Fips v1.7.2 #4

gesarki · 2024-09-03T22:53:53Z

Checklist:

Either (a) I've created an enhancement proposal and discussed it with the community, (b) this is a bug fix, or (c) this is a chore.
The title of the PR is (a) conventional with a list of types and scopes found here, (b) states what changed, and (c) suffixes the related issues number. E.g. "fix(controller): Updates such and such. Fixes #1234".
I've signed my commits with DCO
I have written unit and/or e2e tests for my change. PRs without these are unlikely to be merged.
My builds are green. Try syncing with master if they are not.
My organization is added to USERS.md.

* tests: add unit tests for maxSurge=0, replicas=1 Signed-off-by: Alexandre Gaudreault <[email protected]> * update doc Signed-off-by: Alexandre Gaudreault <[email protected]> * update test name Signed-off-by: Alexandre Gaudreault <[email protected]> --------- Signed-off-by: Alexandre Gaudreault <[email protected]>

…out (argoproj#3213) Signed-off-by: Guillaume Doussin <[email protected]>

Update shell autocompletion instructions Signed-off-by: John Pitman <[email protected]>

…1.27.0 (argoproj#3368) chore(deps): bump github.com/aws/aws-sdk-go-v2/config Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.26.6 to 1.27.0. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@config/v1.26.6...config/v1.27.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Run: go get github.com/argoproj/notifications-engine@7a069766e95476e1074eeed6145085160e2fec63 Updating and fetch latest notifications-engine dependencies Signed-off-by: Andre Marcelo-Tanner <[email protected]> * Run: go get github.com/argoproj/notifications-engine/pkg/[email protected] Signed-off-by: Andre Marcelo-Tanner <[email protected]> * Replace telegram-bot-api and run go mod tidy - Update go.mod: github.com/go-telegram-bot-api/telegram-bot-api/v5 => github.com/OvyFlash/telegram-bot-api/v5 v5.0.0-20240108230938-63e5c59035bf - Ref: argoproj/notifications-engine#265 - Could also be done via go replace --edit - go mod tidy also ran Signed-off-by: Andre Marcelo-Tanner <[email protected]> * Add strReplaceDocFiles to update strings from default docs Signed-off-by: Andre Marcelo-Tanner <[email protected]> * Run: make docs Signed-off-by: Andre Marcelo-Tanner <[email protected]> * replace <config-map-name> with argo-rollouts-notification-configmap and also replace secret with argocd-notifications-secret Signed-off-by: Andre Marcelo-Tanner <[email protected]> * add Ada company to USERS.md Signed-off-by: Andre Marcelo-Tanner <[email protected]> * chore: update contributing docs with notifications engine section Signed-off-by: Andre Marcelo-Tanner <[email protected]> --------- Signed-off-by: Andre Marcelo-Tanner <[email protected]>

…age (argoproj#3388) fix: include the response error in the plugin init error message Signed-off-by: Chetan Banavikalmutt <[email protected]>

* added Consul plugin support to website Signed-off-by: Michael Wilkerson <[email protected]> * addressed comments Signed-off-by: Michael Wilkerson <[email protected]> --------- Signed-off-by: Michael Wilkerson <[email protected]>

…j#3403) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.0.1 to 4.1.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4.0.1...v4.1.0) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…m 1.33.0 to 1.36.1 (argoproj#3400) chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudwatch Bumps [github.com/aws/aws-sdk-go-v2/service/cloudwatch](https://github.com/aws/aws-sdk-go-v2) from 1.33.0 to 1.36.1. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.33.0...service/ec2/v1.36.1) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/cloudwatch dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…j#3350) * feat: allows analysis run to use separate kubeconfig for jobs Signed-off-by: Soumya Ghosh Dastidar <[email protected]> * fix: tests Signed-off-by: Soumya Ghosh Dastidar <[email protected]> * refactor: rename env var names Signed-off-by: Soumya Ghosh Dastidar <[email protected]> --------- Signed-off-by: Soumya Ghosh Dastidar <[email protected]>

…oproj#3406) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@f95db51...0d103c3) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…roj#3404) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.61.0 to 1.62.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.61.0...v1.62.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ancingv2 from 1.27.0 to 1.30.1 (argoproj#3399) chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 Bumps [github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2](https://github.com/aws/aws-sdk-go-v2) from 1.27.0 to 1.30.1. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@config/v1.27.0...service/s3/v1.30.1) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…1.27.4 (argoproj#3410) chore(deps): bump github.com/aws/aws-sdk-go-v2/config Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.0 to 1.27.4. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@config/v1.27.0...config/v1.27.4) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…goproj#3419) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.4 to 1.9.0. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.8.4...v1.9.0) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…1.27.5 (argoproj#3421) chore(deps): bump github.com/aws/aws-sdk-go-v2/config Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.4 to 1.27.5. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@config/v1.27.4...config/v1.27.5) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…nx/plugins). (argoproj#3215) * add support for the traffic weight > 100. Signed-off-by: Liming Liu <[email protected]> * unit test for the max weight ingress. Signed-off-by: Liming Liu <[email protected]> * unit test for the max weight in canary rollout. Signed-off-by: Liming Liu <[email protected]> * add docs Signed-off-by: Zach Aller <[email protected]> * add docs Signed-off-by: Zach Aller <[email protected]> --------- Signed-off-by: Liming Liu <[email protected]> Signed-off-by: Zach Aller <[email protected]> Co-authored-by: Zach Aller <[email protected]>

…roj#3426) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.62.0 to 1.62.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.62.0...v1.62.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Signed-off-by: Craig Newton <[email protected]>

…own delay (argoproj#3417) Signed-off-by: Yohan Belval <[email protected]>

the ordered list was 1-2-3-1 fixed the indentation Signed-off-by: Carlos Sanchez <[email protected]>

…roj#3439) Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5.1.0 to 5.2.0. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@4a13e50...af5a7ed) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

) Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release) from 1 to 2. - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@de2c0eb...d99959e) --- updated-dependencies: - dependency-name: softprops/action-gh-release dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…goproj#3440) Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release) from 2.0.2 to 2.0.3. - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@d99959e...3198ee1) --- updated-dependencies: - dependency-name: softprops/action-gh-release dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…goproj#3442) Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release) from 2.0.3 to 2.0.4. - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@3198ee1...9d7c94c) --- updated-dependencies: - dependency-name: softprops/action-gh-release dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…#3422) Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.17.0 to 0.18.0. - [Commits](golang/oauth2@v0.17.0...v0.18.0) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ec.canary.analysis not set (argoproj#3446) Treat spec.canary.analysis.template empty list as spec.canary.analysis not set Signed-off-by: Kevin Qian <[email protected]>

…oproj#3449) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.1.0 to 3.2.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@0d103c3...2b51285) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ancingv2 from 1.30.1 to 1.30.3 (argoproj#3447) chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 Bumps [github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2](https://github.com/aws/aws-sdk-go-v2) from 1.30.1 to 1.30.3. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.30.1...service/s3/v1.30.3) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

) Bumps [docker/login-action](https://github.com/docker/login-action) from 3.0.0 to 3.1.0. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@343f7c4...e92390c) --- updated-dependencies: - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…rgoproj#3468) * chore(deps): bump github.com/prometheus/common from 0.42.0 to 0.51.1 Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.42.0 to 0.51.1. - [Release notes](https://github.com/prometheus/common/releases) - [Commits](prometheus/common@v0.42.0...v0.51.1) --- updated-dependencies: - dependency-name: github.com/prometheus/common dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> * fix test Signed-off-by: Zach Aller <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Zach Aller <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Zach Aller <[email protected]>

Signed-off-by: Chetan Banavikalmutt <[email protected]>

* chore: bump k8s versions Signed-off-by: Zach Aller <[email protected]> * chore: bump k8s versions Signed-off-by: Zach Aller <[email protected]> * chore: bump k8s versions Signed-off-by: Zach Aller <[email protected]> * chore: bump k8s versions Signed-off-by: Zach Aller <[email protected]> * chore: bump k8s versions - cleanup Signed-off-by: Zach Aller <[email protected]> * bump time to pass on new and old versions Signed-off-by: Zach Aller <[email protected]> --------- Signed-off-by: Zach Aller <[email protected]>

…rgoproj#3490) Bumps [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) from 1.26.0 to 1.26.1. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@v1.26.0...v1.26.1) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…m 1.36.3 to 1.37.0 (argoproj#3489) chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudwatch Bumps [github.com/aws/aws-sdk-go-v2/service/cloudwatch](https://github.com/aws/aws-sdk-go-v2) from 1.36.3 to 1.37.0. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/service/s3/v1.37.0/CHANGELOG.md) - [Commits](aws/aws-sdk-go-v2@service/ssm/v1.36.3...service/s3/v1.37.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/cloudwatch dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…1.27.10 (argoproj#3492) chore(deps): bump github.com/aws/aws-sdk-go-v2/config Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.9 to 1.27.10. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@config/v1.27.9...config/v1.27.10) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…ancingv2 from 1.30.4 to 1.30.5 (argoproj#3491) chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 Bumps [github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2](https://github.com/aws/aws-sdk-go-v2) from 1.30.4 to 1.30.5. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.30.4...service/s3/v1.30.5) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…goproj#3519 (argoproj#3520) Fixed sha256 algo Signed-off-by: dhawani <[email protected]> Signed-off-by: dhawani <[email protected]> Co-authored-by: dhawani <[email protected]>

* fix: fallback to patch on scale conflict Signed-off-by: Zach Aller <[email protected]> fix: switch to retry logic Signed-off-by: Zach Aller <[email protected]> lint Signed-off-by: Zach Aller <[email protected]> retry experiments Signed-off-by: Zach Aller <[email protected]> remove TODO Signed-off-by: Zach Aller <[email protected]> remove accidental add Signed-off-by: Zach Aller <[email protected]> remove accidental add Signed-off-by: Zach Aller <[email protected]> add retry to setting revision Signed-off-by: Zach Aller <[email protected]> chore(deps): bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0 (argoproj#3537) chore(deps): bump slsa-framework/slsa-github-generator Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 1.10.0 to 2.0.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](slsa-framework/slsa-github-generator@v1.10.0...v2.0.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> chore(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 (argoproj#3522) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.4.0 to 3.5.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@e1523de...59acb62) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> chore(deps): bump golangci/golangci-lint-action from 4 to 5 (argoproj#3540) Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4 to 5. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](golangci/golangci-lint-action@v4...v5) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> docs: provide recommendation for strategies (argoproj#3531) * docs: provide recommendation for strategies Signed-off-by: Kostis (Codefresh) <[email protected]> * docs: traffic manager clarifications Signed-off-by: Kostis (Codefresh) <[email protected]> * docs: explain canary with/out traffic manager Signed-off-by: Kostis (Codefresh) <[email protected]> * docs: add 3 columns on the comparison table Signed-off-by: Kostis (Codefresh) <[email protected]> --------- Signed-off-by: Kostis (Codefresh) <[email protected]> feat(dashboard): change the color of the current rollout step (argoproj#3526) I feel that having the current (running) step in a orange color is misleading, as orange usually means warning. This commit changes the color to the `$argo-running-color`. Signed-off-by: Alejandro López Sánchez <[email protected]> chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudwatch from 1.37.0 to 1.38.0 (argoproj#3525) chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudwatch Bumps [github.com/aws/aws-sdk-go-v2/service/cloudwatch](https://github.com/aws/aws-sdk-go-v2) from 1.37.0 to 1.38.0. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/service/s3/v1.38.0/CHANGELOG.md) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.37.0...service/s3/v1.38.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/service/cloudwatch dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> perform all of set revision actions on retry Signed-off-by: Zach Aller <[email protected]> fix variable Signed-off-by: Zach Aller <[email protected]> add retry counts to log Signed-off-by: Zach Aller <[email protected]> add retry counts to logs Signed-off-by: Zach Aller <[email protected]> clean logs, always dump controller e2e logs Signed-off-by: Zach Aller <[email protected]> lower timeout Signed-off-by: Zach Aller <[email protected]> bump timeout on e2e Signed-off-by: Zach Aller <[email protected]> retry on rollout conflict Signed-off-by: Zach Aller <[email protected]> don't reque on rs changes Signed-off-by: Zach Aller <[email protected]> reque rs Signed-off-by: Zach Aller <[email protected]> bump qps for e2e Signed-off-by: Zach Aller <[email protected]> fix gen-crd Signed-off-by: Zach Aller <[email protected]> switch to patch Signed-off-by: Zach Aller <[email protected]> switch to patch Signed-off-by: Zach Aller <[email protected]> add log Signed-off-by: Zach Aller <[email protected]> move log lines Signed-off-by: Zach Aller <[email protected]> Trigger Build Signed-off-by: Zach Aller <[email protected]> fix one e2e test Signed-off-by: Zach Aller <[email protected]> lint Signed-off-by: Zach Aller <[email protected]> add test Signed-off-by: Zach Aller <[email protected]> chore(deps): bump actions/setup-go from 5.0.0 to 5.0.1 (argoproj#3552) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.0.0 to 5.0.1. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v5.0.0...v5.0.1) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> chore(deps): bump codecov/codecov-action from 4.3.0 to 4.3.1 (argoproj#3550) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.3.0 to 4.3.1. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4.3.0...v4.3.1) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> chore(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.0 (argoproj#3548) Bumps google.golang.org/protobuf from 1.33.0 to 1.34.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> refactor Signed-off-by: Zach Aller <[email protected]> add test for updating rs revision Signed-off-by: Zach Aller <[email protected]> add retry for ephemeral metadata Signed-off-by: Zach Aller <[email protected]> clear some fields Signed-off-by: Zach Aller <[email protected]> add logs Signed-off-by: Zach Aller <[email protected]> refactor into function Signed-off-by: Zach Aller <[email protected]> change log Signed-off-by: Zach Aller <[email protected]> switch rollout update to patch fallback Signed-off-by: Zach Aller <[email protected]> siwtch ephemeral metadata sync to shared function Signed-off-by: Zach Aller <[email protected]> siwtch merge type Signed-off-by: Zach Aller <[email protected]> lint Signed-off-by: Zach Aller <[email protected]> don't update status Signed-off-by: Zach Aller <[email protected]> switch rollout update to not use patch Signed-off-by: Zach Aller <[email protected]> change log Signed-off-by: Zach Aller <[email protected]> switch to small patch Signed-off-by: Zach Aller <[email protected]> some cleanup Signed-off-by: Zach Aller <[email protected]> remove not found rollout removal Signed-off-by: Zach Aller <[email protected]> working setup Signed-off-by: Zach Aller <[email protected]> lint Signed-off-by: Zach Aller <[email protected]> fix test Signed-off-by: Zach Aller <[email protected]> small cleanup Signed-off-by: Zach Aller <[email protected]> * typo Signed-off-by: Zach Aller <[email protected]> * cleanup commented out code Signed-off-by: Zach Aller <[email protected]> * Trigger Build Signed-off-by: Zach Aller <[email protected]> * only patch rollouts manged fields Signed-off-by: Zach Aller <[email protected]> * lint Signed-off-by: Zach Aller <[email protected]> * fix flaky test Signed-off-by: Zach Aller <[email protected]> * fix flaky test Signed-off-by: Zach Aller <[email protected]> * reduce patch size Signed-off-by: Zach Aller <[email protected]> * get some logs Signed-off-by: Zach Aller <[email protected]> * cleanup Signed-off-by: Zach Aller <[email protected]> * improve tests Signed-off-by: Zach Aller <[email protected]> * Trigger Build Signed-off-by: Zach Aller <[email protected]> * add env var to log diff Signed-off-by: Zach Aller <[email protected]> * remove expirment rs patch Signed-off-by: Zach Aller <[email protected]> * imporve logs Signed-off-by: Zach Aller <[email protected]> * use correct variable Signed-off-by: Zach Aller <[email protected]> * change env var Signed-off-by: Zach Aller <[email protected]> * fix flaky e2e Signed-off-by: Zach Aller <[email protected]> * fix flaky e2e Signed-off-by: Zach Aller <[email protected]> * fix flaky e2e Signed-off-by: Zach Aller <[email protected]> * remove not found rollouts Signed-off-by: Zach Aller <[email protected]> * update replica count Signed-off-by: Zach Aller <[email protected]> * lint Signed-off-by: Zach Aller <[email protected]> * refactor cleanup Signed-off-by: Zach Aller <[email protected]> * keep track of UpdatedReplicas on sync Signed-off-by: Zach Aller <[email protected]> * some hpa tests and log changes Signed-off-by: Zach Aller <[email protected]> * remove update to UpdatedReplicas Signed-off-by: Zach Aller <[email protected]> * add more test Signed-off-by: Zach Aller <[email protected]> * fix test Signed-off-by: Zach Aller <[email protected]> * undo change Signed-off-by: Zach Aller <[email protected]> * add comment to flaky tests Signed-off-by: Zach Aller <[email protected]> * cleanup Makefile Signed-off-by: Zach Aller <[email protected]> * remove test Signed-off-by: Zach Aller <[email protected]> * use labels Signed-off-by: Zach Aller <[email protected]> * remove make file change Signed-off-by: Zach Aller <[email protected]> * add label to test Signed-off-by: Zach Aller <[email protected]> * review changes Signed-off-by: Zach Aller <[email protected]> * change to TODO Signed-off-by: Zach Aller <[email protected]> * fix test Signed-off-by: Zach Aller <[email protected]> * add extra logging for tests Signed-off-by: Zach Aller <[email protected]> * Trigger Build Signed-off-by: Zach Aller <[email protected]> * add ignore to codecov Signed-off-by: Zach Aller <[email protected]> * we always generate patch because we are comparing against emtpy obj Signed-off-by: Zach Aller <[email protected]> --------- Signed-off-by: Zach Aller <[email protected]>

…goproj#3593 (argoproj#3603) fix protocol missing in ambassador canary mapping creation Signed-off-by: Joshua Mathew <[email protected]>

…y alb traffic management uses pingpong. (argoproj#3628) * fix: when Rollout has pingpong and stable/canary service defined, GetStableAndCanaryServices returns based on isPingpongPreferred. Only when it is ALB controller, then isPringpongPreferred is true. Signed-off-by: mayz985 <[email protected]> * fix lint error Signed-off-by: mayz985 <[email protected]> * added e2e Signed-off-by: mayz985 <[email protected]> --------- Signed-off-by: mayz985 <[email protected]>

…#3627) * fix: verify the weight of the alb at the end of the rollout when we auto set max weight Signed-off-by: Zach Aller <[email protected]> * add unit test Signed-off-by: Zach Aller <[email protected]> * refactor add unit test Signed-off-by: Zach Aller <[email protected]> * Trigger Build Signed-off-by: Zach Aller <[email protected]> * Trigger Build Signed-off-by: Zach Aller <[email protected]> * block reconcile Signed-off-by: Zach Aller <[email protected]> * add tests Signed-off-by: Zach Aller <[email protected]> * rename test and cleanup un-need logic check Signed-off-by: Zach Aller <[email protected]> --------- Signed-off-by: Zach Aller <[email protected]>

Signed-off-by: Tommy Chen <[email protected]>

* fix: don't default datadog aggregator Signed-off-by: Zach Aller <[email protected]> * codegen Signed-off-by: Zach Aller <[email protected]> * fix: don't default datadog aggregator Signed-off-by: Zach Aller <[email protected]> --------- Signed-off-by: Zach Aller <[email protected]>

Signed-off-by: xiaowu.zhu <[email protected]> Signed-off-by: root <[email protected]>

…ixes argoproj#3366 (argoproj#3639) * Update pod status logic to support native sidecars Signed-off-by: Martyn Dale <[email protected]> * Fix lint issues Signed-off-by: Martyn Dale <[email protected]> --------- Signed-off-by: Martyn Dale <[email protected]>

argoproj#3664) * fix(controller): use the stableRS from the rollout context rather than inferring it from the active selector, to deal with the edge case where the stableRS != activeRS during analysis templates Signed-off-by: ben.minter <[email protected]> * fix(controller): update tests which were relying on this bug(?) Signed-off-by: ben.minter <[email protected]> * fix(controller): add clarity to comment in the case there is no stableRS Signed-off-by: ben.minter <[email protected]> * fix(controller): add a test to assert that the stablers is not scaled by the reconiliation on start, by checking the log Signed-off-by: ben.minter <[email protected]> --------- Signed-off-by: ben.minter <[email protected]>

…ysis Runs. Fixes argoproj#3669 (argoproj#3670) * Ensure that BackgroundAnalysisRun does not run when rolling back within RollbackWindow Signed-off-by: Alex Dunn <[email protected]> * Fix linting Signed-off-by: Alex Dunn <[email protected]> --------- Signed-off-by: Alex Dunn <[email protected]>

…Fixes argoproj#3672 (argoproj#3675) fix: add update verb to ClusterRole permissions for scaleDown Signed-off-by: EnriqueTejeda <[email protected]>

…rgoproj#3730) * Datadog: explicitly set aggregator to last the field is required by API and we currently leave it empty string Signed-off-by: Alex Eftimie <[email protected]> * add unit tests Signed-off-by: Alex Eftimie <[email protected]> --------- Signed-off-by: Alex Eftimie <[email protected]>

…proj#3615 (argoproj#3759) Signed-off-by: BrunoTarijon <[email protected]>

) The current code creates a new http.Transport for each http.Client that is created, which leads to a leak in TCP connections due to keep-alive. Instead, reuse the same http.Transport between requests. According to the http.Transport docs, this is safe for concurrent use. Signed-off-by: Kevin Ji <[email protected]>

…j#3762) (argoproj#3784) dco Signed-off-by: Alexandre Gaudreault <[email protected]>

acquia-devops-ci-cd-pipeline-4 · 2024-11-11T13:06:36Z

⚠️ Orca Scan Vulnerabilities

status	URL
CVEs found with status: WARNING	https://cloudbees.ais.acquia.io/devops-pipeline-4-jenkins/job/KCS-argo-rollouts-PIPELINE/job/PR-4/7/cloudbees-pipeline-explorer

agaudreault and others added 30 commits February 15, 2024 15:34

feat: Support AnalysisRunMetadata and Dryrun for experiments via Roll…

fcb88f0

…out (argoproj#3213) Signed-off-by: Guillaume Doussin <[email protected]>

docs: Update shell autocompletion instructions (argoproj#3377)

50b2885

Update shell autocompletion instructions Signed-off-by: John Pitman <[email protected]>

fix: include the correct response error in the plugin init error mess…

e547e57

…age (argoproj#3388) fix: include the response error in the plugin init error message Signed-off-by: Chetan Banavikalmutt <[email protected]>

chore: fix PodSecurity warning (argoproj#3424)

ad0b7fe

Signed-off-by: Craig Newton <[email protected]>

fix(controller): don't timeout rollout when still waiting for scale d…

e184957

…own delay (argoproj#3417) Signed-off-by: Yohan Belval <[email protected]>

docs: minor readability on migration (argoproj#3427)

a9a5192

the ordered list was 1-2-3-1 fixed the indentation Signed-off-by: Carlos Sanchez <[email protected]>

fix(controller): treat spec.canary.analysis.template empty list as sp…

5f6142c

…ec.canary.analysis not set (argoproj#3446) Treat spec.canary.analysis.template empty list as spec.canary.analysis not set Signed-off-by: Kevin Qian <[email protected]>

dependabot bot and others added 29 commits April 1, 2024 23:30

fix: set formatter for klog logger (argoproj#3493)

55bac14

Signed-off-by: Chetan Banavikalmutt <[email protected]>

fix(controller): Corrects the logic of comparing sha256 has. Fixes ar…

745d213

…goproj#3519 (argoproj#3520) Fixed sha256 algo Signed-off-by: dhawani <[email protected]> Signed-off-by: dhawani <[email protected]> Co-authored-by: dhawani <[email protected]>

fix: protocol missing in ambassador canary mapping creation. Fixes ar…

ba4d01e

…goproj#3593 (argoproj#3603) fix protocol missing in ambassador canary mapping creation Signed-off-by: Joshua Mathew <[email protected]>

fix: Add volume for plugin and tmp folder (argoproj#3546)

0e304fb

Signed-off-by: Tommy Chen <[email protected]>

fix: docs site version selector broken (argoproj#3590)

6a99ea9

Signed-off-by: xiaowu.zhu <[email protected]> Signed-off-by: root <[email protected]>

fix: add update verb to ClusterRole permissions for scaleDown feature. …

9efeaa7

…Fixes argoproj#3672 (argoproj#3675) fix: add update verb to ClusterRole permissions for scaleDown Signed-off-by: EnriqueTejeda <[email protected]>

fix(controller): Get the right resourceName for traefik.io.Fixes argo…

a0b7332

…proj#3615 (argoproj#3759) Signed-off-by: BrunoTarijon <[email protected]>

fix: replicaSet not scaled down due to incorrect annotations (argopro…

59e5bd3

…j#3762) (argoproj#3784) dco Signed-off-by: Alexandre Gaudreault <[email protected]>

create fips-v1.7.2 branch

29c7fad

updated go version

066ebd3

updated go version in dockerfile-fips

a0a7017

updated go version in dockerfile-fips properly

36a1273

Trigger Build

4c1dc80

KCS-1143 | chore: bump build go version to fix CVEs

bc56b13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fips v1.7.2 #4

Fips v1.7.2 #4

gesarki commented Sep 3, 2024

acquia-devops-ci-cd-pipeline-4 bot commented Nov 11, 2024

Fips v1.7.2 #4

Are you sure you want to change the base?

Fips v1.7.2 #4

Conversation

gesarki commented Sep 3, 2024

acquia-devops-ci-cd-pipeline-4 bot commented Nov 11, 2024

⚠️ Orca Scan Vulnerabilities