diff --git a/.release-please-manifest.json b/.release-please-manifest.json index f4e3c0f2..3ae182d1 100644 --- a/.release-please-manifest.json +++ b/.release-please-manifest.json @@ -1 +1 @@ -{".":"0.0.46"} \ No newline at end of file +{".":"0.0.47"} \ No newline at end of file diff --git a/CHANGELOG.md b/CHANGELOG.md index cfafba58..fce4a083 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,36 @@ # Changelog +## [0.0.47](https://github.com/validator-labs/validator/compare/v0.0.46...v0.0.47) (2024-07-20) + + +### Bug Fixes + +* handle basic auth for OCI client ([#333](https://github.com/validator-labs/validator/issues/333)) ([5041c4f](https://github.com/validator-labs/validator/commit/5041c4f30d87489929f0800ae21a1a7ea0c73cfa)) +* make string utils avail externally ([#335](https://github.com/validator-labs/validator/issues/335)) ([81d7d46](https://github.com/validator-labs/validator/commit/81d7d46177c8c1c9e5958c86fa6a6876b8b699d4)) + + +### Other + +* move string utils to central location ([#334](https://github.com/validator-labs/validator/issues/334)) ([44c09ab](https://github.com/validator-labs/validator/commit/44c09abfe9fa35a63f7afe4ac777247826984465)) + + +### Docs + +* recommend validatorctl; document Hauler ([#326](https://github.com/validator-labs/validator/issues/326)) ([18a8fef](https://github.com/validator-labs/validator/commit/18a8fef6da2bcf53d9bc6073f0eb0a6e4e8e6bbd)) +* Update air-gapped prereqs in README.md ([de015d9](https://github.com/validator-labs/validator/commit/de015d9112ba59a61bffe2d5e5c00914441fea31)) + + +### Dependency Updates + +* **deps:** update golang.org/x/exp digest to 8a7402a ([#336](https://github.com/validator-labs/validator/issues/336)) ([8f94947](https://github.com/validator-labs/validator/commit/8f9494753245bcddf224a2540c9b4b8a037edc7c)) +* **deps:** update golang.org/x/exp digest to 8a7402a ([#338](https://github.com/validator-labs/validator/issues/338)) ([e012a4e](https://github.com/validator-labs/validator/commit/e012a4e4cc66ab6250d9c7a6eb253df55bd0cc98)) +* **deps:** update golang.org/x/exp digest to e3f2596 ([#329](https://github.com/validator-labs/validator/issues/329)) ([3419300](https://github.com/validator-labs/validator/commit/34193001faf79259d195ba5ad904074988d50b47)) +* **deps:** update kubernetes packages to v0.30.3 ([#332](https://github.com/validator-labs/validator/issues/332)) ([5d4486c](https://github.com/validator-labs/validator/commit/5d4486ce195a6a254c39096548f5d5b97372c275)) +* **deps:** update module github.com/google/go-containerregistry to v0.20.1 ([#330](https://github.com/validator-labs/validator/issues/330)) ([81fd1cf](https://github.com/validator-labs/validator/commit/81fd1cf17a046d9383984f83e8ef63a4bc5a7572)) +* **deps:** update module github.com/slack-go/slack to v0.13.1 ([#328](https://github.com/validator-labs/validator/issues/328)) ([089d25d](https://github.com/validator-labs/validator/commit/089d25d9f81f179067a69743579bd94e4bfa2454)) +* **deps:** update module github.com/validator-labs/validator-plugin-oci to v0.0.11 ([#339](https://github.com/validator-labs/validator/issues/339)) ([70a26e1](https://github.com/validator-labs/validator/commit/70a26e15f0833c621b80ad1c2c86a4eb82e56042)) +* **deps:** update softprops/action-gh-release digest to c062e08 ([#331](https://github.com/validator-labs/validator/issues/331)) ([c797383](https://github.com/validator-labs/validator/commit/c7973838e3bf690784c46eb25f77b54061732a55)) + ## [0.0.46](https://github.com/validator-labs/validator/compare/v0.0.45...v0.0.46) (2024-07-12) diff --git a/chart/validator/Chart.yaml b/chart/validator/Chart.yaml index 90d38576..a7c91549 100644 --- a/chart/validator/Chart.yaml +++ b/chart/validator/Chart.yaml @@ -4,5 +4,5 @@ description: >- Monitor results created by validator plugins and upload them to a configurable sink type: application -version: 0.0.46 +version: 0.0.47 appVersion: 0.0.27 diff --git a/chart/validator/README.md b/chart/validator/README.md index b7bb15d8..70937d5d 100644 --- a/chart/validator/README.md +++ b/chart/validator/README.md @@ -24,7 +24,7 @@ The following table lists the configurable parameters of the Validator chart and | `controllerManager.manager.containerSecurityContext.allowPrivilegeEscalation` | | `false` | | `controllerManager.manager.containerSecurityContext.capabilities.drop` | | `["ALL"]` | | `controllerManager.manager.image.repository` | | `"quay.io/validator-labs/validator"` | -| `controllerManager.manager.image.tag` | x-release-please-version | `"v0.0.46"` | +| `controllerManager.manager.image.tag` | x-release-please-version | `"v0.0.47"` | | `controllerManager.manager.resources.limits.cpu` | | `"500m"` | | `controllerManager.manager.resources.limits.memory` | | `"512Mi"` | | `controllerManager.manager.resources.requests.cpu` | | `"10m"` | @@ -51,7 +51,7 @@ The following table lists the configurable parameters of the Validator chart and | `pluginSecrets.vSphere` | Don't forget to delete these curly braces if you're specifying credentials here! | `{}` | | `pluginSecrets.oci.auth` | Don't forget to delete these square brackets if you're specifying credentials here! | `[]` | | `pluginSecrets.oci.pubKeys` | Don't forget to delete these square brackets if you're specifying public keys here! | `[]` | -| `plugins` | | `[{"chart": {"name": "validator-plugin-azure", "repository": "https://validator-labs.github.io/validator-plugin-azure", "version": "v0.0.13"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-azure\n tag: v0.0.13 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n # Optionally specify a volumeMount to mount a volume containing a private key\n # to leverage Azure Service principal with certificate authentication.\n volumeMounts: []\n replicas: 1\n serviceAccount:\n annotations: {}\n # Optionally specify a volume containing a private key to leverage Azure Service\n # principal with certificate authentication.\n volumes: []\n # Optionally specify additional labels to use for the controller-manager Pods.\n podLabels: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP\nauth:\n # Leave secret undefined for implicit auth (e.g., WorkloadIdentity credentials)\n secret: {}\n # Specify the name of a secret in your cluster that contains Azure credentials.\n # E.g.: https://github.com/validator-labs/validator/blob/main/chart/validator/templates/plugin-secret-azure.yaml\n # secretName: azure-creds\n\n # Override the service account used by Azure validator (optional, could be used for WorkloadIdentityCredentials on AKS)\n # WARNING: the chosen service account must include all RBAC privileges found in templates/manager-rbac.yaml\n serviceAccountName: \"\""}, {"chart": {"name": "validator-plugin-oci", "repository": "https://validator-labs.github.io/validator-plugin-oci", "version": "v0.0.11"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-oci\n tag: v0.0.11 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-kubescape", "repository": "https://validator-labs.github.io/validator-plugin-kubescape", "version": "v0.0.3"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-kubescape\n tag: v0.0.3 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n # Optionally specify a volumeMount to mount a volume containing a private key\n # to leverage Azure Service principal with certificate authentication.\n volumeMounts: []\n replicas: 1\n serviceAccount:\n annotations: {}\n # Optionally specify a volume containing a private key to leverage Azure Service\n # principal with certificate authentication.\n volumes: []\n # Optionally specify additional labels to use for the controller-manager Pods.\n podLabels: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-aws", "repository": "https://validator-labs.github.io/validator-plugin-aws", "version": "v0.1.1"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-aws\n tag: v0.1.1 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP\nauth:\n # Leave secret undefined for implicit auth (node instance IAM role, IAM roles for Service Accounts, etc.)\n secret: {}\n # Specify the name of a secret in your cluster that contains AWS credentials.\n # E.g.: https://github.com/validator-labs/validator/blob/main/chart/validator/templates/plugin-secret-aws.yaml\n # secretName: aws-creds\n\n # Override the service account used by AWS validator (optional, could be used for IAM roles for Service Accounts)\n # WARNING: the chosen service account must have the same RBAC privileges as seen in templates/manager-rbac.yaml\n serviceAccountName: \"\""}, {"chart": {"name": "validator-plugin-network", "repository": "https://validator-labs.github.io/validator-plugin-network", "version": "v0.0.18"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: true\n capabilities:\n add:\n - NET_RAW\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-network\n tag: v0.0.18 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-maas", "repository": "https://validator-labs.github.io/validator-plugin-maas", "version": "v0.0.4"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-maas\n tag: v0.0.4 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-vsphere", "repository": "https://validator-labs.github.io/validator-plugin-vsphere", "version": "v0.0.27"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --metrics-bind-address=127.0.0.1:8080\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-vsphere\n tag: v0.0.27 # x-release-please-version\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP\nauth:\n # Specify the name of a secret in your cluster that contains vSphere credentials.\n # E.g.: https://github.com/validator-labs/validator/blob/main/chart/validator/templates/plugin-secret-vsphere.yaml\n secretName: vsphere-credentials"}]` | +| `plugins` | | `[{"chart": {"name": "validator-plugin-azure", "repository": "https://validator-labs.github.io/validator-plugin-azure", "version": "v0.0.13"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-azure\n tag: v0.0.13\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n # Optionally specify a volumeMount to mount a volume containing a private key\n # to leverage Azure Service principal with certificate authentication.\n volumeMounts: []\n replicas: 1\n serviceAccount:\n annotations: {}\n # Optionally specify a volume containing a private key to leverage Azure Service\n # principal with certificate authentication.\n volumes: []\n # Optionally specify additional labels to use for the controller-manager Pods.\n podLabels: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP\nauth:\n # Leave secret undefined for implicit auth (e.g., WorkloadIdentity credentials)\n secret: {}\n # Specify the name of a secret in your cluster that contains Azure credentials.\n # E.g.: https://github.com/validator-labs/validator/blob/main/chart/validator/templates/plugin-secret-azure.yaml\n # secretName: azure-creds\n\n # Override the service account used by Azure validator (optional, could be used for WorkloadIdentityCredentials on AKS)\n # WARNING: the chosen service account must include all RBAC privileges found in templates/manager-rbac.yaml\n serviceAccountName: \"\""}, {"chart": {"name": "validator-plugin-oci", "repository": "https://validator-labs.github.io/validator-plugin-oci", "version": "v0.0.11"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-oci\n tag: v0.0.11\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-kubescape", "repository": "https://validator-labs.github.io/validator-plugin-kubescape", "version": "v0.0.3"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-kubescape\n tag: v0.0.3\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n # Optionally specify a volumeMount to mount a volume containing a private key\n # to leverage Azure Service principal with certificate authentication.\n volumeMounts: []\n replicas: 1\n serviceAccount:\n annotations: {}\n # Optionally specify a volume containing a private key to leverage Azure Service\n # principal with certificate authentication.\n volumes: []\n # Optionally specify additional labels to use for the controller-manager Pods.\n podLabels: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-aws", "repository": "https://validator-labs.github.io/validator-plugin-aws", "version": "v0.1.1"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-aws\n tag: v0.1.1\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP\nauth:\n # Leave secret undefined for implicit auth (node instance IAM role, IAM roles for Service Accounts, etc.)\n secret: {}\n # Specify the name of a secret in your cluster that contains AWS credentials.\n # E.g.: https://github.com/validator-labs/validator/blob/main/chart/validator/templates/plugin-secret-aws.yaml\n # secretName: aws-creds\n\n # Override the service account used by AWS validator (optional, could be used for IAM roles for Service Accounts)\n # WARNING: the chosen service account must have the same RBAC privileges as seen in templates/manager-rbac.yaml\n serviceAccountName: \"\""}, {"chart": {"name": "validator-plugin-network", "repository": "https://validator-labs.github.io/validator-plugin-network", "version": "v0.0.18"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: true\n capabilities:\n add:\n - NET_RAW\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-network\n tag: v0.0.18\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-maas", "repository": "https://validator-labs.github.io/validator-plugin-maas", "version": "v0.0.4"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-maas\n tag: v0.0.4\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP"}, {"chart": {"name": "validator-plugin-vsphere", "repository": "https://validator-labs.github.io/validator-plugin-vsphere", "version": "v0.0.27"}, "values": "controllerManager:\n kubeRbacProxy:\n args:\n - --secure-listen-address=0.0.0.0:8443\n - --upstream=http://127.0.0.1:8080/\n - --logtostderr=true\n - --v=0\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: gcr.io/kubebuilder/kube-rbac-proxy\n tag: v0.16.0\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 5m\n memory: 64Mi\n manager:\n args:\n - --health-probe-bind-address=:8081\n - --metrics-bind-address=127.0.0.1:8080\n - --leader-elect\n containerSecurityContext:\n allowPrivilegeEscalation: false\n capabilities:\n drop:\n - ALL\n image:\n repository: quay.io/validator-labs/validator-plugin-vsphere\n tag: v0.0.27\n resources:\n limits:\n cpu: 500m\n memory: 128Mi\n requests:\n cpu: 10m\n memory: 64Mi\n replicas: 1\n serviceAccount:\n annotations: {}\nkubernetesClusterDomain: cluster.local\nmetricsService:\n ports:\n - name: https\n port: 8443\n protocol: TCP\n targetPort: https\n type: ClusterIP\nauth:\n # Specify the name of a secret in your cluster that contains vSphere credentials.\n # E.g.: https://github.com/validator-labs/validator/blob/main/chart/validator/templates/plugin-secret-vsphere.yaml\n secretName: vsphere-credentials"}]` | diff --git a/chart/validator/values.yaml b/chart/validator/values.yaml index 397df829..f2611d63 100644 --- a/chart/validator/values.yaml +++ b/chart/validator/values.yaml @@ -31,7 +31,7 @@ controllerManager: - ALL image: repository: quay.io/validator-labs/validator - tag: v0.0.46 # x-release-please-version + tag: v0.0.47 # x-release-please-version resources: limits: cpu: 500m @@ -225,7 +225,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-azure - tag: v0.0.13 # x-release-please-version + tag: v0.0.13 resources: limits: cpu: 500m @@ -300,7 +300,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-oci - tag: v0.0.11 # x-release-please-version + tag: v0.0.11 resources: limits: cpu: 500m @@ -357,7 +357,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-kubescape - tag: v0.0.3 # x-release-please-version + tag: v0.0.3 resources: limits: cpu: 500m @@ -422,7 +422,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-aws - tag: v0.1.1 # x-release-please-version + tag: v0.1.1 resources: limits: cpu: 500m @@ -491,7 +491,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-network - tag: v0.0.18 # x-release-please-version + tag: v0.0.18 resources: limits: cpu: 500m @@ -548,7 +548,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-maas - tag: v0.0.4 # x-release-please-version + tag: v0.0.4 resources: limits: cpu: 500m @@ -606,7 +606,7 @@ plugins: - ALL image: repository: quay.io/validator-labs/validator-plugin-vsphere - tag: v0.0.27 # x-release-please-version + tag: v0.0.27 resources: limits: cpu: 500m diff --git a/hack/chart/values-base.yaml b/hack/chart/values-base.yaml index 476a9ad6..b3d5cfd7 100644 --- a/hack/chart/values-base.yaml +++ b/hack/chart/values-base.yaml @@ -31,7 +31,7 @@ controllerManager: - ALL image: repository: quay.io/validator-labs/validator - tag: v0.0.46 # x-release-please-version + tag: v0.0.47 # x-release-please-version resources: limits: cpu: 500m diff --git a/hack/hauler-manifest-template.yaml b/hack/hauler-manifest-template.yaml index 776a080a..88cd2774 100644 --- a/hack/hauler-manifest-template.yaml +++ b/hack/hauler-manifest-template.yaml @@ -4,7 +4,7 @@ metadata: name: validator-images spec: images: - - name: quay.io/validator-labs/validator:v0.0.46 # x-release-please-version + - name: quay.io/validator-labs/validator:v0.0.47 # x-release-please-version - name: quay.io/validator-labs/validator-plugin-aws:v${AWS_VERSION} - name: quay.io/validator-labs/validator-plugin-azure:v${AZURE_VERSION} - name: quay.io/validator-labs/validator-plugin-kubescape:v${KUBESCAPE_VERSION} @@ -27,7 +27,7 @@ spec: charts: - name: validator repoURL: https://validator-labs.github.io/validator - version: 0.0.46 # x-release-please-version + version: 0.0.47 # x-release-please-version - name: validator-plugin-aws repoURL: https://validator-labs.github.io/validator-plugin-aws version: ${AWS_VERSION} diff --git a/hack/update-versions.sh b/hack/update-versions.sh index 7e78e99d..0da6b714 100755 --- a/hack/update-versions.sh +++ b/hack/update-versions.sh @@ -21,6 +21,8 @@ function addChartValues { indentedValues="${indentedValues} $line"$'\n' done <<< "$values" + indentedValues=$(sed 's/ # x-release-please-version//g' <<<"$indentedValues") + # Append the plugin's values to chart/validator/values.yaml cat <> chart/validator/values.yaml - chart: @@ -40,7 +42,6 @@ function updateValues { for plugin in "${!versions[@]}"; do version=${versions[$plugin]} addChartValues validator-plugin-$plugin $version - truncate -s-1 chart/validator/values.yaml echo "Updated values.yaml for validator-plugin-$plugin @ v$version." done } diff --git a/hauler-manifest.yaml b/hauler-manifest.yaml index 7ea7b3fa..e1192e75 100644 --- a/hauler-manifest.yaml +++ b/hauler-manifest.yaml @@ -4,7 +4,7 @@ metadata: name: validator-images spec: images: - - name: quay.io/validator-labs/validator:v0.0.46 # x-release-please-version + - name: quay.io/validator-labs/validator:v0.0.47 # x-release-please-version - name: quay.io/validator-labs/validator-plugin-aws:v0.1.1 - name: quay.io/validator-labs/validator-plugin-azure:v0.0.13 - name: quay.io/validator-labs/validator-plugin-kubescape:v0.0.3 @@ -27,7 +27,7 @@ spec: charts: - name: validator repoURL: https://validator-labs.github.io/validator - version: 0.0.46 # x-release-please-version + version: 0.0.47 # x-release-please-version - name: validator-plugin-aws repoURL: https://validator-labs.github.io/validator-plugin-aws version: 0.1.1 diff --git a/release-please-config.json b/release-please-config.json index c21ae7f6..ccc3af17 100644 --- a/release-please-config.json +++ b/release-please-config.json @@ -11,7 +11,9 @@ "chart/validator/Chart.yaml", "chart/validator/README.md", "chart/validator/values.yaml", - "hauler-manifest.yaml" + "hauler-manifest.yaml", + "hack/hauler-manifest-template.yaml", + "hack/chart/values-base.yaml" ], "changelog-sections": [ {