feat: check for available node resources before building injector pod #2220

chrishorton · 2024-01-09T00:54:14Z

Description

Addresses #2144 to check if node has enough resources before the injector runs

Related Issue

Fixes #2144

Type of change

Bug fix (non-breaking change which fixes an issue)
New feature (non-breaking change which adds functionality)
Other (security config, docs update, etc)

Checklist before merging

Test, docs, adr added or updated as needed
Contributor Guide Steps followed

netlify · 2024-01-09T00:54:19Z

✅ Deploy Preview for zarf-docs canceled.

Name	Link
🔨 Latest commit	`5dec437`
🔍 Latest deploy log	https://app.netlify.com/sites/zarf-docs/deploys/659f0413d23d4c000830b2d9

Racer159

Thanks for the PR! Looks like some of the logic needs updating and passing down the resources into GetImagesWithNodes from the cluster package would help keep the code drier.

src/pkg/k8s/images.go

chrishorton · 2024-01-09T23:29:47Z

Resolved all your suggestions in latest commit, thanks!

Racer159

Thanks for the changes! Logic looks good (will let the tests run to make sure) - since this is library code made some suggestions for naming though.

src/pkg/cluster/injector.go

src/pkg/k8s/images.go

Co-authored-by: Wayne Starr <[email protected]>

chrishorton · 2024-01-10T00:59:38Z

Pushed those changes!

src/pkg/k8s/images.go

Co-authored-by: Wayne Starr <[email protected]>

lucasrod16

I think we should try to avoid changing the function signatures of GetAllImages and GetImagesWithNodes because they are public facing APIs.

var (
	injectorRequestedCPU    = resource.MustParse(".5")
	injectorRequestedMemory = resource.MustParse("64Mi")
	injectorLimitCPU        = resource.MustParse("1")
	injectorLimitMemory     = resource.MustParse("256Mi")
)

These variables are static and will likely not change often, so we could move them to the k8s package, make them public, and use them directly in the functions that need them instead of passing them in as parameters.

@Racer159 @Noxsios thoughts?

chrishorton · 2024-01-10T17:50:05Z

@lucasrod16 I would tend to agree with you on that. Wasn't sure about creating new global variables but not changing the function signature would be more ideal since it's public facing and would be a breaking change for usages.

lucasrod16 · 2024-01-10T18:06:08Z

@chrishorton thanks for submitting this PR 🙂

Racer159 · 2024-01-10T18:44:58Z

I think we should try to avoid changing the function signatures of GetAllImages and GetImagesWithNodes because they are public facing APIs.
var (
	injectorRequestedCPU    = resource.MustParse(".5")
	injectorRequestedMemory = resource.MustParse("64Mi")
	injectorLimitCPU        = resource.MustParse("1")
	injectorLimitMemory     = resource.MustParse("256Mi")
)
These variables are static and will likely not change often, so we could move them to the k8s package, make them public, and use them directly in the functions that need them instead of passing them in as parameters.

@Racer159 @Noxsios thoughts?

I suggested this direction since it would be relatively easier to implement than a larger refactor that is likely warranted for how the injector pod gets built - we only use these functions for this purpose so they could ultimately be tailored more to the injector node selection process and removed from k8s if we wanted. Currently IMO it would make more sense to move things into cluster than to k8s because no Zarf-specific logic is in k8s today (the only "zarf" thing it imports is helpers and that also has a rule to not import anything else from Zarf.

The injector* variables are global to the cluster package so we could mess things up in the future but they are private so people importing cluster won't be able to mess them up without something like go:linkname which is why I was ok with them being there for now (would just be up to the Zarf maintainers to make sure that they aren't modified).

I do agree the function signature is a little odd taking in the node resource quantities though so we could refactor both GetImagesWithNodes and GetAllImages into a function with a better signature (potentially something like func GetImagesFromAvailableNodes(timeoutDuration time.Duration, minResources corev1.ResourceList) (ImageNodeMap, error) that would check all resource types and be a bit better named.

Racer159 · 2024-01-10T18:47:27Z

For historical context, these functions are also a bit appendix-like - they had more of a purpose back when Zarf performed more node checks on init but we removed some of those to reduce the permissions Zarf needs to run in a cluster.

lucasrod16 · 2024-01-10T19:05:32Z

I suggested this direction since it would be relatively easier to implement than a larger refactor that is likely warranted for how the injector pod gets built - we only use these functions for this purpose so they could ultimately be tailored more to the injector node selection process and removed from k8s if we wanted. Currently IMO it would make more sense to move things into cluster than to k8s because no Zarf-specific logic is in k8s today (the only "zarf" thing it imports is helpers and that also has a rule to not import anything else from Zarf.

The injector* variables are global to the cluster package so we could mess things up in the future but they are private so people importing cluster won't be able to mess them up without something like go:linkname which is why I was ok with them being there for now (would just be up to the Zarf maintainers to make sure that they aren't modified).

I do agree the function signature is a little odd taking in the node resource quantities though so we could refactor both GetImagesWithNodes and GetAllImages into a function with a better signature (potentially something like func GetImagesFromAvailableNodes(timeoutDuration time.Duration, minResources corev1.ResourceList) (ImageNodeMap, error) that would check all resource types and be a bit better named.

Good point on moving things to the cluster package. After taking a closer look, GetImagesWithNodes and GetAllImages are defined in the k8s package but only used in the cluster package so I agree that makes more sense. We could do a gradual code repair for this logic by just moving the existing functions GetImagesWithNodes and GetAllImages to the cluster package for now and tackle it one small piece at a time.

chrishorton · 2024-01-10T19:17:43Z

That would work. When I was working on this, trying for an elegant solution (not changing func signatures) everything produced a circular dependency because of how the logic is intertwined and used in the two packages.

For historical context, these functions are also a bit appendix-like - they had more of a purpose back when Zarf performed more node checks on init but we removed some of those to reduce the permissions Zarf needs to run in a cluster.

I think this is also a good reason to refactor getAllImages and GetImagesWithNodes out of the k8s package.

Would be happy to work on this, if a new issue is created to refactor/migrate.

chrishorton · 2024-01-10T19:24:10Z

@chrishorton thanks for submitting this PR 🙂

Glad I can help a bit! I'm struggling to manually deploy a lot of our software over an air-gap so any tooling that helps is gold to me 😁

Noxsios · 2024-01-10T19:27:58Z

I don't have much to add aside from echoing that the relationship between pkg/k8s and pkg/cluster needs to be re-evaluated. A bit ago we moved pkg/cluster from internal to pkg (#2162) to support external usage of cluster. IMO cluster should be the de-facto library export and k8s's functions should be merged in (as cluster is a utility for interacting w/ Zarf specific cluster needs.). Users should be using the Kubernetes K8s lib otherwise.

Doing some cursory checks, I can also see that there are some public receivers on k8s that are not used in Zarf, IMO those should be removed during this refactor (yes a breaking change, but 99% of them are bare abstractions on top of the core k8s lib).

Racer159 · 2024-01-10T20:39:27Z

Created this issue to capture the above feedback - #2222 (feel free to pick it up if you want @chrishorton !)

Going to approve this as is for now though with the intent that the tech debt gets addressed in the future.

Racer159

lgtm

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/upload-artifact](https://togithub.com/actions/upload-artifact) | action | minor | `v4.0.0` -> `v4.3.1` | | [defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common) | | patch | `v0.3.6` -> `v0.3.9` | | [defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common) | action | patch | `v0.3.6` -> `v0.3.9` | | [defenseunicorns/uds-common-tasks](https://togithub.com/defenseunicorns/uds-common-tasks) | | patch | `v0.3.6` -> `v0.3.9` | | [defenseunicorns/zarf](https://togithub.com/defenseunicorns/zarf) | | minor | `v0.29.1` -> `v0.32.6` | | [docker/login-action](https://togithub.com/docker/login-action) | action | digest | `343f7c4` -> `e92390c` | | [github/codeql-action](https://togithub.com/github/codeql-action) | action | minor | `v3.22.12` -> `v3.24.9` | | [golangci/golangci-lint](https://togithub.com/golangci/golangci-lint) | repository | minor | `v1.54.1` -> `v1.57.2` | | [google-github-actions/release-please-action](https://togithub.com/google-github-actions/release-please-action) | action | minor | `v4.0.1` -> `v4.1.0` | | [pre-commit/pre-commit-hooks](https://togithub.com/pre-commit/pre-commit-hooks) | repository | minor | `v4.4.0` -> `v4.5.0` | | [python-jsonschema/check-jsonschema](https://togithub.com/python-jsonschema/check-jsonschema) | repository | minor | `0.24.1` -> `0.28.0` | | [renovatebot/pre-commit-hooks](https://togithub.com/renovatebot/pre-commit-hooks) | repository | major | `36.43.1` -> `37.274.0` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. Note: The `pre-commit` manager in Renovate is not supported by the `pre-commit` maintainers or community. Please do not report any problems there, instead [create a Discussion in the Renovate repository](https://togithub.com/renovatebot/renovate/discussions/new) if you have any questions. --- ### Release Notes <details> <summary>actions/upload-artifact (actions/upload-artifact)</summary> ### [`v4.3.1`](https://togithub.com/actions/upload-artifact/releases/tag/v4.3.1) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.3.0...v4.3.1) - Bump [@actions/artifacts](https://togithub.com/actions/artifacts) to latest version to include [updated GHES host check](https://togithub.com/actions/toolkit/pull/1648) ### [`v4.3.0`](https://togithub.com/actions/upload-artifact/releases/tag/v4.3.0) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.2.0...v4.3.0) ##### What's Changed - Reorganize upload code in prep for merge logic & add more tests by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/504](https://togithub.com/actions/upload-artifact/pull/504) - Add sub-action to merge artifacts by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/505](https://togithub.com/actions/upload-artifact/pull/505) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4...v4.3.0 ### [`v4.2.0`](https://togithub.com/actions/upload-artifact/releases/tag/v4.2.0) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.1.0...v4.2.0) ##### What's Changed - Ability to overwrite an Artifact by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/501](https://togithub.com/actions/upload-artifact/pull/501) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4...v4.2.0 ### [`v4.1.0`](https://togithub.com/actions/upload-artifact/releases/tag/v4.1.0) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.0.0...v4.1.0) #### What's Changed - Add migrations docs by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/482](https://togithub.com/actions/upload-artifact/pull/482) - Update README.md by [@samuelwine](https://togithub.com/samuelwine) in [https://github.com/actions/upload-artifact/pull/492](https://togithub.com/actions/upload-artifact/pull/492) - Support artifact-url output by [@konradpabjan](https://togithub.com/konradpabjan) in [https://github.com/actions/upload-artifact/pull/496](https://togithub.com/actions/upload-artifact/pull/496) - Update readme to reflect new 500 artifact per job limit by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/497](https://togithub.com/actions/upload-artifact/pull/497) #### New Contributors - [@samuelwine](https://togithub.com/samuelwine) made their first contribution in [https://github.com/actions/upload-artifact/pull/492](https://togithub.com/actions/upload-artifact/pull/492) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4...v4.1.0 </details> <details> <summary>defenseunicorns/uds-common (defenseunicorns/uds-common)</summary> ### [`v0.3.9`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.9) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.8...v0.3.9) ##### Miscellaneous - fix missing keys in setup actions ([#93](https://togithub.com/defenseunicorns/uds-common/issues/93)) ([39d7395](https://togithub.com/defenseunicorns/uds-common/commit/39d73955ebb35f4e844a45fe23a7acf7d65d239a)) ### [`v0.3.8`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.8) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.7...v0.3.8) ##### Miscellaneous - add upgrade tests to common ([#91](https://togithub.com/defenseunicorns/uds-common/issues/91)) ([bb2e590](https://togithub.com/defenseunicorns/uds-common/commit/bb2e59021355172db2cfcca7dbf5a2434ce41b6d)) - **deps:** update dependency defenseunicorns/uds-cli to v0.10.1 ([#84](https://togithub.com/defenseunicorns/uds-common/issues/84)) ([6b455b7](https://togithub.com/defenseunicorns/uds-common/commit/6b455b7cef8ddab022c758a6309d8993f0a564b7)) - **deps:** update dependency defenseunicorns/uds-core to v0.17.0 ([#83](https://togithub.com/defenseunicorns/uds-common/issues/83)) ([b8d8181](https://togithub.com/defenseunicorns/uds-common/commit/b8d818165c7c676f56898c2d15ae14a2f7ff5f0c)) - **deps:** update uds common package dependencies to v6.6.1 ([#92](https://togithub.com/defenseunicorns/uds-common/issues/92)) ([862b635](https://togithub.com/defenseunicorns/uds-common/commit/862b63512b4b53ff963b85e25e8011818bb8e4e3)) - update registry login to happen in the common env setup action ([#88](https://togithub.com/defenseunicorns/uds-common/issues/88)) ([b7bce88](https://togithub.com/defenseunicorns/uds-common/commit/b7bce888d1d62c5d382d7d88a54e59da72e0d3ae)) ### [`v0.3.7`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.7) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.6...v0.3.7) ##### Miscellaneous - remove schedule on renovate ([#85](https://togithub.com/defenseunicorns/uds-common/issues/85)) ([fda7e57](https://togithub.com/defenseunicorns/uds-common/commit/fda7e57ad878cc70bf3905948911daa84c67db27)) - update k3d-core-istio-dev to k3d-core-slim-dev ([#86](https://togithub.com/defenseunicorns/uds-common/issues/86)) ([aa0e6da](https://togithub.com/defenseunicorns/uds-common/commit/aa0e6dad40126ead465b102ea28a3ac961883493)) </details> <details> <summary>defenseunicorns/uds-common-tasks (defenseunicorns/uds-common-tasks)</summary> ### [`v0.3.9`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.9) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.8...v0.3.9) ##### Miscellaneous - fix missing keys in setup actions ([#93](https://togithub.com/defenseunicorns/uds-common/issues/93)) ([39d7395](https://togithub.com/defenseunicorns/uds-common/commit/39d73955ebb35f4e844a45fe23a7acf7d65d239a)) ### [`v0.3.8`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.8) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.7...v0.3.8) ##### Miscellaneous - add upgrade tests to common ([#91](https://togithub.com/defenseunicorns/uds-common/issues/91)) ([bb2e590](https://togithub.com/defenseunicorns/uds-common/commit/bb2e59021355172db2cfcca7dbf5a2434ce41b6d)) - **deps:** update dependency defenseunicorns/uds-cli to v0.10.1 ([#84](https://togithub.com/defenseunicorns/uds-common/issues/84)) ([6b455b7](https://togithub.com/defenseunicorns/uds-common/commit/6b455b7cef8ddab022c758a6309d8993f0a564b7)) - **deps:** update dependency defenseunicorns/uds-core to v0.17.0 ([#83](https://togithub.com/defenseunicorns/uds-common/issues/83)) ([b8d8181](https://togithub.com/defenseunicorns/uds-common/commit/b8d818165c7c676f56898c2d15ae14a2f7ff5f0c)) - **deps:** update uds common package dependencies to v6.6.1 ([#92](https://togithub.com/defenseunicorns/uds-common/issues/92)) ([862b635](https://togithub.com/defenseunicorns/uds-common/commit/862b63512b4b53ff963b85e25e8011818bb8e4e3)) - update registry login to happen in the common env setup action ([#88](https://togithub.com/defenseunicorns/uds-common/issues/88)) ([b7bce88](https://togithub.com/defenseunicorns/uds-common/commit/b7bce888d1d62c5d382d7d88a54e59da72e0d3ae)) ### [`v0.3.7`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.7) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.6...v0.3.7) ##### Miscellaneous - remove schedule on renovate ([#85](https://togithub.com/defenseunicorns/uds-common/issues/85)) ([fda7e57](https://togithub.com/defenseunicorns/uds-common/commit/fda7e57ad878cc70bf3905948911daa84c67db27)) - update k3d-core-istio-dev to k3d-core-slim-dev ([#86](https://togithub.com/defenseunicorns/uds-common/issues/86)) ([aa0e6da](https://togithub.com/defenseunicorns/uds-common/commit/aa0e6dad40126ead465b102ea28a3ac961883493)) </details> <details> <summary>defenseunicorns/zarf (defenseunicorns/zarf)</summary> ### [`v0.32.6`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.6) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6) ##### \[0.32.6] - 2024-03-22 > trying out some different release note generators, formatting may vary for a few releases while we figure out what works best ~[@Noxsios](https://togithub.com/Noxsios) ##### 🚀 Features - \[**ALPHA**] feat: package generation ALPHA by [@andrewg-xyz](https://togithub.com/andrewg-xyz) in [#2269](https://togithub.com/defenseunicorns/zarf/pull/2269) - *(lib)* feat(lib): configurable log file location by [@Noxsios](https://togithub.com/Noxsios) in [#2380](https://togithub.com/defenseunicorns/zarf/pull/2380) - \[**BREAKING**] feat!: filter package components with strategy interface by [@Noxsios](https://togithub.com/Noxsios) in [#2321](https://togithub.com/defenseunicorns/zarf/pull/2321) ##### 🐛 Bug Fixes - fix: refactor create stages into separate lib by [@lucasrod16](https://togithub.com/lucasrod16) in [#2223](https://togithub.com/defenseunicorns/zarf/pull/2223) - fix: handle registry caBundle as a multiline string by [@AbrohamLincoln](https://togithub.com/AbrohamLincoln) in [#2381](https://togithub.com/defenseunicorns/zarf/pull/2381) - *(regression)* fix: populate `p.sbomViewFiles` on `deploy` and `mirror` by [@lucasrod16](https://togithub.com/lucasrod16) in [#2386](https://togithub.com/defenseunicorns/zarf/pull/2386) - fix: allow absolute paths for differential packages by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2397](https://togithub.com/defenseunicorns/zarf/pull/2397) - fix: hotfix skeleton publish by [@Noxsios](https://togithub.com/Noxsios) in [#2398](https://togithub.com/defenseunicorns/zarf/pull/2398) ##### 🚜 Refactor - refactor: split helpers/exec libs by [@Racer159](https://togithub.com/Racer159) in [#2379](https://togithub.com/defenseunicorns/zarf/pull/2379) ##### 🧪 Testing - test: data injection flake by [@lucasrod16](https://togithub.com/lucasrod16) in [#2361](https://togithub.com/defenseunicorns/zarf/pull/2361) ##### ⚙️ Miscellaneous Tasks - ci: add commitlint workflow and update contributing guide by [@lucasrod16](https://togithub.com/lucasrod16) in [#2391](https://togithub.com/defenseunicorns/zarf/pull/2391) ##### 🛡️ Security - *(release)* build: create PRs on `homebrew-tap` by [@Noxsios](https://togithub.com/Noxsios) in [#2385](https://togithub.com/defenseunicorns/zarf/pull/2385) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6 ### [`v0.32.5`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.5) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5) ##### \[0.32.5] - 2024-03-11 > trying out some different release note generators, formatting may vary for a few releases while we figure out what works best ~[@Noxsios](https://togithub.com/Noxsios) ##### 🚀 Features - feat: add missing vendored tool version commands by [@eddiezane](https://togithub.com/eddiezane) in [#2232](https://togithub.com/defenseunicorns/zarf/pull/2232) - feat: add `--why` flag for `zarf dev find-images` by [@waveywaves](https://togithub.com/waveywaves) in [#2309](https://togithub.com/defenseunicorns/zarf/pull/2309) - feat: set variables on find images by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2282](https://togithub.com/defenseunicorns/zarf/pull/2282) - feat: add configurable backoff and retries for Zarf operations by [@Racer159](https://togithub.com/Racer159) in [#2345](https://togithub.com/defenseunicorns/zarf/pull/2345) ##### 🐛 Bug Fixes - *(deps)*: update github.com/anchore/clio digest to [`abcb719`](https://togithub.com/defenseunicorns/zarf/commit/abcb719) by [@renovate](https://togithub.com/renovate)\[bot] in [#2347](https://togithub.com/defenseunicorns/zarf/pull/2347) - *(ci)*: change ECR image to docker.io image by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2353](https://togithub.com/defenseunicorns/zarf/pull/2353) - fix: added OCI Image Index mediaType by [@mdaizcorbe](https://togithub.com/mdaizcorbe) in [#2352](https://togithub.com/defenseunicorns/zarf/pull/2352) - fix: package publish progress bar frozen at zero by [@Noxsios](https://togithub.com/Noxsios) in [#2367](https://togithub.com/defenseunicorns/zarf/pull/2367) - *(release)* hotfix `publish` not respecting source package architecture by [@Noxsios](https://togithub.com/Noxsios) in [#2376](https://togithub.com/defenseunicorns/zarf/pull/2376) ##### 📚 Documentation - chore: fix spelling by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2333](https://togithub.com/defenseunicorns/zarf/pull/2333) - docs: formatting and grammar by [@beholdenkey](https://togithub.com/beholdenkey) in [#2350](https://togithub.com/defenseunicorns/zarf/pull/2350) ##### ⚙️ Miscellaneous Tasks - chore: sorted go imports by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2349](https://togithub.com/defenseunicorns/zarf/pull/2349) - chore: fix bb test by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2340](https://togithub.com/defenseunicorns/zarf/pull/2340) - chore: update CODEOWNERS with [@AustinAbro321](https://togithub.com/AustinAbro321) by [@Racer159](https://togithub.com/Racer159) in [#2354](https://togithub.com/defenseunicorns/zarf/pull/2354) - chore: refactor and purify the OCI library within Zarf by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2235](https://togithub.com/defenseunicorns/zarf/pull/2235) - chore: default to temp zarf cache in e2e tests by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2355](https://togithub.com/defenseunicorns/zarf/pull/2355) ##### 🛡️ Security - chore: configure agent server to avoid slowloris attack by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2342](https://togithub.com/defenseunicorns/zarf/pull/2342) - chore: fix implicit memory aliasing in for loop by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2341](https://togithub.com/defenseunicorns/zarf/pull/2341) - *(release)*: update release workflow to use token from gh app by [@Noxsios](https://togithub.com/Noxsios) in [#2368](https://togithub.com/defenseunicorns/zarf/pull/2368) - *(release)*: use release environment secrets by [@Noxsios](https://togithub.com/Noxsios) in [#2374](https://togithub.com/defenseunicorns/zarf/pull/2374) ##### First Time Contributors - [@eddiezane](https://togithub.com/eddiezane) made their first contribution in [#2232](https://togithub.com/defenseunicorns/zarf/issues/2232) - [@beholdenkey](https://togithub.com/beholdenkey) made their first contribution in [#2350](https://togithub.com/defenseunicorns/zarf/issues/2350) - [@mdaizcorbe](https://togithub.com/mdaizcorbe) made their first contribution in [#2352](https://togithub.com/defenseunicorns/zarf/issues/2352) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5 ### [`v0.32.4`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.4) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4) ##### What's Changed ##### Fixes - Improve `cmd` failure messaging when no timeout or retries are given by [@docandrew](https://togithub.com/docandrew) in [https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301) - Revert init package storageclass checks for git server and seed registry by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2311](https://togithub.com/defenseunicorns/zarf/pull/2311) - Fix multi-part tarballs being mismatched sizes by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2314](https://togithub.com/defenseunicorns/zarf/pull/2314) - Change text template detection to check first *and* last 512 bytes by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2310](https://togithub.com/defenseunicorns/zarf/pull/2310) - Improve `zarf tools registry prune` messaging by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2323](https://togithub.com/defenseunicorns/zarf/pull/2323) - Add http request header timeout to mitigate stalling image push by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2319](https://togithub.com/defenseunicorns/zarf/pull/2319) - Allow host+subpath as the source registry for `--registry-override` in package create by [@waveywaves](https://togithub.com/waveywaves) in [https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306) ##### Dependencies - Update github.com/anchore/clio digest to [`cb94e40`](https://togithub.com/defenseunicorns/zarf/commit/cb94e40) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2294](https://togithub.com/defenseunicorns/zarf/pull/2294), [https://github.com/defenseunicorns/zarf/pull/2297](https://togithub.com/defenseunicorns/zarf/pull/2297) and [https://github.com/defenseunicorns/zarf/pull/2300](https://togithub.com/defenseunicorns/zarf/pull/2300) - **\[security]** Update module helm.sh/helm/v3 to v3.14.2 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2307](https://togithub.com/defenseunicorns/zarf/pull/2307) and [https://github.com/defenseunicorns/zarf/pull/2329](https://togithub.com/defenseunicorns/zarf/pull/2329) - Update actions/checkout action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2317](https://togithub.com/defenseunicorns/zarf/pull/2317) - Update actions/dependency-review-action action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2318](https://togithub.com/defenseunicorns/zarf/pull/2318) ##### Docs - Update [Zarf roadmap](https://docs.zarf.dev/docs/roadmap) per 2024 goals by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2305](https://togithub.com/defenseunicorns/zarf/pull/2305) ##### Development - Included Dependency Review action for PR reviews by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298) - Resolve CodeQL linting issues across Zarf by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2322](https://togithub.com/defenseunicorns/zarf/pull/2322) ##### New Contributors - [@docandrew](https://togithub.com/docandrew) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301) - [@naveensrinivasan](https://togithub.com/naveensrinivasan) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298) - [@waveywaves](https://togithub.com/waveywaves) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4 ### [`v0.32.3`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.3) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3) ##### What's Changed ##### Fixes - Properly handle panic that could occur during checksum validation by [@mjnagel](https://togithub.com/mjnagel) in [https://github.com/defenseunicorns/zarf/pull/2262](https://togithub.com/defenseunicorns/zarf/pull/2262) - Add the `--key` flag to the init cmd to properly allow for signed init packages by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2259](https://togithub.com/defenseunicorns/zarf/pull/2259) - Restore destroy script functionality during `zarf destroy` by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2274](https://togithub.com/defenseunicorns/zarf/pull/2274) - Fix symlink inclusion within component resources by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2256](https://togithub.com/defenseunicorns/zarf/pull/2256) - Use memory friendly file split logic for partial packages by [@daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) in [https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264) - Fix reproducible tarball creation on Windows systems by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2293](https://togithub.com/defenseunicorns/zarf/pull/2293) ##### Docs - Make branding more consistent and add community meetup references to docs by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2258](https://togithub.com/defenseunicorns/zarf/pull/2258) ##### Dependencies - Update github.com/anchore/clio digest by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2277](https://togithub.com/defenseunicorns/zarf/pull/2277) and [https://github.com/defenseunicorns/zarf/pull/2283](https://togithub.com/defenseunicorns/zarf/pull/2283) - Update all non-major dependencies (including Gitea v1.21.5, Syft v0.100.0, K9s v0.31.7 and Crane v0.19.0) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2187](https://togithub.com/defenseunicorns/zarf/pull/2187) ##### Development - Add a more robust chart search regexManager by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2278](https://togithub.com/defenseunicorns/zarf/pull/2278) and [https://github.com/defenseunicorns/zarf/pull/2284](https://togithub.com/defenseunicorns/zarf/pull/2284) - Partial refactor of injector logic in `k8s`, and `cluster` packages by [@chrishorton](https://togithub.com/chrishorton) in [https://github.com/defenseunicorns/zarf/pull/2271](https://togithub.com/defenseunicorns/zarf/pull/2271) ##### New Contributors - [@daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3 ### [`v0.32.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.2) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2) #### What's Changed #### Features - Support authenticated Helm repositories that have been configured with `helm repo add` by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2196](https://togithub.com/defenseunicorns/zarf/pull/2196) - Verify that the specified storage class exists during `zarf init` by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2180](https://togithub.com/defenseunicorns/zarf/pull/2180) - Check for available node resources before building injector pod by [@chrishorton](https://togithub.com/chrishorton) in [https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220) - Officially support yaml extensions within the `zarf.yaml` using `x-` keys by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2217](https://togithub.com/defenseunicorns/zarf/pull/2217) #### Fixes - Fix the inclusion of helm sub commands when rendering `zarf tools help` by [@jbrewer3](https://togithub.com/jbrewer3) in [https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216) #### Docs - Fix typos in the extension `README.md` by [@mjnagel](https://togithub.com/mjnagel) in [https://github.com/defenseunicorns/zarf/pull/2227](https://togithub.com/defenseunicorns/zarf/pull/2227) - Fix a small grammatical error in the base `README.md` by [@cmwylie19](https://togithub.com/cmwylie19) in [https://github.com/defenseunicorns/zarf/pull/2219](https://togithub.com/defenseunicorns/zarf/pull/2219) #### Dependencies - Update github.com/anchore/clio digest to [`89e2fe8`](https://togithub.com/defenseunicorns/zarf/commit/89e2fe8) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2214](https://togithub.com/defenseunicorns/zarf/pull/2214) - Update github.com/anchore/clio digest to [`a5e93b6`](https://togithub.com/defenseunicorns/zarf/commit/a5e93b6) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2229](https://togithub.com/defenseunicorns/zarf/pull/2229) - Update github.com/anchore/stereoscope digest to [`eb656fc`](https://togithub.com/defenseunicorns/zarf/commit/eb656fc) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2230](https://togithub.com/defenseunicorns/zarf/pull/2230) #### Development - Remove workflow for automatically adding issues to the zarf project by [@YrrepNoj](https://togithub.com/YrrepNoj) in [https://github.com/defenseunicorns/zarf/pull/2239](https://togithub.com/defenseunicorns/zarf/pull/2239) - Delete unnecessary waitgroup from concurrencyTools by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2244](https://togithub.com/defenseunicorns/zarf/pull/2244) - Update `NewOrasRemote` to take `ocispec.Platform` as an argument by [@decleaver](https://togithub.com/decleaver) in [https://github.com/defenseunicorns/zarf/pull/2241](https://togithub.com/defenseunicorns/zarf/pull/2241) #### New Contributors - [@jbrewer3](https://togithub.com/jbrewer3) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216) - [@chrishorton](https://togithub.com/chrishorton) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2 ### [`v0.32.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.1) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.0...v0.32.1) #### What's Changed #### Fixes - `ResolveRoot` now properly returns an error when a target platform is not provided when used as a library by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2212](https://togithub.com/defenseunicorns/zarf/pull/2212) - Fix reproducibility of internal tarballs for components + sboms to allow better OCI layer reuse by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2210](https://togithub.com/defenseunicorns/zarf/pull/2210) #### Docs - Remove `dos-games` skeleton references and instead use the skeleton architecture index by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2208](https://togithub.com/defenseunicorns/zarf/pull/2208) #### Dependencies - \[security] Update github.com/go-git/go-git/v5 to v5.11.0 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2209](https://togithub.com/defenseunicorns/zarf/pull/2209) - \[security] Update github.com/containerd/containerd to v1.7.11 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2209](https://togithub.com/defenseunicorns/zarf/pull/2209) - Update github.com/anchore/syft to v0.99.0 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2185](https://togithub.com/defenseunicorns/zarf/pull/2185) - Update github.com/anchore/clio digest to [`3e50431`](https://togithub.com/defenseunicorns/zarf/commit/3e50431) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2207](https://togithub.com/defenseunicorns/zarf/pull/2207) - Update github.com/anchore/stereoscope digest to [`590920d`](https://togithub.com/defenseunicorns/zarf/commit/590920d) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2206](https://togithub.com/defenseunicorns/zarf/pull/2206) - Update github/codeql-action action to v3 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2191](https://togithub.com/defenseunicorns/zarf/pull/2191) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.0...v0.32.1 ### [`v0.32.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.0) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.4...v0.32.0) #### What's Changed #### :warning: Breaking Changes - Gitea has been updated from the 8.x series chart (app version 1.19.3) to the 10.x series chart (app version 1.21.2) - this update contains breaking changes and should be tested if you are using this component - default Zarf installs will upgrade automatically but more advanced configurations / use cases should be reviewed. [Gitea Release Notes](https://togithub.com/go-gitea/gitea/releases) - Zarf package OCI references now use OCI indexes / platforms to handle architecture - packages published to OCI with this version of Zarf will be placed within an index and won't be able to be pulled with older versions - old packages will still be able to be pulled however. - Component and package names can no longer start with a leading `-` as this is used within the deselect syntax introduced for `--components` #### Features <img src="https://github.com/defenseunicorns/zarf/assets/3977569/b9f9e158-d70d-48dd-bcda-f37d728e700a" width=555px/> - Add `zarf dev deploy` for quickly testing packages and restructure `zarf prepare` into `zarf dev` by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2170](https://togithub.com/defenseunicorns/zarf/pull/2170) - Introduce unpinned resources (`images`/`repos`/`files`) warning for `zarf dev lint` by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2171](https://togithub.com/defenseunicorns/zarf/pull/2171) - Add glob selection and deselection support to `--components` by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2175](https://togithub.com/defenseunicorns/zarf/pull/2175) - Switch to indexed platforms for OCI architectures (eliminate `-amd64`, `-arm64` tag mangling) by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2184](https://togithub.com/defenseunicorns/zarf/pull/2184) <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Introduce `zarf prepare lint` to perform schema validation and lay groundwork for standardizing best practices by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2075](https://togithub.com/defenseunicorns/zarf/pull/2075) - Add `zarf package remove/inspect` completion for package names from cluster sources by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2151](https://togithub.com/defenseunicorns/zarf/pull/2151) - Add a warning when no components are selected for deployment in a package by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2167](https://togithub.com/defenseunicorns/zarf/pull/2167) - Allow passing additional arguments to `k9s` when invoked by `zarf tools monitor` by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2095](https://togithub.com/defenseunicorns/zarf/pull/2095) - Add `REGISTRY_CA_BUNDLE` variable to registry package and chart to improve S3 backed registries by [@AbrohamLincoln](https://togithub.com/AbrohamLincoln) in [https://github.com/defenseunicorns/zarf/pull/2008](https://togithub.com/defenseunicorns/zarf/pull/2008) - Add `GIT_SERVER_DISABLE_REGISTRATION` variable to allow for Gitea registration, so that SSO can be used by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2118](https://togithub.com/defenseunicorns/zarf/pull/2118) - `[Library Only]` Initial implementation of Helm Chart overrides at deploy time by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2131](https://togithub.com/defenseunicorns/zarf/pull/2131) </details> #### Fixes - Update error message when the image doesn't exist locally or on a remote by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2160](https://togithub.com/defenseunicorns/zarf/pull/2160) - Corrected k8s / helm k8s client version within Helm templating by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2197](https://togithub.com/defenseunicorns/zarf/pull/2197) - Properly handle tunnel error channels to force retries of image pushing by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2190](https://togithub.com/defenseunicorns/zarf/pull/2190) <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Fix helm chart clobbering and differences with Zarf and Helm `chart` names along with new [`repoName` key](https://docs.zarf.dev/docs/create-a-zarf-package/zarf-schema#zarfchart) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2174](https://togithub.com/defenseunicorns/zarf/pull/2174) - Add message asking if the user has init'ed their cluster and slim down error messages more generally by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2177](https://togithub.com/defenseunicorns/zarf/pull/2177) - Fix compose dropping the `only.localOS` filter from the composed package by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2173](https://togithub.com/defenseunicorns/zarf/pull/2173) - Improve Helm rollback logic, messaging, and support for local tarballs by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2157](https://togithub.com/defenseunicorns/zarf/pull/2157) - Add warnings to better log the errors encountered on image push retries by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2147](https://togithub.com/defenseunicorns/zarf/pull/2147) - Make `set -e` (and `$ErrorActionPreference = 'Stop';`) the default for multiline actions so that they fail correctly by [@UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/zarf/pull/2148](https://togithub.com/defenseunicorns/zarf/pull/2148) - Properly handle `variable` and `constant` merging when using composable components by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2129](https://togithub.com/defenseunicorns/zarf/pull/2129) - Use the node name instead of the hostname label to build the injector pod by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2119](https://togithub.com/defenseunicorns/zarf/pull/2119) - Resolve pathing issues while loading images with Zarf on Windows by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2106](https://togithub.com/defenseunicorns/zarf/pull/2106) - Add an error channel for progress bar rendering to properly stop the progress bar when used as a library by [@UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/zarf/pull/2117](https://togithub.com/defenseunicorns/zarf/pull/2117) - Keep a useable empty dir volume within the registry even when persistence is disabled by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2124](https://togithub.com/defenseunicorns/zarf/pull/2124) </details> #### Docs <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Update the[ Airgap Software Delivery course](https://docs.zarf.dev/docs/getting-started/understand-the-basics#airgap-basics) name by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2172](https://togithub.com/defenseunicorns/zarf/pull/2172) - Promote the Quick Start section to [Getting Started](https://docs.zarf.dev/docs/getting-started/) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2182](https://togithub.com/defenseunicorns/zarf/pull/2182) - Fix link and content issues across the docs by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2168](https://togithub.com/defenseunicorns/zarf/pull/2168) - Improve the docs for [`zarf tools k9s` options](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_tools_monitor) and other [command examples](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_package_mirror-resources#examples) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2132](https://togithub.com/defenseunicorns/zarf/pull/2132) - Update the [Zarf overview](https://docs.zarf.dev/docs/zarf-overview) to be more clear about how Zarf works by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2122](https://togithub.com/defenseunicorns/zarf/pull/2122) </details> #### Dependencies - Update gitea chart from 8.3.0 to 10.0.0 by [@TristanHoladay](https://togithub.com/TristanHoladay) in [https://github.com/defenseunicorns/zarf/pull/2123](https://togithub.com/defenseunicorns/zarf/pull/2123) - Update module golang.org/x/crypto to v0.17.0 \[security] by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2201](https://togithub.com/defenseunicorns/zarf/pull/2201) - Update sigstore/cosign-installer action to v3 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/1400](https://togithub.com/defenseunicorns/zarf/pull/1400) - Update github.com/anchore/stereoscope digest to [`4b999b7`](https://togithub.com/defenseunicorns/zarf/commit/4b999b7) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2198](https://togithub.com/defenseunicorns/zarf/pull/2198) - Update dependency pepr to v20 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2193](https://togithub.com/defenseunicorns/zarf/pull/2193) - Update actions/download-artifact action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2194](https://togithub.com/defenseunicorns/zarf/pull/2194) <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Update actions/setup-go action to v5 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2179](https://togithub.com/defenseunicorns/zarf/pull/2179) - Update all non-major dependencies by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2099](https://togithub.com/defenseunicorns/zarf/pull/2099) - Update github.com/anchore/clio digest to [`767f622`](https://togithub.com/defenseunicorns/zarf/commit/767f622) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2186](https://togithub.com/defenseunicorns/zarf/pull/2186) - Update component-webhooks example to use new Pepr k8s fluent client by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2090](https://togithub.com/defenseunicorns/zarf/pull/2090) - Update k8s.io/utils digest to [`cf03d44`](https://togithub.com/defenseunicorns/zarf/commit/cf03d44) then to [`b307cd5`](https://togithub.com/defenseunicorns/zarf/commit/b307cd5) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2156](https://togithub.com/defenseunicorns/zarf/pull/2156) and [https://github.com/defenseunicorns/zarf/pull/2161](https://togithub.com/defenseunicorns/zarf/pull/2161) - Update github.com/anchore/stereoscope digest to [`3610f4e`](https://togithub.com/defenseunicorns/zarf/commit/3610f4e) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2155](https://togithub.com/defenseunicorns/zarf/pull/2155) - \[security] Update module github.com/sigstore/cosign/v2 to v2.2.1 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2134](https://togithub.com/defenseunicorns/zarf/pull/2134) </details> #### Development - Update the release workflow to accept sigstore terms and sign by digest by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2204](https://togithub.com/defenseunicorns/zarf/pull/2204) and [https://github.com/defenseunicorns/zarf/pull/2205](https://togithub.com/defenseunicorns/zarf/pull/2205) - Update references to new ironbank credentials in bigbang workflow by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2192](https://togithub.com/defenseunicorns/zarf/pull/2192) <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Move the `cluster` library from `internal` to `pkg` to make it available to consumers by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2162](https://togithub.com/defenseunicorns/zarf/pull/2162) - Promote [@lucasrod16](https://togithub.com/lucasrod16) to be a full maintainer by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2166](https://togithub.com/defenseunicorns/zarf/pull/2166) - Fix race condition in TestValidateLastNonBreakingVersion unit test by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2138](https://togithub.com/defenseunicorns/zarf/pull/2138) - Split up the e2e tests that need a cluster, versus ones that do not to speed up CI by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2139](https://togithub.com/defenseunicorns/zarf/pull/2139) - Update external tests to run in a unique k3d cluster and use the same Gitea chart as Zarf by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2145](https://togithub.com/defenseunicorns/zarf/pull/2145) </details> **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.31.4...v0.32.0 ### [`v0.31.4`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.31.4) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.3...v0.31.4) #### What's Changed #### Fixes - Fix helm chart clobbering and differences with Zarf and Helm `chart` names along with new [`repoName` key](https://docs.zarf.dev/docs/create-a-zarf-package/zarf-schema#zarfchart) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2174](https://togithub.com/defenseunicorns/zarf/pull/2174) - Add message asking if the user has init'ed their cluster and slim down error messages more generally by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2177](https://togithub.com/defenseunicorns/zarf/pull/2177) - Fix compose dropping the `only.localOS` filter from the composed package by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2173](https://togithub.com/defenseunicorns/zarf/pull/2173) #### Docs - Update the[ Airgap Software Delivery course](https://docs.zarf.dev/docs/getting-started/understand-the-basics#airgap-basics) name by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2172](https://togithub.com/defenseunicorns/zarf/pull/2172) - Promote the Quick Start section to [Getting Started](https://docs.zarf.dev/docs/getting-started/) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2182](https://togithub.com/defenseunicorns/zarf/pull/2182) #### Deps - Update actions/setup-go action to v5 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2179](https://togithub.com/defenseunicorns/zarf/pull/2179) - Update all non-major dependencies by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2099](https://togithub.com/defenseunicorns/zarf/pull/2099) - Update github.com/anchore/clio digest to [`767f622`](https://togithub.com/defenseunicorns/zarf/commit/767f622) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2186](https://togithub.com/defenseunicorns/zarf/pull/2186) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.31.3...v0.31.4 ### [`v0.31.3`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.31.3) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.2...v0.31.3) #### What's Changed #### Features - Introduce `zarf prepare lint` to perform schema validation and lay groundwork for standardizing best practices by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2075](https://togithub.com/defenseunicorns/zarf/pull/2075) - Add `zarf package remove/inspect` completion for package names from cluster sources by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2151](https://togithub.com/defenseunicorns/zarf/pull/2151) - Add a warning when no components are selected for deployment in a package by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2167](https://togithub.com/defenseunicorns/zarf/pull/2167) #### Fixes - Improve Helm rollback logic, messaging, and support for local tarballs by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2157](https://togithub.com/defenseunicorns/zarf/pull/2157) #### Docs - Fix link and content issues across the docs by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2168](https://togithub.com/defenseunicorns/zarf/pull/2168) #### Dependencies - Update component-webhooks example to use new Pepr k8s fluent client by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2090](https://togithub.com/defenseunicorns/zarf/pull/2090) - Update k8s.io/utils digest to [`cf03d44`](https://togithub.com/defenseunicorns/zarf/commit/cf03d44) then to [`b307cd5`](https://togithub.com/defenseunicorns/zarf/commit/b307cd5) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2156](https://togithub.com/defenseunicorns/zarf/pull/2156) and [https://github.com/defenseunicorns/zarf/pull/2161](https://togithub.com/defenseunicorns/zarf/pull/2161) - Update github.com/anchore/stereoscope digest to [`3610f4e`](https://togithub.com/defenseunicorns/zarf/commit/3610f4e) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2155](https://togithub.com/defenseunicorns/zarf/pull/2155) #### Development - Move the `cluster` library from `internal` to `pkg` to make it available to consumers by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2162](https://togithub.com/defenseunicorns/zarf/pull/2162) - Promote [@lucasrod16](https://togithub.com/lucasrod16) to be a full maintainer by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2166](https://togithub.com/defenseunicorns/zarf/pull/2166) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.31.2...v0.31.3 ### [`v0.31.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.31.2) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.1...v0.31.2) #### What's Changed #### Fixes - Add warnings to better log the errors encountered on image push retries by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2147](https://togithub.com/defenseunicorns/zarf/pull/2147) - Make `set -e` (and `$ErrorActionPreference = 'Stop';`) the default for multiline actions so that they fail correctly by [@UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/zarf/pull/2148](https://togithub.com/defenseunicorns/zarf/pull/2148) #### Docs - Improve the docs for [`zarf tools k9s` options](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_tools_monitor) and other [command examples](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_package_mirror-resources#examples) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2132](https://togithub.com/defenseunicorns/zarf/pull/2132) #### Dependencies - \[security] Update module github.com/sigstore/cosign/v2 to v2.2.1 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2134](https://togithub.com/defenseunicorns/zarf/pull/2134) #### Development - Fix race condition in TestValidateLastNonBreakingVersion unit test by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2138](https://togithub.com/defenseunicorns/zarf/pull/2138) - Split up the e2e tests that need a cluster, versus ones that do not to speed up CI by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2139](https://togithub.com/defenseunicorns/zarf/pull/2139) - Update external tests to run in a unique k3d cluster and use the same Gitea chart as Zarf by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2145](https://togithub.com/defenseunicorns/zarf/pull/2145) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.31.1...v0.31.2 ### [`v0.31.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.31.1) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.0...v0.31.1) #### What's Changed #### Features - Allow passing additional arguments to `k9s` when invoked by `zarf tools monitor` by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2095](https://togithub.com/defenseunicorns/zarf/pull/2095) - Add `REGISTRY_CA_BUNDLE` variable to registry package and chart to improve S3 backed registries by [@AbrohamLincoln](https://togithub.com/AbrohamLincoln) in [https://github.com/defenseunicorns/zarf/pull/2008](https://togithub.com/defenseunicorns/zarf/pull/2008) - Add `GIT_SERVER_DISABLE_REGISTRATION` variable to allow for Gitea registration, so that SSO can be used by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2118](https://togithub.com/defenseunicorns/zarf/pull/2118) - `[Library Only]` Initial implementation of Helm Chart overrides at deploy time by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2131](https://togithub.com/defenseunicorns/zarf/pull/2131) #### Fixes - Properly handle `variable` and `constant` merging when using composable components by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2129](https://togithub.com/defenseunicorns/zarf/pull/2129) - Use the node name instead of the hostname label to build the injector pod by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2119](https://togithub.com/defenseunicorns/zarf/pull/2119) - Resolve pathing issues while loading images with Zarf on Windows by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2106](https://togithub.com/defenseunicorns/zarf/pull/2106) - Add an error channel for progress bar rendering to properly stop the progress bar when used as a library by [@UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/zarf/pull/2117](https://togithub.com/defenseunicorns/zarf/pull/2117) - Keep a useable empty dir volume within the registry even when persistence is disabled by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2124](https://togithub.com/defenseunicorns/zarf/pull/2124) #### Docs - Update the [Zarf overview](https://docs.zarf.dev/docs/zarf-overview) to be more clear about how Zarf works by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2122](https://togithub.com/defenseunicorns/zarf/pull/2122) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.31.0...v0.31.1 ### [`v0.31.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.31.0) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.30.1...v0.31.0) #### What's Changed #### :warning: Breaking Changes - Signing Zarf packages is now done with `--signing-key` and `--signing-key-pass` - the old `--key` flag is deprecated on `zarf package create` and has been removed from `zarf package publish` to support public keys instead - Component composability (`import.path`) must point to a directory, pointing to a `zarf.yaml` directly is no longer supported > **NOTE**: These are mostly edge cases on `zarf package create` and don't impact `zarf package deploy`. If you are using either feature though ensure you update your package create process. #### Features - Introduce the [`only.flavor` filter](https://docs.zarf.dev/examples/package-flavors/) to allow building of package variants and provide a replacement for some `group` use cases by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2105](https://togithub.com/defenseunicorns/zarf/pull/2105) - Add `--no-progress` to the `zarf tools wait-for` sub command by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2093](https://togithub.com/defenseunicorns/zarf/pull/2093) - Expose Gitea image templates to [custom init packages](https://docs.zarf.dev/docs/zarf-tutorials/custom-init-packages#swapping-images) by [@TristanHoladay](https://togithub.com/TristanHoladay) in [https://github.com/defenseunicorns/zarf/pull/2069](https://togithub.com/defenseunicorns/zarf/pull/2069) <details> <summary><h4>Rollup From v0.30 Patch Releases</ </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/defenseunicorns/uds-package-sonarqube).  --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Wayne Starr <[email protected]>

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/checkout](https://togithub.com/actions/checkout) | action | major | `v3.6.0` -> `v4.1.1` | | [actions/dependency-review-action](https://togithub.com/actions/dependency-review-action) | action | major | `v2.5.1` -> `v4.2.5` | | [actions/upload-artifact](https://togithub.com/actions/upload-artifact) | action | minor | `v4.0.0` -> `v4.3.1` | | [defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common) | | patch | `v0.3.3` -> `v0.3.9` | | [defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common) | action | patch | `v0.3.3` -> `v0.3.9` | | [defenseunicorns/uds-common-tasks](https://togithub.com/defenseunicorns/uds-common-tasks) | | patch | `v0.3.3` -> `v0.3.9` | | [defenseunicorns/zarf](https://togithub.com/defenseunicorns/zarf) | | minor | `v0.29.1` -> `v0.32.6` | | [docker/login-action](https://togithub.com/docker/login-action) | action | digest | `343f7c4` -> `e92390c` | | [github/codeql-action](https://togithub.com/github/codeql-action) | action | minor | `v3.22.12` -> `v3.24.9` | | [github/codeql-action](https://togithub.com/github/codeql-action) | action | major | `v2.24.5` -> `v3.24.9` | | [golangci/golangci-lint](https://togithub.com/golangci/golangci-lint) | repository | minor | `v1.55.2` -> `v1.57.2` | | [google-github-actions/release-please-action](https://togithub.com/google-github-actions/release-please-action) | action | minor | `v4.0.2` -> `v4.1.0` | | [python-jsonschema/check-jsonschema](https://togithub.com/python-jsonschema/check-jsonschema) | repository | minor | `0.27.4` -> `0.28.0` | | [renovatebot/pre-commit-hooks](https://togithub.com/renovatebot/pre-commit-hooks) | repository | minor | `37.165.5` -> `37.275.0` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. Note: The `pre-commit` manager in Renovate is not supported by the `pre-commit` maintainers or community. Please do not report any problems there, instead [create a Discussion in the Renovate repository](https://togithub.com/renovatebot/renovate/discussions/new) if you have any questions. --- ### Release Notes <details> <summary>actions/checkout (actions/checkout)</summary> ### [`v4.1.1`](https://togithub.com/actions/checkout/releases/tag/v4.1.1) [Compare Source](https://togithub.com/actions/checkout/compare/v4.1.0...v4.1.1) ##### What's Changed - Update CODEOWNERS to Launch team by [@joshmgross](https://togithub.com/joshmgross) in [https://github.com/actions/checkout/pull/1510](https://togithub.com/actions/checkout/pull/1510) - Correct link to GitHub Docs by [@peterbe](https://togithub.com/peterbe) in [https://github.com/actions/checkout/pull/1511](https://togithub.com/actions/checkout/pull/1511) - Link to release page from what's new section by [@cory-miller](https://togithub.com/cory-miller) in [https://github.com/actions/checkout/pull/1514](https://togithub.com/actions/checkout/pull/1514) ##### New Contributors - [@joshmgross](https://togithub.com/joshmgross) made their first contribution in [https://github.com/actions/checkout/pull/1510](https://togithub.com/actions/checkout/pull/1510) - [@peterbe](https://togithub.com/peterbe) made their first contribution in [https://github.com/actions/checkout/pull/1511](https://togithub.com/actions/checkout/pull/1511) **Full Changelog**: https://github.com/actions/checkout/compare/v4.1.0...v4.1.1 ### [`v4.1.0`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v410) [Compare Source](https://togithub.com/actions/checkout/compare/v4.0.0...v4.1.0) - [Add support for partial checkout filters](https://togithub.com/actions/checkout/pull/1396) ### [`v4.0.0`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v400) [Compare Source](https://togithub.com/actions/checkout/compare/v3.6.0...v4.0.0) - [Support fetching without the --progress option](https://togithub.com/actions/checkout/pull/1067) - [Update to node20](https://togithub.com/actions/checkout/pull/1436) </details> <details> <summary>actions/dependency-review-action (actions/dependency-review-action)</summary> ### [`v4.2.5`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.2.5): 4.2.5 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.2.4...v4.2.5) #### What's Changed - Fixed a bug where some configuration options in external files were not being properly picked up -- [https://github.com/actions/dependency-review-action/pull/722](https://togithub.com/actions/dependency-review-action/pull/722) - Bump eslint from 8.56.0 to 8.57.0 **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.2.4...v4.2.5 ### [`v4.2.4`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.2.4) [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.2.3...v4.2.4) #### What's Changed Fixed a bug in the output of OpenSSF cards for GitHub Actions. #### New Contributors - [@sporkmonger](https://togithub.com/sporkmonger) made their first contribution in [https://github.com/actions/dependency-review-action/pull/721](https://togithub.com/actions/dependency-review-action/pull/721) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.2.3...v4.2.4 ### [`v4.2.3`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.2.3): 4.2.3 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.1.3...v4.2.3) #### What's Changed - Set comment as output by [@jsoref](https://togithub.com/jsoref) in [https://github.com/actions/dependency-review-action/pull/698](https://togithub.com/actions/dependency-review-action/pull/698) - Add support for calculating OpenSSF Scorecards by [@jhutchings1](https://togithub.com/jhutchings1) in [https://github.com/actions/dependency-review-action/pull/709](https://togithub.com/actions/dependency-review-action/pull/709) - Add outputs for the changes data by [@laughedelic](https://togithub.com/laughedelic) in [https://github.com/actions/dependency-review-action/pull/707](https://togithub.com/actions/dependency-review-action/pull/707) #### New Contributors - [@jhutchings1](https://togithub.com/jhutchings1) made their first contribution in [https://github.com/actions/dependency-review-action/pull/709](https://togithub.com/actions/dependency-review-action/pull/709) - [@laughedelic](https://togithub.com/laughedelic) made their first contribution in [https://github.com/actions/dependency-review-action/pull/707](https://togithub.com/actions/dependency-review-action/pull/707) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.1.3...v4.2.3 ### [`v4.1.3`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.1.3): 4.1.3 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.1.2...v4.1.3) Fixes a bug in 4.1.2 that would introduce comments in every pull request, regardless of the user's configuration (see [https://github.com/actions/dependency-review-action/issues/697](https://togithub.com/actions/dependency-review-action/issues/697)). **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.1.2...v4.1.3 ### [`v4.1.2`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.1.2): 4.1.2 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.1.1...v4.1.2) #### What's Changed - Expose dependency comment content by [@jsoref](https://togithub.com/jsoref) in [https://github.com/actions/dependency-review-action/pull/696](https://togithub.com/actions/dependency-review-action/pull/696) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.1.1...v4.1.2 ### [`v4.1.1`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.1.1): 4.1.1 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.1.0...v4.1.1) #### What's Changed - Bump `undici` to fix [GHSA-wqq4-5wpv-mx2g](https://togithub.com/nodejs/undici/security/advisories/GHSA-wqq4-5wpv-mx2g) - Bump [@types/node](https://togithub.com/types/node) from 20.11.17 to 20.11.19 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/693](https://togithub.com/actions/dependency-review-action/pull/693) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.1.0...v4.1.1 ### [`v4.1.0`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.1.0): 4.1.0 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.0.0...v4.1.0) #### What's Changed - Add `warn-only` by [@tgrall](https://togithub.com/tgrall) in [https://github.com/actions/dependency-review-action/pull/432](https://togithub.com/actions/dependency-review-action/pull/432) Added a new configuration option (`warn-only`, boolean) that makes the action always succeed while still displaying found vulnerabilities in the log. - Create stale.yaml by [@jonjanego](https://togithub.com/jonjanego) in [https://github.com/actions/dependency-review-action/pull/671](https://togithub.com/actions/dependency-review-action/pull/671) - Use manual codeql config by [@juxtin](https://togithub.com/juxtin) in [https://github.com/actions/dependency-review-action/pull/678](https://togithub.com/actions/dependency-review-action/pull/678) - Multiple dependency updates (see the changelog below for more information) #### New Contributors - [@jonjanego](https://togithub.com/jonjanego) made their first contribution in [https://github.com/actions/dependency-review-action/pull/671](https://togithub.com/actions/dependency-review-action/pull/671) - [@tgrall](https://togithub.com/tgrall) made their first contribution in [https://github.com/actions/dependency-review-action/pull/432](https://togithub.com/actions/dependency-review-action/pull/432) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4...v4.1.0 ### [`v4.0.0`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.0.0) [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.1.5...v4.0.0) - Update action to Node 20 by [@takost](https://togithub.com/takost) in [https://github.com/actions/dependency-review-action/pull/639](https://togithub.com/actions/dependency-review-action/pull/639) - Dependabot updates, see the full changelog for more details. #### New Contributors - [@takost](https://togithub.com/takost) made their first contribution in [https://github.com/actions/dependency-review-action/pull/639](https://togithub.com/actions/dependency-review-action/pull/639) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3.1.5...v4.0.0 ### [`v3.1.5`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.1.5): 3.1.5 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.1.4...v3.1.5) #### What's Changed - Smaller `per_page` when requesting diff by [@hmaurer](https://togithub.com/hmaurer) in [https://github.com/actions/dependency-review-action/pull/649](https://togithub.com/actions/dependency-review-action/pull/649) - Update dependencies: - Bump [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) from 6.10.0 to 6.13.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/630](https://togithub.com/actions/dependency-review-action/pull/630) - Bump prettier from 3.0.3 to 3.1.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/629](https://togithub.com/actions/dependency-review-action/pull/629) - Bump [@types/jest](https://togithub.com/types/jest) from 29.5.8 to 29.5.11 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/637](https://togithub.com/actions/dependency-review-action/pull/637) - Bump nodemon from 3.0.1 to 3.0.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/636](https://togithub.com/actions/dependency-review-action/pull/636) - Replace pip -> pypi in PURL examples by [@febuiles](https://togithub.com/febuiles) in [https://github.com/actions/dependency-review-action/pull/638](https://togithub.com/actions/dependency-review-action/pull/638) - Bump [@typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) from 6.12.0 to 6.15.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/644](https://togithub.com/actions/dependency-review-action/pull/644) - Bump eslint from 8.53.0 to 8.56.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/640](https://togithub.com/actions/dependency-review-action/pull/640) - Bump [@typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) from 6.13.1 to 6.16.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/645](https://togithub.com/actions/dependency-review-action/pull/645) - Bump prettier from 3.1.0 to 3.1.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/646](https://togithub.com/actions/dependency-review-action/pull/646) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3.1.4...v3.1.5 ### [`v3.1.4`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.1.4): 3.1.4 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.1.3...v3.1.4) #### What's Changed - Fixed a [bug](https://togithub.com/actions/dependency-review-action/issues/618) with severity filtering when using the `allow_ghsas` option: [https://github.com/actions/dependency-review-action/pull/623](https://togithub.com/actions/dependency-review-action/pull/623). - Updates dependencies: - Bump [@types/node](https://togithub.com/types/node) from 16.18.61 to 16.18.62 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/619](https://togithub.com/actions/dependency-review-action/pull/619) action/pull/620 - Bump [@typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) from 6.11.0 to 6.12.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/625](https://togithub.com/actions/dependency-review-action/pull/625) - Bump typescript from 5.2.2 to 5.3.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/dependency-review-action/pull/624](https://togithub.com/actions/dependency-review-action/pull/624) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.1.4 ### [`v3.1.3`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.1.3): 3.1.3 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.1.2...v3.1.3) #### What's Changed - Fixes purl "version must be percent-encoded" by [@theztefan](https://togithub.com/theztefan) in [https://github.com/actions/dependency-review-action/pull/617](https://togithub.com/actions/dependency-review-action/pull/617) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.1.3 ### [`v3.1.2`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.1.2): 3.1.2 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.1.1...v3.1.2) #### What's Changed - Fix a regression for setups using self-hosted runners behind HTTP proxies:[@febuiles](https://togithub.com/febuiles) in [https://github.com/actions/dependency-review-action/pull/611](https://togithub.com/actions/dependency-review-action/pull/611) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.1.2 ### [`v3.1.1`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.1.1): 3.1.1 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.1.0...v3.1.1) #### What's Changed - Update a bunch of dependencies, including major version upgrades for `octokit`, `@actions/github` and `typescript`. **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3.1.0...v3.1.1 ### [`v3.1.0`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.1.0): 3.1.0 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.8...v3.1.0) #### What's New Added support for dependencies submitted through the [dependency submission API](https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#best-practices-for-using-the-dependency-review-api-and-the-dependency-submission-api-together). This includes two new configuration parameters: `retry-on-snapshot-warnings` and `retry-on-snapshot-warnings-timeout`. #### What's Changed - Fix(docs): Correct action input name by [@oerd](https://togithub.com/oerd) in [https://github.com/actions/dependency-review-action/pull/551](https://togithub.com/actions/dependency-review-action/pull/551) #### New Contributors - [@oerd](https://togithub.com/oerd) made their first contribution in [https://github.com/actions/dependency-review-action/pull/551](https://togithub.com/actions/dependency-review-action/pull/551) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.1.0 ### [`v3.0.8`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.8): 3.0.8 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.7...v3.0.8) #### What's Changed Added `on-failure` option to `comment-summary-in-pr` setting by [@sgmurphy](https://togithub.com/sgmurphy) in [https://github.com/actions/dependency-review-action/pull/540](https://togithub.com/actions/dependency-review-action/pull/540) Previous configuration files using `true`/`false` for `comment-summary-in-pr` will be mapped automatically to the new values, but we encourage you to update to `always`/`on-failure`/`never`. #### New Contributors - [@sgmurphy](https://togithub.com/sgmurphy) made their first contribution in [https://github.com/actions/dependency-review-action/pull/540](https://togithub.com/actions/dependency-review-action/pull/540) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.8 ### [`v3.0.7`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.7): 3.0.7 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.6...v3.0.7) #### What's Changed - Make GHES support / setup more clear by [@rajbos](https://togithub.com/rajbos) in [https://github.com/actions/dependency-review-action/pull/534](https://togithub.com/actions/dependency-review-action/pull/534) - Add an option to deny packages or groups of packages by [@adrienpessu](https://togithub.com/adrienpessu) in [https://github.com/actions/dependency-review-action/pull/544](https://togithub.com/actions/dependency-review-action/pull/544) #### New Contributors - [@rajbos](https://togithub.com/rajbos) made their first contribution in [https://github.com/actions/dependency-review-action/pull/534](https://togithub.com/actions/dependency-review-action/pull/534) - [@adrienpessu](https://togithub.com/adrienpessu) made their first contribution in [https://github.com/actions/dependency-review-action/pull/544](https://togithub.com/actions/dependency-review-action/pull/544) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.7 ### [`v3.0.6`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.6): 3.0.6 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.5...v3.0.6) Fixes a bug introduced in 3.0.5 where we raised PURL errors when Dependency Graph returns an empty `package_url`. ### [`v3.0.5`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.5): 3.0.5 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.4...v3.0.5) #### What's Changed Thanks to [@theztefan](https://togithub.com/theztefan), we now have a new `allow-dependencies-licenses` option that takes a list of dependencies that will be excluded from license checks. See the [configuration options](https://togithub.com/actions/dependency-review-action#configuration-options) for more information on how to use it. - Exclude dependencies from license checks by [@theztefan](https://togithub.com/theztefan) in [https://github.com/actions/dependency-review-action/pull/423](https://togithub.com/actions/dependency-review-action/pull/423) - Documentation examples by [@theztefan](https://togithub.com/theztefan) in [https://github.com/actions/dependency-review-action/pull/423](https://togithub.com/actions/dependency-review-action/pull/423) - Show snapshot warnings in the summary by [@juxtin](https://togithub.com/juxtin) in [https://github.com/actions/dependency-review-action/pull/439](https://togithub.com/actions/dependency-review-action/pull/439) - Fix default values for fail-on-severity by [@febuiles](https://togithub.com/febuiles) in [https://github.com/actions/dependency-review-action/pull/451](https://togithub.com/actions/dependency-review-action/pull/451) - Updated dependencies. #### New Contributors - [@juxtin](https://togithub.com/juxtin) made their first contribution in [https://github.com/actions/dependency-review-action/pull/439](https://togithub.com/actions/dependency-review-action/pull/439) - [@theztefan](https://togithub.com/theztefan) made their first contribution in [https://github.com/actions/dependency-review-action/pull/423](https://togithub.com/actions/dependency-review-action/pull/423) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.5 ### [`v3.0.4`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.4): 3.0.4 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.3...v3.0.4) #### What's New? The Action can now publish a comment in the pull request if the `comment-summary-in-pr` option is set. More information can be found in the [README](https://togithub.com/actions/dependency-review-action#configuration-options). #### New Contributors - [@davelosert](https://togithub.com/davelosert) made their first contribution in [https://github.com/actions/dependency-review-action/pull/393](https://togithub.com/actions/dependency-review-action/pull/393) #### Changelog - Write Summary as comment to the pull request by [@davelosert](https://togithub.com/davelosert) in [https://github.com/actions/dependency-review-action/pull/393](https://togithub.com/actions/dependency-review-action/pull/393) - Adjust summary format by [@davelosert](https://togithub.com/davelosert) in [https://github.com/actions/dependency-review-action/pull/416](https://togithub.com/actions/dependency-review-action/pull/416) - Security updates. **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.4 ### [`v3.0.3`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.3): 3.0.3 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.2...v3.0.3) #### What's Changed - Use cache in check-dist.yml by [@jongwooo](https://togithub.com/jongwooo) in [https://github.com/actions/dependency-review-action/pull/359](https://togithub.com/actions/dependency-review-action/pull/359) - Fix Dependency Review API response error handling by [@felickz](https://togithub.com/felickz) in [https://github.com/actions/dependency-review-action/pull/370](https://togithub.com/actions/dependency-review-action/pull/370) - Security updates #### New Contributors - [@jongwooo](https://togithub.com/jongwooo) made their first contribution in [https://github.com/actions/dependency-review-action/pull/359](https://togithub.com/actions/dependency-review-action/pull/359) - [@felickz](https://togithub.com/felickz) made their first contribution in [https://github.com/actions/dependency-review-action/pull/370](https://togithub.com/actions/dependency-review-action/pull/370) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.3 ### [`v3.0.2`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.2): 3.0.2 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.1...v3.0.2) This release fixes spelling errors [https://github.com/actions/dependency-review-action/pull/348](https://togithub.com/actions/dependency-review-action/pull/348) and upgrades dependencies to fix known vulnerabilities **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.2 ### [`v3.0.1`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.1): 3.0.1 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v3.0.0...v3.0.1) This release contains the following bugfixes: - Fixing API URL for GHES: [https://github.com/actions/dependency-review-action/pull/331](https://togithub.com/actions/dependency-review-action/pull/331) - Improve list handling for external config files: [https://github.com/actions/dependency-review-action/pull/330](https://togithub.com/actions/dependency-review-action/pull/330) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v3...v3.0.1 ### [`v3.0.0`](https://togithub.com/actions/dependency-review-action/releases/tag/v3.0.0): 3.0.0 [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v2.5.1...v3.0.0) #### Breaking Changes By default the action now expects [SPDX-compliant licenses](https://spdx.org/licenses/) everywhere. If you were previously using license names in the allow or deny lists make sure they're valid! #### What's Changed ##### Support for external configuration files You can now specify a [configuration file external to your repository](https://togithub.com/actions/dependency-review-action/#configuration-file). This allows organizations to have a single configuration file for all their repos. ##### Broader license support We've added support for a much broader set of project licenses by using GitHub's [Licenses API](https://docs.github.com/en/rest/licenses). ##### SPDX Compliance All of our license-related code now expects [SPDX-compliant licenses or expressions](https://spdx.org/licenses/). This allows us to standardize on a license naming scheme that already supports `OR`/`AND` expressions. ##### Disable individual checks You can now use the boolean options `license-check` and `vulnerability-check` to disable either one of the checks. More information in [our configuration options](https://togithub.com/actions/dependency-review-action/#configuration-options). #### Thanks Contributors for this release include: - [@cnagadya](https://togithub.com/cnagadya) - [@courtneycl](https://togithub.com/courtneycl) - [@ericcornelissen](https://togithub.com/ericcornelissen) - [@elireisman](https://togithub.com/elireisman) - [@hmaurer](https://togithub.com/hmaurer) Thanks everyone! **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v2...v3.0.0 </details> <details> <summary>actions/upload-artifact (actions/upload-artifact)</summary> ### [`v4.3.1`](https://togithub.com/actions/upload-artifact/releases/tag/v4.3.1) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.3.0...v4.3.1) - Bump [@actions/artifacts](https://togithub.com/actions/artifacts) to latest version to include [updated GHES host check](https://togithub.com/actions/toolkit/pull/1648) ### [`v4.3.0`](https://togithub.com/actions/upload-artifact/releases/tag/v4.3.0) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.2.0...v4.3.0) ##### What's Changed - Reorganize upload code in prep for merge logic & add more tests by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/504](https://togithub.com/actions/upload-artifact/pull/504) - Add sub-action to merge artifacts by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/505](https://togithub.com/actions/upload-artifact/pull/505) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4...v4.3.0 ### [`v4.2.0`](https://togithub.com/actions/upload-artifact/releases/tag/v4.2.0) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.1.0...v4.2.0) ##### What's Changed - Ability to overwrite an Artifact by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/501](https://togithub.com/actions/upload-artifact/pull/501) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4...v4.2.0 ### [`v4.1.0`](https://togithub.com/actions/upload-artifact/releases/tag/v4.1.0) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.0.0...v4.1.0) #### What's Changed - Add migrations docs by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/482](https://togithub.com/actions/upload-artifact/pull/482) - Update README.md by [@samuelwine](https://togithub.com/samuelwine) in [https://github.com/actions/upload-artifact/pull/492](https://togithub.com/actions/upload-artifact/pull/492) - Support artifact-url output by [@konradpabjan](https://togithub.com/konradpabjan) in [https://github.com/actions/upload-artifact/pull/496](https://togithub.com/actions/upload-artifact/pull/496) - Update readme to reflect new 500 artifact per job limit by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/497](https://togithub.com/actions/upload-artifact/pull/497) #### New Contributors - [@samuelwine](https://togithub.com/samuelwine) made their first contribution in [https://github.com/actions/upload-artifact/pull/492](https://togithub.com/actions/upload-artifact/pull/492) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4...v4.1.0 </details> <details> <summary>defenseunicorns/uds-common (defenseunicorns/uds-common)</summary> ### [`v0.3.9`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.9) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.8...v0.3.9) ##### Miscellaneous - fix missing keys in setup actions ([#93](https://togithub.com/defenseunicorns/uds-common/issues/93)) ([39d7395](https://togithub.com/defenseunicorns/uds-common/commit/39d73955ebb35f4e844a45fe23a7acf7d65d239a)) ### [`v0.3.8`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.8) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.7...v0.3.8) ##### Miscellaneous - add upgrade tests to common ([#91](https://togithub.com/defenseunicorns/uds-common/issues/91)) ([bb2e590](https://togithub.com/defenseunicorns/uds-common/commit/bb2e59021355172db2cfcca7dbf5a2434ce41b6d)) - **deps:** update dependency defenseunicorns/uds-cli to v0.10.1 ([#84](https://togithub.com/defenseunicorns/uds-common/issues/84)) ([6b455b7](https://togithub.com/defenseunicorns/uds-common/commit/6b455b7cef8ddab022c758a6309d8993f0a564b7)) - **deps:** update dependency defenseunicorns/uds-core to v0.17.0 ([#83](https://togithub.com/defenseunicorns/uds-common/issues/83)) ([b8d8181](https://togithub.com/defenseunicorns/uds-common/commit/b8d818165c7c676f56898c2d15ae14a2f7ff5f0c)) - **deps:** update uds common package dependencies to v6.6.1 ([#92](https://togithub.com/defenseunicorns/uds-common/issues/92)) ([862b635](https://togithub.com/defenseunicorns/uds-common/commit/862b63512b4b53ff963b85e25e8011818bb8e4e3)) - update registry login to happen in the common env setup action ([#88](https://togithub.com/defenseunicorns/uds-common/issues/88)) ([b7bce88](https://togithub.com/defenseunicorns/uds-common/commit/b7bce888d1d62c5d382d7d88a54e59da72e0d3ae)) ### [`v0.3.7`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.7) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.6...v0.3.7) ##### Miscellaneous - remove schedule on renovate ([#85](https://togithub.com/defenseunicorns/uds-common/issues/85)) ([fda7e57](https://togithub.com/defenseunicorns/uds-common/commit/fda7e57ad878cc70bf3905948911daa84c67db27)) - update k3d-core-istio-dev to k3d-core-slim-dev ([#86](https://togithub.com/defenseunicorns/uds-common/issues/86)) ([aa0e6da](https://togithub.com/defenseunicorns/uds-common/commit/aa0e6dad40126ead465b102ea28a3ac961883493)) ### [`v0.3.6`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.6) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.5...v0.3.6) ##### Miscellaneous - hotfix the spoof containing a dash in the input and add a publish step ([#81](https://togithub.com/defenseunicorns/uds-common/issues/81)) ([f9c7aac](https://togithub.com/defenseunicorns/uds-common/commit/f9c7aac4a30e5c3e627c44946f2f212af1573b39)) ### [`v0.3.5`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.5) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.4...v0.3.5) ##### Miscellaneous - fix spoof to not include a dash ([#79](https://togithub.com/defenseunicorns/uds-common/issues/79)) ([5d1738b](https://togithub.com/defenseunicorns/uds-common/commit/5d1738ba0ca2cd19c7fdf6dfe6873339e129c3bb)) ### [`v0.3.4`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.4) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.3.3...v0.3.4) ##### Miscellaneous - add the ability to spoof to common ([#77](https://togithub.com/defenseunicorns/uds-common/issues/77)) ([49634e1](https://togithub.com/defenseunicorns/uds-common/commit/49634e1b69c6b2eadcc2497f6baba8bd349f3d38)) - **deps:** update dependency defenseunicorns/uds-core to v0.16.1 ([#72](https://togithub.com/defenseunicorns/uds-common/issues/72)) ([32d1ad6](https://togithub.com/defenseunicorns/uds-common/commit/32d1ad6812a3ef6ad750447296f5644b14ff2855)) </details> <details> <summary>defenseunicorns/uds-common-tasks (defenseunicorns/uds-common-tasks)</summary> ### [`v0.3.9`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.9) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.8...v0.3.9) ##### Miscellaneous - fix missing keys in setup actions ([#93](https://togithub.com/defenseunicorns/uds-common/issues/93)) ([39d7395](https://togithub.com/defenseunicorns/uds-common/commit/39d73955ebb35f4e844a45fe23a7acf7d65d239a)) ### [`v0.3.8`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.8) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.7...v0.3.8) ##### Miscellaneous - add upgrade tests to common ([#91](https://togithub.com/defenseunicorns/uds-common/issues/91)) ([bb2e590](https://togithub.com/defenseunicorns/uds-common/commit/bb2e59021355172db2cfcca7dbf5a2434ce41b6d)) - **deps:** update dependency defenseunicorns/uds-cli to v0.10.1 ([#84](https://togithub.com/defenseunicorns/uds-common/issues/84)) ([6b455b7](https://togithub.com/defenseunicorns/uds-common/commit/6b455b7cef8ddab022c758a6309d8993f0a564b7)) - **deps:** update dependency defenseunicorns/uds-core to v0.17.0 ([#83](https://togithub.com/defenseunicorns/uds-common/issues/83)) ([b8d8181](https://togithub.com/defenseunicorns/uds-common/commit/b8d818165c7c676f56898c2d15ae14a2f7ff5f0c)) - **deps:** update uds common package dependencies to v6.6.1 ([#92](https://togithub.com/defenseunicorns/uds-common/issues/92)) ([862b635](https://togithub.com/defenseunicorns/uds-common/commit/862b63512b4b53ff963b85e25e8011818bb8e4e3)) - update registry login to happen in the common env setup action ([#88](https://togithub.com/defenseunicorns/uds-common/issues/88)) ([b7bce88](https://togithub.com/defenseunicorns/uds-common/commit/b7bce888d1d62c5d382d7d88a54e59da72e0d3ae)) ### [`v0.3.7`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.7) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.6...v0.3.7) ##### Miscellaneous - remove schedule on renovate ([#85](https://togithub.com/defenseunicorns/uds-common/issues/85)) ([fda7e57](https://togithub.com/defenseunicorns/uds-common/commit/fda7e57ad878cc70bf3905948911daa84c67db27)) - update k3d-core-istio-dev to k3d-core-slim-dev ([#86](https://togithub.com/defenseunicorns/uds-common/issues/86)) ([aa0e6da](https://togithub.com/defenseunicorns/uds-common/commit/aa0e6dad40126ead465b102ea28a3ac961883493)) ### [`v0.3.6`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.6) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.5...v0.3.6) ##### Miscellaneous - hotfix the spoof containing a dash in the input and add a publish step ([#81](https://togithub.com/defenseunicorns/uds-common/issues/81)) ([f9c7aac](https://togithub.com/defenseunicorns/uds-common/commit/f9c7aac4a30e5c3e627c44946f2f212af1573b39)) ### [`v0.3.5`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.5) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.4...v0.3.5) ##### Miscellaneous - fix spoof to not include a dash ([#79](https://togithub.com/defenseunicorns/uds-common/issues/79)) ([5d1738b](https://togithub.com/defenseunicorns/uds-common/commit/5d1738ba0ca2cd19c7fdf6dfe6873339e129c3bb)) ### [`v0.3.4`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.3.4) [Compare Source](https://togithub.com/defenseunicorns/uds-common-tasks/compare/v0.3.3...v0.3.4) ##### Miscellaneous - add the ability to spoof to common ([#77](https://togithub.com/defenseunicorns/uds-common/issues/77)) ([49634e1](https://togithub.com/defenseunicorns/uds-common/commit/49634e1b69c6b2eadcc2497f6baba8bd349f3d38)) - **deps:** update dependency defenseunicorns/uds-core to v0.16.1 ([#72](https://togithub.com/defenseunicorns/uds-common/issues/72)) ([32d1ad6](https://togithub.com/defenseunicorns/uds-common/commit/32d1ad6812a3ef6ad750447296f5644b14ff2855)) </details> <details> <summary>defenseunicorns/zarf (defenseunicorns/zarf)</summary> ### [`v0.32.6`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.6) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6) ##### \[0.32.6] - 2024-03-22 > trying out some different release note generators, formatting may vary for a few releases while we figure out what works best ~[@Noxsios](https://togithub.com/Noxsios) ##### 🚀 Features - \[**ALPHA**] feat: package generation ALPHA by [@andrewg-xyz](https://togithub.com/andrewg-xyz) in [#2269](https://togithub.com/defenseunicorns/zarf/pull/2269) - *(lib)* feat(lib): configurable log file location by [@Noxsios](https://togithub.com/Noxsios) in [#2380](https://togithub.com/defenseunicorns/zarf/pull/2380) - \[**BREAKING**] feat!: filter package components with strategy interface by [@Noxsios](https://togithub.com/Noxsios) in [#2321](https://togithub.com/defenseunicorns/zarf/pull/2321) ##### 🐛 Bug Fixes - fix: refactor create stages into separate lib by [@lucasrod16](https://togithub.com/lucasrod16) in [#2223](https://togithub.com/defenseunicorns/zarf/pull/2223) - fix: handle registry caBundle as a multiline string by [@AbrohamLincoln](https://togithub.com/AbrohamLincoln) in [#2381](https://togithub.com/defenseunicorns/zarf/pull/2381) - *(regression)* fix: populate `p.sbomViewFiles` on `deploy` and `mirror` by [@lucasrod16](https://togithub.com/lucasrod16) in [#2386](https://togithub.com/defenseunicorns/zarf/pull/2386) - fix: allow absolute paths for differential packages by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2397](https://togithub.com/defenseunicorns/zarf/pull/2397) - fix: hotfix skeleton publish by [@Noxsios](https://togithub.com/Noxsios) in [#2398](https://togithub.com/defenseunicorns/zarf/pull/2398) ##### 🚜 Refactor - refactor: split helpers/exec libs by [@Racer159](https://togithub.com/Racer159) in [#2379](https://togithub.com/defenseunicorns/zarf/pull/2379) ##### 🧪 Testing - test: data injection flake by [@lucasrod16](https://togithub.com/lucasrod16) in [#2361](https://togithub.com/defenseunicorns/zarf/pull/2361) ##### ⚙️ Miscellaneous Tasks - ci: add commitlint workflow and update contributing guide by [@lucasrod16](https://togithub.com/lucasrod16) in [#2391](https://togithub.com/defenseunicorns/zarf/pull/2391) ##### 🛡️ Security - *(release)* build: create PRs on `homebrew-tap` by [@Noxsios](https://togithub.com/Noxsios) in [#2385](https://togithub.com/defenseunicorns/zarf/pull/2385) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6 ### [`v0.32.5`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.5) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5) ##### \[0.32.5] - 2024-03-11 > trying out some different release note generators, formatting may vary for a few releases while we figure out what works best ~[@Noxsios](https://togithub.com/Noxsios) ##### 🚀 Features - feat: add missing vendored tool version commands by [@eddiezane](https://togithub.com/eddiezane) in [#2232](https://togithub.com/defenseunicorns/zarf/pull/2232) - feat: add `--why` flag for `zarf dev find-images` by [@waveywaves](https://togithub.com/waveywaves) in [#2309](https://togithub.com/defenseunicorns/zarf/pull/2309) - feat: set variables on find images by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2282](https://togithub.com/defenseunicorns/zarf/pull/2282) - feat: add configurable backoff and retries for Zarf operations by [@Racer159](https://togithub.com/Racer159) in [#2345](https://togithub.com/defenseunicorns/zarf/pull/2345) ##### 🐛 Bug Fixes - *(deps)*: update github.com/anchore/clio digest to [`abcb719`](https://togithub.com/defenseunicorns/zarf/commit/abcb719) by [@renovate](https://togithub.com/renovate)\[bot] in [#2347](https://togithub.com/defenseunicorns/zarf/pull/2347) - *(ci)*: change ECR image to docker.io image by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2353](https://togithub.com/defenseunicorns/zarf/pull/2353) - fix: added OCI Image Index mediaType by [@mdaizcorbe](https://togithub.com/mdaizcorbe) in [#2352](https://togithub.com/defenseunicorns/zarf/pull/2352) - fix: package publish progress bar frozen at zero by [@Noxsios](https://togithub.com/Noxsios) in [#2367](https://togithub.com/defenseunicorns/zarf/pull/2367) - *(release)* hotfix `publish` not respecting source package architecture by [@Noxsios](https://togithub.com/Noxsios) in [#2376](https://togithub.com/defenseunicorns/zarf/pull/2376) ##### 📚 Documentation - chore: fix spelling by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2333](https://togithub.com/defenseunicorns/zarf/pull/2333) - docs: formatting and grammar by [@beholdenkey](https://togithub.com/beholdenkey) in [#2350](https://togithub.com/defenseunicorns/zarf/pull/2350) ##### ⚙️ Miscellaneous Tasks - chore: sorted go imports by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2349](https://togithub.com/defenseunicorns/zarf/pull/2349) - chore: fix bb test by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2340](https://togithub.com/defenseunicorns/zarf/pull/2340) - chore: update CODEOWNERS with [@AustinAbro321](https://togithub.com/AustinAbro321) by [@Racer159](https://togithub.com/Racer159) in [#2354](https://togithub.com/defenseunicorns/zarf/pull/2354) - chore: refactor and purify the OCI library within Zarf by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2235](https://togithub.com/defenseunicorns/zarf/pull/2235) - chore: default to temp zarf cache in e2e tests by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2355](https://togithub.com/defenseunicorns/zarf/pull/2355) ##### 🛡️ Security - chore: configure agent server to avoid slowloris attack by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2342](https://togithub.com/defenseunicorns/zarf/pull/2342) - chore: fix implicit memory aliasing in for loop by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2341](https://togithub.com/defenseunicorns/zarf/pull/2341) - *(release)*: update release workflow to use token from gh app by [@Noxsios](https://togithub.com/Noxsios) in [#2368](https://togithub.com/defenseunicorns/zarf/pull/2368) - *(release)*: use release environment secrets by [@Noxsios](https://togithub.com/Noxsios) in [#2374](https://togithub.com/defenseunicorns/zarf/pull/2374) ##### First Time Contributors - [@eddiezane](https://togithub.com/eddiezane) made their first contribution in [#2232](https://togithub.com/defenseunicorns/zarf/issues/2232) - [@beholdenkey](https://togithub.com/beholdenkey) made their first contribution in [#2350](https://togithub.com/defenseunicorns/zarf/issues/2350) - [@mdaizcorbe](https://togithub.com/mdaizcorbe) made their first contribution in [#2352](https://togithub.com/defenseunicorns/zarf/issues/2352) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5 ### [`v0.32.4`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.4) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4) ##### What's Changed ##### Fixes - Improve `cmd` failure messaging when no timeout or retries are given by [@docandrew](https://togithub.com/docandrew) in [https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301) - Revert init package storageclass checks for git server and seed registry by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2311](https://togithub.com/defenseunicorns/zarf/pull/2311) - Fix multi-part tarballs being mismatched sizes by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2314](https://togithub.com/defenseunicorns/zarf/pull/2314) - Change text template detection to check first *and* last 512 bytes by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2310](https://togithub.com/defenseunicorns/zarf/pull/2310) - Improve `zarf tools registry prune` messaging by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2323](https://togithub.com/defenseunicorns/zarf/pull/2323) - Add http request header timeout to mitigate stalling image push by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2319](https://togithub.com/defenseunicorns/zarf/pull/2319) - Allow host+subpath as the source registry for `--registry-override` in package create by [@waveywaves](https://togithub.com/waveywaves) in [https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306) ##### Dependencies - Update github.com/anchore/clio digest to [`cb94e40`](https://togithub.com/defenseunicorns/zarf/commit/cb94e40) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2294](https://togithub.com/defenseunicorns/zarf/pull/2294), [https://github.com/defenseunicorns/zarf/pull/2297](https://togithub.com/defenseunicorns/zarf/pull/2297) and [https://github.com/defenseunicorns/zarf/pull/2300](https://togithub.com/defenseunicorns/zarf/pull/2300) - **\[security]** Update module helm.sh/helm/v3 to v3.14.2 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2307](https://togithub.com/defenseunicorns/zarf/pull/2307) and [https://github.com/defenseunicorns/zarf/pull/2329](https://togithub.com/defenseunicorns/zarf/pull/2329) - Update actions/checkout action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2317](https://togithub.com/defenseunicorns/zarf/pull/2317) - Update actions/dependency-review-action action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2318](https://togithub.com/defenseunicorns/zarf/pull/2318) ##### Docs - Update [Zarf roadmap](https://docs.zarf.dev/docs/roadmap) per 2024 goals by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2305](https://togithub.com/defenseunicorns/zarf/pull/2305) ##### Development - Included Dependency Review action for PR reviews by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298) - Resolve CodeQL linting issues across Zarf by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2322](https://togithub.com/defenseunicorns/zarf/pull/2322) ##### New Contributors - [@docandrew](https://togithub.com/docandrew) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301) - [@naveensrinivasan](https://togithub.com/naveensrinivasan) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298) - [@waveywaves](https://togithub.com/waveywaves) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4 ### [`v0.32.3`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.3) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3) ##### What's Changed ##### Fixes - Properly handle panic that could occur during checksum validation by [@mjnagel](https://togithub.com/mjnagel) in [https://github.com/defenseunicorns/zarf/pull/2262](https://togithub.com/defenseunicorns/zarf/pull/2262) - Add the `--key` flag to the init cmd to properly allow for signed init packages by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2259](https://togithub.com/defenseunicorns/zarf/pull/2259) - Restore destroy script functionality during `zarf destroy` by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2274](https://togithub.com/defenseunicorns/zarf/pull/2274) - Fix symlink inclusion within component resources by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2256](https://togithub.com/defenseunicorns/zarf/pull/2256) - Use memory friendly file split logic for partial packages by [@daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) in [https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264) - Fix reproducible tarball creation on Windows systems by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2293](https://togithub.com/defenseunicorns/zarf/pull/2293) ##### Docs - Make branding more consistent and add community meetup references to docs by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2258](https://togithub.com/defenseunicorns/zarf/pull/2258) ##### Dependencies - Update github.com/anchore/clio digest by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2277](https://togithub.com/defenseunicorns/zarf/pull/2277) and [https://github.com/defenseunicorns/zarf/pull/2283](https://togithub.com/defenseunicorns/zarf/pull/2283) - Update all non-major dependencies (including Gitea v1.21.5, Syft v0.100.0, K9s v0.31.7 and Crane v0.19.0) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2187](https://togithub.com/defenseunicorns/zarf/pull/2187) ##### Development - Add a more robust chart search regexManager by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2278](https://togithub.com/defenseunicorns/zarf/pull/2278) and [https://github.com/defenseunicorns/zarf/pull/2284](https://togithub.com/defenseunicorns/zarf/pull/2284) - Partial refactor of injector logic in `k8s`, and `cluster` packages by [@chrishorton](https://togithub.com/chrishorton) in [https://github.com/defenseunicorns/zarf/pull/2271](https://togithub.com/defenseunicorns/zarf/pull/2271) ##### New Contributors - [@daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3 ### [`v0.32.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.2) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2) #### What's Changed #### Features - Support authenticated Helm repositories that have been configured with `helm repo add` by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2196](https://togithub.com/defenseunicorns/zarf/pull/2196) - Verify that the specified storage class exists during `zarf init` by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2180](https://togithub.com/defenseunicorns/zarf/pull/2180) - Check for available node resources before building injector pod by [@chrishorton](https://togithub.com/chrishorton) in [https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220) - Officially support yaml extensions within the `zarf.yaml` using `x-` keys by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2217](https://togithub.com/defenseunicorns/zarf/pull/2217) #### Fixes - Fix the inclusion of helm sub commands when rendering `zarf tools help` by [@jbrewer3](https://togithub.com/jbrewer3) in [https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216) #### Docs - Fix typos in the extension `README.md` by [@mjnagel](https://togithub.com/mjnagel) in [https://github.com/defenseunicorns/zarf/pull/2227](https://togithub.com/defenseunicorns/zarf/pull/2227) - Fix a small grammatical error in the base `README.md` by [@cmwylie19](https://togithub.com/cmwylie19) in [https://github.com/defenseunicorns/zarf/pull/2219](https://togithub.com/defenseunicorns/zarf/pull/2219) #### Dependencies - Update github.com/anchore/clio digest to [`89e2fe8`](https://togithub.com/defenseunicorns/zarf/commit/89e2fe8) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2214](https://togithub.com/defenseunicorns/zarf/pull/2214) - Update github.com/anchore/clio digest to [`a5e93b6`](https://togithub.com/defenseunicorns/zarf/commit/a5e93b6) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2229](https://togithub.com/defenseunicorns/zarf/pull/2229) - Update github.com/anchore/stereoscope digest to [`eb656fc`](https://togithub.com/defenseunicorns/zarf/commit/eb656fc) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2230](https://togithub.com/defenseunicorns/zarf/pull/2230) #### Development - Remove workflow for automatically adding issues to the zarf project by [@YrrepNoj](https://togithub.com/YrrepNoj) in [https://github.com/defenseunicorns/zarf/pull/2239](https://togithub.com/defenseunicorns/zarf/pull/2239) - Delete unnecessary waitgroup from concurrencyTools by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2244](https://togithub.com/defenseunicorns/zarf/pull/2244) - Update `NewOrasRemote` to take `ocispec.Platform` as an argument by [@decleaver](https://togithub.com/decleaver) in [https://github.com/defenseunicorns/zarf/pull/2241](https://togithub.com/defenseunicorns/zarf/pull/2241) #### New Contributors - [@jbrewer3](https://togithub.com/jbrewer3) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216) - [@chrishorton](https://togithub.com/chrishorton) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2 ### [`v0.32.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/defenseunicorns/uds-package-mattermost).  --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Wayne Starr <[email protected]>

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/checkout](https://togithub.com/actions/checkout) | action | patch | `v4.1.4` -> `v4.1.6` | | [actions/dependency-review-action](https://togithub.com/actions/dependency-review-action) | action | patch | `v4.3.1` -> `v4.3.2` | | [defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common) | | patch | `v0.4.2` -> `v0.4.4` | | [defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common) | action | patch | `v0.4.0` -> `v0.4.4` | | [defenseunicorns/zarf](https://togithub.com/defenseunicorns/zarf) | | minor | `v0.31.0` -> `v0.34.0` | | [github/codeql-action](https://togithub.com/github/codeql-action) | action | patch | `v3.25.3` -> `v3.25.6` | | [google-github-actions/release-please-action](https://togithub.com/google-github-actions/release-please-action) | action | patch | `v4.1.0` -> `v4.1.1` | | [ossf/scorecard-action](https://togithub.com/ossf/scorecard-action) | action | patch | `v2.3.1` -> `v2.3.3` | --- ### Release Notes <details> <summary>actions/checkout (actions/checkout)</summary> ### [`v4.1.6`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v416) [Compare Source](https://togithub.com/actions/checkout/compare/v4.1.5...v4.1.6) - Check platform to set archive extension appropriately by [@cory-miller](https://togithub.com/cory-miller) in [https://github.com/actions/checkout/pull/1732](https://togithub.com/actions/checkout/pull/1732) ### [`v4.1.5`](https://togithub.com/actions/checkout/releases/tag/v4.1.5) [Compare Source](https://togithub.com/actions/checkout/compare/v4.1.4...v4.1.5) #### What's Changed - Update NPM dependencies by [@cory-miller](https://togithub.com/cory-miller) in [https://github.com/actions/checkout/pull/1703](https://togithub.com/actions/checkout/pull/1703) - Bump github/codeql-action from 2 to 3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/checkout/pull/1694](https://togithub.com/actions/checkout/pull/1694) - Bump actions/setup-node from 1 to 4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/checkout/pull/1696](https://togithub.com/actions/checkout/pull/1696) - Bump actions/upload-artifact from 2 to 4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/checkout/pull/1695](https://togithub.com/actions/checkout/pull/1695) - README: Suggest `user.email` to be `41898282+github-actions[bot]@users.noreply.github.com` by [@cory-miller](https://togithub.com/cory-miller) in [https://github.com/actions/checkout/pull/1707](https://togithub.com/actions/checkout/pull/1707) **Full Changelog**: https://github.com/actions/checkout/compare/v4.1.4...v4.1.5 </details> <details> <summary>actions/dependency-review-action (actions/dependency-review-action)</summary> ### [`v4.3.2`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.3.2) [Compare Source](https://togithub.com/actions/dependency-review-action/compare/v4.3.1...v4.3.2) #### What's Changed - Fix package-url parsing for allow-dependencies-licenses by [@juxtin](https://togithub.com/juxtin) in [https://github.com/actions/dependency-review-action/pull/761](https://togithub.com/actions/dependency-review-action/pull/761) **Full Changelog**: https://github.com/actions/dependency-review-action/compare/v4.3.1...v4.3.2 </details> <details> <summary>defenseunicorns/uds-common (defenseunicorns/uds-common)</summary> ### [`v0.4.4`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.4.4) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.4.3...v0.4.4) ##### Miscellaneous - pull debug / log actions from uds-core ([#135](https://togithub.com/defenseunicorns/uds-common/issues/135)) ([b3c9928](https://togithub.com/defenseunicorns/uds-common/commit/b3c99286e4200c98a61d86484030f2be5ebb5c70)) ### [`v0.4.3`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.4.3) [Compare Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.4.2...v0.4.3) ##### Bug Fixes - update renovate config to use docker versioning for zarf images ([#128](https://togithub.com/defenseunicorns/uds-common/issues/128)) ([c18e125](https://togithub.com/defenseunicorns/uds-common/commit/c18e12507384328bb53b81c096bc9827f96ba114)) ##### Miscellaneous - add an airgap note to UDS Package Practices (clarity is kindness) ([#126](https://togithub.com/defenseunicorns/uds-common/issues/126)) ([b70e1fe](https://togithub.com/defenseunicorns/uds-common/commit/b70e1fe165a521a33789298a7e69aa6a59d54968)) - adjust UDS package practice formatting ([#123](https://togithub.com/defenseunicorns/uds-common/issues/123)) ([f351d04](https://togithub.com/defenseunicorns/uds-common/commit/f351d04732a6e6e6fc2c62eff13f625a613effcc)) - **deps:** update uds common package dependencies to v6.6.3 ([#132](https://togithub.com/defenseunicorns/uds-common/issues/132)) ([0ebdd1f](https://togithub.com/defenseunicorns/uds-common/commit/0ebdd1f5f2aa32720c88347027215305573bc716)) - **deps:** update uds common support dependencies ([#125](https://togithub.com/defenseunicorns/uds-common/issues/125)) ([e014724](https://togithub.com/defenseunicorns/uds-common/commit/e01472454d2b3ef9665546fbb24c9980f090d238)) - **deps:** update uds common support dependencies to v0.22.0 ([#133](https://togithub.com/defenseunicorns/uds-common/issues/133)) ([2cf903d](https://togithub.com/defenseunicorns/uds-common/commit/2cf903d41d0dbfda1baaa9629d1fa3c5d1a88110)) - initial package practices ([#117](https://togithub.com/defenseunicorns/uds-common/issues/117)) ([d292b21](https://togithub.com/defenseunicorns/uds-common/commit/d292b216da73493743cd0a67b9763549c87c1819)) - update package practices with a bit more feedback ([#129](https://togithub.com/defenseunicorns/uds-common/issues/129)) ([af34fc9](https://togithub.com/defenseunicorns/uds-common/commit/af34fc90104c57d11a08678186b8b2aeaaac135d)) </details> <details> <summary>defenseunicorns/zarf (defenseunicorns/zarf)</summary> ### [`v0.34.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.34.0) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.33.2...v0.34.0) ##### What's Changed - refactor: move validate to expose it as receivers by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2419](https://togithub.com/defenseunicorns/zarf/pull/2419) - docs: add additional detail to security policy by [@salaxander](https://togithub.com/salaxander) in [https://github.com/defenseunicorns/zarf/pull/2488](https://togithub.com/defenseunicorns/zarf/pull/2488) - chore: cleanup stale grype ignores and patch golang.org/x/net CVE by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2492](https://togithub.com/defenseunicorns/zarf/pull/2492) - docs: injector and init package reference material by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2468](https://togithub.com/defenseunicorns/zarf/pull/2468) - chore: patch CVE-2024-3817 by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2498](https://togithub.com/defenseunicorns/zarf/pull/2498) - refactor: cleaner image pulls by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2460](https://togithub.com/defenseunicorns/zarf/pull/2460) - chore: adding [@dgershman](https://togithub.com/dgershman) by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2506](https://togithub.com/defenseunicorns/zarf/pull/2506) - refactor: context usage in k8s code by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2405](https://togithub.com/defenseunicorns/zarf/pull/2405) - ci: run revive using golang-lint-ci by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2499](https://togithub.com/defenseunicorns/zarf/pull/2499) - feat: update injector away from rouille to axum by [@schristoff](https://togithub.com/schristoff) in [https://github.com/defenseunicorns/zarf/pull/2457](https://togithub.com/defenseunicorns/zarf/pull/2457) - refactor: enable testifylint linter by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2504](https://togithub.com/defenseunicorns/zarf/pull/2504) - chore: remove rouille CVE from grype ignore by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2515](https://togithub.com/defenseunicorns/zarf/pull/2515) - fix(agent): missing path for pod without labels by [@brandtkeller](https://togithub.com/brandtkeller) in [https://github.com/defenseunicorns/zarf/pull/2518](https://togithub.com/defenseunicorns/zarf/pull/2518) - fix: adopt namespace metadata by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2494](https://togithub.com/defenseunicorns/zarf/pull/2494) - refactor: enable ineffassign linter by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2500](https://togithub.com/defenseunicorns/zarf/pull/2500) - test: cluster getDeployedPackages by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2523](https://togithub.com/defenseunicorns/zarf/pull/2523) - test: add unit tests for merge zarf state by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2522](https://togithub.com/defenseunicorns/zarf/pull/2522) - test: pod agent unit tests by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2526](https://togithub.com/defenseunicorns/zarf/pull/2526) - docs: add google analytics for docs pages by [@salaxander](https://togithub.com/salaxander) in [https://github.com/defenseunicorns/zarf/pull/2530](https://togithub.com/defenseunicorns/zarf/pull/2530) - test: add unit tests for detect distro by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2521](https://togithub.com/defenseunicorns/zarf/pull/2521) - test: add tests for injector by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2534](https://togithub.com/defenseunicorns/zarf/pull/2534) - chore: add codecov by [@schristoff-du](https://togithub.com/schristoff-du) in [https://github.com/defenseunicorns/zarf/pull/2529](https://togithub.com/defenseunicorns/zarf/pull/2529) - chore: add unit tests for creator.LoadPackageDefinition by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2531](https://togithub.com/defenseunicorns/zarf/pull/2531) - test: refactor network test by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2533](https://togithub.com/defenseunicorns/zarf/pull/2533) - test: agent flux unit test by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2528](https://togithub.com/defenseunicorns/zarf/pull/2528) - chore: fix codecov by [@schristoff](https://togithub.com/schristoff) in [https://github.com/defenseunicorns/zarf/pull/2538](https://togithub.com/defenseunicorns/zarf/pull/2538) - test: creator.ComposeComponents by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2537](https://togithub.com/defenseunicorns/zarf/pull/2537) - refactor: remove use of k8s serivce account by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2544](https://togithub.com/defenseunicorns/zarf/pull/2544) - refactor: remove use of k8s service by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2543](https://togithub.com/defenseunicorns/zarf/pull/2543) - refactor: remove use of k8s configmap by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2541](https://togithub.com/defenseunicorns/zarf/pull/2541) - refactor: remove use of k8s hpa by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2542](https://togithub.com/defenseunicorns/zarf/pull/2542) - test: add secrets tests by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2540](https://togithub.com/defenseunicorns/zarf/pull/2540) - refactor: allow callers to directly set logfile location by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2545](https://togithub.com/defenseunicorns/zarf/pull/2545) - test: add test for packager source by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2525](https://togithub.com/defenseunicorns/zarf/pull/2525) - chore: add unit tests to variables pkg by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2519](https://togithub.com/defenseunicorns/zarf/pull/2519) - test: clean up tests for composer by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2532](https://togithub.com/defenseunicorns/zarf/pull/2532) - test: argo agent unit tests by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2536](https://togithub.com/defenseunicorns/zarf/pull/2536) - fix(release): do not delete testdata in release workflow by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2547](https://togithub.com/defenseunicorns/zarf/pull/2547) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.33.2...v0.34.0 ### [`v0.33.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.2) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.33.1...v0.33.2) ##### What's Changed - fix: schema integration by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2463](https://togithub.com/defenseunicorns/zarf/pull/2463) - docs: add contributor covenant code of conduct by [@salaxander](https://togithub.com/salaxander) in [https://github.com/defenseunicorns/zarf/pull/2462](https://togithub.com/defenseunicorns/zarf/pull/2462) - docs: fix casing on code of conduct badge by [@salaxander](https://togithub.com/salaxander) in [https://github.com/defenseunicorns/zarf/pull/2466](https://togithub.com/defenseunicorns/zarf/pull/2466) - fix(deps): update github.com/anchore/clio digest to [`3c4abf8`](https://togithub.com/defenseunicorns/zarf/commit/3c4abf8) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2424](https://togithub.com/defenseunicorns/zarf/pull/2424) - fix: update docker media type in registry by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2476](https://togithub.com/defenseunicorns/zarf/pull/2476) - fix: adds GetVariableConfig function for packager by [@decleaver](https://togithub.com/decleaver) in [https://github.com/defenseunicorns/zarf/pull/2475](https://togithub.com/defenseunicorns/zarf/pull/2475) - test: add tests for remove copies from components to enable refactoring by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2473](https://togithub.com/defenseunicorns/zarf/pull/2473) - fix!: do not uninstall helm chart after failed install or upgrade by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2456](https://togithub.com/defenseunicorns/zarf/pull/2456) - feat: inspect --list-images by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2478](https://togithub.com/defenseunicorns/zarf/pull/2478) - refactor: remove copies from components to a filter by [@phillebaba](https://togithub.com/phillebaba) in [https://github.com/defenseunicorns/zarf/pull/2474](https://togithub.com/defenseunicorns/zarf/pull/2474) - chore: add support.md by [@schristoff](https://togithub.com/schristoff) in [https://github.com/defenseunicorns/zarf/pull/2480](https://togithub.com/defenseunicorns/zarf/pull/2480) - chore: add a check for go mod tidy by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2481](https://togithub.com/defenseunicorns/zarf/pull/2481) - fix: use correct sha256 checksum for arm64 injector binary by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2483](https://togithub.com/defenseunicorns/zarf/pull/2483) - fix: simplify go mod tidy check by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2482](https://togithub.com/defenseunicorns/zarf/pull/2482) ##### New Contributors - [@salaxander](https://togithub.com/salaxander) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2462](https://togithub.com/defenseunicorns/zarf/pull/2462) - [@phillebaba](https://togithub.com/phillebaba) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2473](https://togithub.com/defenseunicorns/zarf/pull/2473) - [@schristoff](https://togithub.com/schristoff) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2480](https://togithub.com/defenseunicorns/zarf/pull/2480) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.33.1...v0.33.2 ### [`v0.33.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.1) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.33.0...v0.33.1) ##### What's Changed - fix: add redirect so old zarf base link is compatiable by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2432](https://togithub.com/defenseunicorns/zarf/pull/2432) - ci: pin third-party gh actions by hash by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2433](https://togithub.com/defenseunicorns/zarf/pull/2433) - docs: add redirect for examples by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2438](https://togithub.com/defenseunicorns/zarf/pull/2438) - docs: update contributing and pre-commit by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2439](https://togithub.com/defenseunicorns/zarf/pull/2439) - ci: fix revive image ref in lint workflow by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2436](https://togithub.com/defenseunicorns/zarf/pull/2436) - fix: filter on running pods when finding an image for injector pod by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2415](https://togithub.com/defenseunicorns/zarf/pull/2415) - fix: readme dead links by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2442](https://togithub.com/defenseunicorns/zarf/pull/2442) - fix: differential package create with non local sources by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2444](https://togithub.com/defenseunicorns/zarf/pull/2444) - refactor: move variables into separate package by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2414](https://togithub.com/defenseunicorns/zarf/pull/2414) - ci: add top level workflow permission to commitlint by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2449](https://togithub.com/defenseunicorns/zarf/pull/2449) - ci: remove unused env var from codeql workflow by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2450](https://togithub.com/defenseunicorns/zarf/pull/2450) - chore: cleanup root level files and add SPDX check for Go files by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2431](https://togithub.com/defenseunicorns/zarf/pull/2431) - feat: config to enable resilient registry by [@Michael-Kruggel](https://togithub.com/Michael-Kruggel) in [https://github.com/defenseunicorns/zarf/pull/2440](https://togithub.com/defenseunicorns/zarf/pull/2440) - docs: init package clarity and cleanup by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2447](https://togithub.com/defenseunicorns/zarf/pull/2447) - ci: compare cves to main by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2448](https://togithub.com/defenseunicorns/zarf/pull/2448) - test: unpin version in bigbang extension test by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2459](https://togithub.com/defenseunicorns/zarf/pull/2459) - fix: broken schema from unexpanded embedded variables by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2458](https://togithub.com/defenseunicorns/zarf/pull/2458) - fix: error on create if an index sha is used by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2429](https://togithub.com/defenseunicorns/zarf/pull/2429) ##### New Contributors - [@Michael-Kruggel](https://togithub.com/Michael-Kruggel) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2440](https://togithub.com/defenseunicorns/zarf/pull/2440) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.33.0...v0.33.1 ### [`v0.33.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.0) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.6...v0.33.0) ##### What's Changed - fix: update deprecated syft packages command to syft scan by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2399](https://togithub.com/defenseunicorns/zarf/pull/2399) - chore: move helpers to defenseunicorns/pkg by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2402](https://togithub.com/defenseunicorns/zarf/pull/2402) - fix(deps): update github.com/anchore/clio digest to [`fb5fc4c`](https://togithub.com/defenseunicorns/zarf/commit/fb5fc4c) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2366](https://togithub.com/defenseunicorns/zarf/pull/2366) - feat(tools): add yq by [@zachariahmiller](https://togithub.com/zachariahmiller) in [https://github.com/defenseunicorns/zarf/pull/2406](https://togithub.com/defenseunicorns/zarf/pull/2406) - chore: switch to use oci lib in defenseunicorns/pkg by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2404](https://togithub.com/defenseunicorns/zarf/pull/2404) - fix(deps): update module github.com/defenseunicorns/pkg/helpers to v1 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2411](https://togithub.com/defenseunicorns/zarf/pull/2411) - fix: use env var for PR title in commitlint workflow to prevent untrusted script injection by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2418](https://togithub.com/defenseunicorns/zarf/pull/2418) - fix: use default GITHUB_TOKEN for ossf/scorecard-action by [@bburky](https://togithub.com/bburky) in [https://github.com/defenseunicorns/zarf/pull/2416](https://togithub.com/defenseunicorns/zarf/pull/2416) - fix: remove duplicate logic for writing image layers to disk concurrently by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2409](https://togithub.com/defenseunicorns/zarf/pull/2409) - feat: add option to skip cosign lookup during find images by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2427](https://togithub.com/defenseunicorns/zarf/pull/2427) - feat: allow chart deploy overrides ALPHA by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [https://github.com/defenseunicorns/zarf/pull/2403](https://togithub.com/defenseunicorns/zarf/pull/2403) - chore: update pull_request_template.md by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2428](https://togithub.com/defenseunicorns/zarf/pull/2428) - ci: pin k3s image version in k3d github action by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2430](https://togithub.com/defenseunicorns/zarf/pull/2430) - feat(docs): port docs to starlight by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2315](https://togithub.com/defenseunicorns/zarf/pull/2315) ##### New Contributors - [@zachariahmiller](https://togithub.com/zachariahmiller) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2406](https://togithub.com/defenseunicorns/zarf/pull/2406) - [@bburky](https://togithub.com/bburky) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2416](https://togithub.com/defenseunicorns/zarf/pull/2416) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.6...v0.33.0 ### [`v0.32.6`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.6) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6) ##### \[0.32.6] - 2024-03-22 > trying out some different release note generators, formatting may vary for a few releases while we figure out what works best ~[@Noxsios](https://togithub.com/Noxsios) ##### 🚀 Features - \[**ALPHA**] feat: package generation ALPHA by [@andrewg-xyz](https://togithub.com/andrewg-xyz) in [#2269](https://togithub.com/defenseunicorns/zarf/pull/2269) - *(lib)* feat(lib): configurable log file location by [@Noxsios](https://togithub.com/Noxsios) in [#2380](https://togithub.com/defenseunicorns/zarf/pull/2380) - \[**BREAKING**] feat!: filter package components with strategy interface by [@Noxsios](https://togithub.com/Noxsios) in [#2321](https://togithub.com/defenseunicorns/zarf/pull/2321) ##### 🐛 Bug Fixes - fix: refactor create stages into separate lib by [@lucasrod16](https://togithub.com/lucasrod16) in [#2223](https://togithub.com/defenseunicorns/zarf/pull/2223) - fix: handle registry caBundle as a multiline string by [@AbrohamLincoln](https://togithub.com/AbrohamLincoln) in [#2381](https://togithub.com/defenseunicorns/zarf/pull/2381) - *(regression)* fix: populate `p.sbomViewFiles` on `deploy` and `mirror` by [@lucasrod16](https://togithub.com/lucasrod16) in [#2386](https://togithub.com/defenseunicorns/zarf/pull/2386) - fix: allow absolute paths for differential packages by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2397](https://togithub.com/defenseunicorns/zarf/pull/2397) - fix: hotfix skeleton publish by [@Noxsios](https://togithub.com/Noxsios) in [#2398](https://togithub.com/defenseunicorns/zarf/pull/2398) ##### 🚜 Refactor - refactor: split helpers/exec libs by [@Racer159](https://togithub.com/Racer159) in [#2379](https://togithub.com/defenseunicorns/zarf/pull/2379) ##### 🧪 Testing - test: data injection flake by [@lucasrod16](https://togithub.com/lucasrod16) in [#2361](https://togithub.com/defenseunicorns/zarf/pull/2361) ##### ⚙️ Miscellaneous Tasks - ci: add commitlint workflow and update contributing guide by [@lucasrod16](https://togithub.com/lucasrod16) in [#2391](https://togithub.com/defenseunicorns/zarf/pull/2391) ##### 🛡️ Security - *(release)* build: create PRs on `homebrew-tap` by [@Noxsios](https://togithub.com/Noxsios) in [#2385](https://togithub.com/defenseunicorns/zarf/pull/2385) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6 ### [`v0.32.5`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.5) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5) ##### \[0.32.5] - 2024-03-11 > trying out some different release note generators, formatting may vary for a few releases while we figure out what works best ~[@Noxsios](https://togithub.com/Noxsios) ##### 🚀 Features - feat: add missing vendored tool version commands by [@eddiezane](https://togithub.com/eddiezane) in [#2232](https://togithub.com/defenseunicorns/zarf/pull/2232) - feat: add `--why` flag for `zarf dev find-images` by [@waveywaves](https://togithub.com/waveywaves) in [#2309](https://togithub.com/defenseunicorns/zarf/pull/2309) - feat: set variables on find images by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2282](https://togithub.com/defenseunicorns/zarf/pull/2282) - feat: add configurable backoff and retries for Zarf operations by [@Racer159](https://togithub.com/Racer159) in [#2345](https://togithub.com/defenseunicorns/zarf/pull/2345) ##### 🐛 Bug Fixes - *(deps)*: update github.com/anchore/clio digest to [`abcb719`](https://togithub.com/defenseunicorns/zarf/commit/abcb719) by [@renovate](https://togithub.com/renovate)\[bot] in [#2347](https://togithub.com/defenseunicorns/zarf/pull/2347) - *(ci)*: change ECR image to docker.io image by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2353](https://togithub.com/defenseunicorns/zarf/pull/2353) - fix: added OCI Image Index mediaType by [@mdaizcorbe](https://togithub.com/mdaizcorbe) in [#2352](https://togithub.com/defenseunicorns/zarf/pull/2352) - fix: package publish progress bar frozen at zero by [@Noxsios](https://togithub.com/Noxsios) in [#2367](https://togithub.com/defenseunicorns/zarf/pull/2367) - *(release)* hotfix `publish` not respecting source package architecture by [@Noxsios](https://togithub.com/Noxsios) in [#2376](https://togithub.com/defenseunicorns/zarf/pull/2376) ##### 📚 Documentation - chore: fix spelling by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2333](https://togithub.com/defenseunicorns/zarf/pull/2333) - docs: formatting and grammar by [@beholdenkey](https://togithub.com/beholdenkey) in [#2350](https://togithub.com/defenseunicorns/zarf/pull/2350) ##### ⚙️ Miscellaneous Tasks - chore: sorted go imports by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2349](https://togithub.com/defenseunicorns/zarf/pull/2349) - chore: fix bb test by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2340](https://togithub.com/defenseunicorns/zarf/pull/2340) - chore: update CODEOWNERS with [@AustinAbro321](https://togithub.com/AustinAbro321) by [@Racer159](https://togithub.com/Racer159) in [#2354](https://togithub.com/defenseunicorns/zarf/pull/2354) - chore: refactor and purify the OCI library within Zarf by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2235](https://togithub.com/defenseunicorns/zarf/pull/2235) - chore: default to temp zarf cache in e2e tests by [@AustinAbro321](https://togithub.com/AustinAbro321) in [#2355](https://togithub.com/defenseunicorns/zarf/pull/2355) ##### 🛡️ Security - chore: configure agent server to avoid slowloris attack by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2342](https://togithub.com/defenseunicorns/zarf/pull/2342) - chore: fix implicit memory aliasing in for loop by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [#2341](https://togithub.com/defenseunicorns/zarf/pull/2341) - *(release)*: update release workflow to use token from gh app by [@Noxsios](https://togithub.com/Noxsios) in [#2368](https://togithub.com/defenseunicorns/zarf/pull/2368) - *(release)*: use release environment secrets by [@Noxsios](https://togithub.com/Noxsios) in [#2374](https://togithub.com/defenseunicorns/zarf/pull/2374) ##### First Time Contributors - [@eddiezane](https://togithub.com/eddiezane) made their first contribution in [#2232](https://togithub.com/defenseunicorns/zarf/issues/2232) - [@beholdenkey](https://togithub.com/beholdenkey) made their first contribution in [#2350](https://togithub.com/defenseunicorns/zarf/issues/2350) - [@mdaizcorbe](https://togithub.com/mdaizcorbe) made their first contribution in [#2352](https://togithub.com/defenseunicorns/zarf/issues/2352) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5 ### [`v0.32.4`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.4) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4) ##### What's Changed ##### Fixes - Improve `cmd` failure messaging when no timeout or retries are given by [@docandrew](https://togithub.com/docandrew) in [https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301) - Revert init package storageclass checks for git server and seed registry by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2311](https://togithub.com/defenseunicorns/zarf/pull/2311) - Fix multi-part tarballs being mismatched sizes by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2314](https://togithub.com/defenseunicorns/zarf/pull/2314) - Change text template detection to check first *and* last 512 bytes by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2310](https://togithub.com/defenseunicorns/zarf/pull/2310) - Improve `zarf tools registry prune` messaging by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2323](https://togithub.com/defenseunicorns/zarf/pull/2323) - Add http request header timeout to mitigate stalling image push by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2319](https://togithub.com/defenseunicorns/zarf/pull/2319) - Allow host+subpath as the source registry for `--registry-override` in package create by [@waveywaves](https://togithub.com/waveywaves) in [https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306) ##### Dependencies - Update github.com/anchore/clio digest to [`cb94e40`](https://togithub.com/defenseunicorns/zarf/commit/cb94e40) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2294](https://togithub.com/defenseunicorns/zarf/pull/2294), [https://github.com/defenseunicorns/zarf/pull/2297](https://togithub.com/defenseunicorns/zarf/pull/2297) and [https://github.com/defenseunicorns/zarf/pull/2300](https://togithub.com/defenseunicorns/zarf/pull/2300) - **\[security]** Update module helm.sh/helm/v3 to v3.14.2 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2307](https://togithub.com/defenseunicorns/zarf/pull/2307) and [https://github.com/defenseunicorns/zarf/pull/2329](https://togithub.com/defenseunicorns/zarf/pull/2329) - Update actions/checkout action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2317](https://togithub.com/defenseunicorns/zarf/pull/2317) - Update actions/dependency-review-action action to v4 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2318](https://togithub.com/defenseunicorns/zarf/pull/2318) ##### Docs - Update [Zarf roadmap](https://docs.zarf.dev/docs/roadmap) per 2024 goals by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2305](https://togithub.com/defenseunicorns/zarf/pull/2305) ##### Development - Included Dependency Review action for PR reviews by [@naveensrinivasan](https://togithub.com/naveensrinivasan) in [https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298) - Resolve CodeQL linting issues across Zarf by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2322](https://togithub.com/defenseunicorns/zarf/pull/2322) ##### New Contributors - [@docandrew](https://togithub.com/docandrew) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301) - [@naveensrinivasan](https://togithub.com/naveensrinivasan) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298) - [@waveywaves](https://togithub.com/waveywaves) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4 ### [`v0.32.3`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.3) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3) ##### What's Changed ##### Fixes - Properly handle panic that could occur during checksum validation by [@mjnagel](https://togithub.com/mjnagel) in [https://github.com/defenseunicorns/zarf/pull/2262](https://togithub.com/defenseunicorns/zarf/pull/2262) - Add the `--key` flag to the init cmd to properly allow for signed init packages by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2259](https://togithub.com/defenseunicorns/zarf/pull/2259) - Restore destroy script functionality during `zarf destroy` by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2274](https://togithub.com/defenseunicorns/zarf/pull/2274) - Fix symlink inclusion within component resources by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2256](https://togithub.com/defenseunicorns/zarf/pull/2256) - Use memory friendly file split logic for partial packages by [@daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) in [https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264) - Fix reproducible tarball creation on Windows systems by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2293](https://togithub.com/defenseunicorns/zarf/pull/2293) ##### Docs - Make branding more consistent and add community meetup references to docs by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2258](https://togithub.com/defenseunicorns/zarf/pull/2258) ##### Dependencies - Update github.com/anchore/clio digest by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2277](https://togithub.com/defenseunicorns/zarf/pull/2277) and [https://github.com/defenseunicorns/zarf/pull/2283](https://togithub.com/defenseunicorns/zarf/pull/2283) - Update all non-major dependencies (including Gitea v1.21.5, Syft v0.100.0, K9s v0.31.7 and Crane v0.19.0) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2187](https://togithub.com/defenseunicorns/zarf/pull/2187) ##### Development - Add a more robust chart search regexManager by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2278](https://togithub.com/defenseunicorns/zarf/pull/2278) and [https://github.com/defenseunicorns/zarf/pull/2284](https://togithub.com/defenseunicorns/zarf/pull/2284) - Partial refactor of injector logic in `k8s`, and `cluster` packages by [@chrishorton](https://togithub.com/chrishorton) in [https://github.com/defenseunicorns/zarf/pull/2271](https://togithub.com/defenseunicorns/zarf/pull/2271) ##### New Contributors - [@daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3 ### [`v0.32.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.2) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2) ##### What's Changed ##### Features - Support authenticated Helm repositories that have been configured with `helm repo add` by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2196](https://togithub.com/defenseunicorns/zarf/pull/2196) - Verify that the specified storage class exists during `zarf init` by [@lucasrod16](https://togithub.com/lucasrod16) in [https://github.com/defenseunicorns/zarf/pull/2180](https://togithub.com/defenseunicorns/zarf/pull/2180) - Check for available node resources before building injector pod by [@chrishorton](https://togithub.com/chrishorton) in [https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220) - Officially support yaml extensions within the `zarf.yaml` using `x-` keys by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2217](https://togithub.com/defenseunicorns/zarf/pull/2217) ##### Fixes - Fix the inclusion of helm sub commands when rendering `zarf tools help` by [@jbrewer3](https://togithub.com/jbrewer3) in [https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216) ##### Docs - Fix typos in the extension `README.md` by [@mjnagel](https://togithub.com/mjnagel) in [https://github.com/defenseunicorns/zarf/pull/2227](https://togithub.com/defenseunicorns/zarf/pull/2227) - Fix a small grammatical error in the base `README.md` by [@cmwylie19](https://togithub.com/cmwylie19) in [https://github.com/defenseunicorns/zarf/pull/2219](https://togithub.com/defenseunicorns/zarf/pull/2219) ##### Dependencies - Update github.com/anchore/clio digest to [`89e2fe8`](https://togithub.com/defenseunicorns/zarf/commit/89e2fe8) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2214](https://togithub.com/defenseunicorns/zarf/pull/2214) - Update github.com/anchore/clio digest to [`a5e93b6`](https://togithub.com/defenseunicorns/zarf/commit/a5e93b6) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2229](https://togithub.com/defenseunicorns/zarf/pull/2229) - Update github.com/anchore/stereoscope digest to [`eb656fc`](https://togithub.com/defenseunicorns/zarf/commit/eb656fc) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2230](https://togithub.com/defenseunicorns/zarf/pull/2230) ##### Development - Remove workflow for automatically adding issues to the zarf project by [@YrrepNoj](https://togithub.com/YrrepNoj) in [https://github.com/defenseunicorns/zarf/pull/2239](https://togithub.com/defenseunicorns/zarf/pull/2239) - Delete unnecessary waitgroup from concurrencyTools by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2244](https://togithub.com/defenseunicorns/zarf/pull/2244) - Update `NewOrasRemote` to take `ocispec.Platform` as an argument by [@decleaver](https://togithub.com/decleaver) in [https://github.com/defenseunicorns/zarf/pull/2241](https://togithub.com/defenseunicorns/zarf/pull/2241) ##### New Contributors - [@jbrewer3](https://togithub.com/jbrewer3) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216) - [@chrishorton](https://togithub.com/chrishorton) made their first contribution in [https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2 ### [`v0.32.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.1) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.0...v0.32.1) ##### What's Changed ##### Fixes - `ResolveRoot` now properly returns an error when a target platform is not provided when used as a library by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2212](https://togithub.com/defenseunicorns/zarf/pull/2212) - Fix reproducibility of internal tarballs for components + sboms to allow better OCI layer reuse by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2210](https://togithub.com/defenseunicorns/zarf/pull/2210) ##### Docs - Remove `dos-games` skeleton references and instead use the skeleton architecture index by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2208](https://togithub.com/defenseunicorns/zarf/pull/2208) ##### Dependencies - \[security] Update github.com/go-git/go-git/v5 to v5.11.0 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2209](https://togithub.com/defenseunicorns/zarf/pull/2209) - \[security] Update github.com/containerd/containerd to v1.7.11 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2209](https://togithub.com/defenseunicorns/zarf/pull/2209) - Update github.com/anchore/syft to v0.99.0 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2185](https://togithub.com/defenseunicorns/zarf/pull/2185) - Update github.com/anchore/clio digest to [`3e50431`](https://togithub.com/defenseunicorns/zarf/commit/3e50431) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2207](https://togithub.com/defenseunicorns/zarf/pull/2207) - Update github.com/anchore/stereoscope digest to [`590920d`](https://togithub.com/defenseunicorns/zarf/commit/590920d) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2206](https://togithub.com/defenseunicorns/zarf/pull/2206) - Update github/codeql-action action to v3 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2191](https://togithub.com/defenseunicorns/zarf/pull/2191) **Full Changelog**: https://github.com/defenseunicorns/zarf/compare/v0.32.0...v0.32.1 ### [`v0.32.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.0) [Compare Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.4...v0.32.0) ##### What's Changed ##### :warning: Breaking Changes - Gitea has been updated from the 8.x series chart (app version 1.19.3) to the 10.x series chart (app version 1.21.2) - this update contains breaking changes and should be tested if you are using this component - default Zarf installs will upgrade automatically but more advanced configurations / use cases should be reviewed. [Gitea Release Notes](https://togithub.com/go-gitea/gitea/releases) - Zarf package OCI references now use OCI indexes / platforms to handle architecture - packages published to OCI with this version of Zarf will be placed within an index and won't be able to be pulled with older versions - old packages will still be able to be pulled however. - Component and package names can no longer start with a leading `-` as this is used within the deselect syntax introduced for `--components` ##### Features <img src="https://github.com/defenseunicorns/zarf/assets/3977569/b9f9e158-d70d-48dd-bcda-f37d728e700a" width=555px/> - Add `zarf dev deploy` for quickly testing packages and restructure `zarf prepare` into `zarf dev` by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2170](https://togithub.com/defenseunicorns/zarf/pull/2170) - Introduce unpinned resources (`images`/`repos`/`files`) warning for `zarf dev lint` by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2171](https://togithub.com/defenseunicorns/zarf/pull/2171) - Add glob selection and deselection support to `--components` by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2175](https://togithub.com/defenseunicorns/zarf/pull/2175) - Switch to indexed platforms for OCI architectures (eliminate `-amd64`, `-arm64` tag mangling) by [@Noxsios](https://togithub.com/Noxsios) in [https://github.com/defenseunicorns/zarf/pull/2184](https://togithub.com/defenseunicorns/zarf/pull/2184) <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Introduce `zarf prepare lint` to perform schema validation and lay groundwork for standardizing best practices by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2075](https://togithub.com/defenseunicorns/zarf/pull/2075) - Add `zarf package remove/inspect` completion for package names from cluster sources by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2151](https://togithub.com/defenseunicorns/zarf/pull/2151) - Add a warning when no components are selected for deployment in a package by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2167](https://togithub.com/defenseunicorns/zarf/pull/2167) - Allow passing additional arguments to `k9s` when invoked by `zarf tools monitor` by [@WeaponX314](https://togithub.com/WeaponX314) in [https://github.com/defenseunicorns/zarf/pull/2095](https://togithub.com/defenseunicorns/zarf/pull/2095) - Add `REGISTRY_CA_BUNDLE` variable to registry package and chart to improve S3 backed registries by [@AbrohamLincoln](https://togithub.com/AbrohamLincoln) in [https://github.com/defenseunicorns/zarf/pull/2008](https://togithub.com/defenseunicorns/zarf/pull/2008) - Add `GIT_SERVER_DISABLE_REGISTRATION` variable to allow for Gitea registration, so that SSO can be used by [@dgershman](https://togithub.com/dgershman) in [https://github.com/defenseunicorns/zarf/pull/2118](https://togithub.com/defenseunicorns/zarf/pull/2118) - `[Library Only]` Initial implementation of Helm Chart overrides at deploy time by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2131](https://togithub.com/defenseunicorns/zarf/pull/2131) </details> ##### Fixes - Update error message when the image doesn't exist locally or on a remote by [@bdw617](https://togithub.com/bdw617) in [https://github.com/defenseunicorns/zarf/pull/2160](https://togithub.com/defenseunicorns/zarf/pull/2160) - Corrected k8s / helm k8s client version within Helm templating by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2197](https://togithub.com/defenseunicorns/zarf/pull/2197) - Properly handle tunnel error channels to force retries of image pushing by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2190](https://togithub.com/defenseunicorns/zarf/pull/2190) <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Fix helm chart clobbering and differences with Zarf and Helm `chart` names along with new [`repoName` key](https://docs.zarf.dev/docs/create-a-zarf-package/zarf-schema#zarfchart) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2174](https://togithub.com/defenseunicorns/zarf/pull/2174) - Add message asking if the user has init'ed their cluster and slim down error messages more generally by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2177](https://togithub.com/defenseunicorns/zarf/pull/2177) - Fix compose dropping the `only.localOS` filter from the composed package by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2173](https://togithub.com/defenseunicorns/zarf/pull/2173) - Improve Helm rollback logic, messaging, and support for local tarballs by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2157](https://togithub.com/defenseunicorns/zarf/pull/2157) - Add warnings to better log the errors encountered on image push retries by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2147](https://togithub.com/defenseunicorns/zarf/pull/2147) - Make `set -e` (and `$ErrorActionPreference = 'Stop';`) the default for multiline actions so that they fail correctly by [@UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/zarf/pull/2148](https://togithub.com/defenseunicorns/zarf/pull/2148) - Properly handle `variable` and `constant` merging when using composable components by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2129](https://togithub.com/defenseunicorns/zarf/pull/2129) - Use the node name instead of the hostname label to build the injector pod by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2119](https://togithub.com/defenseunicorns/zarf/pull/2119) - Resolve pathing issues while loading images with Zarf on Windows by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2106](https://togithub.com/defenseunicorns/zarf/pull/2106) - Add an error channel for progress bar rendering to properly stop the progress bar when used as a library by [@UncleGedd](https://togithub.com/UncleGedd) in [https://github.com/defenseunicorns/zarf/pull/2117](https://togithub.com/defenseunicorns/zarf/pull/2117) - Keep a useable empty dir volume within the registry even when persistence is disabled by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2124](https://togithub.com/defenseunicorns/zarf/pull/2124) </details> ##### Docs <details> <summary><h4>Rollup From v0.31 Patch Releases</h4></summary> - Update the[ Airgap Software Delivery course](https://docs.zarf.dev/docs/getting-started/understand-the-basics#airgap-basics) name by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2172](https://togithub.com/defenseunicorns/zarf/pull/2172) - Promote the Quick Start section to [Getting Started](https://docs.zarf.dev/docs/getting-started/) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2182](https://togithub.com/defenseunicorns/zarf/pull/2182) - Fix link and content issues across the docs by [@AustinAbro321](https://togithub.com/AustinAbro321) in [https://github.com/defenseunicorns/zarf/pull/2168](https://togithub.com/defenseunicorns/zarf/pull/2168) - Improve the docs for [`zarf tools k9s` options](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_tools_monitor) and other [command examples](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_package_mirror-resources#examples) by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2132](https://togithub.com/defenseunicorns/zarf/pull/2132) - Update the [Zarf overview](https://docs.zarf.dev/docs/zarf-overview) to be more clear about how Zarf works by [@Racer159](https://togithub.com/Racer159) in [https://github.com/defenseunicorns/zarf/pull/2122](https://togithub.com/defenseunicorns/zarf/pull/2122) </details> ##### Dependencies - Update gitea chart from 8.3.0 to 10.0.0 by [@TristanHoladay](https://togithub.com/TristanHoladay) in [https://github.com/defenseunicorns/zarf/pull/2123](https://togithub.com/defenseunicorns/zarf/pull/2123) - Update module golang.org/x/crypto to v0.17.0 \[security] by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2201](https://togithub.com/defenseunicorns/zarf/pull/2201) - Update sigstore/cosign-installer action to v3 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/1400](https://togithub.com/defenseunicorns/zarf/pull/1400) - Update github.com/anchore/stereoscope digest to [`4b999b7`](https://togithub.com/defenseunicorns/zarf/commit/4b999b7) by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2198](https://togithub.com/defenseunicorns/zarf/pull/2198) - Update dependency pepr to v20 by [@renovate](https://togithub.com/renovate) in [https://github.com/defenseunicorns/zarf/pull/2193](https://togithub.com </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7am and before 9am every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/defenseunicorns/uds-package-gitlab-runner).  --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Wayne Starr <[email protected]>

chrishorton added 2 commits January 8, 2024 17:13

Check if node has enough resources for scheduling injector pod

37cb73c

Change variable names for clarity

055822f

chrishorton closed this Jan 9, 2024

chrishorton reopened this Jan 9, 2024

Merge branch 'main' into 2144

5f5aa02

chrishorton mentioned this pull request Jan 9, 2024

Make sure node has enough resources available for scheduling injector pod #2144

Closed

Racer159 requested changes Jan 9, 2024

View reviewed changes

src/pkg/k8s/images.go Outdated Show resolved Hide resolved

src/pkg/k8s/images.go Outdated Show resolved Hide resolved

src/pkg/k8s/images.go Outdated Show resolved Hide resolved

Racer159 changed the title ~~2144~~ feat: check for available node resources before building injector pod Jan 9, 2024

MiB to Mi / invert continue logic / make code DRY

e8367a8

Racer159 requested changes Jan 10, 2024

View reviewed changes

src/pkg/cluster/injector.go Outdated Show resolved Hide resolved

src/pkg/k8s/images.go Outdated Show resolved Hide resolved

src/pkg/k8s/images.go Outdated Show resolved Hide resolved

chrishorton and others added 2 commits January 9, 2024 17:42

Update src/pkg/k8s/images.go

5358e9c

Co-authored-by: Wayne Starr <[email protected]>

variable naming changes

cc6c571

Racer159 requested changes Jan 10, 2024

View reviewed changes

src/pkg/k8s/images.go Outdated Show resolved Hide resolved

Update variable names

fc3faed

Co-authored-by: Wayne Starr <[email protected]>

Racer159 marked this pull request as ready for review January 10, 2024 16:20

Racer159 requested review from jeff-mccoy, Noxsios and lucasrod16 as code owners January 10, 2024 16:20

lucasrod16 reviewed Jan 10, 2024

View reviewed changes

Racer159 mentioned this pull request Jan 10, 2024

Refactor Get Images Functions and Clarify k8s vs cluster #2222

Closed

Racer159 approved these changes Jan 10, 2024

View reviewed changes

Merge branch 'main' into 2144

5dec437

lucasrod16 approved these changes Jan 10, 2024

View reviewed changes

Racer159 merged commit 98a19b4 into zarf-dev:main Jan 10, 2024
22 checks passed

chrishorton deleted the 2144 branch January 10, 2024 23:36

renovate bot mentioned this pull request Jul 22, 2024

Update all dependencies rjferguson21/uds-sso-test#5

Open

1 task

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: check for available node resources before building injector pod #2220

feat: check for available node resources before building injector pod #2220

chrishorton commented Jan 9, 2024 •

edited

Loading

netlify bot commented Jan 9, 2024 •

edited

Loading

Racer159 left a comment

chrishorton commented Jan 9, 2024

Racer159 left a comment

chrishorton commented Jan 10, 2024

lucasrod16 left a comment

chrishorton commented Jan 10, 2024

lucasrod16 commented Jan 10, 2024

Racer159 commented Jan 10, 2024

Racer159 commented Jan 10, 2024

lucasrod16 commented Jan 10, 2024

chrishorton commented Jan 10, 2024

chrishorton commented Jan 10, 2024 •

edited

Loading

Noxsios commented Jan 10, 2024

Racer159 commented Jan 10, 2024

Racer159 left a comment

feat: check for available node resources before building injector pod #2220

feat: check for available node resources before building injector pod #2220

Conversation

chrishorton commented Jan 9, 2024 • edited Loading

Description

Related Issue

Type of change

Checklist before merging

netlify bot commented Jan 9, 2024 • edited Loading

✅ Deploy Preview for zarf-docs canceled.

Racer159 left a comment

Choose a reason for hiding this comment

chrishorton commented Jan 9, 2024

Racer159 left a comment

Choose a reason for hiding this comment

chrishorton commented Jan 10, 2024

lucasrod16 left a comment

Choose a reason for hiding this comment

chrishorton commented Jan 10, 2024

lucasrod16 commented Jan 10, 2024

Racer159 commented Jan 10, 2024

Racer159 commented Jan 10, 2024

lucasrod16 commented Jan 10, 2024

chrishorton commented Jan 10, 2024

chrishorton commented Jan 10, 2024 • edited Loading

Noxsios commented Jan 10, 2024

Racer159 commented Jan 10, 2024

Racer159 left a comment

Choose a reason for hiding this comment

chrishorton commented Jan 9, 2024 •

edited

Loading

netlify bot commented Jan 9, 2024 •

edited

Loading

chrishorton commented Jan 10, 2024 •

edited

Loading