Merged
Conversation
[ upstream commit 3db9377 ] The current `GetInstancesOfService` function returns all Services that begin with the name, which can lead to removing an endpoint from Service A's EndpointSlice will cause all requests to Service B to fail (If the name of Service A is the prefix of Service B). This patch will fix the matching logic of GetInstancesOfService, ensuring an exact match for the service. Fixes: #43619 Signed-off-by: roc <roc@imroc.cc> Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
[ upstream commit 8a2c681 ] The call-publish-helm job calls a reusable workflow (release.yaml) which needs to sign Helm charts using cosign with GitHub Actions OIDC tokens. According to GitHub Actions documentation[1]: > If jobs.<job_id>.permissions is not specified in the calling job, the called workflow will have the default permissions for the GITHUB_TOKEN. Since the default permissions don't include 'id-token: write', cosign was unable to obtain OIDC tokens and fell back to device flow, which then failed with expired_token errors. [1]: https://docs.github.com/en/actions/using-workflows/reusing-workflows Fixes: 32d801791fdd ("workflows: Add id-token permission to call-publish-helm job") Signed-off-by: André Martins <andre@cilium.io> Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
[ upstream commit f92627b ] Starting from version 1.35 Kuberentes propagetes topology.kubernetes.io labels from nodes to pods. This causes CID duplication and can lead to CID exhaustion. This patch adds !topology.kubernetes.io label filter to default label filters Fixes: #43723 Signed-off-by: Maciej Moscicki <mmoscicki@google.com> Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
[ upstream commit 6a39648 ] Adjust the branch name in the URL to get the latest stable Hubble CLI version. Signed-off-by: Tobias Klauser <tobias@cilium.io> Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
Member
Author
|
/test |
Member
Author
|
ci-clustermesh hit #42089 pre-upgrade (i.e. on the v1.17 version) https://github.com/cilium/cilium/actions/runs/21026287029/job/60451488485 |
tklauser
approved these changes
Jan 15, 2026
squeed
approved these changes
Jan 15, 2026
aanm
approved these changes
Jan 15, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
PRs skipped due to conflicts:
Once this PR is merged, a GitHub action will update the labels of these PRs: