chore(deps): update flux · bram.gotink.be/macharian@c30c24f

+184 -3953

1 changed file

expand all

kubernetes

flux

flux-system

gotk-components.yaml

+184 -3953

kubernetes/flux/flux-system/gotk-components.yaml

··· 1 1 --- 2 2 # This manifest was generated by flux. DO NOT EDIT. 3 - # Flux Version: v2.7.5 3 + # Flux Version: v2.8.1 4 4 # Components: source-controller,kustomize-controller,helm-controller,notification-controller 5 5 apiVersion: v1 6 6 kind: Namespace ··· 8 8 labels: 9 9 app.kubernetes.io/instance: flux-system 10 10 app.kubernetes.io/part-of: flux 11 - app.kubernetes.io/version: v2.7.5 11 + app.kubernetes.io/version: v2.8.1 12 12 pod-security.kubernetes.io/warn: restricted 13 13 pod-security.kubernetes.io/warn-version: latest 14 14 name: flux-system ··· 19 19 labels: 20 20 app.kubernetes.io/instance: flux-system 21 21 app.kubernetes.io/part-of: flux 22 - app.kubernetes.io/version: v2.7.5 22 + app.kubernetes.io/version: v2.8.1 23 23 name: allow-egress 24 24 namespace: flux-system 25 25 spec: ··· 39 39 labels: 40 40 app.kubernetes.io/instance: flux-system 41 41 app.kubernetes.io/part-of: flux 42 - app.kubernetes.io/version: v2.7.5 42 + app.kubernetes.io/version: v2.8.1 43 43 name: allow-scraping 44 44 namespace: flux-system 45 45 spec: ··· 59 59 labels: 60 60 app.kubernetes.io/instance: flux-system 61 61 app.kubernetes.io/part-of: flux 62 - app.kubernetes.io/version: v2.7.5 62 + app.kubernetes.io/version: v2.8.1 63 63 name: allow-webhooks 64 64 namespace: flux-system 65 65 spec: ··· 78 78 labels: 79 79 app.kubernetes.io/instance: flux-system 80 80 app.kubernetes.io/part-of: flux 81 - app.kubernetes.io/version: v2.7.5 81 + app.kubernetes.io/version: v2.8.1 82 82 name: critical-pods-flux-system 83 83 namespace: flux-system 84 84 spec: ··· 98 98 labels: 99 99 app.kubernetes.io/instance: flux-system 100 100 app.kubernetes.io/part-of: flux 101 - app.kubernetes.io/version: v2.7.5 101 + app.kubernetes.io/version: v2.8.1 102 102 name: crd-controller-flux-system 103 103 rules: 104 104 - apiGroups: ··· 204 204 labels: 205 205 app.kubernetes.io/instance: flux-system 206 206 app.kubernetes.io/part-of: flux 207 - app.kubernetes.io/version: v2.7.5 207 + app.kubernetes.io/version: v2.8.1 208 208 rbac.authorization.k8s.io/aggregate-to-admin: "true" 209 209 rbac.authorization.k8s.io/aggregate-to-edit: "true" 210 210 name: flux-edit-flux-system ··· 231 231 labels: 232 232 app.kubernetes.io/instance: flux-system 233 233 app.kubernetes.io/part-of: flux 234 - app.kubernetes.io/version: v2.7.5 234 + app.kubernetes.io/version: v2.8.1 235 235 rbac.authorization.k8s.io/aggregate-to-admin: "true" 236 236 rbac.authorization.k8s.io/aggregate-to-edit: "true" 237 237 rbac.authorization.k8s.io/aggregate-to-view: "true" ··· 257 257 labels: 258 258 app.kubernetes.io/instance: flux-system 259 259 app.kubernetes.io/part-of: flux 260 - app.kubernetes.io/version: v2.7.5 260 + app.kubernetes.io/version: v2.8.1 261 261 name: cluster-reconciler-flux-system 262 262 roleRef: 263 263 apiGroup: rbac.authorization.k8s.io ··· 277 277 labels: 278 278 app.kubernetes.io/instance: flux-system 279 279 app.kubernetes.io/part-of: flux 280 - app.kubernetes.io/version: v2.7.5 280 + app.kubernetes.io/version: v2.8.1 281 281 name: crd-controller-flux-system 282 282 roleRef: 283 283 apiGroup: rbac.authorization.k8s.io ··· 315 315 app.kubernetes.io/component: source-controller 316 316 app.kubernetes.io/instance: flux-system 317 317 app.kubernetes.io/part-of: flux 318 - app.kubernetes.io/version: v2.7.5 318 + app.kubernetes.io/version: v2.8.1 319 319 name: buckets.source.toolkit.fluxcd.io 320 320 spec: 321 321 group: source.toolkit.fluxcd.io ··· 692 692 storage: true 693 693 subresources: 694 694 status: {} 695 - - additionalPrinterColumns: 696 - - jsonPath: .spec.endpoint 697 - name: Endpoint 698 - type: string 699 - - jsonPath: .metadata.creationTimestamp 700 - name: Age 701 - type: date 702 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 703 - name: Ready 704 - type: string 705 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 706 - name: Status 707 - type: string 708 - deprecated: true 709 - deprecationWarning: v1beta2 Bucket is deprecated, upgrade to v1 710 - name: v1beta2 711 - schema: 712 - openAPIV3Schema: 713 - description: Bucket is the Schema for the buckets API. 714 - properties: 715 - apiVersion: 716 - description: |- 717 - APIVersion defines the versioned schema of this representation of an object. 718 - Servers should convert recognized schemas to the latest internal value, and 719 - may reject unrecognized values. 720 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 721 - type: string 722 - kind: 723 - description: |- 724 - Kind is a string value representing the REST resource this object represents. 725 - Servers may infer this from the endpoint the client submits requests to. 726 - Cannot be updated. 727 - In CamelCase. 728 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 729 - type: string 730 - metadata: 731 - type: object 732 - spec: 733 - description: |- 734 - BucketSpec specifies the required configuration to produce an Artifact for 735 - an object storage bucket. 736 - properties: 737 - accessFrom: 738 - description: |- 739 - AccessFrom specifies an Access Control List for allowing cross-namespace 740 - references to this object. 741 - NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092 742 - properties: 743 - namespaceSelectors: 744 - description: |- 745 - NamespaceSelectors is the list of namespace selectors to which this ACL applies. 746 - Items in this list are evaluated using a logical OR operation. 747 - items: 748 - description: |- 749 - NamespaceSelector selects the namespaces to which this ACL applies. 750 - An empty map of MatchLabels matches all namespaces in a cluster. 751 - properties: 752 - matchLabels: 753 - additionalProperties: 754 - type: string 755 - description: |- 756 - MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels 757 - map is equivalent to an element of matchExpressions, whose key field is "key", the 758 - operator is "In", and the values array contains only "value". The requirements are ANDed. 759 - type: object 760 - type: object 761 - type: array 762 - required: 763 - - namespaceSelectors 764 - type: object 765 - bucketName: 766 - description: BucketName is the name of the object storage bucket. 767 - type: string 768 - certSecretRef: 769 - description: |- 770 - CertSecretRef can be given the name of a Secret containing 771 - either or both of 772 - 773 - - a PEM-encoded client certificate (`tls.crt`) and private 774 - key (`tls.key`); 775 - - a PEM-encoded CA certificate (`ca.crt`) 776 - 777 - and whichever are supplied, will be used for connecting to the 778 - bucket. The client cert and key are useful if you are 779 - authenticating with a certificate; the CA cert is useful if 780 - you are using a self-signed server certificate. The Secret must 781 - be of type `Opaque` or `kubernetes.io/tls`. 782 - 783 - This field is only supported for the `generic` provider. 784 - properties: 785 - name: 786 - description: Name of the referent. 787 - type: string 788 - required: 789 - - name 790 - type: object 791 - endpoint: 792 - description: Endpoint is the object storage address the BucketName 793 - is located at. 794 - type: string 795 - ignore: 796 - description: |- 797 - Ignore overrides the set of excluded patterns in the .sourceignore format 798 - (which is the same as .gitignore). If not provided, a default will be used, 799 - consult the documentation for your version to find out what those are. 800 - type: string 801 - insecure: 802 - description: Insecure allows connecting to a non-TLS HTTP Endpoint. 803 - type: boolean 804 - interval: 805 - description: |- 806 - Interval at which the Bucket Endpoint is checked for updates. 807 - This interval is approximate and may be subject to jitter to ensure 808 - efficient use of resources. 809 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 810 - type: string 811 - prefix: 812 - description: Prefix to use for server-side filtering of files in the 813 - Bucket. 814 - type: string 815 - provider: 816 - default: generic 817 - description: |- 818 - Provider of the object storage bucket. 819 - Defaults to 'generic', which expects an S3 (API) compatible object 820 - storage. 821 - enum: 822 - - generic 823 - - aws 824 - - gcp 825 - - azure 826 - type: string 827 - proxySecretRef: 828 - description: |- 829 - ProxySecretRef specifies the Secret containing the proxy configuration 830 - to use while communicating with the Bucket server. 831 - properties: 832 - name: 833 - description: Name of the referent. 834 - type: string 835 - required: 836 - - name 837 - type: object 838 - region: 839 - description: Region of the Endpoint where the BucketName is located 840 - in. 841 - type: string 842 - secretRef: 843 - description: |- 844 - SecretRef specifies the Secret containing authentication credentials 845 - for the Bucket. 846 - properties: 847 - name: 848 - description: Name of the referent. 849 - type: string 850 - required: 851 - - name 852 - type: object 853 - sts: 854 - description: |- 855 - STS specifies the required configuration to use a Security Token 856 - Service for fetching temporary credentials to authenticate in a 857 - Bucket provider. 858 - 859 - This field is only supported for the `aws` and `generic` providers. 860 - properties: 861 - certSecretRef: 862 - description: |- 863 - CertSecretRef can be given the name of a Secret containing 864 - either or both of 865 - 866 - - a PEM-encoded client certificate (`tls.crt`) and private 867 - key (`tls.key`); 868 - - a PEM-encoded CA certificate (`ca.crt`) 869 - 870 - and whichever are supplied, will be used for connecting to the 871 - STS endpoint. The client cert and key are useful if you are 872 - authenticating with a certificate; the CA cert is useful if 873 - you are using a self-signed server certificate. The Secret must 874 - be of type `Opaque` or `kubernetes.io/tls`. 875 - 876 - This field is only supported for the `ldap` provider. 877 - properties: 878 - name: 879 - description: Name of the referent. 880 - type: string 881 - required: 882 - - name 883 - type: object 884 - endpoint: 885 - description: |- 886 - Endpoint is the HTTP/S endpoint of the Security Token Service from 887 - where temporary credentials will be fetched. 888 - pattern: ^(http|https)://.*$ 889 - type: string 890 - provider: 891 - description: Provider of the Security Token Service. 892 - enum: 893 - - aws 894 - - ldap 895 - type: string 896 - secretRef: 897 - description: |- 898 - SecretRef specifies the Secret containing authentication credentials 899 - for the STS endpoint. This Secret must contain the fields `username` 900 - and `password` and is supported only for the `ldap` provider. 901 - properties: 902 - name: 903 - description: Name of the referent. 904 - type: string 905 - required: 906 - - name 907 - type: object 908 - required: 909 - - endpoint 910 - - provider 911 - type: object 912 - suspend: 913 - description: |- 914 - Suspend tells the controller to suspend the reconciliation of this 915 - Bucket. 916 - type: boolean 917 - timeout: 918 - default: 60s 919 - description: Timeout for fetch operations, defaults to 60s. 920 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$ 921 - type: string 922 - required: 923 - - bucketName 924 - - endpoint 925 - - interval 926 - type: object 927 - x-kubernetes-validations: 928 - - message: STS configuration is only supported for the 'aws' and 'generic' 929 - Bucket providers 930 - rule: self.provider == 'aws' || self.provider == 'generic' || !has(self.sts) 931 - - message: '''aws'' is the only supported STS provider for the ''aws'' 932 - Bucket provider' 933 - rule: self.provider != 'aws' || !has(self.sts) || self.sts.provider 934 - == 'aws' 935 - - message: '''ldap'' is the only supported STS provider for the ''generic'' 936 - Bucket provider' 937 - rule: self.provider != 'generic' || !has(self.sts) || self.sts.provider 938 - == 'ldap' 939 - - message: spec.sts.secretRef is not required for the 'aws' STS provider 940 - rule: '!has(self.sts) || self.sts.provider != ''aws'' || !has(self.sts.secretRef)' 941 - - message: spec.sts.certSecretRef is not required for the 'aws' STS provider 942 - rule: '!has(self.sts) || self.sts.provider != ''aws'' || !has(self.sts.certSecretRef)' 943 - status: 944 - default: 945 - observedGeneration: -1 946 - description: BucketStatus records the observed state of a Bucket. 947 - properties: 948 - artifact: 949 - description: Artifact represents the last successful Bucket reconciliation. 950 - properties: 951 - digest: 952 - description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'. 953 - pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$ 954 - type: string 955 - lastUpdateTime: 956 - description: |- 957 - LastUpdateTime is the timestamp corresponding to the last update of the 958 - Artifact. 959 - format: date-time 960 - type: string 961 - metadata: 962 - additionalProperties: 963 - type: string 964 - description: Metadata holds upstream information such as OCI annotations. 965 - type: object 966 - path: 967 - description: |- 968 - Path is the relative file path of the Artifact. It can be used to locate 969 - the file in the root of the Artifact storage on the local file system of 970 - the controller managing the Source. 971 - type: string 972 - revision: 973 - description: |- 974 - Revision is a human-readable identifier traceable in the origin source 975 - system. It can be a Git commit SHA, Git tag, a Helm chart version, etc. 976 - type: string 977 - size: 978 - description: Size is the number of bytes in the file. 979 - format: int64 980 - type: integer 981 - url: 982 - description: |- 983 - URL is the HTTP address of the Artifact as exposed by the controller 984 - managing the Source. It can be used to retrieve the Artifact for 985 - consumption, e.g. by another controller applying the Artifact contents. 986 - type: string 987 - required: 988 - - digest 989 - - lastUpdateTime 990 - - path 991 - - revision 992 - - url 993 - type: object 994 - conditions: 995 - description: Conditions holds the conditions for the Bucket. 996 - items: 997 - description: Condition contains details for one aspect of the current 998 - state of this API Resource. 999 - properties: 1000 - lastTransitionTime: 1001 - description: |- 1002 - lastTransitionTime is the last time the condition transitioned from one status to another. 1003 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 1004 - format: date-time 1005 - type: string 1006 - message: 1007 - description: |- 1008 - message is a human readable message indicating details about the transition. 1009 - This may be an empty string. 1010 - maxLength: 32768 1011 - type: string 1012 - observedGeneration: 1013 - description: |- 1014 - observedGeneration represents the .metadata.generation that the condition was set based upon. 1015 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 1016 - with respect to the current state of the instance. 1017 - format: int64 1018 - minimum: 0 1019 - type: integer 1020 - reason: 1021 - description: |- 1022 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 1023 - Producers of specific condition types may define expected values and meanings for this field, 1024 - and whether the values are considered a guaranteed API. 1025 - The value should be a CamelCase string. 1026 - This field may not be empty. 1027 - maxLength: 1024 1028 - minLength: 1 1029 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 1030 - type: string 1031 - status: 1032 - description: status of the condition, one of True, False, Unknown. 1033 - enum: 1034 - - "True" 1035 - - "False" 1036 - - Unknown 1037 - type: string 1038 - type: 1039 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 1040 - maxLength: 316 1041 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 1042 - type: string 1043 - required: 1044 - - lastTransitionTime 1045 - - message 1046 - - reason 1047 - - status 1048 - - type 1049 - type: object 1050 - type: array 1051 - lastHandledReconcileAt: 1052 - description: |- 1053 - LastHandledReconcileAt holds the value of the most recent 1054 - reconcile request value, so a change of the annotation value 1055 - can be detected. 1056 - type: string 1057 - observedGeneration: 1058 - description: ObservedGeneration is the last observed generation of 1059 - the Bucket object. 1060 - format: int64 1061 - type: integer 1062 - observedIgnore: 1063 - description: |- 1064 - ObservedIgnore is the observed exclusion patterns used for constructing 1065 - the source artifact. 1066 - type: string 1067 - url: 1068 - description: |- 1069 - URL is the dynamic fetch link for the latest Artifact. 1070 - It is provided on a "best effort" basis, and using the precise 1071 - BucketStatus.Artifact data is recommended. 1072 - type: string 1073 - type: object 1074 - type: object 1075 - served: true 1076 - storage: false 1077 - subresources: 1078 - status: {} 1079 695 --- 1080 696 apiVersion: apiextensions.k8s.io/v1 1081 697 kind: CustomResourceDefinition ··· 1086 702 app.kubernetes.io/component: source-controller 1087 703 app.kubernetes.io/instance: flux-system 1088 704 app.kubernetes.io/part-of: flux 1089 - app.kubernetes.io/version: v2.7.5 705 + app.kubernetes.io/version: v2.8.1 1090 706 name: externalartifacts.source.toolkit.fluxcd.io 1091 707 spec: 1092 708 group: source.toolkit.fluxcd.io ··· 1282 898 app.kubernetes.io/component: source-controller 1283 899 app.kubernetes.io/instance: flux-system 1284 900 app.kubernetes.io/part-of: flux 1285 - app.kubernetes.io/version: v2.7.5 901 + app.kubernetes.io/version: v2.8.1 1286 902 name: gitrepositories.source.toolkit.fluxcd.io 1287 903 spec: 1288 904 group: source.toolkit.fluxcd.io ··· 1759 1375 storage: true 1760 1376 subresources: 1761 1377 status: {} 1762 - - additionalPrinterColumns: 1763 - - jsonPath: .spec.url 1764 - name: URL 1765 - type: string 1766 - - jsonPath: .metadata.creationTimestamp 1767 - name: Age 1768 - type: date 1769 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 1770 - name: Ready 1771 - type: string 1772 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 1773 - name: Status 1774 - type: string 1775 - deprecated: true 1776 - deprecationWarning: v1beta2 GitRepository is deprecated, upgrade to v1 1777 - name: v1beta2 1778 - schema: 1779 - openAPIV3Schema: 1780 - description: GitRepository is the Schema for the gitrepositories API. 1781 - properties: 1782 - apiVersion: 1783 - description: |- 1784 - APIVersion defines the versioned schema of this representation of an object. 1785 - Servers should convert recognized schemas to the latest internal value, and 1786 - may reject unrecognized values. 1787 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 1788 - type: string 1789 - kind: 1790 - description: |- 1791 - Kind is a string value representing the REST resource this object represents. 1792 - Servers may infer this from the endpoint the client submits requests to. 1793 - Cannot be updated. 1794 - In CamelCase. 1795 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 1796 - type: string 1797 - metadata: 1798 - type: object 1799 - spec: 1800 - description: |- 1801 - GitRepositorySpec specifies the required configuration to produce an 1802 - Artifact for a Git repository. 1803 - properties: 1804 - accessFrom: 1805 - description: |- 1806 - AccessFrom specifies an Access Control List for allowing cross-namespace 1807 - references to this object. 1808 - NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092 1809 - properties: 1810 - namespaceSelectors: 1811 - description: |- 1812 - NamespaceSelectors is the list of namespace selectors to which this ACL applies. 1813 - Items in this list are evaluated using a logical OR operation. 1814 - items: 1815 - description: |- 1816 - NamespaceSelector selects the namespaces to which this ACL applies. 1817 - An empty map of MatchLabels matches all namespaces in a cluster. 1818 - properties: 1819 - matchLabels: 1820 - additionalProperties: 1821 - type: string 1822 - description: |- 1823 - MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels 1824 - map is equivalent to an element of matchExpressions, whose key field is "key", the 1825 - operator is "In", and the values array contains only "value". The requirements are ANDed. 1826 - type: object 1827 - type: object 1828 - type: array 1829 - required: 1830 - - namespaceSelectors 1831 - type: object 1832 - gitImplementation: 1833 - default: go-git 1834 - description: |- 1835 - GitImplementation specifies which Git client library implementation to 1836 - use. Defaults to 'go-git', valid values are ('go-git', 'libgit2'). 1837 - Deprecated: gitImplementation is deprecated now that 'go-git' is the 1838 - only supported implementation. 1839 - enum: 1840 - - go-git 1841 - - libgit2 1842 - type: string 1843 - ignore: 1844 - description: |- 1845 - Ignore overrides the set of excluded patterns in the .sourceignore format 1846 - (which is the same as .gitignore). If not provided, a default will be used, 1847 - consult the documentation for your version to find out what those are. 1848 - type: string 1849 - include: 1850 - description: |- 1851 - Include specifies a list of GitRepository resources which Artifacts 1852 - should be included in the Artifact produced for this GitRepository. 1853 - items: 1854 - description: |- 1855 - GitRepositoryInclude specifies a local reference to a GitRepository which 1856 - Artifact (sub-)contents must be included, and where they should be placed. 1857 - properties: 1858 - fromPath: 1859 - description: |- 1860 - FromPath specifies the path to copy contents from, defaults to the root 1861 - of the Artifact. 1862 - type: string 1863 - repository: 1864 - description: |- 1865 - GitRepositoryRef specifies the GitRepository which Artifact contents 1866 - must be included. 1867 - properties: 1868 - name: 1869 - description: Name of the referent. 1870 - type: string 1871 - required: 1872 - - name 1873 - type: object 1874 - toPath: 1875 - description: |- 1876 - ToPath specifies the path to copy contents to, defaults to the name of 1877 - the GitRepositoryRef. 1878 - type: string 1879 - required: 1880 - - repository 1881 - type: object 1882 - type: array 1883 - interval: 1884 - description: Interval at which to check the GitRepository for updates. 1885 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 1886 - type: string 1887 - recurseSubmodules: 1888 - description: |- 1889 - RecurseSubmodules enables the initialization of all submodules within 1890 - the GitRepository as cloned from the URL, using their default settings. 1891 - type: boolean 1892 - ref: 1893 - description: |- 1894 - Reference specifies the Git reference to resolve and monitor for 1895 - changes, defaults to the 'master' branch. 1896 - properties: 1897 - branch: 1898 - description: Branch to check out, defaults to 'master' if no other 1899 - field is defined. 1900 - type: string 1901 - commit: 1902 - description: |- 1903 - Commit SHA to check out, takes precedence over all reference fields. 1904 - 1905 - This can be combined with Branch to shallow clone the branch, in which 1906 - the commit is expected to exist. 1907 - type: string 1908 - name: 1909 - description: |- 1910 - Name of the reference to check out; takes precedence over Branch, Tag and SemVer. 1911 - 1912 - It must be a valid Git reference: https://git-scm.com/docs/git-check-ref-format#_description 1913 - Examples: "refs/heads/main", "refs/tags/v0.1.0", "refs/pull/420/head", "refs/merge-requests/1/head" 1914 - type: string 1915 - semver: 1916 - description: SemVer tag expression to check out, takes precedence 1917 - over Tag. 1918 - type: string 1919 - tag: 1920 - description: Tag to check out, takes precedence over Branch. 1921 - type: string 1922 - type: object 1923 - secretRef: 1924 - description: |- 1925 - SecretRef specifies the Secret containing authentication credentials for 1926 - the GitRepository. 1927 - For HTTPS repositories the Secret must contain 'username' and 'password' 1928 - fields for basic auth or 'bearerToken' field for token auth. 1929 - For SSH repositories the Secret must contain 'identity' 1930 - and 'known_hosts' fields. 1931 - properties: 1932 - name: 1933 - description: Name of the referent. 1934 - type: string 1935 - required: 1936 - - name 1937 - type: object 1938 - suspend: 1939 - description: |- 1940 - Suspend tells the controller to suspend the reconciliation of this 1941 - GitRepository. 1942 - type: boolean 1943 - timeout: 1944 - default: 60s 1945 - description: Timeout for Git operations like cloning, defaults to 1946 - 60s. 1947 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$ 1948 - type: string 1949 - url: 1950 - description: URL specifies the Git repository URL, it can be an HTTP/S 1951 - or SSH address. 1952 - pattern: ^(http|https|ssh)://.*$ 1953 - type: string 1954 - verify: 1955 - description: |- 1956 - Verification specifies the configuration to verify the Git commit 1957 - signature(s). 1958 - properties: 1959 - mode: 1960 - description: Mode specifies what Git object should be verified, 1961 - currently ('head'). 1962 - enum: 1963 - - head 1964 - type: string 1965 - secretRef: 1966 - description: |- 1967 - SecretRef specifies the Secret containing the public keys of trusted Git 1968 - authors. 1969 - properties: 1970 - name: 1971 - description: Name of the referent. 1972 - type: string 1973 - required: 1974 - - name 1975 - type: object 1976 - required: 1977 - - mode 1978 - - secretRef 1979 - type: object 1980 - required: 1981 - - interval 1982 - - url 1983 - type: object 1984 - status: 1985 - default: 1986 - observedGeneration: -1 1987 - description: GitRepositoryStatus records the observed state of a Git repository. 1988 - properties: 1989 - artifact: 1990 - description: Artifact represents the last successful GitRepository 1991 - reconciliation. 1992 - properties: 1993 - digest: 1994 - description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'. 1995 - pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$ 1996 - type: string 1997 - lastUpdateTime: 1998 - description: |- 1999 - LastUpdateTime is the timestamp corresponding to the last update of the 2000 - Artifact. 2001 - format: date-time 2002 - type: string 2003 - metadata: 2004 - additionalProperties: 2005 - type: string 2006 - description: Metadata holds upstream information such as OCI annotations. 2007 - type: object 2008 - path: 2009 - description: |- 2010 - Path is the relative file path of the Artifact. It can be used to locate 2011 - the file in the root of the Artifact storage on the local file system of 2012 - the controller managing the Source. 2013 - type: string 2014 - revision: 2015 - description: |- 2016 - Revision is a human-readable identifier traceable in the origin source 2017 - system. It can be a Git commit SHA, Git tag, a Helm chart version, etc. 2018 - type: string 2019 - size: 2020 - description: Size is the number of bytes in the file. 2021 - format: int64 2022 - type: integer 2023 - url: 2024 - description: |- 2025 - URL is the HTTP address of the Artifact as exposed by the controller 2026 - managing the Source. It can be used to retrieve the Artifact for 2027 - consumption, e.g. by another controller applying the Artifact contents. 2028 - type: string 2029 - required: 2030 - - digest 2031 - - lastUpdateTime 2032 - - path 2033 - - revision 2034 - - url 2035 - type: object 2036 - conditions: 2037 - description: Conditions holds the conditions for the GitRepository. 2038 - items: 2039 - description: Condition contains details for one aspect of the current 2040 - state of this API Resource. 2041 - properties: 2042 - lastTransitionTime: 2043 - description: |- 2044 - lastTransitionTime is the last time the condition transitioned from one status to another. 2045 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 2046 - format: date-time 2047 - type: string 2048 - message: 2049 - description: |- 2050 - message is a human readable message indicating details about the transition. 2051 - This may be an empty string. 2052 - maxLength: 32768 2053 - type: string 2054 - observedGeneration: 2055 - description: |- 2056 - observedGeneration represents the .metadata.generation that the condition was set based upon. 2057 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 2058 - with respect to the current state of the instance. 2059 - format: int64 2060 - minimum: 0 2061 - type: integer 2062 - reason: 2063 - description: |- 2064 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 2065 - Producers of specific condition types may define expected values and meanings for this field, 2066 - and whether the values are considered a guaranteed API. 2067 - The value should be a CamelCase string. 2068 - This field may not be empty. 2069 - maxLength: 1024 2070 - minLength: 1 2071 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 2072 - type: string 2073 - status: 2074 - description: status of the condition, one of True, False, Unknown. 2075 - enum: 2076 - - "True" 2077 - - "False" 2078 - - Unknown 2079 - type: string 2080 - type: 2081 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 2082 - maxLength: 316 2083 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 2084 - type: string 2085 - required: 2086 - - lastTransitionTime 2087 - - message 2088 - - reason 2089 - - status 2090 - - type 2091 - type: object 2092 - type: array 2093 - contentConfigChecksum: 2094 - description: |- 2095 - ContentConfigChecksum is a checksum of all the configurations related to 2096 - the content of the source artifact: 2097 - - .spec.ignore 2098 - - .spec.recurseSubmodules 2099 - - .spec.included and the checksum of the included artifacts 2100 - observed in .status.observedGeneration version of the object. This can 2101 - be used to determine if the content of the included repository has 2102 - changed. 2103 - It has the format of `<algo>:<checksum>`, for example: `sha256:<checksum>`. 2104 - 2105 - Deprecated: Replaced with explicit fields for observed artifact content 2106 - config in the status. 2107 - type: string 2108 - includedArtifacts: 2109 - description: |- 2110 - IncludedArtifacts contains a list of the last successfully included 2111 - Artifacts as instructed by GitRepositorySpec.Include. 2112 - items: 2113 - description: Artifact represents the output of a Source reconciliation. 2114 - properties: 2115 - digest: 2116 - description: Digest is the digest of the file in the form of 2117 - '<algorithm>:<checksum>'. 2118 - pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$ 2119 - type: string 2120 - lastUpdateTime: 2121 - description: |- 2122 - LastUpdateTime is the timestamp corresponding to the last update of the 2123 - Artifact. 2124 - format: date-time 2125 - type: string 2126 - metadata: 2127 - additionalProperties: 2128 - type: string 2129 - description: Metadata holds upstream information such as OCI 2130 - annotations. 2131 - type: object 2132 - path: 2133 - description: |- 2134 - Path is the relative file path of the Artifact. It can be used to locate 2135 - the file in the root of the Artifact storage on the local file system of 2136 - the controller managing the Source. 2137 - type: string 2138 - revision: 2139 - description: |- 2140 - Revision is a human-readable identifier traceable in the origin source 2141 - system. It can be a Git commit SHA, Git tag, a Helm chart version, etc. 2142 - type: string 2143 - size: 2144 - description: Size is the number of bytes in the file. 2145 - format: int64 2146 - type: integer 2147 - url: 2148 - description: |- 2149 - URL is the HTTP address of the Artifact as exposed by the controller 2150 - managing the Source. It can be used to retrieve the Artifact for 2151 - consumption, e.g. by another controller applying the Artifact contents. 2152 - type: string 2153 - required: 2154 - - digest 2155 - - lastUpdateTime 2156 - - path 2157 - - revision 2158 - - url 2159 - type: object 2160 - type: array 2161 - lastHandledReconcileAt: 2162 - description: |- 2163 - LastHandledReconcileAt holds the value of the most recent 2164 - reconcile request value, so a change of the annotation value 2165 - can be detected. 2166 - type: string 2167 - observedGeneration: 2168 - description: |- 2169 - ObservedGeneration is the last observed generation of the GitRepository 2170 - object. 2171 - format: int64 2172 - type: integer 2173 - observedIgnore: 2174 - description: |- 2175 - ObservedIgnore is the observed exclusion patterns used for constructing 2176 - the source artifact. 2177 - type: string 2178 - observedInclude: 2179 - description: |- 2180 - ObservedInclude is the observed list of GitRepository resources used to 2181 - to produce the current Artifact. 2182 - items: 2183 - description: |- 2184 - GitRepositoryInclude specifies a local reference to a GitRepository which 2185 - Artifact (sub-)contents must be included, and where they should be placed. 2186 - properties: 2187 - fromPath: 2188 - description: |- 2189 - FromPath specifies the path to copy contents from, defaults to the root 2190 - of the Artifact. 2191 - type: string 2192 - repository: 2193 - description: |- 2194 - GitRepositoryRef specifies the GitRepository which Artifact contents 2195 - must be included. 2196 - properties: 2197 - name: 2198 - description: Name of the referent. 2199 - type: string 2200 - required: 2201 - - name 2202 - type: object 2203 - toPath: 2204 - description: |- 2205 - ToPath specifies the path to copy contents to, defaults to the name of 2206 - the GitRepositoryRef. 2207 - type: string 2208 - required: 2209 - - repository 2210 - type: object 2211 - type: array 2212 - observedRecurseSubmodules: 2213 - description: |- 2214 - ObservedRecurseSubmodules is the observed resource submodules 2215 - configuration used to produce the current Artifact. 2216 - type: boolean 2217 - url: 2218 - description: |- 2219 - URL is the dynamic fetch link for the latest Artifact. 2220 - It is provided on a "best effort" basis, and using the precise 2221 - GitRepositoryStatus.Artifact data is recommended. 2222 - type: string 2223 - type: object 2224 - type: object 2225 - served: true 2226 - storage: false 2227 - subresources: 2228 - status: {} 2229 1378 --- 2230 1379 apiVersion: apiextensions.k8s.io/v1 2231 1380 kind: CustomResourceDefinition ··· 2236 1385 app.kubernetes.io/component: source-controller 2237 1386 app.kubernetes.io/instance: flux-system 2238 1387 app.kubernetes.io/part-of: flux 2239 - app.kubernetes.io/version: v2.7.5 1388 + app.kubernetes.io/version: v2.8.1 2240 1389 name: helmcharts.source.toolkit.fluxcd.io 2241 1390 spec: 2242 1391 group: source.toolkit.fluxcd.io ··· 2431 1580 - interval 2432 1581 - sourceRef 2433 1582 type: object 1583 + x-kubernetes-validations: 1584 + - message: spec.verify is only supported when spec.sourceRef.kind is 'HelmRepository' 1585 + rule: '!has(self.verify) || self.sourceRef.kind == ''HelmRepository''' 2434 1586 status: 2435 1587 default: 2436 1588 observedGeneration: -1 ··· 2582 1734 storage: true 2583 1735 subresources: 2584 1736 status: {} 2585 - - additionalPrinterColumns: 2586 - - jsonPath: .spec.chart 2587 - name: Chart 2588 - type: string 2589 - - jsonPath: .spec.version 2590 - name: Version 2591 - type: string 2592 - - jsonPath: .spec.sourceRef.kind 2593 - name: Source Kind 2594 - type: string 2595 - - jsonPath: .spec.sourceRef.name 2596 - name: Source Name 2597 - type: string 2598 - - jsonPath: .metadata.creationTimestamp 2599 - name: Age 2600 - type: date 2601 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 2602 - name: Ready 2603 - type: string 2604 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 2605 - name: Status 2606 - type: string 2607 - deprecated: true 2608 - deprecationWarning: v1beta2 HelmChart is deprecated, upgrade to v1 2609 - name: v1beta2 2610 - schema: 2611 - openAPIV3Schema: 2612 - description: HelmChart is the Schema for the helmcharts API. 2613 - properties: 2614 - apiVersion: 2615 - description: |- 2616 - APIVersion defines the versioned schema of this representation of an object. 2617 - Servers should convert recognized schemas to the latest internal value, and 2618 - may reject unrecognized values. 2619 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 2620 - type: string 2621 - kind: 2622 - description: |- 2623 - Kind is a string value representing the REST resource this object represents. 2624 - Servers may infer this from the endpoint the client submits requests to. 2625 - Cannot be updated. 2626 - In CamelCase. 2627 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 2628 - type: string 2629 - metadata: 2630 - type: object 2631 - spec: 2632 - description: HelmChartSpec specifies the desired state of a Helm chart. 2633 - properties: 2634 - accessFrom: 2635 - description: |- 2636 - AccessFrom specifies an Access Control List for allowing cross-namespace 2637 - references to this object. 2638 - NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092 2639 - properties: 2640 - namespaceSelectors: 2641 - description: |- 2642 - NamespaceSelectors is the list of namespace selectors to which this ACL applies. 2643 - Items in this list are evaluated using a logical OR operation. 2644 - items: 2645 - description: |- 2646 - NamespaceSelector selects the namespaces to which this ACL applies. 2647 - An empty map of MatchLabels matches all namespaces in a cluster. 2648 - properties: 2649 - matchLabels: 2650 - additionalProperties: 2651 - type: string 2652 - description: |- 2653 - MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels 2654 - map is equivalent to an element of matchExpressions, whose key field is "key", the 2655 - operator is "In", and the values array contains only "value". The requirements are ANDed. 2656 - type: object 2657 - type: object 2658 - type: array 2659 - required: 2660 - - namespaceSelectors 2661 - type: object 2662 - chart: 2663 - description: |- 2664 - Chart is the name or path the Helm chart is available at in the 2665 - SourceRef. 2666 - type: string 2667 - ignoreMissingValuesFiles: 2668 - description: |- 2669 - IgnoreMissingValuesFiles controls whether to silently ignore missing values 2670 - files rather than failing. 2671 - type: boolean 2672 - interval: 2673 - description: |- 2674 - Interval at which the HelmChart SourceRef is checked for updates. 2675 - This interval is approximate and may be subject to jitter to ensure 2676 - efficient use of resources. 2677 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 2678 - type: string 2679 - reconcileStrategy: 2680 - default: ChartVersion 2681 - description: |- 2682 - ReconcileStrategy determines what enables the creation of a new artifact. 2683 - Valid values are ('ChartVersion', 'Revision'). 2684 - See the documentation of the values for an explanation on their behavior. 2685 - Defaults to ChartVersion when omitted. 2686 - enum: 2687 - - ChartVersion 2688 - - Revision 2689 - type: string 2690 - sourceRef: 2691 - description: SourceRef is the reference to the Source the chart is 2692 - available at. 2693 - properties: 2694 - apiVersion: 2695 - description: APIVersion of the referent. 2696 - type: string 2697 - kind: 2698 - description: |- 2699 - Kind of the referent, valid values are ('HelmRepository', 'GitRepository', 2700 - 'Bucket'). 2701 - enum: 2702 - - HelmRepository 2703 - - GitRepository 2704 - - Bucket 2705 - type: string 2706 - name: 2707 - description: Name of the referent. 2708 - type: string 2709 - required: 2710 - - kind 2711 - - name 2712 - type: object 2713 - suspend: 2714 - description: |- 2715 - Suspend tells the controller to suspend the reconciliation of this 2716 - source. 2717 - type: boolean 2718 - valuesFile: 2719 - description: |- 2720 - ValuesFile is an alternative values file to use as the default chart 2721 - values, expected to be a relative path in the SourceRef. Deprecated in 2722 - favor of ValuesFiles, for backwards compatibility the file specified here 2723 - is merged before the ValuesFiles items. Ignored when omitted. 2724 - type: string 2725 - valuesFiles: 2726 - description: |- 2727 - ValuesFiles is an alternative list of values files to use as the chart 2728 - values (values.yaml is not included by default), expected to be a 2729 - relative path in the SourceRef. 2730 - Values files are merged in the order of this list with the last file 2731 - overriding the first. Ignored when omitted. 2732 - items: 2733 - type: string 2734 - type: array 2735 - verify: 2736 - description: |- 2737 - Verify contains the secret name containing the trusted public keys 2738 - used to verify the signature and specifies which provider to use to check 2739 - whether OCI image is authentic. 2740 - This field is only supported when using HelmRepository source with spec.type 'oci'. 2741 - Chart dependencies, which are not bundled in the umbrella chart artifact, are not verified. 2742 - properties: 2743 - matchOIDCIdentity: 2744 - description: |- 2745 - MatchOIDCIdentity specifies the identity matching criteria to use 2746 - while verifying an OCI artifact which was signed using Cosign keyless 2747 - signing. The artifact's identity is deemed to be verified if any of the 2748 - specified matchers match against the identity. 2749 - items: 2750 - description: |- 2751 - OIDCIdentityMatch specifies options for verifying the certificate identity, 2752 - i.e. the issuer and the subject of the certificate. 2753 - properties: 2754 - issuer: 2755 - description: |- 2756 - Issuer specifies the regex pattern to match against to verify 2757 - the OIDC issuer in the Fulcio certificate. The pattern must be a 2758 - valid Go regular expression. 2759 - type: string 2760 - subject: 2761 - description: |- 2762 - Subject specifies the regex pattern to match against to verify 2763 - the identity subject in the Fulcio certificate. The pattern must 2764 - be a valid Go regular expression. 2765 - type: string 2766 - required: 2767 - - issuer 2768 - - subject 2769 - type: object 2770 - type: array 2771 - provider: 2772 - default: cosign 2773 - description: Provider specifies the technology used to sign the 2774 - OCI Artifact. 2775 - enum: 2776 - - cosign 2777 - - notation 2778 - type: string 2779 - secretRef: 2780 - description: |- 2781 - SecretRef specifies the Kubernetes Secret containing the 2782 - trusted public keys. 2783 - properties: 2784 - name: 2785 - description: Name of the referent. 2786 - type: string 2787 - required: 2788 - - name 2789 - type: object 2790 - required: 2791 - - provider 2792 - type: object 2793 - version: 2794 - default: '*' 2795 - description: |- 2796 - Version is the chart version semver expression, ignored for charts from 2797 - GitRepository and Bucket sources. Defaults to latest when omitted. 2798 - type: string 2799 - required: 2800 - - chart 2801 - - interval 2802 - - sourceRef 2803 - type: object 2804 - status: 2805 - default: 2806 - observedGeneration: -1 2807 - description: HelmChartStatus records the observed state of the HelmChart. 2808 - properties: 2809 - artifact: 2810 - description: Artifact represents the output of the last successful 2811 - reconciliation. 2812 - properties: 2813 - digest: 2814 - description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'. 2815 - pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$ 2816 - type: string 2817 - lastUpdateTime: 2818 - description: |- 2819 - LastUpdateTime is the timestamp corresponding to the last update of the 2820 - Artifact. 2821 - format: date-time 2822 - type: string 2823 - metadata: 2824 - additionalProperties: 2825 - type: string 2826 - description: Metadata holds upstream information such as OCI annotations. 2827 - type: object 2828 - path: 2829 - description: |- 2830 - Path is the relative file path of the Artifact. It can be used to locate 2831 - the file in the root of the Artifact storage on the local file system of 2832 - the controller managing the Source. 2833 - type: string 2834 - revision: 2835 - description: |- 2836 - Revision is a human-readable identifier traceable in the origin source 2837 - system. It can be a Git commit SHA, Git tag, a Helm chart version, etc. 2838 - type: string 2839 - size: 2840 - description: Size is the number of bytes in the file. 2841 - format: int64 2842 - type: integer 2843 - url: 2844 - description: |- 2845 - URL is the HTTP address of the Artifact as exposed by the controller 2846 - managing the Source. It can be used to retrieve the Artifact for 2847 - consumption, e.g. by another controller applying the Artifact contents. 2848 - type: string 2849 - required: 2850 - - digest 2851 - - lastUpdateTime 2852 - - path 2853 - - revision 2854 - - url 2855 - type: object 2856 - conditions: 2857 - description: Conditions holds the conditions for the HelmChart. 2858 - items: 2859 - description: Condition contains details for one aspect of the current 2860 - state of this API Resource. 2861 - properties: 2862 - lastTransitionTime: 2863 - description: |- 2864 - lastTransitionTime is the last time the condition transitioned from one status to another. 2865 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 2866 - format: date-time 2867 - type: string 2868 - message: 2869 - description: |- 2870 - message is a human readable message indicating details about the transition. 2871 - This may be an empty string. 2872 - maxLength: 32768 2873 - type: string 2874 - observedGeneration: 2875 - description: |- 2876 - observedGeneration represents the .metadata.generation that the condition was set based upon. 2877 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 2878 - with respect to the current state of the instance. 2879 - format: int64 2880 - minimum: 0 2881 - type: integer 2882 - reason: 2883 - description: |- 2884 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 2885 - Producers of specific condition types may define expected values and meanings for this field, 2886 - and whether the values are considered a guaranteed API. 2887 - The value should be a CamelCase string. 2888 - This field may not be empty. 2889 - maxLength: 1024 2890 - minLength: 1 2891 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 2892 - type: string 2893 - status: 2894 - description: status of the condition, one of True, False, Unknown. 2895 - enum: 2896 - - "True" 2897 - - "False" 2898 - - Unknown 2899 - type: string 2900 - type: 2901 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 2902 - maxLength: 316 2903 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 2904 - type: string 2905 - required: 2906 - - lastTransitionTime 2907 - - message 2908 - - reason 2909 - - status 2910 - - type 2911 - type: object 2912 - type: array 2913 - lastHandledReconcileAt: 2914 - description: |- 2915 - LastHandledReconcileAt holds the value of the most recent 2916 - reconcile request value, so a change of the annotation value 2917 - can be detected. 2918 - type: string 2919 - observedChartName: 2920 - description: |- 2921 - ObservedChartName is the last observed chart name as specified by the 2922 - resolved chart reference. 2923 - type: string 2924 - observedGeneration: 2925 - description: |- 2926 - ObservedGeneration is the last observed generation of the HelmChart 2927 - object. 2928 - format: int64 2929 - type: integer 2930 - observedSourceArtifactRevision: 2931 - description: |- 2932 - ObservedSourceArtifactRevision is the last observed Artifact.Revision 2933 - of the HelmChartSpec.SourceRef. 2934 - type: string 2935 - observedValuesFiles: 2936 - description: |- 2937 - ObservedValuesFiles are the observed value files of the last successful 2938 - reconciliation. 2939 - It matches the chart in the last successfully reconciled artifact. 2940 - items: 2941 - type: string 2942 - type: array 2943 - url: 2944 - description: |- 2945 - URL is the dynamic fetch link for the latest Artifact. 2946 - It is provided on a "best effort" basis, and using the precise 2947 - BucketStatus.Artifact data is recommended. 2948 - type: string 2949 - type: object 2950 - type: object 2951 - served: true 2952 - storage: false 2953 - subresources: 2954 - status: {} 2955 1737 --- 2956 1738 apiVersion: apiextensions.k8s.io/v1 2957 1739 kind: CustomResourceDefinition ··· 2962 1744 app.kubernetes.io/component: source-controller 2963 1745 app.kubernetes.io/instance: flux-system 2964 1746 app.kubernetes.io/part-of: flux 2965 - app.kubernetes.io/version: v2.7.5 1747 + app.kubernetes.io/version: v2.8.1 2966 1748 name: helmrepositories.source.toolkit.fluxcd.io 2967 1749 spec: 2968 1750 group: source.toolkit.fluxcd.io ··· 3278 2060 storage: true 3279 2061 subresources: 3280 2062 status: {} 3281 - - additionalPrinterColumns: 3282 - - jsonPath: .spec.url 3283 - name: URL 3284 - type: string 3285 - - jsonPath: .metadata.creationTimestamp 3286 - name: Age 3287 - type: date 3288 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 3289 - name: Ready 3290 - type: string 3291 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 3292 - name: Status 3293 - type: string 3294 - deprecated: true 3295 - deprecationWarning: v1beta2 HelmRepository is deprecated, upgrade to v1 3296 - name: v1beta2 3297 - schema: 3298 - openAPIV3Schema: 3299 - description: HelmRepository is the Schema for the helmrepositories API. 3300 - properties: 3301 - apiVersion: 3302 - description: |- 3303 - APIVersion defines the versioned schema of this representation of an object. 3304 - Servers should convert recognized schemas to the latest internal value, and 3305 - may reject unrecognized values. 3306 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 3307 - type: string 3308 - kind: 3309 - description: |- 3310 - Kind is a string value representing the REST resource this object represents. 3311 - Servers may infer this from the endpoint the client submits requests to. 3312 - Cannot be updated. 3313 - In CamelCase. 3314 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 3315 - type: string 3316 - metadata: 3317 - type: object 3318 - spec: 3319 - description: |- 3320 - HelmRepositorySpec specifies the required configuration to produce an 3321 - Artifact for a Helm repository index YAML. 3322 - properties: 3323 - accessFrom: 3324 - description: |- 3325 - AccessFrom specifies an Access Control List for allowing cross-namespace 3326 - references to this object. 3327 - NOTE: Not implemented, provisional as of https://github.com/fluxcd/flux2/pull/2092 3328 - properties: 3329 - namespaceSelectors: 3330 - description: |- 3331 - NamespaceSelectors is the list of namespace selectors to which this ACL applies. 3332 - Items in this list are evaluated using a logical OR operation. 3333 - items: 3334 - description: |- 3335 - NamespaceSelector selects the namespaces to which this ACL applies. 3336 - An empty map of MatchLabels matches all namespaces in a cluster. 3337 - properties: 3338 - matchLabels: 3339 - additionalProperties: 3340 - type: string 3341 - description: |- 3342 - MatchLabels is a map of {key,value} pairs. A single {key,value} in the matchLabels 3343 - map is equivalent to an element of matchExpressions, whose key field is "key", the 3344 - operator is "In", and the values array contains only "value". The requirements are ANDed. 3345 - type: object 3346 - type: object 3347 - type: array 3348 - required: 3349 - - namespaceSelectors 3350 - type: object 3351 - certSecretRef: 3352 - description: |- 3353 - CertSecretRef can be given the name of a Secret containing 3354 - either or both of 3355 - 3356 - - a PEM-encoded client certificate (`tls.crt`) and private 3357 - key (`tls.key`); 3358 - - a PEM-encoded CA certificate (`ca.crt`) 3359 - 3360 - and whichever are supplied, will be used for connecting to the 3361 - registry. The client cert and key are useful if you are 3362 - authenticating with a certificate; the CA cert is useful if 3363 - you are using a self-signed server certificate. The Secret must 3364 - be of type `Opaque` or `kubernetes.io/tls`. 3365 - 3366 - It takes precedence over the values specified in the Secret referred 3367 - to by `.spec.secretRef`. 3368 - properties: 3369 - name: 3370 - description: Name of the referent. 3371 - type: string 3372 - required: 3373 - - name 3374 - type: object 3375 - insecure: 3376 - description: |- 3377 - Insecure allows connecting to a non-TLS HTTP container registry. 3378 - This field is only taken into account if the .spec.type field is set to 'oci'. 3379 - type: boolean 3380 - interval: 3381 - description: |- 3382 - Interval at which the HelmRepository URL is checked for updates. 3383 - This interval is approximate and may be subject to jitter to ensure 3384 - efficient use of resources. 3385 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 3386 - type: string 3387 - passCredentials: 3388 - description: |- 3389 - PassCredentials allows the credentials from the SecretRef to be passed 3390 - on to a host that does not match the host as defined in URL. 3391 - This may be required if the host of the advertised chart URLs in the 3392 - index differ from the defined URL. 3393 - Enabling this should be done with caution, as it can potentially result 3394 - in credentials getting stolen in a MITM-attack. 3395 - type: boolean 3396 - provider: 3397 - default: generic 3398 - description: |- 3399 - Provider used for authentication, can be 'aws', 'azure', 'gcp' or 'generic'. 3400 - This field is optional, and only taken into account if the .spec.type field is set to 'oci'. 3401 - When not specified, defaults to 'generic'. 3402 - enum: 3403 - - generic 3404 - - aws 3405 - - azure 3406 - - gcp 3407 - type: string 3408 - secretRef: 3409 - description: |- 3410 - SecretRef specifies the Secret containing authentication credentials 3411 - for the HelmRepository. 3412 - For HTTP/S basic auth the secret must contain 'username' and 'password' 3413 - fields. 3414 - Support for TLS auth using the 'certFile' and 'keyFile', and/or 'caFile' 3415 - keys is deprecated. Please use `.spec.certSecretRef` instead. 3416 - properties: 3417 - name: 3418 - description: Name of the referent. 3419 - type: string 3420 - required: 3421 - - name 3422 - type: object 3423 - suspend: 3424 - description: |- 3425 - Suspend tells the controller to suspend the reconciliation of this 3426 - HelmRepository. 3427 - type: boolean 3428 - timeout: 3429 - description: |- 3430 - Timeout is used for the index fetch operation for an HTTPS helm repository, 3431 - and for remote OCI Repository operations like pulling for an OCI helm 3432 - chart by the associated HelmChart. 3433 - Its default value is 60s. 3434 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$ 3435 - type: string 3436 - type: 3437 - description: |- 3438 - Type of the HelmRepository. 3439 - When this field is set to "oci", the URL field value must be prefixed with "oci://". 3440 - enum: 3441 - - default 3442 - - oci 3443 - type: string 3444 - url: 3445 - description: |- 3446 - URL of the Helm repository, a valid URL contains at least a protocol and 3447 - host. 3448 - pattern: ^(http|https|oci)://.*$ 3449 - type: string 3450 - required: 3451 - - url 3452 - type: object 3453 - status: 3454 - default: 3455 - observedGeneration: -1 3456 - description: HelmRepositoryStatus records the observed state of the HelmRepository. 3457 - properties: 3458 - artifact: 3459 - description: Artifact represents the last successful HelmRepository 3460 - reconciliation. 3461 - properties: 3462 - digest: 3463 - description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'. 3464 - pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$ 3465 - type: string 3466 - lastUpdateTime: 3467 - description: |- 3468 - LastUpdateTime is the timestamp corresponding to the last update of the 3469 - Artifact. 3470 - format: date-time 3471 - type: string 3472 - metadata: 3473 - additionalProperties: 3474 - type: string 3475 - description: Metadata holds upstream information such as OCI annotations. 3476 - type: object 3477 - path: 3478 - description: |- 3479 - Path is the relative file path of the Artifact. It can be used to locate 3480 - the file in the root of the Artifact storage on the local file system of 3481 - the controller managing the Source. 3482 - type: string 3483 - revision: 3484 - description: |- 3485 - Revision is a human-readable identifier traceable in the origin source 3486 - system. It can be a Git commit SHA, Git tag, a Helm chart version, etc. 3487 - type: string 3488 - size: 3489 - description: Size is the number of bytes in the file. 3490 - format: int64 3491 - type: integer 3492 - url: 3493 - description: |- 3494 - URL is the HTTP address of the Artifact as exposed by the controller 3495 - managing the Source. It can be used to retrieve the Artifact for 3496 - consumption, e.g. by another controller applying the Artifact contents. 3497 - type: string 3498 - required: 3499 - - digest 3500 - - lastUpdateTime 3501 - - path 3502 - - revision 3503 - - url 3504 - type: object 3505 - conditions: 3506 - description: Conditions holds the conditions for the HelmRepository. 3507 - items: 3508 - description: Condition contains details for one aspect of the current 3509 - state of this API Resource. 3510 - properties: 3511 - lastTransitionTime: 3512 - description: |- 3513 - lastTransitionTime is the last time the condition transitioned from one status to another. 3514 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 3515 - format: date-time 3516 - type: string 3517 - message: 3518 - description: |- 3519 - message is a human readable message indicating details about the transition. 3520 - This may be an empty string. 3521 - maxLength: 32768 3522 - type: string 3523 - observedGeneration: 3524 - description: |- 3525 - observedGeneration represents the .metadata.generation that the condition was set based upon. 3526 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 3527 - with respect to the current state of the instance. 3528 - format: int64 3529 - minimum: 0 3530 - type: integer 3531 - reason: 3532 - description: |- 3533 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 3534 - Producers of specific condition types may define expected values and meanings for this field, 3535 - and whether the values are considered a guaranteed API. 3536 - The value should be a CamelCase string. 3537 - This field may not be empty. 3538 - maxLength: 1024 3539 - minLength: 1 3540 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 3541 - type: string 3542 - status: 3543 - description: status of the condition, one of True, False, Unknown. 3544 - enum: 3545 - - "True" 3546 - - "False" 3547 - - Unknown 3548 - type: string 3549 - type: 3550 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 3551 - maxLength: 316 3552 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 3553 - type: string 3554 - required: 3555 - - lastTransitionTime 3556 - - message 3557 - - reason 3558 - - status 3559 - - type 3560 - type: object 3561 - type: array 3562 - lastHandledReconcileAt: 3563 - description: |- 3564 - LastHandledReconcileAt holds the value of the most recent 3565 - reconcile request value, so a change of the annotation value 3566 - can be detected. 3567 - type: string 3568 - observedGeneration: 3569 - description: |- 3570 - ObservedGeneration is the last observed generation of the HelmRepository 3571 - object. 3572 - format: int64 3573 - type: integer 3574 - url: 3575 - description: |- 3576 - URL is the dynamic fetch link for the latest Artifact. 3577 - It is provided on a "best effort" basis, and using the precise 3578 - HelmRepositoryStatus.Artifact data is recommended. 3579 - type: string 3580 - type: object 3581 - type: object 3582 - served: true 3583 - storage: false 3584 - subresources: 3585 - status: {} 3586 2063 --- 3587 2064 apiVersion: apiextensions.k8s.io/v1 3588 2065 kind: CustomResourceDefinition ··· 3593 2070 app.kubernetes.io/component: source-controller 3594 2071 app.kubernetes.io/instance: flux-system 3595 2072 app.kubernetes.io/part-of: flux 3596 - app.kubernetes.io/version: v2.7.5 2073 + app.kubernetes.io/version: v2.8.1 3597 2074 name: ocirepositories.source.toolkit.fluxcd.io 3598 2075 spec: 3599 2076 group: source.toolkit.fluxcd.io ··· 3999 2476 storage: true 4000 2477 subresources: 4001 2478 status: {} 4002 - - additionalPrinterColumns: 4003 - - jsonPath: .spec.url 4004 - name: URL 4005 - type: string 4006 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 4007 - name: Ready 4008 - type: string 4009 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 4010 - name: Status 4011 - type: string 4012 - - jsonPath: .metadata.creationTimestamp 4013 - name: Age 4014 - type: date 4015 - deprecated: true 4016 - deprecationWarning: v1beta2 OCIRepository is deprecated, upgrade to v1 4017 - name: v1beta2 4018 - schema: 4019 - openAPIV3Schema: 4020 - description: OCIRepository is the Schema for the ocirepositories API 4021 - properties: 4022 - apiVersion: 4023 - description: |- 4024 - APIVersion defines the versioned schema of this representation of an object. 4025 - Servers should convert recognized schemas to the latest internal value, and 4026 - may reject unrecognized values. 4027 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 4028 - type: string 4029 - kind: 4030 - description: |- 4031 - Kind is a string value representing the REST resource this object represents. 4032 - Servers may infer this from the endpoint the client submits requests to. 4033 - Cannot be updated. 4034 - In CamelCase. 4035 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 4036 - type: string 4037 - metadata: 4038 - type: object 4039 - spec: 4040 - description: OCIRepositorySpec defines the desired state of OCIRepository 4041 - properties: 4042 - certSecretRef: 4043 - description: |- 4044 - CertSecretRef can be given the name of a Secret containing 4045 - either or both of 4046 - 4047 - - a PEM-encoded client certificate (`tls.crt`) and private 4048 - key (`tls.key`); 4049 - - a PEM-encoded CA certificate (`ca.crt`) 4050 - 4051 - and whichever are supplied, will be used for connecting to the 4052 - registry. The client cert and key are useful if you are 4053 - authenticating with a certificate; the CA cert is useful if 4054 - you are using a self-signed server certificate. The Secret must 4055 - be of type `Opaque` or `kubernetes.io/tls`. 4056 - 4057 - Note: Support for the `caFile`, `certFile` and `keyFile` keys have 4058 - been deprecated. 4059 - properties: 4060 - name: 4061 - description: Name of the referent. 4062 - type: string 4063 - required: 4064 - - name 4065 - type: object 4066 - ignore: 4067 - description: |- 4068 - Ignore overrides the set of excluded patterns in the .sourceignore format 4069 - (which is the same as .gitignore). If not provided, a default will be used, 4070 - consult the documentation for your version to find out what those are. 4071 - type: string 4072 - insecure: 4073 - description: Insecure allows connecting to a non-TLS HTTP container 4074 - registry. 4075 - type: boolean 4076 - interval: 4077 - description: |- 4078 - Interval at which the OCIRepository URL is checked for updates. 4079 - This interval is approximate and may be subject to jitter to ensure 4080 - efficient use of resources. 4081 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 4082 - type: string 4083 - layerSelector: 4084 - description: |- 4085 - LayerSelector specifies which layer should be extracted from the OCI artifact. 4086 - When not specified, the first layer found in the artifact is selected. 4087 - properties: 4088 - mediaType: 4089 - description: |- 4090 - MediaType specifies the OCI media type of the layer 4091 - which should be extracted from the OCI Artifact. The 4092 - first layer matching this type is selected. 4093 - type: string 4094 - operation: 4095 - description: |- 4096 - Operation specifies how the selected layer should be processed. 4097 - By default, the layer compressed content is extracted to storage. 4098 - When the operation is set to 'copy', the layer compressed content 4099 - is persisted to storage as it is. 4100 - enum: 4101 - - extract 4102 - - copy 4103 - type: string 4104 - type: object 4105 - provider: 4106 - default: generic 4107 - description: |- 4108 - The provider used for authentication, can be 'aws', 'azure', 'gcp' or 'generic'. 4109 - When not specified, defaults to 'generic'. 4110 - enum: 4111 - - generic 4112 - - aws 4113 - - azure 4114 - - gcp 4115 - type: string 4116 - proxySecretRef: 4117 - description: |- 4118 - ProxySecretRef specifies the Secret containing the proxy configuration 4119 - to use while communicating with the container registry. 4120 - properties: 4121 - name: 4122 - description: Name of the referent. 4123 - type: string 4124 - required: 4125 - - name 4126 - type: object 4127 - ref: 4128 - description: |- 4129 - The OCI reference to pull and monitor for changes, 4130 - defaults to the latest tag. 4131 - properties: 4132 - digest: 4133 - description: |- 4134 - Digest is the image digest to pull, takes precedence over SemVer. 4135 - The value should be in the format 'sha256:<HASH>'. 4136 - type: string 4137 - semver: 4138 - description: |- 4139 - SemVer is the range of tags to pull selecting the latest within 4140 - the range, takes precedence over Tag. 4141 - type: string 4142 - semverFilter: 4143 - description: SemverFilter is a regex pattern to filter the tags 4144 - within the SemVer range. 4145 - type: string 4146 - tag: 4147 - description: Tag is the image tag to pull, defaults to latest. 4148 - type: string 4149 - type: object 4150 - secretRef: 4151 - description: |- 4152 - SecretRef contains the secret name containing the registry login 4153 - credentials to resolve image metadata. 4154 - The secret must be of type kubernetes.io/dockerconfigjson. 4155 - properties: 4156 - name: 4157 - description: Name of the referent. 4158 - type: string 4159 - required: 4160 - - name 4161 - type: object 4162 - serviceAccountName: 4163 - description: |- 4164 - ServiceAccountName is the name of the Kubernetes ServiceAccount used to authenticate 4165 - the image pull if the service account has attached pull secrets. For more information: 4166 - https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#add-imagepullsecrets-to-a-service-account 4167 - type: string 4168 - suspend: 4169 - description: This flag tells the controller to suspend the reconciliation 4170 - of this source. 4171 - type: boolean 4172 - timeout: 4173 - default: 60s 4174 - description: The timeout for remote OCI Repository operations like 4175 - pulling, defaults to 60s. 4176 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m))+$ 4177 - type: string 4178 - url: 4179 - description: |- 4180 - URL is a reference to an OCI artifact repository hosted 4181 - on a remote container registry. 4182 - pattern: ^oci://.*$ 4183 - type: string 4184 - verify: 4185 - description: |- 4186 - Verify contains the secret name containing the trusted public keys 4187 - used to verify the signature and specifies which provider to use to check 4188 - whether OCI image is authentic. 4189 - properties: 4190 - matchOIDCIdentity: 4191 - description: |- 4192 - MatchOIDCIdentity specifies the identity matching criteria to use 4193 - while verifying an OCI artifact which was signed using Cosign keyless 4194 - signing. The artifact's identity is deemed to be verified if any of the 4195 - specified matchers match against the identity. 4196 - items: 4197 - description: |- 4198 - OIDCIdentityMatch specifies options for verifying the certificate identity, 4199 - i.e. the issuer and the subject of the certificate. 4200 - properties: 4201 - issuer: 4202 - description: |- 4203 - Issuer specifies the regex pattern to match against to verify 4204 - the OIDC issuer in the Fulcio certificate. The pattern must be a 4205 - valid Go regular expression. 4206 - type: string 4207 - subject: 4208 - description: |- 4209 - Subject specifies the regex pattern to match against to verify 4210 - the identity subject in the Fulcio certificate. The pattern must 4211 - be a valid Go regular expression. 4212 - type: string 4213 - required: 4214 - - issuer 4215 - - subject 4216 - type: object 4217 - type: array 4218 - provider: 4219 - default: cosign 4220 - description: Provider specifies the technology used to sign the 4221 - OCI Artifact. 4222 - enum: 4223 - - cosign 4224 - - notation 4225 - type: string 4226 - secretRef: 4227 - description: |- 4228 - SecretRef specifies the Kubernetes Secret containing the 4229 - trusted public keys. 4230 - properties: 4231 - name: 4232 - description: Name of the referent. 4233 - type: string 4234 - required: 4235 - - name 4236 - type: object 4237 - required: 4238 - - provider 4239 - type: object 4240 - required: 4241 - - interval 4242 - - url 4243 - type: object 4244 - status: 4245 - default: 4246 - observedGeneration: -1 4247 - description: OCIRepositoryStatus defines the observed state of OCIRepository 4248 - properties: 4249 - artifact: 4250 - description: Artifact represents the output of the last successful 4251 - OCI Repository sync. 4252 - properties: 4253 - digest: 4254 - description: Digest is the digest of the file in the form of '<algorithm>:<checksum>'. 4255 - pattern: ^[a-z0-9]+(?:[.+_-][a-z0-9]+)*:[a-zA-Z0-9=_-]+$ 4256 - type: string 4257 - lastUpdateTime: 4258 - description: |- 4259 - LastUpdateTime is the timestamp corresponding to the last update of the 4260 - Artifact. 4261 - format: date-time 4262 - type: string 4263 - metadata: 4264 - additionalProperties: 4265 - type: string 4266 - description: Metadata holds upstream information such as OCI annotations. 4267 - type: object 4268 - path: 4269 - description: |- 4270 - Path is the relative file path of the Artifact. It can be used to locate 4271 - the file in the root of the Artifact storage on the local file system of 4272 - the controller managing the Source. 4273 - type: string 4274 - revision: 4275 - description: |- 4276 - Revision is a human-readable identifier traceable in the origin source 4277 - system. It can be a Git commit SHA, Git tag, a Helm chart version, etc. 4278 - type: string 4279 - size: 4280 - description: Size is the number of bytes in the file. 4281 - format: int64 4282 - type: integer 4283 - url: 4284 - description: |- 4285 - URL is the HTTP address of the Artifact as exposed by the controller 4286 - managing the Source. It can be used to retrieve the Artifact for 4287 - consumption, e.g. by another controller applying the Artifact contents. 4288 - type: string 4289 - required: 4290 - - digest 4291 - - lastUpdateTime 4292 - - path 4293 - - revision 4294 - - url 4295 - type: object 4296 - conditions: 4297 - description: Conditions holds the conditions for the OCIRepository. 4298 - items: 4299 - description: Condition contains details for one aspect of the current 4300 - state of this API Resource. 4301 - properties: 4302 - lastTransitionTime: 4303 - description: |- 4304 - lastTransitionTime is the last time the condition transitioned from one status to another. 4305 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 4306 - format: date-time 4307 - type: string 4308 - message: 4309 - description: |- 4310 - message is a human readable message indicating details about the transition. 4311 - This may be an empty string. 4312 - maxLength: 32768 4313 - type: string 4314 - observedGeneration: 4315 - description: |- 4316 - observedGeneration represents the .metadata.generation that the condition was set based upon. 4317 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 4318 - with respect to the current state of the instance. 4319 - format: int64 4320 - minimum: 0 4321 - type: integer 4322 - reason: 4323 - description: |- 4324 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 4325 - Producers of specific condition types may define expected values and meanings for this field, 4326 - and whether the values are considered a guaranteed API. 4327 - The value should be a CamelCase string. 4328 - This field may not be empty. 4329 - maxLength: 1024 4330 - minLength: 1 4331 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 4332 - type: string 4333 - status: 4334 - description: status of the condition, one of True, False, Unknown. 4335 - enum: 4336 - - "True" 4337 - - "False" 4338 - - Unknown 4339 - type: string 4340 - type: 4341 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 4342 - maxLength: 316 4343 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 4344 - type: string 4345 - required: 4346 - - lastTransitionTime 4347 - - message 4348 - - reason 4349 - - status 4350 - - type 4351 - type: object 4352 - type: array 4353 - contentConfigChecksum: 4354 - description: |- 4355 - ContentConfigChecksum is a checksum of all the configurations related to 4356 - the content of the source artifact: 4357 - - .spec.ignore 4358 - - .spec.layerSelector 4359 - observed in .status.observedGeneration version of the object. This can 4360 - be used to determine if the content configuration has changed and the 4361 - artifact needs to be rebuilt. 4362 - It has the format of `<algo>:<checksum>`, for example: `sha256:<checksum>`. 4363 - 4364 - Deprecated: Replaced with explicit fields for observed artifact content 4365 - config in the status. 4366 - type: string 4367 - lastHandledReconcileAt: 4368 - description: |- 4369 - LastHandledReconcileAt holds the value of the most recent 4370 - reconcile request value, so a change of the annotation value 4371 - can be detected. 4372 - type: string 4373 - observedGeneration: 4374 - description: ObservedGeneration is the last observed generation. 4375 - format: int64 4376 - type: integer 4377 - observedIgnore: 4378 - description: |- 4379 - ObservedIgnore is the observed exclusion patterns used for constructing 4380 - the source artifact. 4381 - type: string 4382 - observedLayerSelector: 4383 - description: |- 4384 - ObservedLayerSelector is the observed layer selector used for constructing 4385 - the source artifact. 4386 - properties: 4387 - mediaType: 4388 - description: |- 4389 - MediaType specifies the OCI media type of the layer 4390 - which should be extracted from the OCI Artifact. The 4391 - first layer matching this type is selected. 4392 - type: string 4393 - operation: 4394 - description: |- 4395 - Operation specifies how the selected layer should be processed. 4396 - By default, the layer compressed content is extracted to storage. 4397 - When the operation is set to 'copy', the layer compressed content 4398 - is persisted to storage as it is. 4399 - enum: 4400 - - extract 4401 - - copy 4402 - type: string 4403 - type: object 4404 - url: 4405 - description: URL is the download link for the artifact output of the 4406 - last OCI Repository sync. 4407 - type: string 4408 - type: object 4409 - type: object 4410 - served: true 4411 - storage: false 4412 - subresources: 4413 - status: {} 4414 2479 --- 4415 2480 apiVersion: v1 4416 2481 kind: ServiceAccount ··· 4419 2484 app.kubernetes.io/component: source-controller 4420 2485 app.kubernetes.io/instance: flux-system 4421 2486 app.kubernetes.io/part-of: flux 4422 - app.kubernetes.io/version: v2.7.5 2487 + app.kubernetes.io/version: v2.8.1 4423 2488 name: source-controller 4424 2489 namespace: flux-system 4425 2490 --- ··· 4430 2495 app.kubernetes.io/component: source-controller 4431 2496 app.kubernetes.io/instance: flux-system 4432 2497 app.kubernetes.io/part-of: flux 4433 - app.kubernetes.io/version: v2.7.5 2498 + app.kubernetes.io/version: v2.8.1 4434 2499 control-plane: controller 4435 2500 name: source-controller 4436 2501 namespace: flux-system ··· 4451 2516 app.kubernetes.io/component: source-controller 4452 2517 app.kubernetes.io/instance: flux-system 4453 2518 app.kubernetes.io/part-of: flux 4454 - app.kubernetes.io/version: v2.7.5 2519 + app.kubernetes.io/version: v2.8.1 4455 2520 control-plane: controller 4456 2521 name: source-controller 4457 2522 namespace: flux-system ··· 4472 2537 app.kubernetes.io/component: source-controller 4473 2538 app.kubernetes.io/instance: flux-system 4474 2539 app.kubernetes.io/part-of: flux 4475 - app.kubernetes.io/version: v2.7.5 2540 + app.kubernetes.io/version: v2.8.1 4476 2541 spec: 4477 2542 containers: 4478 2543 - args: ··· 4495 2560 resourceFieldRef: 4496 2561 containerName: manager 4497 2562 resource: limits.memory 4498 - image: ghcr.io/fluxcd/source-controller:v1.7.4 2563 + image: ghcr.io/fluxcd/source-controller:v1.8.0 4499 2564 imagePullPolicy: IfNotPresent 4500 2565 livenessProbe: 4501 2566 httpGet: ··· 4559 2624 app.kubernetes.io/component: kustomize-controller 4560 2625 app.kubernetes.io/instance: flux-system 4561 2626 app.kubernetes.io/part-of: flux 4562 - app.kubernetes.io/version: v2.7.5 2627 + app.kubernetes.io/version: v2.8.1 4563 2628 name: kustomizations.kustomize.toolkit.fluxcd.io 4564 2629 spec: 4565 2630 group: kustomize.toolkit.fluxcd.io ··· 5265 3330 storage: true 5266 3331 subresources: 5267 3332 status: {} 5268 - - additionalPrinterColumns: 5269 - - jsonPath: .metadata.creationTimestamp 5270 - name: Age 5271 - type: date 5272 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 5273 - name: Ready 5274 - type: string 5275 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 5276 - name: Status 5277 - type: string 5278 - deprecated: true 5279 - deprecationWarning: v1beta2 Kustomization is deprecated, upgrade to v1 5280 - name: v1beta2 5281 - schema: 5282 - openAPIV3Schema: 5283 - description: Kustomization is the Schema for the kustomizations API. 5284 - properties: 5285 - apiVersion: 5286 - description: |- 5287 - APIVersion defines the versioned schema of this representation of an object. 5288 - Servers should convert recognized schemas to the latest internal value, and 5289 - may reject unrecognized values. 5290 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 5291 - type: string 5292 - kind: 5293 - description: |- 5294 - Kind is a string value representing the REST resource this object represents. 5295 - Servers may infer this from the endpoint the client submits requests to. 5296 - Cannot be updated. 5297 - In CamelCase. 5298 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 5299 - type: string 5300 - metadata: 5301 - type: object 5302 - spec: 5303 - description: KustomizationSpec defines the configuration to calculate 5304 - the desired state from a Source using Kustomize. 5305 - properties: 5306 - commonMetadata: 5307 - description: |- 5308 - CommonMetadata specifies the common labels and annotations that are applied to all resources. 5309 - Any existing label or annotation will be overridden if its key matches a common one. 5310 - properties: 5311 - annotations: 5312 - additionalProperties: 5313 - type: string 5314 - description: Annotations to be added to the object's metadata. 5315 - type: object 5316 - labels: 5317 - additionalProperties: 5318 - type: string 5319 - description: Labels to be added to the object's metadata. 5320 - type: object 5321 - type: object 5322 - components: 5323 - description: Components specifies relative paths to specifications 5324 - of other Components. 5325 - items: 5326 - type: string 5327 - type: array 5328 - decryption: 5329 - description: Decrypt Kubernetes secrets before applying them on the 5330 - cluster. 5331 - properties: 5332 - provider: 5333 - description: Provider is the name of the decryption engine. 5334 - enum: 5335 - - sops 5336 - type: string 5337 - secretRef: 5338 - description: The secret name containing the private OpenPGP keys 5339 - used for decryption. 5340 - properties: 5341 - name: 5342 - description: Name of the referent. 5343 - type: string 5344 - required: 5345 - - name 5346 - type: object 5347 - required: 5348 - - provider 5349 - type: object 5350 - dependsOn: 5351 - description: |- 5352 - DependsOn may contain a meta.NamespacedObjectReference slice 5353 - with references to Kustomization resources that must be ready before this 5354 - Kustomization can be reconciled. 5355 - items: 5356 - description: |- 5357 - NamespacedObjectReference contains enough information to locate the referenced Kubernetes resource object in any 5358 - namespace. 5359 - properties: 5360 - name: 5361 - description: Name of the referent. 5362 - type: string 5363 - namespace: 5364 - description: Namespace of the referent, when not specified it 5365 - acts as LocalObjectReference. 5366 - type: string 5367 - required: 5368 - - name 5369 - type: object 5370 - type: array 5371 - force: 5372 - default: false 5373 - description: |- 5374 - Force instructs the controller to recreate resources 5375 - when patching fails due to an immutable field change. 5376 - type: boolean 5377 - healthChecks: 5378 - description: A list of resources to be included in the health assessment. 5379 - items: 5380 - description: |- 5381 - NamespacedObjectKindReference contains enough information to locate the typed referenced Kubernetes resource object 5382 - in any namespace. 5383 - properties: 5384 - apiVersion: 5385 - description: API version of the referent, if not specified the 5386 - Kubernetes preferred version will be used. 5387 - type: string 5388 - kind: 5389 - description: Kind of the referent. 5390 - type: string 5391 - name: 5392 - description: Name of the referent. 5393 - type: string 5394 - namespace: 5395 - description: Namespace of the referent, when not specified it 5396 - acts as LocalObjectReference. 5397 - type: string 5398 - required: 5399 - - kind 5400 - - name 5401 - type: object 5402 - type: array 5403 - images: 5404 - description: |- 5405 - Images is a list of (image name, new name, new tag or digest) 5406 - for changing image names, tags or digests. This can also be achieved with a 5407 - patch, but this operator is simpler to specify. 5408 - items: 5409 - description: Image contains an image name, a new name, a new tag 5410 - or digest, which will replace the original name and tag. 5411 - properties: 5412 - digest: 5413 - description: |- 5414 - Digest is the value used to replace the original image tag. 5415 - If digest is present NewTag value is ignored. 5416 - type: string 5417 - name: 5418 - description: Name is a tag-less image name. 5419 - type: string 5420 - newName: 5421 - description: NewName is the value used to replace the original 5422 - name. 5423 - type: string 5424 - newTag: 5425 - description: NewTag is the value used to replace the original 5426 - tag. 5427 - type: string 5428 - required: 5429 - - name 5430 - type: object 5431 - type: array 5432 - interval: 5433 - description: The interval at which to reconcile the Kustomization. 5434 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 5435 - type: string 5436 - kubeConfig: 5437 - description: |- 5438 - The KubeConfig for reconciling the Kustomization on a remote cluster. 5439 - When used in combination with KustomizationSpec.ServiceAccountName, 5440 - forces the controller to act on behalf of that Service Account at the 5441 - target cluster. 5442 - If the --default-service-account flag is set, its value will be used as 5443 - a controller level fallback for when KustomizationSpec.ServiceAccountName 5444 - is empty. 5445 - properties: 5446 - configMapRef: 5447 - description: |- 5448 - ConfigMapRef holds an optional name of a ConfigMap that contains 5449 - the following keys: 5450 - 5451 - - `provider`: the provider to use. One of `aws`, `azure`, `gcp`, or 5452 - `generic`. Required. 5453 - - `cluster`: the fully qualified resource name of the Kubernetes 5454 - cluster in the cloud provider API. Not used by the `generic` 5455 - provider. Required when one of `address` or `ca.crt` is not set. 5456 - - `address`: the address of the Kubernetes API server. Required 5457 - for `generic`. For the other providers, if not specified, the 5458 - first address in the cluster resource will be used, and if 5459 - specified, it must match one of the addresses in the cluster 5460 - resource. 5461 - If audiences is not set, will be used as the audience for the 5462 - `generic` provider. 5463 - - `ca.crt`: the optional PEM-encoded CA certificate for the 5464 - Kubernetes API server. If not set, the controller will use the 5465 - CA certificate from the cluster resource. 5466 - - `audiences`: the optional audiences as a list of 5467 - line-break-separated strings for the Kubernetes ServiceAccount 5468 - token. Defaults to the `address` for the `generic` provider, or 5469 - to specific values for the other providers depending on the 5470 - provider. 5471 - - `serviceAccountName`: the optional name of the Kubernetes 5472 - ServiceAccount in the same namespace that should be used 5473 - for authentication. If not specified, the controller 5474 - ServiceAccount will be used. 5475 - 5476 - Mutually exclusive with SecretRef. 5477 - properties: 5478 - name: 5479 - description: Name of the referent. 5480 - type: string 5481 - required: 5482 - - name 5483 - type: object 5484 - secretRef: 5485 - description: |- 5486 - SecretRef holds an optional name of a secret that contains a key with 5487 - the kubeconfig file as the value. If no key is set, the key will default 5488 - to 'value'. Mutually exclusive with ConfigMapRef. 5489 - It is recommended that the kubeconfig is self-contained, and the secret 5490 - is regularly updated if credentials such as a cloud-access-token expire. 5491 - Cloud specific `cmd-path` auth helpers will not function without adding 5492 - binaries and credentials to the Pod that is responsible for reconciling 5493 - Kubernetes resources. Supported only for the generic provider. 5494 - properties: 5495 - key: 5496 - description: Key in the Secret, when not specified an implementation-specific 5497 - default key is used. 5498 - type: string 5499 - name: 5500 - description: Name of the Secret. 5501 - type: string 5502 - required: 5503 - - name 5504 - type: object 5505 - type: object 5506 - x-kubernetes-validations: 5507 - - message: exactly one of spec.kubeConfig.configMapRef or spec.kubeConfig.secretRef 5508 - must be specified 5509 - rule: has(self.configMapRef) || has(self.secretRef) 5510 - - message: exactly one of spec.kubeConfig.configMapRef or spec.kubeConfig.secretRef 5511 - must be specified 5512 - rule: '!has(self.configMapRef) || !has(self.secretRef)' 5513 - patches: 5514 - description: |- 5515 - Strategic merge and JSON patches, defined as inline YAML objects, 5516 - capable of targeting objects based on kind, label and annotation selectors. 5517 - items: 5518 - description: |- 5519 - Patch contains an inline StrategicMerge or JSON6902 patch, and the target the patch should 5520 - be applied to. 5521 - properties: 5522 - patch: 5523 - description: |- 5524 - Patch contains an inline StrategicMerge patch or an inline JSON6902 patch with 5525 - an array of operation objects. 5526 - type: string 5527 - target: 5528 - description: Target points to the resources that the patch document 5529 - should be applied to. 5530 - properties: 5531 - annotationSelector: 5532 - description: |- 5533 - AnnotationSelector is a string that follows the label selection expression 5534 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 5535 - It matches with the resource annotations. 5536 - type: string 5537 - group: 5538 - description: |- 5539 - Group is the API group to select resources from. 5540 - Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources. 5541 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 5542 - type: string 5543 - kind: 5544 - description: |- 5545 - Kind of the API Group to select resources from. 5546 - Together with Group and Version it is capable of unambiguously 5547 - identifying and/or selecting resources. 5548 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 5549 - type: string 5550 - labelSelector: 5551 - description: |- 5552 - LabelSelector is a string that follows the label selection expression 5553 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 5554 - It matches with the resource labels. 5555 - type: string 5556 - name: 5557 - description: Name to match resources with. 5558 - type: string 5559 - namespace: 5560 - description: Namespace to select resources from. 5561 - type: string 5562 - version: 5563 - description: |- 5564 - Version of the API Group to select resources from. 5565 - Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources. 5566 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 5567 - type: string 5568 - type: object 5569 - required: 5570 - - patch 5571 - type: object 5572 - type: array 5573 - patchesJson6902: 5574 - description: |- 5575 - JSON 6902 patches, defined as inline YAML objects. 5576 - Deprecated: Use Patches instead. 5577 - items: 5578 - description: JSON6902Patch contains a JSON6902 patch and the target 5579 - the patch should be applied to. 5580 - properties: 5581 - patch: 5582 - description: Patch contains the JSON6902 patch document with 5583 - an array of operation objects. 5584 - items: 5585 - description: |- 5586 - JSON6902 is a JSON6902 operation object. 5587 - https://datatracker.ietf.org/doc/html/rfc6902#section-4 5588 - properties: 5589 - from: 5590 - description: |- 5591 - From contains a JSON-pointer value that references a location within the target document where the operation is 5592 - performed. The meaning of the value depends on the value of Op, and is NOT taken into account by all operations. 5593 - type: string 5594 - op: 5595 - description: |- 5596 - Op indicates the operation to perform. Its value MUST be one of "add", "remove", "replace", "move", "copy", or 5597 - "test". 5598 - https://datatracker.ietf.org/doc/html/rfc6902#section-4 5599 - enum: 5600 - - test 5601 - - remove 5602 - - add 5603 - - replace 5604 - - move 5605 - - copy 5606 - type: string 5607 - path: 5608 - description: |- 5609 - Path contains the JSON-pointer value that references a location within the target document where the operation 5610 - is performed. The meaning of the value depends on the value of Op. 5611 - type: string 5612 - value: 5613 - description: |- 5614 - Value contains a valid JSON structure. The meaning of the value depends on the value of Op, and is NOT taken into 5615 - account by all operations. 5616 - x-kubernetes-preserve-unknown-fields: true 5617 - required: 5618 - - op 5619 - - path 5620 - type: object 5621 - type: array 5622 - target: 5623 - description: Target points to the resources that the patch document 5624 - should be applied to. 5625 - properties: 5626 - annotationSelector: 5627 - description: |- 5628 - AnnotationSelector is a string that follows the label selection expression 5629 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 5630 - It matches with the resource annotations. 5631 - type: string 5632 - group: 5633 - description: |- 5634 - Group is the API group to select resources from. 5635 - Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources. 5636 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 5637 - type: string 5638 - kind: 5639 - description: |- 5640 - Kind of the API Group to select resources from. 5641 - Together with Group and Version it is capable of unambiguously 5642 - identifying and/or selecting resources. 5643 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 5644 - type: string 5645 - labelSelector: 5646 - description: |- 5647 - LabelSelector is a string that follows the label selection expression 5648 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 5649 - It matches with the resource labels. 5650 - type: string 5651 - name: 5652 - description: Name to match resources with. 5653 - type: string 5654 - namespace: 5655 - description: Namespace to select resources from. 5656 - type: string 5657 - version: 5658 - description: |- 5659 - Version of the API Group to select resources from. 5660 - Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources. 5661 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 5662 - type: string 5663 - type: object 5664 - required: 5665 - - patch 5666 - - target 5667 - type: object 5668 - type: array 5669 - patchesStrategicMerge: 5670 - description: |- 5671 - Strategic merge patches, defined as inline YAML objects. 5672 - Deprecated: Use Patches instead. 5673 - items: 5674 - x-kubernetes-preserve-unknown-fields: true 5675 - type: array 5676 - path: 5677 - description: |- 5678 - Path to the directory containing the kustomization.yaml file, or the 5679 - set of plain YAMLs a kustomization.yaml should be generated for. 5680 - Defaults to 'None', which translates to the root path of the SourceRef. 5681 - type: string 5682 - postBuild: 5683 - description: |- 5684 - PostBuild describes which actions to perform on the YAML manifest 5685 - generated by building the kustomize overlay. 5686 - properties: 5687 - substitute: 5688 - additionalProperties: 5689 - type: string 5690 - description: |- 5691 - Substitute holds a map of key/value pairs. 5692 - The variables defined in your YAML manifests 5693 - that match any of the keys defined in the map 5694 - will be substituted with the set value. 5695 - Includes support for bash string replacement functions 5696 - e.g. ${var:=default}, ${var:position} and ${var/substring/replacement}. 5697 - type: object 5698 - substituteFrom: 5699 - description: |- 5700 - SubstituteFrom holds references to ConfigMaps and Secrets containing 5701 - the variables and their values to be substituted in the YAML manifests. 5702 - The ConfigMap and the Secret data keys represent the var names and they 5703 - must match the vars declared in the manifests for the substitution to happen. 5704 - items: 5705 - description: |- 5706 - SubstituteReference contains a reference to a resource containing 5707 - the variables name and value. 5708 - properties: 5709 - kind: 5710 - description: Kind of the values referent, valid values are 5711 - ('Secret', 'ConfigMap'). 5712 - enum: 5713 - - Secret 5714 - - ConfigMap 5715 - type: string 5716 - name: 5717 - description: |- 5718 - Name of the values referent. Should reside in the same namespace as the 5719 - referring resource. 5720 - maxLength: 253 5721 - minLength: 1 5722 - type: string 5723 - optional: 5724 - default: false 5725 - description: |- 5726 - Optional indicates whether the referenced resource must exist, or whether to 5727 - tolerate its absence. If true and the referenced resource is absent, proceed 5728 - as if the resource was present but empty, without any variables defined. 5729 - type: boolean 5730 - required: 5731 - - kind 5732 - - name 5733 - type: object 5734 - type: array 5735 - type: object 5736 - prune: 5737 - description: Prune enables garbage collection. 5738 - type: boolean 5739 - retryInterval: 5740 - description: |- 5741 - The interval at which to retry a previously failed reconciliation. 5742 - When not specified, the controller uses the KustomizationSpec.Interval 5743 - value to retry failures. 5744 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 5745 - type: string 5746 - serviceAccountName: 5747 - description: |- 5748 - The name of the Kubernetes service account to impersonate 5749 - when reconciling this Kustomization. 5750 - type: string 5751 - sourceRef: 5752 - description: Reference of the source where the kustomization file 5753 - is. 5754 - properties: 5755 - apiVersion: 5756 - description: API version of the referent. 5757 - type: string 5758 - kind: 5759 - description: Kind of the referent. 5760 - enum: 5761 - - OCIRepository 5762 - - GitRepository 5763 - - Bucket 5764 - type: string 5765 - name: 5766 - description: Name of the referent. 5767 - type: string 5768 - namespace: 5769 - description: Namespace of the referent, defaults to the namespace 5770 - of the Kubernetes resource object that contains the reference. 5771 - type: string 5772 - required: 5773 - - kind 5774 - - name 5775 - type: object 5776 - suspend: 5777 - description: |- 5778 - This flag tells the controller to suspend subsequent kustomize executions, 5779 - it does not apply to already started executions. Defaults to false. 5780 - type: boolean 5781 - targetNamespace: 5782 - description: |- 5783 - TargetNamespace sets or overrides the namespace in the 5784 - kustomization.yaml file. 5785 - maxLength: 63 5786 - minLength: 1 5787 - type: string 5788 - timeout: 5789 - description: |- 5790 - Timeout for validation, apply and health checking operations. 5791 - Defaults to 'Interval' duration. 5792 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 5793 - type: string 5794 - validation: 5795 - description: 'Deprecated: Not used in v1beta2.' 5796 - enum: 5797 - - none 5798 - - client 5799 - - server 5800 - type: string 5801 - wait: 5802 - description: |- 5803 - Wait instructs the controller to check the health of all the reconciled resources. 5804 - When enabled, the HealthChecks are ignored. Defaults to false. 5805 - type: boolean 5806 - required: 5807 - - interval 5808 - - prune 5809 - - sourceRef 5810 - type: object 5811 - status: 5812 - default: 5813 - observedGeneration: -1 5814 - description: KustomizationStatus defines the observed state of a kustomization. 5815 - properties: 5816 - conditions: 5817 - items: 5818 - description: Condition contains details for one aspect of the current 5819 - state of this API Resource. 5820 - properties: 5821 - lastTransitionTime: 5822 - description: |- 5823 - lastTransitionTime is the last time the condition transitioned from one status to another. 5824 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 5825 - format: date-time 5826 - type: string 5827 - message: 5828 - description: |- 5829 - message is a human readable message indicating details about the transition. 5830 - This may be an empty string. 5831 - maxLength: 32768 5832 - type: string 5833 - observedGeneration: 5834 - description: |- 5835 - observedGeneration represents the .metadata.generation that the condition was set based upon. 5836 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 5837 - with respect to the current state of the instance. 5838 - format: int64 5839 - minimum: 0 5840 - type: integer 5841 - reason: 5842 - description: |- 5843 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 5844 - Producers of specific condition types may define expected values and meanings for this field, 5845 - and whether the values are considered a guaranteed API. 5846 - The value should be a CamelCase string. 5847 - This field may not be empty. 5848 - maxLength: 1024 5849 - minLength: 1 5850 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 5851 - type: string 5852 - status: 5853 - description: status of the condition, one of True, False, Unknown. 5854 - enum: 5855 - - "True" 5856 - - "False" 5857 - - Unknown 5858 - type: string 5859 - type: 5860 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 5861 - maxLength: 316 5862 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 5863 - type: string 5864 - required: 5865 - - lastTransitionTime 5866 - - message 5867 - - reason 5868 - - status 5869 - - type 5870 - type: object 5871 - type: array 5872 - inventory: 5873 - description: Inventory contains the list of Kubernetes resource object 5874 - references that have been successfully applied. 5875 - properties: 5876 - entries: 5877 - description: Entries of Kubernetes resource object references. 5878 - items: 5879 - description: ResourceRef contains the information necessary 5880 - to locate a resource within a cluster. 5881 - properties: 5882 - id: 5883 - description: |- 5884 - ID is the string representation of the Kubernetes resource object's metadata, 5885 - in the format '<namespace>_<name>_<group>_<kind>'. 5886 - type: string 5887 - v: 5888 - description: Version is the API version of the Kubernetes 5889 - resource object's kind. 5890 - type: string 5891 - required: 5892 - - id 5893 - - v 5894 - type: object 5895 - type: array 5896 - required: 5897 - - entries 5898 - type: object 5899 - lastAppliedRevision: 5900 - description: |- 5901 - The last successfully applied revision. 5902 - Equals the Revision of the applied Artifact from the referenced Source. 5903 - type: string 5904 - lastAttemptedRevision: 5905 - description: LastAttemptedRevision is the revision of the last reconciliation 5906 - attempt. 5907 - type: string 5908 - lastHandledReconcileAt: 5909 - description: |- 5910 - LastHandledReconcileAt holds the value of the most recent 5911 - reconcile request value, so a change of the annotation value 5912 - can be detected. 5913 - type: string 5914 - observedGeneration: 5915 - description: ObservedGeneration is the last reconciled generation. 5916 - format: int64 5917 - type: integer 5918 - type: object 5919 - type: object 5920 - served: true 5921 - storage: false 5922 - subresources: 5923 - status: {} 5924 3333 --- 5925 3334 apiVersion: v1 5926 3335 kind: ServiceAccount ··· 5929 3338 app.kubernetes.io/component: kustomize-controller 5930 3339 app.kubernetes.io/instance: flux-system 5931 3340 app.kubernetes.io/part-of: flux 5932 - app.kubernetes.io/version: v2.7.5 3341 + app.kubernetes.io/version: v2.8.1 5933 3342 name: kustomize-controller 5934 3343 namespace: flux-system 5935 3344 --- ··· 5940 3349 app.kubernetes.io/component: kustomize-controller 5941 3350 app.kubernetes.io/instance: flux-system 5942 3351 app.kubernetes.io/part-of: flux 5943 - app.kubernetes.io/version: v2.7.5 3352 + app.kubernetes.io/version: v2.8.1 5944 3353 control-plane: controller 5945 3354 name: kustomize-controller 5946 3355 namespace: flux-system ··· 5959 3368 app.kubernetes.io/component: kustomize-controller 5960 3369 app.kubernetes.io/instance: flux-system 5961 3370 app.kubernetes.io/part-of: flux 5962 - app.kubernetes.io/version: v2.7.5 3371 + app.kubernetes.io/version: v2.8.1 5963 3372 spec: 5964 3373 containers: 5965 3374 - args: ··· 5978 3387 resourceFieldRef: 5979 3388 containerName: manager 5980 3389 resource: limits.memory 5981 - image: ghcr.io/fluxcd/kustomize-controller:v1.7.3 3390 + image: ghcr.io/fluxcd/kustomize-controller:v1.8.1 5982 3391 imagePullPolicy: IfNotPresent 5983 3392 livenessProbe: 5984 3393 httpGet: ··· 6035 3444 app.kubernetes.io/component: helm-controller 6036 3445 app.kubernetes.io/instance: flux-system 6037 3446 app.kubernetes.io/part-of: flux 6038 - app.kubernetes.io/version: v2.7.5 3447 + app.kubernetes.io/version: v2.8.1 6039 3448 name: helmreleases.helm.toolkit.fluxcd.io 6040 3449 spec: 6041 3450 group: helm.toolkit.fluxcd.io ··· 6381 3790 - disabled 6382 3791 type: string 6383 3792 type: object 3793 + healthCheckExprs: 3794 + description: |- 3795 + HealthCheckExprs is a list of healthcheck expressions for evaluating the 3796 + health of custom resources using Common Expression Language (CEL). 3797 + The expressions are evaluated only when the specific Helm action 3798 + taking place has wait enabled, i.e. DisableWait is false, and the 3799 + 'poller' WaitStrategy is used. 3800 + items: 3801 + description: CustomHealthCheck defines the health check for custom 3802 + resources. 3803 + properties: 3804 + apiVersion: 3805 + description: APIVersion of the custom resource under evaluation. 3806 + type: string 3807 + current: 3808 + description: |- 3809 + Current is the CEL expression that determines if the status 3810 + of the custom resource has reached the desired state. 3811 + type: string 3812 + failed: 3813 + description: |- 3814 + Failed is the CEL expression that determines if the status 3815 + of the custom resource has failed to reach the desired state. 3816 + type: string 3817 + inProgress: 3818 + description: |- 3819 + InProgress is the CEL expression that determines if the status 3820 + of the custom resource has not yet reached the desired state. 3821 + type: string 3822 + kind: 3823 + description: Kind of the custom resource under evaluation. 3824 + type: string 3825 + required: 3826 + - apiVersion 3827 + - current 3828 + - kind 3829 + type: object 3830 + type: array 6384 3831 install: 6385 3832 description: Install holds the configuration for Helm install actions 6386 3833 for this HelmRelease. ··· 6470 3917 description: |- 6471 3918 Replace tells the Helm install action to re-use the 'ReleaseName', but only 6472 3919 if that name is a deleted release which remains in the history. 3920 + type: boolean 3921 + serverSideApply: 3922 + description: |- 3923 + ServerSideApply enables server-side apply for resources during install. 3924 + Defaults to true (or false when UseHelm3Defaults feature gate is enabled). 6473 3925 type: boolean 6474 3926 skipCRDs: 6475 3927 description: |- ··· 6748 4200 strategy. 6749 4201 type: boolean 6750 4202 recreate: 6751 - description: Recreate performs pod restarts for the resource if 6752 - applicable. 4203 + description: |- 4204 + Recreate performs pod restarts for any managed workloads. 4205 + 4206 + Deprecated: This behavior was deprecated in Helm 3: 4207 + - Deprecation: https://github.com/helm/helm/pull/6463 4208 + - Removal: https://github.com/helm/helm/pull/31023 4209 + After helm-controller was upgraded to the Helm 4 SDK, 4210 + this field is no longer functional and will print a 4211 + warning if set to true. It will also be removed in a 4212 + future release. 6753 4213 type: boolean 4214 + serverSideApply: 4215 + description: |- 4216 + ServerSideApply enables server-side apply for resources during rollback. 4217 + Can be "enabled", "disabled", or "auto". 4218 + When "auto", server-side apply usage will be based on the release's previous usage. 4219 + Defaults to "auto". 4220 + enum: 4221 + - enabled 4222 + - disabled 4223 + - auto 4224 + type: string 6754 4225 timeout: 6755 4226 description: |- 6756 4227 Timeout is the time to wait for any individual Kubernetes operation (like ··· 6969 4440 - uninstall 6970 4441 type: string 6971 4442 type: object 4443 + serverSideApply: 4444 + description: |- 4445 + ServerSideApply enables server-side apply for resources during upgrade. 4446 + Can be "enabled", "disabled", or "auto". 4447 + When "auto", server-side apply usage will be based on the release's previous usage. 4448 + Defaults to "auto". 4449 + enum: 4450 + - enabled 4451 + - disabled 4452 + - auto 4453 + type: string 6972 4454 strategy: 6973 4455 description: |- 6974 4456 Strategy defines the upgrade strategy to use for this HelmRelease. ··· 7053 4535 - name 7054 4536 type: object 7055 4537 type: array 4538 + waitStrategy: 4539 + description: |- 4540 + WaitStrategy defines Helm's wait strategy for waiting for applied 4541 + resources to become ready. 4542 + properties: 4543 + name: 4544 + description: |- 4545 + Name is Helm's wait strategy for waiting for applied resources to 4546 + become ready. One of 'poller' or 'legacy'. The 'poller' strategy uses 4547 + kstatus to poll resource statuses, while the 'legacy' strategy uses 4548 + Helm v3's waiting logic. 4549 + Defaults to 'poller', or to 'legacy' when UseHelm3Defaults feature 4550 + gate is enabled. 4551 + enum: 4552 + - poller 4553 + - legacy 4554 + type: string 4555 + required: 4556 + - name 4557 + type: object 7056 4558 required: 7057 4559 - interval 7058 4560 type: object ··· 7142 4644 Snapshot captures a point-in-time copy of the status information for a Helm release, 7143 4645 as managed by the controller. 7144 4646 properties: 4647 + action: 4648 + description: Action is the action that resulted in this snapshot 4649 + being created. 4650 + type: string 7145 4651 apiVersion: 7146 4652 description: |- 7147 4653 APIVersion is the API version of the Snapshot. 7148 - Provisional: when the calculation method of the Digest field is changed, 7149 - this field will be used to distinguish between the old and new methods. 4654 + When the calculation method of the Digest field is changed, this 4655 + field will be used to distinguish between the old and new methods. 7150 4656 type: string 7151 4657 appVersion: 7152 4658 description: AppVersion is the chart app version of the release ··· 7245 4751 state. It is reset after a successful reconciliation. 7246 4752 format: int64 7247 4753 type: integer 4754 + inventory: 4755 + description: |- 4756 + Inventory contains the list of Kubernetes resource object references 4757 + that have been applied for this release. 4758 + properties: 4759 + entries: 4760 + description: Entries of Kubernetes resource object references. 4761 + items: 4762 + description: ResourceRef contains the information necessary 4763 + to locate a resource within a cluster. 4764 + properties: 4765 + id: 4766 + description: |- 4767 + ID is the string representation of the Kubernetes resource object's metadata, 4768 + in the format '<namespace>_<name>_<group>_<kind>'. 4769 + type: string 4770 + v: 4771 + description: Version is the API version of the Kubernetes 4772 + resource object's kind. 4773 + type: string 4774 + required: 4775 + - id 4776 + - v 4777 + type: object 4778 + type: array 4779 + required: 4780 + - entries 4781 + type: object 7248 4782 lastAttemptedConfigDigest: 7249 4783 description: |- 7250 4784 LastAttemptedConfigDigest is the digest for the config (better known as ··· 7344 4878 storage: true 7345 4879 subresources: 7346 4880 status: {} 7347 - - additionalPrinterColumns: 7348 - - jsonPath: .metadata.creationTimestamp 7349 - name: Age 7350 - type: date 7351 - - jsonPath: .status.conditions[?(@.type=="Ready")].status 7352 - name: Ready 7353 - type: string 7354 - - jsonPath: .status.conditions[?(@.type=="Ready")].message 7355 - name: Status 7356 - type: string 7357 - deprecated: true 7358 - deprecationWarning: v2beta2 HelmRelease is deprecated, upgrade to v2 7359 - name: v2beta2 7360 - schema: 7361 - openAPIV3Schema: 7362 - description: HelmRelease is the Schema for the helmreleases API 7363 - properties: 7364 - apiVersion: 7365 - description: |- 7366 - APIVersion defines the versioned schema of this representation of an object. 7367 - Servers should convert recognized schemas to the latest internal value, and 7368 - may reject unrecognized values. 7369 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources 7370 - type: string 7371 - kind: 7372 - description: |- 7373 - Kind is a string value representing the REST resource this object represents. 7374 - Servers may infer this from the endpoint the client submits requests to. 7375 - Cannot be updated. 7376 - In CamelCase. 7377 - More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds 7378 - type: string 7379 - metadata: 7380 - type: object 7381 - spec: 7382 - description: HelmReleaseSpec defines the desired state of a Helm release. 7383 - properties: 7384 - chart: 7385 - description: |- 7386 - Chart defines the template of the v1beta2.HelmChart that should be created 7387 - for this HelmRelease. 7388 - properties: 7389 - metadata: 7390 - description: ObjectMeta holds the template for metadata like labels 7391 - and annotations. 7392 - properties: 7393 - annotations: 7394 - additionalProperties: 7395 - type: string 7396 - description: |- 7397 - Annotations is an unstructured key value map stored with a resource that may be 7398 - set by external tools to store and retrieve arbitrary metadata. They are not 7399 - queryable and should be preserved when modifying objects. 7400 - More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/ 7401 - type: object 7402 - labels: 7403 - additionalProperties: 7404 - type: string 7405 - description: |- 7406 - Map of string keys and values that can be used to organize and categorize 7407 - (scope and select) objects. 7408 - More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/ 7409 - type: object 7410 - type: object 7411 - spec: 7412 - description: Spec holds the template for the v1beta2.HelmChartSpec 7413 - for this HelmRelease. 7414 - properties: 7415 - chart: 7416 - description: The name or path the Helm chart is available 7417 - at in the SourceRef. 7418 - maxLength: 2048 7419 - minLength: 1 7420 - type: string 7421 - ignoreMissingValuesFiles: 7422 - description: IgnoreMissingValuesFiles controls whether to 7423 - silently ignore missing values files rather than failing. 7424 - type: boolean 7425 - interval: 7426 - description: |- 7427 - Interval at which to check the v1.Source for updates. Defaults to 7428 - 'HelmReleaseSpec.Interval'. 7429 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 7430 - type: string 7431 - reconcileStrategy: 7432 - default: ChartVersion 7433 - description: |- 7434 - Determines what enables the creation of a new artifact. Valid values are 7435 - ('ChartVersion', 'Revision'). 7436 - See the documentation of the values for an explanation on their behavior. 7437 - Defaults to ChartVersion when omitted. 7438 - enum: 7439 - - ChartVersion 7440 - - Revision 7441 - type: string 7442 - sourceRef: 7443 - description: The name and namespace of the v1.Source the chart 7444 - is available at. 7445 - properties: 7446 - apiVersion: 7447 - description: APIVersion of the referent. 7448 - type: string 7449 - kind: 7450 - description: Kind of the referent. 7451 - enum: 7452 - - HelmRepository 7453 - - GitRepository 7454 - - Bucket 7455 - type: string 7456 - name: 7457 - description: Name of the referent. 7458 - maxLength: 253 7459 - minLength: 1 7460 - type: string 7461 - namespace: 7462 - description: Namespace of the referent. 7463 - maxLength: 63 7464 - minLength: 1 7465 - type: string 7466 - required: 7467 - - kind 7468 - - name 7469 - type: object 7470 - valuesFile: 7471 - description: |- 7472 - Alternative values file to use as the default chart values, expected to 7473 - be a relative path in the SourceRef. Deprecated in favor of ValuesFiles, 7474 - for backwards compatibility the file defined here is merged before the 7475 - ValuesFiles items. Ignored when omitted. 7476 - type: string 7477 - valuesFiles: 7478 - description: |- 7479 - Alternative list of values files to use as the chart values (values.yaml 7480 - is not included by default), expected to be a relative path in the SourceRef. 7481 - Values files are merged in the order of this list with the last file overriding 7482 - the first. Ignored when omitted. 7483 - items: 7484 - type: string 7485 - type: array 7486 - verify: 7487 - description: |- 7488 - Verify contains the secret name containing the trusted public keys 7489 - used to verify the signature and specifies which provider to use to check 7490 - whether OCI image is authentic. 7491 - This field is only supported for OCI sources. 7492 - Chart dependencies, which are not bundled in the umbrella chart artifact, 7493 - are not verified. 7494 - properties: 7495 - provider: 7496 - default: cosign 7497 - description: Provider specifies the technology used to 7498 - sign the OCI Helm chart. 7499 - enum: 7500 - - cosign 7501 - - notation 7502 - type: string 7503 - secretRef: 7504 - description: |- 7505 - SecretRef specifies the Kubernetes Secret containing the 7506 - trusted public keys. 7507 - properties: 7508 - name: 7509 - description: Name of the referent. 7510 - type: string 7511 - required: 7512 - - name 7513 - type: object 7514 - required: 7515 - - provider 7516 - type: object 7517 - version: 7518 - default: '*' 7519 - description: |- 7520 - Version semver expression, ignored for charts from v1beta2.GitRepository and 7521 - v1beta2.Bucket sources. Defaults to latest when omitted. 7522 - type: string 7523 - required: 7524 - - chart 7525 - - sourceRef 7526 - type: object 7527 - required: 7528 - - spec 7529 - type: object 7530 - chartRef: 7531 - description: |- 7532 - ChartRef holds a reference to a source controller resource containing the 7533 - Helm chart artifact. 7534 - 7535 - Note: this field is provisional to the v2 API, and not actively used 7536 - by v2beta2 HelmReleases. 7537 - properties: 7538 - apiVersion: 7539 - description: APIVersion of the referent. 7540 - type: string 7541 - kind: 7542 - description: Kind of the referent. 7543 - enum: 7544 - - OCIRepository 7545 - - HelmChart 7546 - type: string 7547 - name: 7548 - description: Name of the referent. 7549 - maxLength: 253 7550 - minLength: 1 7551 - type: string 7552 - namespace: 7553 - description: |- 7554 - Namespace of the referent, defaults to the namespace of the Kubernetes 7555 - resource object that contains the reference. 7556 - maxLength: 63 7557 - minLength: 1 7558 - type: string 7559 - required: 7560 - - kind 7561 - - name 7562 - type: object 7563 - dependsOn: 7564 - description: |- 7565 - DependsOn may contain a meta.NamespacedObjectReference slice with 7566 - references to HelmRelease resources that must be ready before this HelmRelease 7567 - can be reconciled. 7568 - items: 7569 - description: |- 7570 - NamespacedObjectReference contains enough information to locate the referenced Kubernetes resource object in any 7571 - namespace. 7572 - properties: 7573 - name: 7574 - description: Name of the referent. 7575 - type: string 7576 - namespace: 7577 - description: Namespace of the referent, when not specified it 7578 - acts as LocalObjectReference. 7579 - type: string 7580 - required: 7581 - - name 7582 - type: object 7583 - type: array 7584 - driftDetection: 7585 - description: |- 7586 - DriftDetection holds the configuration for detecting and handling 7587 - differences between the manifest in the Helm storage and the resources 7588 - currently existing in the cluster. 7589 - properties: 7590 - ignore: 7591 - description: |- 7592 - Ignore contains a list of rules for specifying which changes to ignore 7593 - during diffing. 7594 - items: 7595 - description: |- 7596 - IgnoreRule defines a rule to selectively disregard specific changes during 7597 - the drift detection process. 7598 - properties: 7599 - paths: 7600 - description: |- 7601 - Paths is a list of JSON Pointer (RFC 6901) paths to be excluded from 7602 - consideration in a Kubernetes object. 7603 - items: 7604 - type: string 7605 - type: array 7606 - target: 7607 - description: |- 7608 - Target is a selector for specifying Kubernetes objects to which this 7609 - rule applies. 7610 - If Target is not set, the Paths will be ignored for all Kubernetes 7611 - objects within the manifest of the Helm release. 7612 - properties: 7613 - annotationSelector: 7614 - description: |- 7615 - AnnotationSelector is a string that follows the label selection expression 7616 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 7617 - It matches with the resource annotations. 7618 - type: string 7619 - group: 7620 - description: |- 7621 - Group is the API group to select resources from. 7622 - Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources. 7623 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 7624 - type: string 7625 - kind: 7626 - description: |- 7627 - Kind of the API Group to select resources from. 7628 - Together with Group and Version it is capable of unambiguously 7629 - identifying and/or selecting resources. 7630 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 7631 - type: string 7632 - labelSelector: 7633 - description: |- 7634 - LabelSelector is a string that follows the label selection expression 7635 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 7636 - It matches with the resource labels. 7637 - type: string 7638 - name: 7639 - description: Name to match resources with. 7640 - type: string 7641 - namespace: 7642 - description: Namespace to select resources from. 7643 - type: string 7644 - version: 7645 - description: |- 7646 - Version of the API Group to select resources from. 7647 - Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources. 7648 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 7649 - type: string 7650 - type: object 7651 - required: 7652 - - paths 7653 - type: object 7654 - type: array 7655 - mode: 7656 - description: |- 7657 - Mode defines how differences should be handled between the Helm manifest 7658 - and the manifest currently applied to the cluster. 7659 - If not explicitly set, it defaults to DiffModeDisabled. 7660 - enum: 7661 - - enabled 7662 - - warn 7663 - - disabled 7664 - type: string 7665 - type: object 7666 - install: 7667 - description: Install holds the configuration for Helm install actions 7668 - for this HelmRelease. 7669 - properties: 7670 - crds: 7671 - description: |- 7672 - CRDs upgrade CRDs from the Helm Chart's crds directory according 7673 - to the CRD upgrade policy provided here. Valid values are `Skip`, 7674 - `Create` or `CreateReplace`. Default is `Create` and if omitted 7675 - CRDs are installed but not updated. 7676 - 7677 - Skip: do neither install nor replace (update) any CRDs. 7678 - 7679 - Create: new CRDs are created, existing CRDs are neither updated nor deleted. 7680 - 7681 - CreateReplace: new CRDs are created, existing CRDs are updated (replaced) 7682 - but not deleted. 7683 - 7684 - By default, CRDs are applied (installed) during Helm install action. 7685 - With this option users can opt in to CRD replace existing CRDs on Helm 7686 - install actions, which is not (yet) natively supported by Helm. 7687 - https://helm.sh/docs/chart_best_practices/custom_resource_definitions. 7688 - enum: 7689 - - Skip 7690 - - Create 7691 - - CreateReplace 7692 - type: string 7693 - createNamespace: 7694 - description: |- 7695 - CreateNamespace tells the Helm install action to create the 7696 - HelmReleaseSpec.TargetNamespace if it does not exist yet. 7697 - On uninstall, the namespace will not be garbage collected. 7698 - type: boolean 7699 - disableHooks: 7700 - description: DisableHooks prevents hooks from running during the 7701 - Helm install action. 7702 - type: boolean 7703 - disableOpenAPIValidation: 7704 - description: |- 7705 - DisableOpenAPIValidation prevents the Helm install action from validating 7706 - rendered templates against the Kubernetes OpenAPI Schema. 7707 - type: boolean 7708 - disableWait: 7709 - description: |- 7710 - DisableWait disables the waiting for resources to be ready after a Helm 7711 - install has been performed. 7712 - type: boolean 7713 - disableWaitForJobs: 7714 - description: |- 7715 - DisableWaitForJobs disables waiting for jobs to complete after a Helm 7716 - install has been performed. 7717 - type: boolean 7718 - remediation: 7719 - description: |- 7720 - Remediation holds the remediation configuration for when the Helm install 7721 - action for the HelmRelease fails. The default is to not perform any action. 7722 - properties: 7723 - ignoreTestFailures: 7724 - description: |- 7725 - IgnoreTestFailures tells the controller to skip remediation when the Helm 7726 - tests are run after an install action but fail. Defaults to 7727 - 'Test.IgnoreFailures'. 7728 - type: boolean 7729 - remediateLastFailure: 7730 - description: |- 7731 - RemediateLastFailure tells the controller to remediate the last failure, when 7732 - no retries remain. Defaults to 'false'. 7733 - type: boolean 7734 - retries: 7735 - description: |- 7736 - Retries is the number of retries that should be attempted on failures before 7737 - bailing. Remediation, using an uninstall, is performed between each attempt. 7738 - Defaults to '0', a negative integer equals to unlimited retries. 7739 - type: integer 7740 - type: object 7741 - replace: 7742 - description: |- 7743 - Replace tells the Helm install action to re-use the 'ReleaseName', but only 7744 - if that name is a deleted release which remains in the history. 7745 - type: boolean 7746 - skipCRDs: 7747 - description: |- 7748 - SkipCRDs tells the Helm install action to not install any CRDs. By default, 7749 - CRDs are installed if not already present. 7750 - 7751 - Deprecated use CRD policy (`crds`) attribute with value `Skip` instead. 7752 - type: boolean 7753 - timeout: 7754 - description: |- 7755 - Timeout is the time to wait for any individual Kubernetes operation (like 7756 - Jobs for hooks) during the performance of a Helm install action. Defaults to 7757 - 'HelmReleaseSpec.Timeout'. 7758 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 7759 - type: string 7760 - type: object 7761 - interval: 7762 - description: Interval at which to reconcile the Helm release. 7763 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 7764 - type: string 7765 - kubeConfig: 7766 - description: |- 7767 - KubeConfig for reconciling the HelmRelease on a remote cluster. 7768 - When used in combination with HelmReleaseSpec.ServiceAccountName, 7769 - forces the controller to act on behalf of that Service Account at the 7770 - target cluster. 7771 - If the --default-service-account flag is set, its value will be used as 7772 - a controller level fallback for when HelmReleaseSpec.ServiceAccountName 7773 - is empty. 7774 - properties: 7775 - configMapRef: 7776 - description: |- 7777 - ConfigMapRef holds an optional name of a ConfigMap that contains 7778 - the following keys: 7779 - 7780 - - `provider`: the provider to use. One of `aws`, `azure`, `gcp`, or 7781 - `generic`. Required. 7782 - - `cluster`: the fully qualified resource name of the Kubernetes 7783 - cluster in the cloud provider API. Not used by the `generic` 7784 - provider. Required when one of `address` or `ca.crt` is not set. 7785 - - `address`: the address of the Kubernetes API server. Required 7786 - for `generic`. For the other providers, if not specified, the 7787 - first address in the cluster resource will be used, and if 7788 - specified, it must match one of the addresses in the cluster 7789 - resource. 7790 - If audiences is not set, will be used as the audience for the 7791 - `generic` provider. 7792 - - `ca.crt`: the optional PEM-encoded CA certificate for the 7793 - Kubernetes API server. If not set, the controller will use the 7794 - CA certificate from the cluster resource. 7795 - - `audiences`: the optional audiences as a list of 7796 - line-break-separated strings for the Kubernetes ServiceAccount 7797 - token. Defaults to the `address` for the `generic` provider, or 7798 - to specific values for the other providers depending on the 7799 - provider. 7800 - - `serviceAccountName`: the optional name of the Kubernetes 7801 - ServiceAccount in the same namespace that should be used 7802 - for authentication. If not specified, the controller 7803 - ServiceAccount will be used. 7804 - 7805 - Mutually exclusive with SecretRef. 7806 - properties: 7807 - name: 7808 - description: Name of the referent. 7809 - type: string 7810 - required: 7811 - - name 7812 - type: object 7813 - secretRef: 7814 - description: |- 7815 - SecretRef holds an optional name of a secret that contains a key with 7816 - the kubeconfig file as the value. If no key is set, the key will default 7817 - to 'value'. Mutually exclusive with ConfigMapRef. 7818 - It is recommended that the kubeconfig is self-contained, and the secret 7819 - is regularly updated if credentials such as a cloud-access-token expire. 7820 - Cloud specific `cmd-path` auth helpers will not function without adding 7821 - binaries and credentials to the Pod that is responsible for reconciling 7822 - Kubernetes resources. Supported only for the generic provider. 7823 - properties: 7824 - key: 7825 - description: Key in the Secret, when not specified an implementation-specific 7826 - default key is used. 7827 - type: string 7828 - name: 7829 - description: Name of the Secret. 7830 - type: string 7831 - required: 7832 - - name 7833 - type: object 7834 - type: object 7835 - x-kubernetes-validations: 7836 - - message: exactly one of spec.kubeConfig.configMapRef or spec.kubeConfig.secretRef 7837 - must be specified 7838 - rule: has(self.configMapRef) || has(self.secretRef) 7839 - - message: exactly one of spec.kubeConfig.configMapRef or spec.kubeConfig.secretRef 7840 - must be specified 7841 - rule: '!has(self.configMapRef) || !has(self.secretRef)' 7842 - maxHistory: 7843 - description: |- 7844 - MaxHistory is the number of revisions saved by Helm for this HelmRelease. 7845 - Use '0' for an unlimited number of revisions; defaults to '5'. 7846 - type: integer 7847 - persistentClient: 7848 - description: |- 7849 - PersistentClient tells the controller to use a persistent Kubernetes 7850 - client for this release. When enabled, the client will be reused for the 7851 - duration of the reconciliation, instead of being created and destroyed 7852 - for each (step of a) Helm action. 7853 - 7854 - This can improve performance, but may cause issues with some Helm charts 7855 - that for example do create Custom Resource Definitions during installation 7856 - outside Helm's CRD lifecycle hooks, which are then not observed to be 7857 - available by e.g. post-install hooks. 7858 - 7859 - If not set, it defaults to true. 7860 - type: boolean 7861 - postRenderers: 7862 - description: |- 7863 - PostRenderers holds an array of Helm PostRenderers, which will be applied in order 7864 - of their definition. 7865 - items: 7866 - description: PostRenderer contains a Helm PostRenderer specification. 7867 - properties: 7868 - kustomize: 7869 - description: Kustomization to apply as PostRenderer. 7870 - properties: 7871 - images: 7872 - description: |- 7873 - Images is a list of (image name, new name, new tag or digest) 7874 - for changing image names, tags or digests. This can also be achieved with a 7875 - patch, but this operator is simpler to specify. 7876 - items: 7877 - description: Image contains an image name, a new name, 7878 - a new tag or digest, which will replace the original 7879 - name and tag. 7880 - properties: 7881 - digest: 7882 - description: |- 7883 - Digest is the value used to replace the original image tag. 7884 - If digest is present NewTag value is ignored. 7885 - type: string 7886 - name: 7887 - description: Name is a tag-less image name. 7888 - type: string 7889 - newName: 7890 - description: NewName is the value used to replace 7891 - the original name. 7892 - type: string 7893 - newTag: 7894 - description: NewTag is the value used to replace the 7895 - original tag. 7896 - type: string 7897 - required: 7898 - - name 7899 - type: object 7900 - type: array 7901 - patches: 7902 - description: |- 7903 - Strategic merge and JSON patches, defined as inline YAML objects, 7904 - capable of targeting objects based on kind, label and annotation selectors. 7905 - items: 7906 - description: |- 7907 - Patch contains an inline StrategicMerge or JSON6902 patch, and the target the patch should 7908 - be applied to. 7909 - properties: 7910 - patch: 7911 - description: |- 7912 - Patch contains an inline StrategicMerge patch or an inline JSON6902 patch with 7913 - an array of operation objects. 7914 - type: string 7915 - target: 7916 - description: Target points to the resources that the 7917 - patch document should be applied to. 7918 - properties: 7919 - annotationSelector: 7920 - description: |- 7921 - AnnotationSelector is a string that follows the label selection expression 7922 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 7923 - It matches with the resource annotations. 7924 - type: string 7925 - group: 7926 - description: |- 7927 - Group is the API group to select resources from. 7928 - Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources. 7929 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 7930 - type: string 7931 - kind: 7932 - description: |- 7933 - Kind of the API Group to select resources from. 7934 - Together with Group and Version it is capable of unambiguously 7935 - identifying and/or selecting resources. 7936 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 7937 - type: string 7938 - labelSelector: 7939 - description: |- 7940 - LabelSelector is a string that follows the label selection expression 7941 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 7942 - It matches with the resource labels. 7943 - type: string 7944 - name: 7945 - description: Name to match resources with. 7946 - type: string 7947 - namespace: 7948 - description: Namespace to select resources from. 7949 - type: string 7950 - version: 7951 - description: |- 7952 - Version of the API Group to select resources from. 7953 - Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources. 7954 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 7955 - type: string 7956 - type: object 7957 - required: 7958 - - patch 7959 - type: object 7960 - type: array 7961 - patchesJson6902: 7962 - description: |- 7963 - JSON 6902 patches, defined as inline YAML objects. 7964 - 7965 - Deprecated: use Patches instead. 7966 - items: 7967 - description: JSON6902Patch contains a JSON6902 patch and 7968 - the target the patch should be applied to. 7969 - properties: 7970 - patch: 7971 - description: Patch contains the JSON6902 patch document 7972 - with an array of operation objects. 7973 - items: 7974 - description: |- 7975 - JSON6902 is a JSON6902 operation object. 7976 - https://datatracker.ietf.org/doc/html/rfc6902#section-4 7977 - properties: 7978 - from: 7979 - description: |- 7980 - From contains a JSON-pointer value that references a location within the target document where the operation is 7981 - performed. The meaning of the value depends on the value of Op, and is NOT taken into account by all operations. 7982 - type: string 7983 - op: 7984 - description: |- 7985 - Op indicates the operation to perform. Its value MUST be one of "add", "remove", "replace", "move", "copy", or 7986 - "test". 7987 - https://datatracker.ietf.org/doc/html/rfc6902#section-4 7988 - enum: 7989 - - test 7990 - - remove 7991 - - add 7992 - - replace 7993 - - move 7994 - - copy 7995 - type: string 7996 - path: 7997 - description: |- 7998 - Path contains the JSON-pointer value that references a location within the target document where the operation 7999 - is performed. The meaning of the value depends on the value of Op. 8000 - type: string 8001 - value: 8002 - description: |- 8003 - Value contains a valid JSON structure. The meaning of the value depends on the value of Op, and is NOT taken into 8004 - account by all operations. 8005 - x-kubernetes-preserve-unknown-fields: true 8006 - required: 8007 - - op 8008 - - path 8009 - type: object 8010 - type: array 8011 - target: 8012 - description: Target points to the resources that the 8013 - patch document should be applied to. 8014 - properties: 8015 - annotationSelector: 8016 - description: |- 8017 - AnnotationSelector is a string that follows the label selection expression 8018 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 8019 - It matches with the resource annotations. 8020 - type: string 8021 - group: 8022 - description: |- 8023 - Group is the API group to select resources from. 8024 - Together with Version and Kind it is capable of unambiguously identifying and/or selecting resources. 8025 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 8026 - type: string 8027 - kind: 8028 - description: |- 8029 - Kind of the API Group to select resources from. 8030 - Together with Group and Version it is capable of unambiguously 8031 - identifying and/or selecting resources. 8032 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 8033 - type: string 8034 - labelSelector: 8035 - description: |- 8036 - LabelSelector is a string that follows the label selection expression 8037 - https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#api 8038 - It matches with the resource labels. 8039 - type: string 8040 - name: 8041 - description: Name to match resources with. 8042 - type: string 8043 - namespace: 8044 - description: Namespace to select resources from. 8045 - type: string 8046 - version: 8047 - description: |- 8048 - Version of the API Group to select resources from. 8049 - Together with Group and Kind it is capable of unambiguously identifying and/or selecting resources. 8050 - https://github.com/kubernetes/community/blob/master/contributors/design-proposals/api-machinery/api-group.md 8051 - type: string 8052 - type: object 8053 - required: 8054 - - patch 8055 - - target 8056 - type: object 8057 - type: array 8058 - patchesStrategicMerge: 8059 - description: |- 8060 - Strategic merge patches, defined as inline YAML objects. 8061 - 8062 - Deprecated: use Patches instead. 8063 - items: 8064 - x-kubernetes-preserve-unknown-fields: true 8065 - type: array 8066 - type: object 8067 - type: object 8068 - type: array 8069 - releaseName: 8070 - description: |- 8071 - ReleaseName used for the Helm release. Defaults to a composition of 8072 - '[TargetNamespace-]Name'. 8073 - maxLength: 53 8074 - minLength: 1 8075 - type: string 8076 - rollback: 8077 - description: Rollback holds the configuration for Helm rollback actions 8078 - for this HelmRelease. 8079 - properties: 8080 - cleanupOnFail: 8081 - description: |- 8082 - CleanupOnFail allows deletion of new resources created during the Helm 8083 - rollback action when it fails. 8084 - type: boolean 8085 - disableHooks: 8086 - description: DisableHooks prevents hooks from running during the 8087 - Helm rollback action. 8088 - type: boolean 8089 - disableWait: 8090 - description: |- 8091 - DisableWait disables the waiting for resources to be ready after a Helm 8092 - rollback has been performed. 8093 - type: boolean 8094 - disableWaitForJobs: 8095 - description: |- 8096 - DisableWaitForJobs disables waiting for jobs to complete after a Helm 8097 - rollback has been performed. 8098 - type: boolean 8099 - force: 8100 - description: Force forces resource updates through a replacement 8101 - strategy. 8102 - type: boolean 8103 - recreate: 8104 - description: Recreate performs pod restarts for the resource if 8105 - applicable. 8106 - type: boolean 8107 - timeout: 8108 - description: |- 8109 - Timeout is the time to wait for any individual Kubernetes operation (like 8110 - Jobs for hooks) during the performance of a Helm rollback action. Defaults to 8111 - 'HelmReleaseSpec.Timeout'. 8112 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 8113 - type: string 8114 - type: object 8115 - serviceAccountName: 8116 - description: |- 8117 - The name of the Kubernetes service account to impersonate 8118 - when reconciling this HelmRelease. 8119 - maxLength: 253 8120 - minLength: 1 8121 - type: string 8122 - storageNamespace: 8123 - description: |- 8124 - StorageNamespace used for the Helm storage. 8125 - Defaults to the namespace of the HelmRelease. 8126 - maxLength: 63 8127 - minLength: 1 8128 - type: string 8129 - suspend: 8130 - description: |- 8131 - Suspend tells the controller to suspend reconciliation for this HelmRelease, 8132 - it does not apply to already started reconciliations. Defaults to false. 8133 - type: boolean 8134 - targetNamespace: 8135 - description: |- 8136 - TargetNamespace to target when performing operations for the HelmRelease. 8137 - Defaults to the namespace of the HelmRelease. 8138 - maxLength: 63 8139 - minLength: 1 8140 - type: string 8141 - test: 8142 - description: Test holds the configuration for Helm test actions for 8143 - this HelmRelease. 8144 - properties: 8145 - enable: 8146 - description: |- 8147 - Enable enables Helm test actions for this HelmRelease after an Helm install 8148 - or upgrade action has been performed. 8149 - type: boolean 8150 - filters: 8151 - description: Filters is a list of tests to run or exclude from 8152 - running. 8153 - items: 8154 - description: Filter holds the configuration for individual Helm 8155 - test filters. 8156 - properties: 8157 - exclude: 8158 - description: Exclude specifies whether the named test should 8159 - be excluded. 8160 - type: boolean 8161 - name: 8162 - description: Name is the name of the test. 8163 - maxLength: 253 8164 - minLength: 1 8165 - type: string 8166 - required: 8167 - - name 8168 - type: object 8169 - type: array 8170 - ignoreFailures: 8171 - description: |- 8172 - IgnoreFailures tells the controller to skip remediation when the Helm tests 8173 - are run but fail. Can be overwritten for tests run after install or upgrade 8174 - actions in 'Install.IgnoreTestFailures' and 'Upgrade.IgnoreTestFailures'. 8175 - type: boolean 8176 - timeout: 8177 - description: |- 8178 - Timeout is the time to wait for any individual Kubernetes operation during 8179 - the performance of a Helm test action. Defaults to 'HelmReleaseSpec.Timeout'. 8180 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 8181 - type: string 8182 - type: object 8183 - timeout: 8184 - description: |- 8185 - Timeout is the time to wait for any individual Kubernetes operation (like Jobs 8186 - for hooks) during the performance of a Helm action. Defaults to '5m0s'. 8187 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 8188 - type: string 8189 - uninstall: 8190 - description: Uninstall holds the configuration for Helm uninstall 8191 - actions for this HelmRelease. 8192 - properties: 8193 - deletionPropagation: 8194 - default: background 8195 - description: |- 8196 - DeletionPropagation specifies the deletion propagation policy when 8197 - a Helm uninstall is performed. 8198 - enum: 8199 - - background 8200 - - foreground 8201 - - orphan 8202 - type: string 8203 - disableHooks: 8204 - description: DisableHooks prevents hooks from running during the 8205 - Helm rollback action. 8206 - type: boolean 8207 - disableWait: 8208 - description: |- 8209 - DisableWait disables waiting for all the resources to be deleted after 8210 - a Helm uninstall is performed. 8211 - type: boolean 8212 - keepHistory: 8213 - description: |- 8214 - KeepHistory tells Helm to remove all associated resources and mark the 8215 - release as deleted, but retain the release history. 8216 - type: boolean 8217 - timeout: 8218 - description: |- 8219 - Timeout is the time to wait for any individual Kubernetes operation (like 8220 - Jobs for hooks) during the performance of a Helm uninstall action. Defaults 8221 - to 'HelmReleaseSpec.Timeout'. 8222 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 8223 - type: string 8224 - type: object 8225 - upgrade: 8226 - description: Upgrade holds the configuration for Helm upgrade actions 8227 - for this HelmRelease. 8228 - properties: 8229 - cleanupOnFail: 8230 - description: |- 8231 - CleanupOnFail allows deletion of new resources created during the Helm 8232 - upgrade action when it fails. 8233 - type: boolean 8234 - crds: 8235 - description: |- 8236 - CRDs upgrade CRDs from the Helm Chart's crds directory according 8237 - to the CRD upgrade policy provided here. Valid values are `Skip`, 8238 - `Create` or `CreateReplace`. Default is `Skip` and if omitted 8239 - CRDs are neither installed nor upgraded. 8240 - 8241 - Skip: do neither install nor replace (update) any CRDs. 8242 - 8243 - Create: new CRDs are created, existing CRDs are neither updated nor deleted. 8244 - 8245 - CreateReplace: new CRDs are created, existing CRDs are updated (replaced) 8246 - but not deleted. 8247 - 8248 - By default, CRDs are not applied during Helm upgrade action. With this 8249 - option users can opt-in to CRD upgrade, which is not (yet) natively supported by Helm. 8250 - https://helm.sh/docs/chart_best_practices/custom_resource_definitions. 8251 - enum: 8252 - - Skip 8253 - - Create 8254 - - CreateReplace 8255 - type: string 8256 - disableHooks: 8257 - description: DisableHooks prevents hooks from running during the 8258 - Helm upgrade action. 8259 - type: boolean 8260 - disableOpenAPIValidation: 8261 - description: |- 8262 - DisableOpenAPIValidation prevents the Helm upgrade action from validating 8263 - rendered templates against the Kubernetes OpenAPI Schema. 8264 - type: boolean 8265 - disableWait: 8266 - description: |- 8267 - DisableWait disables the waiting for resources to be ready after a Helm 8268 - upgrade has been performed. 8269 - type: boolean 8270 - disableWaitForJobs: 8271 - description: |- 8272 - DisableWaitForJobs disables waiting for jobs to complete after a Helm 8273 - upgrade has been performed. 8274 - type: boolean 8275 - force: 8276 - description: Force forces resource updates through a replacement 8277 - strategy. 8278 - type: boolean 8279 - preserveValues: 8280 - description: |- 8281 - PreserveValues will make Helm reuse the last release's values and merge in 8282 - overrides from 'Values'. Setting this flag makes the HelmRelease 8283 - non-declarative. 8284 - type: boolean 8285 - remediation: 8286 - description: |- 8287 - Remediation holds the remediation configuration for when the Helm upgrade 8288 - action for the HelmRelease fails. The default is to not perform any action. 8289 - properties: 8290 - ignoreTestFailures: 8291 - description: |- 8292 - IgnoreTestFailures tells the controller to skip remediation when the Helm 8293 - tests are run after an upgrade action but fail. 8294 - Defaults to 'Test.IgnoreFailures'. 8295 - type: boolean 8296 - remediateLastFailure: 8297 - description: |- 8298 - RemediateLastFailure tells the controller to remediate the last failure, when 8299 - no retries remain. Defaults to 'false' unless 'Retries' is greater than 0. 8300 - type: boolean 8301 - retries: 8302 - description: |- 8303 - Retries is the number of retries that should be attempted on failures before 8304 - bailing. Remediation, using 'Strategy', is performed between each attempt. 8305 - Defaults to '0', a negative integer equals to unlimited retries. 8306 - type: integer 8307 - strategy: 8308 - description: Strategy to use for failure remediation. Defaults 8309 - to 'rollback'. 8310 - enum: 8311 - - rollback 8312 - - uninstall 8313 - type: string 8314 - type: object 8315 - timeout: 8316 - description: |- 8317 - Timeout is the time to wait for any individual Kubernetes operation (like 8318 - Jobs for hooks) during the performance of a Helm upgrade action. Defaults to 8319 - 'HelmReleaseSpec.Timeout'. 8320 - pattern: ^([0-9]+(\.[0-9]+)?(ms|s|m|h))+$ 8321 - type: string 8322 - type: object 8323 - values: 8324 - description: Values holds the values for this Helm release. 8325 - x-kubernetes-preserve-unknown-fields: true 8326 - valuesFrom: 8327 - description: |- 8328 - ValuesFrom holds references to resources containing Helm values for this HelmRelease, 8329 - and information about how they should be merged. 8330 - items: 8331 - description: |- 8332 - ValuesReference contains a reference to a resource containing Helm values, 8333 - and optionally the key they can be found at. 8334 - properties: 8335 - kind: 8336 - description: Kind of the values referent, valid values are ('Secret', 8337 - 'ConfigMap'). 8338 - enum: 8339 - - Secret 8340 - - ConfigMap 8341 - type: string 8342 - name: 8343 - description: |- 8344 - Name of the values referent. Should reside in the same namespace as the 8345 - referring resource. 8346 - maxLength: 253 8347 - minLength: 1 8348 - type: string 8349 - optional: 8350 - description: |- 8351 - Optional marks this ValuesReference as optional. When set, a not found error 8352 - for the values reference is ignored, but any ValuesKey, TargetPath or 8353 - transient error will still result in a reconciliation failure. 8354 - type: boolean 8355 - targetPath: 8356 - description: |- 8357 - TargetPath is the YAML dot notation path the value should be merged at. When 8358 - set, the ValuesKey is expected to be a single flat value. Defaults to 'None', 8359 - which results in the values getting merged at the root. 8360 - maxLength: 250 8361 - pattern: ^([a-zA-Z0-9_\-.\\\/]|\[[0-9]{1,5}\])+$ 8362 - type: string 8363 - valuesKey: 8364 - description: |- 8365 - ValuesKey is the data key where the values.yaml or a specific value can be 8366 - found at. Defaults to 'values.yaml'. 8367 - maxLength: 253 8368 - pattern: ^[\-._a-zA-Z0-9]+$ 8369 - type: string 8370 - required: 8371 - - kind 8372 - - name 8373 - type: object 8374 - type: array 8375 - required: 8376 - - interval 8377 - type: object 8378 - x-kubernetes-validations: 8379 - - message: either chart or chartRef must be set 8380 - rule: (has(self.chart) && !has(self.chartRef)) || (!has(self.chart) 8381 - && has(self.chartRef)) 8382 - status: 8383 - default: 8384 - observedGeneration: -1 8385 - description: HelmReleaseStatus defines the observed state of a HelmRelease. 8386 - properties: 8387 - conditions: 8388 - description: Conditions holds the conditions for the HelmRelease. 8389 - items: 8390 - description: Condition contains details for one aspect of the current 8391 - state of this API Resource. 8392 - properties: 8393 - lastTransitionTime: 8394 - description: |- 8395 - lastTransitionTime is the last time the condition transitioned from one status to another. 8396 - This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable. 8397 - format: date-time 8398 - type: string 8399 - message: 8400 - description: |- 8401 - message is a human readable message indicating details about the transition. 8402 - This may be an empty string. 8403 - maxLength: 32768 8404 - type: string 8405 - observedGeneration: 8406 - description: |- 8407 - observedGeneration represents the .metadata.generation that the condition was set based upon. 8408 - For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date 8409 - with respect to the current state of the instance. 8410 - format: int64 8411 - minimum: 0 8412 - type: integer 8413 - reason: 8414 - description: |- 8415 - reason contains a programmatic identifier indicating the reason for the condition's last transition. 8416 - Producers of specific condition types may define expected values and meanings for this field, 8417 - and whether the values are considered a guaranteed API. 8418 - The value should be a CamelCase string. 8419 - This field may not be empty. 8420 - maxLength: 1024 8421 - minLength: 1 8422 - pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$ 8423 - type: string 8424 - status: 8425 - description: status of the condition, one of True, False, Unknown. 8426 - enum: 8427 - - "True" 8428 - - "False" 8429 - - Unknown 8430 - type: string 8431 - type: 8432 - description: type of condition in CamelCase or in foo.example.com/CamelCase. 8433 - maxLength: 316 8434 - pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$ 8435 - type: string 8436 - required: 8437 - - lastTransitionTime 8438 - - message 8439 - - reason 8440 - - status 8441 - - type 8442 - type: object 8443 - type: array 8444 - failures: 8445 - description: |- 8446 - Failures is the reconciliation failure count against the latest desired 8447 - state. It is reset after a successful reconciliation. 8448 - format: int64 8449 - type: integer 8450 - helmChart: 8451 - description: |- 8452 - HelmChart is the namespaced name of the HelmChart resource created by 8453 - the controller for the HelmRelease. 8454 - type: string 8455 - history: 8456 - description: |- 8457 - History holds the history of Helm releases performed for this HelmRelease 8458 - up to the last successfully completed release. 8459 - items: 8460 - description: |- 8461 - Snapshot captures a point-in-time copy of the status information for a Helm release, 8462 - as managed by the controller. 8463 - properties: 8464 - apiVersion: 8465 - description: |- 8466 - APIVersion is the API version of the Snapshot. 8467 - Provisional: when the calculation method of the Digest field is changed, 8468 - this field will be used to distinguish between the old and new methods. 8469 - type: string 8470 - appVersion: 8471 - description: AppVersion is the chart app version of the release 8472 - object in storage. 8473 - type: string 8474 - chartName: 8475 - description: ChartName is the chart name of the release object 8476 - in storage. 8477 - type: string 8478 - chartVersion: 8479 - description: |- 8480 - ChartVersion is the chart version of the release object in 8481 - storage. 8482 - type: string 8483 - configDigest: 8484 - description: |- 8485 - ConfigDigest is the checksum of the config (better known as 8486 - "values") of the release object in storage. 8487 - It has the format of `<algo>:<checksum>`. 8488 - type: string 8489 - deleted: 8490 - description: Deleted is when the release was deleted. 8491 - format: date-time 8492 - type: string 8493 - digest: 8494 - description: |- 8495 - Digest is the checksum of the release object in storage. 8496 - It has the format of `<algo>:<checksum>`. 8497 - type: string 8498 - firstDeployed: 8499 - description: FirstDeployed is when the release was first deployed. 8500 - format: date-time 8501 - type: string 8502 - lastDeployed: 8503 - description: LastDeployed is when the release was last deployed. 8504 - format: date-time 8505 - type: string 8506 - name: 8507 - description: Name is the name of the release. 8508 - type: string 8509 - namespace: 8510 - description: Namespace is the namespace the release is deployed 8511 - to. 8512 - type: string 8513 - ociDigest: 8514 - description: OCIDigest is the digest of the OCI artifact associated 8515 - with the release. 8516 - type: string 8517 - status: 8518 - description: Status is the current state of the release. 8519 - type: string 8520 - testHooks: 8521 - additionalProperties: 8522 - description: |- 8523 - TestHookStatus holds the status information for a test hook as observed 8524 - to be run by the controller. 8525 - properties: 8526 - lastCompleted: 8527 - description: LastCompleted is the time the test hook last 8528 - completed. 8529 - format: date-time 8530 - type: string 8531 - lastStarted: 8532 - description: LastStarted is the time the test hook was 8533 - last started. 8534 - format: date-time 8535 - type: string 8536 - phase: 8537 - description: Phase the test hook was observed to be in. 8538 - type: string 8539 - type: object 8540 - description: |- 8541 - TestHooks is the list of test hooks for the release as observed to be 8542 - run by the controller. 8543 - type: object 8544 - version: 8545 - description: Version is the version of the release object in 8546 - storage. 8547 - type: integer 8548 - required: 8549 - - chartName 8550 - - chartVersion 8551 - - configDigest 8552 - - digest 8553 - - firstDeployed 8554 - - lastDeployed 8555 - - name 8556 - - namespace 8557 - - status 8558 - - version 8559 - type: object 8560 - type: array 8561 - installFailures: 8562 - description: |- 8563 - InstallFailures is the install failure count against the latest desired 8564 - state. It is reset after a successful reconciliation. 8565 - format: int64 8566 - type: integer 8567 - lastAppliedRevision: 8568 - description: |- 8569 - LastAppliedRevision is the revision of the last successfully applied 8570 - source. 8571 - 8572 - Deprecated: the revision can now be found in the History. 8573 - type: string 8574 - lastAttemptedConfigDigest: 8575 - description: |- 8576 - LastAttemptedConfigDigest is the digest for the config (better known as 8577 - "values") of the last reconciliation attempt. 8578 - type: string 8579 - lastAttemptedGeneration: 8580 - description: |- 8581 - LastAttemptedGeneration is the last generation the controller attempted 8582 - to reconcile. 8583 - format: int64 8584 - type: integer 8585 - lastAttemptedReleaseAction: 8586 - description: |- 8587 - LastAttemptedReleaseAction is the last release action performed for this 8588 - HelmRelease. It is used to determine the active remediation strategy. 8589 - enum: 8590 - - install 8591 - - upgrade 8592 - type: string 8593 - lastAttemptedRevision: 8594 - description: |- 8595 - LastAttemptedRevision is the Source revision of the last reconciliation 8596 - attempt. For OCIRepository sources, the 12 first characters of the digest are 8597 - appended to the chart version e.g. "1.2.3+1234567890ab". 8598 - type: string 8599 - lastAttemptedRevisionDigest: 8600 - description: |- 8601 - LastAttemptedRevisionDigest is the digest of the last reconciliation attempt. 8602 - This is only set for OCIRepository sources. 8603 - type: string 8604 - lastAttemptedValuesChecksum: 8605 - description: |- 8606 - LastAttemptedValuesChecksum is the SHA1 checksum for the values of the last 8607 - reconciliation attempt. 8608 - 8609 - Deprecated: Use LastAttemptedConfigDigest instead. 8610 - type: string 8611 - lastHandledForceAt: 8612 - description: |- 8613 - LastHandledForceAt holds the value of the most recent force request 8614 - value, so a change of the annotation value can be detected. 8615 - type: string 8616 - lastHandledReconcileAt: 8617 - description: |- 8618 - LastHandledReconcileAt holds the value of the most recent 8619 - reconcile request value, so a change of the annotation value 8620 - can be detected. 8621 - type: string 8622 - lastHandledResetAt: 8623 - description: |- 8624 - LastHandledResetAt holds the value of the most recent reset request 8625 - value, so a change of the annotation value can be detected. 8626 - type: string 8627 - lastReleaseRevision: 8628 - description: |- 8629 - LastReleaseRevision is the revision of the last successful Helm release. 8630 - 8631 - Deprecated: Use History instead. 8632 - type: integer 8633 - observedGeneration: 8634 - description: ObservedGeneration is the last observed generation. 8635 - format: int64 8636 - type: integer 8637 - observedPostRenderersDigest: 8638 - description: |- 8639 - ObservedPostRenderersDigest is the digest for the post-renderers of 8640 - the last successful reconciliation attempt. 8641 - type: string 8642 - storageNamespace: 8643 - description: |- 8644 - StorageNamespace is the namespace of the Helm release storage for the 8645 - current release. 8646 - maxLength: 63 8647 - minLength: 1 8648 - type: string 8649 - upgradeFailures: 8650 - description: |- 8651 - UpgradeFailures is the upgrade failure count against the latest desired 8652 - state. It is reset after a successful reconciliation. 8653 - format: int64 8654 - type: integer 8655 - type: object 8656 - type: object 8657 - served: true 8658 - storage: false 8659 - subresources: 8660 - status: {} 8661 4881 --- 8662 4882 apiVersion: v1 8663 4883 kind: ServiceAccount ··· 8666 4886 app.kubernetes.io/component: helm-controller 8667 4887 app.kubernetes.io/instance: flux-system 8668 4888 app.kubernetes.io/part-of: flux 8669 - app.kubernetes.io/version: v2.7.5 4889 + app.kubernetes.io/version: v2.8.1 8670 4890 name: helm-controller 8671 4891 namespace: flux-system 8672 4892 --- ··· 8677 4897 app.kubernetes.io/component: helm-controller 8678 4898 app.kubernetes.io/instance: flux-system 8679 4899 app.kubernetes.io/part-of: flux 8680 - app.kubernetes.io/version: v2.7.5 4900 + app.kubernetes.io/version: v2.8.1 8681 4901 control-plane: controller 8682 4902 name: helm-controller 8683 4903 namespace: flux-system ··· 8696 4916 app.kubernetes.io/component: helm-controller 8697 4917 app.kubernetes.io/instance: flux-system 8698 4918 app.kubernetes.io/part-of: flux 8699 - app.kubernetes.io/version: v2.7.5 4919 + app.kubernetes.io/version: v2.8.1 8700 4920 spec: 8701 4921 containers: 8702 4922 - args: ··· 8715 4935 resourceFieldRef: 8716 4936 containerName: manager 8717 4937 resource: limits.memory 8718 - image: ghcr.io/fluxcd/helm-controller:v1.4.5 4938 + image: ghcr.io/fluxcd/helm-controller:v1.5.1 8719 4939 imagePullPolicy: IfNotPresent 8720 4940 livenessProbe: 8721 4941 httpGet: ··· 8772 4992 app.kubernetes.io/component: notification-controller 8773 4993 app.kubernetes.io/instance: flux-system 8774 4994 app.kubernetes.io/part-of: flux 8775 - app.kubernetes.io/version: v2.7.5 4995 + app.kubernetes.io/version: v2.8.1 8776 4996 name: alerts.notification.toolkit.fluxcd.io 8777 4997 spec: 8778 4998 group: notification.toolkit.fluxcd.io ··· 8865 5085 - ImagePolicy 8866 5086 - ImageUpdateAutomation 8867 5087 - OCIRepository 5088 + - ArtifactGenerator 5089 + - ExternalArtifact 8868 5090 type: string 8869 5091 matchLabels: 8870 5092 additionalProperties: ··· 9082 5304 - ImagePolicy 9083 5305 - ImageUpdateAutomation 9084 5306 - OCIRepository 5307 + - ArtifactGenerator 5308 + - ExternalArtifact 9085 5309 type: string 9086 5310 matchLabels: 9087 5311 additionalProperties: ··· 9162 5386 app.kubernetes.io/component: notification-controller 9163 5387 app.kubernetes.io/instance: flux-system 9164 5388 app.kubernetes.io/part-of: flux 9165 - app.kubernetes.io/version: v2.7.5 5389 + app.kubernetes.io/version: v2.8.1 9166 5390 name: providers.notification.toolkit.fluxcd.io 9167 5391 spec: 9168 5392 group: notification.toolkit.fluxcd.io ··· 9526 5750 - github 9527 5751 - gitlab 9528 5752 - gitea 5753 + - giteapullrequestcomment 9529 5754 - bitbucketserver 9530 5755 - bitbucket 9531 5756 - azuredevops ··· 9541 5766 - alertmanager 9542 5767 - grafana 9543 5768 - githubdispatch 5769 + - githubpullrequestcomment 5770 + - gitlabmergerequestcomment 9544 5771 - pagerduty 9545 5772 - datadog 9546 5773 - nats ··· 9574 5801 app.kubernetes.io/component: notification-controller 9575 5802 app.kubernetes.io/instance: flux-system 9576 5803 app.kubernetes.io/part-of: flux 9577 - app.kubernetes.io/version: v2.7.5 5804 + app.kubernetes.io/version: v2.8.1 9578 5805 name: receivers.notification.toolkit.fluxcd.io 9579 5806 spec: 9580 5807 group: notification.toolkit.fluxcd.io ··· 9666 5893 - ImagePolicy 9667 5894 - ImageUpdateAutomation 9668 5895 - OCIRepository 5896 + - ArtifactGenerator 5897 + - ExternalArtifact 9669 5898 type: string 9670 5899 matchLabels: 9671 5900 additionalProperties: ··· 9888 6117 - ImagePolicy 9889 6118 - ImageUpdateAutomation 9890 6119 - OCIRepository 6120 + - ArtifactGenerator 6121 + - ExternalArtifact 9891 6122 type: string 9892 6123 matchLabels: 9893 6124 additionalProperties: ··· 10051 6282 app.kubernetes.io/component: notification-controller 10052 6283 app.kubernetes.io/instance: flux-system 10053 6284 app.kubernetes.io/part-of: flux 10054 - app.kubernetes.io/version: v2.7.5 6285 + app.kubernetes.io/version: v2.8.1 10055 6286 name: notification-controller 10056 6287 namespace: flux-system 10057 6288 --- ··· 10062 6293 app.kubernetes.io/component: notification-controller 10063 6294 app.kubernetes.io/instance: flux-system 10064 6295 app.kubernetes.io/part-of: flux 10065 - app.kubernetes.io/version: v2.7.5 6296 + app.kubernetes.io/version: v2.8.1 10066 6297 control-plane: controller 10067 6298 name: notification-controller 10068 6299 namespace: flux-system ··· 10083 6314 app.kubernetes.io/component: notification-controller 10084 6315 app.kubernetes.io/instance: flux-system 10085 6316 app.kubernetes.io/part-of: flux 10086 - app.kubernetes.io/version: v2.7.5 6317 + app.kubernetes.io/version: v2.8.1 10087 6318 control-plane: controller 10088 6319 name: webhook-receiver 10089 6320 namespace: flux-system ··· 10104 6335 app.kubernetes.io/component: notification-controller 10105 6336 app.kubernetes.io/instance: flux-system 10106 6337 app.kubernetes.io/part-of: flux 10107 - app.kubernetes.io/version: v2.7.5 6338 + app.kubernetes.io/version: v2.8.1 10108 6339 control-plane: controller 10109 6340 name: notification-controller 10110 6341 namespace: flux-system ··· 10123 6354 app.kubernetes.io/component: notification-controller 10124 6355 app.kubernetes.io/instance: flux-system 10125 6356 app.kubernetes.io/part-of: flux 10126 - app.kubernetes.io/version: v2.7.5 6357 + app.kubernetes.io/version: v2.8.1 10127 6358 spec: 10128 6359 containers: 10129 6360 - args: ··· 10141 6372 resourceFieldRef: 10142 6373 containerName: manager 10143 6374 resource: limits.memory 10144 - image: ghcr.io/fluxcd/notification-controller:v1.7.5 6375 + image: ghcr.io/fluxcd/notification-controller:v1.8.1 10145 6376 imagePullPolicy: IfNotPresent 10146 6377 livenessProbe: 10147 6378 httpGet:

Configure Feed

Configure Feed