Update module github.com/gardener/gardener to v1.110.1 #137
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ℹ Artifact update noticeFile name: go.modIn order to perform the update(s) described in the table above, Renovate ran the
Details:
|
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
4 times, most recently
from
ec96de9 to
a377ff1
Compare
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
from
a377ff1 to
39888b8
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
2 times, most recently
from
e6f0439 to
ed6ed20
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
3 times, most recently
from
cca06d6 to
c830c62
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
5 times, most recently
from
a94e78d to
ca5869c
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
5 times, most recently
from
f3237d6 to
bd63aac
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
from
bd63aac to
3fb58f5
Compare
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
from
3fb58f5 to
ccc57d9
Compare
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
4 times, most recently
from
f12c1d0 to
b3f5aa6
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
2 times, most recently
from
0296c5b to
882d015
Compare
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
from
882d015 to
f9512dd
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
2 times, most recently
from
b4ba8a9 to
d644e02
Compare
23t-machine-user
changed the title
23t-machine-user
force-pushed
the
renovate/github.com-gardener-gardener-1.x
branch
from
d644e02 to
58fd361
Compare
23t-machine-user
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v1.106.1->v1.110.1Release Notes
gardener/gardener (github.com/gardener/gardener)
v1.110.1Compare Source
[gardener/gardener]
🐛 Bug Fixes
[USER]Fix initial scheduling ofShootwithNamespacedCloudProfilereference. by @LucaBernstein [#11076]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.1Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.1europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.1v1.110.0Compare Source
[gardener/gardener]
[DEVELOPER]Theautoscaling.k8s.io/v1alpha1.Hvpaandautoscaling.k8s.io/v1alpha1.HvpaListresources were removed from thepkg/client/kubernetes.SeedSchemeandpkg/operator/client.RuntimeSchemeby @plkokanov [#10921][DEVELOPER]Extension webhooks need to remove the provider typePredicatesand add anObjectSelectoragainst the object's provider type label instead. by @LucaBernstein [#10896]✨ New Features
[OPERATOR]Secrets for theTokenRequestorcan be additionally annotated withserviceaccount.resources.gardener.cloud/inject-ca-bundle=trueto get the current CA bundle injected as well by @maboehm [#10988]🐛 Bug Fixes
[OPERATOR]seed-authorizerand structured authorization webhooks of shoot kube-apiservers no longer use the default TTL forAuthorizedTTLandUnauthorizedTTL. by @oliver-goetz [#10703][OPERATOR]An issue was fixed ingardener-operatorthat led to an inactive Gardenlet controller after a certain period. Thus, the operator needed a restart to react on Gardenlet resources. by @timuthy [#10663][OPERATOR]Fixes the bug where ManagedResource were still in progressing phase because ofCompletedpods by @ary1992 [#10961]🏃 Others
[OPERATOR]Fixes the calculation of the maximum number of nodes for cluster autoscaling for dual-stack shoots. by @axel7born [#10994][OPERATOR]RBAC rules related toHVPAresources have been removed fromgardenletandgardener-operator- they are no longer necessary. by @plkokanov [#10921][OPERATOR]The resource-manager is no longer HVPA-aware. by @ialidzhikov [#10860][OPERATOR][NewVPN] Enable IPv6 for non-HA if needed. by @MartinWeindel [#10997][OPERATOR]Custom CAs are updated on existing nodes too. by @oliver-goetz [#10923][OPERATOR]Set env variables for dual-stack in kube-apiserver. by @axel7born [#10970][DEPENDENCY]Thegardener/machine-controller-managerimage has been updated tov0.55.1. Release Notes by @gardener-ci-robot [#10956][DEPENDENCY]Thequay.io/brancz/kube-rbac-proxyimage has been updated tov0.18.2. by @gardener-ci-robot [#10953][DEPENDENCY]Thecredativ/valiimage has been updated tov2.2.20. Release Notes by @gardener-ci-robot [#10993][DEPENDENCY]Thecredativ/plutonoimage has been updated tov7.5.35. Release Notes by @gardener-ci-robot [#10995][DEPENDENCY]Thequay.io/kiwigrid/k8s-sidecarimage has been updated to1.28.1. by @gardener-ci-robot [#10981][DEPENDENCY]Thegardener/apiserver-proxyimage has been updated tov0.18.0. Release Notes by @gardener-ci-robot [#10933][DEPENDENCY]Theregistry.k8s.io/coredns/corednsimage has been updated tov1.12.0. by @gardener-ci-robot [#10909][DEPENDENCY]Thegardener/vpn2image has been updated to0.33.0. Release Notes by @gardener-ci-robot [#10996][DEPENDENCY]Theenvoyproxy/envoyimage has been updated tov1.32.2. Release Notes by @gardener-ci-robot [#11000][DEPENDENCY]Thegardener/gardener-metrics-exporterimage has been updated to0.31.0. Release Notes by @gardener-ci-robot [#10941][DEPENDENCY]Thegardener/gardener-metrics-exporterimage has been updated to0.33.0. Release Notes by @gardener-ci-robot [#10952][DEPENDENCY]Thegardener/ext-authz-serverimage has been updated to0.11.0. Release Notes by @gardener-ci-robot [#10935][DEVELOPER]TheHVPACRD has been removed from the codebase and is no longer generated. by @plkokanov [#10921]📖 Documentation
[OPERATOR]Improve shoot credential rotation documentation. by @marc1404 [#10998]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.0Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.0europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.0v1.109.0Compare Source
[gardener/gardener]
[OPERATOR]The HVPA autoscaling option (which is unconditionally disabled since v1.105.0) is removed from theetcdcomponent. Before updating to this version of Gardener, make sure that you upgraded to v1.106.0 and all Seed and Garden resources reconciled with that version. This is required to ensure that the HVPA component and its CRD were properly cleaned up. by @plkokanov [#10800][OPERATOR]TheBaselineandHVPAautoscaling modes (which are unconditionally disabled since v1.105.0) are removed for{gardener,kube}-apiserver. Before updating to this version of Gardener, make sure that you upgraded to v1.106.0 and all Seed and Garden resources reconciled with that version. This is required to ensure that the HVPA component and its CRD were properly cleaned up. by @plkokanov [#10796][OPERATOR]The deprecated and unconditionally disabledHVPAandHVPAForShootedSeedfeature gates are removed. The GA-ed and unconditionally enabledVPAForETCDandVPAAndHPAForAPIServerfeatures gates are removed. If you have references to the feature gates, clean them up before upgrading to this version of Gardener. by @ialidzhikov [#10853][DEVELOPER]Rename the controlplane exposure webhook (ExposureWebhookName) to seed provider webhook (SeedProviderWebhookName). by @LucaBernstein [#10788]📰 Noteworthy
[OPERATOR]Thegardener-schedulerwas improved to consider reconciliation backoffs. In the past, unassigned shoots were affected by frequent scheduler reconciliations and status updates which potentially strained the scheduler and etcd. by @timuthy [#10821][DEVELOPER]extension library: Provider extensions should rename control plane exposure webhook related packages to seed provider to reflect the naming change on their side (for example renamepkg/webhook/controlplaneexposuretopkg/webhook/seedprovider). by @LucaBernstein [#10788]✨ New Features
[OPERATOR]NodeAgentAuthorizerfeature gate was introduced. It allows a webhook based authorization ofgardener-node-agentswith reduced permissions.❗ This feature gate requires changes in
machine-controller-manager-provider-*. Please check that you run a supported version before activating it. ❗ by @oliver-goetz [#10781][USER]Allow dual-stack shoots creation. by @axel7born [#10803][USER]shoot spec.kubernetes.clusterAutoscaler: Add support for startupTaints and statusTaints by @dhague [#10858]🐛 Bug Fixes
[USER]Fixed a bug where SSH key rotations forShoots did not properly update the authorized keys on the worker nodes (hence, the new key was unusable until a node restart or rollout). by @tobschli [#10671][USER]OnShootdeletion, Gardener now properly skips certain validation checks that are only relevant for creations or updates ofShootresources. by @rfranzke [#10902][OPERATOR]Fixed an error inBackupBucketreconciliation by replacingStrategicMergePatchwithMergePatchto properly handleruntime.RawExtensionfields. by @seshachalam-yv [#10904]🏃 Others
[OPERATOR]update alpine to get latest security fixes by @DockToFuture [#10922][OPERATOR]Add support fornode-local-dnsin dual-stack cluster. by @axel7born [#10891][OPERATOR]Add dual stack support for VPN. by @DockToFuture [#10767][OPERATOR]Fix kubelet CSRs to allow IPv6 addresses to be used by @kron4eg [#10876][OPERATOR]Add dashboard for VPA admission-controller by @voelzmo [#10741][OPERATOR]The HVPA component is removed. Before updating to this version of Gardener, make sure that you upgraded to v1.106.0 and all Seed and Garden resources reconciled with that version. This is required to ensure that the HVPA component and its CRD were properly cleaned up. by @ialidzhikov [#10851][OPERATOR]Added validation forissuerURLin the OIDC configuration to reject URLs containing fragments. by @acumino [#10888][OPERATOR]Thegardener/dependency-watchdogimage has been updated tov1.3.0. Release Notes by @rishabh-11 [#10930][OPERATOR]Adaptconfigure-admission.shfor new extension releases with changed value names for Helm charts. by @MartinWeindel [#10877][DEPENDENCY]Theregistry.k8s.io/cpa/cluster-proportional-autoscalerimage has been updated tov1.9.0. by @gardener-ci-robot [#10898][DEPENDENCY]Thegardener/autoscalerimage has been updated tov1.30.1. Release Notes by @gardener-ci-robot [#10914][DEPENDENCY]Thegardener/vpn2image has been updated to0.30.0. Release Notes by @gardener-ci-robot [#10872][DEPENDENCY]Theregistry.k8s.io/coredns/corednsimage has been updated tov1.11.4. by @gardener-ci-robot [#10856][DEPENDENCY]Thegardener/gardener-discovery-serverimage has been updated tov0.3.0. Release Notes by @gardener-ci-robot [#10849][DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.25.0. Release Notes by @gardener-ci-robot [#10932][DEPENDENCY]Thegardener/machine-controller-managerimage has been updated tov0.55.0. Release Notes by @rishabh-11 [#10908]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.109.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.109.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.109.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.109.0Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.109.0europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.109.0v1.108.1Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]Theseed.gardener.cloud/eu-access=truelabel (inCloudProfiles andSeeds) or seed selector (inShoots) is no longer removed when theeu-access-onlyrestriction is removed from the.spec.accessRestrictions[]field. Similarly, thesupport.gardener.cloud/eu-access-for-cluster-{addons,nodes}annotations inShoots are no longer removed when they are removed from the.spec.accessRestrictions[].optionsfield. by @rfranzke [#10885]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.108.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.108.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.108.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.108.1Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.108.1europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.108.1v1.108.0Compare Source
[gardener/gardener]
[USER]Theurlannotation in<shoot-name>.monitoringsecrets in the project namespace is deprecated and will be removed soon. Please use theplutono-urlannotation instead. by @oliver-goetz [#10735][OPERATOR]There is an incompatible change in theGarden(gardens.operator.gardener.cloud) custom resource, which required manual action:.spec.virtualCluster.dns.domainsand.spec.runtimeCluster.ingress.domainswere changed from type string to object with a fieldnameand an optional fieldprovider, e.g., inJSONformat, replace"domains": ["domain1.example.com", "domain2.example.com"]with"domains": [{"name": "domain1.example.com"}, {"name": "domain2.example.com"}]..spec.runtimeCluster.ingress.domainsis required now.spec.virtualCluster.dns.domainsis required now by @MartinWeindel [#10645][OPERATOR]The optional deployment of cert-management component has been removed. As it was only introduced recently and probably not used, this change should have no impact typically. by @MartinWeindel [#10802]📰 Noteworthy
[USER]Allow changingshoot.spec.cloudProfilebetweenCloudProfileand its descendantNamespacedCloudProfiles. by @LucaBernstein [#10811]✨ New Features
[USER]Allow for custom machine images inNamespacedCloudProfiles and add thespec.providerConfigfield. by @LucaBernstein [#10629][USER]The URLs of Shootplutono,prometheusandalertmanagerare now stored as annotations in<shoot-name>.monitoringsecret in the project namespace. by @oliver-goetz [#10735][OPERATOR]Enhance thegardener-operatorto deployDNSRecordsandBackupBucketfor the virtual garden resource.DNSRecordsare only deployed if at least one provider is specified at.spec.dns.providersin theGardenresource.A
BackupBucketis created if the.spec.virtualCluster.etcd.backupsection is specified. An existing backup bucket on the infrastructure becomes automatically managed this way. by @MartinWeindel [#10645][DEVELOPER]gardener-apiserver: TheExtensionLabelsadmission plugin now also sets labels toWorkloadIdentitys. by @dimityrmirchev [#10786]🐛 Bug Fixes
[DEVELOPER]gardener-node-agentapplies inline files before applying containerd registries now. by @oliver-goetz [#10831]🏃 Others
[DEPENDENCY]Theregistry.k8s.io/kube-state-metrics/kube-state-metricsimage has been updated tov2.14.0. by @gardener-ci-robot [#10818][DEPENDENCY]Thequay.io/prometheus/prometheusimage has been updated tov2.55.1. by @gardener-ci-robot [#10804][DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.24.1. Release Notes by @gardener-ci-robot [#10843][OPERATOR]Fixed an issue that that could occur during control plane migration causing thecore.gardener.cloud/v1beta1.BackupEntryto be reconciled after it was successfully migrated, but before it was restored. by @plkokanov [#10761][OPERATOR]The deployment ofBackupBucketresource in the runtime cluster is skipped if no suitable operator extension is deployed. by @MartinWeindel [#10837][OPERATOR]Following components in gardener logging stack are updated: fluent-operator to v3.2.0, fluent-bit to v3.1.8, gardener/logging to v0.62.0 by @nickytd [#10790][OPERATOR]The following image has been updated:[DEVELOPER]Thehack/sast.shscript accepts two new optional flags:--exclude-dirs: comma-separated list of dirs to exclude--report-dir: where to store the gosec report by @Kostov6 [#10766][DEVELOPER]The provider-local admission is now deployed with the local kind setup. by @LucaBernstein [#10629]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.108.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.108.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.108.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.108.0Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.108.0europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.108.0v1.107.3Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]Theseed.gardener.cloud/eu-access=truelabel (inCloudProfiles andSeeds) or seed selector (inShoots) is no longer removed when theeu-access-onlyrestriction is removed from the.spec.accessRestrictions[]field. Similarly, thesupport.gardener.cloud/eu-access-for-cluster-{addons,nodes}annotations inShoots are no longer removed when they are removed from the.spec.accessRestrictions[].optionsfield. by @rfranzke [#10884]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.3europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.3europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.3europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.3Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.3europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.3v1.107.2Compare Source
[gardener/gardener]
🏃 Others
[DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.23.3. Release Notes by @gardener-ci-robot [#10839]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.2europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.2europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.2europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.2Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.2europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.2v1.107.1Compare Source
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]Fixed an issue where the dashboard's service account lacked permission to createleasesin thegardennamespace whenspec.virtualCluster.gardener.gardenerDashboard.gitHubwas configured in theGardenresource. by @petersutter [#10835]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.1europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.1Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.1europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.1v1.107.0Compare Source
[gardener/gardener]
[DEVELOPER]The unused methodWithShootCredentialshave been removed fromgithub.com/gardener/gardener/pkg/gardenlet/operation/shoot.Builder. by @vpnachev [#10672][DEVELOPER]In the local development setup, the images are pushed togarden.local.gardener.cloud:5001instead oflocalhost:5001now. Please add127.0.0.1 garden.local.gardener.cloudto your/etc/hosts. by @rrhubenov [#10257][OPERATOR]Feature gateIPv6SingleStackhas been removed. Infrastructure-specific validations will be added in parallel to the corresponding provider extensions. by @ScheererJ [#10716]📰 Noteworthy
[OPERATOR]ManagedSeed's.spec.gardenlet.config.seedConfig.spec.ingress.controller.kindfield is now defaulted tonginxwhen.spec.gardenlet.config.seedConfigor.spec.gardenlet.config.seedConfig.spec.ingressis nil.This allows the creation of ManagedSeed without specifying the
.spec.gardenletfield. by @RadaBDimitrova [#10655][OPERATOR]A newrequiredcontroller was added togardener-operator. It maintains theRequiredRuntimecondition forExtensionresources to indicate that the extension deployment is required in the Garden-Runtime cluster. by @timuthy [#10650][OPERATOR]Thegardener/controlplaneHelm chart has been deprecated and will be removed afterv1.135has been released (around beginning of 2026). We urge you to switch to agardener-operator-based installation. Read all about it here. by @rfranzke [#10706][DEVELOPER].spec.gardenletof ManagedSeed is now a required field. This was already the case from an API perspective, enforced by validation. by @RadaBDimitrova [#10648][USER]Thespec.kubernetes.kubeAPIServer.oidcConfigfield in theShootAPI is deprecated and will be removed after support for Kubernetes 1.31 is dropped. by @AleksandarSavchev [#10666]✨ New Features
[OPERATOR]If an admission webhook which was deployed viaExtensionresource bygardener-operatoris deleted again, its webhook configuration in the virtual-cluster is cleaned up automatically. by @oliver-goetz [#10585][OPERATOR]TheCloudProfile,Seed, andShootAPIs are now allowing to configure access restrictions (e.g., to enable "EU access"-only or similar policies). The legacy approach with theseed.gardener.cloud/eu-accesslabels is deprecated and will be removed in a future release. Make sure to adapt to the new APIs. Read all about it here. by @rfranzke [#10654][USER]The viewer kubeconfigs for shoot clusters now allow thepods/logsubresource. by @rfranzke [#10711][USER]Service Account Managed Issuer can be now enabled for workerless shoot clusters. by @dimityrmirchev [#10689][USER]Structured authorization configuration can now be set by creating aConfigMapwith theAuthorizationConfigurationfile set in theconfig.yamldata key and referencing it (in theShootvia.spec.kubernetes.kubeAPIServer.structuredAuthorization, in theGardenvia.spec.virtualCluster.kubernetes.kubeAPIServer.structuredAuthorizationfor Kubernetes versions>= v1.30. Read all about it here. by @rfranzke [#10682][USER]Gardener reports the cluster's egress CIDRs inShoot.status.networking.egressCIDRsif supported by the used provider extension. by @timebertt [#10240]🐛 Bug Fixes
[OPERATOR]Fix Prometheus ruleshoot-kube-proxy. by @LucaBernstein [#10757][OPERATOR]The TopologySpreadConstraints calculation was improved forStatefulSets to always use a stable label selector. This led to issues in the past when shoots were upgraded to HA. by @timuthy [#10750][OPERATOR]valitail version is now pinned to v2.2.15 (depends on glibc 2.32). by @ialidzhikov [#10776]🏃 Others
[DEPENDENCY]Thecredativ/plutonoimage has been updated tov7.5.34. Release Notes by @gardener-ci-robot [#10732][DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.23.2. Release Notes by @gardener-ci-robot [#10747][DEPENDENCY]Thegardener/cert-managementimage has been updated tov0.16.0. Release Notes by @gardener-ci-robot [#10684][DEPENDENCY]Thecredativ/valiimage has been updated tov2.2.19. Release Notes by @gardener-ci-robot [#10680][DEPENDENCY]Thegcr.io/istio-release/pilotimage has been updated to1.23.3. by @gardener-ci-robot [#10725][DEPENDENCY]Thequay.io/prometheus/prometheusimage has been updated tov2.55.0. by @gardener-ci-robot [#10697][DEPENDENCY]Thequay.io/prometheus-operator/prometheus-config-reloaderimage has been updated tov0.77.2. by @gardener-ci-robot [#10692][DEPENDENCY]Theenvoyproxy/envoyimage has been updated tov1.32.1. Release Notes by @gardener-ci-robot [#10755][DEPENDENCY]Thegardener/dashboardimage has been updated to1.78.0. Release Notes by @gardener-ci-robot [#10731][OPERATOR]The admission automatically adds theprovider.extensions.gardener.cloudlabel toNamespacedCloudProfiles. by @LucaBernstein [#10742][OPERATOR]Add dual-stack support for coredns. by @DockToFuture [#10733][OPERATOR]Allow extensions to be scraped in garden runtime cluster even outside garden namespace by @ScheererJ [#10720][OPERATOR]Add label selector to ShootResourceReservation plugin to control for which Shoots the ShootResourceReservation Plugin setskubeReservedaccording to the GKE formula whenuseGKEFormula: trueis set. by @voelzmo [#10492][OPERATOR]Increase the readiness probe timeout for thegardener-metrics-exporterfrom 1s to 10s. by @vicwicker [#10771][OPERATOR]Thegardener/etcd-druidimage has been updated tov0.23.1. Release Notes v0.23.1, Release Notes v0.23.0 by @shreyas-s-rao [#10526][OPERATOR]Theautoscaler/cluster-autoscalerimage has been updated tov1.29.2(for Kubernetes v1.29). Release Notes by @rishabh-11 [#10700][OPERATOR]Gardener API Server feature gateShootCredentialsBindinghas been promoted to beta and is enabled by default. by @dimityrmirchev [#10662][DEVELOPER]Add Make targetmake operator-seed-devfor local development of thegardenletin the operator setup. by @marc1404 [#10710][DEVELOPER]Fix/etc/hostsconfiguration in the remote local setup by @vicwicker [#10744][DEVELOPER]The base image of thegardener-extension-provider-local-nodeimage is now updated tokindest/[email protected]. by @ialidzhikov [#10688][DEVELOPER]local setup: The kind cluster's node image is now updated tokindest/[email protected]. by @ialidzhikov [#10723]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.0europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.0Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.0europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.0v1.106.2Compare Source
[gardener/gardener]
🏃 Others
[OPERATOR]Increase the readiness probe timeout for thegardener-metrics-exporterfrom 1s to 10s. by @vicwicker [#10769]Helm Charts
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.106.2europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.106.2europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.106.2europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.106.2Docker Images
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.106.2europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.106.2Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Renovate Bot.