mirror of
https://github.com/truecharts/charts.git
synced 2026-07-13 10:21:22 -03:00
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [helm.sh/helm/v3](https://redirect.github.com/helm/helm) | require | minor | `v3.16.4` -> `v3.17.0` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>helm/helm (helm.sh/helm/v3)</summary> ### [`v3.17.0`](https://redirect.github.com/helm/helm/releases/tag/v3.17.0): Helm v3.17.0 [Compare Source](https://redirect.github.com/helm/helm/compare/v3.16.4...v3.17.0) Helm v3.17.0 is a feature release. Users are encouraged to upgrade for the best experience. The community keeps growing, and we'd love to see you there! - Join the discussion in [Kubernetes Slack](https://kubernetes.slack.com): - for questions and just to hang out - for discussing PRs, code, and bugs - Hang out at the Public Developer Call: Thursday, 9:30 Pacific via [Zoom](https://zoom.us/j/696660622) - Test, debug, and contribute charts: [ArtifactHub/packages](https://artifacthub.io/packages/search?kind=0) #### Notable Changes - Allow pulling and installation by OCI digest - Annotations and dependencies are now in chart metadata output - New `--take-ownership` flag for install and upgrade commands - SDK: Authorizer and registry authorizer are now configurable - Removed the Kubernetes configuration file permissions check - Added username/password to helm push and dependency build/update subcommands - Added `toYamlPretty` template function #### Installation and Upgrading Download Helm v3.17.0. The common platform binaries are here: - [MacOS amd64](https://get.helm.sh/helm-v3.17.0-darwin-amd64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-darwin-amd64.tar.gz.sha256sum) / 0d5fd51cf51eb4b9712d52ecd8f2a3cd865680595cca57db38ee01802bd466ea) - [MacOS arm64](https://get.helm.sh/helm-v3.17.0-darwin-arm64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-darwin-arm64.tar.gz.sha256sum) / 5db292c69ba756ddbf139abb623b02860feef15c7f1a4ea69b77715b9165a261) - [Linux amd64](https://get.helm.sh/helm-v3.17.0-linux-amd64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-amd64.tar.gz.sha256sum) / fb5d12662fde6eeff36ac4ccacbf3abed96b0ee2de07afdde4edb14e613aee24) - [Linux arm](https://get.helm.sh/helm-v3.17.0-linux-arm.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-arm.tar.gz.sha256sum) / a388478049bf4ad440fa394f28421aa43cec3631ba197a8203c485edbec3e3fe) - [Linux arm64](https://get.helm.sh/helm-v3.17.0-linux-arm64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-arm64.tar.gz.sha256sum) / c4d4be8e80082b7eaa411e3e231d62cf05d01cddfef59b0d01006a7901e11ee4) - [Linux i386](https://get.helm.sh/helm-v3.17.0-linux-386.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-386.tar.gz.sha256sum) / af89be03bb15175cd27573b48f4b9621e08982ab7788dd36e073baac988d6b2e) - [Linux ppc64le](https://get.helm.sh/helm-v3.17.0-linux-ppc64le.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-ppc64le.tar.gz.sha256sum) / 32833acf72b240e9ca78a3eac630a0ba420e073b02df3030c369a287b8bdc769) - [Linux s390x](https://get.helm.sh/helm-v3.17.0-linux-s390x.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-s390x.tar.gz.sha256sum) / 4b002d673ef35d78843c45cc169faf1040eec75937f19fccce41d2074f459653) - [Linux riscv64](https://get.helm.sh/helm-v3.17.0-linux-riscv64.tar.gz) ([checksum](https://get.helm.sh/helm-v3.17.0-linux-riscv64.tar.gz.sha256sum) / 38297aca2046fd13f2e0415ecc9cdb006f4008b286467f5f217187647dbbab5b) - [Windows amd64](https://get.helm.sh/helm-v3.17.0-windows-amd64.zip) ([checksum](https://get.helm.sh/helm-v3.17.0-windows-amd64.zip.sha256sum) / 0625e51437107991922f76adbec4a4f12a4438942182677399ab758a3ec8bdc5) - [Windows arm64](https://get.helm.sh/helm-v3.17.0-windows-arm64.zip) ([checksum](https://get.helm.sh/helm-v3.17.0-windows-arm64.zip.sha256sum) / 5fd16dde353aa5909562f127befea8db3879ecf63050fea3fb106ff8bfdd1a9c) This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at [@​r6by](https://redirect.github.com/r6by) [keybase account](https://keybase.io/r6by). Please use the attached signatures for verifying this release using gpg. The [Quickstart Guide](https://helm.sh/docs/intro/quickstart/) will get you going from there. For **upgrade instructions** or detailed installation notes, check the [install guide](https://helm.sh/docs/intro/install/). You can also use a [script to install](https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3) on any system with `bash`. #### What's Next - 3.17.1 is the next patch release and will be on February 12, 2025 - 3.18.0 is the next minor release and will be on May 14, 2025 #### Changelog - bump version to v3.17.0 [`301108e`](301108edc7) (Matt Farina) - fix: make ORAS reference private [`949b2e6`](949b2e6040) (Terry Howe) - fix: issue with helm template and oci chart [`aba95b9`](aba95b9cb4) (Terry Howe) - feat: allow installation by OCI digest [`c3e5217`](c3e5217d85) (Terry Howe) - Bump the k8s-io group with 7 updates [`33a0ee7`](33a0ee7b9a) (dependabot\[bot]) - Upgrade golang.org/x/net to v0.33.0 to address CVE-2024-45338 [`79993d2`](79993d2e5b) (cx) - Update golangci-lint version [`037c18a`](037c18af35) (Matt Farina) - Update to Go 1.23 [`9f620b8`](9f620b857a) (Matt Farina) - ref(create): don't render empty resource fields [`ba180a3`](ba180a3b6a) (dnskr) - Add annotations and dependencies to get metadata output The output of helm get metadata includes a subset of the fields contained in the chart.Metadata struct. This change adds the values of the annotations field and the dependencies field to the output. [`7321579`](7321579092) (Niladri Halder) - Run `build-test` action on `dev-v3` branch [`2042f7d`](2042f7d35a) (George Jenkins) - Fix dev-v3 from take ownership changes [`a3a9e4f`](a3a9e4f643) (Matt Farina) - Bump github.com/rubenv/sql-migrate from 1.7.0 to 1.7.1 [`c7cd177`](c7cd1772c7) (dependabot\[bot]) - Bump github.com/cyphar/filepath-securejoin from 0.3.4 to 0.3.6 [`ca61226`](ca61226c03) (dependabot\[bot]) - Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 [`9421fac`](9421fac58f) (dependabot\[bot]) - Bump github.com/containerd/containerd from 1.7.23 to 1.7.24 [`562eb54`](562eb54fff) (dependabot\[bot]) - Bump golang.org/x/crypto from 0.30.0 to 0.31.0 [`6ba4c6e`](6ba4c6e000) (dependabot\[bot]) - Bump the k8s-io group with 7 updates [`ac16258`](ac16258419) (dependabot\[bot]) - fix test output [`edf7b66`](edf7b66ae9) (Mayank Shah) - fix test [`b9d58a1`](b9d58a19f1) (Mayank Shah) - fix upgrade [`2541e46`](2541e465c4) (Mayank Shah) - Shadow ORAS remote.Client interface [`c40cf00`](c40cf00a06) (George Jenkins) - Make the authorizer and registry authorizer configurable [`3c2ab91`](3c2ab91263) (Ryan Nowak) - Rename CAFile to CaFile for consistency [`7a22dd2`](7a22dd28d1) (Evans Mungai) - Update cmd/helm/upgrade.go [`885e938`](885e938793) (Mayank Shah) - Update cmd/helm/install.go [`7efa286`](7efa2862ad) (Mayank Shah) - Add --take-ownership flag for install and upgrade commands [`c3a5f27`](c3a5f27c77) (Mayank Shah) - Adding CI for dev-v3 branch [`b5a83ea`](b5a83ea821) (Matt Farina) - Bump golang.org/x/crypto from 0.28.0 to 0.29.0 [`a2d289f`](a2d289f569) (dependabot\[bot]) - fix: fix label name [`e4062e7`](e4062e7e00) (wangjingcun) - Updating subchart load error to be more descriptive [`6f2f7d4`](6f2f7d4781) (Taylor Jasko) - Add tests to `helm/pkg/kube/client_test.go` to cover `wait.go` [`9fd943b`](9fd943b481) (Alex Johnson) - Fix typo in pkg/lint/rules/chartfile_test.go [`0cc78c6`](0cc78c6ac3) (Zach Burgess) - Increasing the size of the runner used for releases. [`029e983`](029e983241) (Matt Farina) - fix(hooks): correct hooks delete order [`f4f4a6b`](f4f4a6b81f) (Suleiman Dibirov) - Allow tests to run on loong64 [`a51ea6e`](a51ea6ec73) (Tianle Xu) - Bump actions/checkout from 4.2.1 to 4.2.2 [`f983342`](f983342597) (dependabot\[bot]) - Bump actions/setup-go from 5.0.2 to 5.1.0 [`c867af8`](c867af8e11) (dependabot\[bot]) - chore: fix some function names in comment [`de9e138`](de9e138ec1) (wangjingcun) - Bump the k8s-io group with 7 updates [`e4304bd`](e4304bd758) (dependabot\[bot]) - removing duplicate empty test [`7e6b34d`](7e6b34d7dd) (Robert Sirchia) - fixing unit test as per Matt [`16a4e37`](16a4e37f20) (Robert Sirchia) - Ensure test fails without causing panic [`bdaa93b`](bdaa93b969) (Evans Mungai) - Fix failing tests [`3c4d0bb`](3c4d0bb061) (Evans Mungai) - Remove unnecessary function arguments [`d25b0d9`](d25b0d9056) (Evans Mungai) - chore: Check tar is installed install script [`3a5805e`](3a5805ea7e) (Evans Mungai) - adding more unit test [`a205af7`](a205af755e) (Robert Sirchia) - Cleanup redundant GO11MODULE [`4a15cc3`](4a15cc3385) (George Jenkins) - adding test coverage for ready.go [`999b851`](999b85145a) (Robert Sirchia) - fix(helm): Retry Conflict error for createResource, deleteResource [`79a1f2c`](79a1f2c801) (Andreas Karis) - minor spelling fix [`ca58464`](ca584648ee) (Jon Olsson) - Bump github.com/containerd/containerd from 1.7.12 to 1.7.23 [`fe4d0d9`](fe4d0d94da) (dependabot\[bot]) - Reorder triage ids [`8b85934`](8b85934ec3) (Evans Mungai) - chore: Add Evans to OWNERS file [`75c124a`](75c124ade1) (Evans Mungai) - Bump github.com/cyphar/filepath-securejoin from 0.3.1 to 0.3.4 [`b45680c`](b45680c762) (dependabot\[bot]) - chore(deps): bump actions/stale from 3.0.14 to 9.0.0 [`140a376`](140a376539) (dependabot\[bot]) - chore: Make retryingRoundTripper type public [`ab3c589`](ab3c589809) (Luis Davim) - Bump actions/checkout from 4.2.0 to 4.2.1 [`d517450`](d517450a11) (dependabot\[bot]) - Doc: add Flox as an installation option. [`30de3bb`](30de3bbdc2) (Bryan Honof) - Move jdolitsky to emeritus [`076bb1f`](076bb1fbd0) (Josh Dolitsky) - verbs [`f5fcae8`](f5fcae8356) (George Jenkins) - fix: Use chart archive modifed time for OCI push [`02ef83f`](02ef83fe28) (George Jenkins) - Bump golang.org/x/crypto from 0.27.0 to 0.28.0 [`4c54d15`](4c54d15a86) (dependabot\[bot]) - Revering change unrelated to issue [#​13176](https://redirect.github.com/helm/helm/issues/13176) [`cdbef2b`](cdbef2b7d1) (ricardo.bartels@telekom.de) - Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 [`9e192b2`](9e192b28eb) (dependabot\[bot]) - updating owners file [`36f0b42`](36f0b42de3) (Robert Sirchia) - Bump the k8s-io group with 7 updates [`d5df067`](d5df067283) (dependabot\[bot]) - Bump golang/govulncheck-action from 1.0.3 to 1.0.4 [`7925733`](79257331c2) (dependabot\[bot]) - Move gjenkins to maintainer [`9c36d1f`](9c36d1f7b5) (George Jenkins) - Bump actions/checkout from 4.1.7 to 4.2.0 [`2cd8d54`](2cd8d54c83) (dependabot\[bot]) - fix: add missing formatChartName call [`de18ac1`](de18ac1602) (Terry Howe) - Update history.go [`4735f2b`](4735f2be9b) (myeunee) - adding toplevel permissions to workflows missing them [`a8750f4`](a8750f4ce9) (Robert Sirchia) - add strvals fuzzer from cncf-fuzzing [`b203cc1`](b203cc17c8) (Adam Korczynski) - add chart fuzz tests [`e432f39`](e432f39ea7) (Adam Korczynski) - Remove the Kubernetes configuration file permissions check [`49cb14a`](49cb14a15c) (Yarden Shoham) - Grammar fixes [`ef85fa7`](ef85fa7f2d) (Nathan Baulch) - Fix typos [`ff9dd26`](ff9dd262e3) (Nathan Baulch) - removing testing trigger from govulncheck action [`62069eb`](62069eb7b5) (Robert Sirchia) - adding top-level permissions [`114db17`](114db17898) (Robert Sirchia) - Fixing the action trigger [`8642225`](8642225be3) (Robert Sirchia) - testing permissing for codeql [`5217ea8`](5217ea8f18) (Robert Sirchia) - Bump ossf/scorecard-action from 2.3.1 to 2.4.0 [`9134b9e`](9134b9edab) (dependabot\[bot]) - Bump actions/checkout from 4.1.1 to 4.1.7 [`144e7b0`](144e7b0287) (dependabot\[bot]) - fix: fix testchart lint errors [`ddead08`](ddead08eb8) (Rui Chen) - adding check-latest:true [`611fae3`](611fae3d7d) (Robert Sirchia) - Revert "Improve helm dependency update performance" [`c81bd89`](c81bd8912e) (Matt Farina) - bumping version to 1.22.7 [`e7b25ba`](e7b25bab6f) (Robert Sirchia) - Add New Relic [`a55c0b4`](a55c0b457d) (Calvin A. Allen) - Update ADOPTERS.md [`2b6f76c`](2b6f76c44e) (Richard Hooper) - Bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 [`06afebb`](06afebbedb) (dependabot\[bot]) - Bump golang.org/x/crypto from 0.26.0 to 0.27.0 [`9f6925e`](9f6925eb7f) (dependabot\[bot]) - refectoring to ONE GH action [`5326d79`](5326d79d3e) (Robert Sirchia) - adding new lines at the end of each files [`d911881`](d91188159e) (Robert Sirchia) - changing the trigger file [`1aa640f`](1aa640fe1d) (Robert Sirchia) - removing line break used for testing [`0eae854`](0eae854a85) (Robert Sirchia) - adding a line break to test the GH trigger [`438221f`](438221fbe3) (Robert Sirchia) - changing trigger file from go.sum to go.mod [`3ef6dd4`](3ef6dd4036) (Robert Sirchia) - removing govulncheck from build-test [`5f15f53`](5f15f53e2e) (Robert Sirchia) - adding new workflows for govulncheck [`4df7d56`](4df7d5628b) (Robert Sirchia) - bump version to v3.16.0 [`d644da6`](d644da6205) (Matt Farina) - Bump github.com/gofrs/flock from 0.8.1 to 0.12.1 [`a77ad1a`](a77ad1a4a2) (dependabot\[bot]) - adding a new line at the end of the file as per the request of the maintainers [`88fa81e`](88fa81ecb6) (Robert Sirchia) - restoring the original triggers that were removed for testing [`76b9d96`](76b9d962f0) (Robert Sirchia) - moving govulncheck to a seperate job [`38dd4a7`](38dd4a7fea) (Robert Sirchia) - removing specific go version for govulncheck [`1ad6af9`](1ad6af9287) (Robert Sirchia) - updating go version for govulncheck [`e46e0dd`](e46e0ddb98) (Robert Sirchia) - fixing directory for go-packages [`6757f8a`](6757f8a81b) (Robert Sirchia) - changing the triggers to test this GH actions [`031b344`](031b34458e) (Robert Sirchia) - Adding in workflow_call to test GH Actions [`7e3df4b`](7e3df4baaf) (Robert Sirchia) - adding workflow_dispatch to test [`b351fdc`](b351fdce99) (Robert Sirchia) - adding govulncheck [`6761729`](67617290d4) (Robert Sirchia) - fix: fixed the token-permission and pinned-dependencies issue [`b4caed9`](b4caed94cd) (harshitasao) - docs(repo_index): explicitly state that the result is written to the directory passed in [`a71eaea`](a71eaeaf52) (Rauno Viskus) - Added the scorecard github action and its badge [`ae17dea`](ae17dea00d) (harshitasao) - Revert CAFile rename breaking change [`0687961`](0687961da4) (Evans Mungai) - kube/client: add to global client-go scheme in init func [`b9bdeca`](b9bdeca93b) (Dr. Stefan Schimanski) - adds tests for handling of Helm index with broken chart versions [#​13176](https://redirect.github.com/helm/helm/issues/13176) [`af13b0d`](af13b0d8dc) (ricardo.bartels@telekom.de) - improves handling of Helm index with broken helm chart versions [#​13176](https://redirect.github.com/helm/helm/issues/13176) [`154b477`](154b477554) (ricardo.bartels@telekom.de) - Add username/password to package subcommand [`12d8d28`](12d8d28534) (Evans Mungai) - Run go fmt [`0ad80e3`](0ad80e3b58) (Evans Mungai) - Add username/password to dependency build/update subcommands [`837ae42`](837ae4242c) (Evans Mungai) - Add username/password to push subcommand [`7672a17`](7672a1700d) (Evans Mungai) - Update ADOPTERS.md [`e0751f3`](e0751f34a7) (Nick Josevski) - ISSUE-9507: TEST server with varied Accept Header [`3c39705`](3c39705212) (Matt Clegg) - ISSUE-9507: ADD `application/gzip,application/octet-stream` accept header when downloading chart [`fff3547`](fff3547f9c) (Matt Clegg) - test(create): Test to check deprecated resource templates [`9c0b4c8`](9c0b4c8121) (Bhargav Ravuri) - added sprintf solution and found other possible overflow occurences [`ab640a7`](ab640a7177) (Trenton VanderWert) - changed Iota to FormatInt to allow int64 value preventing 2038 overflow [`4a45342`](4a45342887) (Trenton VanderWert) - fix(helm): pass down username/password CLI parameters to OCI registry clients [`dc158f6`](dc158f6208) (Evans Mungai) - Added `toYamlPretty` template function [`73f1dcc`](73f1dcc1d9) (Fred Heinecke) - test(pkg/engine): add tests for TOML parsing [`266ab5a`](266ab5af05) (Dominik Müller) - feat(pkg/engine): add TOML parsing functionality [`f550eda`](f550eda6e9) (Dominik Müller) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44Ni4xIiwidXBkYXRlZEluVmVyIjoiMzkuODYuMSIsInRhcmdldEJyYW5jaCI6Im1hc3RlciIsImxhYmVscyI6WyJhdXRvbWVyZ2UiLCJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL21pbm9yIl19-->
About The Project
CLA: Before contributing
Our CLA applies to this repository as well.
Please ensure it's signed before submitting a PR: https://cla-assistant.io/truecharts/charts
We use the truecharts/charts link, as CLA assistant does not allow for creating a custom link to a private repository. However, they all sign the same CLA that applies project-wide
License
This tool is released as "All Rights reserved" and hence it's code should NOT be shared. This includes binaries that are modified to remove TrueCharts specific code, unless approved by Kjeld Schouten "The Owner". Those that are invited to have access to repository, are free to edit and use this code for testing purposes, as long as its sourcecode is not shared or saved in-the-cloud.