fix(cf-argocd-extras): security fix, bump image tag to ace3860#1226
Closed
alina-codefresh wants to merge 47 commits into
Closed
fix(cf-argocd-extras): security fix, bump image tag to ace3860#1226alina-codefresh wants to merge 47 commits into
alina-codefresh wants to merge 47 commits into
Conversation
* chore: fix various security vulnerabilities in cap-app-proxy * CI Automatic commit - align Chart version --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.0 release * v0.2.3 (0.29.0) * Update Chart.yaml and changelog for 0.29.0 release * update artifacthub.io/changes --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: andrii-codefresh <andrii@codefresh.io> Co-authored-by: vadim-kharin-codefresh <vadim.kharin@codefresh.io>
* chore: fix various security vulnerabilities in argo-workflows * update alpine/kubectl to 1.35.3
* Update Chart.yaml and changelog for 0.29.1 release --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: Vadim Kharin <vadim.kharin@codefresh.io>
* chore: Fix various security vulnerabilities in argo-workflows * CI Automatic commit - align Chart version --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* fix: security fixes codefresh-gitops-operator CVE-2026-33186 CVE-2026-31892 CVE-2026-28229 cf-argocd-extras CVE-2026-33186 cap-app-proxy crypto/tls CVE-2025-68121 path-to-regexp CVE-2026-4867 node-forge CVE-2026-33896 CVE-2026-33895 CVE-2026-33894 CVE-2026-33891 picomatch CVE-2026-33671 CVE-2026-33672 gitops-runtime-installer (cli-v2) CVE-2026-33186 CVE-2026-24051 (cherry picked from commit bdce2fe)
* CVE-2026-34165, CVE-2026-25934, CVE-2026-33762 (github.com/go-git/go-git/v5) fix high vulnerabilities in glibc, dpkg * CI Automatic commit - align Chart version --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.3 release --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: andrii-codefresh <andrii@codefresh.io>
…6) (#1165) (#1166) * chore: Apply CVE fixes on new main (tip of stable/0.26) (#1165) * [gitops-operator]chore: Apply CVE fixes on new main (tip of stable/0.26) * re-enable component test * update restrictedgitsources crd --------- Co-authored-by: codefresh-v2-pipelines[bot] <109073600+codefresh-v2-pipelines[bot]@users.noreply.github.com> Co-authored-by: scme0 <scott.merchant@octopus.com> * trigger * trigger * CI Automatic commit - align Chart version --------- Co-authored-by: codefresh-v2-pipelines[bot] <109073600+codefresh-v2-pipelines[bot]@users.noreply.github.com> Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.4 release * Update Chart.yaml with security fix description --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: Scott Merchant <scott.merchant@octopus.com>
* chore: Update cap-app-proxy to 1.4081.0 * CI Automatic commit - align Chart version * CI Automatic commit - align Chart version --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.4 release * add extra change to artifacthub changes annotation * update changelog * Update charts/gitops-runtime/Chart.yaml Co-authored-by: Zhenya Tikhonov <masontikhonov@gmail.com> * update artifacthub.io/changes annotation as per review comments. --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: scme0 <scott.merchant@octopus.com> Co-authored-by: Vadim Kharin <vadim.kharin@codefresh.io> Co-authored-by: Zhenya Tikhonov <masontikhonov@gmail.com>
Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* chore: update cap-app-proxy to 1.4085.0 * helm-docs
Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* docs: document ArgoCD compatibility Co-authored-by: Copilot <copilot@github.com> * docs: regenerate Readme * doc: fix TOC Co-authored-by: Copilot <copilot@github.com> * CI Automatic commit - align Chart version --------- Co-authored-by: Copilot <copilot@github.com> Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.7 release * ci: update release notes * Update Chart.yaml and changelog for 0.29.7 release * update changelog * update changelog * update changelog --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: Zhenya Tikhonov <masontikhonov@gmail.com> Co-authored-by: vadim-kharin-codefresh <vadim.kharin@codefresh.io>
* upgrade argo-cd * CI Automatic commit - align Chart version --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.8 release * prepare release notes; update docs * empty * empty * revert docs * add docs * update docs * empty --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: alinashklyar <alina.shklyar@codefresh.io>
* chore: fix various security vulnerabilities * CI Automatic commit - align Chart version * update cap-app-proxy to 1.4091.0 --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.9 release * update changelog * update changelog --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: Vadim Kharin <vadim.kharin@codefresh.io>
* fix(cap-app-proxy): support arbitrary user IDs on OpenShift * CI Automatic commit - align Chart version --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io>
* Update Chart.yaml and changelog for 0.29.10 release * chore: update release notes & docs * chore: trigger pipelines * chore: update docs * chore: trigger pipelines --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: Vasil Sudakou <vasil.sudakov@codefresh.io>
…s, cap-app-proxy, cf-argocd-extras, codefresh-gitops-operator, gitops-runtime-installer (#1206) * chore: fix various security vulnerabilities in argo-workflows, cap-app-proxy, cf-argocd-extras, codefresh-gitops-operator, gitops-runtime-installer * update argocd to v3.3.10 * update Chart.yaml
* Update Chart.yaml and changelog for 0.29.11 release * empty * empty * Update Chart.yaml and changelog for 0.29.11 release * Update Chart.yaml and changelog for 0.29.11 release * Update Chart.yaml and changelog for 0.29.11 release * Update Chart.yaml and changelog for 0.29.11 release * Update Chart.yaml and changelog for 0.29.11 release * update changelog * update changelog * update changelog --------- Co-authored-by: cf-ci-bot-v2 <cf-ci-bot-v2@codefresh.io> Co-authored-by: Mikhail Klimko <mikhail.klimko@octopus.com> Co-authored-by: mikhail-klimko <mikhail.klimko@codefresh.io> Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com> Co-authored-by: vadim-kharin-codefresh <vadim.kharin@codefresh.io>
* fix: security vulnerabilities in gitops-runtime-installer * CI Automatic commit - align Chart version * fix(argo-workflows): security vulnerabilities * empty * empty * delete component-test --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com> Co-authored-by: alinashklyar <alina.shklyar@codefresh.io>
* Update Chart.yaml and changelog for 0.29.12 release * update release notes * remove accidental changes --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com> Co-authored-by: alinashklyar <alina.shklyar@codefresh.io>
* fix(cf-argocd-extras): security fix, bump image tag to "71b7e7c" * CI Automatic commit - align Chart version --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com>
* Update Chart.yaml and changelog for 0.29.14 release * chore: update docs --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com> Co-authored-by: Vasil Sudakou <vasil.sudakov@codefresh.io>
…-proxy, codefresh-gitops-operator, csdp-image-enrichers (#1220) * chore: fix various security vulnerabilities for cap-app-proxy, csdp-image-enrichers * chore: fix various security vulnerabilities for codefresh-gitops-operator, argo-gateway
* Update Chart.yaml and changelog for 0.29.15 release * update docs * update changelog --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com> Co-authored-by: vadim-kharin-codefresh <vadim.kharin@codefresh.io>
* fix(internal-router): bump nginx-unprivileged for security fix * chore: refresh docs * CI Automatic commit - align Chart version * fix(alpine/kubectl): bump kubectl to fix security vulnerabilities * fix(codefresh-tunnel-client): bump to fix security vulnerabilities * chore: trigger pipelines --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com>
* Update Chart.yaml and changelog for 0.29.16 release * chore: update release notes --------- Co-authored-by: codefresh-git-integration[bot] <151943927+codefresh-git-integration[bot]@users.noreply.github.com> Co-authored-by: Vasil Sudakou <vasil.sudakov@codefresh.io>
alina-codefresh
requested review from
a team,
chen-keinan,
dmaizel,
eti-codefresh,
masontikhonov and
scme0
as code owners
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
9 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Why
https://linear.app/octopus/issue/CFS-13738/ready-for-release-codefreshcf-argocd-extrasc545381
Notes