msb-public/helm - helm - 马士兵教育代码仓库

Commit Graph

Author	SHA1	Message	Date
dependabot[bot]	e54a4a2b7d	chore(deps): bump golang.org/x/text from 0.37.0 to 0.38.0 Bumps [golang.org/x/text](https://github.com/golang/text) from 0.37.0 to 0.38.0. - [Release notes](https://github.com/golang/text/releases) - [Commits](https://github.com/golang/text/compare/v0.37.0...v0.38.0) --- updated-dependencies: - dependency-name: golang.org/x/text dependency-version: 0.38.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `7f855dfe8a`)	7 days ago
dependabot[bot]	acb762b0ef	chore(deps): bump github/codeql-action from 4.36.1 to 4.36.2 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.1 to 4.36.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`87557b9c84...8aad20d150`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `c603c50aa6`)	7 days ago
dependabot[bot]	768586df3f	chore(deps): bump github/codeql-action from 4.36.0 to 4.36.1 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.0 to 4.36.1. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`7211b7c807...87557b9c84`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `f8abbfd7d4`)	7 days ago
Benoit Tigeot	eabfae5604	fix(version): avoid false range detection on prerelease x/X `isVersionRange` checked for `x`/`X` across the entire version string, misclassifying exact versions like `1.0.0-fix`, `2.0.0-next`, or `1.0.0+exp` as ranges. Signed-off-by: Benoit Tigeot <benoit.tigeot@lifen.fr> (cherry picked from commit `740174a2b1`)	7 days ago
Benoit Tigeot	e3fd51f331	fix(version): version range \|\| can has no space From Matt's comment > The check for " \|\| " should remove the spaces and have "\|\|". Spaces around the \|\| aren't required. Signed-off-by: Benoit Tigeot <benoit.tigeot@lifen.fr> (cherry picked from commit `b79d7f1881`)	7 days ago
Benoit Tigeot	1e47395a95	feat: report in debug the version we select with version range arg Signed-off-by: Benoit Tigeot <benoit.tigeot@lifen.fr> (cherry picked from commit `bf78b876c7`)	7 days ago
Benoit Tigeot	a33e23939a	fix: prevent warning when using version range constraints When using version ranges like ^1 or ~1.10, Helm incorrectly showed warnings about falling back to closest version. Only show the warning when an exact version is requested but not found. Fixes: https://github.com/helm/helm/issues/31757 Signed-off-by: Benoit Tigeot <benoit.tigeot@lifen.fr> (cherry picked from commit `1e145ee2b2`)	7 days ago
Terry Howe	fa06d44557	fix(kube): always propagate context.Canceled in WaitForDelete The previous change suppressed ctx.Err() whenever there were no resource-specific errors, which incorrectly swallowed context.Canceled and other non-deadline errors signalling an external interruption. Refine the condition: only suppress context.DeadlineExceeded when there are no resource-specific errors (resources are Unknown/NotFound, meaning the delete wait succeeded or resources were already gone). Any other context error — including context.Canceled — is always propagated. Signed-off-by: Terry Howe <terrylhowe@gmail.com> (cherry picked from commit `5e09ee78ee`)	7 days ago
Terry Howe	360d4835df	fix(kube): prevent spurious early exit in WaitForDelete during informer sync During informer initialization there is a brief window where watched resources appear as Unknown before their real statuses are delivered. The statusObserver skips Unknown resources when waiting for deletion (they may have been deleted before the watch started), but if all resources are in that transient Unknown state the skipped-resource list is empty. AggregateStatus on an empty slice returns the desired status, causing cancel() to be called immediately — before any real status event has arrived. Guard against this by tracking the count of Unknown-skipped resources. When every resource was Unknown-skipped and none have a definitive status yet, defer the early-cancel decision until at least one resource reports a real status. This preserves the correct behaviour for resources that were genuinely deleted before the watch started (they eventually receive a NotFound or stay Unknown, and the aggregate succeeds), while fixing the race for resources that are transiently Unknown at startup. Also tighten the ctx.Err() check in waitForDelete: only append a deadline error when there are resource-specific errors to accompany it. A timeout while all resources are Unknown or NotFound is not itself an error — the resources are in an acceptable state for a delete wait. Fixes: TestStatusWaitForDelete/error_when_not_all_objects_are_deleted Signed-off-by: Terry Howe <terrylhowe@gmail.com> (cherry picked from commit `4e24ee41a4`)	7 days ago
dependabot[bot]	7651edf21e	chore(deps): bump github.com/tetratelabs/wazero from 1.11.0 to 1.12.0 Bumps [github.com/tetratelabs/wazero](https://github.com/tetratelabs/wazero) from 1.11.0 to 1.12.0. - [Release notes](https://github.com/tetratelabs/wazero/releases) - [Commits](https://github.com/tetratelabs/wazero/compare/v1.11.0...v1.12.0) --- updated-dependencies: - dependency-name: github.com/tetratelabs/wazero dependency-version: 1.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `3aa1b742b9`)	7 days ago
dependabot[bot]	b132e7e43f	chore(deps): bump golang.org/x/crypto from 0.51.0 to 0.52.0 Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.51.0 to 0.52.0. - [Commits](https://github.com/golang/crypto/compare/v0.51.0...v0.52.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-version: 0.52.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `7510b83214`)	7 days ago
Terry Howe	eee491a746	fix(deps): bump golang.org/x/net to v0.55.0 to address GO-2026-5026 Upgrades golang.org/x/net from v0.53.0 to v0.55.0 to fix CVE-2026-39821 (GO-2026-5026), where idna.ToASCII/ToUnicode incorrectly accept Punycode- encoded labels that decode to ASCII-only labels, enabling privilege escalation via hostname check bypass. Coordinated x/ upgrade pulled in by the module graph: - golang.org/x/sys v0.44.0 => v0.45.0 Signed-off-by: Terry Howe <terrylhowe@gmail.com> (cherry picked from commit `54ae27fd84`)	7 days ago
dependabot[bot]	3e3c5751b1	chore(deps): bump golangci/golangci-lint-action from 9.2.0 to 9.2.1 Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 9.2.0 to 9.2.1. - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](`1e7e51e771...82606bf257`) --- updated-dependencies: - dependency-name: golangci/golangci-lint-action dependency-version: 9.2.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `dbb3e35337`)	7 days ago
dependabot[bot]	c4ce2bb364	chore(deps): bump github/codeql-action from 4.35.5 to 4.36.0 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.5 to 4.36.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`9e0d7b8d25...7211b7c807`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `60665e9035`)	7 days ago
dependabot[bot]	3892dc2a11	chore(deps): bump actions/stale from 10.2.0 to 10.3.0 Bumps [actions/stale](https://github.com/actions/stale) from 10.2.0 to 10.3.0. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](`b5d41d4e1d...eb5cf3af3a`) --- updated-dependencies: - dependency-name: actions/stale dependency-version: 10.3.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `ace245b827`)	7 days ago
dependabot[bot]	c4bbb6263f	chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.4 to 4.35.5. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`68bde559de...9e0d7b8d25`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `f772ffedc6`)	7 days ago
dependabot[bot]	a0d7f16b58	chore(deps): bump golang.org/x/crypto from 0.50.0 to 0.51.0 Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.50.0 to 0.51.0. - [Commits](https://github.com/golang/crypto/compare/v0.50.0...v0.51.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-version: 0.51.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `2cc69251d8`)	1 week ago
dependabot[bot]	8a3de054b5	chore(deps): bump github/codeql-action from 4.35.3 to 4.35.4 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.3 to 4.35.4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`e46ed2cbd0...68bde559de`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `d9b2716be5`)	1 week ago
Matheus Pimenta	57a4803bd4	fix(upstream): upgrade to cli-utils 1.2.1, controller-runtime 0.24.1 and k8s 1.36.1 Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com> (cherry picked from commit `378ceacd9c`)	1 week ago
dependabot[bot]	b33ae02b9c	chore(deps): bump github.com/fluxcd/cli-utils from 1.2.0 to 1.2.1 Bumps [github.com/fluxcd/cli-utils](https://github.com/fluxcd/cli-utils) from 1.2.0 to 1.2.1. - [Release notes](https://github.com/fluxcd/cli-utils/releases) - [Commits](https://github.com/fluxcd/cli-utils/compare/v1.2.0...v1.2.1) --- updated-dependencies: - dependency-name: github.com/fluxcd/cli-utils dependency-version: 1.2.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> (cherry picked from commit `b5a9299eec`)	1 week ago
George Jenkins	06468084e8	Bump to version v4.2 Signed-off-by: George Jenkins <gvjenkins@gmail.com>	1 month ago
Scott Rigby	e23bf3af53	build: Clean up Goreleaser change (#32098 ) Makefile: - restore dist target - remove unused LDFLAGS added to dist target - remove unused TARGETS var gh release action: - restore build-cross to release and canary-release jobs Signed-off-by: Scott Rigby <scott@r6by.com> Co-authored-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
George Jenkins	ad18580255	Merge pull request #31343 from TerryHowe/chore-replace-mitchellh-gox-with-goreleaser chore: replace mitchellh/gox with goreleaser	2 months ago
Terry Howe	b3a458fde9	Merge pull request #31970 from isumitsolanki/fix/31965-decouple-cli-from-kube refactor(cli): decouple EnvSettings from pkg/kube to avoid import cycles	2 months ago
Terry Howe	f60ab7c31c	fix: add -extldflags -static to dist target to match build-cross Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	64aa46f2f1	build: use goreleaser build with manual archive creation goreleaser v2 has a bug with no_unique_dist_dir where it registers archive tasks for all sub-arch variants even when constraints limit builds to one per arch, causing archive collision errors. Switch dist target to use goreleaser build (binaries only) and create tar.gz/zip archives manually, copying LICENSE and README.md into each platform directory to match the existing archive structure. Add sub-arch constraints (goamd64, goarm64, go386, goriscv64) to ensure only one variant is built per architecture. Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	d199a1a42c	chore: remove build-cross dependency from test-acceptance Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	82899404a6	ci: add fetch-depth 0 to canary checkout for goreleaser Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	c075022ce1	fix: address goreleaser build issues flagged in review Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	04885dd905	fix: pass VERSION as GORELEASER_CURRENT_TAG to preserve v-prefix in archive names Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	93103ce66c	fix: disable goreleaser checksums.txt and restrict zip to windows only Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	e49a1dc16e	fix: use index for optional env var in version_template Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	eaa09100b9	fix: canary build file names Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	5a75279c1a	Fix archive name Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	37284a9211	fix goreleaser archive Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	45336ccd5b	add support for loong64 Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	a9659b07e3	fix artifact directory Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	e368f170af	update configuration to v2 Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	e7bea8513c	remove GOTOOLCHAIN Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	075c096afe	chore: replace mitchellh/gox with goreleaser Signed-off-by: Terry Howe <terrylhowe@gmail.com>	2 months ago
Terry Howe	bdf2747c5f	Merge pull request #32095 from helm/dependabot/github_actions/main/github/codeql-action-4.35.3 chore(deps): bump github/codeql-action from 4.35.2 to 4.35.3	2 months ago
Terry Howe	547df4a2a0	Merge pull request #32096 from helm/dependabot/go_modules/main/github.com/distribution/distribution/v3-3.1.1 chore(deps): bump github.com/distribution/distribution/v3 from 3.1.0 to 3.1.1	2 months ago
dependabot[bot]	12f2c41c0d	chore(deps): bump github.com/distribution/distribution/v3 Bumps [github.com/distribution/distribution/v3](https://github.com/distribution/distribution) from 3.1.0 to 3.1.1. - [Release notes](https://github.com/distribution/distribution/releases) - [Commits](https://github.com/distribution/distribution/compare/v3.1.0...v3.1.1) --- updated-dependencies: - dependency-name: github.com/distribution/distribution/v3 dependency-version: 3.1.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2 months ago
dependabot[bot]	58e8ffdc33	chore(deps): bump github/codeql-action from 4.35.2 to 4.35.3 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.2 to 4.35.3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`95e58e9a2c...e46ed2cbd0`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2 months ago
Terry Howe	707afe4b22	Merge pull request #32094 from helm/dependabot/go_modules/main/github.com/Masterminds/semver/v3-3.5.0 chore(deps): bump github.com/Masterminds/semver/v3 from 3.4.0 to 3.5.0	2 months ago
dependabot[bot]	e61bbfbfff	chore(deps): bump github.com/Masterminds/semver/v3 from 3.4.0 to 3.5.0 Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) from 3.4.0 to 3.5.0. - [Release notes](https://github.com/Masterminds/semver/releases) - [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md) - [Commits](https://github.com/Masterminds/semver/compare/v3.4.0...v3.5.0) --- updated-dependencies: - dependency-name: github.com/Masterminds/semver/v3 dependency-version: 3.5.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2 months ago
Terry Howe	ea10188070	Merge pull request #32090 from matheuscscp/cli-utils-1.2-c-r-0.24 Upgrade kstatus to 1.2 and controller-runtime to 0.24	2 months ago
Matheus Pimenta	081c6dff53	Upgrade kstatus to 1.2 and controller-runtime to 0.24 Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>	2 months ago
Terry Howe	96c152cb1a	Merge pull request #31923 from gaganhr94/fix/token-permissions fix: adds topLevel permissions to improve openSSF scores	2 months ago
Terry Howe	38f3704983	Merge pull request #32034 from cairon-ab/fix/pull-debug-output fix: add debug logging to HTTP getter for helm pull	2 months ago

1 2 3 4 5 ...

9572 Commits (e54a4a2b7d4ed9ca3bb4be7562f76dd5f2fd8f71) All Branches Search

9572 Commits (e54a4a2b7d4ed9ca3bb4be7562f76dd5f2fd8f71)

All Branches