Update dependency helm to v3.10.0

This MR contains the following updates:

Package	Update	Change
helm	minor	3.9.3 -> 3.10.0

MR created with the help of gitlab-org/frontend/renovate-gitlab-bot

---

Release Notes

helm/helm

v3.10.0

Compare Source

Helm v3.10.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing MRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

• Added --set-json flag to set json values.
• Added support helm list --no-headers
• Added --burst-limit option for client-side throttling limit configuration

Installation and Upgrading

Download Helm v3.10.0. The common platform binaries are here:

• MacOS amd64 (checksum / 1e7fd528482ac2ef2d79fe300724b3e07ff6f846a2a9b0b0fe6f5fa05691786b)
• MacOS arm64 (checksum / f7f6558ebc8211824032a7fdcf0d55ad064cb33ec1eeec3d18057b9fe2e04dbe)
• Linux amd64 (checksum / bf56beb418bb529b5e0d6d43d56654c5a03f89c98400b409d1013a33d9586474)
• Linux arm (checksum / 1f756a2ea800dafb92fb77acc016220fdedee2be07630befd5ffd1410062b39c)
• Linux arm64 (checksum / 3b72f5f8a60772fb156d0a4ab93272e8da7ef4d18e6421a7020d7c019f521fc1)
• Linux i386 (checksum / 423159a7f49f1719dab78f78113ac5d8deae21f99491e79984c6363ae668428d)
• Linux ppc64le (checksum / 90f49ef742bf36480b46073a11ca4244670e74f530bf507b488180fbf7334ef3)
• Linux s390x (checksum / f80733880529148c80f864cdb2d83ef26401b83176b8f4744ecddf4589cb4991)
• Windows amd64 (checksum / 9d841d55eb7cd6e07be0364bbfa85bceca7e184d50b43b13d20f044403937309)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.10.1 will contain only bug fixes and be released on October 12, 2022.
• 3.11.0 is the next feature release and will be released on January 18, 2023

Changelog

• bump version to v3.10.0 ce66412 (Matt Farina)
• Updating to Kubernetes 1.25 client libs 2108a23 (Matt Farina)
• Updating the certificates used for testing 7cbec35 (Matt Farina)
• Updating index handling 225f8d7 (Matt Farina)
• Drop direct github.com/docker/docker dependency ea5365a (Mikhail Mazurskiy)
• fix special string in the filename ece46c1 (d-d-up)
• chore: add oci install description d1c0b7e (longkai)
• Fixing x509 test on darwin b3aa0b4 (Matt Farina)
• Bump k8s.io/kube-openapi to fix CVE-2022-1996 in github.com/emicklei/go-restful 1e0f8a4 (Guilherme Macedo)
• fixes #​11142 missing array length check on release b9f347a (Arvid E. Picciani)
• chore(deps): bump github.com/stretchr/testify from 1.7.5 to 1.8.0 0c9de28 (dependabot[bot])
• Upgrading to Kubernetes 1.24.2 211bd2b (Martin Hickey)
• Bump Oras to 1.2.0 51e6c8e (Martin Hickey)
• fix: use go install instead of go get aa6e82b (Matthew Fisher)
• bump Go 1.18 39b0a82 (yxxhero)
• fix: improve logging & safety of statefulSetReady 7c74f1d (Dominic Evans)
• make token caching an opt in feature 42a04c7 (Soule BA)
• chore(deps): bump github.com/stretchr/testify from 1.7.4 to 1.7.5 0acd81b (dependabot[bot])
• chore(deps): bump github.com/rubenv/sql-migrate from 1.1.1 to 1.1.2 ccc104a (dependabot[bot])
• chore(deps): bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#​11075) 3ff331f (dependabot[bot])
• chore(deps): bump github.com/stretchr/testify from 1.7.1 to 1.7.4 994d786 (dependabot[bot])
• Upgrading to Kubernetes 1.24.1 packages 5ef01c2 (Matt Farina)
• chore(deps): bump github.com/Masterminds/squirrel from 1.5.2 to 1.5.3 fe2a66c (dependabot[bot])
• feat(*): add flags/env for kube api tls overrides 687852e (Justen Walker)
• Add --burst-limit option for client-side throttling limit configuration (#​10842) 823d929 (Igor Sutton)
• chore(deps): bump github.com/lib/pq from 1.10.5 to 1.10.6 f3cfd4f (dependabot[bot])
• chore(deps): bump oras.land/oras-go from 1.1.0 to 1.1.1 a3bb2f7 (dependabot[bot])
• chore(deps): bump github.com/evanphx/json-patch 606633c (dependabot[bot])
• Bump github.com/lib/pq from 1.10.4 to 1.10.5 ede591f (dependabot[bot])
• build(deps): bump github.com/containerd/containerd from 1.6.3 to 1.6.4 8b69048 (dependabot[bot])
• build(deps): bump github.com/docker/docker 67ed6e2 (dependabot[bot])
• bump version to v3.9.0 1db28a2 (Matt Farina)
• build(deps): bump github.com/jmoiron/sqlx from 1.3.4 to 1.3.5 43aa313 (dependabot[bot])
• Bump github.com/BurntSushi/toml from 1.0.0 to 1.1.0 aafc920 (dependabot[bot])
• Fixed helm uninstall not deleting the resource. fe00c92 (Mayank Thakur)
• Fix UT d8c0e01 (stan-sz)
• Fix linter 6c55d9e (stan-sz)
• Update install.go a7e4ae7 (stan-sz)
• Log error message on failed download 660e4ff (stan-sz)
• Add support helm list --no-headers d76f86b (suzaku)
• update go.mod d20c954 (yxxhero)
• fix --registry-config issue 9f199b6 (yxxhero)
• feat: add --set-json flag to set json values. 11e7d0c (Luca Di Rocco)
• fix(helm): ignore file-not-found error for helm repo list -o json 94779dc (Teo Klestrup Röijezon)

v3.9.4

Compare Source

Helm v3.9.4 is a security (patch) release. Users are strongly recommended to update to this release.

While fuzz testing Helm, provided by the CNCF, a possible out of memory panic was discovered with the strvals package. Out of memory panics cannot be recovered from in Go. This can potentially be used to produce a denial of service (DOS). More details are available in the advisory.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing MRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.9.4. The common platform binaries are here:

• MacOS amd64 (checksum / fe5930feca6fd1bd2c57df01c1f381c6444d1c3d2b857526bf6cbfbd6bf906b4)
• MacOS arm64 (checksum / a73d91751153169781b3ab5b4702ba1a2631fc8242eba33828b5905870059312)
• Linux amd64 (checksum / 31960ff2f76a7379d9bac526ddf889fb79241191f1dbe2a24f7864ddcb3f6560)
• Linux arm (checksum / 18ce0f79dcd927fea5b714ca03299929dad05266192d4cde3de6b4c4d4544249)
• Linux arm64 (checksum / d24163e466f7884c55079d1050968e80a05b633830047116cdfd8ae28d35b0c0)
• Linux i386 (checksum / a37b0070e2f072050fdf4bd7430ffbe55390fee410eb0781cd01a0fe206eb963)
• Linux ppc64le (checksum / c63a951415c192397fda07c2f52aa60639b280920381c48d58be6803eb0c22f9)
• Linux s390x (checksum / 7fec97fa800d9bd981e2f42fb0908175db1f35da2d373a971ec7376fe4cb5451)
• Windows amd64 (checksum / 7cdc1342bc1863b6d5ce695fbef4d3b0d65c7c5bcef6ec6adf8fc9aa53821262)

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.10.0 is the next feature release and will be on September 14, 2022

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Never, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

---

• If you want to rebase/retry this MR, click this checkbox.

---

This MR has been generated by Renovate Bot.