aggarwalakshun/public-k3s
1
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity

Update dependency fluxcd/flux2 to v2.7.0 #334

Merged
aggarwalakshun merged 1 commits from renovate/fluxcd-flux2-2.x into main 2025-10-01 05:38:25 +00:00
Conversation 0 Commits 1 Files Changed 1 +708 -3547
aggarwalakshun commented 2025-10-01 00:04:31 +00:00
Owner
Copy Link

This PR contains the following updates:

Package Update Change
fluxcd/flux2 minor v2.6.4 -> v2.7.0

Release Notes

fluxcd/flux2 (fluxcd/flux2)

v2.7.0

Compare Source

Highlights

Flux v2.7.0 is a feature release. Users are encouraged to upgrade for the best experience.

For a compressive overview of new features and API changes included in this release, please refer to the Announcing Flux 2.7 GA blog post.

Overview of the new features:

  • General availability release of the Image Automation APIs (ImagePolicy, ImageRepository, ImageUpdateAutomation)
  • Watch for changes in ConfigMaps and Secrets references (Kustomization, HelmRelease)
  • Support for remote cluster authentication using Workload Identity (Kustomization, HelmRelease)
  • Extend the readiness evaluation of dependencies with CEL expressions (Kustomization, HelmRelease)
  • Support for global SOPS Age decryption keys on single-tenant clusters (Kustomization)
  • Support for optional Kustomize components (Kustomization)
  • Introduce RetryOnFailure lifecycle management strategy (HelmRelease)
  • Support mTLS for sending alerts to external systems (Provider)
  • Object-level workload identity authentication (Bucket, Provider)
  • Support mTLS for GitHub App transport (GitRepository, ImageUpdateAutomation, Provider)
  • OpenTelemetry tracing for Kustomization and HelmRelease reconciliation (Provider)
  • Support for 3rd-party source controllers (ExternalArtifact)
  • Support for source composition and decomposition patterns (ArtifactGenerator)
  • CancelHealthCheckOnNewRevision feature gate (kustomize-controller)
  • GitSparseCheckout feature gate (image-automation-controller)

❤️ Big thanks to all the Flux contributors that helped us with this release!

Kubernetes compatibility

This release is compatible with the following Kubernetes versions:

Kubernetes version Minimum required
v1.32 >= 1.32.0
v1.33 >= 1.33.0
v1.34 >= 1.34.1

[!NOTE]
Note that the Flux project offers support only for the latest three minor versions of Kubernetes.
Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as
ControlPlane that provide enterprise support for Flux.

OpenShift compatibility

Flux can be installed on Red Hat OpenShift cluster directly from OperatorHub using Flux Operator. The operator allows the configuration of Flux multi-tenancy lockdown, network policies, persistent storage, sharding, vertical scaling and the synchronization of the cluster state from Git repositories, OCI artifacts, and S3-compatible storage.

Upgrade procedure

⚠️ The Flux APIs v1beta1 and v2beta1 (deprecated in 2023) have reached end-of-life and have been removed from the CRDs.

Unless you are using Flux Operator to deploy the Flux controllers, you must run the flux migrate command on clusters before upgrading.

For more details, please refer to the Flux v2.7 upgrade guide.

Components changelog

New Documentation

CLI changelog

New Contributors

Full Changelog: https://github.com/fluxcd/flux2/compare/v2.6.0...v2.7.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [fluxcd/flux2](https://github.com/fluxcd/flux2) | minor | `v2.6.4` -> `v2.7.0` | --- ### Release Notes <details> <summary>fluxcd/flux2 (fluxcd/flux2)</summary> ### [`v2.7.0`](https://github.com/fluxcd/flux2/releases/tag/v2.7.0) [Compare Source](https://github.com/fluxcd/flux2/compare/v2.6.4...v2.7.0) #### Highlights Flux v2.7.0 is a feature release. Users are encouraged to upgrade for the best experience. For a compressive overview of new features and API changes included in this release, please refer to the [Announcing Flux 2.7 GA blog post](https://fluxcd.io/blog/2025/09/flux-v2.7.0/). Overview of the new features: - General availability release of the Image Automation APIs (`ImagePolicy`, `ImageRepository`, `ImageUpdateAutomation`) - Watch for changes in ConfigMaps and Secrets references (`Kustomization`, `HelmRelease`) - Support for remote cluster authentication using Workload Identity (`Kustomization`, `HelmRelease`) - Extend the readiness evaluation of dependencies with CEL expressions (`Kustomization`, `HelmRelease`) - Support for global SOPS Age decryption keys on single-tenant clusters (`Kustomization`) - Support for optional Kustomize components (`Kustomization`) - Introduce `RetryOnFailure` lifecycle management strategy (`HelmRelease`) - Support mTLS for sending alerts to external systems (`Provider`) - Object-level workload identity authentication (`Bucket`, `Provider`) - Support mTLS for GitHub App transport (`GitRepository`, `ImageUpdateAutomation`, `Provider`) - OpenTelemetry tracing for `Kustomization` and `HelmRelease` reconciliation (`Provider`) - Support for 3rd-party source controllers (`ExternalArtifact`) - Support for source composition and decomposition patterns (`ArtifactGenerator`) - `CancelHealthCheckOnNewRevision` feature gate (kustomize-controller) - `GitSparseCheckout` feature gate (image-automation-controller) ❤️ Big thanks to all the Flux contributors that helped us with this release! ##### Kubernetes compatibility This release is compatible with the following Kubernetes versions: | Kubernetes version | Minimum required | | ------------------ | ---------------- | | `v1.32` | `>= 1.32.0` | | `v1.33` | `>= 1.33.0` | | `v1.34` | `>= 1.34.1` | > \[!NOTE] > Note that the Flux project offers support only for the latest three minor versions of Kubernetes. > Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as > [ControlPlane](https://control-plane.io/enterprise-for-flux-cd/) that provide enterprise support for Flux. ##### OpenShift compatibility Flux can be installed on Red Hat OpenShift cluster directly from OperatorHub using [Flux Operator](https://operatorhub.io/operator/flux-operator). The operator allows the configuration of Flux multi-tenancy lockdown, network policies, persistent storage, sharding, vertical scaling and the synchronization of the cluster state from Git repositories, OCI artifacts, and S3-compatible storage. #### Upgrade procedure :warning: The Flux APIs `v1beta1` and `v2beta1` (deprecated in 2023) have reached end-of-life and have been removed from the CRDs. Unless you are using [Flux Operator](https://github.com/controlplaneio-fluxcd/flux-operator) to deploy the Flux controllers, you must run the `flux migrate` command on clusters before upgrading. For more details, please refer to the [Flux v2.7 upgrade guide](https://fluxcd.io/blog/2025/09/flux-v2.7.0/#upgrade-procedure). #### Components changelog - source-controller [v1.7.0](https://github.com/fluxcd/source-controller/blob/v1.7.0/CHANGELOG.md) - kustomize-controller [v1.7.0](https://github.com/fluxcd/kustomize-controller/blob/v1.7.0/CHANGELOG.md) - notification-controller [v1.7.0](https://github.com/fluxcd/notification-controller/blob/v1.7.0/CHANGELOG.md) [v1.7.1](https://github.com/fluxcd/notification-controller/blob/v1.7.1/CHANGELOG.md) - helm-controller [v1.4.0](https://github.com/fluxcd/helm-controller/blob/v1.4.0/CHANGELOG.md) - image-reflector-controller [v1.0.0](https://github.com/fluxcd/image-reflector-controller/blob/v1.0.0/CHANGELOG.md) [v1.0.1](https://github.com/fluxcd/image-reflector-controller/blob/v1.0.1/CHANGELOG.md) - image-automation-controller [v1.0.0](https://github.com/fluxcd/image-automation-controller/blob/v1.0.0/CHANGELOG.md) [v1.0.1](https://github.com/fluxcd/image-automation-controller/blob/v1.0.1/CHANGELOG.md) - source-watcher [v2.0.0](https://github.com/fluxcd/source-watcher/blob/v2.0.0/CHANGELOG.md) [v2.0.1](https://github.com/fluxcd/source-watcher/blob/v1.0.1/CHANGELOG.md) ##### New Documentation - [ImageRepository v1 specification](https://fluxcd.io/flux/components/image/imagerepositories) - [ImagePolicy v1 specification](https://fluxcd.io/flux/components/image/imagepolicies) - [ImageUpdateAutomation v1 specification](https://fluxcd.io/flux/components/image/imageupdateautomations) - [ExternalArtifact v1 specification](https://fluxcd.io/flux/components/source/externalartifacts) - [ArtifactGenerator v1beta1 specification](https://fluxcd.io/flux/components/source/artifactgenerators) #### CLI changelog - Add backport label for `v2.6.x` by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5379](https://github.com/fluxcd/flux2/pull/5379) - Update image-reflector-controller to v0.35.1 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5381](https://github.com/fluxcd/flux2/pull/5381) - Add digest pinning to image automation testing by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5383](https://github.com/fluxcd/flux2/pull/5383) - correct small typo by [@&#8203;JIbald](https://github.com/JIbald) in [#&#8203;5388](https://github.com/fluxcd/flux2/pull/5388) - Remove credentials sync manifests by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5347](https://github.com/fluxcd/flux2/pull/5347) - Add sparse checkout to cli by [@&#8203;ba-work](https://github.com/ba-work) in [#&#8203;5389](https://github.com/fluxcd/flux2/pull/5389) - fix: Allow Azure CLI calls in `flux push artifact --provider azure` on DevOps runners by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5390](https://github.com/fluxcd/flux2/pull/5390) - Fix `knownhosts key mismatch` regression bug by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5404](https://github.com/fluxcd/flux2/pull/5404) - refactor: Use `normalize.UnstructuredList` instead of `ssa.SetNativeKindsDefaults` by [@&#8203;cappyzawa](https://github.com/cappyzawa) in [#&#8203;5407](https://github.com/fluxcd/flux2/pull/5407) - Make service-account name configurable in `flux create tenant` by [@&#8203;reiSh6phoo9o](https://github.com/reiSh6phoo9o) in [#&#8203;5402](https://github.com/fluxcd/flux2/pull/5402) - Update toolkit components by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5409](https://github.com/fluxcd/flux2/pull/5409) - refactor: cleanup GetArtifactRegistryCredentials error handling by [@&#8203;cappyzawa](https://github.com/cappyzawa) in [#&#8203;5418](https://github.com/fluxcd/flux2/pull/5418) - Promote image CLI commands to stable by [@&#8203;dgunzy](https://github.com/dgunzy) in [#&#8203;5421](https://github.com/fluxcd/flux2/pull/5421) - Update toolkit components by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5426](https://github.com/fluxcd/flux2/pull/5426) - Bump pkg/ssa to v0.49.0 for CABundle validation fix by [@&#8203;dgunzy](https://github.com/dgunzy) in [#&#8203;5431](https://github.com/fluxcd/flux2/pull/5431) - \[RFC-0010] Add workload identity support for remote clusters by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5434](https://github.com/fluxcd/flux2/pull/5434) - Update toolkit components by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5443](https://github.com/fluxcd/flux2/pull/5443) - Fix `flux push artifact` for insecure registries by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5449](https://github.com/fluxcd/flux2/pull/5449) - \[RFC-0010] Add workload identity support for remote generic clusters by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5452](https://github.com/fluxcd/flux2/pull/5452) - Fix `flux diff kustomization` ignore patterns by [@&#8203;dgunzy](https://github.com/dgunzy) in [#&#8203;5451](https://github.com/fluxcd/flux2/pull/5451) - Update dependencies to Kubernetes 1.33.2 by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5453](https://github.com/fluxcd/flux2/pull/5453) - build(deps): bump the ci group across 1 directory with 7 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;5435](https://github.com/fluxcd/flux2/pull/5435) - Upgrade fluxcd/pkg dependencies by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5455](https://github.com/fluxcd/flux2/pull/5455) - ci: Use GITHUB\_TOKEN for API calls in update workflow by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5460](https://github.com/fluxcd/flux2/pull/5460) - manifests: Add `app.kubernetes.io/part-of: flux` label to controller pods by [@&#8203;pinkavaj](https://github.com/pinkavaj) in [#&#8203;5440](https://github.com/fluxcd/flux2/pull/5440) - Migrate sourcesecret package to runtime/secrets APIs by [@&#8203;cappyzawa](https://github.com/cappyzawa) in [#&#8203;5462](https://github.com/fluxcd/flux2/pull/5462) - Implement `flux migrate` command by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5473](https://github.com/fluxcd/flux2/pull/5473) - \[RFC-0007] Implementation history update by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5480](https://github.com/fluxcd/flux2/pull/5480) - Run conformance tests for Kubernetes 1.34.0 by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5497](https://github.com/fluxcd/flux2/pull/5497) - Update to Kubernetes v1.34.0 and Go 1.25.0 by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5499](https://github.com/fluxcd/flux2/pull/5499) - build(deps): bump the ci group across 1 directory with 10 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;5500](https://github.com/fluxcd/flux2/pull/5500) - Allow the Go runtime to dynamically set `GOMAXPROCS` by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5501](https://github.com/fluxcd/flux2/pull/5501) - fix(events): respect `--all-namespaces` flag by [@&#8203;mohiuddin-khan-shiam](https://github.com/mohiuddin-khan-shiam) in [#&#8203;5414](https://github.com/fluxcd/flux2/pull/5414) - \[RFC-0011] OpenTelemetry Tracing by [@&#8203;adri1197](https://github.com/adri1197) in [#&#8203;5321](https://github.com/fluxcd/flux2/pull/5321) - \[RFC-0012] External Artifact API by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5292](https://github.com/fluxcd/flux2/pull/5292) - Add `--show-history` flag to `debug helmrelease` by [@&#8203;hawkaii](https://github.com/hawkaii) in [#&#8203;5505](https://github.com/fluxcd/flux2/pull/5505) - Skip release candidates on updates by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5507](https://github.com/fluxcd/flux2/pull/5507) - ci: Align azure e2e tests secret names with fluxcd/pkg by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5508](https://github.com/fluxcd/flux2/pull/5508) - Update image-reflector-controller to v1.0.0 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5517](https://github.com/fluxcd/flux2/pull/5517) - Update source-controller to v1.7.0 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5518](https://github.com/fluxcd/flux2/pull/5518) - Add the source-watcher controller to the Flux distribution by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5519](https://github.com/fluxcd/flux2/pull/5519) - Add read-only commands for `ArtifactGenerator` kind by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5520](https://github.com/fluxcd/flux2/pull/5520) - ci: Add source-watcher to the update workflow by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5521](https://github.com/fluxcd/flux2/pull/5521) - Update image-automation-controller to v1.0.0 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5522](https://github.com/fluxcd/flux2/pull/5522) - Update image-reflector-controller to v1.0.1 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5525](https://github.com/fluxcd/flux2/pull/5525) - Implement `flux [reconcile|suspend|resume] image policy` commands by [@&#8203;lukas8219](https://github.com/lukas8219) in [#&#8203;5492](https://github.com/fluxcd/flux2/pull/5492) - Handle `force: enabled` annotation in `flux diff ks` command by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5528](https://github.com/fluxcd/flux2/pull/5528) - ci: Refactor CI with `fluxcd/gha-workflows` by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5529](https://github.com/fluxcd/flux2/pull/5529) - Remove `ArtifactGenerators` during uninstall by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5531](https://github.com/fluxcd/flux2/pull/5531) - Add support for `ExternalArtifact` to `flux trace` by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5532](https://github.com/fluxcd/flux2/pull/5532) - Set Kubernetes 1.32 as min supported version by [@&#8203;stefanprodan](https://github.com/stefanprodan) in [#&#8203;5533](https://github.com/fluxcd/flux2/pull/5533) - build(deps): bump the ci group with 6 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;5535](https://github.com/fluxcd/flux2/pull/5535) - Add support for custom storage namespace in HelmRelease creation by [@&#8203;prasad89](https://github.com/prasad89) in [#&#8203;5534](https://github.com/fluxcd/flux2/pull/5534) - Update toolkit components by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5537](https://github.com/fluxcd/flux2/pull/5537) - ci: remove cron schedule from update by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5539](https://github.com/fluxcd/flux2/pull/5539) - Update source-watcher to v2.0.1 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5540](https://github.com/fluxcd/flux2/pull/5540) - Add `--show-history` flag to `debug kustomization` by [@&#8203;matheuscscp](https://github.com/matheuscscp) in [#&#8203;5541](https://github.com/fluxcd/flux2/pull/5541) - Update image-automation-controller to v1.0.1 by [@&#8203;fluxcdbot](https://github.com/fluxcdbot) in [#&#8203;5542](https://github.com/fluxcd/flux2/pull/5542) - `fluxcd/flux2/action`: Determine latest version without using GitHub API by [@&#8203;RussellAult](https://github.com/RussellAult) in [#&#8203;5509](https://github.com/fluxcd/flux2/pull/5509) #### New Contributors - [@&#8203;JIbald](https://github.com/JIbald) made their first contribution in [#&#8203;5388](https://github.com/fluxcd/flux2/pull/5388) - [@&#8203;ba-work](https://github.com/ba-work) made their first contribution in [#&#8203;5389](https://github.com/fluxcd/flux2/pull/5389) - [@&#8203;cappyzawa](https://github.com/cappyzawa) made their first contribution in [#&#8203;5407](https://github.com/fluxcd/flux2/pull/5407) - [@&#8203;reiSh6phoo9o](https://github.com/reiSh6phoo9o) made their first contribution in [#&#8203;5402](https://github.com/fluxcd/flux2/pull/5402) - [@&#8203;pinkavaj](https://github.com/pinkavaj) made their first contribution in [#&#8203;5440](https://github.com/fluxcd/flux2/pull/5440) - [@&#8203;mohiuddin-khan-shiam](https://github.com/mohiuddin-khan-shiam) made their first contribution in [#&#8203;5414](https://github.com/fluxcd/flux2/pull/5414) - [@&#8203;adri1197](https://github.com/adri1197) made their first contribution in [#&#8203;5321](https://github.com/fluxcd/flux2/pull/5321) - [@&#8203;hawkaii](https://github.com/hawkaii) made their first contribution in [#&#8203;5505](https://github.com/fluxcd/flux2/pull/5505) - [@&#8203;lukas8219](https://github.com/lukas8219) made their first contribution in [#&#8203;5492](https://github.com/fluxcd/flux2/pull/5492) - [@&#8203;prasad89](https://github.com/prasad89) made their first contribution in [#&#8203;5534](https://github.com/fluxcd/flux2/pull/5534) - [@&#8203;RussellAult](https://github.com/RussellAult) made their first contribution in [#&#8203;5509](https://github.com/fluxcd/flux2/pull/5509) **Full Changelog**: <https://github.com/fluxcd/flux2/compare/v2.6.0...v2.7.0> </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS45Ny43IiwidXBkYXRlZEluVmVyIjoiNDEuOTcuNyIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->
aggarwalakshun added 1 commit 2025-10-01 00:04:32 +00:00
Update dependency fluxcd/flux2 to v2.7.0 c79bed0fed
aggarwalakshun merged commit 14d3089d81 into main 2025-10-01 05:38:25 +00:00
aggarwalakshun deleted branch renovate/fluxcd-flux2-2.x 2025-10-01 05:38:25 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
aggarwalakshun
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: aggarwalakshun/public-k3s#334
Delete Branch "renovate/fluxcd-flux2-2.x"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?