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
       - name: Install Kubernetes tools
         uses: yokawasa/action-setup-kube-tools@af4ebb1af1efd30c5bd84a2e9773355ad6362a33 # v0.9.3
@@ -244,11 +235,12 @@ jobs:
         run: |
           helm repo add truecharts https://charts.truecharts.org
           helm repo add truecharts-library https://library-charts.truecharts.org
-          helm repo add truecharts-deps https://deps.truecharts.org
+          helm repo add bitnami https://charts.bitnami.com/bitnami
+          helm repo add prometheus https://prometheus-community.github.io/helm-charts
           helm repo update
 
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 1
@@ -257,7 +249,7 @@ jobs:
         run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
 
       - name: Checkout website
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           fetch-depth: 1
           repository: truecharts/website
@@ -334,7 +326,7 @@ jobs:
               sed -i 's|<hr>|<hr />|g' website/docs/charts/${train}/${chartname}/helm-security.md ||:
               sed -i 's|<hr>|<hr />|g' website/docs/charts/${train}/${chartname}/container-security.md ||:
               }
-          for train in enterprise stable operators incubator dependency; do
+          for train in enterprise stable incubator dependency; do
             echo "Processing Charts for Train: ${train}..."
             for chart in $(ls "charts/${train}"); do
               render "charts/${train}/${chart}" ${chart} ${train} || echo "rendering failed for ${chart}"
@@ -360,7 +352,7 @@ jobs:
   lock-threads:
     runs-on: ubuntu-latest
     steps:
-      - uses: dessant/lock-threads@be8aa5be94131386884a6da4189effda9b14aa21 # v4
+      - uses: dessant/lock-threads@c1b35aecc5cdb1a34539d14196df55838bb2f836 # v4
         with:
           github-token: ${{ secrets.BOT_TOKEN }}
           issue-inactive-days: "7"
@@ -377,7 +369,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
           fetch-depth: 1

.github/workflows/meta-label-pr-ci-status.yaml

@@ -0,0 +1,105 @@
+---
+name: "Metadata: Label pull requests CI status"
+
+on:
+  workflow_run:
+    workflows:
+      - "Pull Request: Validate"
+    types:
+      - completed
+
+jobs:
+  label-ci-status:
+    name: Label CI status
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+
+      - name: Download workflow artifact
+        uses: dawidd6/action-download-artifact@246dbf436b23d7c49e21a7ab8204ca9ecd1fe615 # v2.27.0
+        with:
+          github_token: ${{ secrets.BOT_TOKEN }}
+          workflow: pr-validate.yaml
+          run_id: ${{ github.event.workflow_run.id }}
+          name: pr_metadata
+          path: ./pr_metadata
+
+      - name: Read the pr_number file
+        id: pr_num_reader
+        uses: juliangruber/read-file-action@02bbba9876a8f870efd4ad64e3b9088d3fb94d4b # tag=v1.1.6
+        with:
+          path: ./pr_metadata/pr_number.txt
+
+      - name: "Get workflow job status"
+        uses: actions/github-script@98814c53be79b1d30f795b907e553d8679345975 # v6
+        id: get-workflow-jobs
+        with:
+          github-token: ${{ secrets.BOT_TOKEN }}
+          # https://mhagemann.medium.com/the-ultimate-way-to-slugify-a-url-string-in-javascript-b8e4a0d849e1
+          script: |
+            function slugify(string) {
+              const a = 'àáâäæãåāăąçćčđďèéêëēėęěğǵḧîïíīįìıİłḿñńǹňôöòóœøōõőṕŕřßśšşșťțûüùúūǘůűųẃẍÿýžźż·/_,:;'
+              const b = 'aaaaaaaaaacccddeeeeeeeegghiiiiiiiilmnnnnoooooooooprrsssssttuuuuuuuuuwxyyzzz------'
+              const p = new RegExp(a.split('').join('|'), 'g')
+              return string.toString().toLowerCase()
+                .replace(/\s+/g, '-') // Replace spaces with -
+                .replace(p, c => b.charAt(a.indexOf(c))) // Replace special characters
+                .replace(/&/g, '-and-') // Replace & with 'and'
+                .replace(/[^\w\-]+/g, '') // Remove all non-word characters
+                .replace(/\-\-+/g, '-') // Replace multiple - with single -
+                .replace(/^-+/, '') // Trim - from start of text
+                .replace(/-+$/, '') // Trim - from end of text
+            }
+            let result = new Object
+            const wfJobs = await github.rest.actions.listJobsForWorkflowRun({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              run_id: context.payload.workflow_run.id,
+            })
+            for (const job of wfJobs.data.jobs) {
+              result[slugify(job.name)] = job.conclusion
+            }
+            console.log(result)
+            return result
+      - name: Label pre-commit status
+        uses: ./.github/actions/label-from-status
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          issue-number: ${{ steps.pr_num_reader.outputs.content }}
+          prefix: precommit
+          job-status: |-
+            ${{ fromJSON(steps.get-workflow-jobs.outputs.result).pre-commit-check-run-pre-commit-checks || 'skipped' }}
+          remove-on-skipped: true
+
+      #- name: Label changelog status
+      #  uses: ./.github/actions/label-from-status
+      #  with:
+      #    token: ${{ secrets.BOT_TOKEN }}
+      #    issue-number: ${{ steps.pr_num_reader.outputs.content }}
+      #    prefix: changelog
+      #    job-status: |-
+      #      ${{ fromJSON(steps.get-workflow-jobs.outputs.result).charts-changelog-validate-changelog || 'skipped' }}
+      #    remove-on-skipped: true
+
+      - name: Label chart lint status
+        uses: ./.github/actions/label-from-status
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          issue-number: ${{ steps.pr_num_reader.outputs.content }}
+          prefix: lint
+          job-status: |-
+            ${{ fromJSON(steps.get-workflow-jobs.outputs.result).charts-lint-lint-successful || 'skipped' }}
+          remove-on-skipped: true
+
+      - name: Label chart install status
+        uses: ./.github/actions/label-from-status
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          issue-number: ${{ steps.pr_num_reader.outputs.content }}
+          prefix: install
+          job-status: |-
+            ${{ fromJSON(steps.get-workflow-jobs.outputs.result).charts-test-install-successful || 'skipped' }}
+          remove-on-skipped: true

.github/workflows/metadata-label-commenter.yaml

@@ -0,0 +1,32 @@
+---
+name: "Metadata: Label Commenter"
+
+on:
+  workflow_dispatch:
+  issues:
+    types:
+      - labeled
+      - unlabeled
+  pull_request_target:
+    types:
+      - labeled
+      - unlabeled
+
+permissions:
+  contents: read
+  issues: write
+  pull-requests: write
+
+jobs:
+  comment:
+    name: Label commenter
+    runs-on: ubuntu-20.04
+    steps:
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+        with:
+          token: ${{ secrets.BOT_TOKEN }}
+          ref: master
+
+      - uses: peaceiris/actions-label-commenter@f0dbbef043eb1b150b566db36b0bdc8b7f505579 # tag=v1
+        with:
+          github_token: ${{ secrets.BOT_TOKEN }}

.github/workflows/metadata-label-pr.yaml

@@ -0,0 +1,33 @@
+---
+name: "Metadata: Label pull requests"
+
+on:
+  workflow_dispatch:
+  pull_request_target:
+    types:
+      - opened
+      - edited
+      - closed
+      - reopened
+      - ready_for_review
+      - synchronize
+
+jobs:
+  label-size:
+    name: Label Size
+    runs-on: ubuntu-latest
+    steps:
+      - name: Label Size
+        uses: pascalgn/size-label-action@1619680c5ac1ef360b944bb56a57587ba4aa2af8 # tag=v0.4.3
+        env:
+          GITHUB_TOKEN: "${{ secrets.BOT_TOKEN }}"
+        with:
+          sizes: >
+            {
+              "0": "XS",
+              "20": "S",
+              "50": "M",
+              "200": "L",
+              "800": "XL",
+              "2000": "XXL"
+            }

.github/workflows/pr-metadata.yaml

@@ -0,0 +1,60 @@
+name: "Pull Request: Get metadata"
+
+on:
+  workflow_call:
+    outputs:
+      isRenovatePR:
+        description: "Is the PR coming from Renovate?"
+        value: ${{ jobs.pr-metadata.outputs.isRenovatePR }}
+      isFork:
+        description: "Is the PR coming from a forked repo?"
+        value: ${{ jobs.pr-metadata.outputs.isFork }}
+      addedOrModified:
+        description: "Does the PR contain any changes?"
+        value: ${{ jobs.pr-changes.outputs.addedOrModified }}
+      addedOrModifiedFiles:
+        description: "A list of the files changed in this PR"
+        value: ${{ jobs.pr-changes.outputs.addedOrModifiedFiles }}
+      addedOrModifiedCharts:
+        description: "A list of the charts changed in this PR"
+        value: ${{ jobs.pr-changes.outputs.addedOrModifiedCharts }}
+
+jobs:
+  pr-metadata:
+    name: Collect PR metadata
+    runs-on: ubuntu-latest
+    outputs:
+      isRenovatePR: ${{ startsWith(steps.branch-name.outputs.current_branch, 'renovate/') }}
+      isFork: ${{ github.event.pull_request.head.repo.full_name != github.repository }}
+    steps:
+      - name: Get branch name
+        id: branch-name
+        uses: tj-actions/branch-names@2e5354c6733793113f416314375826df030ada23 # v6.5
+
+      - name: Save PR data to file
+        env:
+          PR_NUMBER: ${{ github.event.number }}
+        run: |
+          echo $PR_NUMBER > pr_number.txt
+
+      - name: Store pr data in artifact
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3
+        with:
+          name: pr_metadata
+          path: ./pr_number.txt
+          retention-days: 5
+
+  pr-changes:
+    name: Collect PR changes
+    runs-on: ubuntu-latest
+    outputs:
+      addedOrModified: ${{ steps.collect-changes.outputs.changesDetected }}
+      addedOrModifiedFiles: ${{ steps.collect-changes.outputs.addedOrModifiedFiles }}
+      addedOrModifiedCharts: ${{ steps.collect-changes.outputs.addedOrModifiedCharts }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
+
+      - name: Collect changes
+        id: collect-changes
+        uses: ./.github/actions/collect-changes

.github/workflows/pr-validate.yaml

@@ -8,47 +8,52 @@ concurrency:
   # cancel-in-progress: true
 
 jobs:
-  pr-changes:
-    name: Collect PR changes
-    runs-on: ubuntu-latest
-    outputs:
-      addedOrModified: ${{ steps.collect-changes.outputs.changesDetected }}
-      addedOrModifiedFiles: ${{ steps.collect-changes.outputs.addedOrModifiedFiles }}
-      addedOrModifiedCharts: ${{ steps.collect-changes.outputs.addedOrModifiedCharts }}
-    steps:
-      - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+  pr-metadata:
+    uses: ./.github/workflows/pr-metadata.yaml
 
-      - name: Collect changes
-        id: collect-changes
-        uses: ./.github/actions/collect-changes
+  pre-commit-check:
+    uses: truecharts/.github/.github/workflows/pre-commit-check.yaml@main
+    needs:
+      - pr-metadata
+    with:
+      modifiedFiles: ${{ needs.pr-metadata.outputs.addedOrModifiedFiles }}
+
+  #charts-changelog:
+  #  uses: ./.github/workflows/charts-changelog.yaml
+  #  needs:
+  #    - pr-metadata
+  #    - pre-commit-check
+  #  with:
+  #    isRenovatePR: ${{ needs.pr-metadata.outputs.isRenovatePR }}
+  #    modifiedCharts: ${{ needs.pr-metadata.outputs.addedOrModifiedCharts }}
 
   charts-lint:
     uses: ./.github/workflows/charts-lint.yaml
     needs:
-      - pr-changes
+      - pr-metadata
+    #  - charts-changelog
     with:
       checkoutCommit: ${{ needs.charts-changelog.outputs.commitHash }}
-      chartChangesDetected: ${{ needs.pr-changes.outputs.addedOrModified }}
-      modifiedFiles: ${{ needs.pr-changes.outputs.addedOrModifiedFiles }}
-      modifiedCharts: ${{ needs.pr-changes.outputs.addedOrModifiedCharts }}
+      chartChangesDetected: ${{ needs.pr-metadata.outputs.addedOrModified }}
+
   charts-test:
     uses: ./.github/workflows/charts-test.yaml
     needs:
-      - pr-changes
+      - pr-metadata
+      #  - charts-changelog
       - charts-lint
     with:
       checkoutCommit: ${{ needs.charts-changelog.outputs.commitHash }}
-      chartChangesDetected: ${{ needs.pr-changes.outputs.addedOrModified }}
-      modifiedCharts: ${{ needs.pr-changes.outputs.addedOrModifiedCharts }}
+      chartChangesDetected: ${{ needs.pr-metadata.outputs.addedOrModified }}
 
   catalog-test:
     uses: ./.github/workflows/catalog-test.yaml
     needs:
-      - pr-changes
+      - pr-metadata
+    #  - charts-changelog
     with:
       checkoutCommit: ${{ needs.charts-changelog.outputs.commitHash }}
-      chartChangesDetected: ${{ needs.pr-changes.outputs.addedOrModified }}
+      chartChangesDetected: ${{ needs.pr-metadata.outputs.addedOrModified }}
 
   print_head_msg:
     name: print commit message
@@ -57,7 +62,7 @@ jobs:
       head-commit-message: ${{ steps.get_head_commit_message.outputs.headCommitMsg }}
     steps:
       - name: Get repo
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           ref: ${{ github.event.pull_request.head.sha }}
       - name: verbose head git commit message
@@ -68,7 +73,7 @@ jobs:
 
   automerge-and-approve:
     needs:
-      - pr-changes
+      - pr-metadata
       - catalog-test
       - charts-test
       - charts-lint
@@ -86,4 +91,3 @@ jobs:
           GITHUB_TOKEN: "${{ secrets.BOT_TOKEN }}"
           UPDATE_RETRIES: 12
           UPDATE_RETRY_SLEEP: 60000
-          MERGE_METHOD: squash

.github/workflows/prune.yaml

@@ -9,7 +9,7 @@ jobs:
     name: "prune old releases"
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           fetch-depth: 0
       - uses: actions/delete-package-versions@0d39a63126868f5eefaa47169615edd3c0f61e20 # v4

.github/workflows/renovate-bump.yaml

@@ -12,14 +12,14 @@ jobs:
     name: Get changed Apps
     runs-on: ubuntu-20.04
     container:
-      image: ghcr.io/truecharts/devcontainer:3.1.10@sha256:c239addf725eb5cedf79517f8089fdafdc32b5270d1893ee87ae6e511b9bcae3
+      image: ghcr.io/truecharts/devcontainer:v3.1.1@sha256:44047909bbf54cb1ce3551ae0b342244a5bdcd62562a7f2f07caad4bf8856ee4
     steps:
-      - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         name: Checkout
         with:
           fetch-depth: 0
           token: ${{ secrets.BOT_TOKEN }}
-      - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+      - uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         name: Checkout
         with:
           fetch-depth: 0
@@ -117,8 +117,6 @@ jobs:
               train="games"
             elif test -f "./charts/enterprise/${chart}/Chart.yaml"; then
               train="enterprise"
-            elif test -f "./charts/operators/${chart}/Chart.yaml"; then
-              train="operators"
             else
               train="incubator"
             fi

.github/workflows/renovate.yml

@@ -8,11 +8,11 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
         with:
           token: ${{ secrets.BOT_TOKEN }}
       - name: Self-hosted Renovate
-        uses: renovatebot/github-action@13d5bade1b209427c72a08dee34b078ddc99eeec # v38.1.6
+        uses: renovatebot/github-action@95cbcd7e8b9d0d69e15ba26208631839ce7eee48 # v36.0.2
         with:
           configurationFile: .github/renovate-config.js
           token: ${{ secrets.BOT_TOKEN }}

.github/workflows/schedule-sync-labels.yaml

@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3
         with:
           token: ${{ secrets.BOT_TOKEN }}
 

.github/yaml-lint-conf.yaml

@@ -1,56 +0,0 @@
----
-rules:
-  anchors:
-    forbid-undeclared-aliases: true
-  braces:
-    forbid: non-empty
-    min-spaces-inside: 0
-    max-spaces-inside: 0
-    min-spaces-inside-empty: -1
-    max-spaces-inside-empty: -1
-  brackets:
-    forbid: false
-    min-spaces-inside: 0
-    max-spaces-inside: 0
-    min-spaces-inside-empty: -1
-    max-spaces-inside-empty: -1
-  colons:
-    max-spaces-before: 0
-    max-spaces-after: 1
-  commas:
-    max-spaces-before: 0
-    min-spaces-after: 1
-    max-spaces-after: 1
-  comments:
-    require-starting-space: true
-    min-spaces-from-content: 2
-  # No --- to start a file
-  document-start: disable
-  document-end: disable
-  empty-lines:
-    max: 1
-    max-start: 0
-    max-end: 0
-  float-values:
-    require-numeral-before-decimal: true
-    forbid-scientific-notation: true
-    forbid-nan: true
-    forbid-inf: true
-  hyphens:
-    max-spaces-after: 1
-  indentation:
-    spaces: 2
-    indent-sequences: true
-    check-multi-line-strings: false
-  key-duplicates: enable
-  # Lines can be any length
-  line-length: disable
-  new-line-at-end-of-file: enable
-  new-lines:
-    type: unix
-  octal-values:
-    forbid-implicit-octal: true
-    forbid-explicit-octal: true
-  trailing-spaces: enable
-  truthy:
-    allowed-values: ["true", "false"]

.pre-commit-config.yaml

@@ -22,7 +22,7 @@ repos:
       - id: fix-byte-order-marker # removes utf-8 byte order marker.
       - id: requirements-txt-fixer # sorts entries in requirements.txt.
       - id: check-added-large-files # prevents giant files from being committed.
-        exclude: \.(png|jpg|jpeg|svg|yaml|yml|tpl)$
+        exclude: \.(png|jpg|jpeg|svg)$
       - id: check-yaml # checks yaml files for parseable syntax.
         exclude: (templates\/.*|crds\/.*|questions.yaml|chart_schema.yaml)
       - id: detect-private-key # detects the presence of private keys.

charts/dependency/clickhouse/Chart.yaml

@@ -1,9 +1,9 @@
 apiVersion: v2
-appVersion: "23.5.2.7"
+appVersion: "23.2.1.253"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.3
+    version: 12.4.21
 deprecated: false
 description: ClickHouse is a column-oriented database management system (DBMS) for online analytical processing of queries (OLAP).
 home: https://truecharts.org/charts/dependency/clickhouse
@@ -22,7 +22,7 @@ sources:
   - https://github.com/truecharts/charts/tree/master/charts/dependency/clickhouse
   - https://clickhouse.com/
 type: application
-version: 5.0.45
+version: 5.0.12
 annotations:
   truecharts.org/catagories: |
     - database

charts/dependency/clickhouse/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: clickhouseDatabase
     group: "App Configuration"
     label: "Database Name"
@@ -70,6 +69,7 @@ questions:
                               default: 8123
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/clickhouse/values.yaml

@@ -1,7 +1,7 @@
 image:
   repository: tccr.io/truecharts/clickhouse
   pullPolicy: IfNotPresent
-  tag: v23.5.2.7@sha256:cd180068694c4ebe006381524d917e27b4d579d8e77c601822c2bb57f24dfbf3
+  tag: 23.2.1.2537@sha256:669278d98936a2d12bf8f331067afb6a34e5570fdcb37b854bb5d0b2d8f30108
 
 workload:
   main:

charts/dependency/kube-state-metrics/Chart.yaml

@@ -1,29 +0,0 @@
-apiVersion: v2
-appVersion: "2.9.2"
-dependencies:
-  - name: common
-    repository: https://library-charts.truecharts.org
-    version: 12.14.3
-deprecated: false
-description: kube-state-metrics is a simple service that listens to the Kubernetes API server and generates metrics about the state of the objects.
-home: https://truecharts.org/charts/dependency/kube-state-metrics
-icon: https://truecharts.org/img/hotlink-ok/chart-icons/kube-state-metrics.png
-keywords:
-  - prometheus
-  - kube-state-metrics
-  - monitoring
-kubeVersion: ">=1.16.0-0"
-maintainers:
-  - email: info@truecharts.org
-    name: TrueCharts
-    url: https://truecharts.org
-name: kube-state-metrics
-sources:
-  - https://github.com/truecharts/charts/tree/master/charts/dependency/kube-state-metrics
-type: application
-version: 1.0.24
-annotations:
-  truecharts.org/catagories: |
-    - metrics
-  truecharts.org/SCALE-support: "true"
-  truecharts.org/grade: U

charts/dependency/kube-state-metrics/LICENSE

@@ -1,106 +0,0 @@
-Business Source License 1.1
-
-Parameters
-
-Licensor:             The TrueCharts Project, it's owner and it's contributors
-Licensed Work:        The TrueCharts "Grafana" Helm Chart
-Additional Use Grant: You may use the licensed work in production, as long
-                      as it is directly sourced from a TrueCharts provided
-                      official repository, catalog or source. You may also make private
-                      modification to the directly sourced licenced work,
-                      when used in production.
-
-                      The following cases are, due to their nature, also
-                      defined as 'production use' and explicitly prohibited:
-                      - Bundling, including or displaying the licensed work
-                      with(in) another work intended for production use,
-                      with the apparent intend of facilitating and/or
-                      promoting production use by third parties in
-                      violation of this license.
-
-Change Date:          2050-01-01
-
-Change License:       3-clause BSD license
-
-For information about alternative licensing arrangements for the Software,
-please contact: legal@truecharts.org
-
-Notice
-
-The Business Source License (this document, or the “License”) is not an Open
-Source license. However, the Licensed Work will eventually be made available
-under an Open Source License, as stated in this License.
-
-License text copyright (c) 2017 MariaDB Corporation Ab, All Rights Reserved.
-“Business Source License” is a trademark of MariaDB Corporation Ab.
-
------------------------------------------------------------------------------
-
-Business Source License 1.1
-
-Terms
-
-The Licensor hereby grants you the right to copy, modify, create derivative
-works, redistribute, and make non-production use of the Licensed Work. The
-Licensor may make an Additional Use Grant, above, permitting limited
-production use.
-
-Effective on the Change Date, or the fourth anniversary of the first publicly
-available distribution of a specific version of the Licensed Work under this
-License, whichever comes first, the Licensor hereby grants you rights under
-the terms of the Change License, and the rights granted in the paragraph
-above terminate.
-
-If your use of the Licensed Work does not comply with the requirements
-currently in effect as described in this License, you must purchase a
-commercial license from the Licensor, its affiliated entities, or authorized
-resellers, or you must refrain from using the Licensed Work.
-
-All copies of the original and modified Licensed Work, and derivative works
-of the Licensed Work, are subject to this License. This License applies
-separately for each version of the Licensed Work and the Change Date may vary
-for each version of the Licensed Work released by Licensor.
-
-You must conspicuously display this License on each original or modified copy
-of the Licensed Work. If you receive the Licensed Work in original or
-modified form from a third party, the terms and conditions set forth in this
-License apply to your use of that work.
-
-Any use of the Licensed Work in violation of this License will automatically
-terminate your rights under this License for the current and all other
-versions of the Licensed Work.
-
-This License does not grant you any right in any trademark or logo of
-Licensor or its affiliates (provided that you may use a trademark or logo of
-Licensor as expressly required by this License).
-
-TO THE EXTENT PERMITTED BY APPLICABLE LAW, THE LICENSED WORK IS PROVIDED ON
-AN “AS IS” BASIS. LICENSOR HEREBY DISCLAIMS ALL WARRANTIES AND CONDITIONS,
-EXPRESS OR IMPLIED, INCLUDING (WITHOUT LIMITATION) WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND
-TITLE.
-
-MariaDB hereby grants you permission to use this License’s text to license
-your works, and to refer to it using the trademark “Business Source License”,
-as long as you comply with the Covenants of Licensor below.
-
-Covenants of Licensor
-
-In consideration of the right to use this License’s text and the “Business
-Source License” name and trademark, Licensor covenants to MariaDB, and to all
-other recipients of the licensed work to be provided by Licensor:
-
-1. To specify as the Change License the GPL Version 2.0 or any later version,
-   or a license that is compatible with GPL Version 2.0 or a later version,
-   where “compatible” means that software provided under the Change License can
-   be included in a program with software provided under GPL Version 2.0 or a
-   later version. Licensor may specify additional Change Licenses without
-   limitation.
-
-2. To either: (a) specify an additional grant of rights to use that does not
-   impose any additional restriction on the right granted in this License, as
-   the Additional Use Grant; or (b) insert the text “None”.
-
-3. To specify a Change Date.
-
-4. Not to modify this License in any other way.

charts/dependency/kube-state-metrics/README.md

@@ -1,27 +0,0 @@
-# README
-
-## General Info
-
-TrueCharts can be installed as both *normal* Helm Charts or as Apps on TrueNAS SCALE.
-However only installations using the TrueNAS SCALE Apps system are supported.
-
-For more information about this App, please check the docs on the TrueCharts [website](https://truecharts.org/charts/dependency/)
-
-**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/charts/issues/new/choose)**
-
-
-## Support
-
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
-- See the [Website](https://truecharts.org)
-- Check our [Discord](https://discord.gg/tVsPTHWTtr)
-- Open a [issue](https://github.com/truecharts/charts/issues/new/choose)
-
----
-
-## Sponsor TrueCharts
-
-TrueCharts can only exist due to the incredible effort of our staff.
-Please consider making a [donation](https://truecharts.org/sponsor) or contributing back to the project any way you can!
-
-*All Rights Reserved - The TrueCharts Project*

charts/dependency/kube-state-metrics/questions.yaml

@@ -1,109 +0,0 @@
-# Include{groups}
-questions:
-# Include{global}
-# Include{workload}
-# Include{workloadDeployment}
-
-# Include{replicas1}
-# Include{podSpec}
-# Include{containerMain}
-# Include{containerBasic}
-# Include{containerAdvanced}
-
-
-# Include{containerConfig}
-# Include{podOptions}
-# Include{serviceRoot}
-        - variable: main
-          label: "Main Service"
-          description: "The Primary service on which the healthcheck runs, often the webUI"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{serviceSelectorClusterIP}
-# Include{serviceSelectorExtras}
-                    - variable: main
-                      label: "Main Service Port Configuration"
-                      schema:
-                        additional_attrs: true
-                        type: dict
-                        attrs:
-                          - variable: port
-                            label: "Port"
-                            description: "This port exposes the container port on the service"
-                            schema:
-                              type: int
-                              default: 8080
-                              required: true
-        - variable: selfmonitor
-          label: "selfmonitor Service"
-          description: "The Primary service on which the healthcheck runs, often the webUI"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{serviceSelectorClusterIP}
-# Include{serviceSelectorExtras}
-                    - variable: selfmonitor
-                      label: "selfmonitor Service Port Configuration"
-                      schema:
-                        additional_attrs: true
-                        type: dict
-                        attrs:
-                          - variable: port
-                            label: "Port"
-                            description: "This port exposes the container port on the service"
-                            schema:
-                              type: int
-                              default: 8081
-                              required: true
-# Include{serviceExpertRoot}
-# Include{serviceExpert}
-# Include{serviceList}
-# Include{persistenceList}
-# Include{ingressRoot}
-        - variable: main
-          label: "Main Ingress"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{ingressDefault}
-# Include{ingressTLS}
-# Include{ingressTraefik}
-# Include{ingressAdvanced}
-# Include{ingressList}
-# Include{securityContextRoot}
-
-              - variable: runAsUser
-                label: "runAsUser"
-                description: "The UserID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-              - variable: runAsGroup
-                label: "runAsGroup"
-                description: "The groupID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-# Include{securityContextContainer}
-# Include{securityContextAdvanced}
-# Include{securityContextPod}
-              - variable: fsGroup
-                label: "fsGroup"
-                description: "The group that should own ALL storage."
-                schema:
-                  type: int
-                  default: 568
-
-# Include{resources}
-# Include{metrics}
-# Include{prometheusRule}
-# Include{advanced}
-# Include{addons}
-# Include{codeserver}
-# Include{netshoot}
-# Include{vpn}
-# Include{documentation}

charts/dependency/kube-state-metrics/templates/common.yaml

@@ -1 +0,0 @@
-{{ include "tc.v1.common.loader.all" . }}

charts/dependency/kube-state-metrics/values.yaml

@@ -1,313 +0,0 @@
-image:
-  repository: tccr.io/truecharts/kube-state-metrics
-  pullPolicy: IfNotPresent
-  tag: v2.9.2@sha256:91d689139071b2f2232480fd1ac08f9265eb0d57645193bfc2fdc0c2c5c595cd
-
-service:
-  main:
-    ports:
-      main:
-        protocol: http
-        port: 8080
-  selfmonitor:
-    enabled: true
-    ports:
-      selfmonitor:
-        enabled: true
-        protocol: http
-        port: 8081
-
-workload:
-  main:
-    podSpec:
-      containers:
-        main:
-          args:
-            - --resources=certificatesigningrequests
-            - --resources=configmaps
-            - --resources=cronjobs
-            - --resources=daemonsets
-            - --resources=deployments
-            - --resources=endpoints
-            - --resources=horizontalpodautoscalers
-            - --resources=ingresses
-            - --resources=jobs
-            - --resources=limitranges
-            - --resources=mutatingwebhookconfigurations
-            - --resources=namespaces
-            - --resources=networkpolicies
-            - --resources=nodes
-            - --resources=persistentvolumeclaims
-            - --resources=persistentvolumes
-            - --resources=poddisruptionbudgets
-            - --resources=pods
-            - --resources=replicasets
-            - --resources=replicationcontrollers
-            - --resources=resourcequotas
-            - --resources=secrets
-            - --resources=services
-            - --resources=statefulsets
-            - --resources=storageclasses
-            # - --resources=verticalpodautoscalers
-            - --resources=validatingwebhookconfigurations
-            - --resources=volumeattachments
-
-          probes:
-            liveness:
-              path: /healthz
-              port: main
-
-            readiness:
-              path: /healthz
-              port: main
-
-            startup:
-              type: tcp
-              port: main
-
-podOptions:
-  automountServiceAccountToken: true
-
-serviceAccount:
-  main:
-    enabled: true
-    primary: true
-
-rbac:
-  main:
-    enabled: true
-    primary: true
-    clusterWide: true
-    rules:
-      - apiGroups:
-          - certificates.k8s.io
-        resources:
-          - certificatesigningrequests
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - configmaps
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - batch
-        resources:
-          - cronjobs
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - apps
-        resources:
-          - daemonsets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - apps
-        resources:
-          - deployments
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - endpoints
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - autoscaling
-        resources:
-          - horizontalpodautoscalers
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - networking.k8s.io
-        resources:
-          - ingresses
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - batch
-        resources:
-          - jobs
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - limitranges
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - admissionregistration.k8s.io
-        resources:
-          - mutatingwebhookconfigurations
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - namespaces
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - networking.k8s.io
-        resources:
-          - networkpolicies
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - nodes
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - persistentvolumeclaims
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - persistentvolumes
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - policy
-        resources:
-          - poddisruptionbudgets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - pods
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - extensions
-          - apps
-        resources:
-          - replicasets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - replicationcontrollers
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - resourcequotas
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - secrets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - ""
-        resources:
-          - services
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - apps
-        resources:
-          - statefulsets
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - storage.k8s.io
-        resources:
-          - storageclasses
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - autoscaling.k8s.io
-        resources:
-          - verticalpodautoscalers
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - admissionregistration.k8s.io
-        resources:
-          - validatingwebhookconfigurations
-        verbs:
-          - list
-          - watch
-      - apiGroups:
-          - storage.k8s.io
-        resources:
-          - volumeattachments
-        verbs:
-          - list
-          - watch
-
-metrics:
-  main:
-    # -- Enable and configure a Prometheus serviceMonitor for the chart under this key.
-    # @default -- See values.yaml
-    enabled: true
-    type: serviceMonitor
-    endpoints:
-      - port: main
-      - port: selfmonitor
-    # -- Enable and configure Prometheus Rules for the chart under this key.
-    # @default -- See values.yaml
-    prometheusRule:
-      enabled: false
-      labels: {}
-      # -- Configure additionial rules for the chart under this key.
-      # @default -- See prometheusrules.yaml
-      rules:
-        []
-        # - alert: UnifiPollerAbsent
-        #   annotations:
-        #     description: Unifi Poller has disappeared from Prometheus service discovery.
-        #     summary: Unifi Poller is down.
-        #   expr: |
-        #     absent(up{job=~".*unifi-poller.*"} == 1)
-        #   for: 5m
-        #   labels:
-        #     severity: critical
-
-portal:
-  open:
-    enabled: false

charts/dependency/mariadb/Chart.yaml

@@ -1,9 +1,9 @@
 apiVersion: v2
-appVersion: "10.11.4"
+appVersion: "10.11.2"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.3
+    version: 12.4.21
 deprecated: false
 description: Fast, reliable, scalable, and easy to use open-source relational database system.
 home: https://truecharts.org/charts/dependency/mariadb
@@ -25,7 +25,7 @@ sources:
   - https://github.com/prometheus/mysqld_exporter
   - https://mariadb.org
 type: application
-version: 7.0.54
+version: 7.0.13
 annotations:
   truecharts.org/catagories: |
     - database

charts/dependency/mariadb/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: mariadbDatabase
     group: "App Configuration"
     label: "Database Name"
@@ -64,6 +63,7 @@ questions:
                               default: 3306
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/mariadb/values.yaml

@@ -1,7 +1,7 @@
 image:
   repository: tccr.io/truecharts/mariadb
   pullPolicy: IfNotPresent
-  tag: v10.11.4@sha256:3cc546822b0f42d530cd7167b01c76e1877434e2e2fe960d03b659fe272b94f7
+  tag: 10.11.2@sha256:fc01102eef1de92155b5097636ef738700c8bef1735f52a397b1505cbf455c0f
 
 workload:
   main:

charts/dependency/memcached/Chart.yaml

@@ -1,9 +1,9 @@
 apiVersion: v2
-appVersion: "1.6.20"
+appVersion: "1.6.18"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.3
+    version: 12.4.21
 deprecated: false
 description: Memcached is a memory-backed database caching solution
 home: https://truecharts.org/charts/dependency/memcached
@@ -23,7 +23,7 @@ sources:
   - https://github.com/bitnami/bitnami-docker-memcached
   - http://memcached.org/
 type: application
-version: 6.0.63
+version: 6.0.23
 annotations:
   truecharts.org/catagories: |
     - database

charts/dependency/memcached/questions.yaml

@@ -9,7 +9,6 @@ questions:
 # Include{containerBasic}
 # Include{containerAdvanced}
 # Include{containerConfig}
-# Include{podOptions}
 # Include{serviceRoot}
         - variable: main
           label: "Main Service"
@@ -34,6 +33,7 @@ questions:
                               default: 11211
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceList}

charts/dependency/memcached/values.yaml

@@ -1,7 +1,7 @@
 image:
   repository: tccr.io/truecharts/memcached
   pullPolicy: IfNotPresent
-  tag: v1.6.20@sha256:595939f109280c88c8344eddf52b34ad77f7c33432850ac333f1f47a652819fa
+  tag: 1.6.18@sha256:49998f1e9bb4c1537c559c9e6a757c93a346d2ea6b03d03ecdca3bda3c8d4ab6
 
 service:
   main:

charts/dependency/mongodb/Chart.yaml

@@ -1,9 +1,9 @@
 apiVersion: v2
-appVersion: "6.0.6"
+appVersion: "6.0.4"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.3
+    version: 12.4.21
 deprecated: false
 description: Fast, reliable, scalable, and easy to use open-source no-sql database system.
 home: https://truecharts.org/charts/dependency/mongodb
@@ -23,7 +23,7 @@ sources:
   - https://github.com/bitnami/bitnami-docker-mongodb
   - https://www.mongodb.com
 type: application
-version: 6.0.52
+version: 6.0.12
 annotations:
   truecharts.org/catagories: |
     - database

charts/dependency/mongodb/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: mongodbDatabase
     group: "App Configuration"
     label: "Database Name"
@@ -64,6 +63,7 @@ questions:
                               default: 27017
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/mongodb/values.yaml

@@ -1,7 +1,7 @@
 image:
   repository: tccr.io/truecharts/mongodb
   pullPolicy: IfNotPresent
-  tag: v6.0.6@sha256:a20fb1417a21d8ea1f4bf9d5896b4c2d69ac71b951884378666c77ec47b21ea8
+  tag: 6.0.4@sha256:3600c9f13d96311ddad4d2de6520d54c89a8708ee36798e4dc6fb93f59c1eab4
 
 workload:
   main:

charts/dependency/node-exporter/Chart.yaml

@@ -1,29 +0,0 @@
-apiVersion: v2
-appVersion: "1.6.0"
-dependencies:
-  - name: common
-    repository: https://library-charts.truecharts.org
-    version: 12.14.3
-deprecated: false
-description: Prometheus exporter for hardware and OS metrics exposed by UNIX kernels, with pluggable metric collectors.
-home: https://truecharts.org/charts/dependency/node-exporter
-icon: https://truecharts.org/img/hotlink-ok/chart-icons/node-exporter.png
-keywords:
-  - prometheus
-  - node-exporter
-  - monitoring
-kubeVersion: ">=1.16.0-0"
-maintainers:
-  - email: info@truecharts.org
-    name: TrueCharts
-    url: https://truecharts.org
-name: node-exporter
-sources:
-  - https://github.com/truecharts/charts/tree/master/charts/dependency/node-exporter
-type: application
-version: 1.0.25
-annotations:
-  truecharts.org/catagories: |
-    - metrics
-  truecharts.org/SCALE-support: "true"
-  truecharts.org/grade: U

charts/dependency/node-exporter/LICENSE

@@ -1,106 +0,0 @@
-Business Source License 1.1
-
-Parameters
-
-Licensor:             The TrueCharts Project, it's owner and it's contributors
-Licensed Work:        The TrueCharts "Grafana" Helm Chart
-Additional Use Grant: You may use the licensed work in production, as long
-                      as it is directly sourced from a TrueCharts provided
-                      official repository, catalog or source. You may also make private
-                      modification to the directly sourced licenced work,
-                      when used in production.
-
-                      The following cases are, due to their nature, also
-                      defined as 'production use' and explicitly prohibited:
-                      - Bundling, including or displaying the licensed work
-                      with(in) another work intended for production use,
-                      with the apparent intend of facilitating and/or
-                      promoting production use by third parties in
-                      violation of this license.
-
-Change Date:          2050-01-01
-
-Change License:       3-clause BSD license
-
-For information about alternative licensing arrangements for the Software,
-please contact: legal@truecharts.org
-
-Notice
-
-The Business Source License (this document, or the “License”) is not an Open
-Source license. However, the Licensed Work will eventually be made available
-under an Open Source License, as stated in this License.
-
-License text copyright (c) 2017 MariaDB Corporation Ab, All Rights Reserved.
-“Business Source License” is a trademark of MariaDB Corporation Ab.
-
------------------------------------------------------------------------------
-
-Business Source License 1.1
-
-Terms
-
-The Licensor hereby grants you the right to copy, modify, create derivative
-works, redistribute, and make non-production use of the Licensed Work. The
-Licensor may make an Additional Use Grant, above, permitting limited
-production use.
-
-Effective on the Change Date, or the fourth anniversary of the first publicly
-available distribution of a specific version of the Licensed Work under this
-License, whichever comes first, the Licensor hereby grants you rights under
-the terms of the Change License, and the rights granted in the paragraph
-above terminate.
-
-If your use of the Licensed Work does not comply with the requirements
-currently in effect as described in this License, you must purchase a
-commercial license from the Licensor, its affiliated entities, or authorized
-resellers, or you must refrain from using the Licensed Work.
-
-All copies of the original and modified Licensed Work, and derivative works
-of the Licensed Work, are subject to this License. This License applies
-separately for each version of the Licensed Work and the Change Date may vary
-for each version of the Licensed Work released by Licensor.
-
-You must conspicuously display this License on each original or modified copy
-of the Licensed Work. If you receive the Licensed Work in original or
-modified form from a third party, the terms and conditions set forth in this
-License apply to your use of that work.
-
-Any use of the Licensed Work in violation of this License will automatically
-terminate your rights under this License for the current and all other
-versions of the Licensed Work.
-
-This License does not grant you any right in any trademark or logo of
-Licensor or its affiliates (provided that you may use a trademark or logo of
-Licensor as expressly required by this License).
-
-TO THE EXTENT PERMITTED BY APPLICABLE LAW, THE LICENSED WORK IS PROVIDED ON
-AN “AS IS” BASIS. LICENSOR HEREBY DISCLAIMS ALL WARRANTIES AND CONDITIONS,
-EXPRESS OR IMPLIED, INCLUDING (WITHOUT LIMITATION) WARRANTIES OF
-MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT, AND
-TITLE.
-
-MariaDB hereby grants you permission to use this License’s text to license
-your works, and to refer to it using the trademark “Business Source License”,
-as long as you comply with the Covenants of Licensor below.
-
-Covenants of Licensor
-
-In consideration of the right to use this License’s text and the “Business
-Source License” name and trademark, Licensor covenants to MariaDB, and to all
-other recipients of the licensed work to be provided by Licensor:
-
-1. To specify as the Change License the GPL Version 2.0 or any later version,
-   or a license that is compatible with GPL Version 2.0 or a later version,
-   where “compatible” means that software provided under the Change License can
-   be included in a program with software provided under GPL Version 2.0 or a
-   later version. Licensor may specify additional Change Licenses without
-   limitation.
-
-2. To either: (a) specify an additional grant of rights to use that does not
-   impose any additional restriction on the right granted in this License, as
-   the Additional Use Grant; or (b) insert the text “None”.
-
-3. To specify a Change Date.
-
-4. Not to modify this License in any other way.

charts/dependency/node-exporter/README.md

@@ -1,27 +0,0 @@
-# README
-
-## General Info
-
-TrueCharts can be installed as both *normal* Helm Charts or as Apps on TrueNAS SCALE.
-However only installations using the TrueNAS SCALE Apps system are supported.
-
-For more information about this App, please check the docs on the TrueCharts [website](https://truecharts.org/charts/dependency/)
-
-**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/charts/issues/new/choose)**
-
-
-## Support
-
-- Please check our [quick-start guides for TrueNAS SCALE](https://truecharts.org/manual/SCALE%20Apps/Important-MUST-READ).
-- See the [Website](https://truecharts.org)
-- Check our [Discord](https://discord.gg/tVsPTHWTtr)
-- Open a [issue](https://github.com/truecharts/charts/issues/new/choose)
-
----
-
-## Sponsor TrueCharts
-
-TrueCharts can only exist due to the incredible effort of our staff.
-Please consider making a [donation](https://truecharts.org/sponsor) or contributing back to the project any way you can!
-
-*All Rights Reserved - The TrueCharts Project*

charts/dependency/node-exporter/questions.yaml

@@ -1,87 +0,0 @@
-# Include{groups}
-questions:
-# Include{global}
-# Include{workload}
-# Include{workloadDeployment}
-
-# Include{replicas1}
-# Include{podSpec}
-# Include{containerMain}
-# Include{containerBasic}
-# Include{containerAdvanced}
-
-
-# Include{containerConfig}
-# Include{podOptions}
-# Include{serviceRoot}
-        - variable: main
-          label: "Main Service"
-          description: "The Primary service on which the healthcheck runs, often the webUI"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{serviceSelectorLoadBalancer}
-# Include{serviceSelectorExtras}
-                    - variable: main
-                      label: "Main Service Port Configuration"
-                      schema:
-                        additional_attrs: true
-                        type: dict
-                        attrs:
-                          - variable: port
-                            label: "Port"
-                            description: "This port exposes the container port on the service"
-                            schema:
-                              type: int
-                              default: 9100
-                              required: true
-# Include{serviceExpertRoot}
-# Include{serviceExpert}
-# Include{serviceList}
-# Include{persistenceList}
-# Include{ingressRoot}
-        - variable: main
-          label: "Main Ingress"
-          schema:
-            additional_attrs: true
-            type: dict
-            attrs:
-# Include{ingressDefault}
-# Include{ingressTLS}
-# Include{ingressTraefik}
-# Include{ingressAdvanced}
-# Include{ingressList}
-# Include{securityContextRoot}
-
-              - variable: runAsUser
-                label: "runAsUser"
-                description: "The UserID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-              - variable: runAsGroup
-                label: "runAsGroup"
-                description: "The groupID of the user running the application"
-                schema:
-                  type: int
-                  default: 568
-# Include{securityContextContainer}
-# Include{securityContextAdvanced}
-# Include{securityContextPod}
-              - variable: fsGroup
-                label: "fsGroup"
-                description: "The group that should own ALL storage."
-                schema:
-                  type: int
-                  default: 568
-
-# Include{resources}
-# Include{metrics}
-# Include{prometheusRule}
-# Include{advanced}
-# Include{addons}
-# Include{codeserver}
-# Include{netshoot}
-# Include{vpn}
-# Include{documentation}

charts/dependency/node-exporter/templates/common.yaml

@@ -1 +0,0 @@
-{{ include "tc.v1.common.loader.all" . }}

charts/dependency/node-exporter/values.yaml

@@ -1,91 +0,0 @@
-image:
-  repository: tccr.io/truecharts/node-exporter
-  pullPolicy: IfNotPresent
-  tag: v1.6.0@sha256:e8cabac8bb12fde761d351e840acce99da0d70cf7509e69bd3125ccfd003d23f
-
-service:
-  main:
-    ports:
-      main:
-        protocol: http
-        port: 9910
-
-workload:
-  main:
-    type: DaemonSet
-    podSpec:
-      containers:
-        main:
-          args:
-            - --path.procfs=/host/proc
-            - --path.sysfs=/host/sys
-            - --web.listen-address=0.0.0.0:{{ .Values.service.main.ports.main.port }}
-            - --collector.filesystem.ignored-mount-points="^/(dev|proc|sys|var/lib/docker/.+|var/lib/kubelet/.+|var/db/system/.+|mnt/[a-zA-Z0-9-_\\.]+/ix-applications/.+)($|/)"
-            - --collector.filesystem.ignored-fs-types="^(autofs|binfmt_misc|cgroup|configfs|debugfs|devpts|devtmpfs|fusectl|hugetlbfs|mqueue|overlay|proc|procfs|pstore|rpc_pipefs|securityfs|sysfs|tracefs)$"
-            - --collector.netdev.device-exclude="^veth.*$"
-            - --collector.netclass.ignored-devices="^veth.*$"
-          probes:
-            liveness:
-              path: /
-              port: main
-
-            readiness:
-              path: /
-              port: main
-
-            startup:
-              type: tcp
-              port: main
-
-podOptions:
-  hostNetwork: true
-  hostPID: true
-
-persistence:
-  host:
-    enabled: true
-    hostPath: /
-    mountPath: /host
-    readOnly: true
-  proc:
-    enabled: true
-    hostPath: /proc
-    mountPath: /host/proc
-    readOnly: true
-  sys:
-    enabled: true
-    hostPath: /sys
-    mountPath: /host/sys
-    readOnly: true
-
-metrics:
-  main:
-    # -- Enable and configure a Prometheus serviceMonitor for the chart under this key.
-    # @default -- See values.yaml
-    enabled: true
-    type: serviceMonitor
-    endpoints:
-      - port: main
-        path: /metrics
-    # -- Enable and configure Prometheus Rules for the chart under this key.
-    # @default -- See values.yaml
-    prometheusRule:
-      enabled: false
-      labels: {}
-      # -- Configure additionial rules for the chart under this key.
-      # @default -- See prometheusrules.yaml
-      rules:
-        []
-        # - alert: UnifiPollerAbsent
-        #   annotations:
-        #     description: Unifi Poller has disappeared from Prometheus service discovery.
-        #     summary: Unifi Poller is down.
-        #   expr: |
-        #     absent(up{job=~".*unifi-poller.*"} == 1)
-        #   for: 5m
-        #   labels:
-        #     severity: critical
-
-portal:
-  open:
-    enabled: false

charts/dependency/redis/Chart.yaml

@@ -1,9 +1,9 @@
 apiVersion: v2
-appVersion: "7.0.11"
+appVersion: "7.0.8"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.3
+    version: 12.4.21
 deprecated: false
 description: Open source, advanced key-value store.
 home: https://truecharts.org/charts/dependency/redis
@@ -23,7 +23,7 @@ sources:
   - https://github.com/bitnami/bitnami-docker-redis
   - http://redis.io/
 type: application
-version: 6.0.60
+version: 6.0.29
 annotations:
   truecharts.org/catagories: |
     - database

charts/dependency/redis/questions.yaml

@@ -11,7 +11,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: redisPassword
     group: "App Configuration"
     label: "Redis Password"
@@ -43,6 +42,7 @@ questions:
                               default: 6379
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{vctRoot}

charts/dependency/redis/values.yaml

@@ -1,7 +1,7 @@
 image:
   repository: tccr.io/truecharts/redis
   pullPolicy: IfNotPresent
-  tag: 7.0.11@sha256:4653f0bff0f593ae2fd5782fbca41c15e0fbc631ab339ee74fb0e82ef37ed90a
+  tag: 7.0.8@sha256:13e0bbf5369ed2f219b96c0e7136b531eb1fdca1db7b7e2c72e13133adf26288
 
 workload:
   main:

charts/dependency/solr/Chart.yaml

@@ -1,9 +1,9 @@
 apiVersion: v2
-appVersion: "9.2.1"
+appVersion: "9.1.1"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.3
+    version: 12.4.21
 deprecated: false
 description: Apache Solr
 home: https://truecharts.org/charts/dependency/solr
@@ -22,7 +22,7 @@ sources:
   - https://github.com/truecharts/charts/tree/master/charts/dependency/solr
   - https://github.com/apache/solr
 type: application
-version: 4.0.52
+version: 4.0.12
 annotations:
   truecharts.org/catagories: |
     - search

charts/dependency/solr/questions.yaml

@@ -14,7 +14,6 @@ questions:
 # Include{containerAdvanced}
 
 # Include{containerConfig}
-# Include{podOptions}
   - variable: solrCores
     group: "App Configuration"
     label: "Solr Cores"
@@ -66,6 +65,7 @@ questions:
                               default: 8983
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}

charts/dependency/solr/values.yaml

@@ -1,7 +1,7 @@
 image:
   repository: tccr.io/truecharts/solr
   pullPolicy: IfNotPresent
-  tag: v9.2.1@sha256:ffec4ef46e03e43dc44b3197eb9b3063017c89428d63e16196ce35b9f105238f
+  tag: 9.1.1@sha256:4ac9d6e8120321349f0a3e5dbaff796192a9623de8fb164adf9f42de952479f1
 
 workload:
   main:

charts/enterprise/authelia/Chart.yaml

@@ -3,11 +3,11 @@ appVersion: "4.37.5"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.2
+    version: 12.4.21
   - condition: redis.enabled
     name: redis
     repository: https://deps.truecharts.org
-    version: 6.0.58
+    version: 6.0.29
 deprecated: false
 description: Authelia is a Single Sign-On Multi-Factor portal for web apps
 home: https://truecharts.org/charts/enterprise/authelia
@@ -35,7 +35,7 @@ sources:
   - https://github.com/authelia/chartrepo
   - https://github.com/authelia/authelia
 type: application
-version: 15.1.28
+version: 15.1.9
 annotations:
   truecharts.org/catagories: |
     - security

charts/enterprise/authelia/docs/Setup-Guide.md

@@ -1,113 +0,0 @@
-# Authelia + LLDAP + Traefik ForwardAuth Setup guide
-
-This quick guide should take you through the steps necessary to setup `Authelia` as your `forwardAuth` for `Traefik`. We'll be using `LLDAP` as the backend for `Authelia` since it's lightweight and simple enough for most users. A more complete video is available on our YouTube Channel
-
-## Prerequisites
-
-- Traefik installed (enable the `enterprise train`)
-- Clusterissuer for certificates
-- CloudnativePG operator (enable the `operators train`)
-
-## Setup LLDAP
-
-:::warning
-
-LLDAP is a `Stable` train chart and therefore isn't supported at the same level as the charts in the `Enterprise` train (Authelia and Traefik).
-
-:::
-
-- Follow the steps included in the [Installation Notes](https://truecharts.org/charts/stable/lldap/installation-notes) for [LLDAP](https://truecharts.org/charts/stable/lldap/). Pretty straightforward. Change `dc=example,dc=com` to your domain, i.e. `dc=MYDOMAIN,dc=net` and then change your password. Also make sure you have the `Operators` train enabled and `CloudnativePG` operator installed, since you'll need it for `LLDAP` and `Authelia`
-
-![LLDAP Config](img/LLDAPCatalogConfig.png)
-
-- I've set the services to `ClusterIP` since I'll be using ingress
-
-- Once in `LLDAP`, create a user inside the `lldap_password_manager` group and change your default `admin` password. That `lldap_password_manager` user will be used to bind to `Authelia`. I've created a user called `Steven`
-
-## Setup Authelia
-
-- The setup for Authelia is very specific, and the logs won't tell you where you've messed up, but there's precise steps used to integrate `LLDAP` into `Authelia`. The info comes from the [LLDAP Authelia Docs](https://truecharts.org/charts/stable/lldap/authelia) and the upstream repo.
-
-### App Configuration
-
-Domain: `mydomain.com` <- Your domain without https://
-Default Redirection URL: `auth.mydomain.com`
-  - Can be anything, but we'll stick to auth.mydomain.com. As well, this will be the ingress URL for `Authelia`
-
-### LDAP Backend Configuration
-
-`Click Enable` then ensure everything is as below or you won't be able to connect to the LLDAP backend
-
-- Implementation: `Custom` (that's the default)
-- URL: `ldap://lldap-ldap.ix-lldap.svc.cluster.local:3890`
-- Connection Timeout: 5s
-- Start TLS: (Not necessary)
-- TLS Settings: (Not necessary)
-- Server Name: Leave blank
-- Skip Certificate Verification: Leave unchecked
-- Minimum TLS version: `TLS1.2`
-- Base DN: `DC=mydomain,DC=com`
-- Username Attribute: `uid`
-- Additional Users DN: `ou=people`
-- Users Filter: `(&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))`
-- Additional Groups DN: `ou=groups`
-- Groups Filter: `(member={dn})`
-- Group name Attribute:`cn`
-- Mail Attribute:`mail`
-- Display Name Attribute:`displayName`
-- Admin User: `uid=Steven,ou=people,dc=mydomain,dc=com` <- Notice the uid=Steven, most of the time people use admin and a generated password
-- Password: `RANDOMPASSWORD`
-
-#### SMTP Configuration
-
-Check your mail provider for this, generally Gmail gives you an app specific password for your email account and uses `smtp.gmail.com` and port `587`
-
-### Access Control Configuration
-
-- This section is to set rules to connect to `Authelia` and which users can go where. This is a basic general rule below where the main user (Steven) can access all the site using a wildcard
-
-Leave the default `one_factor` unless you've setup TOTP above. Then click `Add` next to `Rules` to get the screen below
-
-![AutheliaAccessControl](img/AutheliaAccessControl.png)
-
-- Add your `Domain` and a `Wildcard` for your subdomains.
-- Leave policy `one_factor`
-- Click `Add Subject` and add a subject of `group:lldap_password_manager` since `Steven` is part of that group
-
-#### Setup Authelia Ingress
-
-- Make sure you're using the same domain as the `Default Redirection URL` above, so for me that's `auth.mydomain.com`
-
-![AutheliaIngress](img/AutheliaIngress.png)
-
-## Traefik ForwardAuth Setup
-
-- This part is straight forward as long as you have a working `Traefik` install, please see our [How-To](https://truecharts.org/charts/enterprise/traefik/how-to) if you need more info on getting that running.
-
-- Scroll down to `forwardAuth` and click `Add`
-
-![TraefikForwardAuth](img/TraefikForwardAuth.png)
-
-- Name your `forwardauth` something you'll remember, since that's the middleware you'll add to your ingress going forward. Most people use `auth`
-- Address: `http://authelia.ix-authelia.svc.cluster.local:9091/api/verify?rd=https://auth.mydomain.com/` and replace the last part based on `mydomain.com`, and if you've changed ports/names you can get that from `Heavyscript`
-- Check `trustForwardHeader`
-- Add the following `authResponseHeaders` (press `Add` 4 times)
-  - `Remote-User`
-  - `Remote-Group`
-  - `Remote-Name`
-  - `Remote-Email`
-
-### Adding the forwardauth to your Apps
-
-The last step is adding the `forwardauth` along with the standard `ingress` settings for your app, for more info on setting ingress see the [ClusterIssuer Guide](https://truecharts.org/charts/enterprise/clusterissuer/how-to). What changes versus a standard setup is the `Traefik Middlewares` section, where you must add your `forwardauth` to the section.
-
-- In this example we use the same name as above, or `auth`. Click `Add` to the `Traefik Middlewares` section, and enter your `forwardauth` name.
-
-![TraefikForwardAuthMiddleware](img/TraefikForwardAuthMiddleware.png)
-### References
-
-The origin material for this guide is available on the [LLDAP Github](https://github.com/lldap/lldap). While further information on Authelia can be found on their [Github](https://github.com/authelia/authelia) and [website](https://www.authelia.com/).
-
-### Support
-
-If you have any issues with following this guide, we can be reached using [Discord](https://discord.gg/tVsPTHWTtr) for real-time feedback and support.

charts/enterprise/authelia/questions.yaml

@@ -12,7 +12,6 @@ questions:
 # Include{containerBasic}
 # Include{containerAdvanced}
 # Include{containerConfig}
-# Include{podOptions}
   - variable: domain
     group: "App Configuration"
     label: "Domain"
@@ -743,6 +742,7 @@ questions:
                               default: 9091
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceRoot}
@@ -765,7 +765,6 @@ questions:
 # Include{ingressDefault}
 # Include{ingressTLS}
 # Include{ingressTraefik}
-# Include{ingressAdvanced}
 # Include{ingressList}
 # Include{securityContextRoot}
               - variable: runAsUser

charts/enterprise/authelia/values.yaml

@@ -2,8 +2,7 @@ image:
   repository: tccr.io/truecharts/authelia
   pullPolicy: IfNotPresent
   tag: 4.37.5@sha256:76a4617539534cec140fd98a12f721b878524f2df3a3653f3df8ff2b7eaab586
-manifestManager:
-  enabled: true
+
 workload:
   main:
     replicas: 2
@@ -11,10 +10,8 @@ workload:
     podSpec:
       containers:
         main:
-          command:
-            - authelia
-          args:
-            - --config=/configuration.yaml
+          command: ["authelia"]
+          args: ["--config=/configuration.yaml"]
           envFrom:
             - configMapRef:
                 name: authelia-paths

charts/enterprise/blocky/Chart.yaml

@@ -3,11 +3,11 @@ appVersion: "0.21.0"
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.2
+    version: 12.4.21
   - condition: redis.enabled
     name: redis
     repository: https://deps.truecharts.org
-    version: 6.0.58
+    version: 6.0.29
 description: Blocky is a DNS proxy, DNS enhancer and ad-blocker for the local network written in Go
 home: https://truecharts.org/charts/enterprise/blocky
 icon: https://truecharts.org/img/hotlink-ok/chart-icons/blocky.png
@@ -25,7 +25,7 @@ sources:
   - https://0xerr0r.github.io/blocky/
   - https://github.com/0xERR0R/blocky
   - https://github.com/Mozart409/blocky-frontend
-version: 5.0.43
+version: 5.0.22
 annotations:
   truecharts.org/catagories: |
     - network

charts/enterprise/blocky/docs/installation-notes.md

@@ -55,11 +55,10 @@ However: this negatively affects rollback and high availability, so we _highly_
 
 ## k8s-gateway
 
-Our blocky Chart/App includes build-in compatibility for [k8s_gateway](https://github.com/ori-edge/k8s_gateway).
-This tool can be used to achieve [Split DNS](https://en.wikipedia.org/wiki/Split-horizon_DNS) to ensure devices on your local network connect directly to the LAN IP of any Charts/Apps using Ingress, instead of via the outside world or, in a lot of cases, having a bunch of connectivity issues.
+Our blocky Chart/App, includes build-in compatibility for [k8s_gateway](https://github.com/ori-edge/k8s_gateway), this tool can be used to ensure devices on your local network, connect directly to the LAN IP of any Charts/Apps using Ingress, instead of via the outside world or, in a lot of cases, having a bunch of connectivity issues.
 
-To setup k8s_gateway add **your** root domain(s) to the `k8s_gateway` section domains list, e.g. `mydomain.com`.
+The setup of k8s_gateway is simple:
+Just add the domain(s), which will include and subdomains(!), to the k8s_gateway domains list.
 From that point onwards we will take care to automatically apply the required `conditional` settings in `blocky` as well.
-This will automatically include all your app subdomains exposed via Ingress, e.g. `jellyfin.mydomain.com`.
 
-Please be mindfull that using `Blocky Style` configuration, using the `blockyConfig` object in `values.yaml`, might override this automatic setup.
+Please be mindfull that using `Blocky Style` configuration using the `blockyConfig` object in `values.yaml`, might override this automatic setup.

charts/enterprise/blocky/docs/setup-guide.md

@@ -1,75 +0,0 @@
-# Blocky Setup Guide
-
-This will guide you through the basic setup of Blocky which is the preferred DNS solution for TrueCharts. This guide will cover basic setup options which will get you up and running and is not all inclusive.
-
-## Upstream DNS
-
-Blocky has multiple DNS entries configured by default these can be overridden to your personal preferences or left as default.
-
-Blocky supports 3 methods for upstream DNS.
-
-UDP - Basic DNS<br />
-DoT - DNS over TLS<br />
-DoH - DNS over HTTPS
-
-While UDP provides no security for DNS both DoT and DoH will encrypt DNS request. DoH has the added benefit of privacy since DNS traffic will appear as HTTPS traffic.
-
-### UDP DNS Setup
-
-Google DNS: `8.8.8.8` `8.8.4.4`<br />
-Cloudflare DNS: `1.1.1.1` `1.0.0.1`
-
-![blocky-udp-upstream-google](./img/blocky-udp-upstream-google.png)
-
-### DoT DNS Setup
-
-Google DNS ([Bootstrap DNS Required](#bootstrap-dns)): `tcp-tls:dns.google:853`<br />
-Cloudflare DNS: `tcp-tls:1.1.1.1:853` `tcp-tls:1.0.0.1:853`
-
-![blocky-dot-upstream-google](./img/blocky-dot-upstream-google.png)
-
-### DoH Upstream
-
-Google DNS ([Bootstrap DNS Required](#bootstrap-dns)): `https://dns.google/dns-query`<br />
-Cloudflare DNS: `https://1.1.1.1/dns-query` `https://1.0.0.1/dns-query`
-
-![blocky-doh-upstream-google](./img/blocky-doh-upstream-google.png)
-
-## Bootstrap DNS
-
-For DNS providers that do not use an IP address for DoT or DoH a bootstrap DNS provider is needed to resolve the DoT or DoH address. This provider can be any UDP upstream DNS. In the below example I am using Google DNS.
-
-![blocky-bootstrap-google](./img/blocky-bootstrap-google.png)
-
-## DNS Blacklists
-
-DNS Blacklists are used to prevent DNS resolution of advertisement, malware, trackers and adult sites domains. This is completed with public maintained blocklists. A good source for these is [firebog.net](https://firebog.net).
-
-:::warning Warning
-
-While publicly maintained blocklists usually do a good job of allowing legitimate traffic they can sometimes be too broad and catch traffic that you wish to allow. You may need to disable certain blocklists if you find legitimate traffic being blocked.
-
-:::
-
-1. Pick a Group Name for your blocklists.
-
-2. Add List entries for each blocklist by URL.
-
-![blocky-blacklist](./img/blocky-blacklist.png)
-
-3. Add a Clients Group Block and set Client Group Name to `default`
-
-4. Under Groups Entry enter the Group name you used above.
-
-![blocky-blacklist-group](./img/blocky-blacklist-group.png)
-
-## k8s-Gateway Configuration
-
-k8s-Gateway will automatically provide split DNS for your local domain. This will allow you to resolve all ingress configured subdomains locally. All that is required for setup is to add your root domain in the Domain name block.
-
-![blocky-k8s-gateway](./img/blocky-k8s-gateway.png)
-
-## Prometheus/Grafana
-
-TBD
-

charts/enterprise/blocky/questions.yaml

@@ -689,7 +689,7 @@ questions:
           schema:
             type: boolean
             default: false
-            show_if: [["enabled", "=", true]]
+            show_if: [["enabled", "=", "true"]]
             show_subquestions_if: true
             subquestions:
               - variable: ttl
@@ -723,7 +723,6 @@ questions:
                   type: string
                   default: ""
 # Include{containerConfig}
-# Include{podOptions}
 # Include{serviceRoot}
         - variable: main
           label: Main Service
@@ -814,6 +813,7 @@ questions:
                               default: 853
                               required: true
 # Include{serviceExpertRoot}
+            default: false
 # Include{serviceExpert}
 # Include{serviceList}
 # Include{persistenceList}
@@ -827,7 +827,6 @@ questions:
 # Include{ingressDefault}
 # Include{ingressTLS}
 # Include{ingressTraefik}
-# Include{ingressAdvanced}
 # Include{ingressList}
 # Include{securityContextRoot}
               - variable: runAsUser

charts/enterprise/blocky/templates/_k8sgateway.tpl

@@ -38,7 +38,7 @@ Create the matchable regex from domain
 {{- $fqdn := ( include "tc.v1.common.lib.chart.names.fqdn" . ) }}
 enabled: true
 data:
-  Corefile: |
+  Corefile: |-
     .:{{ .Values.service.k8sgateway.ports.k8sgateway.targetPort }} {
         errors
         log
@@ -48,15 +48,9 @@ data:
         ready
         {{- range .Values.k8sgateway.domains }}
         {{- if .dnsChallenge.enabled }}
-          {{- if not .dnsChallenge.domain -}}
-            {{- fail "DNS01 challenge domain is mandatory" -}}
-          {{- end }}
-
         template IN ANY {{ required "Delegated domain ('domain') is mandatory" .domain }} {
            match "_acme-challenge[.](.*)[.]{{ include "k8sgateway.configmap.regex" . }}"
-           {{- $name := "{{ \"{{ .Name }}\" }}" }}
-           {{- $index := "{{ \"{{ index .Match 1 }}\" }}" }}
-           answer "{{ $name }} 5 IN CNAME {{ $index }}.{{ .dnsChallenge.domain }}"
+           answer "{{ "{{" }} .Name {{ "}}" }} 5 IN CNAME {{ "{{" }}  index .Match 1 {{ "}}" }}.{{ required "DNS01 challenge domain is mandatory" .dnsChallenge.domain }}"
            fallthrough
         }
         {{- end }}

charts/enterprise/blocky/templates/common.yaml

@@ -4,6 +4,7 @@
 {{- end }}
 {{- include "tc.v1.common.loader.init" . }}
 
+
 {{/* Render configmap for blocky */}}
 {{- $configmapFile := include "blocky.configmap" . | fromYaml -}}
 {{- if $configmapFile -}}

charts/enterprise/blocky/values.yaml

@@ -6,9 +6,8 @@ image:
 k8sgatewayImage:
   repository: tccr.io/truecharts/k8s_gateway
   pullPolicy: IfNotPresent
-  tag: 0.3.4@sha256:c49645e7b263e5cfc8fc269db2aef7d90149cecc7a50e2c2fe77ef935dd35742
-manifestManager:
-  enabled: true
+  tag: 0.3.3@sha256:246e7006afaf57a398b02e417a31d6f14fb43562901388772778f60be586b807
+
 workload:
   main:
     replicas: 2
@@ -325,7 +324,7 @@ metrics:
   main:
     # -- Enable and configure a Prometheus serviceMonitor for the chart under this key.
     # @default -- See values.yaml
-    enabled: false
+    enabled: true
     type: "servicemonitor"
     endpoints:
       - port: main

charts/enterprise/cert-manager/Chart.yaml

@@ -2,26 +2,26 @@ apiVersion: v2
 appVersion: "latest"
 deprecated: false
 description: Certificate management for Kubernetes
-home: https://truecharts.org/charts/enterprise/clusterissuer
-icon: https://truecharts.org/img/hotlink-ok/chart-icons/clusterissuer.png
+home: https://truecharts.org/charts/enterprise/cert-manager
+icon: https://truecharts.org/img/hotlink-ok/chart-icons/cert-manager.png
 keywords:
-  - cert-manager
-  - certificates
+  - metallb
+  - loadbalancer
 dependencies:
   - name: common
     repository: https://library-charts.truecharts.org
-    version: 12.14.2
+    version: 12.4.21
 kubeVersion: ">=1.16.0-0"
 maintainers:
   - email: info@truecharts.org
     name: TrueCharts
     url: https://truecharts.org
-name: clusterissuer
+name: cert-manager
 sources:
-  - https://github.com/truecharts/charts/tree/master/charts/enterprise/clusterissuer
+  - https://github.com/truecharts/charts/tree/master/charts/enterprise/cert-manager
   - https://cert-manager.io/
 type: application
-version: 1.0.6
+version: 1.0.23
 annotations:
   truecharts.org/catagories: |
     - core

charts/enterprise/cert-manager/docs/how-to.md

@@ -0,0 +1,54 @@
+# Cert-Manager Setup Guide
+
+This guide will walk you through setting up `cert-manager`, certificate management for Kubernetes.
+
+## Prerequisites
+
+Ensure you have the `enterprise` train enabled for `TrueCharts` as discussed [here](https://truecharts.org/manual/SCALE/guides/getting-started/#adding-truecharts).
+
+Ensure you have traefik installed, required for Ingress.
+
+Search for cert-manager in the `Apps` menu | `Available Applications` tab and click **Install**.
+
+## Cloudflare DNS-Provider
+
+You can setup multiple domains with a single cert-manager app, all you have to do is either add the global API key (**not recommended**) or `Add` multiple `ACME Issuer` entries for each domain and create an API token for each at [Cloudflare API Tokens](https://dash.cloudflare.com/profile/api-tokens).
+
+- Give the certificate a name (eg domain or "maincert", etc).
+- Select the correct provider, for example `Cloudflare`.
+- Set **Server** to **Letsencrypt-Production**.
+- Set Email to the account email.
+- Optionally set Cloudflare API key (**not recommended**)
+- Set the Cloudflare API Token to the one created earlier.
+
+![cert-manager1](img/cert-manager1.png)
+
+## cert-manager App
+
+> **Note**
+>
+> It is normal that the app does not run, there are no events, no logs and no shell. This is by design.
+
+![cert-manager3](img/cert-manager3.png)
+
+## How to Add Ingress to Apps with cert-manager
+
+Here's an example on how to add ingress to an app with cert-manager for a single domain only.
+
+Add the name of the `ACME Issuer` into `Cert-Manager clusterIssuer`
+
+> **Warning**
+> Do **NOT** use this combined with the `TLS-Settings`.
+
+![cert-manager2](img/cert-manager2.png)
+
+If you want to support multiple domains, use the `TLS-Settings` option to create each one, basically an extra step each time.
+
+## Verifying cert-manager is working
+
+Once install using the Ingress settings above, you can see the `Application Events` for the app in question to pull the certificate and issue the challenge directly. See the example below:
+
+![cert-manager4](img/cert-manager4.png)
+![cert-manager5](img/cert-manager5.png)
+
+All is automated by `cert-manager`