From d3b88e7cee345c7c74b2ed05c3f26e1ed2c7844e Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 9 Sep 2024 19:08:04 -0400 Subject: [PATCH 01/11] bump prober to v0.7.9 scaffolding release Signed-off-by: Bob Callaway --- charts/sigstore-prober/Chart.yaml | 6 +++--- charts/sigstore-prober/README.md | 4 ++-- charts/sigstore-prober/values.yaml | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/charts/sigstore-prober/Chart.yaml b/charts/sigstore-prober/Chart.yaml index 46297815..2fea968a 100644 --- a/charts/sigstore-prober/Chart.yaml +++ b/charts/sigstore-prober/Chart.yaml @@ -4,8 +4,8 @@ description: Sigstore API Endpoint Prober type: application -version: 0.0.28 -appVersion: 0.7.8 +version: 0.0.29 +appVersion: 0.7.9 keywords: @@ -21,4 +21,4 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: sigstore-prober - image: ghcr.io/sigstore/scaffolding/prober:v0.7.8@sha256:07c803bcf28ed14974fb08755a05fbd45b33501ad3b45f32c8c64d676b38dc74 + image: ghcr.io/sigstore/scaffolding/prober:v0.7.9@sha256:c18df4b4ddfd51d643bf2d43272e16c6bb9192ffb0f007703223ffbc23bb4339 diff --git a/charts/sigstore-prober/README.md b/charts/sigstore-prober/README.md index a492ed1b..95b26891 100644 --- a/charts/sigstore-prober/README.md +++ b/charts/sigstore-prober/README.md @@ -1,6 +1,6 @@ # sigstore-prober -![Version: 0.0.28](https://img.shields.io/badge/Version-0.0.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.8](https://img.shields.io/badge/AppVersion-0.7.8-informational?style=flat-square) +![Version: 0.0.29](https://img.shields.io/badge/Version-0.0.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.9](https://img.shields.io/badge/AppVersion-0.7.9-informational?style=flat-square) Sigstore API Endpoint Prober @@ -31,7 +31,7 @@ Sigstore API Endpoint Prober | spec.args.rekorRequests | list | `[]` | | | spec.args.trustRekorAPIPublicKey | bool | `false` | | | spec.args.writeProber | bool | `false` | | -| spec.image | string | `"ghcr.io/sigstore/scaffolding/prober:v0.7.8@sha256:07c803bcf28ed14974fb08755a05fbd45b33501ad3b45f32c8c64d676b38dc74"` | | +| spec.image | string | `"ghcr.io/sigstore/scaffolding/prober:v0.7.9@sha256:c18df4b4ddfd51d643bf2d43272e16c6bb9192ffb0f007703223ffbc23bb4339"` | | | spec.imagePullPolicy | string | `"Always"` | | | spec.matchLabels.app | string | `"sigstore-prober"` | | | spec.replicaCount | int | `1` | | diff --git a/charts/sigstore-prober/values.yaml b/charts/sigstore-prober/values.yaml index e70f5c87..2fbe742d 100644 --- a/charts/sigstore-prober/values.yaml +++ b/charts/sigstore-prober/values.yaml @@ -6,7 +6,7 @@ serviceAccount: create: false spec: replicaCount: 1 - image: ghcr.io/sigstore/scaffolding/prober:v0.7.8@sha256:07c803bcf28ed14974fb08755a05fbd45b33501ad3b45f32c8c64d676b38dc74 + image: ghcr.io/sigstore/scaffolding/prober:v0.7.9@sha256:c18df4b4ddfd51d643bf2d43272e16c6bb9192ffb0f007703223ffbc23bb4339 imagePullPolicy: Always matchLabels: app: sigstore-prober From d26ae03e45b6b1252a58d1f5944ac207ff371041 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Sun, 29 Sep 2024 14:56:53 -0400 Subject: [PATCH 02/11] bump ctlog chart for v0.7.11 scaffolding release (#836) --- charts/ctlog/Chart.yaml | 12 ++++++------ charts/ctlog/README.md | 10 +++++----- charts/ctlog/values.yaml | 16 ++++++++-------- 3 files changed, 19 insertions(+), 19 deletions(-) diff --git a/charts/ctlog/Chart.yaml b/charts/ctlog/Chart.yaml index b6608886..02cc64ed 100644 --- a/charts/ctlog/Chart.yaml +++ b/charts/ctlog/Chart.yaml @@ -4,8 +4,8 @@ description: Certificate Log type: application -version: 0.2.56 -appVersion: 0.7.8 +version: 0.2.57 +appVersion: 0.7.11 keywords: - security @@ -20,10 +20,10 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: ct_server - image: ghcr.io/sigstore/scaffolding/ct_server:v0.7.8@sha256:60f76cc090a18f278b2e8cdd1f8901543455a8a6f3c3bcd7a4a3f1481534552a + image: ghcr.io/sigstore/scaffolding/ct_server:v0.7.11@sha256:d6238aba1c35d3a2aae832469b20618e19a638da5f70d37791d945ce010f2027 - name: createctconfig - image: ghcr.io/sigstore/scaffolding/createctconfig:v0.7.8@sha256:d72a616f53005c51dd0f3fa40848e5149d23fb1c3dd216525f54d54dcca36b49 + image: ghcr.io/sigstore/scaffolding/createctconfig:v0.7.11@sha256:bcab917a07bb27f847531b145679b4b9a57bcaa85bb91e0b441ae9473c24fb79 - name: createtree - image: ghcr.io/sigstore/scaffolding/createtree:v0.7.8@sha256:c0cc90af73b71eaf0835c332d99834b669a36698c44c454835589bbc5acac478 + image: ghcr.io/sigstore/scaffolding/createtree:v0.7.11@sha256:4e3614df07561b096f1bfe1e1f79582b1545d6253bfad0f79235a1a1af74ef03 - name: curlimages/curl - image: docker.io/curlimages/curl:8.9.1@sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4 + image: docker.io/curlimages/curl:8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b diff --git a/charts/ctlog/README.md b/charts/ctlog/README.md index 74099a29..1789126c 100644 --- a/charts/ctlog/README.md +++ b/charts/ctlog/README.md @@ -1,6 +1,6 @@ # ctlog -![Version: 0.2.56](https://img.shields.io/badge/Version-0.2.56-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.8](https://img.shields.io/badge/AppVersion-0.7.8-informational?style=flat-square) +![Version: 0.2.57](https://img.shields.io/badge/Version-0.2.57-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.11](https://img.shields.io/badge/AppVersion-0.7.11-informational?style=flat-square) Certificate Log @@ -24,11 +24,11 @@ Certificate Log | createctconfig.image.pullPolicy | string | `"IfNotPresent"` | | | createctconfig.image.registry | string | `"ghcr.io"` | | | createctconfig.image.repository | string | `"sigstore/scaffolding/createctconfig"` | | -| createctconfig.image.version | string | `"sha256:d72a616f53005c51dd0f3fa40848e5149d23fb1c3dd216525f54d54dcca36b49"` | v0.7.8 | +| createctconfig.image.version | string | `"sha256:bcab917a07bb27f847531b145679b4b9a57bcaa85bb91e0b441ae9473c24fb79"` | v0.7.11 | | createctconfig.initContainerImage.curl.imagePullPolicy | string | `"IfNotPresent"` | | | createctconfig.initContainerImage.curl.registry | string | `"docker.io"` | | | createctconfig.initContainerImage.curl.repository | string | `"curlimages/curl"` | | -| createctconfig.initContainerImage.curl.version | string | `"sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4"` | 8.9.1 | +| createctconfig.initContainerImage.curl.version | string | `"sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b"` | 8.10.1 | | createctconfig.logPrefix | string | `"sigstorescaffolding"` | | | createctconfig.name | string | `"createctconfig"` | | | createctconfig.nodeSelector | object | `{}` | | @@ -51,7 +51,7 @@ Certificate Log | createtree.image.pullPolicy | string | `"IfNotPresent"` | | | createtree.image.registry | string | `"ghcr.io"` | | | createtree.image.repository | string | `"sigstore/scaffolding/createtree"` | | -| createtree.image.version | string | `"sha256:c0cc90af73b71eaf0835c332d99834b669a36698c44c454835589bbc5acac478"` | | +| createtree.image.version | string | `"sha256:4e3614df07561b096f1bfe1e1f79582b1545d6253bfad0f79235a1a1af74ef03"` | | | createtree.name | string | `"createtree"` | | | createtree.nodeSelector | object | `{}` | | | createtree.securityContext.runAsNonRoot | bool | `true` | | @@ -73,7 +73,7 @@ Certificate Log | server.image.pullPolicy | string | `"IfNotPresent"` | | | server.image.registry | string | `"ghcr.io"` | | | server.image.repository | string | `"sigstore/scaffolding/ct_server"` | | -| server.image.version | string | `"sha256:60f76cc090a18f278b2e8cdd1f8901543455a8a6f3c3bcd7a4a3f1481534552a"` | | +| server.image.version | string | `"sha256:d6238aba1c35d3a2aae832469b20618e19a638da5f70d37791d945ce010f2027"` | | | server.ingress.annotations | object | `{}` | | | server.ingress.className | string | `"nginx"` | | | server.ingress.enabled | bool | `false` | | diff --git a/charts/ctlog/values.yaml b/charts/ctlog/values.yaml index 1a85af98..0fc20688 100644 --- a/charts/ctlog/values.yaml +++ b/charts/ctlog/values.yaml @@ -13,8 +13,8 @@ server: registry: ghcr.io repository: sigstore/scaffolding/ct_server pullPolicy: IfNotPresent - # v0.7.8 - version: sha256:60f76cc090a18f278b2e8cdd1f8901543455a8a6f3c3bcd7a4a3f1481534552a + # v0.7.11 + version: sha256:d6238aba1c35d3a2aae832469b20618e19a638da5f70d37791d945ce010f2027 livenessProbe: httpGet: path: /healthz @@ -100,8 +100,8 @@ createtree: registry: ghcr.io repository: sigstore/scaffolding/createtree pullPolicy: IfNotPresent - # v0.7.8 - version: sha256:c0cc90af73b71eaf0835c332d99834b669a36698c44c454835589bbc5acac478 + # v0.7.11 + version: sha256:4e3614df07561b096f1bfe1e1f79582b1545d6253bfad0f79235a1a1af74ef03 ttlSecondsAfterFinished: 3600 serviceAccount: create: true @@ -125,15 +125,15 @@ createctconfig: curl: registry: docker.io repository: curlimages/curl - # -- 8.9.1 - version: sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4 + # -- 8.10.1 + version: sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b imagePullPolicy: IfNotPresent image: registry: ghcr.io repository: sigstore/scaffolding/createctconfig pullPolicy: IfNotPresent - # -- v0.7.8 - version: sha256:d72a616f53005c51dd0f3fa40848e5149d23fb1c3dd216525f54d54dcca36b49 + # -- v0.7.11 + version: sha256:bcab917a07bb27f847531b145679b4b9a57bcaa85bb91e0b441ae9473c24fb79 fulcioURL: "http://fulcio-server.fulcio-system.svc" logPrefix: sigstorescaffolding privateKeyPasswordSecretName: "" From ca88b6f3c812de6c25599b487886af869f39696d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 30 Sep 2024 09:07:41 +0200 Subject: [PATCH 03/11] build(deps): bump actions/checkout in the actions group (#845) Bumps the actions group with 1 update: [actions/checkout](https://github.com/actions/checkout). Updates `actions/checkout` from 4.1.7 to 4.2.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/692973e3d937129bcbf40652eb9f2f61becf3332...d632683dd7b4114ad314bca15554477dd762a938) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/check-docs.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/test.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/check-docs.yml b/.github/workflows/check-docs.yml index 8c65d3ed..28949dfc 100644 --- a/.github/workflows/check-docs.yml +++ b/.github/workflows/check-docs.yml @@ -11,7 +11,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - name: Run Helm Docs and check the outcome run: | diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 62ddaca0..6883bf5a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: fetch-depth: 0 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 3fd0c4b0..c0e97903 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: fetch-depth: 0 From 4816ce02bccf1a5a7e3bc7bf7c986aa71de99710 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 03:18:16 -0400 Subject: [PATCH 04/11] bump fulcio chart for v0.7.11 scaffolding release (#837) * bump fulcio chart for v0.7.11 scaffolding release Signed-off-by: Bob Callaway * bump lock file Signed-off-by: Bob Callaway --------- Signed-off-by: Bob Callaway --- charts/fulcio/Chart.lock | 6 +++--- charts/fulcio/Chart.yaml | 6 +++--- charts/fulcio/README.md | 6 +++--- charts/fulcio/values.yaml | 4 ++-- 4 files changed, 11 insertions(+), 11 deletions(-) diff --git a/charts/fulcio/Chart.lock b/charts/fulcio/Chart.lock index 7112039a..ea02f1d6 100644 --- a/charts/fulcio/Chart.lock +++ b/charts/fulcio/Chart.lock @@ -1,6 +1,6 @@ dependencies: - name: ctlog repository: https://sigstore.github.io/helm-charts - version: 0.2.56 -digest: sha256:48d5abee9df97033c523c51f0bd6b58adac1b23bc63705c43a548f332eee1bc5 -generated: "2024-09-03T10:46:06.600740798-04:00" + version: 0.2.57 +digest: sha256:9d3b2e53af0b40157727a7928095d92c355b08a0fa625dcf46a0cc695f78f905 +generated: "2024-09-29T17:20:25.569061877-04:00" diff --git a/charts/fulcio/Chart.yaml b/charts/fulcio/Chart.yaml index be9f63a1..4a3d43ab 100644 --- a/charts/fulcio/Chart.yaml +++ b/charts/fulcio/Chart.yaml @@ -5,7 +5,7 @@ description: | type: application -version: 2.6.0 +version: 2.6.1 appVersion: 1.6.4 keywords: @@ -19,7 +19,7 @@ maintainers: dependencies: - name: ctlog - version: 0.2.56 + version: 0.2.57 repository: https://sigstore.github.io/helm-charts condition: ctlog.enabled @@ -29,4 +29,4 @@ annotations: - name: fulcio image: gcr.io/projectsigstore/fulcio:v1.6.4@sha256:4b2a0f0877095aa36898af70edd00568158f89e015f6bb7f02475660d0924f3b - name: createcerts - image: ghcr.io/sigstore/scaffolding/createcerts:v0.7.8@sha256:c9c76a4a383ded6ec062e0185dd8e334192af1adcb60ab61bb88f87420a5b7ca + image: ghcr.io/sigstore/scaffolding/createcerts:v0.7.11@sha256:00fdcc2018c1a377eeabf840371711162fe50c31b57646bfda5ed9c0affdea9e diff --git a/charts/fulcio/README.md b/charts/fulcio/README.md index b206d29f..202b7a34 100644 --- a/charts/fulcio/README.md +++ b/charts/fulcio/README.md @@ -2,7 +2,7 @@ -![Version: 2.6.0](https://img.shields.io/badge/Version-2.6.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.6.4](https://img.shields.io/badge/AppVersion-1.6.4-informational?style=flat-square) +![Version: 2.6.1](https://img.shields.io/badge/Version-2.6.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.6.4](https://img.shields.io/badge/AppVersion-1.6.4-informational?style=flat-square) Fulcio is a free code signing Certificate Authority, built to make short-lived certificates available to anyone. @@ -71,7 +71,7 @@ helm uninstall [RELEASE_NAME] | Repository | Name | Version | |------------|------|---------| -| https://sigstore.github.io/helm-charts | ctlog | 0.2.56 | +| https://sigstore.github.io/helm-charts | ctlog | 0.2.57 | ## Values @@ -85,7 +85,7 @@ helm uninstall [RELEASE_NAME] | createcerts.image.pullPolicy | string | `"IfNotPresent"` | | | createcerts.image.registry | string | `"ghcr.io"` | | | createcerts.image.repository | string | `"sigstore/scaffolding/createcerts"` | | -| createcerts.image.version | string | `"sha256:c9c76a4a383ded6ec062e0185dd8e334192af1adcb60ab61bb88f87420a5b7ca"` | | +| createcerts.image.version | string | `"sha256:00fdcc2018c1a377eeabf840371711162fe50c31b57646bfda5ed9c0affdea9e"` | | | createcerts.name | string | `"createcerts"` | | | createcerts.nodeSelector | object | `{}` | | | createcerts.replicaCount | int | `1` | | diff --git a/charts/fulcio/values.yaml b/charts/fulcio/values.yaml index e3e58c6c..bdaf8285 100644 --- a/charts/fulcio/values.yaml +++ b/charts/fulcio/values.yaml @@ -123,8 +123,8 @@ createcerts: registry: ghcr.io repository: sigstore/scaffolding/createcerts pullPolicy: IfNotPresent - # v0.7.8 - version: sha256:c9c76a4a383ded6ec062e0185dd8e334192af1adcb60ab61bb88f87420a5b7ca + # v0.7.11 + version: sha256:00fdcc2018c1a377eeabf840371711162fe50c31b57646bfda5ed9c0affdea9e ttlSecondsAfterFinished: 3600 serviceAccount: create: true From 7be5e7f064e695e65c5ae2c0c1e00419701f91a9 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 04:06:51 -0400 Subject: [PATCH 05/11] bump prober chart for v0.7.11 scaffolding release (#839) Signed-off-by: Bob Callaway --- charts/sigstore-prober/Chart.yaml | 6 +++--- charts/sigstore-prober/README.md | 4 ++-- charts/sigstore-prober/values.yaml | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/charts/sigstore-prober/Chart.yaml b/charts/sigstore-prober/Chart.yaml index 2fea968a..12f23932 100644 --- a/charts/sigstore-prober/Chart.yaml +++ b/charts/sigstore-prober/Chart.yaml @@ -4,8 +4,8 @@ description: Sigstore API Endpoint Prober type: application -version: 0.0.29 -appVersion: 0.7.9 +version: 0.0.30 +appVersion: 0.7.11 keywords: @@ -21,4 +21,4 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: sigstore-prober - image: ghcr.io/sigstore/scaffolding/prober:v0.7.9@sha256:c18df4b4ddfd51d643bf2d43272e16c6bb9192ffb0f007703223ffbc23bb4339 + image: ghcr.io/sigstore/scaffolding/prober:v0.7.11@sha256:1bf5103d3e06b3708b010c0a9c1f2d5e93bc2208cbca368c4144b22d1ef39761 diff --git a/charts/sigstore-prober/README.md b/charts/sigstore-prober/README.md index 95b26891..c4a298b6 100644 --- a/charts/sigstore-prober/README.md +++ b/charts/sigstore-prober/README.md @@ -1,6 +1,6 @@ # sigstore-prober -![Version: 0.0.29](https://img.shields.io/badge/Version-0.0.29-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.9](https://img.shields.io/badge/AppVersion-0.7.9-informational?style=flat-square) +![Version: 0.0.30](https://img.shields.io/badge/Version-0.0.30-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.11](https://img.shields.io/badge/AppVersion-0.7.11-informational?style=flat-square) Sigstore API Endpoint Prober @@ -31,7 +31,7 @@ Sigstore API Endpoint Prober | spec.args.rekorRequests | list | `[]` | | | spec.args.trustRekorAPIPublicKey | bool | `false` | | | spec.args.writeProber | bool | `false` | | -| spec.image | string | `"ghcr.io/sigstore/scaffolding/prober:v0.7.9@sha256:c18df4b4ddfd51d643bf2d43272e16c6bb9192ffb0f007703223ffbc23bb4339"` | | +| spec.image | string | `"ghcr.io/sigstore/scaffolding/prober:v0.7.11@sha256:1bf5103d3e06b3708b010c0a9c1f2d5e93bc2208cbca368c4144b22d1ef39761"` | | | spec.imagePullPolicy | string | `"Always"` | | | spec.matchLabels.app | string | `"sigstore-prober"` | | | spec.replicaCount | int | `1` | | diff --git a/charts/sigstore-prober/values.yaml b/charts/sigstore-prober/values.yaml index 2fbe742d..80cc3416 100644 --- a/charts/sigstore-prober/values.yaml +++ b/charts/sigstore-prober/values.yaml @@ -6,7 +6,7 @@ serviceAccount: create: false spec: replicaCount: 1 - image: ghcr.io/sigstore/scaffolding/prober:v0.7.9@sha256:c18df4b4ddfd51d643bf2d43272e16c6bb9192ffb0f007703223ffbc23bb4339 + image: ghcr.io/sigstore/scaffolding/prober:v0.7.11@sha256:1bf5103d3e06b3708b010c0a9c1f2d5e93bc2208cbca368c4144b22d1ef39761 imagePullPolicy: Always matchLabels: app: sigstore-prober From 956d8e838dc677bc05adb5671be14efca9252f10 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 04:08:38 -0400 Subject: [PATCH 06/11] bump trillian chart for v0.7.11 scaffolding release (#840) Signed-off-by: Bob Callaway --- charts/trillian/Chart.yaml | 10 +++++----- charts/trillian/README.md | 12 ++++++------ charts/trillian/values.yaml | 18 +++++++++--------- 3 files changed, 20 insertions(+), 20 deletions(-) diff --git a/charts/trillian/Chart.yaml b/charts/trillian/Chart.yaml index 3c48026b..ea966752 100644 --- a/charts/trillian/Chart.yaml +++ b/charts/trillian/Chart.yaml @@ -5,7 +5,7 @@ description: | type: application -version: 0.2.27 +version: 0.2.28 appVersion: 1.6.1 keywords: @@ -25,7 +25,7 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: curl - image: docker.io/curlimages/curl:8.9.1@sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4 + image: docker.io/curlimages/curl:8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b - name: netcat image: cgr.dev/chainguard/netcat@sha256:6051975a14c51b9d3b525a06004d62a4d323c08ca58e3468343095a55a42fff2 - name: db_server @@ -35,8 +35,8 @@ annotations: - name: log_signer image: ghcr.io/sigstore/scaffolding/trillian_log_signer:v1.6.1@sha256:9ddaf6c45cab0177db6e599d8bde12a46e1913181f4a6942096655e0435d0212 - name: cloud_proxy - image: gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine@sha256:a3843521730914f074f364c5bec608319ebeb5e66da9314ba45b16cd8223547f + image: gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine@sha256:74680d0e49d44af5b6f994a6a29712866cb95d8851b1416676313d0cf567946b - name: scaffold_cloud_proxy - image: ghcr.io/sigstore/scaffolding/cloudsqlproxy:v0.7.8@sha256:8a7539e248d38628799934e7f1c890083c90e4242e2b0feec4c352fda2574184 + image: ghcr.io/sigstore/scaffolding/cloudsqlproxy:v0.7.11@sha256:16364cc06de704959576b23da26798850141ecae0f70510654764467cd9f47be - name: createdb - image: ghcr.io/sigstore/scaffolding/createdb:v0.7.8@sha256:674760d4000f151b768843e6d7f671b8e3ada037736e312b4939b3a48abd6066 + image: ghcr.io/sigstore/scaffolding/createdb:v0.7.11@sha256:c835472a9d0e4d8629e9a1a609c8c706cb193144e4088d8f27eade73a4ad5812 diff --git a/charts/trillian/README.md b/charts/trillian/README.md index 0678c060..31c08575 100644 --- a/charts/trillian/README.md +++ b/charts/trillian/README.md @@ -2,7 +2,7 @@ -![Version: 0.2.27](https://img.shields.io/badge/Version-0.2.27-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.6.1](https://img.shields.io/badge/AppVersion-1.6.1-informational?style=flat-square) +![Version: 0.2.28](https://img.shields.io/badge/Version-0.2.28-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.6.1](https://img.shields.io/badge/AppVersion-1.6.1-informational?style=flat-square) Trillian is a log that stores an accurate, immutable and verifiable history of activity. @@ -46,7 +46,7 @@ helm uninstall [RELEASE_NAME] | createdb.image.pullPolicy | string | `"IfNotPresent"` | | | createdb.image.registry | string | `"ghcr.io"` | | | createdb.image.repository | string | `"sigstore/scaffolding/createdb"` | | -| createdb.image.version | string | `"sha256:674760d4000f151b768843e6d7f671b8e3ada037736e312b4939b3a48abd6066"` | v0.7.8 | +| createdb.image.version | string | `"sha256:c835472a9d0e4d8629e9a1a609c8c706cb193144e4088d8f27eade73a4ad5812"` | v0.7.11 | | createdb.name | string | `"createdb"` | | | createdb.nodeSelector | object | `{}` | | | createdb.serviceAccount.annotations | object | `{}` | | @@ -59,7 +59,7 @@ helm uninstall [RELEASE_NAME] | initContainerImage.curl.imagePullPolicy | string | `"IfNotPresent"` | | | initContainerImage.curl.registry | string | `"docker.io"` | | | initContainerImage.curl.repository | string | `"curlimages/curl"` | | -| initContainerImage.curl.version | string | `"sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4"` | 8.9.1 | +| initContainerImage.curl.version | string | `"sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b"` | 8.10.1 | | initContainerImage.netcat.imagePullPolicy | string | `"IfNotPresent"` | | | initContainerImage.netcat.registry | string | `"cgr.dev"` | | | initContainerImage.netcat.repository | string | `"chainguard/netcat"` | | @@ -124,7 +124,7 @@ helm uninstall [RELEASE_NAME] | mysql.auth.username | string | `"mysql"` | | | mysql.enabled | bool | `true` | | | mysql.gcp.cloudsql.registry | string | `"gcr.io"` | | -| mysql.gcp.cloudsql.repository | string | `"cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine"` | | +| mysql.gcp.cloudsql.repository | string | `"cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine"` | | | mysql.gcp.cloudsql.resources.requests.cpu | string | `"1"` | | | mysql.gcp.cloudsql.resources.requests.memory | string | `"2Gi"` | | | mysql.gcp.cloudsql.securityContext.allowPrivilegeEscalation | bool | `false` | | @@ -133,7 +133,7 @@ helm uninstall [RELEASE_NAME] | mysql.gcp.cloudsql.securityContext.runAsNonRoot | bool | `true` | | | mysql.gcp.cloudsql.unixDomainSocket.enabled | bool | `false` | | | mysql.gcp.cloudsql.unixDomainSocket.path | string | `"/cloudsql"` | | -| mysql.gcp.cloudsql.version | string | `"sha256:a3843521730914f074f364c5bec608319ebeb5e66da9314ba45b16cd8223547f"` | crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine | +| mysql.gcp.cloudsql.version | string | `"sha256:74680d0e49d44af5b6f994a6a29712866cb95d8851b1416676313d0cf567946b"` | crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine | | mysql.gcp.enabled | bool | `false` | | | mysql.gcp.instance | string | `""` | | | mysql.gcp.scaffoldSQLProxy.registry | string | `"ghcr.io"` | | @@ -144,7 +144,7 @@ helm uninstall [RELEASE_NAME] | mysql.gcp.scaffoldSQLProxy.securityContext.capabilities.drop[0] | string | `"ALL"` | | | mysql.gcp.scaffoldSQLProxy.securityContext.readOnlyRootFilesystem | bool | `true` | | | mysql.gcp.scaffoldSQLProxy.securityContext.runAsNonRoot | bool | `true` | | -| mysql.gcp.scaffoldSQLProxy.version | string | `"sha256:8a7539e248d38628799934e7f1c890083c90e4242e2b0feec4c352fda2574184"` | v0.7.8 which is based on cloud-sql-proxy:2.12.0-alpine | +| mysql.gcp.scaffoldSQLProxy.version | string | `"sha256:16364cc06de704959576b23da26798850141ecae0f70510654764467cd9f47be"` | v0.7.11 which is based on cloud-sql-proxy:2.13.0-alpine | | mysql.hostname | string | `""` | | | mysql.image.pullPolicy | string | `"IfNotPresent"` | | | mysql.image.registry | string | `"gcr.io"` | | diff --git a/charts/trillian/values.yaml b/charts/trillian/values.yaml index bdb3f941..19155c10 100644 --- a/charts/trillian/values.yaml +++ b/charts/trillian/values.yaml @@ -8,8 +8,8 @@ initContainerImage: curl: registry: docker.io repository: curlimages/curl - # -- 8.9.1 - version: sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4 + # -- 8.10.1 + version: sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b imagePullPolicy: IfNotPresent netcat: registry: cgr.dev @@ -31,8 +31,8 @@ mysql: scaffoldSQLProxy: registry: ghcr.io repository: sigstore/scaffolding/cloudsqlproxy - # -- v0.7.8 which is based on cloud-sql-proxy:2.12.0-alpine - version: sha256:8a7539e248d38628799934e7f1c890083c90e4242e2b0feec4c352fda2574184 + # -- v0.7.11 which is based on cloud-sql-proxy:2.13.0-alpine + version: sha256:16364cc06de704959576b23da26798850141ecae0f70510654764467cd9f47be resources: requests: memory: "2Gi" @@ -46,9 +46,9 @@ mysql: - ALL cloudsql: registry: gcr.io - repository: cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine - # -- crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine - version: sha256:a3843521730914f074f364c5bec608319ebeb5e66da9314ba45b16cd8223547f + repository: cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine + # -- crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine + version: sha256:74680d0e49d44af5b6f994a6a29712866cb95d8851b1416676313d0cf567946b resources: requests: memory: "2Gi" @@ -204,8 +204,8 @@ createdb: registry: ghcr.io repository: sigstore/scaffolding/createdb pullPolicy: IfNotPresent - # -- v0.7.8 - version: sha256:674760d4000f151b768843e6d7f671b8e3ada037736e312b4939b3a48abd6066 + # -- v0.7.11 + version: sha256:c835472a9d0e4d8629e9a1a609c8c706cb193144e4088d8f27eade73a4ad5812 serviceAccount: create: false name: "" From a813f18bfa31709d993145e69f333f5a767fc666 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 04:09:17 -0400 Subject: [PATCH 07/11] bump tuf chart for v0.7.11 scaffolding release (#842) Signed-off-by: Bob Callaway --- charts/tuf/Chart.yaml | 6 +++--- charts/tuf/README.md | 4 ++-- charts/tuf/values.yaml | 4 ++-- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/charts/tuf/Chart.yaml b/charts/tuf/Chart.yaml index e5074392..a5a96cce 100644 --- a/charts/tuf/Chart.yaml +++ b/charts/tuf/Chart.yaml @@ -2,8 +2,8 @@ apiVersion: v2 name: tuf description: A framework for securing software update systems - the scaffolding implementation type: application -version: 0.1.17 -appVersion: 0.7.8 +version: 0.1.18 +appVersion: 0.7.11 home: https://sigstore.dev/ sources: @@ -17,4 +17,4 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: scaffolding-tuf - image: ghcr.io/sigstore/scaffolding/server:v0.7.8@sha256:dfccfb85b8638b488a3fd2320d723efb37633be7c32c34a1ab58138e5f80d0e2 + image: ghcr.io/sigstore/scaffolding/server:v0.7.11@sha256:90992e92dee398c8b9bdeec0365f2b7211f1a14b4b111e9e926c701847e995e7 diff --git a/charts/tuf/README.md b/charts/tuf/README.md index 193b3372..4baa237c 100644 --- a/charts/tuf/README.md +++ b/charts/tuf/README.md @@ -1,6 +1,6 @@ # tuf -![Version: 0.1.17](https://img.shields.io/badge/Version-0.1.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.8](https://img.shields.io/badge/AppVersion-0.7.8-informational?style=flat-square) +![Version: 0.1.18](https://img.shields.io/badge/Version-0.1.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.11](https://img.shields.io/badge/AppVersion-0.7.11-informational?style=flat-square) A framework for securing software update systems - the scaffolding implementation @@ -29,7 +29,7 @@ A framework for securing software update systems - the scaffolding implementatio | deployment.replicas | int | `1` | | | deployment.repository | string | `"sigstore/scaffolding/server"` | | | deployment.tolerations | list | `[]` | | -| deployment.version | string | `"sha256:dfccfb85b8638b488a3fd2320d723efb37633be7c32c34a1ab58138e5f80d0e2"` | | +| deployment.version | string | `"sha256:90992e92dee398c8b9bdeec0365f2b7211f1a14b4b111e9e926c701847e995e7"` | | | enabled | bool | `true` | | | forceNamespace | string | `""` | | | fullnameOverride | string | `"tuf"` | | diff --git a/charts/tuf/values.yaml b/charts/tuf/values.yaml index ff4f081b..34bbbfec 100644 --- a/charts/tuf/values.yaml +++ b/charts/tuf/values.yaml @@ -11,8 +11,8 @@ deployment: replicas: 1 registry: ghcr.io repository: sigstore/scaffolding/server - # v0.7.8 - version: sha256:dfccfb85b8638b488a3fd2320d723efb37633be7c32c34a1ab58138e5f80d0e2 + # v0.7.11 + version: sha256:90992e92dee398c8b9bdeec0365f2b7211f1a14b4b111e9e926c701847e995e7 imagePullPolicy: IfNotPresent port: 8080 tolerations: [] From 8994bfd7d915e92222ad7d7141153ae4a63d2bd6 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 04:11:27 -0400 Subject: [PATCH 08/11] bump tsa chart for timestamp-server v1.2.3 release (#841) Signed-off-by: Bob Callaway --- charts/tsa/Chart.yaml | 8 ++++---- charts/tsa/README.md | 4 ++-- charts/tsa/values.yaml | 6 +++--- 3 files changed, 9 insertions(+), 9 deletions(-) diff --git a/charts/tsa/Chart.yaml b/charts/tsa/Chart.yaml index 533a5cbb..e1592af1 100644 --- a/charts/tsa/Chart.yaml +++ b/charts/tsa/Chart.yaml @@ -5,8 +5,8 @@ description: | type: application -version: 1.0.5 -appVersion: 1.2.2 +version: 1.0.6 +appVersion: 1.2.3 keywords: - security @@ -21,5 +21,5 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: tsa - # crane digest ghcr.io/sigstore/timestamp-server:v1.2.2 - image: ghcr.io/sigstore/timestamp-server@sha256:9f012408a0b2a91a0f017df419b732556a0bdd7482973dc3b87fe979e41ccc9a + # crane digest ghcr.io/sigstore/timestamp-server:v1.2.3 + image: ghcr.io/sigstore/timestamp-server@sha256:9a5b7b897fa4abb5d6ed23a29e8cf7de1eee3334b75befc687f8eab1ff57873c diff --git a/charts/tsa/README.md b/charts/tsa/README.md index ab3a29f1..b2f0797b 100644 --- a/charts/tsa/README.md +++ b/charts/tsa/README.md @@ -2,7 +2,7 @@ -![Version: 1.0.5](https://img.shields.io/badge/Version-1.0.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.2](https://img.shields.io/badge/AppVersion-1.2.2-informational?style=flat-square) +![Version: 1.0.6](https://img.shields.io/badge/Version-1.0.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.3](https://img.shields.io/badge/AppVersion-1.2.3-informational?style=flat-square) Timestamp Authority issuing RFC3161 signed timestamps. @@ -105,7 +105,7 @@ helm uninstall [RELEASE_NAME] | server.image.pullPolicy | string | `"IfNotPresent"` | | | server.image.registry | string | `"ghcr.io"` | | | server.image.repository | string | `"sigstore/timestamp-server"` | | -| server.image.version | string | `"sha256:9f012408a0b2a91a0f017df419b732556a0bdd7482973dc3b87fe979e41ccc9a"` | v1.2.2 | +| server.image.version | string | `"sha256:9a5b7b897fa4abb5d6ed23a29e8cf7de1eee3334b75befc687f8eab1ff57873c"` | v1.2.3 | | server.ingress.http.annotations | object | `{}` | | | server.ingress.http.className | string | `"nginx"` | | | server.ingress.http.enabled | bool | `true` | | diff --git a/charts/tsa/values.yaml b/charts/tsa/values.yaml index 8fd2c6f4..a8b9bdb3 100644 --- a/charts/tsa/values.yaml +++ b/charts/tsa/values.yaml @@ -16,9 +16,9 @@ server: registry: ghcr.io repository: sigstore/timestamp-server pullPolicy: IfNotPresent - # crane digest ghcr.io/sigstore/timestamp-server:v1.2.2 - # -- v1.2.2 - version: sha256:9f012408a0b2a91a0f017df419b732556a0bdd7482973dc3b87fe979e41ccc9a + # crane digest ghcr.io/sigstore/timestamp-server:v1.2.3 + # -- v1.2.3 + version: sha256:9a5b7b897fa4abb5d6ed23a29e8cf7de1eee3334b75befc687f8eab1ff57873c args: port: 5555 # Valid values: tink, kms, file From 2bbc634d7b379da5ef45b141672f9a4ec7e775a8 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 04:16:37 -0400 Subject: [PATCH 09/11] bump updatetree chart for v0.7.11 scaffolding release (#843) Signed-off-by: Bob Callaway --- charts/updatetree/Chart.yaml | 6 +++--- charts/updatetree/README.md | 4 ++-- charts/updatetree/values.yaml | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/charts/updatetree/Chart.yaml b/charts/updatetree/Chart.yaml index 71424e5d..cfa22dd2 100644 --- a/charts/updatetree/Chart.yaml +++ b/charts/updatetree/Chart.yaml @@ -4,8 +4,8 @@ description: Update the status of an existing Trillian tree type: application -version: 0.0.13 -appVersion: 0.7.8 +version: 0.0.14 +appVersion: 0.7.11 keywords: @@ -22,4 +22,4 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: updatetree - image: ghcr.io/sigstore/scaffolding/updatetree:v0.7.8@sha256:08703b6f450293d7047c914765dc988a8da4f8c4cbf2b85d58bb64ba0c45ff36 + image: ghcr.io/sigstore/scaffolding/updatetree:v0.7.11@sha256:37ac271cbdb3c74e3146b35823e48391f24cc2c76b415a821c2f95a41dd64342 diff --git a/charts/updatetree/README.md b/charts/updatetree/README.md index 04114fdf..c0fcfcfb 100644 --- a/charts/updatetree/README.md +++ b/charts/updatetree/README.md @@ -1,6 +1,6 @@ # updatetree -![Version: 0.0.13](https://img.shields.io/badge/Version-0.0.13-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.8](https://img.shields.io/badge/AppVersion-0.7.8-informational?style=flat-square) +![Version: 0.0.14](https://img.shields.io/badge/Version-0.0.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.7.11](https://img.shields.io/badge/AppVersion-0.7.11-informational?style=flat-square) Update the status of an existing Trillian tree @@ -29,7 +29,7 @@ Update the status of an existing Trillian tree | serviceAccount.annotations | object | `{}` | | | serviceAccount.create | bool | `false` | | | serviceAccount.name | string | `"trillian-logserver"` | | -| spec.image | string | `"ghcr.io/sigstore/scaffolding/updatetree:v0.7.8@sha256:08703b6f450293d7047c914765dc988a8da4f8c4cbf2b85d58bb64ba0c45ff36"` | | +| spec.image | string | `"ghcr.io/sigstore/scaffolding/updatetree:v0.7.11@sha256:37ac271cbdb3c74e3146b35823e48391f24cc2c76b415a821c2f95a41dd64342"` | | | spec.replicaCount | int | `1` | | | tolerations | list | `[]` | | | trillian.adminServer | string | `""` | | diff --git a/charts/updatetree/values.yaml b/charts/updatetree/values.yaml index 6134b1f4..f5c39e5c 100644 --- a/charts/updatetree/values.yaml +++ b/charts/updatetree/values.yaml @@ -8,7 +8,7 @@ serviceAccount: create: false spec: replicaCount: 1 - image: ghcr.io/sigstore/scaffolding/updatetree:v0.7.8@sha256:08703b6f450293d7047c914765dc988a8da4f8c4cbf2b85d58bb64ba0c45ff36 + image: ghcr.io/sigstore/scaffolding/updatetree:v0.7.11@sha256:37ac271cbdb3c74e3146b35823e48391f24cc2c76b415a821c2f95a41dd64342 ttlSecondsAfterFinished: 3600 securityContext: runAsNonRoot: true From e713c620a646d84f6e0901a7751b63dd11275832 Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 09:13:58 -0400 Subject: [PATCH 10/11] bump rekor chart for v0.7.11 scaffolding release (#838) Signed-off-by: Bob Callaway --- charts/rekor/Chart.yaml | 12 ++++++------ charts/rekor/README.md | 14 +++++++------- charts/rekor/values.yaml | 18 +++++++++--------- 3 files changed, 22 insertions(+), 22 deletions(-) diff --git a/charts/rekor/Chart.yaml b/charts/rekor/Chart.yaml index 6dcdddf9..54a8357b 100644 --- a/charts/rekor/Chart.yaml +++ b/charts/rekor/Chart.yaml @@ -4,7 +4,7 @@ description: Part of the sigstore project, Rekor is a timestamping server and tr type: application -version: 1.5.0 +version: 1.5.1 appVersion: 1.3.6 keywords: @@ -19,7 +19,7 @@ maintainers: dependencies: - name: trillian - version: 0.2.27 + version: 0.2.28 repository: https://sigstore.github.io/helm-charts condition: trillian.enabled @@ -27,9 +27,9 @@ annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/images: | - name: createtree - image: ghcr.io/sigstore/scaffolding/createtree:v0.7.8@sha256:c0cc90af73b71eaf0835c332d99834b669a36698c44c454835589bbc5acac478 + image: ghcr.io/sigstore/scaffolding/createtree:v0.7.11@sha256:4e3614df07561b096f1bfe1e1f79582b1545d6253bfad0f79235a1a1af74ef03 - name: curlimages/curl - image: docker.io/curlimages/curl:8.9.1@sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4 + image: docker.io/curlimages/curl:8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b - name: rekor-server image: gcr.io/projectsigstore/rekor-server:v1.3.6@sha256:1237f29e2105d7f5451bbe15a3aca8677ddd1bb80620ca2fd06f74262437cf51 - name: redis @@ -37,6 +37,6 @@ annotations: - name: backfill-redis image: ghcr.io/sigstore/rekor/backfill-redis:v1.3.6@sha256:a13cd8b2a554d6116888fd1f383cf6e91fc1716df5eda392b82e6bfc66995ec3 - name: scaffold_cloud_proxy - image: ghcr.io/sigstore/scaffolding/cloudsqlproxy:v0.7.8@sha256:8a7539e248d38628799934e7f1c890083c90e4242e2b0feec4c352fda2574184 + image: ghcr.io/sigstore/scaffolding/cloudsqlproxy:v0.7.11@sha256:16364cc06de704959576b23da26798850141ecae0f70510654764467cd9f47be - name: cloud_proxy - image: gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine@sha256:a3843521730914f074f364c5bec608319ebeb5e66da9314ba45b16cd8223547f + image: gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine@sha256:74680d0e49d44af5b6f994a6a29712866cb95d8851b1416676313d0cf567946b diff --git a/charts/rekor/README.md b/charts/rekor/README.md index 2ce39d48..88210745 100644 --- a/charts/rekor/README.md +++ b/charts/rekor/README.md @@ -1,6 +1,6 @@ # rekor -![Version: 1.5.0](https://img.shields.io/badge/Version-1.5.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.6](https://img.shields.io/badge/AppVersion-1.3.6-informational?style=flat-square) +![Version: 1.5.1](https://img.shields.io/badge/Version-1.5.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.6](https://img.shields.io/badge/AppVersion-1.3.6-informational?style=flat-square) Part of the sigstore project, Rekor is a timestamping server and transparency log for storing signatures, as well as an API based server for validation @@ -20,7 +20,7 @@ Part of the sigstore project, Rekor is a timestamping server and transparency lo | Repository | Name | Version | |------------|------|---------| -| https://sigstore.github.io/helm-charts | trillian | 0.2.27 | +| https://sigstore.github.io/helm-charts | trillian | 0.2.28 | ## Values @@ -48,7 +48,7 @@ Part of the sigstore project, Rekor is a timestamping server and transparency lo | createtree.image.pullPolicy | string | `"IfNotPresent"` | | | createtree.image.registry | string | `"ghcr.io"` | | | createtree.image.repository | string | `"sigstore/scaffolding/createtree"` | | -| createtree.image.version | string | `"sha256:c0cc90af73b71eaf0835c332d99834b669a36698c44c454835589bbc5acac478"` | | +| createtree.image.version | string | `"sha256:4e3614df07561b096f1bfe1e1f79582b1545d6253bfad0f79235a1a1af74ef03"` | | | createtree.name | string | `"createtree"` | | | createtree.nodeSelector | object | `{}` | | | createtree.resources | object | `{}` | | @@ -64,11 +64,11 @@ Part of the sigstore project, Rekor is a timestamping server and transparency lo | initContainerImage.curl.imagePullPolicy | string | `"IfNotPresent"` | | | initContainerImage.curl.registry | string | `"docker.io"` | | | initContainerImage.curl.repository | string | `"curlimages/curl"` | | -| initContainerImage.curl.version | string | `"sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4"` | 8.9.1 | +| initContainerImage.curl.version | string | `"sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b"` | 8.10.1 | | initContainerResources | object | `{}` | | | mysql.enabled | bool | `false` | | | mysql.gcp.cloudsql.registry | string | `"gcr.io"` | | -| mysql.gcp.cloudsql.repository | string | `"cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine"` | | +| mysql.gcp.cloudsql.repository | string | `"cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine"` | | | mysql.gcp.cloudsql.resources.requests.cpu | string | `"1"` | | | mysql.gcp.cloudsql.resources.requests.memory | string | `"2Gi"` | | | mysql.gcp.cloudsql.securityContext.allowPrivilegeEscalation | bool | `false` | | @@ -77,7 +77,7 @@ Part of the sigstore project, Rekor is a timestamping server and transparency lo | mysql.gcp.cloudsql.securityContext.runAsNonRoot | bool | `true` | | | mysql.gcp.cloudsql.unixDomainSocket.enabled | bool | `false` | | | mysql.gcp.cloudsql.unixDomainSocket.path | string | `"/cloudsql"` | | -| mysql.gcp.cloudsql.version | string | `"sha256:a3843521730914f074f364c5bec608319ebeb5e66da9314ba45b16cd8223547f"` | crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine | +| mysql.gcp.cloudsql.version | string | `"sha256:74680d0e49d44af5b6f994a6a29712866cb95d8851b1416676313d0cf567946b"` | crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine | | mysql.gcp.enabled | bool | `false` | | | mysql.gcp.instance | string | `""` | | | mysql.gcp.scaffoldSQLProxy.registry | string | `"ghcr.io"` | | @@ -88,7 +88,7 @@ Part of the sigstore project, Rekor is a timestamping server and transparency lo | mysql.gcp.scaffoldSQLProxy.securityContext.capabilities.drop[0] | string | `"ALL"` | | | mysql.gcp.scaffoldSQLProxy.securityContext.readOnlyRootFilesystem | bool | `true` | | | mysql.gcp.scaffoldSQLProxy.securityContext.runAsNonRoot | bool | `true` | | -| mysql.gcp.scaffoldSQLProxy.version | string | `"sha256:8a7539e248d38628799934e7f1c890083c90e4242e2b0feec4c352fda2574184"` | v0.7.8 which is based on cloud-sql-proxy:2.12.0-alpine | +| mysql.gcp.scaffoldSQLProxy.version | string | `"sha256:16364cc06de704959576b23da26798850141ecae0f70510654764467cd9f47be"` | v0.7.11 which is based on cloud-sql-proxy:2.13.0-alpine | | mysql.hostname | string | `""` | | | mysql.image.pullPolicy | string | `"IfNotPresent"` | | | mysql.image.registry | string | `"gcr.io"` | | diff --git a/charts/rekor/values.yaml b/charts/rekor/values.yaml index c6e80b72..84ff26cc 100644 --- a/charts/rekor/values.yaml +++ b/charts/rekor/values.yaml @@ -7,8 +7,8 @@ initContainerImage: curl: registry: docker.io repository: curlimages/curl - # -- 8.9.1 - version: sha256:8addc281f0ea517409209f76832b6ddc2cabc3264feb1ebbec2a2521ffad24e4 + # -- 8.10.1 + version: sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b imagePullPolicy: IfNotPresent initContainerResources: {} @@ -64,8 +64,8 @@ mysql: scaffoldSQLProxy: registry: ghcr.io repository: sigstore/scaffolding/cloudsqlproxy - # -- v0.7.8 which is based on cloud-sql-proxy:2.12.0-alpine - version: sha256:8a7539e248d38628799934e7f1c890083c90e4242e2b0feec4c352fda2574184 + # -- v0.7.11 which is based on cloud-sql-proxy:2.13.0-alpine + version: sha256:16364cc06de704959576b23da26798850141ecae0f70510654764467cd9f47be resources: requests: memory: "2Gi" @@ -79,9 +79,9 @@ mysql: - ALL cloudsql: registry: gcr.io - repository: cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine - # -- crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.12.0-alpine - version: sha256:a3843521730914f074f364c5bec608319ebeb5e66da9314ba45b16cd8223547f + repository: cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine + # -- crane digest gcr.io/cloud-sql-connectors/cloud-sql-proxy:2.13.0-alpine + version: sha256:74680d0e49d44af5b6f994a6a29712866cb95d8851b1416676313d0cf567946b resources: requests: memory: "2Gi" @@ -233,8 +233,8 @@ createtree: registry: ghcr.io repository: sigstore/scaffolding/createtree pullPolicy: IfNotPresent - # v0.7.8 - version: sha256:c0cc90af73b71eaf0835c332d99834b669a36698c44c454835589bbc5acac478 + # v0.7.11 + version: sha256:4e3614df07561b096f1bfe1e1f79582b1545d6253bfad0f79235a1a1af74ef03 ttlSecondsAfterFinished: 3600 serviceAccount: create: true From 87cf29d9c68d7ad3c228228e2cc26ac5d148932d Mon Sep 17 00:00:00 2001 From: Bob Callaway Date: Mon, 30 Sep 2024 09:44:39 -0400 Subject: [PATCH 11/11] bump scaffold chart for v0.7.11 scaffolding release (#844) --- charts/scaffold/Chart.lock | 16 ++++++++-------- charts/scaffold/Chart.yaml | 14 +++++++------- charts/scaffold/README.md | 14 +++++++------- 3 files changed, 22 insertions(+), 22 deletions(-) diff --git a/charts/scaffold/Chart.lock b/charts/scaffold/Chart.lock index c4b0fcef..a1c3ed9c 100644 --- a/charts/scaffold/Chart.lock +++ b/charts/scaffold/Chart.lock @@ -1,21 +1,21 @@ dependencies: - name: fulcio repository: https://sigstore.github.io/helm-charts - version: 2.5.4 + version: 2.6.1 - name: rekor repository: https://sigstore.github.io/helm-charts - version: 1.4.8 + version: 1.5.1 - name: trillian repository: https://sigstore.github.io/helm-charts - version: 0.2.27 + version: 0.2.28 - name: ctlog repository: https://sigstore.github.io/helm-charts - version: 0.2.56 + version: 0.2.57 - name: tuf repository: https://sigstore.github.io/helm-charts - version: 0.1.17 + version: 0.1.18 - name: tsa repository: https://sigstore.github.io/helm-charts - version: 1.0.5 -digest: sha256:a8d432f681bf37e4b1454a4565d38620f27d2b7ec55ff3fd4566dbcff104a928 -generated: "2024-09-04T14:11:41.969723-06:00" + version: 1.0.6 +digest: sha256:e0aac105beb48cc1aa0c039e5fdb02cdf13d260e4fcaeea8573cd71693816e97 +generated: "2024-09-30T09:22:16.142095029-04:00" diff --git a/charts/scaffold/Chart.yaml b/charts/scaffold/Chart.yaml index bbcda100..a3a5cdd9 100644 --- a/charts/scaffold/Chart.yaml +++ b/charts/scaffold/Chart.yaml @@ -4,7 +4,7 @@ description: Scaffolding the components of the sigstore architecture type: application -version: 0.6.61 +version: 0.6.62 keywords: - security - pki @@ -16,27 +16,27 @@ maintainers: dependencies: - name: fulcio - version: 2.5.4 + version: 2.6.1 repository: https://sigstore.github.io/helm-charts condition: fulcio.enabled - name: rekor - version: 1.4.8 + version: 1.5.1 repository: https://sigstore.github.io/helm-charts condition: rekor.enabled - name: trillian - version: 0.2.27 + version: 0.2.28 repository: https://sigstore.github.io/helm-charts condition: trillian.enabled - name: ctlog - version: 0.2.56 + version: 0.2.57 repository: https://sigstore.github.io/helm-charts condition: ctlog.enabled - name: tuf - version: 0.1.17 + version: 0.1.18 repository: https://sigstore.github.io/helm-charts condition: tuf.enabled - name: tsa - version: 1.0.5 + version: 1.0.6 repository: https://sigstore.github.io/helm-charts condition: tsa.enabled diff --git a/charts/scaffold/README.md b/charts/scaffold/README.md index d34e12d5..383b8994 100644 --- a/charts/scaffold/README.md +++ b/charts/scaffold/README.md @@ -2,7 +2,7 @@ -![Version: 0.6.61](https://img.shields.io/badge/Version-0.6.61-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) +![Version: 0.6.62](https://img.shields.io/badge/Version-0.6.62-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) Scaffolding the components of the sigstore architecture @@ -36,12 +36,12 @@ helm uninstall [RELEASE_NAME] | Repository | Name | Version | |------------|------|---------| -| https://sigstore.github.io/helm-charts | ctlog | 0.2.56 | -| https://sigstore.github.io/helm-charts | fulcio | 2.5.4 | -| https://sigstore.github.io/helm-charts | rekor | 1.4.8 | -| https://sigstore.github.io/helm-charts | trillian | 0.2.27 | -| https://sigstore.github.io/helm-charts | tsa | 1.0.5 | -| https://sigstore.github.io/helm-charts | tuf | 0.1.17 | +| https://sigstore.github.io/helm-charts | ctlog | 0.2.57 | +| https://sigstore.github.io/helm-charts | fulcio | 2.6.1 | +| https://sigstore.github.io/helm-charts | rekor | 1.5.1 | +| https://sigstore.github.io/helm-charts | trillian | 0.2.28 | +| https://sigstore.github.io/helm-charts | tsa | 1.0.6 | +| https://sigstore.github.io/helm-charts | tuf | 0.1.18 | ## Values