Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump helm.sh/helm/v3 from 3.16.4 to 3.17.0 in /hack/internal/tools #4017

Merged
merged 1 commit into from
Jan 20, 2025
Merged

Bump helm.sh/helm/v3 from 3.16.4 to 3.17.0 in /hack/internal/tools #4017

merged 1 commit into from
Jan 20, 2025
+53 −9

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 20, 2025
edited
Loading

Bumps helm.sh/helm/v3 from 3.16.4 to 3.17.0.

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.17.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Allow pulling and installation by OCI digest
  • Annotations and dependencies are now in chart metadata output
  • New --take-ownership flag for install and upgrade commands
  • SDK: Authorizer and registry authorizer are now configurable
  • Removed the Kubernetes configuration file permissions check
  • Added username/password to helm push and dependency build/update subcommands
  • Added toYamlPretty template function

Installation and Upgrading

Download Helm v3.17.0. The common platform binaries are here:

This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at @​r6by keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.17.1 is the next patch release and will be on February 12, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025

Changelog

  • bump version to v3.17.0 301108edc7ac2a8ba79e4ebf5701b0b6ce6a31e4 (Matt Farina)
  • fix: make ORAS reference private 949b2e604067a43797c640db4d6ed69af7aa3e5b (Terry Howe)
  • fix: issue with helm template and oci chart aba95b9cb4827fe932e5eebabd55513333543d7c (Terry Howe)

... (truncated)

Commits
  • 301108e bump version to v3.17.0
  • 0ac5d28 Merge pull request #13588 from mattfarina/v3-backport-oci-digest
  • 949b2e6 fix: make ORAS reference private
  • aba95b9 fix: issue with helm template and oci chart
  • c3e5217 feat: allow installation by OCI digest
  • fbfbf1a Merge pull request #13555 from helm/dependabot/go_modules/dev-v3/k8s-io-b0222...
  • 33a0ee7 Bump the k8s-io group with 7 updates
  • c6b8d2b Merge pull request #13585 from mattfarina/backport-xnet-33-fix
  • 79993d2 Upgrade golang.org/x/net to v0.33.0 to address CVE-2024-45338
  • 9ade3b5 Merge pull request #13574 from gjenkins8/v3_13343
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. labels Jan 20, 2025
@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Jan 20, 2025
@k8s-ci-robot
Copy link
Contributor

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Jan 20, 2025
@netlify Netlify
Copy link

netlify bot commented Jan 20, 2025
edited
Loading

Deploy Preview for kubernetes-sigs-kueue ready!

Name Link
🔨 Latest commit 1fdd88b
🔍 Latest deploy log https://app.netlify.com/sites/kubernetes-sigs-kueue/deploys/678e51c50aca030008515b9e
😎 Deploy Preview https://deploy-preview-4017--kubernetes-sigs-kueue.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@mimowo
Copy link
Contributor

mimowo commented Jan 20, 2025

/cc @mbobrovskyi PTAL

@k8s-ci-robot
Copy link
Contributor

@mimowo: GitHub didn't allow me to request PR reviews from the following users: PTAL.

Note that only kubernetes-sigs members and repo collaborators can review this PR, and authors cannot review their own PRs.

In response to this:

/cc @mbobrovskyi PTAL

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@mbobrovskyi
Copy link
Contributor

/hold for #3820

@k8s-ci-robot k8s-ci-robot added the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Jan 20, 2025
@dependabot dependabot bot force-pushed the dependabot/go_modules/hack/internal/tools/helm.sh/helm/v3-3.17.0 branch from cff6cf1 to 901eecb Compare January 20, 2025 11:03
tenzen-y
tenzen-y reviewed Jan 20, 2025
View reviewed changes
hack/internal/tools/go.mod Outdated
helm.sh/helm/v3 v3.16.4
k8s.io/code-generator v0.31.5
helm.sh/helm/v3 v3.17.0
k8s.io/code-generator v0.32.0
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is the reason why we should wait for #3820.

@dependabot dependabot bot force-pushed the dependabot/go_modules/hack/internal/tools/helm.sh/helm/v3-3.17.0 branch from 901eecb to ad7a960 Compare January 20, 2025 11:26
@dependabot
Bump helm.sh/helm/v3 from 3.16.4 to 3.17.0 in /hack/internal/tools
1fdd88b 
Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.16.4 to 3.17.0.
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.16.4...v3.17.0)

---
updated-dependencies:
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/hack/internal/tools/helm.sh/helm/v3-3.17.0 branch from ad7a960 to 1fdd88b Compare January 20, 2025 13:38
@k8s-ci-robot k8s-ci-robot added size/M Denotes a PR that changes 30-99 lines, ignoring generated files. and removed size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Jan 20, 2025
tenzen-y
tenzen-y reviewed Jan 20, 2025
View reviewed changes
Copy link
Member

@tenzen-y tenzen-y left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm
/approve

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Jan 20, 2025
@k8s-ci-robot
Copy link
Contributor

LGTM label has been added.

Git tree hash: 24b68e05fc2195c48e053efb1c455cb742be6da0

@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dependabot[bot], tenzen-y

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jan 20, 2025
@mbobrovskyi
Copy link
Contributor

/unhold

@k8s-ci-robot k8s-ci-robot removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Jan 20, 2025
@k8s-ci-robot k8s-ci-robot merged commit 5177517 into main Jan 20, 2025
17 checks passed
@k8s-ci-robot k8s-ci-robot added this to the v0.11 milestone Jan 20, 2025
@dependabot dependabot bot deleted the dependabot/go_modules/hack/internal/tools/helm.sh/helm/v3-3.17.0 branch January 20, 2025 14:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tenzen-y tenzen-y tenzen-y left review comments

@mbobrovskyi mbobrovskyi Awaiting requested review from mbobrovskyi

Assignees

@tenzen-y tenzen-y

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. release-note-none Denotes a PR that doesn't merit a release note. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
v0.11
Development

Successfully merging this pull request may close these issues.
4 participants
@k8s-ci-robot @mimowo @mbobrovskyi @tenzen-y