Update dependency helm to v3.17.0

GitLab Dependency Botrequested to merge
gitlab-renovate-forks/helm-install-image:renovate/helm-3.x into master

This MR contains the following updates:

Package Update Change
helm minor 3.16.4 -> 3.17.0

MR created with the help of gitlab-org/frontend/renovate-gitlab-bot

Release Notes

helm/helm (helm)

v3.17.0: Helm v3.17.0

Compare Source

Helm v3.17.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing MRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages
Notable Changes
  • Allow pulling and installation by OCI digest
  • Annotations and dependencies are now in chart metadata output
  • New --take-ownership flag for install and upgrade commands
  • SDK: Authorizer and registry authorizer are now configurable
  • Removed the Kubernetes configuration file permissions check
  • Added username/password to helm push and dependency build/update subcommands
  • Added toYamlPretty template function
Installation and Upgrading

Download Helm v3.17.0. The common platform binaries are here:

This release was signed with 208D D36E D5BB 3745 A167 43A4 C7C6 FBB5 B91C 1155 and can be found at @​r6by keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next
  • 3.17.1 is the next patch release and will be on February 12, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025
Changelog
  • bump version to v3.17.0 301108e (Matt Farina)
  • fix: make ORAS reference private 949b2e6 (Terry Howe)
  • fix: issue with helm template and oci chart aba95b9 (Terry Howe)
  • feat: allow installation by OCI digest c3e5217 (Terry Howe)
  • Bump the k8s-io group with 7 updates 33a0ee7 (dependabot[bot])
  • Upgrade golang.org/x/net to v0.33.0 to address CVE-2024-45338 79993d2 (cx)
  • Update golangci-lint version 037c18a (Matt Farina)
  • Update to Go 1.23 9f620b8 (Matt Farina)
  • ref(create): don't render empty resource fields ba180a3 (dnskr)
  • Add annotations and dependencies to get metadata output The output of helm get metadata includes a subset of the fields contained in the chart.Metadata struct. This change adds the values of the annotations field and the dependencies field to the output. 7321579 (Niladri Halder)
  • Run build-test action on dev-v3 branch 2042f7d (George Jenkins)
  • Fix dev-v3 from take ownership changes a3a9e4f (Matt Farina)
  • Bump github.com/rubenv/sql-migrate from 1.7.0 to 1.7.1 c7cd177 (dependabot[bot])
  • Bump github.com/cyphar/filepath-securejoin from 0.3.4 to 0.3.6 ca61226 (dependabot[bot])
  • Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 9421fac (dependabot[bot])
  • Bump github.com/containerd/containerd from 1.7.23 to 1.7.24 562eb54 (dependabot[bot])
  • Bump golang.org/x/crypto from 0.30.0 to 0.31.0 6ba4c6e (dependabot[bot])
  • Bump the k8s-io group with 7 updates ac16258 (dependabot[bot])
  • fix test output edf7b66 (Mayank Shah)
  • fix test b9d58a1 (Mayank Shah)
  • fix upgrade 2541e46 (Mayank Shah)
  • Shadow ORAS remote.Client interface c40cf00 (George Jenkins)
  • Make the authorizer and registry authorizer configurable 3c2ab91 (Ryan Nowak)
  • Rename CAFile to CaFile for consistency 7a22dd2 (Evans Mungai)
  • Update cmd/helm/upgrade.go 885e938 (Mayank Shah)
  • Update cmd/helm/install.go 7efa286 (Mayank Shah)
  • Add --take-ownership flag for install and upgrade commands c3a5f27 (Mayank Shah)
  • Adding CI for dev-v3 branch b5a83ea (Matt Farina)
  • Bump golang.org/x/crypto from 0.28.0 to 0.29.0 a2d289f (dependabot[bot])
  • fix: fix label name e4062e7 (wangjingcun)
  • Updating subchart load error to be more descriptive 6f2f7d4 (Taylor Jasko)
  • Add tests to helm/pkg/kube/client_test.go to cover wait.go 9fd943b (Alex Johnson)
  • Fix typo in pkg/lint/rules/chartfile_test.go 0cc78c6 (Zach Burgess)
  • Increasing the size of the runner used for releases. 029e983 (Matt Farina)
  • fix(hooks): correct hooks delete order f4f4a6b (Suleiman Dibirov)
  • Allow tests to run on loong64 a51ea6e (Tianle Xu)
  • Bump actions/checkout from 4.2.1 to 4.2.2 f983342 (dependabot[bot])
  • Bump actions/setup-go from 5.0.2 to 5.1.0 c867af8 (dependabot[bot])
  • chore: fix some function names in comment de9e138 (wangjingcun)
  • Bump the k8s-io group with 7 updates e4304bd (dependabot[bot])
  • removing duplicate empty test 7e6b34d (Robert Sirchia)
  • fixing unit test as per Matt 16a4e37 (Robert Sirchia)
  • Ensure test fails without causing panic bdaa93b (Evans Mungai)
  • Fix failing tests 3c4d0bb (Evans Mungai)
  • Remove unnecessary function arguments d25b0d9 (Evans Mungai)
  • chore: Check tar is installed install script 3a5805e (Evans Mungai)
  • adding more unit test a205af7 (Robert Sirchia)
  • Cleanup redundant GO11MODULE 4a15cc3 (George Jenkins)
  • adding test coverage for ready.go 999b851 (Robert Sirchia)
  • fix(helm): Retry Conflict error for createResource, deleteResource 79a1f2c (Andreas Karis)
  • minor spelling fix ca58464 (Jon Olsson)
  • Bump github.com/containerd/containerd from 1.7.12 to 1.7.23 fe4d0d9 (dependabot[bot])
  • Reorder triage ids 8b85934 (Evans Mungai)
  • chore: Add Evans to OWNERS file 75c124a (Evans Mungai)
  • Bump github.com/cyphar/filepath-securejoin from 0.3.1 to 0.3.4 b45680c (dependabot[bot])
  • chore(deps): bump actions/stale from 3.0.14 to 9.0.0 140a376 (dependabot[bot])
  • chore: Make retryingRoundTripper type public ab3c589 (Luis Davim)
  • Bump actions/checkout from 4.2.0 to 4.2.1 d517450 (dependabot[bot])
  • Doc: add Flox as an installation option. 30de3bb (Bryan Honof)
  • Move jdolitsky to emeritus 076bb1f (Josh Dolitsky)
  • verbs f5fcae8 (George Jenkins)
  • fix: Use chart archive modifed time for OCI push 02ef83f (George Jenkins)
  • Bump golang.org/x/crypto from 0.27.0 to 0.28.0 4c54d15 (dependabot[bot])
  • Revering change unrelated to issue #​13176 cdbef2b (ricardo.bartels@telekom.de)
  • Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 9e192b2 (dependabot[bot])
  • updating owners file 36f0b42 (Robert Sirchia)
  • Bump the k8s-io group with 7 updates d5df067 (dependabot[bot])
  • Bump golang/govulncheck-action from 1.0.3 to 1.0.4 7925733 (dependabot[bot])
  • Move gjenkins to maintainer 9c36d1f (George Jenkins)
  • Bump actions/checkout from 4.1.7 to 4.2.0 2cd8d54 (dependabot[bot])
  • fix: add missing formatChartName call de18ac1 (Terry Howe)
  • Update history.go 4735f2b (myeunee)
  • adding toplevel permissions to workflows missing them a8750f4 (Robert Sirchia)
  • add strvals fuzzer from cncf-fuzzing b203cc1 (Adam Korczynski)
  • add chart fuzz tests e432f39 (Adam Korczynski)
  • Remove the Kubernetes configuration file permissions check 49cb14a (Yarden Shoham)
  • Grammar fixes ef85fa7 (Nathan Baulch)
  • Fix typos ff9dd26 (Nathan Baulch)
  • removing testing trigger from govulncheck action 62069eb (Robert Sirchia)
  • adding top-level permissions 114db17 (Robert Sirchia)
  • Fixing the action trigger 8642225 (Robert Sirchia)
  • testing permissing for codeql 5217ea8 (Robert Sirchia)
  • Bump ossf/scorecard-action from 2.3.1 to 2.4.0 9134b9e (dependabot[bot])
  • Bump actions/checkout from 4.1.1 to 4.1.7 144e7b0 (dependabot[bot])
  • fix: fix testchart lint errors ddead08 (Rui Chen)
  • adding check-latest:true 611fae3 (Robert Sirchia)
  • Revert "Improve helm dependency update performance" c81bd89 (Matt Farina)
  • bumping version to 1.22.7 e7b25ba (Robert Sirchia)
  • Add New Relic a55c0b4 (Calvin A. Allen)
  • Update ADOPTERS.md 2b6f76c (Richard Hooper)
  • Bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 06afebb (dependabot[bot])
  • Bump golang.org/x/crypto from 0.26.0 to 0.27.0 9f6925e (dependabot[bot])
  • refectoring to ONE GH action 5326d79 (Robert Sirchia)
  • adding new lines at the end of each files d911881 (Robert Sirchia)
  • changing the trigger file 1aa640f (Robert Sirchia)
  • removing line break used for testing 0eae854 (Robert Sirchia)
  • adding a line break to test the GH trigger 438221f (Robert Sirchia)
  • changing trigger file from go.sum to go.mod 3ef6dd4 (Robert Sirchia)
  • removing govulncheck from build-test 5f15f53 (Robert Sirchia)
  • adding new workflows for govulncheck 4df7d56 (Robert Sirchia)
  • bump version to v3.16.0 d644da6 (Matt Farina)
  • Bump github.com/gofrs/flock from 0.8.1 to 0.12.1 a77ad1a (dependabot[bot])
  • adding a new line at the end of the file as per the request of the maintainers 88fa81e (Robert Sirchia)
  • restoring the original triggers that were removed for testing 76b9d96 (Robert Sirchia)
  • moving govulncheck to a seperate job 38dd4a7 (Robert Sirchia)
  • removing specific go version for govulncheck 1ad6af9 (Robert Sirchia)
  • updating go version for govulncheck e46e0dd (Robert Sirchia)
  • fixing directory for go-packages 6757f8a (Robert Sirchia)
  • changing the triggers to test this GH actions 031b344 (Robert Sirchia)
  • Adding in workflow_call to test GH Actions 7e3df4b (Robert Sirchia)
  • adding workflow_dispatch to test b351fdc (Robert Sirchia)
  • adding govulncheck 6761729 (Robert Sirchia)
  • fix: fixed the token-permission and pinned-dependencies issue b4caed9 (harshitasao)
  • docs(repo_index): explicitly state that the result is written to the directory passed in a71eaea (Rauno Viskus)
  • Added the scorecard github action and its badge ae17dea (harshitasao)
  • Revert CAFile rename breaking change 0687961 (Evans Mungai)
  • kube/client: add to global client-go scheme in init func b9bdeca (Dr. Stefan Schimanski)
  • adds tests for handling of Helm index with broken chart versions #​13176 af13b0d (ricardo.bartels@telekom.de)
  • improves handling of Helm index with broken helm chart versions #​13176 154b477 (ricardo.bartels@telekom.de)
  • Add username/password to package subcommand 12d8d28 (Evans Mungai)
  • Run go fmt 0ad80e3 (Evans Mungai)
  • Add username/password to dependency build/update subcommands 837ae42 (Evans Mungai)
  • Add username/password to push subcommand 7672a17 (Evans Mungai)
  • Update ADOPTERS.md e0751f3 (Nick Josevski)
  • ISSUE-9507: TEST server with varied Accept Header 3c39705 (Matt Clegg)
  • ISSUE-9507: ADD application/gzip,application/octet-stream accept header when downloading chart fff3547 (Matt Clegg)
  • test(create): Test to check deprecated resource templates 9c0b4c8 (Bhargav Ravuri)
  • added sprintf solution and found other possible overflow occurences ab640a7 (Trenton VanderWert)
  • changed Iota to FormatInt to allow int64 value preventing 2038 overflow 4a45342 (Trenton VanderWert)
  • fix(helm): pass down username/password CLI parameters to OCI registry clients dc158f6 (Evans Mungai)
  • Added toYamlPretty template function 73f1dcc (Fred Heinecke)
  • test(pkg/engine): add tests for TOML parsing 266ab5a (Dominik Müller)
  • feat(pkg/engine): add TOML parsing functionality f550eda (Dominik Müller)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by GitLab Dependency Bot

Merge request reports