0.20.0

Installation

To fetch the Helm chart for this release, run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.20.0

🚨 Breaking Changes

• ArgoCD Notifications has been removed from our runtime. This will not affect accounts that have installed their own Argo Notifications.

• Delivery Pipelines editing via UI has been deprecated.

• Garage has been removed and replaced with a Codefresh-provided SaaS logging solution. Please refer to the README for necessary values to activate this solution (it’s not enabled by default). As a result, Account ID is now a required value in the GitOps runtime Helm chart.

• Application Annotation Required for Promotions

  • Promotions will now only be triggered from applications that are explicitly associated with a Product using an annotation.
  • Support for assigning applications to Products without an annotation has been removed.

Before upgrading

Please review all Products and ensure that each associated application includes the correct annotation:

metadata:
  annotations:
    codefresh.io/product: [product-name]

Failing to apply this annotation will prevent promotions from being triggered or completing successfully.

🚀 Chart Changes

Added

• feat: Limits enforcement in runtime installation (#495, #457)
• feat: Use Codefresh provided storage for workflow logs (#428)
• feat: Enhanced error handling for app-proxy with CORS support in internal router configmap (#485)
• feat: Added ServiceMonitor configuration for app-proxy metrics monitoring (#503)
• feat: Added PodDisruptionBudget (PDB) and ServiceMonitor templates for event-reporter (#494)
• feat: Global constraints management (#469)
• feat: Argo CD version check and validation in pre-install hook (#462)
• feat: Added default pulling interval for gitops-operator (#456)
• feat: Add support for custom TLS certificates from the platform (#519)

Changed

• feat: Updated Argo CD Helm to 7.8.23-5-cap-v2.14.9-2025-05-20-9356e64a (#508)
• chore: Bumped gitops-operator to v0.7.11 (#509)
• chore: Updated kubectl version for installer (CR-29092) (#504)
• chore: Updated codefresh-gitops-operator to improve task handling efficiency (0.7.9) (#487)
• feat: Updated app-proxy image tags to 1.3565.0, including fixes for no_changes errors (#510)
• chore: Updated dependencies including nginx (#465), sealed-secrets (#464), csdp, cf-cli, and kubectl (#454)

Fixed

• fix: Corrected invalid redis-ha URL in event-reporter (#512)
• fix: Fixed cache handling in CI (#511)
• fix: Removed archiveLogs=true due to workflow execution issues without artifact storage (#507)
• fix: Improved error messages for app-proxy if they contain cause details (1.3498.0) (#481)
• fix: Fixed file revision validation in app-proxy (1.3470.0) (#468)
• fix: Bumped gitops-operator version to 0.7.12 to fix issue with reconciling certain apps (#528)
• fix: Updated ConfigMap name in Argo CD root path retrieval script (#514)

Security

• security: Updated app-proxy with critical security patches (#506)
• security: Included security fixes for Argo Rollouts 1.7.2 (#460)
• security: Included security fixes for Argo Workflows 3.6.7 (#460)

---

🔧 App-Proxy Changes

Added

• feat: Promotion workflows examples added to UI (CR-27457)
• feat: Default git-source creation after runtime initialization
• feat: Enhanced Git token validation and error handling
• feat: App resource tree enriched with annotations and labels support for OSS Argo CD

Changed

• refactor: Improved logging formatting and readability
• feat(git): Enhanced file revision validation and retrieval mechanisms
• refactor: Migrated instrumentation to cf-telemetry library (CR-26924)

Fixed

• fix: Corrected inner error reporting for HttpException (CR-29194)
• fix: Resolved directory path issue in PromotionService
• fix: Improved bootstrap error logging (CR-29076)
• fix: Enhanced exception filtering to propagate underlying error messages (CR-27952)
• chore: Fixed vulnerabilities and updated libraries including fastify, axios, musl (CR-28846)

---

⚠️ Upcoming Breaking Changes (Next Release)

The next release of the GitOps Runtime will include several breaking changes. Please review the following changes carefully and plan your upgrade accordingly:

Sealed Secrets Controller Disabled by Default

• The sealed-secrets controller will no longer be enabled by default.
• ➤ If your setup relies on sealed secrets, you must explicitly enable it by updating your values.yaml file.

Argo Workflows Switched to Namespaced Mode

• Argo Workflows will now be installed in namespaced mode.
• ➤ This change ensures compatibility with clusters where another instance of Argo Workflows is already present.
• ➤ No action is needed unless your workflows currently rely on cluster-wide installation behavior.

0.19.2

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.19.2

Chart changes

• updated csdp, gitops-operator (#467)
• updated nginx (#465)
• feat: security fixes for Argo Rollouts 1.7.2 (#460)
• updated sealed-secrets (#464)

App-proxy changes

No changes in this release

0.19.1

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.19.1

Chart changes

• Updated Argo CD version to 7.8.23-2-cap-v2.14.9-2025-04-23-4de04dd8 (#461)
• Added pre-install hook validation for bring-your-own Argo-CD installations - version must satisfy ">=2.12 <3" (#462)

App-proxy changes

No changes in this release

0.19.0

0.19.0 Release Notes

Installation

To get the Helm chart for this release, run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.19.0

🚀 Chart Changes

Added

• feat: Added support for rollout-reporter with external Argo Rollouts (#441)
• feat: Added custom rollout actions (pause, skip-current-step) to Argo CD ConfigMap (#443)
• feat: Added rollout rollback query support to sources-server (0.3.15) (#442)

Changed

• feat: Updated Argo CD dependency to version 7.8.23-1-cap-v2.14.9 (#455)
• chore: Updated gitops-operator version to 0.5.4 (#451, #434)
• feat: Updated app-proxy image tag to 1.3430.2 (#447)
• chore: Updated cf-argocd-extras dependency to version 0.3.15 (#427)
• chore: Updated chart NOTES.txt for clarity (#431)

Fixed

• fix: Corrected gitops-operator values configuration (#439)
• fix: Fixed private registry external-argocd support and values structure (#436)
• fix: Fixed eventsource restart issue in argo-events (2.4.7-1-cap-CR-28072) (#435)
• fix: Fixed Argo CD fullname template; added sources-server and event-reporter versions to codefresh-cm ConfigMap (#430)

---

🔧 App-Proxy Changes

Added

• feat: Disabled unsupported rollout actions
• feat(app-proxy): Enabled rollout rollback via sources-server

Changed

• fix: Replaced file diff compare library (rfc6902 with fast-json-patch)
• fix: Improved error handling to include detailed provider cause messages (CR-28089)
• fix: Enhanced error messaging when adding user and runtime git token (CR-27797)
• fix: Improved error handling for ISC "nothing to commit" scenario
• docs: Updated README for clarity on Git Source resources

0.18.4

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.18.4

Chart changes

• feat: rollout-reporter with external argo rollouts (#441)

App-proxy changes

No changes in this release

0.18.3

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.18.3

Chart changes

• fix gitops operator values (#439)

App-proxy changes

No changes in this release

0.18.2

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.18.2

Chart changes

• patch - private registry external argocd support and values structure fix (#436)

App-proxy changes

No changes in this release

0.18.1

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.18.1

Chart changes

• fix: argo-events 2.4.7-1-cap-CR-28072 with fix for eventsource restarts (#435)
• feat: bump app-proxy to 1.3389.0 (#432)
• chore: update chart NOTES.txt (#431)
• fix: argocd fullname template; feat: add sources-server and event-reporter versions to codefresh-cm ConfigMap (#430)
• chore(deps): update cf-argocd-extras dependency to 0.3.13 (#427)

App-proxy changes

Introduced changes:

• fix: isc nothing to commit error handling
• fix: Update README for clarity on Git Source resources
• fix: Cr 27797 adding user and runtime git token error err msg

0.18.0

Installation

To fetch the Helm chart for this release, run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.18.0

🚀 Chart Changes

Added

• feat: Implement support for customer-managed Argo CD instances (#399)
• feat: Add script to verify Argo CD service labels for auto-detection (#423)

Changed

• feat(gitops-operator): Set LEADER_ELECT based on replicaCount (#419)
• chore: Update Argo CD Helm chart to version 7.7.14-5-cap-2.13.3-2025.3.5-50344f005 (#412)
  • ⚠️ Breaking Change: Argo CD Helm chart now uses Helm 3.17.1, which may require adjustments in values.yaml files for subcharts containing null objects. Please review Argo CD Helm release notes for details.
• chore: Update garage (aws-cli) dependency (#416)
• chore: Update app-proxy image version to 1.3362.0 (#414)
• chore: Update tunnel-client (frpc) dependency to 0.1.19 (#415)
• chore: Update gitops-operator version to 0.5.0 (#409)
• feat: Upgrade Argo Rollouts to version 1.7.2 including security fixes (#392)

Fixed

• fix: Correct typo in parameter name in values.yaml (#418)

---

🔧 App-Proxy Changes

Added

• feat: Add option to auto-detect ArgoCD URL
• feat: Add git manifest and commit details
• feat(argo-cd): Add ArgoCD discovery resolver and connection status checks
• feat(runtime): Add isExternalArgoCd field to runtime entity
• feat: Update runtime values for implicit configuration

Changed

• feat(app-proxy): Improve file handling in promotion service
• refactor(app-proxy): Improve URL handling and enforce HTTPS scheme

Fixed

• fix(app-proxy): Make ArgoCD password optional in config schema
• fix: Format git HTTP error messages
• fix(app-proxy): Return valid: true for validateApplication query with OSS ArgoCD
• fix(isc): Reorder ISC service bootstrap initialization steps
• fix: Release promoted newest app version instead of triggering version

---

Security & Dependencies

• feat: Upgrade Argo Rollouts to version 1.7.2 including security fixes (#392)

---

For full details, see individual PRs linked above.

0.17.1

Installation

To get Helm chart for this release run:

helm pull oci://quay.io/codefresh/gitops-runtime --version 0.17.1

Chart changes

• upgraded argo-cd argo-helm to 7.7.14-5-cap-2.13.3-2025.3.5-50344f005 (#412)
• chore: updated garage(aws-cli) (#416)
• chore: updated app-proxy (#414)
• chore: updated tunnel-client(frpc) (#415)
• update argo-cd helm chart version to 7.7.14-4-cap-2.13.3-2025.3.3-bddbd99f7 (#410)

App-proxy changes

Introduced changes:

• fix(isc): Reorder ISC service bootstrap initialization steps
• feat: add option to auto-detect argocd url