From 5a34543b2e6b47c0b5b730759b3e34b49864238e Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Mon, 10 Nov 2025 20:50:36 +0000 Subject: [PATCH 01/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 186 ++++++++++++++++++++++++++++++ charts/gitops-runtime/README.md | 109 ++++++++++++++--- charts/gitops-runtime/values.yaml | 37 +++--- 3 files changed, 298 insertions(+), 34 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 6b5a0a572..b0c0e5859 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -3,6 +3,7 @@ appVersion: 1.0.0-rc.1 description: A Helm chart for Codefresh gitops runtime name: gitops-runtime version: 25.11-0 +version: 25.11-0 home: https://github.com/codefresh-io/gitops-runtime-helm icon: https://avatars1.githubusercontent.com/u/11412079?v=3 keywords: @@ -13,6 +14,191 @@ maintainers: url: https://codefresh-io.github.io/ annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" + artifacthub.io/changes: |- + - kind: changed + description: 'feat: set fullnameoverride for argocd (#907)' + - kind: changed + description: 'fix: allow "" as prUrl value (#906)' + - kind: changed + description: '[gitops-operator]fix: skip promotion task if terminated before created (#904)' + - kind: changed + description: '[gitops-operator]fix: CR-32246 - adjusted error handling to work with string errors (#903)' + - kind: changed + description: 'feat: external argocd unders .values.global.integrations (#808)' + - kind: changed + description: 'fix(app-proxy): add tini to manage zombie processes (#902)' + - kind: changed + description: 'fix(app-proxy): add timeout to prevent git process accumulation (#901)' + - kind: changed + description: 'chore: bump gitops-operator tag to fd2f89a (#900)' + - kind: changed + description: '[gitops-operator]fix: isMerged is missing in platform (#896)' + - kind: changed + description: 'feat: wait with termination until failed or completed (#892)' + - kind: changed + description: '[gitops-operator]fix: ensure releases are created if trigger commit causes sync failure (#890)' + - kind: changed + description: 'feat: support promotion with pull request (#880)' + - kind: changed + description: 'feat(gitops-operator): add debug flag (#883)' + - kind: changed + description: 'feat: add automated release index generator and GitHub Pages deployment (#879)' + - kind: changed + description: 'build: add telemetry configs (#848)' + - kind: changed + description: 'app-proxy: 1.3883.0 with application logs supported in non-controller namespace (#878)' + - kind: changed + description: 'feat: update promotion task crd (#872)' + - kind: changed + description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific values from va… (#823)' + - kind: changed + description: bump app proxy (#855) + - kind: changed + description: '[gitops-operator]chore: add pending status and initialise immediate after creation (#863)' + - kind: changed + description: 'fix: runtime: fix no-changes commit sha and pr url in crd (#854)' + - kind: changed + description: 'chore: update codeowners for gitops operator crds (#846)' + - kind: changed + description: upd gitops-operator (#860) + - kind: changed + description: upd cli-v2 , debian for installer (#849) + - kind: changed + description: 'fix: re-enabled argo-events (#843)' + - kind: changed + description: 'chore: extras d4fefcb with improved traces and fix for argo-cd server root path (#845)' + - kind: changed + description: 'chore: apply all operator crd changes and update operator tag (#833)' + - kind: changed + description: 'fix: app proxy isNamespaced returns nil in template failing the install on lower kubernetes versions (#820)' + - kind: changed + description: 'chore[cf-argocd-extras]: bumps cf-argocd-extras to version e746a97 (#819)' + - kind: changed + description: 'fix: update app-proxy image tags to 1.3820.0 (#804)' + - kind: changed + description: 'fix: update app-proxy image tags to 1.3819.0 (#802)' + - kind: changed + description: 'feat: runtime helm: add timestamps to failure and warnings (#796)' + - kind: changed + description: bump app proxy version (#795) + - kind: changed + description: 'fix: improve error handling (#791)' + - kind: changed + description: 'feat: remove sources server (#789)' + - kind: changed + description: 'fix: align reconciler requeue and error handling logic, add failure and warning error properties (#780)' + - kind: changed + description: update READE.md (#792) + - kind: changed + description: 'fix: app-proxy cors (#790)' + - kind: changed + description: 'feat: add separate redis for event-reporters/argo-gateway and app-proxy (#751)' + - kind: changed + description: 'fix: security vulnerabilities in enrichment images (#788)' + - kind: changed + description: 'refactor(cf-argocd-extras): replace with argo-api-gateway, runtime and cluster event-reporters (#744)' + - kind: changed + description: 'feat: get commit author avatar url on getPromotionValues step (#778)' + - kind: changed + description: 'fix: promotion values can''t be empty (#772)' + - kind: changed + description: 'feat: add runWorkflow step handler (#785)' + - kind: changed + description: 'chore: move argo-cd auth values to global.integrations.argo-cd.server.auth (#768)' + - kind: changed + description: added runtime label to codefresh-cm (#763) + - kind: changed + description: bumps argo-cd helm chart for redis 8.2.1 upgrade (#765) + - kind: changed + description: bump app proxy version (#760) + - kind: changed + description: 'feat: add error messages for appStatus (#745)' + - kind: changed + description: '[gitops-operator]fix: promotions using pull requests do not resume after the pr has been merged (to main) (#752)' + - kind: changed + description: '[cf-argocd-extras]chore: add tests (#741)' + - kind: changed + description: update enrichment images tag (#746) + - kind: changed + description: 'feat: add promoteAppWithCommitHandler implementation [gitops-operator] (#738)' + - kind: changed + description: 'chore: disable component tests (#740)' + - kind: changed + description: 'chore: update cap-app-proxy image tags to 1.3772.0 (#737)' + - kind: changed + description: 'chore: security fixes for argo rollouts v1.7.2 (#730)' + - kind: changed + description: 'feat: add GetPromotionValuesHandler and VerifyAppHandler implementations (#736)' + - kind: changed + description: '[gitops-operator]fix: security vulnerability (#734)' + - kind: changed + description: 'feat: Add PromotionTaskReconciler (#677)' + - kind: changed + description: 'fix: service account for cleanup runtime resources (#726)' + - kind: changed + description: '[cf-argocd-extras]chore(CR-30961): security fix (#725)' + - kind: changed + description: updated sealed-secrets-controller (#723) + - kind: changed + description: 'chore: Fix security vulnerabilities for argo-workflows and argo-events (#716)' + - kind: changed + description: 'feat: update cap-app-proxy image tags to 1.3750.0' + - kind: changed + description: 'feat: bump evernt-reporter to 88898aa (#676)' + - kind: changed + description: 'feat: conditional registration of the rgs controller (#709)' + - kind: changed + description: 'feat: added sec advisory GHSA-786q-9hcg-v9ff bumped argocd to 8.0.6-9-cap-v… (#703)' + - kind: changed + description: updated cap-app-proxy with security fixes (#702) + - kind: changed + description: 'installer: updated cli-v2, kubectl (#697)' + - kind: changed + description: updated frpc (#693) + - kind: changed + description: update cli-v2 in installer - fix token validation code (#694) + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3727.0 (#691)' + - kind: changed + description: updated prometheus-nats-exporter, nats-server-config-reloader for jetstream (#687) + - kind: changed + description: 'feat(conponent-tests): add release branches to pipeline trigger (#684)' + - kind: changed + description: updated nginx (#662) + - kind: changed + description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3718.0 (#678)' + - kind: changed + description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3709.0 - simplify user cache (#673)' + - kind: changed + description: 'chore: update README.md with HA example' + - kind: changed + description: 'chore: update values-ha example' + - kind: changed + description: bumped argocd to 8.0.6-8-cap-v3.0.2-2025-08-12-9c8dfae9 (#664) + - kind: changed + description: bumped app-proxy to 1.3707.0 closed ha gaps (#667) + - kind: changed + description: 'fix: remove checksum tests as they fail when chart version changes (#670)' + - kind: changed + description: updated codefresh-gitops-operator (#666) + - kind: changed + description: updated cli-v2, kubectl in runtime-installer (#661) + - kind: changed + description: using bitnamilegacy instead of bitnami (#653) + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3702.0 (#659)' + - kind: changed + description: 'test: update platform mock(me) (#656)' + - kind: changed + description: 'fix: support failing release if app sync fails (#645)' + - kind: changed + description: 'chore(CR-30232): updated oauth2, golang.org/x/net, github.com/cloudflare (#639)' + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3701.0 (#654)' + - kind: changed + description: updated cspd enrichers (#652) + - kind: changed + description: 'fix: update leader elector image tag to remove version prefix ''v'' (#651)' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index 28550cd3c..ab69af24a 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -1,5 +1,5 @@ ## Codefresh gitops runtime -![Version: 0.0.0](https://img.shields.io/badge/Version-0.0.0-informational?style=flat-square) ![AppVersion: 0.1.72](https://img.shields.io/badge/AppVersion-0.1.72-informational?style=flat-square) +![Version: 25.11-0](https://img.shields.io/badge/Version-25.11--0-informational?style=flat-square) ![AppVersion: 0.1.72](https://img.shields.io/badge/AppVersion-0.1.72-informational?style=flat-square) ## Table of Content @@ -222,7 +222,7 @@ We have created a helper utility to resolve this issue: The utility is packaged in a container image. Below are instructions on executing the utility using Docker: ``` -docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.0.0 +docker run -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:25.11-0 ``` `output_dir` - is a local directory where the utility will output files.
`local_registry` - is your local registry where you want to mirror the images to @@ -235,7 +235,7 @@ The utility will output 4 files into the folder: For usage with external ArgoCD run the utility with `EXTERNAL_ARGOCD` environment variable set to `true`. ``` -docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:0.0.0 +docker run -e EXTERNAL_ARGOCD=true -v :/output quay.io/codefresh/gitops-runtime-private-registry-utils:25.11-0 ``` ## Openshift @@ -482,6 +482,18 @@ global: | Key | Type | Default | Description | |-----|------|---------|-------------| +| anchors.common-envs[0].OTEL_EXPORTER_OTLP_COMPRESSION | string | `"gzip"` | Specifies the compression algorithm to be used for all telemetry data. Ref: https://opentelemetry.io/docs/specs/otel/protocol/exporter/ | +| anchors.common-envs[0].OTEL_EXPORTER_OTLP_ENDPOINT | string | `"http://localhost:4317"` | Base endpoint URL for all OpenTelemetry signals. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| anchors.common-envs[0].OTEL_EXPORTER_OTLP_PROTOCOL | string | `"grpc"` | Specifies the OTLP transport protocol to be used for all telemetry data. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| anchors.common-envs[0].OTEL_EXPORTER_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| anchors.common-envs[0].OTEL_EXPORTER_PROMETHEUS_PORT | string | `"9464"` | Port used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| anchors.common-envs[0].OTEL_LOGS_EXPORTER | string | `"none"` | OTel Logs exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| anchors.common-envs[0].OTEL_METRICS_EXPORTER | string | `"none"` | OTel metrics exporter to be used. Set to "prometheus" to export metrics in Prometheus format. If set to "prometheus", it's recommended to set METRICS_SCRAPE_TIMEOUT_MS=4×scrape_interval. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| anchors.common-envs[0].OTEL_METRIC_EXPORT_INTERVAL | string | `"10000"` | The time interval (in milliseconds) between the start of two export attempts for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| anchors.common-envs[0].OTEL_METRIC_EXPORT_TIMEOUT | string | `"5000"` | Maximum allowed time (in milliseconds) to export data for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| anchors.common-envs[0].OTEL_SEMCONV_STABILITY_OPT_IN | string | `"http"` | Emit the stable HTTP and networking OTel conventions if CF_TELEMETRY_OTEL_ALLOW_HTTP_INSTRUMENTATION=true. | +| anchors.common-envs[0].OTEL_TRACES_EXPORTER | string | `"none"` | OTel traces exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| anchors.common-envs[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | app-proxy.affinity | object | `{}` | | | app-proxy.config.argoCdUrl | string | `nil` | ArgoCD Url. determined by chart logic. Do not change unless you are certain you need to | | app-proxy.config.argoCdUsername | string | `""` | deprecated. use `global.external-argo-cd.auth.username` instead | @@ -492,7 +504,28 @@ global: | app-proxy.config.env | string | `"production"` | | | app-proxy.config.logLevel | string | `"info"` | Log Level | | app-proxy.config.skipGitPermissionValidation | string | `"false"` | Skit git permissions validation | -| app-proxy.env | object | `{}` | | +| app-proxy.env.<<[0].OTEL_EXPORTER_OTLP_COMPRESSION | string | `"gzip"` | Specifies the compression algorithm to be used for all telemetry data. Ref: https://opentelemetry.io/docs/specs/otel/protocol/exporter/ | +| app-proxy.env.<<[0].OTEL_EXPORTER_OTLP_ENDPOINT | string | `"http://localhost:4317"` | Base endpoint URL for all OpenTelemetry signals. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| app-proxy.env.<<[0].OTEL_EXPORTER_OTLP_PROTOCOL | string | `"grpc"` | Specifies the OTLP transport protocol to be used for all telemetry data. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| app-proxy.env.<<[0].OTEL_EXPORTER_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| app-proxy.env.<<[0].OTEL_EXPORTER_PROMETHEUS_PORT | string | `"9464"` | Port used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| app-proxy.env.<<[0].OTEL_LOGS_EXPORTER | string | `"none"` | OTel Logs exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| app-proxy.env.<<[0].OTEL_METRICS_EXPORTER | string | `"none"` | OTel metrics exporter to be used. Set to "prometheus" to export metrics in Prometheus format. If set to "prometheus", it's recommended to set METRICS_SCRAPE_TIMEOUT_MS=4×scrape_interval. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| app-proxy.env.<<[0].OTEL_METRIC_EXPORT_INTERVAL | string | `"10000"` | The time interval (in milliseconds) between the start of two export attempts for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| app-proxy.env.<<[0].OTEL_METRIC_EXPORT_TIMEOUT | string | `"5000"` | Maximum allowed time (in milliseconds) to export data for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| app-proxy.env.<<[0].OTEL_SEMCONV_STABILITY_OPT_IN | string | `"http"` | Emit the stable HTTP and networking OTel conventions if CF_TELEMETRY_OTEL_ALLOW_HTTP_INSTRUMENTATION=true. | +| app-proxy.env.<<[0].OTEL_TRACES_EXPORTER | string | `"none"` | OTel traces exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| app-proxy.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| app-proxy.env.CF_TELEMETRY_LOGS_LEVEL | string | `"info"` | Level of logging for app-proxy | +| app-proxy.env.CF_TELEMETRY_LOGS_LEVEL_HTTP | string | `"debug"` | Level for logging HTTP requests | +| app-proxy.env.CF_TELEMETRY_OTEL_ALLOW_HTTP_INSTRUMENTATION | string | `"false"` | Enable OTel HTTP instrumentation. Make sure to sanitize `url.full` and `url.query` span attributes on collector before enabling this flag, as it may contain sensitive information. | +| app-proxy.env.CF_TELEMETRY_OTEL_ENABLE | string | `"false"` | Enable OpenTelemetry signals (logs, metrics, traces) | +| app-proxy.env.CF_TELEMETRY_PROMETHEUS_ENABLE | string | `"false"` | Enable Prometheus server | +| app-proxy.env.CF_TELEMETRY_PROMETHEUS_ENABLE_PROCESS_METRICS | string | `"false"` | Enable collecting process metrics | +| app-proxy.env.CF_TELEMETRY_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host for Prometheus metrics server | +| app-proxy.env.CF_TELEMETRY_PROMETHEUS_PORT | string | `"9100"` | Port for Prometheus metrics server | +| app-proxy.env.CF_TELEMETRY_PYROSCOPE_ENABLE | string | `"false"` | Enable Pyroscope profiling. If enabled, the Pyroscope server address must be set in PYROSCOPE_SERVER_ADDRESS. | +| app-proxy.env.PYROSCOPE_SERVER_ADDRESS | string | `""` | Pyroscope server address | | app-proxy.extraVolumeMounts | list | `[]` | Extra volume mounts for main container | | app-proxy.extraVolumes | list | `[]` | extra volumes | | app-proxy.fullnameOverride | string | `"cap-app-proxy"` | | @@ -513,14 +546,14 @@ global: | app-proxy.image-enrichment.serviceAccount.name | string | `"codefresh-image-enrichment-sa"` | Name of the service account to create or the name of the existing one to use | | app-proxy.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.image.repository | string | `"quay.io/codefresh/cap-app-proxy"` | | -| app-proxy.image.tag | string | `"1.3883.0"` | | +| app-proxy.image.tag | string | `"1.3911.0"` | | | app-proxy.imagePullSecrets | list | `[]` | | | app-proxy.initContainer.command[0] | string | `"./init.sh"` | | | app-proxy.initContainer.env | object | `{}` | | | app-proxy.initContainer.extraVolumeMounts | list | `[]` | Extra volume mounts for init container | | app-proxy.initContainer.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.initContainer.image.repository | string | `"quay.io/codefresh/cap-app-proxy-init"` | | -| app-proxy.initContainer.image.tag | string | `"1.3883.0"` | | +| app-proxy.initContainer.image.tag | string | `"1.3911.0"` | | | app-proxy.initContainer.resources.limits | object | `{}` | | | app-proxy.initContainer.resources.requests.cpu | string | `"0.2"` | | | app-proxy.initContainer.resources.requests.memory | string | `"256Mi"` | | @@ -584,7 +617,7 @@ global: | argo-cd.configs.params."application.namespaces" | string | `"cf-*"` | | | argo-cd.configs.params."server.insecure" | bool | `true` | | | argo-cd.enabled | bool | `true` | | -| argo-cd.fullnameOverride | string | `"argocd"` | | +| argo-cd.fullnameOverride | string | `"argo-cd"` | | | argo-cd.notifications.enabled | bool | `false` | | | argo-cd.redis-ha.image.repository | string | `"ecr-public.aws.com/docker/library/redis"` | Redis repository | | argo-cd.redis-ha.image.tag | string | `"8.2.2-alpine"` | Redis tag | @@ -614,8 +647,30 @@ global: | argo-workflows.server.authModes | list | `["client"]` | auth-mode needs to be set to client to be able to see workflow logs from Codefresh UI | | argo-workflows.server.baseHref | string | `"/workflows/"` | Do not change. Workflows UI is only accessed through internal router, changing this values will break routing to workflows native UI from Codefresh. | | codefreshWorkflowLogStoreCM | object | `{"enabled":true,"endpoint":"gitops-workflow-logs.codefresh.io","insecure":false}` | Argo workflows logs storage on Codefresh platform settings. Don't change unless instructed by Codefresh support. | -| event-reporters.cluster-event-reporter | object | `{}` | | -| event-reporters.runtime-event-reporter | object | `{}` | | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_COMPRESSION | string | `"gzip"` | Specifies the compression algorithm to be used for all telemetry data. Ref: https://opentelemetry.io/docs/specs/otel/protocol/exporter/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_ENDPOINT | string | `"http://localhost:4317"` | Base endpoint URL for all OpenTelemetry signals. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_PROTOCOL | string | `"grpc"` | Specifies the OTLP transport protocol to be used for all telemetry data. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_PROMETHEUS_PORT | string | `"9464"` | Port used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_LOGS_EXPORTER | string | `"none"` | OTel Logs exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_METRICS_EXPORTER | string | `"none"` | OTel metrics exporter to be used. Set to "prometheus" to export metrics in Prometheus format. If set to "prometheus", it's recommended to set METRICS_SCRAPE_TIMEOUT_MS=4×scrape_interval. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_METRIC_EXPORT_INTERVAL | string | `"10000"` | The time interval (in milliseconds) between the start of two export attempts for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_METRIC_EXPORT_TIMEOUT | string | `"5000"` | Maximum allowed time (in milliseconds) to export data for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_SEMCONV_STABILITY_OPT_IN | string | `"http"` | Emit the stable HTTP and networking OTel conventions if CF_TELEMETRY_OTEL_ALLOW_HTTP_INSTRUMENTATION=true. | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_TRACES_EXPORTER | string | `"none"` | OTel traces exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.cluster-event-reporter.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_COMPRESSION | string | `"gzip"` | Specifies the compression algorithm to be used for all telemetry data. Ref: https://opentelemetry.io/docs/specs/otel/protocol/exporter/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_ENDPOINT | string | `"http://localhost:4317"` | Base endpoint URL for all OpenTelemetry signals. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_PROTOCOL | string | `"grpc"` | Specifies the OTLP transport protocol to be used for all telemetry data. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_EXPORTER_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_EXPORTER_PROMETHEUS_PORT | string | `"9464"` | Port used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_LOGS_EXPORTER | string | `"none"` | OTel Logs exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_METRICS_EXPORTER | string | `"none"` | OTel metrics exporter to be used. Set to "prometheus" to export metrics in Prometheus format. If set to "prometheus", it's recommended to set METRICS_SCRAPE_TIMEOUT_MS=4×scrape_interval. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_METRIC_EXPORT_INTERVAL | string | `"10000"` | The time interval (in milliseconds) between the start of two export attempts for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_METRIC_EXPORT_TIMEOUT | string | `"5000"` | Maximum allowed time (in milliseconds) to export data for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_SEMCONV_STABILITY_OPT_IN | string | `"http"` | Emit the stable HTTP and networking OTel conventions if CF_TELEMETRY_OTEL_ALLOW_HTTP_INSTRUMENTATION=true. | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_TRACES_EXPORTER | string | `"none"` | OTel traces exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| event-reporters.runtime-event-reporter.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | gitops-operator.affinity | object | `{}` | | | gitops-operator.config | object | `{"commitStatusPollingInterval":"10s","maxConcurrentReleases":100,"promotionWrapperTemplate":"","taskPollingInterval":"10s","workflowMonitorPollingInterval":"10s"}` | GitOps operator configuration | | gitops-operator.config.commitStatusPollingInterval | string | `"10s"` | Commit status polling interval | @@ -630,11 +685,23 @@ global: | gitops-operator.crds.install | bool | `true` | Whether or not to install CRDs | | gitops-operator.crds.keep | bool | `false` | Keep CRDs if gitops runtime release is uninstalled | | gitops-operator.enabled | bool | `true` | | +| gitops-operator.env.<<[0].OTEL_EXPORTER_OTLP_COMPRESSION | string | `"gzip"` | Specifies the compression algorithm to be used for all telemetry data. Ref: https://opentelemetry.io/docs/specs/otel/protocol/exporter/ | +| gitops-operator.env.<<[0].OTEL_EXPORTER_OTLP_ENDPOINT | string | `"http://localhost:4317"` | Base endpoint URL for all OpenTelemetry signals. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| gitops-operator.env.<<[0].OTEL_EXPORTER_OTLP_PROTOCOL | string | `"grpc"` | Specifies the OTLP transport protocol to be used for all telemetry data. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | +| gitops-operator.env.<<[0].OTEL_EXPORTER_PROMETHEUS_HOST | string | `"0.0.0.0"` | Host used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| gitops-operator.env.<<[0].OTEL_EXPORTER_PROMETHEUS_PORT | string | `"9464"` | Port used by the Prometheus OTel metrics exporter if OTEL_METRICS_EXPORTER=prometheus | +| gitops-operator.env.<<[0].OTEL_LOGS_EXPORTER | string | `"none"` | OTel Logs exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| gitops-operator.env.<<[0].OTEL_METRICS_EXPORTER | string | `"none"` | OTel metrics exporter to be used. Set to "prometheus" to export metrics in Prometheus format. If set to "prometheus", it's recommended to set METRICS_SCRAPE_TIMEOUT_MS=4×scrape_interval. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| gitops-operator.env.<<[0].OTEL_METRIC_EXPORT_INTERVAL | string | `"10000"` | The time interval (in milliseconds) between the start of two export attempts for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| gitops-operator.env.<<[0].OTEL_METRIC_EXPORT_TIMEOUT | string | `"5000"` | Maximum allowed time (in milliseconds) to export data for push metric exporters, such as "otlp". Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| gitops-operator.env.<<[0].OTEL_SEMCONV_STABILITY_OPT_IN | string | `"http"` | Emit the stable HTTP and networking OTel conventions if CF_TELEMETRY_OTEL_ALLOW_HTTP_INSTRUMENTATION=true. | +| gitops-operator.env.<<[0].OTEL_TRACES_EXPORTER | string | `"none"` | OTel traces exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | +| gitops-operator.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | gitops-operator.env.GITOPS_OPERATOR_VERSION | string | `"0.11.1"` | | | gitops-operator.fullnameOverride | string | `""` | | | gitops-operator.image.registry | string | `"quay.io"` | defaults | | gitops-operator.image.repository | string | `"codefresh/codefresh-gitops-operator"` | | -| gitops-operator.image.tag | string | `"293f24f"` | | +| gitops-operator.image.tag | string | `"3274011"` | | | gitops-operator.imagePullSecrets | list | `[]` | | | gitops-operator.nameOverride | string | `""` | | | gitops-operator.nodeSelector | object | `{}` | | @@ -672,7 +739,7 @@ global: | global.httpsProxy | string | `""` | global HTTPS_PROXY for all components | | global.imageRegistry | string | `""` | | | global.integrations.argo-cd.repoServer.port | int | `8081` | Port of the ArgoCD repo server | -| global.integrations.argo-cd.repoServer.svc | string | `"argocd-repo-server"` | Service name of the ArgoCD repo server | +| global.integrations.argo-cd.repoServer.svc | string | `"argo-cd-repo-server"` | Service name of the ArgoCD repo server | | global.integrations.argo-cd.server.auth | object | `{"password":"","passwordSecretKeyRef":{"key":"password","name":"argocd-initial-admin-secret"},"token":"","tokenSecretKeyRef":{},"type":"password","username":"admin"}` | How GitOps Runtime should authenticate with ArgoCD server | | global.integrations.argo-cd.server.auth.password | string | `""` | ArgoCD password in plain text | | global.integrations.argo-cd.server.auth.passwordSecretKeyRef | object | `{"key":"password","name":"argocd-initial-admin-secret"}` | ArgoCD password referenced by an existing secret | @@ -682,7 +749,7 @@ global: | global.integrations.argo-cd.server.auth.username | string | `"admin"` | ArgoCD username in plain text | | global.integrations.argo-cd.server.port | int | `80` | Port of the ArgoCD server | | global.integrations.argo-cd.server.rootpath | string | `""` | Set if Argo CD is running behind reverse proxy under subpath different from / e.g. rootpath: '/argocd' | -| global.integrations.argo-cd.server.svc | string | `"argocd-server"` | Service name of the ArgoCD server | +| global.integrations.argo-cd.server.svc | string | `"argo-cd-server"` | Service name of the ArgoCD server | | global.noProxy | string | `""` | global NO_PROXY for all components | | global.nodeSelector | object | `{}` | Global nodeSelector for all components | | global.runtime | object | `{"cluster":"https://kubernetes.default.svc","codefreshHosted":false,"gitCredentials":{"password":{"secretKeyRef":{},"value":null},"username":"username"},"ingress":{"annotations":{},"className":"nginx","enabled":false,"hosts":[],"labels":{},"protocol":"https","skipValidation":false,"tls":[]},"ingressUrl":"","isConfigurationRuntime":false,"name":null,"singleNamespace":false}` | Runtime level settings | @@ -765,7 +832,7 @@ global: | redis-ha.redis.config.save | string | `'""'` | Will save the DB if both the given number of seconds and the given number of write operations against the DB occurred. `""` is disabled | | redis-ha.redis.masterGroupName | string | `"gitops-runtime"` | Redis convention for naming the cluster group: must match `^[\\w-\\.]+$` and can be templated | | redis-ha.tolerations | list | `[]` | [Tolerations] for use with node taints for Redis pods. | -| redis-ha.topologySpreadConstraints | object | `{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}` | Assign custom [TopologySpreadConstraints] rules to the Redis pods. | +| redis-ha.topologySpreadConstraints | object | `{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}` | Assign custom [TopologySpreadConstraints] rules to the Redis pods. # https://kubernetes.io/docs/concepts/scheduling-eviction/topology-spread-constraints/ | | redis-ha.topologySpreadConstraints.enabled | bool | `false` | Enable Redis HA topology spread constraints | | redis-ha.topologySpreadConstraints.maxSkew | string | `""` (defaults to `1`) | Max skew of pods tolerated | | redis-ha.topologySpreadConstraints.topologyKey | string | `""` (defaults to `topology.kubernetes.io/zone`) | Topology key for spread | @@ -778,7 +845,19 @@ global: | redis.readinessProbe | object | `{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15}` | Probes configuration | | redis.service | object | `{"annotations":{},"labels":{},"ports":{"metrics":{"port":9121,"targetPort":9121},"redis":{"port":6379,"targetPort":6379}},"type":"ClusterIP"}` | Service configuration | | redis.serviceAccount | object | `{"annotations":{},"create":true,"name":""}` | Create ServiceAccount for redis | -| sealed-secrets | object | `{"fullnameOverride":"sealed-secrets-controller","image":{"registry":"quay.io","repository":"codefresh/sealed-secrets-controller","tag":"0.32.0"},"keyrenewperiod":"720h","resources":{"limits":{"cpu":"500m","memory":"1Gi"},"requests":{"cpu":"200m","memory":"512Mi"}}}` | --------------------------------------------------------------------------------------------------------------------- | -| tunnel-client | object | `{"affinity":{},"enabled":true,"libraryMode":true,"nodeSelector":{},"tolerations":[],"tunnelServer":{"host":"register-tunnels.cf-cd.com","subdomainHost":"tunnels.cf-cd.com"}}` | Tunnel based runtime. Not supported for on-prem platform. In on-prem use ingress based runtimes. | +| sealed-secrets.fullnameOverride | string | `"sealed-secrets-controller"` | | +| sealed-secrets.image.registry | string | `"quay.io"` | | +| sealed-secrets.image.repository | string | `"codefresh/sealed-secrets-controller"` | | +| sealed-secrets.image.tag | string | `"0.32.0"` | | +| sealed-secrets.keyrenewperiod | string | `"720h"` | | +| sealed-secrets.resources.limits.cpu | string | `"500m"` | | +| sealed-secrets.resources.limits.memory | string | `"1Gi"` | | +| sealed-secrets.resources.requests.cpu | string | `"200m"` | | +| sealed-secrets.resources.requests.memory | string | `"512Mi"` | | +| tunnel-client.affinity | object | `{}` | | | tunnel-client.enabled | bool | `true` | Will only be used if global.runtime.ingress.enabled = false | | tunnel-client.libraryMode | bool | `true` | Do not change this value! Breaks chart logic | +| tunnel-client.nodeSelector | object | `{}` | | +| tunnel-client.tolerations | list | `[]` | | +| tunnel-client.tunnelServer.host | string | `"register-tunnels.cf-cd.com"` | | +| tunnel-client.tunnelServer.subdomainHost | string | `"tunnels.cf-cd.com"` | | diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index 41b5d98b8..7e70433ff 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -242,9 +242,9 @@ installer: nodeSelector: {} tolerations: [] affinity: {} -# ----------------------------------------------------------------------------------------------------------------------- -# Sealed secrets -# ----------------------------------------------------------------------------------------------------------------------- +# ********************************************************************************************************************* +# DOCS: https://artifacthub.io/packages/helm/bitnami-labs/sealed-secrets/2.17.2?modal=values +# ********************************************************************************************************************* sealed-secrets: fullnameOverride: sealed-secrets-controller keyrenewperiod: "720h" @@ -259,9 +259,9 @@ sealed-secrets: requests: cpu: 200m memory: 512Mi -#----------------------------------------------------------------------------------------------------------------------- -# ArgoCD -#----------------------------------------------------------------------------------------------------------------------- +# ********************************************************************************************************************* +# DOCS: https://artifacthub.io/packages/helm/argo/argo-cd/9.0.2?modal=values +# ********************************************************************************************************************* argo-cd: enabled: true fullnameOverride: argo-cd @@ -290,9 +290,9 @@ argo-cd: params: server.insecure: true application.namespaces: 'cf-*' -#----------------------------------------------------------------------------------------------------------------------- -# Argo Events -#----------------------------------------------------------------------------------------------------------------------- +# ********************************************************************************************************************* +# DOCS: https://github.com/codefresh-io/argo-helm/blob/argo-events-2.4.9-cap-CR-30841/charts/argo-events +# ********************************************************************************************************************* argo-events: enabled: true fullnameOverride: argo-events @@ -311,9 +311,9 @@ argo-events: metricsExporterImage: natsio/prometheus-nats-exporter:0.17.3 configReloaderImage: natsio/nats-server-config-reloader:0.19.1 startCommand: /nats-server -#----------------------------------------------------------------------------------------------------------------------- -# Argo Workflows -#----------------------------------------------------------------------------------------------------------------------- +# ********************************************************************************************************************* +# DOCS: https://github.com/codefresh-io/argo-helm/blob/argo-workflows-0.45.16-v3.6.7-cap-CR-30835/charts/argo-workflows +# ********************************************************************************************************************* argo-workflows: fullnameOverride: argo enabled: true @@ -344,9 +344,9 @@ codefreshWorkflowLogStoreCM: enabled: true endpoint: gitops-workflow-logs.codefresh.io insecure: false -#----------------------------------------------------------------------------------------------------------------------- -# Argo rollouts -#----------------------------------------------------------------------------------------------------------------------- +# ********************************************************************************************************************* +# DOCS: https://github.com/codefresh-io/argo-helm/blob/argo-rollouts-2.37.3-7-v1.7.2-cap-OSS-697/charts/argo-rollouts +# ********************************************************************************************************************* # -- Argo Rollouts is deprecated and disabled by default. It will be completely removed in February 2026. # If you require Argo Rollouts, you can manually override this value to true in your Helm values files. argo-rollouts: @@ -430,10 +430,9 @@ internal-router: minAvailable: 1 # -- Set number of pods that are unavailable after eviction as number or percentage maxUnavailable: "" -#----------------------------------------------------------------------------------------------------------------------- -# tunnel client -#----------------------------------------------------------------------------------------------------------------------- -# -- Tunnel based runtime. Not supported for on-prem platform. In on-prem use ingress based runtimes. +# ********************************************************************************************************************* +# DOCS: https://github.com/codefresh-io/codefresh-tunnel-charts/blob/codefresh-tunnel-client-0.1.22-helm/codefresh-tunnel-client/values.yaml +# ********************************************************************************************************************* tunnel-client: # -- Will only be used if global.runtime.ingress.enabled = false enabled: true From 328dd7b4a010b5c69877dbdbf93e48dff922be0a Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Tue, 11 Nov 2025 06:56:00 +0000 Subject: [PATCH 02/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index b0c0e5859..c980c8a06 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,10 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: dummy PR (#909) + - kind: changed + description: 'chore: update app version and chart version in Chart.yaml to 1.0.0-rc.1 and 25.11-0 respectively' - kind: changed description: 'feat: set fullnameoverride for argocd (#907)' - kind: changed From 4f454b7e3a1b170b62b08b55162e6a739ebc462d Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Thu, 13 Nov 2025 13:18:56 +0000 Subject: [PATCH 03/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index c980c8a06..092fbce9f 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'fix: retry on notFound before updating resource status (#914)' - kind: changed description: dummy PR (#909) - kind: changed From ccea047689127f3f175c297de84cebc2df732ba1 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Sun, 16 Nov 2025 09:52:13 +0000 Subject: [PATCH 04/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 092fbce9f..8eb912136 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: '[gitops-operator]fix: set transient error (#923)' - kind: changed description: 'fix: retry on notFound before updating resource status (#914)' - kind: changed From 387ec4a5585b8bad5512129f02b8fbb57a41d13e Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Mon, 17 Nov 2025 13:16:25 +0000 Subject: [PATCH 05/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 8eb912136..8d8ee067f 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' - kind: changed description: '[gitops-operator]fix: set transient error (#923)' - kind: changed From f8eab84be8556a9ee794b6c0a91ce7fb79b2f868 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Mon, 17 Nov 2025 16:53:51 +0000 Subject: [PATCH 06/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 8d8ee067f..c7a669d37 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'feat: add branch data to pullrequest info (#932)' - kind: changed description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' - kind: changed From 3a3bb29a4e1424a3a0b18495c59f4c3f756bded4 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Tue, 18 Nov 2025 08:23:03 +0000 Subject: [PATCH 07/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index c7a669d37..bbd349a02 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'feat: disable runtime redis by default (#927) (#934)' - kind: changed description: 'feat: add branch data to pullrequest info (#932)' - kind: changed From cf95b8441ee4298842d829bb6b1677ec014f1247 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Tue, 18 Nov 2025 15:40:25 +0000 Subject: [PATCH 08/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index bbd349a02..47670464d 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: '[cf-argocd-extras]chore: update depencencies (argo-cd 3.2) (#930)' - kind: changed description: 'feat: disable runtime redis by default (#927) (#934)' - kind: changed From 3ce2d1dd04fd1655218244a0b7ab809f4a1b2246 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Tue, 18 Nov 2025 16:48:06 +0000 Subject: [PATCH 09/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 47670464d..19568891c 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#937) (#941)' - kind: changed description: '[cf-argocd-extras]chore: update depencencies (argo-cd 3.2) (#930)' - kind: changed From 0a126d7d63df48c94803e758bda09dff65dadb30 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Wed, 19 Nov 2025 08:44:42 +0000 Subject: [PATCH 10/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 19568891c..901913553 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'feat: checksum annotations (#938) (#942)' - kind: changed description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#937) (#941)' - kind: changed From 7455e98705fcb73d664b14959ccbfc8dfdf6b424 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Wed, 19 Nov 2025 09:28:31 +0000 Subject: [PATCH 11/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 901913553..fafdb0271 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: '[app-proxy]fix(app-proxy): update autoDetectArgoCd to use new values structure (#943)' - kind: changed description: 'feat: checksum annotations (#938) (#942)' - kind: changed From 422bbdad6c4173170f185ef3fb6bcd0013756c3c Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Wed, 19 Nov 2025 12:01:16 +0000 Subject: [PATCH 12/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index fafdb0271..cdd1d1999 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,6 +15,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'feat: multi-runtime installation (#939) (#946)' - kind: changed description: '[app-proxy]fix(app-proxy): update autoDetectArgoCd to use new values structure (#943)' - kind: changed From 46a2069df43c92dadee3d8b9a3770286b1187b0f Mon Sep 17 00:00:00 2001 From: Noam Gal Date: Wed, 19 Nov 2025 14:18:07 +0200 Subject: [PATCH 13/21] updated changes --- charts/gitops-runtime/Chart.yaml | 204 +++++-------------------------- 1 file changed, 32 insertions(+), 172 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index cdd1d1999..253ba4208 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -16,213 +16,73 @@ annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- - kind: changed - description: 'feat: multi-runtime installation (#939) (#946)' - - kind: changed - description: '[app-proxy]fix(app-proxy): update autoDetectArgoCd to use new values structure (#943)' - - kind: changed - description: 'feat: checksum annotations (#938) (#942)' - - kind: changed - description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#937) (#941)' - - kind: changed - description: '[cf-argocd-extras]chore: update depencencies (argo-cd 3.2) (#930)' + description: 'bump cap-app-proxy to 6201d13 (#943) - update autoDetectArgoCd to use new values structure (https://github.com/codefresh-io/argo-platform/pull/6931)' - kind: changed - description: 'feat: disable runtime redis by default (#927) (#934)' + description: 'bump cap-app-proxy to 592eb04 (#932) - add branch data to pullrequest info (https://github.com/codefresh-io/argo-platform/pull/6918)' - kind: changed - description: 'feat: add branch data to pullrequest info (#932)' + description: 'bump cap-app-proxy to 1.3909.0 (#902) - fix: PID exhaustion and zombie processes (https://github.com/codefresh-io/argo-platform/pull/6887)' - kind: changed - description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' - - kind: changed - description: '[gitops-operator]fix: set transient error (#923)' + description: 'bump cap-app-proxy to 1.3908.0 (#901) - add timeout to prevent git process accumulation (https://github.com/codefresh-io/argo-platform/pull/6886)' - kind: changed - description: 'fix: retry on notFound before updating resource status (#914)' + description: 'bump cap-app-proxy to 1.3883.0 (#878) - applicationLogs subscription should support apps in non-controller ns (https://github.com/codefresh-io/argo-platform/pull/6787)' - kind: changed - description: dummy PR (#909) + description: 'bump cap-app-proxy to 1.3820.0 (#804) - Deleting cap-app-proxy deployment causes runtime to be down (https://github.com/codefresh-io/argo-platform/pull/6763)' - kind: changed - description: 'chore: update app version and chart version in Chart.yaml to 1.0.0-rc.1 and 25.11-0 respectively' + description: 'bump cap-app-proxy to 1.3819.0 (#802) - use 'default' for ProviderError integration name (https://github.com/codefresh-io/argo-platform/pull/6759)' - kind: changed - description: 'feat: set fullnameoverride for argocd (#907)' + description: 'bump cap-app-proxy to 1.3816.0 (#795) - should lock status update by promotion id (https://github.com/codefresh-io/argo-platform/pull/6739)' - kind: changed - description: 'fix: allow "" as prUrl value (#906)' + description: 'bump cap-app-proxy to 1.3791.0 (#760) - add path to gitlog endpoint (https://github.com/codefresh-io/argo-platform/pull/6696)' - kind: changed - description: '[gitops-operator]fix: skip promotion task if terminated before created (#904)' + description: 'bump cap-app-proxy to 1.3772.0 (#737) - git-source permissions are not being calculated for fine-grained tokens (https://github.com/codefresh-io/argo-platform/pull/6683)' - kind: changed - description: '[gitops-operator]fix: CR-32246 - adjusted error handling to work with string errors (#903)' + description: 'bump cap-app-proxy to 1.3735 (#702) - fix security vulnerabilities (https://github.com/codefresh-io/argo-platform/pull/6643)' + - kind: changed - description: 'feat: external argocd unders .values.global.integrations (#808)' + description: 'bump codefresh-gitops-operator to 3274011 - support v2 promotions' - kind: changed - description: 'fix(app-proxy): add tini to manage zombie processes (#902)' + description: 'bump codefresh-gitops-operator to v0.11.1 (#666) - updated cloudflare/circl (https://github.com/codefresh-io/codefresh-gitops-operator/pull/249/files)' + - kind: changed - description: 'fix(app-proxy): add timeout to prevent git process accumulation (#901)' + description: 'bump cf-argocd-extras to 5ad6886 (#930) - update dependencies (https://github.com/codefresh-io/cf-argocd-extras/pull/93)' - kind: changed - description: 'chore: bump gitops-operator tag to fd2f89a (#900)' + description: 'bump cf-argocd-extras to d4fefcb (#845) - fixed wrong attribute key for resource, unified value between runtime/cluster event reporter (https://github.com/codefresh-io/cf-argocd-extras/pull/85)' - kind: changed - description: '[gitops-operator]fix: isMerged is missing in platform (#896)' + description: 'bump cf-argocd-extras to e746a97 (#819) - chore: remove sharding logic from event-reporter (https://github.com/codefresh-io/cf-argocd-extras/pull/84)' - kind: changed - description: 'feat: wait with termination until failed or completed (#892)' + description: 'bump cf-argocd-extras to c74d94c (#725) - fix security vulnerabilities (https://github.com/codefresh-io/cf-argocd-extras/pull/79)' + - kind: changed - description: '[gitops-operator]fix: ensure releases are created if trigger commit causes sync failure (#890)' + description: 'feat: multi-runtime installation (#939) (#946)' - kind: changed - description: 'feat: support promotion with pull request (#880)' + description: 'feat: checksum annotations (#942)' - kind: changed - description: 'feat(gitops-operator): add debug flag (#883)' + description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#941)' - kind: changed - description: 'feat: add automated release index generator and GitHub Pages deployment (#879)' + description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' - kind: changed description: 'build: add telemetry configs (#848)' - kind: changed - description: 'app-proxy: 1.3883.0 with application logs supported in non-controller namespace (#878)' - - kind: changed - description: 'feat: update promotion task crd (#872)' - - kind: changed - description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific values from va… (#823)' - - kind: changed - description: bump app proxy (#855) - - kind: changed - description: '[gitops-operator]chore: add pending status and initialise immediate after creation (#863)' - - kind: changed - description: 'fix: runtime: fix no-changes commit sha and pr url in crd (#854)' - - kind: changed - description: 'chore: update codeowners for gitops operator crds (#846)' - - kind: changed - description: upd gitops-operator (#860) - - kind: changed - description: upd cli-v2 , debian for installer (#849) - - kind: changed - description: 'fix: re-enabled argo-events (#843)' - - kind: changed - description: 'chore: extras d4fefcb with improved traces and fix for argo-cd server root path (#845)' - - kind: changed - description: 'chore: apply all operator crd changes and update operator tag (#833)' - - kind: changed - description: 'fix: app proxy isNamespaced returns nil in template failing the install on lower kubernetes versions (#820)' - - kind: changed - description: 'chore[cf-argocd-extras]: bumps cf-argocd-extras to version e746a97 (#819)' - - kind: changed - description: 'fix: update app-proxy image tags to 1.3820.0 (#804)' - - kind: changed - description: 'fix: update app-proxy image tags to 1.3819.0 (#802)' - - kind: changed - description: 'feat: runtime helm: add timestamps to failure and warnings (#796)' - - kind: changed - description: bump app proxy version (#795) - - kind: changed - description: 'fix: improve error handling (#791)' - - kind: changed - description: 'feat: remove sources server (#789)' - - kind: changed - description: 'fix: align reconciler requeue and error handling logic, add failure and warning error properties (#780)' - - kind: changed - description: update READE.md (#792) - - kind: changed - description: 'fix: app-proxy cors (#790)' - - kind: changed - description: 'feat: add separate redis for event-reporters/argo-gateway and app-proxy (#751)' + description: 'upd cli-v2 , debian for installer (#849)' - kind: changed description: 'fix: security vulnerabilities in enrichment images (#788)' - kind: changed - description: 'refactor(cf-argocd-extras): replace with argo-api-gateway, runtime and cluster event-reporters (#744)' - - kind: changed - description: 'feat: get commit author avatar url on getPromotionValues step (#778)' - - kind: changed - description: 'fix: promotion values can''t be empty (#772)' - - kind: changed - description: 'feat: add runWorkflow step handler (#785)' + description: 'refactor(cf-argocd-extras): replace argo-events runtime and cluster event-reporters, rename sources-server argo-gateway (#744)' - kind: changed description: 'chore: move argo-cd auth values to global.integrations.argo-cd.server.auth (#768)' - - kind: changed - description: added runtime label to codefresh-cm (#763) - - kind: changed - description: bumps argo-cd helm chart for redis 8.2.1 upgrade (#765) - - kind: changed - description: bump app proxy version (#760) - - kind: changed - description: 'feat: add error messages for appStatus (#745)' - - kind: changed - description: '[gitops-operator]fix: promotions using pull requests do not resume after the pr has been merged (to main) (#752)' - - kind: changed - description: '[cf-argocd-extras]chore: add tests (#741)' - - kind: changed - description: update enrichment images tag (#746) - - kind: changed - description: 'feat: add promoteAppWithCommitHandler implementation [gitops-operator] (#738)' - - kind: changed - description: 'chore: disable component tests (#740)' - - kind: changed - description: 'chore: update cap-app-proxy image tags to 1.3772.0 (#737)' - - kind: changed - description: 'chore: security fixes for argo rollouts v1.7.2 (#730)' - - kind: changed - description: 'feat: add GetPromotionValuesHandler and VerifyAppHandler implementations (#736)' - - kind: changed - description: '[gitops-operator]fix: security vulnerability (#734)' - - kind: changed - description: 'feat: Add PromotionTaskReconciler (#677)' - - kind: changed - description: 'fix: service account for cleanup runtime resources (#726)' - - kind: changed - description: '[cf-argocd-extras]chore(CR-30961): security fix (#725)' - - kind: changed - description: updated sealed-secrets-controller (#723) - - kind: changed - description: 'chore: Fix security vulnerabilities for argo-workflows and argo-events (#716)' - - kind: changed - description: 'feat: update cap-app-proxy image tags to 1.3750.0' - - kind: changed - description: 'feat: bump evernt-reporter to 88898aa (#676)' - - kind: changed - description: 'feat: conditional registration of the rgs controller (#709)' - - kind: changed - description: 'feat: added sec advisory GHSA-786q-9hcg-v9ff bumped argocd to 8.0.6-9-cap-v… (#703)' - - kind: changed - description: updated cap-app-proxy with security fixes (#702) - kind: changed description: 'installer: updated cli-v2, kubectl (#697)' + - kind: changed - description: updated frpc (#693) - - kind: changed - description: update cli-v2 in installer - fix token validation code (#694) - - kind: changed - description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3727.0 (#691)' - - kind: changed - description: updated prometheus-nats-exporter, nats-server-config-reloader for jetstream (#687) - - kind: changed - description: 'feat(conponent-tests): add release branches to pipeline trigger (#684)' - - kind: changed - description: updated nginx (#662) - - kind: changed - description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3718.0 (#678)' - - kind: changed - description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3709.0 - simplify user cache (#673)' - - kind: changed - description: 'chore: update README.md with HA example' - - kind: changed - description: 'chore: update values-ha example' - - kind: changed - description: bumped argocd to 8.0.6-8-cap-v3.0.2-2025-08-12-9c8dfae9 (#664) - - kind: changed - description: bumped app-proxy to 1.3707.0 closed ha gaps (#667) - - kind: changed - description: 'fix: remove checksum tests as they fail when chart version changes (#670)' - - kind: changed - description: updated codefresh-gitops-operator (#666) - - kind: changed - description: updated cli-v2, kubectl in runtime-installer (#661) - - kind: changed - description: using bitnamilegacy instead of bitnami (#653) - - kind: changed - description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3702.0 (#659)' - - kind: changed - description: 'test: update platform mock(me) (#656)' - - kind: changed - description: 'fix: support failing release if app sync fails (#645)' + description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific value (#823)' - kind: changed - description: 'chore(CR-30232): updated oauth2, golang.org/x/net, github.com/cloudflare (#639)' + description: 'bump argo-rollouts helm chart to 2.37.3-7-v1.7.2-cap-OSS-697 (#730) - fix security vulnerabilities (https://github.com/codefresh-io/argo-helm/pull/196)' - kind: changed - description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3701.0 (#654)' + description: 'bump argo-events helm chart to 2.4.9-cap-CR-30841 (#716) - fix security vulnerabilities (https://github.com/codefresh-io/argo-helm/pull/192)' - kind: changed - description: updated cspd enrichers (#652) + description: 'bump argo-workflows helm chart to 0.45.16-v3.6.7-cap-CR-30835 (#716) - fix security vulnerabilities (https://github.com/codefresh-io/argo-helm/pull/193)' - kind: changed - description: 'fix: update leader elector image tag to remove version prefix ''v'' (#651)' + description: 'bump codefresh-tunnel-client helm chart to 0.1.22 (#693)' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm From 1799ae7e6d7914813b6f66637dfe550ed241e8ea Mon Sep 17 00:00:00 2001 From: Noam Gal Date: Wed, 19 Nov 2025 14:26:07 +0200 Subject: [PATCH 14/21] fixed rebase --- charts/gitops-runtime/Chart.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 253ba4208..bdb0c8a28 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -3,7 +3,6 @@ appVersion: 1.0.0-rc.1 description: A Helm chart for Codefresh gitops runtime name: gitops-runtime version: 25.11-0 -version: 25.11-0 home: https://github.com/codefresh-io/gitops-runtime-helm icon: https://avatars1.githubusercontent.com/u/11412079?v=3 keywords: From 3d0300c88500fec6013dd577253a5a24a9c6d631 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Wed, 19 Nov 2025 13:14:09 +0000 Subject: [PATCH 15/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 206 +++++++++++++++++++++++++----- charts/gitops-runtime/README.md | 21 ++- charts/gitops-runtime/values.yaml | 2 - 3 files changed, 184 insertions(+), 45 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index bdb0c8a28..4d31c1376 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -15,73 +15,215 @@ annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- - kind: changed - description: 'bump cap-app-proxy to 6201d13 (#943) - update autoDetectArgoCd to use new values structure (https://github.com/codefresh-io/argo-platform/pull/6931)' + description: '[gitops-operator]fix: remove git commit statuses (monthly/25.11) (#947)' - kind: changed - description: 'bump cap-app-proxy to 592eb04 (#932) - add branch data to pullrequest info (https://github.com/codefresh-io/argo-platform/pull/6918)' + description: 'feat: multi-runtime installation (#939) (#946)' - kind: changed - description: 'bump cap-app-proxy to 1.3909.0 (#902) - fix: PID exhaustion and zombie processes (https://github.com/codefresh-io/argo-platform/pull/6887)' + description: '[app-proxy]fix(app-proxy): update autoDetectArgoCd to use new values structure (#943)' - kind: changed - description: 'bump cap-app-proxy to 1.3908.0 (#901) - add timeout to prevent git process accumulation (https://github.com/codefresh-io/argo-platform/pull/6886)' + description: 'feat: checksum annotations (#938) (#942)' - kind: changed - description: 'bump cap-app-proxy to 1.3883.0 (#878) - applicationLogs subscription should support apps in non-controller ns (https://github.com/codefresh-io/argo-platform/pull/6787)' + description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#937) (#941)' - kind: changed - description: 'bump cap-app-proxy to 1.3820.0 (#804) - Deleting cap-app-proxy deployment causes runtime to be down (https://github.com/codefresh-io/argo-platform/pull/6763)' + description: '[cf-argocd-extras]chore: update depencencies (argo-cd 3.2) (#930)' - kind: changed - description: 'bump cap-app-proxy to 1.3819.0 (#802) - use 'default' for ProviderError integration name (https://github.com/codefresh-io/argo-platform/pull/6759)' + description: 'feat: disable runtime redis by default (#927) (#934)' - kind: changed - description: 'bump cap-app-proxy to 1.3816.0 (#795) - should lock status update by promotion id (https://github.com/codefresh-io/argo-platform/pull/6739)' + description: 'feat: add branch data to pullrequest info (#932)' - kind: changed - description: 'bump cap-app-proxy to 1.3791.0 (#760) - add path to gitlog endpoint (https://github.com/codefresh-io/argo-platform/pull/6696)' + description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' - kind: changed - description: 'bump cap-app-proxy to 1.3772.0 (#737) - git-source permissions are not being calculated for fine-grained tokens (https://github.com/codefresh-io/argo-platform/pull/6683)' + description: '[gitops-operator]fix: set transient error (#923)' - kind: changed - description: 'bump cap-app-proxy to 1.3735 (#702) - fix security vulnerabilities (https://github.com/codefresh-io/argo-platform/pull/6643)' - + description: 'fix: retry on notFound before updating resource status (#914)' - kind: changed - description: 'bump codefresh-gitops-operator to 3274011 - support v2 promotions' + description: dummy PR (#909) - kind: changed - description: 'bump codefresh-gitops-operator to v0.11.1 (#666) - updated cloudflare/circl (https://github.com/codefresh-io/codefresh-gitops-operator/pull/249/files)' - + description: 'chore: update app version and chart version in Chart.yaml to 1.0.0-rc.1 and 25.11-0 respectively' - kind: changed - description: 'bump cf-argocd-extras to 5ad6886 (#930) - update dependencies (https://github.com/codefresh-io/cf-argocd-extras/pull/93)' + description: 'feat: set fullnameoverride for argocd (#907)' - kind: changed - description: 'bump cf-argocd-extras to d4fefcb (#845) - fixed wrong attribute key for resource, unified value between runtime/cluster event reporter (https://github.com/codefresh-io/cf-argocd-extras/pull/85)' + description: 'fix: allow "" as prUrl value (#906)' - kind: changed - description: 'bump cf-argocd-extras to e746a97 (#819) - chore: remove sharding logic from event-reporter (https://github.com/codefresh-io/cf-argocd-extras/pull/84)' + description: '[gitops-operator]fix: skip promotion task if terminated before created (#904)' - kind: changed - description: 'bump cf-argocd-extras to c74d94c (#725) - fix security vulnerabilities (https://github.com/codefresh-io/cf-argocd-extras/pull/79)' - + description: '[gitops-operator]fix: CR-32246 - adjusted error handling to work with string errors (#903)' - kind: changed - description: 'feat: multi-runtime installation (#939) (#946)' + description: 'feat: external argocd unders .values.global.integrations (#808)' - kind: changed - description: 'feat: checksum annotations (#942)' + description: 'fix(app-proxy): add tini to manage zombie processes (#902)' - kind: changed - description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#941)' + description: 'fix(app-proxy): add timeout to prevent git process accumulation (#901)' - kind: changed - description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' + description: 'chore: bump gitops-operator tag to fd2f89a (#900)' + - kind: changed + description: '[gitops-operator]fix: isMerged is missing in platform (#896)' + - kind: changed + description: 'feat: wait with termination until failed or completed (#892)' + - kind: changed + description: '[gitops-operator]fix: ensure releases are created if trigger commit causes sync failure (#890)' + - kind: changed + description: 'feat: support promotion with pull request (#880)' + - kind: changed + description: 'feat(gitops-operator): add debug flag (#883)' + - kind: changed + description: 'feat: add automated release index generator and GitHub Pages deployment (#879)' - kind: changed description: 'build: add telemetry configs (#848)' - kind: changed - description: 'upd cli-v2 , debian for installer (#849)' + description: 'app-proxy: 1.3883.0 with application logs supported in non-controller namespace (#878)' + - kind: changed + description: 'feat: update promotion task crd (#872)' + - kind: changed + description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific values from va… (#823)' + - kind: changed + description: bump app proxy (#855) + - kind: changed + description: '[gitops-operator]chore: add pending status and initialise immediate after creation (#863)' + - kind: changed + description: 'fix: runtime: fix no-changes commit sha and pr url in crd (#854)' + - kind: changed + description: 'chore: update codeowners for gitops operator crds (#846)' + - kind: changed + description: upd gitops-operator (#860) + - kind: changed + description: upd cli-v2 , debian for installer (#849) + - kind: changed + description: 'fix: re-enabled argo-events (#843)' + - kind: changed + description: 'chore: extras d4fefcb with improved traces and fix for argo-cd server root path (#845)' + - kind: changed + description: 'chore: apply all operator crd changes and update operator tag (#833)' + - kind: changed + description: 'fix: app proxy isNamespaced returns nil in template failing the install on lower kubernetes versions (#820)' + - kind: changed + description: 'chore[cf-argocd-extras]: bumps cf-argocd-extras to version e746a97 (#819)' + - kind: changed + description: 'fix: update app-proxy image tags to 1.3820.0 (#804)' + - kind: changed + description: 'fix: update app-proxy image tags to 1.3819.0 (#802)' + - kind: changed + description: 'feat: runtime helm: add timestamps to failure and warnings (#796)' + - kind: changed + description: bump app proxy version (#795) + - kind: changed + description: 'fix: improve error handling (#791)' + - kind: changed + description: 'feat: remove sources server (#789)' + - kind: changed + description: 'fix: align reconciler requeue and error handling logic, add failure and warning error properties (#780)' + - kind: changed + description: update READE.md (#792) + - kind: changed + description: 'fix: app-proxy cors (#790)' + - kind: changed + description: 'feat: add separate redis for event-reporters/argo-gateway and app-proxy (#751)' - kind: changed description: 'fix: security vulnerabilities in enrichment images (#788)' - kind: changed - description: 'refactor(cf-argocd-extras): replace argo-events runtime and cluster event-reporters, rename sources-server argo-gateway (#744)' + description: 'refactor(cf-argocd-extras): replace with argo-api-gateway, runtime and cluster event-reporters (#744)' + - kind: changed + description: 'feat: get commit author avatar url on getPromotionValues step (#778)' + - kind: changed + description: 'fix: promotion values can''t be empty (#772)' + - kind: changed + description: 'feat: add runWorkflow step handler (#785)' - kind: changed description: 'chore: move argo-cd auth values to global.integrations.argo-cd.server.auth (#768)' + - kind: changed + description: added runtime label to codefresh-cm (#763) + - kind: changed + description: bumps argo-cd helm chart for redis 8.2.1 upgrade (#765) + - kind: changed + description: bump app proxy version (#760) + - kind: changed + description: 'feat: add error messages for appStatus (#745)' + - kind: changed + description: '[gitops-operator]fix: promotions using pull requests do not resume after the pr has been merged (to main) (#752)' + - kind: changed + description: '[cf-argocd-extras]chore: add tests (#741)' + - kind: changed + description: update enrichment images tag (#746) + - kind: changed + description: 'feat: add promoteAppWithCommitHandler implementation [gitops-operator] (#738)' + - kind: changed + description: 'chore: disable component tests (#740)' + - kind: changed + description: 'chore: update cap-app-proxy image tags to 1.3772.0 (#737)' + - kind: changed + description: 'chore: security fixes for argo rollouts v1.7.2 (#730)' + - kind: changed + description: 'feat: add GetPromotionValuesHandler and VerifyAppHandler implementations (#736)' + - kind: changed + description: '[gitops-operator]fix: security vulnerability (#734)' + - kind: changed + description: 'feat: Add PromotionTaskReconciler (#677)' + - kind: changed + description: 'fix: service account for cleanup runtime resources (#726)' + - kind: changed + description: '[cf-argocd-extras]chore(CR-30961): security fix (#725)' + - kind: changed + description: updated sealed-secrets-controller (#723) + - kind: changed + description: 'chore: Fix security vulnerabilities for argo-workflows and argo-events (#716)' + - kind: changed + description: 'feat: update cap-app-proxy image tags to 1.3750.0' + - kind: changed + description: 'feat: bump evernt-reporter to 88898aa (#676)' + - kind: changed + description: 'feat: conditional registration of the rgs controller (#709)' + - kind: changed + description: 'feat: added sec advisory GHSA-786q-9hcg-v9ff bumped argocd to 8.0.6-9-cap-v… (#703)' + - kind: changed + description: updated cap-app-proxy with security fixes (#702) - kind: changed description: 'installer: updated cli-v2, kubectl (#697)' - - kind: changed - description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific value (#823)' + description: updated frpc (#693) + - kind: changed + description: update cli-v2 in installer - fix token validation code (#694) + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3727.0 (#691)' + - kind: changed + description: updated prometheus-nats-exporter, nats-server-config-reloader for jetstream (#687) + - kind: changed + description: 'feat(conponent-tests): add release branches to pipeline trigger (#684)' + - kind: changed + description: updated nginx (#662) + - kind: changed + description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3718.0 (#678)' + - kind: changed + description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3709.0 - simplify user cache (#673)' + - kind: changed + description: 'chore: update README.md with HA example' + - kind: changed + description: 'chore: update values-ha example' + - kind: changed + description: bumped argocd to 8.0.6-8-cap-v3.0.2-2025-08-12-9c8dfae9 (#664) + - kind: changed + description: bumped app-proxy to 1.3707.0 closed ha gaps (#667) + - kind: changed + description: 'fix: remove checksum tests as they fail when chart version changes (#670)' + - kind: changed + description: updated codefresh-gitops-operator (#666) + - kind: changed + description: updated cli-v2, kubectl in runtime-installer (#661) + - kind: changed + description: using bitnamilegacy instead of bitnami (#653) + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3702.0 (#659)' + - kind: changed + description: 'test: update platform mock(me) (#656)' + - kind: changed + description: 'fix: support failing release if app sync fails (#645)' - kind: changed - description: 'bump argo-rollouts helm chart to 2.37.3-7-v1.7.2-cap-OSS-697 (#730) - fix security vulnerabilities (https://github.com/codefresh-io/argo-helm/pull/196)' + description: 'chore(CR-30232): updated oauth2, golang.org/x/net, github.com/cloudflare (#639)' - kind: changed - description: 'bump argo-events helm chart to 2.4.9-cap-CR-30841 (#716) - fix security vulnerabilities (https://github.com/codefresh-io/argo-helm/pull/192)' + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3701.0 (#654)' - kind: changed - description: 'bump argo-workflows helm chart to 0.45.16-v3.6.7-cap-CR-30835 (#716) - fix security vulnerabilities (https://github.com/codefresh-io/argo-helm/pull/193)' + description: updated cspd enrichers (#652) - kind: changed - description: 'bump codefresh-tunnel-client helm chart to 0.1.22 (#693)' + description: 'fix: update leader elector image tag to remove version prefix ''v'' (#651)' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index ab69af24a..e17abb2fc 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -1,5 +1,5 @@ ## Codefresh gitops runtime -![Version: 25.11-0](https://img.shields.io/badge/Version-25.11--0-informational?style=flat-square) ![AppVersion: 0.1.72](https://img.shields.io/badge/AppVersion-0.1.72-informational?style=flat-square) +![Version: 25.11-0](https://img.shields.io/badge/Version-25.11--0-informational?style=flat-square) ![AppVersion: 1.0.0-rc.1](https://img.shields.io/badge/AppVersion-1.0.0--rc.1-informational?style=flat-square) ## Table of Content @@ -546,14 +546,14 @@ global: | app-proxy.image-enrichment.serviceAccount.name | string | `"codefresh-image-enrichment-sa"` | Name of the service account to create or the name of the existing one to use | | app-proxy.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.image.repository | string | `"quay.io/codefresh/cap-app-proxy"` | | -| app-proxy.image.tag | string | `"1.3911.0"` | | +| app-proxy.image.tag | string | `"6201d13"` | | | app-proxy.imagePullSecrets | list | `[]` | | | app-proxy.initContainer.command[0] | string | `"./init.sh"` | | | app-proxy.initContainer.env | object | `{}` | | | app-proxy.initContainer.extraVolumeMounts | list | `[]` | Extra volume mounts for init container | | app-proxy.initContainer.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.initContainer.image.repository | string | `"quay.io/codefresh/cap-app-proxy-init"` | | -| app-proxy.initContainer.image.tag | string | `"1.3911.0"` | | +| app-proxy.initContainer.image.tag | string | `"6201d13"` | | | app-proxy.initContainer.resources.limits | object | `{}` | | | app-proxy.initContainer.resources.requests.cpu | string | `"0.2"` | | | app-proxy.initContainer.resources.requests.memory | string | `"256Mi"` | | @@ -634,9 +634,9 @@ global: | argo-events.crds.install | bool | `false` | | | argo-events.enabled | bool | `true` | | | argo-events.fullnameOverride | string | `"argo-events"` | | -| argo-gateway | object | `{"affinity":{},"hpa":{"enabled":true,"maxReplicas":10,"minReplicas":1,"targetCPUUtilizationPercentage":70},"image":{"registry":"quay.io","repository":"codefresh/cf-argocd-extras","tag":"d4fefcb"},"livenessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"","minAvailable":"50%"},"readinessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"resources":{"requests":{"cpu":"100m","memory":"128Mi"}},"service":{"type":"ClusterIP"},"serviceAccount":{"create":true},"serviceMonitor":{"enabled":false,"interval":"30s","labels":{},"scrapeTimeout":"10s"},"tolerations":[]}` | Argo Gateway Argo Gateway is used to perform operations on ArgoCD from Codefresh platform | +| argo-gateway | object | `{"affinity":{},"hpa":{"enabled":true,"maxReplicas":10,"minReplicas":1,"targetCPUUtilizationPercentage":70},"image":{"registry":"quay.io","repository":"codefresh/cf-argocd-extras","tag":"5ad6886"},"livenessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"","minAvailable":"50%"},"readinessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"resources":{"requests":{"cpu":"100m","memory":"128Mi"}},"service":{"type":"ClusterIP"},"serviceAccount":{"create":true},"serviceMonitor":{"enabled":false,"interval":"30s","labels":{},"scrapeTimeout":"10s"},"tolerations":[]}` | Argo Gateway Argo Gateway is used to perform operations on ArgoCD from Codefresh platform | | argo-rollouts.controller.replicas | int | `1` | | -| argo-rollouts.enabled | bool | `true` | | +| argo-rollouts.enabled | bool | `false` | | | argo-rollouts.fullnameOverride | string | `"argo-rollouts"` | | | argo-rollouts.installCRDs | bool | `true` | | | argo-workflows.crds.install | bool | `true` | Install and upgrade CRDs | @@ -646,6 +646,7 @@ global: | argo-workflows.mainContainer.resources.requests.ephemeral-storage | string | `"10Mi"` | | | argo-workflows.server.authModes | list | `["client"]` | auth-mode needs to be set to client to be able to see workflow logs from Codefresh UI | | argo-workflows.server.baseHref | string | `"/workflows/"` | Do not change. Workflows UI is only accessed through internal router, changing this values will break routing to workflows native UI from Codefresh. | +| argo-workflows.singleNamespace | bool | `true` | Restrict Argo Workflows to operate only in a single namespace (the namespace of the Helm release). This ensures it does not interfere with any other instances of Argo Workflows installed on your cluster. | | codefreshWorkflowLogStoreCM | object | `{"enabled":true,"endpoint":"gitops-workflow-logs.codefresh.io","insecure":false}` | Argo workflows logs storage on Codefresh platform settings. Don't change unless instructed by Codefresh support. | | event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_COMPRESSION | string | `"gzip"` | Specifies the compression algorithm to be used for all telemetry data. Ref: https://opentelemetry.io/docs/specs/otel/protocol/exporter/ | | event-reporters.cluster-event-reporter.env.<<[0].OTEL_EXPORTER_OTLP_ENDPOINT | string | `"http://localhost:4317"` | Base endpoint URL for all OpenTelemetry signals. Ref: https://opentelemetry.io/docs/languages/sdk-configuration/otlp-exporter/ | @@ -672,7 +673,7 @@ global: | event-reporters.runtime-event-reporter.env.<<[0].OTEL_TRACES_EXPORTER | string | `"none"` | OTel traces exporter to be used. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | event-reporters.runtime-event-reporter.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | gitops-operator.affinity | object | `{}` | | -| gitops-operator.config | object | `{"commitStatusPollingInterval":"10s","maxConcurrentReleases":100,"promotionWrapperTemplate":"","taskPollingInterval":"10s","workflowMonitorPollingInterval":"10s"}` | GitOps operator configuration | +| gitops-operator.config | object | `{"commitStatusPollingInterval":"10s","maxConcurrentReleases":100,"maxReconcileRetries":10,"promotionWrapperTemplate":"","taskPollingInterval":"10s","workflowMonitorPollingInterval":"10s"}` | GitOps operator configuration | | gitops-operator.config.commitStatusPollingInterval | string | `"10s"` | Commit status polling interval | | gitops-operator.config.maxConcurrentReleases | int | `100` | Maximum number of concurrent releases being processed by the operator (this will not affect the number of releases being processed by the gitops runtime) | | gitops-operator.config.maxReconcileRetries | int | `10` | Maximum number of reconcile retries on promotion-related resources before failing a promotion task | @@ -699,9 +700,7 @@ global: | gitops-operator.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | gitops-operator.env.GITOPS_OPERATOR_VERSION | string | `"0.11.1"` | | | gitops-operator.fullnameOverride | string | `""` | | -| gitops-operator.image.registry | string | `"quay.io"` | defaults | -| gitops-operator.image.repository | string | `"codefresh/codefresh-gitops-operator"` | | -| gitops-operator.image.tag | string | `"3274011"` | | +| gitops-operator.image | object | `{"registry":"quay.io","repository":"codefresh/codefresh-gitops-operator","tag":"c0f50e0"}` | GitOps operator image | | gitops-operator.imagePullSecrets | list | `[]` | | | gitops-operator.nameOverride | string | `""` | | | gitops-operator.nodeSelector | object | `{}` | | @@ -731,7 +730,7 @@ global: | global.codefresh.userToken | object | `{"secretKeyRef":{},"token":""}` | User token. Used for runtime registration against the patform. One of token (for plain text value) or secretKeyRef must be provided. | | global.codefresh.userToken.secretKeyRef | object | `{}` | User token that references an existing secret containing the token. | | global.codefresh.userToken.token | string | `""` | User token in plain text. The chart creates and manages the secret for this token. | -| global.event-reporters | object | `{"affinity":{},"config":{},"image":{"registry":"quay.io","repository":"codefresh/cf-argocd-extras","tag":"d4fefcb"},"livenessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"","minAvailable":"50%"},"readinessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"replicaCount":2,"resources":{"requests":{"cpu":"100m","memory":"128Mi"}},"service":{"ports":{"http":{"port":8088,"targetPort":8088},"metrics":{"port":8087,"targetPort":8087}},"type":"ClusterIP"},"serviceAccount":{"create":true},"serviceMonitor":{"enabled":false,"interval":"30s","labels":{},"scrapeTimeout":"10s"},"tolerations":[]}` | Global settings for event reporters Event reporters are used for reporting runtime and cluster resources to Codefresh platform | +| global.event-reporters | object | `{"affinity":{},"config":{},"image":{"registry":"quay.io","repository":"codefresh/cf-argocd-extras","tag":"5ad6886"},"livenessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"nodeSelector":{},"pdb":{"enabled":true,"maxUnavailable":"","minAvailable":"50%"},"readinessProbe":{"failureThreshold":3,"initialDelaySeconds":10,"periodSeconds":10,"successThreshold":1,"timeoutSeconds":10},"replicaCount":2,"resources":{"requests":{"cpu":"100m","memory":"128Mi"}},"service":{"ports":{"http":{"port":8088,"targetPort":8088},"metrics":{"port":8087,"targetPort":8087}},"type":"ClusterIP"},"serviceAccount":{"create":true},"serviceMonitor":{"enabled":false,"interval":"30s","labels":{},"scrapeTimeout":"10s"},"tolerations":[]}` | Global settings for event reporters Event reporters are used for reporting runtime and cluster resources to Codefresh platform | | global.external-argo-rollouts | object | `{"rollout-reporter":{"enabled":false}}` | Configuration for external Argo Rollouts | | global.external-argo-rollouts.rollout-reporter | object | `{"enabled":false}` | Rollout reporter settings | | global.external-argo-rollouts.rollout-reporter.enabled | bool | `false` | Enable or disable rollout reporter Configuration is defined at .Values.event-reporters.rollout | @@ -805,7 +804,7 @@ global: | internal-router.serviceAccount.create | bool | `true` | | | internal-router.serviceAccount.name | string | `""` | | | internal-router.tolerations | list | `[]` | | -| redis | object | `{"affinity":{},"enabled":true,"env":{},"envFrom":[],"extraArgs":[],"fullnameOverride":"runtime-redis","image":{"registry":"public.ecr.aws","repository":"docker/library/redis","tag":"8.2.1-alpine"},"imagePullSecrets":[],"livenessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"metrics":{"enabled":true,"env":{},"envFrom":[],"image":{"registry":"ghcr.io","repository":"oliver006/redis_exporter","tag":"v1.72.1"},"livenessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"readinessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"resources":{},"serviceMonitor":{"enabled":false}},"nodeSelector":{},"pdb":{"annotations":{},"enabled":false,"labels":{},"maxUnavailable":"","minAvailable":1},"podAnnotations":{},"podLabels":{},"podSecurityContext":{},"readinessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"resources":{},"securityContext":{},"service":{"annotations":{},"labels":{},"ports":{"metrics":{"port":9121,"targetPort":9121},"redis":{"port":6379,"targetPort":6379}},"type":"ClusterIP"},"serviceAccount":{"annotations":{},"create":true,"name":""},"tolerations":[],"topologySpreadConstraints":[]}` | Standalone redis deployment Will be replaced by redis-ha subchart when `redis-ha.enabled=true` | +| redis | object | `{"affinity":{},"enabled":false,"env":{},"envFrom":[],"extraArgs":[],"fullnameOverride":"runtime-redis","image":{"registry":"public.ecr.aws","repository":"docker/library/redis","tag":"8.2.1-alpine"},"imagePullSecrets":[],"livenessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"metrics":{"enabled":true,"env":{},"envFrom":[],"image":{"registry":"ghcr.io","repository":"oliver006/redis_exporter","tag":"v1.72.1"},"livenessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"readinessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"resources":{},"serviceMonitor":{"enabled":false}},"nodeSelector":{},"pdb":{"annotations":{},"enabled":false,"labels":{},"maxUnavailable":"","minAvailable":1},"podAnnotations":{},"podLabels":{},"podSecurityContext":{},"readinessProbe":{"enabled":true,"failureThreshold":5,"initialDelaySeconds":30,"periodSeconds":15,"successThreshold":1,"timeoutSeconds":15},"resources":{},"securityContext":{},"service":{"annotations":{},"labels":{},"ports":{"metrics":{"port":9121,"targetPort":9121},"redis":{"port":6379,"targetPort":6379}},"type":"ClusterIP"},"serviceAccount":{"annotations":{},"create":true,"name":""},"tolerations":[],"topologySpreadConstraints":[]}` | Standalone redis deployment Will be replaced by redis-ha subchart when `redis-ha.enabled=true` | | redis-ha | object | `{"additionalAffinities":{},"affinity":"","auth":true,"containerSecurityContext":{"readOnlyRootFilesystem":true},"enabled":false,"existingSecret":"gitops-runtime-redis","exporter":{"enabled":false,"image":"ghcr.io/oliver006/redis_exporter","tag":"v1.69.0"},"fullnameOverride":"runtime-redis-ha","haproxy":{"additionalAffinities":{},"affinity":"","containerSecurityContext":{"readOnlyRootFilesystem":true},"enabled":true,"hardAntiAffinity":true,"metrics":{"enabled":true},"tolerations":[]},"hardAntiAffinity":true,"image":{"repository":"public.ecr.aws/docker/library/redis","tag":"8.2.1-alpine"},"persistentVolume":{"enabled":false},"redis":{"config":{"save":"\"\""},"masterGroupName":"gitops-runtime"},"tolerations":[],"topologySpreadConstraints":{"enabled":false,"maxSkew":"","topologyKey":"","whenUnsatisfiable":""}}` | Redis-HA subchart replaces custom redis deployment when `redis-ha.enabled=true` Ref: https://github.com/DandyDeveloper/charts/blob/master/charts/redis-ha/values.yaml | | redis-ha.additionalAffinities | object | `{}` | Additional affinities to add to the Redis server pods. | | redis-ha.affinity | string | `""` | Assign custom [affinity] rules to the Redis pods. | diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index 7e70433ff..6431a8004 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -347,8 +347,6 @@ codefreshWorkflowLogStoreCM: # ********************************************************************************************************************* # DOCS: https://github.com/codefresh-io/argo-helm/blob/argo-rollouts-2.37.3-7-v1.7.2-cap-OSS-697/charts/argo-rollouts # ********************************************************************************************************************* -# -- Argo Rollouts is deprecated and disabled by default. It will be completely removed in February 2026. -# If you require Argo Rollouts, you can manually override this value to true in your Helm values files. argo-rollouts: enabled: false fullnameOverride: argo-rollouts From 8f7b827a87f11ddd9f4ae63108151927da1ca13d Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Sun, 23 Nov 2025 08:30:05 +0000 Subject: [PATCH 16/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ charts/gitops-runtime/README.md | 2 +- 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 4d31c1376..5942a8ce6 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,6 +14,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'feat: ensure default-git-source exists on every app-proxy restart (#956)' - kind: changed description: '[gitops-operator]fix: remove git commit statuses (monthly/25.11) (#947)' - kind: changed diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index e17abb2fc..3f9e019ea 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -700,7 +700,7 @@ global: | gitops-operator.env.<<[0].OTEL_TRACES_SAMPLER | string | `"parentbased_always_on"` | OTel sampler to be used for traces. Ref: https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/ | | gitops-operator.env.GITOPS_OPERATOR_VERSION | string | `"0.11.1"` | | | gitops-operator.fullnameOverride | string | `""` | | -| gitops-operator.image | object | `{"registry":"quay.io","repository":"codefresh/codefresh-gitops-operator","tag":"c0f50e0"}` | GitOps operator image | +| gitops-operator.image | object | `{"registry":"quay.io","repository":"codefresh/codefresh-gitops-operator","tag":"ff25956"}` | GitOps operator image | | gitops-operator.imagePullSecrets | list | `[]` | | | gitops-operator.nameOverride | string | `""` | | | gitops-operator.nodeSelector | object | `{}` | | From d6229f58fb2f4f11d16ad835627a51981cce185d Mon Sep 17 00:00:00 2001 From: Daniel Maizel Date: Sun, 23 Nov 2025 11:41:23 +0200 Subject: [PATCH 17/21] chore: rewrite artifacthub.io/changes --- charts/gitops-runtime/Chart.yaml | 224 ++++--------------------------- 1 file changed, 24 insertions(+), 200 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 5942a8ce6..67336aa29 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,218 +14,42 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: added + description: 'Multi-runtime installation support (#939, #946)' + - kind: added + description: 'Checksum annotations for improved change detection (#942)' + - kind: added + description: 'Namespace-scoped Argo Workflows support (#917)' + - kind: added + description: 'Telemetry configuration support (#848)' - kind: changed - description: 'feat: ensure default-git-source exists on every app-proxy restart (#956)' + description: 'Migrated to OSS Argo CD and Argo Helm charts (#823)' - kind: changed - description: '[gitops-operator]fix: remove git commit statuses (monthly/25.11) (#947)' + description: 'Moved Argo CD auth values to global.integrations.argo-cd.server.auth (#768)' - kind: changed - description: 'feat: multi-runtime installation (#939) (#946)' + description: 'Refactored event-reporters: replaced argo-events runtime and cluster event-reporters, renamed sources-server to argo-gateway (#744)' - kind: changed - description: '[app-proxy]fix(app-proxy): update autoDetectArgoCd to use new values structure (#943)' + description: 'Updated app-proxy with improvements: default-git-source initialization, autoDetectArgoCd values structure update, branch data in pull request info, git-source permissions for fine-grained tokens, and git process management fixes (#956, #943, #932, #737, #902, #901, #878, #804, #802, #795, #760)' - kind: changed - description: 'feat: checksum annotations (#938) (#942)' + description: 'Updated gitops-operator with v2 promotions support and dependency updates (#666)' - kind: changed - description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#937) (#941)' + description: 'Updated cf-argocd-extras: fixed resource attribute keys, unified event reporter values, removed sharding logic (#930, #845, #819)' - kind: changed - description: '[cf-argocd-extras]chore: update depencencies (argo-cd 3.2) (#930)' + description: 'Updated Argo CD version constraint for compatibility (#941)' - kind: changed - description: 'feat: disable runtime redis by default (#927) (#934)' + description: 'Updated installer with latest CLI v2 and kubectl versions (#849, #697)' - kind: changed - description: 'feat: add branch data to pullrequest info (#932)' + description: 'Disabled Argo Rollouts by default (#917)' + - kind: security + description: 'Fixed security vulnerabilities in app-proxy, cf-argocd-extras, argo-rollouts, argo-events, argo-workflows, and enrichment images (#702, #725, #730, #716, #788)' - kind: changed - description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' + description: 'Updated Argo Rollouts chart to 2.37.3-7-v1.7.2-cap-OSS-697 (#730)' - kind: changed - description: '[gitops-operator]fix: set transient error (#923)' + description: 'Updated Argo Events chart to 2.4.9-cap-CR-30841 (#716)' - kind: changed - description: 'fix: retry on notFound before updating resource status (#914)' + description: 'Updated Argo Workflows chart to 0.45.16-v3.6.7-cap-CR-30835 (#716)' - kind: changed - description: dummy PR (#909) - - kind: changed - description: 'chore: update app version and chart version in Chart.yaml to 1.0.0-rc.1 and 25.11-0 respectively' - - kind: changed - description: 'feat: set fullnameoverride for argocd (#907)' - - kind: changed - description: 'fix: allow "" as prUrl value (#906)' - - kind: changed - description: '[gitops-operator]fix: skip promotion task if terminated before created (#904)' - - kind: changed - description: '[gitops-operator]fix: CR-32246 - adjusted error handling to work with string errors (#903)' - - kind: changed - description: 'feat: external argocd unders .values.global.integrations (#808)' - - kind: changed - description: 'fix(app-proxy): add tini to manage zombie processes (#902)' - - kind: changed - description: 'fix(app-proxy): add timeout to prevent git process accumulation (#901)' - - kind: changed - description: 'chore: bump gitops-operator tag to fd2f89a (#900)' - - kind: changed - description: '[gitops-operator]fix: isMerged is missing in platform (#896)' - - kind: changed - description: 'feat: wait with termination until failed or completed (#892)' - - kind: changed - description: '[gitops-operator]fix: ensure releases are created if trigger commit causes sync failure (#890)' - - kind: changed - description: 'feat: support promotion with pull request (#880)' - - kind: changed - description: 'feat(gitops-operator): add debug flag (#883)' - - kind: changed - description: 'feat: add automated release index generator and GitHub Pages deployment (#879)' - - kind: changed - description: 'build: add telemetry configs (#848)' - - kind: changed - description: 'app-proxy: 1.3883.0 with application logs supported in non-controller namespace (#878)' - - kind: changed - description: 'feat: update promotion task crd (#872)' - - kind: changed - description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific values from va… (#823)' - - kind: changed - description: bump app proxy (#855) - - kind: changed - description: '[gitops-operator]chore: add pending status and initialise immediate after creation (#863)' - - kind: changed - description: 'fix: runtime: fix no-changes commit sha and pr url in crd (#854)' - - kind: changed - description: 'chore: update codeowners for gitops operator crds (#846)' - - kind: changed - description: upd gitops-operator (#860) - - kind: changed - description: upd cli-v2 , debian for installer (#849) - - kind: changed - description: 'fix: re-enabled argo-events (#843)' - - kind: changed - description: 'chore: extras d4fefcb with improved traces and fix for argo-cd server root path (#845)' - - kind: changed - description: 'chore: apply all operator crd changes and update operator tag (#833)' - - kind: changed - description: 'fix: app proxy isNamespaced returns nil in template failing the install on lower kubernetes versions (#820)' - - kind: changed - description: 'chore[cf-argocd-extras]: bumps cf-argocd-extras to version e746a97 (#819)' - - kind: changed - description: 'fix: update app-proxy image tags to 1.3820.0 (#804)' - - kind: changed - description: 'fix: update app-proxy image tags to 1.3819.0 (#802)' - - kind: changed - description: 'feat: runtime helm: add timestamps to failure and warnings (#796)' - - kind: changed - description: bump app proxy version (#795) - - kind: changed - description: 'fix: improve error handling (#791)' - - kind: changed - description: 'feat: remove sources server (#789)' - - kind: changed - description: 'fix: align reconciler requeue and error handling logic, add failure and warning error properties (#780)' - - kind: changed - description: update READE.md (#792) - - kind: changed - description: 'fix: app-proxy cors (#790)' - - kind: changed - description: 'feat: add separate redis for event-reporters/argo-gateway and app-proxy (#751)' - - kind: changed - description: 'fix: security vulnerabilities in enrichment images (#788)' - - kind: changed - description: 'refactor(cf-argocd-extras): replace with argo-api-gateway, runtime and cluster event-reporters (#744)' - - kind: changed - description: 'feat: get commit author avatar url on getPromotionValues step (#778)' - - kind: changed - description: 'fix: promotion values can''t be empty (#772)' - - kind: changed - description: 'feat: add runWorkflow step handler (#785)' - - kind: changed - description: 'chore: move argo-cd auth values to global.integrations.argo-cd.server.auth (#768)' - - kind: changed - description: added runtime label to codefresh-cm (#763) - - kind: changed - description: bumps argo-cd helm chart for redis 8.2.1 upgrade (#765) - - kind: changed - description: bump app proxy version (#760) - - kind: changed - description: 'feat: add error messages for appStatus (#745)' - - kind: changed - description: '[gitops-operator]fix: promotions using pull requests do not resume after the pr has been merged (to main) (#752)' - - kind: changed - description: '[cf-argocd-extras]chore: add tests (#741)' - - kind: changed - description: update enrichment images tag (#746) - - kind: changed - description: 'feat: add promoteAppWithCommitHandler implementation [gitops-operator] (#738)' - - kind: changed - description: 'chore: disable component tests (#740)' - - kind: changed - description: 'chore: update cap-app-proxy image tags to 1.3772.0 (#737)' - - kind: changed - description: 'chore: security fixes for argo rollouts v1.7.2 (#730)' - - kind: changed - description: 'feat: add GetPromotionValuesHandler and VerifyAppHandler implementations (#736)' - - kind: changed - description: '[gitops-operator]fix: security vulnerability (#734)' - - kind: changed - description: 'feat: Add PromotionTaskReconciler (#677)' - - kind: changed - description: 'fix: service account for cleanup runtime resources (#726)' - - kind: changed - description: '[cf-argocd-extras]chore(CR-30961): security fix (#725)' - - kind: changed - description: updated sealed-secrets-controller (#723) - - kind: changed - description: 'chore: Fix security vulnerabilities for argo-workflows and argo-events (#716)' - - kind: changed - description: 'feat: update cap-app-proxy image tags to 1.3750.0' - - kind: changed - description: 'feat: bump evernt-reporter to 88898aa (#676)' - - kind: changed - description: 'feat: conditional registration of the rgs controller (#709)' - - kind: changed - description: 'feat: added sec advisory GHSA-786q-9hcg-v9ff bumped argocd to 8.0.6-9-cap-v… (#703)' - - kind: changed - description: updated cap-app-proxy with security fixes (#702) - - kind: changed - description: 'installer: updated cli-v2, kubectl (#697)' - - kind: changed - description: updated frpc (#693) - - kind: changed - description: update cli-v2 in installer - fix token validation code (#694) - - kind: changed - description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3727.0 (#691)' - - kind: changed - description: updated prometheus-nats-exporter, nats-server-config-reloader for jetstream (#687) - - kind: changed - description: 'feat(conponent-tests): add release branches to pipeline trigger (#684)' - - kind: changed - description: updated nginx (#662) - - kind: changed - description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3718.0 (#678)' - - kind: changed - description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3709.0 - simplify user cache (#673)' - - kind: changed - description: 'chore: update README.md with HA example' - - kind: changed - description: 'chore: update values-ha example' - - kind: changed - description: bumped argocd to 8.0.6-8-cap-v3.0.2-2025-08-12-9c8dfae9 (#664) - - kind: changed - description: bumped app-proxy to 1.3707.0 closed ha gaps (#667) - - kind: changed - description: 'fix: remove checksum tests as they fail when chart version changes (#670)' - - kind: changed - description: updated codefresh-gitops-operator (#666) - - kind: changed - description: updated cli-v2, kubectl in runtime-installer (#661) - - kind: changed - description: using bitnamilegacy instead of bitnami (#653) - - kind: changed - description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3702.0 (#659)' - - kind: changed - description: 'test: update platform mock(me) (#656)' - - kind: changed - description: 'fix: support failing release if app sync fails (#645)' - - kind: changed - description: 'chore(CR-30232): updated oauth2, golang.org/x/net, github.com/cloudflare (#639)' - - kind: changed - description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3701.0 (#654)' - - kind: changed - description: updated cspd enrichers (#652) - - kind: changed - description: 'fix: update leader elector image tag to remove version prefix ''v'' (#651)' + description: 'Updated codefresh-tunnel-client chart to 0.1.22 (#693)' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm @@ -255,4 +79,4 @@ dependencies: - name: redis-ha version: 4.33.4 repository: https://dandydeveloper.github.io/charts/ - condition: redis-ha.enabled + condition: redis-ha.enabled \ No newline at end of file From 822c154aaa44acc35e762ed309fc1c1839b7708b Mon Sep 17 00:00:00 2001 From: Daniel Maizel Date: Sun, 23 Nov 2025 11:47:43 +0200 Subject: [PATCH 18/21] chore: add argo-rollouts deprecation comment --- charts/gitops-runtime/values.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index 6431a8004..7e70433ff 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -347,6 +347,8 @@ codefreshWorkflowLogStoreCM: # ********************************************************************************************************************* # DOCS: https://github.com/codefresh-io/argo-helm/blob/argo-rollouts-2.37.3-7-v1.7.2-cap-OSS-697/charts/argo-rollouts # ********************************************************************************************************************* +# -- Argo Rollouts is deprecated and disabled by default. It will be completely removed in February 2026. +# If you require Argo Rollouts, you can manually override this value to true in your Helm values files. argo-rollouts: enabled: false fullnameOverride: argo-rollouts From a84a4c0eba19b6f159028fd4035f5583b544f774 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Sun, 30 Nov 2025 13:37:32 +0000 Subject: [PATCH 19/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 226 ++++++++++++++++++++++++++---- charts/gitops-runtime/README.md | 4 +- charts/gitops-runtime/values.yaml | 2 - 3 files changed, 204 insertions(+), 28 deletions(-) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 67336aa29..395b0626a 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,42 +14,220 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- - - kind: added - description: 'Multi-runtime installation support (#939, #946)' - - kind: added - description: 'Checksum annotations for improved change detection (#942)' - - kind: added - description: 'Namespace-scoped Argo Workflows support (#917)' - - kind: added - description: 'Telemetry configuration support (#848)' - kind: changed - description: 'Migrated to OSS Argo CD and Argo Helm charts (#823)' + description: 'fix: update namespace handling in cluster resource reporter (#964)' - kind: changed - description: 'Moved Argo CD auth values to global.integrations.argo-cd.server.auth (#768)' + description: 'feat: ensure default-git-source exists on every app-proxy restart (#956)' - kind: changed - description: 'Refactored event-reporters: replaced argo-events runtime and cluster event-reporters, renamed sources-server to argo-gateway (#744)' + description: '[gitops-operator]fix: remove git commit statuses (monthly/25.11) (#947)' - kind: changed - description: 'Updated app-proxy with improvements: default-git-source initialization, autoDetectArgoCd values structure update, branch data in pull request info, git-source permissions for fine-grained tokens, and git process management fixes (#956, #943, #932, #737, #902, #901, #878, #804, #802, #795, #760)' + description: 'feat: multi-runtime installation (#939) (#946)' - kind: changed - description: 'Updated gitops-operator with v2 promotions support and dependency updates (#666)' + description: '[app-proxy]fix(app-proxy): update autoDetectArgoCd to use new values structure (#943)' - kind: changed - description: 'Updated cf-argocd-extras: fixed resource attribute keys, unified event reporter values, removed sharding logic (#930, #845, #819)' + description: 'feat: checksum annotations (#938) (#942)' - kind: changed - description: 'Updated Argo CD version constraint for compatibility (#941)' + description: 'fix: update REQUIRED_VERSION_CONSTRAINT for Argo CD compatibility (#937) (#941)' - kind: changed - description: 'Updated installer with latest CLI v2 and kubectl versions (#849, #697)' + description: '[cf-argocd-extras]chore: update depencencies (argo-cd 3.2) (#930)' - kind: changed - description: 'Disabled Argo Rollouts by default (#917)' - - kind: security - description: 'Fixed security vulnerabilities in app-proxy, cf-argocd-extras, argo-rollouts, argo-events, argo-workflows, and enrichment images (#702, #725, #730, #716, #788)' + description: 'feat: disable runtime redis by default (#927) (#934)' - kind: changed - description: 'Updated Argo Rollouts chart to 2.37.3-7-v1.7.2-cap-OSS-697 (#730)' + description: 'feat: add branch data to pullrequest info (#932)' - kind: changed - description: 'Updated Argo Events chart to 2.4.9-cap-CR-30841 (#716)' + description: 'feat: disable Argo Rollouts by default and enable namespace-scoped Argo Workflows (#917)' - kind: changed - description: 'Updated Argo Workflows chart to 0.45.16-v3.6.7-cap-CR-30835 (#716)' + description: '[gitops-operator]fix: set transient error (#923)' - kind: changed - description: 'Updated codefresh-tunnel-client chart to 0.1.22 (#693)' + description: 'fix: retry on notFound before updating resource status (#914)' + - kind: changed + description: dummy PR (#909) + - kind: changed + description: 'chore: update app version and chart version in Chart.yaml to 1.0.0-rc.1 and 25.11-0 respectively' + - kind: changed + description: 'feat: set fullnameoverride for argocd (#907)' + - kind: changed + description: 'fix: allow "" as prUrl value (#906)' + - kind: changed + description: '[gitops-operator]fix: skip promotion task if terminated before created (#904)' + - kind: changed + description: '[gitops-operator]fix: CR-32246 - adjusted error handling to work with string errors (#903)' + - kind: changed + description: 'feat: external argocd unders .values.global.integrations (#808)' + - kind: changed + description: 'fix(app-proxy): add tini to manage zombie processes (#902)' + - kind: changed + description: 'fix(app-proxy): add timeout to prevent git process accumulation (#901)' + - kind: changed + description: 'chore: bump gitops-operator tag to fd2f89a (#900)' + - kind: changed + description: '[gitops-operator]fix: isMerged is missing in platform (#896)' + - kind: changed + description: 'feat: wait with termination until failed or completed (#892)' + - kind: changed + description: '[gitops-operator]fix: ensure releases are created if trigger commit causes sync failure (#890)' + - kind: changed + description: 'feat: support promotion with pull request (#880)' + - kind: changed + description: 'feat(gitops-operator): add debug flag (#883)' + - kind: changed + description: 'feat: add automated release index generator and GitHub Pages deployment (#879)' + - kind: changed + description: 'build: add telemetry configs (#848)' + - kind: changed + description: 'app-proxy: 1.3883.0 with application logs supported in non-controller namespace (#878)' + - kind: changed + description: 'feat: update promotion task crd (#872)' + - kind: changed + description: 'feat: switched to OSS Argo CD and Argo Helm, removed Argo CD CF specific values from va… (#823)' + - kind: changed + description: bump app proxy (#855) + - kind: changed + description: '[gitops-operator]chore: add pending status and initialise immediate after creation (#863)' + - kind: changed + description: 'fix: runtime: fix no-changes commit sha and pr url in crd (#854)' + - kind: changed + description: 'chore: update codeowners for gitops operator crds (#846)' + - kind: changed + description: upd gitops-operator (#860) + - kind: changed + description: upd cli-v2 , debian for installer (#849) + - kind: changed + description: 'fix: re-enabled argo-events (#843)' + - kind: changed + description: 'chore: extras d4fefcb with improved traces and fix for argo-cd server root path (#845)' + - kind: changed + description: 'chore: apply all operator crd changes and update operator tag (#833)' + - kind: changed + description: 'fix: app proxy isNamespaced returns nil in template failing the install on lower kubernetes versions (#820)' + - kind: changed + description: 'chore[cf-argocd-extras]: bumps cf-argocd-extras to version e746a97 (#819)' + - kind: changed + description: 'fix: update app-proxy image tags to 1.3820.0 (#804)' + - kind: changed + description: 'fix: update app-proxy image tags to 1.3819.0 (#802)' + - kind: changed + description: 'feat: runtime helm: add timestamps to failure and warnings (#796)' + - kind: changed + description: bump app proxy version (#795) + - kind: changed + description: 'fix: improve error handling (#791)' + - kind: changed + description: 'feat: remove sources server (#789)' + - kind: changed + description: 'fix: align reconciler requeue and error handling logic, add failure and warning error properties (#780)' + - kind: changed + description: update READE.md (#792) + - kind: changed + description: 'fix: app-proxy cors (#790)' + - kind: changed + description: 'feat: add separate redis for event-reporters/argo-gateway and app-proxy (#751)' + - kind: changed + description: 'fix: security vulnerabilities in enrichment images (#788)' + - kind: changed + description: 'refactor(cf-argocd-extras): replace with argo-api-gateway, runtime and cluster event-reporters (#744)' + - kind: changed + description: 'feat: get commit author avatar url on getPromotionValues step (#778)' + - kind: changed + description: 'fix: promotion values can''t be empty (#772)' + - kind: changed + description: 'feat: add runWorkflow step handler (#785)' + - kind: changed + description: 'chore: move argo-cd auth values to global.integrations.argo-cd.server.auth (#768)' + - kind: changed + description: added runtime label to codefresh-cm (#763) + - kind: changed + description: bumps argo-cd helm chart for redis 8.2.1 upgrade (#765) + - kind: changed + description: bump app proxy version (#760) + - kind: changed + description: 'feat: add error messages for appStatus (#745)' + - kind: changed + description: '[gitops-operator]fix: promotions using pull requests do not resume after the pr has been merged (to main) (#752)' + - kind: changed + description: '[cf-argocd-extras]chore: add tests (#741)' + - kind: changed + description: update enrichment images tag (#746) + - kind: changed + description: 'feat: add promoteAppWithCommitHandler implementation [gitops-operator] (#738)' + - kind: changed + description: 'chore: disable component tests (#740)' + - kind: changed + description: 'chore: update cap-app-proxy image tags to 1.3772.0 (#737)' + - kind: changed + description: 'chore: security fixes for argo rollouts v1.7.2 (#730)' + - kind: changed + description: 'feat: add GetPromotionValuesHandler and VerifyAppHandler implementations (#736)' + - kind: changed + description: '[gitops-operator]fix: security vulnerability (#734)' + - kind: changed + description: 'feat: Add PromotionTaskReconciler (#677)' + - kind: changed + description: 'fix: service account for cleanup runtime resources (#726)' + - kind: changed + description: '[cf-argocd-extras]chore(CR-30961): security fix (#725)' + - kind: changed + description: updated sealed-secrets-controller (#723) + - kind: changed + description: 'chore: Fix security vulnerabilities for argo-workflows and argo-events (#716)' + - kind: changed + description: 'feat: update cap-app-proxy image tags to 1.3750.0' + - kind: changed + description: 'feat: bump evernt-reporter to 88898aa (#676)' + - kind: changed + description: 'feat: conditional registration of the rgs controller (#709)' + - kind: changed + description: 'feat: added sec advisory GHSA-786q-9hcg-v9ff bumped argocd to 8.0.6-9-cap-v… (#703)' + - kind: changed + description: updated cap-app-proxy with security fixes (#702) + - kind: changed + description: 'installer: updated cli-v2, kubectl (#697)' + - kind: changed + description: updated frpc (#693) + - kind: changed + description: update cli-v2 in installer - fix token validation code (#694) + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3727.0 (#691)' + - kind: changed + description: updated prometheus-nats-exporter, nats-server-config-reloader for jetstream (#687) + - kind: changed + description: 'feat(conponent-tests): add release branches to pipeline trigger (#684)' + - kind: changed + description: updated nginx (#662) + - kind: changed + description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3718.0 (#678)' + - kind: changed + description: 'fix(app-proxy): update cap-app-proxy image tags to 1.3709.0 - simplify user cache (#673)' + - kind: changed + description: 'chore: update README.md with HA example' + - kind: changed + description: 'chore: update values-ha example' + - kind: changed + description: bumped argocd to 8.0.6-8-cap-v3.0.2-2025-08-12-9c8dfae9 (#664) + - kind: changed + description: bumped app-proxy to 1.3707.0 closed ha gaps (#667) + - kind: changed + description: 'fix: remove checksum tests as they fail when chart version changes (#670)' + - kind: changed + description: updated codefresh-gitops-operator (#666) + - kind: changed + description: updated cli-v2, kubectl in runtime-installer (#661) + - kind: changed + description: using bitnamilegacy instead of bitnami (#653) + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3702.0 (#659)' + - kind: changed + description: 'test: update platform mock(me) (#656)' + - kind: changed + description: 'fix: support failing release if app sync fails (#645)' + - kind: changed + description: 'chore(CR-30232): updated oauth2, golang.org/x/net, github.com/cloudflare (#639)' + - kind: changed + description: 'chore(app-proxy): update cap-app-proxy image tags to 1.3701.0 (#654)' + - kind: changed + description: updated cspd enrichers (#652) + - kind: changed + description: 'fix: update leader elector image tag to remove version prefix ''v'' (#651)' dependencies: - name: argo-cd repository: https://argoproj.github.io/argo-helm @@ -79,4 +257,4 @@ dependencies: - name: redis-ha version: 4.33.4 repository: https://dandydeveloper.github.io/charts/ - condition: redis-ha.enabled \ No newline at end of file + condition: redis-ha.enabled diff --git a/charts/gitops-runtime/README.md b/charts/gitops-runtime/README.md index 3f9e019ea..a2203f1be 100644 --- a/charts/gitops-runtime/README.md +++ b/charts/gitops-runtime/README.md @@ -546,14 +546,14 @@ global: | app-proxy.image-enrichment.serviceAccount.name | string | `"codefresh-image-enrichment-sa"` | Name of the service account to create or the name of the existing one to use | | app-proxy.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.image.repository | string | `"quay.io/codefresh/cap-app-proxy"` | | -| app-proxy.image.tag | string | `"6201d13"` | | +| app-proxy.image.tag | string | `"0afa16e"` | | | app-proxy.imagePullSecrets | list | `[]` | | | app-proxy.initContainer.command[0] | string | `"./init.sh"` | | | app-proxy.initContainer.env | object | `{}` | | | app-proxy.initContainer.extraVolumeMounts | list | `[]` | Extra volume mounts for init container | | app-proxy.initContainer.image.pullPolicy | string | `"IfNotPresent"` | | | app-proxy.initContainer.image.repository | string | `"quay.io/codefresh/cap-app-proxy-init"` | | -| app-proxy.initContainer.image.tag | string | `"6201d13"` | | +| app-proxy.initContainer.image.tag | string | `"0afa16e"` | | | app-proxy.initContainer.resources.limits | object | `{}` | | | app-proxy.initContainer.resources.requests.cpu | string | `"0.2"` | | | app-proxy.initContainer.resources.requests.memory | string | `"256Mi"` | | diff --git a/charts/gitops-runtime/values.yaml b/charts/gitops-runtime/values.yaml index 7e70433ff..6431a8004 100644 --- a/charts/gitops-runtime/values.yaml +++ b/charts/gitops-runtime/values.yaml @@ -347,8 +347,6 @@ codefreshWorkflowLogStoreCM: # ********************************************************************************************************************* # DOCS: https://github.com/codefresh-io/argo-helm/blob/argo-rollouts-2.37.3-7-v1.7.2-cap-OSS-697/charts/argo-rollouts # ********************************************************************************************************************* -# -- Argo Rollouts is deprecated and disabled by default. It will be completely removed in February 2026. -# If you require Argo Rollouts, you can manually override this value to true in your Helm values files. argo-rollouts: enabled: false fullnameOverride: argo-rollouts From e08a800c4b4c310c79ceaf97853fa26d4e46bd97 Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Sun, 30 Nov 2025 15:41:56 +0000 Subject: [PATCH 20/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 395b0626a..6a3381084 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,6 +14,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: 'fix: update gitops-operator image tag to 8cbca33 (#979)' - kind: changed description: 'fix: update namespace handling in cluster resource reporter (#964)' - kind: changed From 2373cb190ebd645af2792129bbf9055c1ff9f40e Mon Sep 17 00:00:00 2001 From: cf-ci-bot-v2 Date: Mon, 1 Dec 2025 10:38:52 +0000 Subject: [PATCH 21/21] Update Chart.yaml and changelog for 25.11-0 release --- charts/gitops-runtime/Chart.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/charts/gitops-runtime/Chart.yaml b/charts/gitops-runtime/Chart.yaml index 6a3381084..4daaf4c96 100644 --- a/charts/gitops-runtime/Chart.yaml +++ b/charts/gitops-runtime/Chart.yaml @@ -14,6 +14,8 @@ maintainers: annotations: artifacthub.io/alternativeName: "codefresh-gitops-runtime" artifacthub.io/changes: |- + - kind: changed + description: added labeler github action (#972) - kind: changed description: 'fix: update gitops-operator image tag to 8cbca33 (#979)' - kind: changed