Merged
Conversation
Contributor
There was a problem hiding this comment.
Greetings!
Thank you for contributing to this project!
If this is your first time contributing, please make
sure to read the Developer and Contributing Process guides.
Please also mind and follow our Code of Conduct.
Useful commands:
make fmt: Formats the codemake check-diff: Ensures the branch is cleanmake reviewable: Ensures a PR is ready for review
👇 Click on the image for a new way to code review
Legend |
Contributor
Author
|
I run make fmt and it showed 129 diffs 😨 should I commit them in this PR? Also make reviewable is falling but I don't think it is due to these changes |
Member
|
Hey! regarding the controller-runtime update: I have a PR up in #1345 but i don't think we need that version bump for fixing the ciphers. 0.11.2 supports |
Contributor
Author
|
Oh yeah, I may be using go 1.18 and that may be the issue 😛 my bad. I'll try to test in 1.17 I didn't get the sign commits, I did it. I'll try to fix it on my own :) no worries Webhook server is supported but the TLSOpt are not. I was added in https://github.com/kubernetes-sigs/controller-runtime/pull/1897/files and made available in https://github.com/kubernetes-sigs/controller-runtime/releases/tag/v0.12.2 I can wait for your branch to be merged and then rebase on it to catch the go.mod updated. |
Member
|
Ah, i see. I didn't look closely enough at the Server type, thought that would've been stdlib. 👍 I guess then it's better to not get blocked by #1345 and instead go forward with this PR. I'll rebase then later. IIRC k8s 1.24.3 was released, lets bump it to this version all along. |
8d616ac to
7ec8339
Compare
Contributor
Author
|
Test |
Member
|
Just paste in the new value, thats due to the package upgrade! |
7ec8339 to
7777774
Compare
Member
|
/ok-to-test sha=7777774 |
moolen
reviewed
Aug 17, 2022
moolen
reviewed
Aug 17, 2022
moolen
reviewed
Aug 17, 2022
moolen
reviewed
Aug 17, 2022
moolen
reviewed
Aug 17, 2022
Member
moolen
left a comment
There was a problem hiding this comment.
damn 😞, there's an issue with e2e tests. We can't bump to 1.24 yet due to a dependency issue with argocd. In #1345 i split the main go.mod into two modules: 1 for e2e and one for the main app.
I think this is needed here in order to get the tests running.
Member
|
#1345 got merged, that should fix the issue with e2e tests |
7777774 to
9a2b3af
Compare
Member
|
/ok-to-test sha=9a2b3af |
9a2b3af to
fe56575
Compare
Member
|
/ok-to-test sha=fe56575 |
moolen
requested changes
Aug 29, 2022
Member
moolen
left a comment
There was a problem hiding this comment.
The e2e test fails with an issue i missed earlier, a default for the tls-ciphers must be provided, see comment. Could you please take a look at that? 🙏
moolen
reviewed
Aug 29, 2022
| webhookCmd.Flags().DurationVar(&certCheckInterval, "check-interval", 5*time.Minute, "certificate check interval") | ||
| webhookCmd.Flags().DurationVar(&certLookaheadInterval, "lookahead-interval", crds.LookaheadInterval, "certificate check interval") | ||
| // https://go.dev/blog/tls-cipher-suites explains the ciphers selection process | ||
| webhookCmd.Flags().StringVar(&tlsCiphers, "tls-ciphers", "", "comma separated list of tls ciphers allowed."+ |
Member
There was a problem hiding this comment.
Currently tlsCiphers is an empty string, this results in an error cipher <empty string> was not found. Could you please provide the builtin defaults from tls.CipherSuites() (doc)?
CipherSuites returns a list of cipher suites currently implemented by this package, excluding those with security issues, which are returned by InsecureCipherSuites.
I think that should be a sane default
func init () {
defaultCS := computeDefaultCS()
// other stuff
webhookCmd.Flags().StringVar(&tlsCiphers, "tls-ciphers", defaultCS, "...")
}
Contributor
Author
There was a problem hiding this comment.
Oh my 🤦 my bad. I ended up returning an empty list if the string is empty. This will let the TLS options select a sane and safe default.
Let me know if you prefer your suggestion and want to set the defaults on our side!
Member
There was a problem hiding this comment.
sure, that works for me! But i believe we must return nil if we want to fall back to the safe defaults.
fe56575 to
df8631f
Compare
Member
|
/ok-to-test sha=df8631f |
moolen
reviewed
Aug 30, 2022
cmd/webhook.go
Outdated
|
|
||
| func getTLSCipherSuitesIDs(cipherListString string) ([]uint16, error) { | ||
| if cipherListString == "" { | ||
| return []uint16{}, nil |
Member
There was a problem hiding this comment.
the TLS docs say: If CipherSuites is nil, a safe default list is used. I believe we should return nil here, otherwise (if i understand the docs correctly) no ciphers are available for the client 🤔 🤷
Contributor
Author
There was a problem hiding this comment.
You are correct. Sorry about that. Fixed
df8631f to
a4e58ec
Compare
Member
|
/ok-to-test sha=a4e58ec |
moolen
reviewed
Aug 31, 2022
Comment on lines
+113
to
+118
| WebhookServer: &webhook.Server{ | ||
| TLSMinVersion: tlsMinVersion, | ||
| TLSOpts: []func(*tls.Config){ | ||
| mgrTLSOptions, | ||
| }, | ||
| }, |
Member
There was a problem hiding this comment.
I just learned that if you configure options.WebhookServer yourself, then options.Port and options.CertDir does not get copied to options.WebhookServer.Port and options.WebhookServer.CertDir (which makes sense). Instead, we must specify the port and certDir in the options.WebhookServer struct.
Could you please move these options from line 111+1112 down to the &webhook.Server{ ... } struct here?
Member
There was a problem hiding this comment.
I tested it locally, this should bring the server up and e2e tests should be 🥬
Contributor
Author
There was a problem hiding this comment.
I see what you mean! Fixed, thanks!
During our internal security scan, the webhook for external-secrets was flagged because it supports protocol vulnerable to Sweet32 (https://sweet32.info/). In order to avoid the webhook from being flagged, we need to restrict the TLS ciphers on controller runtime. To do this I needed to update the dependency to 0.12.3 and some other conflicting dependencies. Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com>
a4e58ec to
adf835c
Compare
|
Kudos, SonarCloud Quality Gate passed!
|
Member
|
/ok-to-test sha=adf835c |
moolen
approved these changes
Aug 31, 2022
Member
moolen
left a comment
There was a problem hiding this comment.
🥬 LGTM, awesome stuff ! 🎉
Thank you for your contribution and your prompt fixes 🙏
sourav977
added a commit
to cloudant/external-secrets
that referenced
this pull request
Sep 20, 2022
* build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 (external-secrets#1322) * build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 Bumps [sigs.k8s.io/controller-tools](https://github.com/kubernetes-sigs/controller-tools) from 0.9.0 to 0.9.2. - [Release notes](https://github.com/kubernetes-sigs/controller-tools/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-tools/blob/master/RELEASE.md) - [Commits](kubernetes-sigs/controller-tools@v0.9.0...v0.9.2) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-tools dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * fix: re-gen CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * 📚 update references to select "main" instead of "master" (external-secrets#1346) * 📝 update references to select "main" instead of "master" * Remove unused variable * fix: handle empty conversionStrategy (external-secrets#1408) This is for the case when the conversion webhook does not set the conversionStrategy properly (it doesn't run the Defaulter). Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add LF footer copytight (external-secrets#1416) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * 🐛fixes e2e tests (external-secrets#1420) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🐛 Fix/remove dependabot from e2e trusted (external-secrets#1422) * fixes e2e tests Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * dependabot now needs /ok-to-test Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🐛Fixing: github.actor instead of github.author (external-secrets#1424) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * ⬆️build(deps): bump github.com/xanzy/go-gitlab from 0.68.2 to 0.70.0 (external-secrets#1421) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.68.2 to 0.70.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](xanzy/go-gitlab@v0.68.2...v0.70.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump google.golang.org/grpc from 1.47.0 to 1.48.0 (external-secrets#1414) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.48.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.47.0...v1.48.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump github.com/fluxcd/helm-controller/api (external-secrets#1413) Bumps [github.com/fluxcd/helm-controller/api](https://github.com/fluxcd/helm-controller) from 0.22.1 to 0.22.2. - [Release notes](https://github.com/fluxcd/helm-controller/releases) - [Changelog](https://github.com/fluxcd/helm-controller/blob/main/CHANGELOG.md) - [Commits](fluxcd/helm-controller@v0.22.1...v0.22.2) --- updated-dependencies: - dependency-name: github.com/fluxcd/helm-controller/api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump sigstore/cosign-installer from 2.4.1 to 2.5.0 (external-secrets#1412) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.4.1 to 2.5.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@v2.4.1...v2.5.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump azure/setup-helm from 3.1 to 3.3 (external-secrets#1411) Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 3.1 to 3.3. - [Release notes](https://github.com/azure/setup-helm/releases) - [Commits](Azure/setup-helm@v3.1...v3.3) --- updated-dependencies: - dependency-name: azure/setup-helm dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump github.com/fluxcd/source-controller/api (external-secrets#1426) Bumps [github.com/fluxcd/source-controller/api](https://github.com/fluxcd/source-controller) from 0.25.10 to 0.25.11. - [Release notes](https://github.com/fluxcd/source-controller/releases) - [Changelog](https://github.com/fluxcd/source-controller/blob/main/CHANGELOG.md) - [Commits](fluxcd/source-controller@v0.25.10...v0.25.11) --- updated-dependencies: - dependency-name: github.com/fluxcd/source-controller/api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump github.com/Azure/go-autorest/autorest (external-secrets#1425) Bumps [github.com/Azure/go-autorest/autorest](https://github.com/Azure/go-autorest) from 0.11.27 to 0.11.28. - [Release notes](https://github.com/Azure/go-autorest/releases) - [Changelog](https://github.com/Azure/go-autorest/blob/main/CHANGELOG.md) - [Commits](Azure/go-autorest@autorest/v0.11.27...autorest/v0.11.28) --- updated-dependencies: - dependency-name: github.com/Azure/go-autorest/autorest dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ✨Implements dataFrom key rewrite (external-secrets#1381) * Implements dataFrom key rewrite Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * docs: add example to remove invalid characters Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump helm release (external-secrets#1432) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * add missing default values for spec.target (external-secrets#1431) Add missing default values for ExternalSecretTarget on CRD definition Fixes external-secrets#1233 Signed-off-by: Helena Steck <steckhelena@gmail.com> * Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (external-secrets#1437) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](spf13/cobra@v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.1.0 to 0.2.0 (external-secrets#1436) Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md) - [Commits](hashicorp/vault@v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api/auth/kubernetes dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/crossplane/crossplane-runtime from 0.16.0 to 0.17.0 (external-secrets#1435) Bumps [github.com/crossplane/crossplane-runtime](https://github.com/crossplane/crossplane-runtime) from 0.16.0 to 0.17.0. - [Release notes](https://github.com/crossplane/crossplane-runtime/releases) - [Commits](crossplane/crossplane-runtime@v0.16.0...v0.17.0) --- updated-dependencies: - dependency-name: github.com/crossplane/crossplane-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang from 1.18-alpine to 1.19.0-alpine (external-secrets#1434) Bumps golang from 1.18-alpine to 1.19.0-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/AzureAD/microsoft-authentication-library-for-go (external-secrets#1440) Bumps [github.com/AzureAD/microsoft-authentication-library-for-go](https://github.com/AzureAD/microsoft-authentication-library-for-go) from 0.5.2 to 0.5.3. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-go/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-go/blob/dev/RELEASES.md) - [Commits](AzureAD/microsoft-authentication-library-for-go@v0.5.2...v0.5.3) --- updated-dependencies: - dependency-name: github.com/AzureAD/microsoft-authentication-library-for-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fix provisionedNamespaces in Status field of ClusterExternalSecret keeps getting updated non-stop (external-secrets#1441) Signed-off-by: Kewei Ma <kewei@indeed.com> * clean: typo (clister) in azurekv_types (external-secrets#1442) Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> * ⬆️github.com/akeylesslabs/akeyless-go/v2 from 2.16.8 to 2.17.0 (external-secrets#1438) * Bump github.com/akeylesslabs/akeyless-go/v2 from 2.16.8 to 2.17.0 Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.16.8 to 2.17.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](akeylesslabs/akeyless-go@v2.16.8...v2.17.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Fixing linting issues Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🧹 Removing Unknown License from allowed licenses (external-secrets#1446) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 📚Fix comment specifying the default engineVersion. (external-secrets#1450) Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> * fix: AWS attr. dot check off-by-one error (external-secrets#1459) * Fix off-by-one in check for dot in JSON attr. name Signed-off-by: stephen-dexda <stephen@dexda.io> * ⬆️ Bump github.com/prometheus/client_golang (external-secrets#1457) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.2 to 1.13.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.12.2...v1.13.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump github.com/googleapis/gax-go/v2 from 2.4.0 to 2.5.1 (external-secrets#1456) Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go) from 2.4.0 to 2.5.1. - [Release notes](https://github.com/googleapis/gax-go/releases) - [Commits](googleapis/gax-go@v2.4.0...v2.5.1) --- updated-dependencies: - dependency-name: github.com/googleapis/gax-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump github.com/aliyun/alibaba-cloud-sdk-go (external-secrets#1455) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1673 to 1.61.1724. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](aliyun/alibaba-cloud-sdk-go@v1.61.1673...v1.61.1724) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️ Bump helm/chart-testing-action from 2.2.1 to 2.3.0 (external-secrets#1453) Bumps [helm/chart-testing-action](https://github.com/helm/chart-testing-action) from 2.2.1 to 2.3.0. - [Release notes](https://github.com/helm/chart-testing-action/releases) - [Commits](helm/chart-testing-action@v2.2.1...v2.3.0) --- updated-dependencies: - dependency-name: helm/chart-testing-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/Azure/go-autorest/autorest/adal (external-secrets#1463) Bumps [github.com/Azure/go-autorest/autorest/adal](https://github.com/Azure/go-autorest) from 0.9.20 to 0.9.21. - [Release notes](https://github.com/Azure/go-autorest/releases) - [Changelog](https://github.com/Azure/go-autorest/blob/main/CHANGELOG.md) - [Commits](Azure/go-autorest@autorest/adal/v0.9.20...autorest/adal/v0.9.21) --- updated-dependencies: - dependency-name: github.com/Azure/go-autorest/autorest/adal dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/tidwall/gjson from 1.14.1 to 1.14.2 (external-secrets#1461) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.1 to 1.14.2. - [Release notes](https://github.com/tidwall/gjson/releases) - [Commits](tidwall/gjson@v1.14.1...v1.14.2) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.90.0 to 0.92.0 (external-secrets#1462) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.90.0 to 0.92.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.90.0...v0.92.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.70.0 to 0.72.0 (external-secrets#1465) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.70.0 to 0.72.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](xanzy/go-gitlab@v0.70.0...v0.72.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: re-add akeyless url (external-secrets#1468) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: remove convertKeys from aws providers (external-secrets#1470) ConvertKeys is called in the external secrets controller which takes care of mapping the keys. Calling it before returning the data is a bug as it interferes with the new rewrite feature. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add azkv.environmentType (external-secrets#1469) users of USGovCloud, ChinaCloud, GermanCloud need slightly different configuration for AADEndpoint and keyvault resource. This is based on CSI Secret Store Azure KV driver, Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * ✨ Kubernetes v1.24 upgrade (external-secrets#1345) * build(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.3 Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.11.2 to 0.12.3. - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md) - [Commits](kubernetes-sigs/controller-runtime@v0.11.2...v0.12.3) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * feat: bump kubernetes 1.24 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: backwards-compatible vault implementation Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add audiences field to serviceAccountRef This will be used by aws, azure, gcp, kubernetes & vault providers in combination with TokenRequest API: it will _append_ audience claims to provider-specific audiences. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: refactor kubernetes client to match provider/client interfaces the kubernetes provider mixed up provider and client interfaces which made it really hard to reason about. This commit separates into two structs, each implements one interface. The client struct fields have been renamed and annotated so their use and scope is clear. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: deprecate expirationSeconds expirationSeconds is not needed because we generate a service account token on the fly for a single use. There will be no replacement for this. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: rename token fetch audiences field Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: generate CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * chore(deps): bump go.uber.org/zap from 1.21.0 to 1.22.0 (external-secrets#1484) Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.21.0 to 1.22.0. - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](uber-go/zap@v1.21.0...v1.22.0) --- updated-dependencies: - dependency-name: go.uber.org/zap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/go-sdk-core/v5 from 5.10.1 to 5.10.2 (external-secrets#1482) Bumps [github.com/IBM/go-sdk-core/v5](https://github.com/IBM/go-sdk-core) from 5.10.1 to 5.10.2. - [Release notes](https://github.com/IBM/go-sdk-core/releases) - [Changelog](https://github.com/IBM/go-sdk-core/blob/main/CHANGELOG.md) - [Commits](IBM/go-sdk-core@v5.10.1...v5.10.2) --- updated-dependencies: - dependency-name: github.com/IBM/go-sdk-core/v5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigstore/cosign-installer from 2.5.0 to 2.5.1 (external-secrets#1480) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.0 to 2.5.1. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@v2.5.0...v2.5.1) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/secrets-manager-go-sdk (external-secrets#1481) Bumps [github.com/IBM/secrets-manager-go-sdk](https://github.com/IBM/secrets-manager-go-sdk) from 1.0.44 to 1.0.45. - [Release notes](https://github.com/IBM/secrets-manager-go-sdk/releases) - [Commits](IBM/secrets-manager-go-sdk@v1.0.44...v1.0.45) --- updated-dependencies: - dependency-name: github.com/IBM/secrets-manager-go-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.92.0 to 0.93.0 (external-secrets#1483) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.92.0 to 0.93.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.92.0...v0.93.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.72.0 to 0.73.0 (external-secrets#1485) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.72.0 to 0.73.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](xanzy/go-gitlab@v0.72.0...v0.73.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update guides-datafrom-rewrite.md for typo (external-secrets#1491) Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> * chore(deps): bump github.com/onsi/gomega from 1.20.0 to 1.20.1 (external-secrets#1499) Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.20.0 to 1.20.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.20.0...v1.20.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump go.uber.org/zap from 1.22.0 to 1.23.0 (external-secrets#1498) Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.22.0 to 1.23.0. - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](uber-go/zap@v1.22.0...v1.23.0) --- updated-dependencies: - dependency-name: go.uber.org/zap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.52 to 1.44.86 (external-secrets#1496) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.52 to 1.44.86. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.52...v1.44.86) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/akeylesslabs/akeyless-go/v2 (external-secrets#1495) Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.17.0 to 2.18.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](akeylesslabs/akeyless-go@v2.17.0...v2.18.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.73.0 to 0.73.1 (external-secrets#1497) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.73.0 to 0.73.1. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](xanzy/go-gitlab@v0.73.0...v0.73.1) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Small typo fix guides-multi-tenancy.md (external-secrets#1492) Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> * Remove unnecessary space before a colon (external-secrets#1494) Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> * Update ADOPTERS.md (external-secrets#1503) Adding Made People E-commerce agency as adopter Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> * flip order of `err` and nil `secret` variable check in `listSecrets()` function of vault provider (external-secrets#1504) Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> * Add webhook tls options (external-secrets#1466) During our internal security scan, the webhook for external-secrets was flagged because it supports protocol vulnerable to Sweet32 (https://sweet32.info/). In order to avoid the webhook from being flagged, we need to restrict the TLS ciphers on controller runtime. To do this I needed to update the dependency to 0.12.3 and some other conflicting dependencies. Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> * Adding my published blog post (external-secrets#1506) I've added my blog post about ESO and integration with AWS Secrets Manager to this page. Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> * feat: add support matrix, refactor docs (external-secrets#1508) Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> * Add warning due to DNS transfer (external-secrets#1513) Updated Readme with warnings and workaround Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> * chore(deps): bump github.com/onsi/gomega from 1.20.1 to 1.20.2 (external-secrets#1522) Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.20.1 to 1.20.2. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.20.1...v1.20.2) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/tidwall/gjson from 1.14.2 to 1.14.3 (external-secrets#1523) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.2 to 1.14.3. - [Release notes](https://github.com/tidwall/gjson/releases) - [Commits](tidwall/gjson@v1.14.2...v1.14.3) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (external-secrets#1519) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1724 to 1.61.1760. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](aliyun/alibaba-cloud-sdk-go@v1.61.1724...v1.61.1760) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: add stale bot to close issues automatically (external-secrets#1524) Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> * chore(deps): bump github.com/hashicorp/vault/api/auth/ldap (external-secrets#1521) Bumps [github.com/hashicorp/vault/api/auth/ldap](https://github.com/hashicorp/vault) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md) - [Commits](hashicorp/vault@v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api/auth/ldap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: aws parameter store json decode, bump go 1.19 (external-secrets#1525) * fix: parameter store should decode complex json values Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump 0.6.0-rc1 (external-secrets#1538) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * added akeyless k8s auth option (external-secrets#1531) * added akeyless k8s auth option Signed-off-by: Docs <renana@akeyless.io> * chore: refactor provider (external-secrets#1529) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * DNS transfer to CNCF went ✅, we can remove notice (external-secrets#1548) Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> * New Duration Metric (external-secrets#1533) Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> * chore(deps): bump github.com/google/go-cmp from 0.5.8 to 0.5.9 (external-secrets#1545) Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.8 to 0.5.9. - [Release notes](https://github.com/google/go-cmp/releases) - [Commits](google/go-cmp@v0.5.8...v0.5.9) --- updated-dependencies: - dependency-name: github.com/google/go-cmp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigstore/cosign-installer from 2.5.1 to 2.6.0 (external-secrets#1541) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.1 to 2.6.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@v2.5.1...v2.6.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (external-secrets#1543) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1760 to 1.61.1768. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](aliyun/alibaba-cloud-sdk-go@v1.61.1760...v1.61.1768) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump actions/setup-python from 3.1.2 to 4.2.0 (external-secrets#1542) Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.1.2 to 4.2.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@v3.1.2...v4.2.0) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/secrets-manager-go-sdk (external-secrets#1551) Bumps [github.com/IBM/secrets-manager-go-sdk](https://github.com/IBM/secrets-manager-go-sdk) from 1.0.45 to 1.0.46. - [Release notes](https://github.com/IBM/secrets-manager-go-sdk/releases) - [Commits](IBM/secrets-manager-go-sdk@v1.0.45...v1.0.46) --- updated-dependencies: - dependency-name: github.com/IBM/secrets-manager-go-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.94.0 to 0.95.0 (external-secrets#1546) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.94.0 to 0.95.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.94.0...v0.95.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump golang from 1.19.0-alpine to 1.19.1-alpine (external-secrets#1540) Bumps golang from 1.19.0-alpine to 1.19.1-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.91 to 1.44.96 (external-secrets#1550) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.91 to 1.44.96. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](aws/aws-sdk-go@v1.44.91...v1.44.96) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: unmarshal JSON error when empty secrets in Vault (external-secrets#1512) Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * feat: run scanner on pr (external-secrets#1553) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: run trivy only when authenticated (external-secrets#1554) PRs from forked repos can not publish images, hence this scan fails. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: broken links in README (external-secrets#1556) Signed-off-by: robel yemane <ryhgb03@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> * Updated the right path to the field (external-secrets#1557) Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (external-secrets#1562) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1768 to 1.61.1782. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](aliyun/alibaba-cloud-sdk-go@v1.61.1768...v1.61.1782) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/akeylesslabs/akeyless-go/v2 (external-secrets#1560) Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.18.0 to 2.19.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](akeylesslabs/akeyless-go@v2.18.0...v2.19.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/AzureAD/microsoft-authentication-library-for-go (external-secrets#1563) Bumps [github.com/AzureAD/microsoft-authentication-library-for-go](https://github.com/AzureAD/microsoft-authentication-library-for-go) from 0.6.1 to 0.7.0. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-go/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-go/blob/dev/RELEASES.md) - [Commits](AzureAD/microsoft-authentication-library-for-go@v0.6.1...v0.7.0) --- updated-dependencies: - dependency-name: github.com/AzureAD/microsoft-authentication-library-for-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.95.0 to 0.96.0 (external-secrets#1561) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.95.0 to 0.96.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.95.0...v0.96.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.96 to 1.44.101 (external-secrets#1570) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.96 to 1.44.101. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Commits](aws/aws-sdk-go@v1.44.96...v1.44.101) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Helena Steck <steckhelena@gmail.com> Signed-off-by: Kewei Ma <kewei@indeed.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: stephen-dexda <stephen@dexda.io> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Docs <renana@akeyless.io> Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Daniel Quackenbush <25692880+danquack@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Co-authored-by: Helena Steck <steckhelena@gmail.com> Co-authored-by: Kewei Ma <kewei@indeed.com> Co-authored-by: Nandor Magyar <nandor@rocketfuel.pw> Co-authored-by: Tony DevOps <868644+TonyLovesDevOps@users.noreply.github.com> Co-authored-by: stephen-dexda <46443882+stephen-dexda@users.noreply.github.com> Co-authored-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Co-authored-by: Christopher Watford <christopher.watford@gmail.com> Co-authored-by: oddy <56793934+dubs11kt@users.noreply.github.com> Co-authored-by: terrpan <daniel.w.terry@gmail.com> Co-authored-by: Marcel Hoyer <mhoyer@pixelplastic.de> Co-authored-by: João Silva <jp.silva15@gmail.com> Co-authored-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Co-authored-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Co-authored-by: renanaAkeyless <renana@akeyless.io> Co-authored-by: Lucas Severo Alves <lucassalves65@gmail.com> Co-authored-by: Rhaenys <101413492+dreadful-dragon@users.noreply.github.com> Co-authored-by: Sebastián Gómez <1637983+sebagomez@users.noreply.github.com> Co-authored-by: Robel Yemane <ryhgb03@gmail.com>
sourav977
added a commit
to cloudant/external-secrets
that referenced
this pull request
Oct 26, 2022
* rebase with external-secret (#1) * build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 (#1322) * build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 Bumps [sigs.k8s.io/controller-tools](https://github.com/kubernetes-sigs/controller-tools) from 0.9.0 to 0.9.2. - [Release notes](https://github.com/kubernetes-sigs/controller-tools/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-tools/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/controller-tools/compare/v0.9.0...v0.9.2) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-tools dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * fix: re-gen CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * :books: update references to select "main" instead of "master" (#1346) * :memo: update references to select "main" instead of "master" * Remove unused variable * fix: handle empty conversionStrategy (#1408) This is for the case when the conversion webhook does not set the conversionStrategy properly (it doesn't run the Defaulter). Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add LF footer copytight (#1416) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * 🐛fixes e2e tests (#1420) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🐛 Fix/remove dependabot from e2e trusted (#1422) * fixes e2e tests Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * dependabot now needs /ok-to-test Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🐛Fixing: github.actor instead of github.author (#1424) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * ⬆️build(deps): bump github.com/xanzy/go-gitlab from 0.68.2 to 0.70.0 (#1421) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.68.2 to 0.70.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.68.2...v0.70.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump google.golang.org/grpc from 1.47.0 to 1.48.0 (#1414) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.48.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.47.0...v1.48.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump github.com/fluxcd/helm-controller/api (#1413) Bumps [github.com/fluxcd/helm-controller/api](https://github.com/fluxcd/helm-controller) from 0.22.1 to 0.22.2. - [Release notes](https://github.com/fluxcd/helm-controller/releases) - [Changelog](https://github.com/fluxcd/helm-controller/blob/main/CHANGELOG.md) - [Commits](https://github.com/fluxcd/helm-controller/compare/v0.22.1...v0.22.2) --- updated-dependencies: - dependency-name: github.com/fluxcd/helm-controller/api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump sigstore/cosign-installer from 2.4.1 to 2.5.0 (#1412) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.4.1 to 2.5.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v2.4.1...v2.5.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump azure/setup-helm from 3.1 to 3.3 (#1411) Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 3.1 to 3.3. - [Release notes](https://github.com/azure/setup-helm/releases) - [Commits](https://github.com/azure/setup-helm/compare/v3.1...v3.3) --- updated-dependencies: - dependency-name: azure/setup-helm dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/fluxcd/source-controller/api (#1426) Bumps [github.com/fluxcd/source-controller/api](https://github.com/fluxcd/source-controller) from 0.25.10 to 0.25.11. - [Release notes](https://github.com/fluxcd/source-controller/releases) - [Changelog](https://github.com/fluxcd/source-controller/blob/main/CHANGELOG.md) - [Commits](https://github.com/fluxcd/source-controller/compare/v0.25.10...v0.25.11) --- updated-dependencies: - dependency-name: github.com/fluxcd/source-controller/api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/Azure/go-autorest/autorest (#1425) Bumps [github.com/Azure/go-autorest/autorest](https://github.com/Azure/go-autorest) from 0.11.27 to 0.11.28. - [Release notes](https://github.com/Azure/go-autorest/releases) - [Changelog](https://github.com/Azure/go-autorest/blob/main/CHANGELOG.md) - [Commits](https://github.com/Azure/go-autorest/compare/autorest/v0.11.27...autorest/v0.11.28) --- updated-dependencies: - dependency-name: github.com/Azure/go-autorest/autorest dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ✨Implements dataFrom key rewrite (#1381) * Implements dataFrom key rewrite Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * docs: add example to remove invalid characters Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump helm release (#1432) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * add missing default values for spec.target (#1431) Add missing default values for ExternalSecretTarget on CRD definition Fixes #1233 Signed-off-by: Helena Steck <steckhelena@gmail.com> * Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#1437) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.1.0 to 0.2.0 (#1436) Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md) - [Commits](https://github.com/hashicorp/vault/compare/v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api/auth/kubernetes dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/crossplane/crossplane-runtime from 0.16.0 to 0.17.0 (#1435) Bumps [github.com/crossplane/crossplane-runtime](https://github.com/crossplane/crossplane-runtime) from 0.16.0 to 0.17.0. - [Release notes](https://github.com/crossplane/crossplane-runtime/releases) - [Commits](https://github.com/crossplane/crossplane-runtime/compare/v0.16.0...v0.17.0) --- updated-dependencies: - dependency-name: github.com/crossplane/crossplane-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang from 1.18-alpine to 1.19.0-alpine (#1434) Bumps golang from 1.18-alpine to 1.19.0-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/AzureAD/microsoft-authentication-library-for-go (#1440) Bumps [github.com/AzureAD/microsoft-authentication-library-for-go](https://github.com/AzureAD/microsoft-authentication-library-for-go) from 0.5.2 to 0.5.3. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-go/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-go/blob/dev/RELEASES.md) - [Commits](https://github.com/AzureAD/microsoft-authentication-library-for-go/compare/v0.5.2...v0.5.3) --- updated-dependencies: - dependency-name: github.com/AzureAD/microsoft-authentication-library-for-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fix provisionedNamespaces in Status field of ClusterExternalSecret keeps getting updated non-stop (#1441) Signed-off-by: Kewei Ma <kewei@indeed.com> * clean: typo (clister) in azurekv_types (#1442) Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> * ⬆️github.com/akeylesslabs/akeyless-go/v2 from 2.16.8 to 2.17.0 (#1438) * Bump github.com/akeylesslabs/akeyless-go/v2 from 2.16.8 to 2.17.0 Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.16.8 to 2.17.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](https://github.com/akeylesslabs/akeyless-go/compare/v2.16.8...v2.17.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Fixing linting issues Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🧹 Removing Unknown License from allowed licenses (#1446) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 📚Fix comment specifying the default engineVersion. (#1450) Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> * fix: AWS attr. dot check off-by-one error (#1459) * Fix off-by-one in check for dot in JSON attr. name Signed-off-by: stephen-dexda <stephen@dexda.io> * :arrow_up: Bump github.com/prometheus/client_golang (#1457) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.2 to 1.13.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.12.2...v1.13.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/googleapis/gax-go/v2 from 2.4.0 to 2.5.1 (#1456) Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go) from 2.4.0 to 2.5.1. - [Release notes](https://github.com/googleapis/gax-go/releases) - [Commits](https://github.com/googleapis/gax-go/compare/v2.4.0...v2.5.1) --- updated-dependencies: - dependency-name: github.com/googleapis/gax-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/aliyun/alibaba-cloud-sdk-go (#1455) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1673 to 1.61.1724. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1673...v1.61.1724) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump helm/chart-testing-action from 2.2.1 to 2.3.0 (#1453) Bumps [helm/chart-testing-action](https://github.com/helm/chart-testing-action) from 2.2.1 to 2.3.0. - [Release notes](https://github.com/helm/chart-testing-action/releases) - [Commits](https://github.com/helm/chart-testing-action/compare/v2.2.1...v2.3.0) --- updated-dependencies: - dependency-name: helm/chart-testing-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/Azure/go-autorest/autorest/adal (#1463) Bumps [github.com/Azure/go-autorest/autorest/adal](https://github.com/Azure/go-autorest) from 0.9.20 to 0.9.21. - [Release notes](https://github.com/Azure/go-autorest/releases) - [Changelog](https://github.com/Azure/go-autorest/blob/main/CHANGELOG.md) - [Commits](https://github.com/Azure/go-autorest/compare/autorest/adal/v0.9.20...autorest/adal/v0.9.21) --- updated-dependencies: - dependency-name: github.com/Azure/go-autorest/autorest/adal dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/tidwall/gjson from 1.14.1 to 1.14.2 (#1461) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.1 to 1.14.2. - [Release notes](https://github.com/tidwall/gjson/releases) - [Commits](https://github.com/tidwall/gjson/compare/v1.14.1...v1.14.2) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.90.0 to 0.92.0 (#1462) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.90.0 to 0.92.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.90.0...v0.92.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.70.0 to 0.72.0 (#1465) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.70.0 to 0.72.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.70.0...v0.72.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: re-add akeyless url (#1468) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: remove convertKeys from aws providers (#1470) ConvertKeys is called in the external secrets controller which takes care of mapping the keys. Calling it before returning the data is a bug as it interferes with the new rewrite feature. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add azkv.environmentType (#1469) users of USGovCloud, ChinaCloud, GermanCloud need slightly different configuration for AADEndpoint and keyvault resource. This is based on CSI Secret Store Azure KV driver, Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * :sparkles: Kubernetes v1.24 upgrade (#1345) * build(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.3 Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.11.2 to 0.12.3. - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.11.2...v0.12.3) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * feat: bump kubernetes 1.24 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: backwards-compatible vault implementation Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add audiences field to serviceAccountRef This will be used by aws, azure, gcp, kubernetes & vault providers in combination with TokenRequest API: it will _append_ audience claims to provider-specific audiences. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: refactor kubernetes client to match provider/client interfaces the kubernetes provider mixed up provider and client interfaces which made it really hard to reason about. This commit separates into two structs, each implements one interface. The client struct fields have been renamed and annotated so their use and scope is clear. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: deprecate expirationSeconds expirationSeconds is not needed because we generate a service account token on the fly for a single use. There will be no replacement for this. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: rename token fetch audiences field Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: generate CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * chore(deps): bump go.uber.org/zap from 1.21.0 to 1.22.0 (#1484) Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.21.0 to 1.22.0. - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/zap/compare/v1.21.0...v1.22.0) --- updated-dependencies: - dependency-name: go.uber.org/zap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/go-sdk-core/v5 from 5.10.1 to 5.10.2 (#1482) Bumps [github.com/IBM/go-sdk-core/v5](https://github.com/IBM/go-sdk-core) from 5.10.1 to 5.10.2. - [Release notes](https://github.com/IBM/go-sdk-core/releases) - [Changelog](https://github.com/IBM/go-sdk-core/blob/main/CHANGELOG.md) - [Commits](https://github.com/IBM/go-sdk-core/compare/v5.10.1...v5.10.2) --- updated-dependencies: - dependency-name: github.com/IBM/go-sdk-core/v5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigstore/cosign-installer from 2.5.0 to 2.5.1 (#1480) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.0 to 2.5.1. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.0...v2.5.1) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/secrets-manager-go-sdk (#1481) Bumps [github.com/IBM/secrets-manager-go-sdk](https://github.com/IBM/secrets-manager-go-sdk) from 1.0.44 to 1.0.45. - [Release notes](https://github.com/IBM/secrets-manager-go-sdk/releases) - [Commits](https://github.com/IBM/secrets-manager-go-sdk/compare/v1.0.44...v1.0.45) --- updated-dependencies: - dependency-name: github.com/IBM/secrets-manager-go-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.92.0 to 0.93.0 (#1483) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.92.0 to 0.93.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.92.0...v0.93.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.72.0 to 0.73.0 (#1485) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.72.0 to 0.73.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.72.0...v0.73.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update guides-datafrom-rewrite.md for typo (#1491) Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> * chore(deps): bump github.com/onsi/gomega from 1.20.0 to 1.20.1 (#1499) Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.20.0 to 1.20.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](https://github.com/onsi/gomega/compare/v1.20.0...v1.20.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump go.uber.org/zap from 1.22.0 to 1.23.0 (#1498) Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.22.0 to 1.23.0. - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/zap/compare/v1.22.0...v1.23.0) --- updated-dependencies: - dependency-name: go.uber.org/zap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.52 to 1.44.86 (#1496) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.52 to 1.44.86. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.52...v1.44.86) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/akeylesslabs/akeyless-go/v2 (#1495) Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.17.0 to 2.18.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](https://github.com/akeylesslabs/akeyless-go/compare/v2.17.0...v2.18.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.73.0 to 0.73.1 (#1497) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.73.0 to 0.73.1. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.73.0...v0.73.1) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Small typo fix guides-multi-tenancy.md (#1492) Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> * Remove unnecessary space before a colon (#1494) Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> * Update ADOPTERS.md (#1503) Adding Made People E-commerce agency as adopter Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> * flip order of `err` and nil `secret` variable check in `listSecrets()` function of vault provider (#1504) Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> * Add webhook tls options (#1466) During our internal security scan, the webhook for external-secrets was flagged because it supports protocol vulnerable to Sweet32 (https://sweet32.info/). In order to avoid the webhook from being flagged, we need to restrict the TLS ciphers on controller runtime. To do this I needed to update the dependency to 0.12.3 and some other conflicting dependencies. Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> * Adding my published blog post (#1506) I've added my blog post about ESO and integration with AWS Secrets Manager to this page. Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> * feat: add support matrix, refactor docs (#1508) Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> * Add warning due to DNS transfer (#1513) Updated Readme with warnings and workaround Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> * chore(deps): bump github.com/onsi/gomega from 1.20.1 to 1.20.2 (#1522) Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.20.1 to 1.20.2. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](https://github.com/onsi/gomega/compare/v1.20.1...v1.20.2) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/tidwall/gjson from 1.14.2 to 1.14.3 (#1523) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.2 to 1.14.3. - [Release notes](https://github.com/tidwall/gjson/releases) - [Commits](https://github.com/tidwall/gjson/compare/v1.14.2...v1.14.3) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (#1519) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1724 to 1.61.1760. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1724...v1.61.1760) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: add stale bot to close issues automatically (#1524) Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> * chore(deps): bump github.com/hashicorp/vault/api/auth/ldap (#1521) Bumps [github.com/hashicorp/vault/api/auth/ldap](https://github.com/hashicorp/vault) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md) - [Commits](https://github.com/hashicorp/vault/compare/v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api/auth/ldap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: aws parameter store json decode, bump go 1.19 (#1525) * fix: parameter store should decode complex json values Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump 0.6.0-rc1 (#1538) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * added akeyless k8s auth option (#1531) * added akeyless k8s auth option Signed-off-by: Docs <renana@akeyless.io> * chore: refactor provider (#1529) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * DNS transfer to CNCF went ✅, we can remove notice (#1548) Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> * New Duration Metric (#1533) Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> * chore(deps): bump github.com/google/go-cmp from 0.5.8 to 0.5.9 (#1545) Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.8 to 0.5.9. - [Release notes](https://github.com/google/go-cmp/releases) - [Commits](https://github.com/google/go-cmp/compare/v0.5.8...v0.5.9) --- updated-dependencies: - dependency-name: github.com/google/go-cmp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigstore/cosign-installer from 2.5.1 to 2.6.0 (#1541) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.1 to 2.6.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.1...v2.6.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (#1543) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1760 to 1.61.1768. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1760...v1.61.1768) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump actions/setup-python from 3.1.2 to 4.2.0 (#1542) Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.1.2 to 4.2.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3.1.2...v4.2.0) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/secrets-manager-go-sdk (#1551) Bumps [github.com/IBM/secrets-manager-go-sdk](https://github.com/IBM/secrets-manager-go-sdk) from 1.0.45 to 1.0.46. - [Release notes](https://github.com/IBM/secrets-manager-go-sdk/releases) - [Commits](https://github.com/IBM/secrets-manager-go-sdk/compare/v1.0.45...v1.0.46) --- updated-dependencies: - dependency-name: github.com/IBM/secrets-manager-go-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.94.0 to 0.95.0 (#1546) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.94.0 to 0.95.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.94.0...v0.95.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump golang from 1.19.0-alpine to 1.19.1-alpine (#1540) Bumps golang from 1.19.0-alpine to 1.19.1-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.91 to 1.44.96 (#1550) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.91 to 1.44.96. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.91...v1.44.96) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: unmarshal JSON error when empty secrets in Vault (#1512) Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * feat: run scanner on pr (#1553) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: run trivy only when authenticated (#1554) PRs from forked repos can not publish images, hence this scan fails. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: broken links in README (#1556) Signed-off-by: robel yemane <ryhgb03@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> * Updated the right path to the field (#1557) Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (#1562) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1768 to 1.61.1782. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1768...v1.61.1782) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/akeylesslabs/akeyless-go/v2 (#1560) Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.18.0 to 2.19.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](https://github.com/akeylesslabs/akeyless-go/compare/v2.18.0...v2.19.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/AzureAD/microsoft-authentication-library-for-go (#1563) Bumps [github.com/AzureAD/microsoft-authentication-library-for-go](https://github.com/AzureAD/microsoft-authentication-library-for-go) from 0.6.1 to 0.7.0. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-go/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-go/blob/dev/RELEASES.md) - [Commits](https://github.com/AzureAD/microsoft-authentication-library-for-go/compare/v0.6.1...v0.7.0) --- updated-dependencies: - dependency-name: github.com/AzureAD/microsoft-authentication-library-for-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.95.0 to 0.96.0 (#1561) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.95.0 to 0.96.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.95.0...v0.96.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.96 to 1.44.101 (#1570) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.96 to 1.44.101. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.96...v1.44.101) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Helena Steck <steckhelena@gmail.com> Signed-off-by: Kewei Ma <kewei@indeed.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: stephen-dexda <stephen@dexda.io> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Docs <renana@akeyless.io> Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Daniel Quackenbush <25692880+danquack@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Co-authored-by: Helena Steck <steckhelena@gmail.com> Co-authored-by: Kewei Ma <kewei@indeed.com> Co-authored-by: Nandor Magyar <nandor@rocketfuel.pw> Co-authored-by: Tony DevOps <868644+TonyLovesDevOps@users.noreply.github.com> Co-authored-by: stephen-dexda <46443882+stephen-dexda@users.noreply.github.com> Co-authored-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Co-authored-by: Christopher Watford <christopher.watford@gmail.com> Co-authored-by: oddy <56793934+dubs11kt@users.noreply.github.com> Co-authored-by: terrpan <daniel.w.terry@gmail.com> Co-authored-by: Marcel Hoyer <mhoyer@pixelplastic.de> Co-authored-by: João Silva <jp.silva15@gmail.com> Co-authored-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Co-authored-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Co-authored-by: renanaAkeyless <renana@akeyless.io> Co-authored-by: Lucas Severo Alves <lucassalves65@gmail.com> Co-authored-by: Rhaenys <101413492+dreadful-dragon@users.noreply.github.com> Co-authored-by: Sebastián Gómez <1637983+sebagomez@users.noreply.github.com> Co-authored-by: Robel Yemane <ryhgb03@gmail.com> * Initial Commit initial commit. Added secretstore_chef_types.go file Author: Sourav Patnaik <souravpatnaik123@gmail.com> Date: Tue Sep 20 18:58:32 2022 +0530 * implemented NewClient - implemented NewClient() in pkg/provider/chef/chef.go file - implemented chef types under vibeta1 package A description that is wrapped about 72 chars so shows up decently in `git log`. * resolve merge conflict in files * removed lint errors * Chef ESO Dev ValidateStore() implementation. (#2) * Implemented ValidateStore - implemented ValidateStore() in pkg/provider/chef/chef.go file - ValidateStore() is a function which checks if the provided secret store is valid. Signed-off-by: Subroto Roy <subroto.roy@ibm.com> Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> * Checks if Provider is nil * Implemented lint suggestions. * Added header for check in pkg/provider/chef/chef.go * Removed chef types from v1alpha1 * added test case added TestValidateStore in provider/chef/chef_test.go file Signed-off-by: Subroto Roy <subroto.roy@ibm.com> Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> Co-authored-by: Subroto Roy <subroto.roy@ibm.com> Co-authored-by: Sourav Patnaik <souravpatnaik123@gmail.com> * Added commonValidation function (#5) * Added commonValidation method * Modified commonValidation to include other validations form validate store and renamed it to getChefProvider * replace github.com/go-chef/chef v0.28.0 => github.com/chef/go-chef v0.4.5 * resolved merge conflict * Added more test cases. * Param types combined as per linter suggestion. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Helena Steck <steckhelena@gmail.com> Signed-off-by: Kewei Ma <kewei@indeed.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: stephen-dexda <stephen@dexda.io> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Docs <renana@akeyless.io> Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> Signed-off-by: Subroto Roy <subroto.roy@ibm.com> Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Daniel Quackenbush <25692880+danquack@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Co-authored-by: Helena Steck <steckhelena@gmail.com> Co-authored-by: Kewei Ma <kewei@indeed.com> Co-authored-by: Nandor Magyar <nandor@rocketfuel.pw> Co-authored-by: Tony DevOps <868644+TonyLovesDevOps@users.noreply.github.com> Co-authored-by: stephen-dexda <46443882+stephen-dexda@users.noreply.github.com> Co-authored-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Co-authored-by: Christopher Watford <christopher.watford@gmail.com> Co-authored-by: oddy <56793934+dubs11kt@users.noreply.github.com> Co-authored-by: terrpan <daniel.w.terry@gmail.com> Co-authored-by: Marcel Hoyer <mhoyer@pixelplastic.de> Co-authored-by: João Silva <jp.silva15@gmail.com> Co-authored-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Co-authored-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Co-authored-by: renanaAkeyless <renana@akeyless.io> Co-authored-by: Lucas Severo Alves <lucassalves65@gmail.com> Co-authored-by: Rhaenys <101413492+dreadful-dragon@users.noreply.github.com> Co-authored-by: Sebastián Gómez <1637983+sebagomez@users.noreply.github.com> Co-authored-by: Robel Yemane <ryhgb03@gmail.com> Co-authored-by: Sourav Patnaik <Sourav.Patnaik@ibm.com> Co-authored-by: Subroto Roy <42340771+SubrotoRoy@users.noreply.github.com> Co-authored-by: Subroto Roy <subroto.roy@ibm.com> Co-authored-by: Subroto Roy <subrotoroy007@gmail.com>
sourav977
added a commit
to cloudant/external-secrets
that referenced
this pull request
Dec 7, 2023
* rebase with external-secret (#1) * build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 (#1322) * build(deps): bump sigs.k8s.io/controller-tools from 0.9.0 to 0.9.2 Bumps [sigs.k8s.io/controller-tools](https://github.com/kubernetes-sigs/controller-tools) from 0.9.0 to 0.9.2. - [Release notes](https://github.com/kubernetes-sigs/controller-tools/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-tools/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/controller-tools/compare/v0.9.0...v0.9.2) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-tools dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * fix: re-gen CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * :books: update references to select "main" instead of "master" (#1346) * :memo: update references to select "main" instead of "master" * Remove unused variable * fix: handle empty conversionStrategy (#1408) This is for the case when the conversion webhook does not set the conversionStrategy properly (it doesn't run the Defaulter). Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add LF footer copytight (#1416) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * 🐛fixes e2e tests (#1420) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🐛 Fix/remove dependabot from e2e trusted (#1422) * fixes e2e tests Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * dependabot now needs /ok-to-test Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🐛Fixing: github.actor instead of github.author (#1424) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * ⬆️build(deps): bump github.com/xanzy/go-gitlab from 0.68.2 to 0.70.0 (#1421) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.68.2 to 0.70.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.68.2...v0.70.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump google.golang.org/grpc from 1.47.0 to 1.48.0 (#1414) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.48.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.47.0...v1.48.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump github.com/fluxcd/helm-controller/api (#1413) Bumps [github.com/fluxcd/helm-controller/api](https://github.com/fluxcd/helm-controller) from 0.22.1 to 0.22.2. - [Release notes](https://github.com/fluxcd/helm-controller/releases) - [Changelog](https://github.com/fluxcd/helm-controller/blob/main/CHANGELOG.md) - [Commits](https://github.com/fluxcd/helm-controller/compare/v0.22.1...v0.22.2) --- updated-dependencies: - dependency-name: github.com/fluxcd/helm-controller/api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump sigstore/cosign-installer from 2.4.1 to 2.5.0 (#1412) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.4.1 to 2.5.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v2.4.1...v2.5.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ⬆️build(deps): bump azure/setup-helm from 3.1 to 3.3 (#1411) Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 3.1 to 3.3. - [Release notes](https://github.com/azure/setup-helm/releases) - [Commits](https://github.com/azure/setup-helm/compare/v3.1...v3.3) --- updated-dependencies: - dependency-name: azure/setup-helm dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/fluxcd/source-controller/api (#1426) Bumps [github.com/fluxcd/source-controller/api](https://github.com/fluxcd/source-controller) from 0.25.10 to 0.25.11. - [Release notes](https://github.com/fluxcd/source-controller/releases) - [Changelog](https://github.com/fluxcd/source-controller/blob/main/CHANGELOG.md) - [Commits](https://github.com/fluxcd/source-controller/compare/v0.25.10...v0.25.11) --- updated-dependencies: - dependency-name: github.com/fluxcd/source-controller/api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/Azure/go-autorest/autorest (#1425) Bumps [github.com/Azure/go-autorest/autorest](https://github.com/Azure/go-autorest) from 0.11.27 to 0.11.28. - [Release notes](https://github.com/Azure/go-autorest/releases) - [Changelog](https://github.com/Azure/go-autorest/blob/main/CHANGELOG.md) - [Commits](https://github.com/Azure/go-autorest/compare/autorest/v0.11.27...autorest/v0.11.28) --- updated-dependencies: - dependency-name: github.com/Azure/go-autorest/autorest dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ✨Implements dataFrom key rewrite (#1381) * Implements dataFrom key rewrite Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * docs: add example to remove invalid characters Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump helm release (#1432) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * add missing default values for spec.target (#1431) Add missing default values for ExternalSecretTarget on CRD definition Fixes #1233 Signed-off-by: Helena Steck <steckhelena@gmail.com> * Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#1437) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.1.0 to 0.2.0 (#1436) Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md) - [Commits](https://github.com/hashicorp/vault/compare/v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api/auth/kubernetes dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/crossplane/crossplane-runtime from 0.16.0 to 0.17.0 (#1435) Bumps [github.com/crossplane/crossplane-runtime](https://github.com/crossplane/crossplane-runtime) from 0.16.0 to 0.17.0. - [Release notes](https://github.com/crossplane/crossplane-runtime/releases) - [Commits](https://github.com/crossplane/crossplane-runtime/compare/v0.16.0...v0.17.0) --- updated-dependencies: - dependency-name: github.com/crossplane/crossplane-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang from 1.18-alpine to 1.19.0-alpine (#1434) Bumps golang from 1.18-alpine to 1.19.0-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/AzureAD/microsoft-authentication-library-for-go (#1440) Bumps [github.com/AzureAD/microsoft-authentication-library-for-go](https://github.com/AzureAD/microsoft-authentication-library-for-go) from 0.5.2 to 0.5.3. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-go/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-go/blob/dev/RELEASES.md) - [Commits](https://github.com/AzureAD/microsoft-authentication-library-for-go/compare/v0.5.2...v0.5.3) --- updated-dependencies: - dependency-name: github.com/AzureAD/microsoft-authentication-library-for-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fix provisionedNamespaces in Status field of ClusterExternalSecret keeps getting updated non-stop (#1441) Signed-off-by: Kewei Ma <kewei@indeed.com> * clean: typo (clister) in azurekv_types (#1442) Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> * ⬆️github.com/akeylesslabs/akeyless-go/v2 from 2.16.8 to 2.17.0 (#1438) * Bump github.com/akeylesslabs/akeyless-go/v2 from 2.16.8 to 2.17.0 Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.16.8 to 2.17.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](https://github.com/akeylesslabs/akeyless-go/compare/v2.16.8...v2.17.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Fixing linting issues Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 🧹 Removing Unknown License from allowed licenses (#1446) Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> * 📚Fix comment specifying the default engineVersion. (#1450) Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> * fix: AWS attr. dot check off-by-one error (#1459) * Fix off-by-one in check for dot in JSON attr. name Signed-off-by: stephen-dexda <stephen@dexda.io> * :arrow_up: Bump github.com/prometheus/client_golang (#1457) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.2 to 1.13.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.12.2...v1.13.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/googleapis/gax-go/v2 from 2.4.0 to 2.5.1 (#1456) Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go) from 2.4.0 to 2.5.1. - [Release notes](https://github.com/googleapis/gax-go/releases) - [Commits](https://github.com/googleapis/gax-go/compare/v2.4.0...v2.5.1) --- updated-dependencies: - dependency-name: github.com/googleapis/gax-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump github.com/aliyun/alibaba-cloud-sdk-go (#1455) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1673 to 1.61.1724. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1673...v1.61.1724) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * :arrow_up: Bump helm/chart-testing-action from 2.2.1 to 2.3.0 (#1453) Bumps [helm/chart-testing-action](https://github.com/helm/chart-testing-action) from 2.2.1 to 2.3.0. - [Release notes](https://github.com/helm/chart-testing-action/releases) - [Commits](https://github.com/helm/chart-testing-action/compare/v2.2.1...v2.3.0) --- updated-dependencies: - dependency-name: helm/chart-testing-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/Azure/go-autorest/autorest/adal (#1463) Bumps [github.com/Azure/go-autorest/autorest/adal](https://github.com/Azure/go-autorest) from 0.9.20 to 0.9.21. - [Release notes](https://github.com/Azure/go-autorest/releases) - [Changelog](https://github.com/Azure/go-autorest/blob/main/CHANGELOG.md) - [Commits](https://github.com/Azure/go-autorest/compare/autorest/adal/v0.9.20...autorest/adal/v0.9.21) --- updated-dependencies: - dependency-name: github.com/Azure/go-autorest/autorest/adal dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/tidwall/gjson from 1.14.1 to 1.14.2 (#1461) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.1 to 1.14.2. - [Release notes](https://github.com/tidwall/gjson/releases) - [Commits](https://github.com/tidwall/gjson/compare/v1.14.1...v1.14.2) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.90.0 to 0.92.0 (#1462) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.90.0 to 0.92.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.90.0...v0.92.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.70.0 to 0.72.0 (#1465) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.70.0 to 0.72.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.70.0...v0.72.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: re-add akeyless url (#1468) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: remove convertKeys from aws providers (#1470) ConvertKeys is called in the external secrets controller which takes care of mapping the keys. Calling it before returning the data is a bug as it interferes with the new rewrite feature. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add azkv.environmentType (#1469) users of USGovCloud, ChinaCloud, GermanCloud need slightly different configuration for AADEndpoint and keyvault resource. This is based on CSI Secret Store Azure KV driver, Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * :sparkles: Kubernetes v1.24 upgrade (#1345) * build(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.3 Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.11.2 to 0.12.3. - [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases) - [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.11.2...v0.12.3) --- updated-dependencies: - dependency-name: sigs.k8s.io/controller-runtime dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * feat: bump kubernetes 1.24 Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: backwards-compatible vault implementation Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: add audiences field to serviceAccountRef This will be used by aws, azure, gcp, kubernetes & vault providers in combination with TokenRequest API: it will _append_ audience claims to provider-specific audiences. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * feat: refactor kubernetes client to match provider/client interfaces the kubernetes provider mixed up provider and client interfaces which made it really hard to reason about. This commit separates into two structs, each implements one interface. The client struct fields have been renamed and annotated so their use and scope is clear. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: deprecate expirationSeconds expirationSeconds is not needed because we generate a service account token on the fly for a single use. There will be no replacement for this. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: rename token fetch audiences field Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: generate CRDs Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> * chore(deps): bump go.uber.org/zap from 1.21.0 to 1.22.0 (#1484) Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.21.0 to 1.22.0. - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/zap/compare/v1.21.0...v1.22.0) --- updated-dependencies: - dependency-name: go.uber.org/zap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/go-sdk-core/v5 from 5.10.1 to 5.10.2 (#1482) Bumps [github.com/IBM/go-sdk-core/v5](https://github.com/IBM/go-sdk-core) from 5.10.1 to 5.10.2. - [Release notes](https://github.com/IBM/go-sdk-core/releases) - [Changelog](https://github.com/IBM/go-sdk-core/blob/main/CHANGELOG.md) - [Commits](https://github.com/IBM/go-sdk-core/compare/v5.10.1...v5.10.2) --- updated-dependencies: - dependency-name: github.com/IBM/go-sdk-core/v5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigstore/cosign-installer from 2.5.0 to 2.5.1 (#1480) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.0 to 2.5.1. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.0...v2.5.1) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/secrets-manager-go-sdk (#1481) Bumps [github.com/IBM/secrets-manager-go-sdk](https://github.com/IBM/secrets-manager-go-sdk) from 1.0.44 to 1.0.45. - [Release notes](https://github.com/IBM/secrets-manager-go-sdk/releases) - [Commits](https://github.com/IBM/secrets-manager-go-sdk/compare/v1.0.44...v1.0.45) --- updated-dependencies: - dependency-name: github.com/IBM/secrets-manager-go-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.92.0 to 0.93.0 (#1483) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.92.0 to 0.93.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.92.0...v0.93.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.72.0 to 0.73.0 (#1485) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.72.0 to 0.73.0. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.72.0...v0.73.0) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update guides-datafrom-rewrite.md for typo (#1491) Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> * chore(deps): bump github.com/onsi/gomega from 1.20.0 to 1.20.1 (#1499) Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.20.0 to 1.20.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](https://github.com/onsi/gomega/compare/v1.20.0...v1.20.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump go.uber.org/zap from 1.22.0 to 1.23.0 (#1498) Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.22.0 to 1.23.0. - [Release notes](https://github.com/uber-go/zap/releases) - [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/zap/compare/v1.22.0...v1.23.0) --- updated-dependencies: - dependency-name: go.uber.org/zap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.52 to 1.44.86 (#1496) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.52 to 1.44.86. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.52...v1.44.86) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/akeylesslabs/akeyless-go/v2 (#1495) Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.17.0 to 2.18.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](https://github.com/akeylesslabs/akeyless-go/compare/v2.17.0...v2.18.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/xanzy/go-gitlab from 0.73.0 to 0.73.1 (#1497) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.73.0 to 0.73.1. - [Release notes](https://github.com/xanzy/go-gitlab/releases) - [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go) - [Commits](https://github.com/xanzy/go-gitlab/compare/v0.73.0...v0.73.1) --- updated-dependencies: - dependency-name: github.com/xanzy/go-gitlab dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Small typo fix guides-multi-tenancy.md (#1492) Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> * Remove unnecessary space before a colon (#1494) Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> * Update ADOPTERS.md (#1503) Adding Made People E-commerce agency as adopter Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> * flip order of `err` and nil `secret` variable check in `listSecrets()` function of vault provider (#1504) Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> * Add webhook tls options (#1466) During our internal security scan, the webhook for external-secrets was flagged because it supports protocol vulnerable to Sweet32 (https://sweet32.info/). In order to avoid the webhook from being flagged, we need to restrict the TLS ciphers on controller runtime. To do this I needed to update the dependency to 0.12.3 and some other conflicting dependencies. Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> * Adding my published blog post (#1506) I've added my blog post about ESO and integration with AWS Secrets Manager to this page. Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> * feat: add support matrix, refactor docs (#1508) Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> * Add warning due to DNS transfer (#1513) Updated Readme with warnings and workaround Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> * chore(deps): bump github.com/onsi/gomega from 1.20.1 to 1.20.2 (#1522) Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.20.1 to 1.20.2. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](https://github.com/onsi/gomega/compare/v1.20.1...v1.20.2) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/tidwall/gjson from 1.14.2 to 1.14.3 (#1523) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.2 to 1.14.3. - [Release notes](https://github.com/tidwall/gjson/releases) - [Commits](https://github.com/tidwall/gjson/compare/v1.14.2...v1.14.3) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (#1519) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1724 to 1.61.1760. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1724...v1.61.1760) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: add stale bot to close issues automatically (#1524) Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> * chore(deps): bump github.com/hashicorp/vault/api/auth/ldap (#1521) Bumps [github.com/hashicorp/vault/api/auth/ldap](https://github.com/hashicorp/vault) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md) - [Commits](https://github.com/hashicorp/vault/compare/v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api/auth/ldap dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: aws parameter store json decode, bump go 1.19 (#1525) * fix: parameter store should decode complex json values Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * chore: bump 0.6.0-rc1 (#1538) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * added akeyless k8s auth option (#1531) * added akeyless k8s auth option Signed-off-by: Docs <renana@akeyless.io> * chore: refactor provider (#1529) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * DNS transfer to CNCF went ✅, we can remove notice (#1548) Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> * New Duration Metric (#1533) Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> * chore(deps): bump github.com/google/go-cmp from 0.5.8 to 0.5.9 (#1545) Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.8 to 0.5.9. - [Release notes](https://github.com/google/go-cmp/releases) - [Commits](https://github.com/google/go-cmp/compare/v0.5.8...v0.5.9) --- updated-dependencies: - dependency-name: github.com/google/go-cmp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigstore/cosign-installer from 2.5.1 to 2.6.0 (#1541) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.1 to 2.6.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.1...v2.6.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (#1543) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1760 to 1.61.1768. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1760...v1.61.1768) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump actions/setup-python from 3.1.2 to 4.2.0 (#1542) Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3.1.2 to 4.2.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3.1.2...v4.2.0) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/IBM/secrets-manager-go-sdk (#1551) Bumps [github.com/IBM/secrets-manager-go-sdk](https://github.com/IBM/secrets-manager-go-sdk) from 1.0.45 to 1.0.46. - [Release notes](https://github.com/IBM/secrets-manager-go-sdk/releases) - [Commits](https://github.com/IBM/secrets-manager-go-sdk/compare/v1.0.45...v1.0.46) --- updated-dependencies: - dependency-name: github.com/IBM/secrets-manager-go-sdk dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.94.0 to 0.95.0 (#1546) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.94.0 to 0.95.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.94.0...v0.95.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump golang from 1.19.0-alpine to 1.19.1-alpine (#1540) Bumps golang from 1.19.0-alpine to 1.19.1-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.91 to 1.44.96 (#1550) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.91 to 1.44.96. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.91...v1.44.96) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: unmarshal JSON error when empty secrets in Vault (#1512) Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * feat: run scanner on pr (#1553) Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: run trivy only when authenticated (#1554) PRs from forked repos can not publish images, hence this scan fails. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> * fix: broken links in README (#1556) Signed-off-by: robel yemane <ryhgb03@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> * Updated the right path to the field (#1557) Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> * chore(deps): bump github.com/aliyun/alibaba-cloud-sdk-go (#1562) Bumps [github.com/aliyun/alibaba-cloud-sdk-go](https://github.com/aliyun/alibaba-cloud-sdk-go) from 1.61.1768 to 1.61.1782. - [Release notes](https://github.com/aliyun/alibaba-cloud-sdk-go/releases) - [Changelog](https://github.com/aliyun/alibaba-cloud-sdk-go/blob/master/ChangeLog.txt) - [Commits](https://github.com/aliyun/alibaba-cloud-sdk-go/compare/v1.61.1768...v1.61.1782) --- updated-dependencies: - dependency-name: github.com/aliyun/alibaba-cloud-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/akeylesslabs/akeyless-go/v2 (#1560) Bumps [github.com/akeylesslabs/akeyless-go/v2](https://github.com/akeylesslabs/akeyless-go) from 2.18.0 to 2.19.0. - [Release notes](https://github.com/akeylesslabs/akeyless-go/releases) - [Changelog](https://github.com/akeylesslabs/akeyless-go/blob/master/docs/KmipRenewServerCertificate.md) - [Commits](https://github.com/akeylesslabs/akeyless-go/compare/v2.18.0...v2.19.0) --- updated-dependencies: - dependency-name: github.com/akeylesslabs/akeyless-go/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/AzureAD/microsoft-authentication-library-for-go (#1563) Bumps [github.com/AzureAD/microsoft-authentication-library-for-go](https://github.com/AzureAD/microsoft-authentication-library-for-go) from 0.6.1 to 0.7.0. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-go/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-go/blob/dev/RELEASES.md) - [Commits](https://github.com/AzureAD/microsoft-authentication-library-for-go/compare/v0.6.1...v0.7.0) --- updated-dependencies: - dependency-name: github.com/AzureAD/microsoft-authentication-library-for-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/api from 0.95.0 to 0.96.0 (#1561) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.95.0 to 0.96.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.95.0...v0.96.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/aws/aws-sdk-go from 1.44.96 to 1.44.101 (#1570) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.96 to 1.44.101. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.96...v1.44.101) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Helena Steck <steckhelena@gmail.com> Signed-off-by: Kewei Ma <kewei@indeed.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: stephen-dexda <stephen@dexda.io> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Docs <renana@akeyless.io> Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Daniel Quackenbush <25692880+danquack@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Co-authored-by: Helena Steck <steckhelena@gmail.com> Co-authored-by: Kewei Ma <kewei@indeed.com> Co-authored-by: Nandor Magyar <nandor@rocketfuel.pw> Co-authored-by: Tony DevOps <868644+TonyLovesDevOps@users.noreply.github.com> Co-authored-by: stephen-dexda <46443882+stephen-dexda@users.noreply.github.com> Co-authored-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Co-authored-by: Christopher Watford <christopher.watford@gmail.com> Co-authored-by: oddy <56793934+dubs11kt@users.noreply.github.com> Co-authored-by: terrpan <daniel.w.terry@gmail.com> Co-authored-by: Marcel Hoyer <mhoyer@pixelplastic.de> Co-authored-by: João Silva <jp.silva15@gmail.com> Co-authored-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Co-authored-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Co-authored-by: renanaAkeyless <renana@akeyless.io> Co-authored-by: Lucas Severo Alves <lucassalves65@gmail.com> Co-authored-by: Rhaenys <101413492+dreadful-dragon@users.noreply.github.com> Co-authored-by: Sebastián Gómez <1637983+sebagomez@users.noreply.github.com> Co-authored-by: Robel Yemane <ryhgb03@gmail.com> * Initial Commit initial commit. Added secretstore_chef_types.go file Author: Sourav Patnaik <souravpatnaik123@gmail.com> Date: Tue Sep 20 18:58:32 2022 +0530 * implemented NewClient - implemented NewClient() in pkg/provider/chef/chef.go file - implemented chef types under vibeta1 package A description that is wrapped about 72 chars so shows up decently in `git log`. * resolve merge conflict in files * removed lint errors * Chef ESO Dev ValidateStore() implementation. (#2) * Implemented ValidateStore - implemented ValidateStore() in pkg/provider/chef/chef.go file - ValidateStore() is a function which checks if the provided secret store is valid. Signed-off-by: Subroto Roy <subroto.roy@ibm.com> Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> * Checks if Provider is nil * Implemented lint suggestions. * Added header for check in pkg/provider/chef/chef.go * Removed chef types from v1alpha1 * added test case added TestValidateStore in provider/chef/chef_test.go file Signed-off-by: Subroto Roy <subroto.roy@ibm.com> Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> Co-authored-by: Subroto Roy <subroto.roy@ibm.com> Co-authored-by: Sourav Patnaik <souravpatnaik123@gmail.com> * Added commonValidation function (#5) * Added commonValidation method * Modified commonValidation to include other validations form validate store and renamed it to getChefProvider * replace github.com/go-chef/chef v0.28.0 => github.com/chef/go-chef v0.4.5 * resolved merge conflict * Added more test cases. * Param types combined as per linter suggestion. Signed-off-by: Moritz Johner <beller.moritz@googlemail.com> Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Helena Steck <steckhelena@gmail.com> Signed-off-by: Kewei Ma <kewei@indeed.com> Signed-off-by: Nandor Magyar <nandormagyar.it@gmail.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Tony Worthit <868644+TonyLovesDevOps@users.noreply.github.com> Signed-off-by: stephen-dexda <stephen@dexda.io> Signed-off-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Signed-off-by: Christopher Watford <christopher.watford@gmail.com> Signed-off-by: dubs11kt <dubs11kt@gmail.com> Signed-off-by: terrpan <daniel.w.terry@gmail.com> Signed-off-by: Marcel Hoyer <mhoyer@pixelplastic.de> Signed-off-by: Joao Pedro Silva <jp.silva15@gmail.com> Signed-off-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Signed-off-by: Moritz Johner <Moritz.Johner@form3.tech> Signed-off-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Signed-off-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Signed-off-by: Docs <renana@akeyless.io> Signed-off-by: Lucas Severo Alves <lucassalves65@gmail.com> Signed-off-by: Cristina DE DIOS GONZALEZ <cristina.dedios@amadeus.com> Signed-off-by: Sebastián Gómez <sebastiangomezcorrea@gmail.com> Signed-off-by: robel yemane <ryhgb03@gmail.com> Signed-off-by: Subroto Roy <subroto.roy@ibm.com> Signed-off-by: Subroto Roy <subrotoroy007@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Moritz Johner <beller.moritz@googlemail.com> Co-authored-by: Daniel Quackenbush <25692880+danquack@users.noreply.github.com> Co-authored-by: Moritz Johner <moolen@users.noreply.github.com> Co-authored-by: Gustavo Fernandes de Carvalho <gustavo.carvalho@container-solutions.com> Co-authored-by: Gustavo Fernandes de Carvalho <gusfcarvalho@gmail.com> Co-authored-by: Helena Steck <steckhelena@gmail.com> Co-authored-by: Kewei Ma <kewei@indeed.com> Co-authored-by: Nandor Magyar <nandor@rocketfuel.pw> Co-authored-by: Tony DevOps <868644+TonyLovesDevOps@users.noreply.github.com> Co-authored-by: stephen-dexda <46443882+stephen-dexda@users.noreply.github.com> Co-authored-by: Garrett Edwards <grrttedwards@users.noreply.github.com> Co-authored-by: Christopher Watford <christopher.watford@gmail.com> Co-authored-by: oddy <56793934+dubs11kt@users.noreply.github.com> Co-authored-by: terrpan <daniel.w.terry@gmail.com> Co-authored-by: Marcel Hoyer <mhoyer@pixelplastic.de> Co-authored-by: João Silva <jp.silva15@gmail.com> Co-authored-by: Emin Alemdar <77338109+eminalemdar@users.noreply.github.com> Co-authored-by: Moritz Johner <100202497+moritzjohner-form3@users.noreply.github.com> Co-authored-by: renanaAkeyless <renana@akeyless.io> Co-authored-by: Lucas Severo Alves <lucassalves65@gmail.com> Co-authored-by: Rhaenys <101413492+dreadful-dragon@users.noreply.github.com> Co-authored-by: Sebastián Gómez <1637983+sebagomez@users.noreply.github.com> Co-authored-by: Robel Yemane <ryhgb03@gmail.com> Co-authored-by: Sourav Patnaik <Sourav.Patnaik@ibm.com> Co-authored-by: Subroto Roy <42340771+SubrotoRoy@users.noreply.github.com> Co-authored-by: Subroto Roy <subroto.roy@ibm.com> Co-authored-by: Subroto Roy <subrotoroy007@gmail.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
During our internal security scan, the webhook for external-secrets was
flagged because it supports protocol vulnerable to Sweet32
(https://sweet32.info/). In order to avoid the webhook from being
flagged, we need to restrict the TLS ciphers on controller runtime.
To do this I needed to update the dependency to 0.12.3 and some other
conflicting dependencies.