Update dependency argoproj/argo-cd to v3 #459
Loading…
x
Reference in New Issue
Block a user
No description provided.
Delete Branch "renovate/argoproj-argo-cd-3.x"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
This PR contains the following updates:
v2.13.3->v3.0.5Release Notes
argoproj/argo-cd (argoproj/argo-cd)
v3.0.5Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Release Notes Blog Post
For a detailed breakdown of the key changes and improvements in this release, check out the official blog post
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
fe5869d: fix(hydrator): increase max msg size (cherry-pick #23190) (#23191) (@gcp-cherry-pick-bot[bot])0e20cb6: fix: add cooldown to prevent resetting autoheal exp backoff preemptively (cherry-pick #23057) (#23189) (@gdsoumya)Full Changelog: https://github.com/argoproj/argo-cd/compare/v3.0.4...v3.0.5
v3.0.4Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Release Notes Blog Post
For a detailed breakdown of the key changes and improvements in this release, check out the official blog post
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
This release fixes a critical security issue: GHSA-2hj5-g64g-fp6p
Other work
040ed44: Merge commit from fork (@crenshaw-dev)c27a9d3: fix(commit-server): apply image override (cherry-pick #22916) (#22917) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v3.0.3...v3.0.4
v3.0.3Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Release Notes Blog Post
For a detailed breakdown of the key changes and improvements in this release, check out the official blog post
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
af3d926: fix: Account for batch event processing in e2e tests (cherry-pick #22356) (#23070) (@gcp-cherry-pick-bot[bot])ddd6df5: fix: infinite reconciliation loop when app is in error (#23067) (@agaudreault)927ed35: fix: remove defaultspec.preserveUnknownFieldsignoreDifference for CRD (cherry-pick #22948) (#23044) (@gcp-cherry-pick-bot[bot])Documentation
b1cafa9: docs: fix jsonpath in 2.14-3.0 upgrade doc (cherry-pick #23045) (#23046) (@gcp-cherry-pick-bot[bot])Other work
866db14: chore: bump gitops-engine ssd fix (#23071) (@pjiang-dev)Full Changelog: https://github.com/argoproj/argo-cd/compare/v3.0.2...v3.0.3
v3.0.2Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Release Notes Blog Post
For a detailed breakdown of the key changes and improvements in this release, check out the official blog post
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
3fb34b9: fix(haproxy): setting maxconn in haproxy config cherry-pick (#15319) (#18283) (#23037) (@reggie-k)cca991a: fix(test): broken e2e test (cherry-pick #22975) (#23017) (@gcp-cherry-pick-bot[bot])90e9d1a: fix: settings request doesn't return default tracking method (#22965) (cherry-pick) (#23034) (@oleksandr-codefresh)Documentation
3d37cfa: docs(server): no resource health when using the list api (cherry-pick #22954) (#22972) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v3.0.1...v3.0.2
v3.0.1Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Release Notes Blog Post
For a detailed breakdown of the key changes and improvements in this release, check out the official blog post
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
edd2358: fix(docs): upgrading 3.0 docs (cherry-pick #22891) (#22894) (@gcp-cherry-pick-bot[bot])cb5d6f5: fix(health): handle nil lastTransitionTime (#22897) (cherry-pick #22900) (#22908) (@gcp-cherry-pick-bot[bot])2913d5f: fix: Race condition innativeGitClient.LsFiles(issue #21754) (cherry-pick #22878) (#22906) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v3.0.0...v3.0.1
v3.0.0Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Release Notes Blog Post
For a detailed breakdown of the key changes and improvements in this release, check out the official blog post
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Features
402802b: feat!: Logs rbac enforce by default (#21678) (@reggie-k)cca7485: feat!: update compareoptions default values (#22230) (@agaudreault)029927b: feat(appcontroller): store application health status in redis by default (#10312) (#21532) (@rumstead)f775e7b: feat(appset): Add values to PR generator (#21557) (@dudo)b9131c1: feat(cmp): pass empty env vars to plugins (#18720) (#22096) (@crenshaw-dev)ac50d8e: feat(config)!: exclude known interim resources by default (#20013) (#21635) (@agaudreault)910b951: feat(controller): enable batch event processing by default (#22338) (@crenshaw-dev)7edaef5: feat(helm): upgrading helm to 3.17.0 (#21722) (@rumstead)3d2c010: feat(hydrator): handle sourceHydrator fields from webhook (#19397) (cherry-pick #22485) (#22753) (@gcp-cherry-pick-bot[bot])88e43cb: feat(kubectl): upgrading kubectl to 1.32.1 (#21724) (@rumstead)c675757: feat(kustomize): support --include-templates for labels (#15283) (#22069) (@crenshaw-dev)6f9389c: feat(log): support match case in pod log search (#21919) (@linghaoSu)feb7097: feat(metrics): add more kubectl metrics (#21720) (@crenshaw-dev)606bd5b: feat(rbac)!: disable fine-grained inheritance by default (#19988) (#20671) (@fffinkel)e3bd569: feat(server): make deep copies of objects returned by informers (#22173) (#22179) (@rumstead)7296201: feat(ui): Added link to start page in argo logo (#21461) (@surajyadav1108)6d27928: feat(ui): highlight log lines by pod name (#21001) (@aali309)b8508f2: feat(ui): rename filter message status on SYNC STATUS view (#21061) (@aali309)55f8a43: feat(ui): split arrays in yaml to fix ambiguous collapse when array items have nested objects (#21064) (@aali309)0fab3cf: feat(ui): support display sync wave (#20614) (@linghaoSu)922c9e9: feat(ui): support filter repo when input (#21451) (@linghaoSu)89c4817: feat: Add support for Azure workload identity for Git and OCI repositories. (#21118) (@jagpreetstamber)f9ffb6a: feat: Added env reference objects to manifests for otlp.attrs (#21563) (@almoelda)0973409: feat: Kustomize ignore missing components (#18634) (#21674) (@bradkwadsworth)74b3532: feat: Make certain Status panel items look more 'clickable' (#19698) (#22232) (@keithchong)c0b2787: feat: Support kube 1.32 (#21805) (@sivchari)d301b40: feat: Upgrade notifications engine (#22273) (@sivchari)c9c4068: feat: add AND operator opt-in option for sync windows matches (#16846) (@adriananeci)f258c45: feat: addARGOCD_APP_PROJECT_NAMEto the build environment (#15185) (#21586) (@MacroPower)c71dd1a: feat: add a check for user defined role referential integrity (#21065) (@devopsjedi)8044d68: feat: add bearer token auth (#21462) (@reggie-k)fa0b5f5: feat: add force promote actions for Numaplane rollouts (#22141) (@dpadhiar)e4311d8: feat: add name and labels in cluster metrics (#17870) (#18453) (@flbla)ecb9dba: feat: add support for azure workload identity in Microsoft Entra SSO (#21433) (@jagpreetstamber)951d9d3: feat: add the--redis-compressas the global flag to set redis compression. (#21786) (@nitishfy)561cbef: feat: checking user defined roles and policies for referential integrity (#20825) (#22132) (@devopsjedi)d23e6ac: feat: configurable log timestamp format (#21478) (@crenshaw-dev)c09e6fa: feat: improve StatefulSet immutable field error messages (#21209) (@aali309)1698370: feat: replace spdy with websocket for portforward and pod exec #21517 (#21518) (@maoqide)3e09f94: feat: resource customization for CustomResourceDefinition (#21416) (@almoelda)6b002a5: feat: upgrade to v1.32.2 (#22168) (@sivchari)fbd7f29: feat: use errors.Join for debuggable (#22235) (@sivchari)dbdc1e7: feat: use log format config for klog (#5715) (#21458) (@crenshaw-dev)Bug fixes
46bfc10: Revert "fix: Graceful shutdown for the API server (#18642) (#20981)" (#21221) (@pasha-codefresh)c6b0000: fix(actions): don't run empty Lua scripts (#22084) (#22161) (@crenshaw-dev)e6f94f2: fix(appcontroller): selfhealattemptscount needs to be reset at times (#22095) (@blakepettersson)079341c: fix(applicationset): ApplicationSets with rolling sync stuck in Pending (#20230) (@Fsero)f6a84a4: fix(appset): Reconcile appset only once when appset is refreshed (fix 21171) (#21172) (@dacofr)f3509d2: fix(appset): dont requeue appsets on status change (#21364) (@rumstead)e852142: fix(appset): events not honouring configured namespaces (#21219) (#21241) (@eadred)e44ae96: fix(appset): generated app errors should use the default requeue (#21887) (#21936) (@rumstead)922dd77: fix(appset): improve git generator repo credential fallback (#21167) (@blakepettersson)55aab6e: fix(appset): reverted Gitlab SCM HasPath search and consider 404 errors as file not found (#16253) (#21597) (@prune998)37a7231: fix(appset): update gitlab SCM provider to search on parent folder (#16253) (#21491) (@prune998)06bd2ad: fix(ci): all version bump changes go in the PR (#21409) (@crenshaw-dev)2933154: fix(ci): get correct previous version, fail workflow if not (cherry-pick #22376) (#22377) (@gcp-cherry-pick-bot[bot])15046b9: fix(ci): handle major versions in compatibility table generator (cherry-pick #22370) (#22371) (@gcp-cherry-pick-bot[bot])43d2a3d: fix(ci): proto references bump (#21391) (@crenshaw-dev)05c7625: fix(ci): updating action-gh-release after upstream fix (#21407) (@rumstead)eb6732e: fix(ci): use pinned Helm version for init-release (#22164) (#22165) (@crenshaw-dev)6e4c8fd: fix(ci): use tags instead of branches (cherry-pick #22372) (#22373) (@gcp-cherry-pick-bot[bot])99cd3c7: fix(cli): add flags to admin import for retrying updates on conflicts and skipping resources with specific labels. (#21694) (@ashutosh16)85684a8: fix(cli): application cannot be refreshed when invalid and hangs (#21615) (@agaudreault)eb6dd46: fix(cli): ignored resources should not be pruned during restore (#21894) (@agaudreault)9c443b6: fix(cli): improve performance for admin export/import cmd (#22322) (@agaudreault)546383a: fix(cli): log correct error message when updating a cluster that is not present (#22190) (@nitishfy)613d06d: fix(cli): use correct CA when adding kube-public clusters (#21326) (#21327) (@aminarefzadeh)f2ee9a6: fix(cli): wrong variable to store --no-proxy value (#21226) (@the-technat)a8ce677: fix(controller): always set health.status.lastTransitionTime (#22665) (cherry-pick #22666) (#22667) (@gcp-cherry-pick-bot[bot])1a9f226: fix(controller): rename cluster batch param and add to argocd-cmd-params-cm (#21402) (@crenshaw-dev)d54ae98: fix(controller): wrong tracking annotation for malformed resources (#22325) (@crenshaw-dev)b4a63ae: fix(dex): always requestfederated:idscope (#17908) (#21726) (@agaudreault)ad09b9c: fix(docs): 2.14 upgrading docs (#21756) (@rumstead)4382281: fix(docs): Fix syntax in e2e test docs (#21796) (@pjiang-dev)8545d21: fix(docs): update --auth-token description in argocd_appset_update.md to account for environment variable (#22350) (@chengfang)68d60cd: fix(docs): update mkdocs for upgrade guide (#21768) (@rumstead)7c7dda0: fix(grafanadashboard): add memory units to panels showing memory usage (#22078) (@BWagenerGenerali)9429275: fix(hydrator): UI nil checks (#21598) (@crenshaw-dev)3baca9b: fix(hydrator): don't get cluster or API versions for hydrator (#21985) (@crenshaw-dev)35009a7: fix(hydrator): don't use manifest-generate-paths (#22039) (#22015) (@crenshaw-dev)8a97c1d: fix(hydrator): refresh by annotation instead of work queue (#22016) (@crenshaw-dev)d1574c2: fix(rbac): Add rights on applicationsets for the application controller (#20352) (@OpenGuidou)13b7b09: fix(settings): race condition on settings configMap (#21225) (@agaudreault)416b7d0: fix(test): Use t.Fatal instead of os.Exit in tests (part 1) (#21003) (#22114) (@andrii-korotkov-verkada)2afcb6f: fix(test): delete CRD between tests, install CRD before syncing CRs (#22299) (@crenshaw-dev)fa747f9: fix(tests): Improved the e2e tests for app sync with impersonation feature (#21792) (@anandf)b88ad57: fix(ui): Added SSV option to helm type repos (#22006) (@surajyadav1108)544aea1: fix(ui): Cannot add an app that has both name and server destination (#21440) (@rpelczar)1ce0123: fix(ui): Group Nodes breaks Kinds counts / views (#21337) (@surajyadav1108)71c7700: fix(ui): Show error message when max pods to view logs are reached (#21725) (@pjiang-dev)854c62f: fix(ui): Solve issue with navigating with dropdown from an application's page (#21737) (@amit-o)b6e6104: fix(ui): avoid spurious error on hydration (#22506) (cherry-pick #22711) (#22715) (@gcp-cherry-pick-bot[bot])38b0fd5: fix(ui): columns-adjusted for kind and Namespace in sync details. (#21038) (@surajyadav1108)ebeae20: fix(ui): fix bearerToken validate in helm connect page (cherry-pick #22791) (#22798) (@gcp-cherry-pick-bot[bot])bfb04dd: fix(ui): parameter tab null ref w/ hydrator (#22097) (#22131) (@crenshaw-dev)e2e6faa: fix(ui): prevent parameter editor from resetting when props update (fixes #14351) (#21625) (@k4r1)4202168: fix(ui): reduce rerender in pod log view (#22241) (@linghaoSu)0d34340: fix: 21062 Support GitLab "System Hook" webhooks for ApplicationSets (#21243) (@eadred)911a9c6: fix: Add proxy registry key by dest server + name (#21791) (@leoluz)a444a05: fix: AppSet PullRequest and SCM generators get 401 from GitHub without tokenRef (cherry-pick #22737) (#22744) (@gcp-cherry-pick-bot[bot])ffbf9d5: fix: AppSet PullRequest and SCM generators get 401 from GitHub without tokenRef (manually signed off cherry-pick #22737) (#22763) (@reggie-k)f39b425: fix: CVE-2024-21538 upgrading the indirect dep cross-spawn to greater than 7.0.5 (#21259) (@nmirasch)644315a: fix: Change applicationset generate HTTP method to avoid route conflicts (#20758) (@amit-o)d6a04a3: fix: Check for semver constraint matching in application webhook handler (cherry-pick #21648) (#22507) (@gcp-cherry-pick-bot[bot])1905d12: fix: Check placement exists before length check (#22060) (#22057) (@dhaiducek)0d2471b: fix: Enable service account token automount for haproxy (#22226) (cherry-pick #22353) (#22406) (@gcp-cherry-pick-bot[bot])8841b0d: fix: Fix calculating SelfHealBackOff delay when exceeding maximum (#20976) (#20978) (@mrysavy)4dcabb9: fix: Fix link about http middlewear and add adopter hetao101 (#21802) (@wanghonglei5181)e3b333a: fix: JSON format (#22237) (@sivchari)5b79c34: fix: New kube applier for server side diff dry run with refactoring (#21488) (#21749) (@andrii-korotkov-verkada)a8f646e: fix: Notifications on-deployed would now be delivered if sync didn't change the health status of the app in a process (#22203) (#22204) (@andrii-korotkov-verkada)7b1ed52: fix: On deployed trigger must consider race between last transition time and sync finished time (#9070) (#21944) (@andrii-korotkov-verkada)f075c5a: fix: Only port-forward to ready pods (#10610) (cherry-pick #22794) (#22825) (@gcp-cherry-pick-bot[bot])ed3cc48: fix: Policy/policy.open-cluster-management.io stuck in progressing status when no clusters match the policy (#21296) (#21297) (@mbaldessari)43e5941: fix: Race condition occurs during initial sharding (#22264) (@kahou82)7424432: fix: Rephrased sentence to a meaningfull one (#22113) (@babugeet)bfd72b4: fix: Revert "fix: Race condition occurs during initial sharding (#22264)" (#22354) (@andrii-korotkov-verkada)f542ae5: fix: Revert "split arrays in yaml to fix ambiguous collapse when array items have nested objects (#21064)" (#22099) (#22128) (@andrii-korotkov-verkada)4a1d0f3: fix: Switch default logging to JSON (issue: 20897) (#21656) (@teddy-wahle)0ed7c56: fix: Unable to edit http repo credentials from ArgoCD UI (#22065) (@aali309)e8a3f7a: fix: Update argo-ui dependency to pull in OCI icon (#18646) (#21698) (@keithchong)376e8d5: fix: Update haproxy version to match the chart (#22226) (#22236) (@andrii-korotkov-verkada)9f81cd4: fix: Use ARGOCD_SERVER for default value (#21930) (@sivchari)62ec9fe: fix: Use t.Fatal instead of os.Exit in tests (part 2) (#21003) (#22187) (@andrii-korotkov-verkada)c93924b: fix: Wait for Subscription resources to reach AtLatestKnown (#21425) (@vinzent)e6e9255: fix: correct lookup for the kustomization file when applying patches (#22024) (@nitishfy)f548fd7: fix: correctly set compareWith when requesting app refresh with delay (fixes #18998) (#21298) (@shenxn)5d131c5: fix: do not exclude APIService resources (cherry-pick #22586) (#22587) (@gcp-cherry-pick-bot[bot])b2e8753: fix: do not normalize resource tracking on live crds (cherry-pick #22722) - cherry-pick 3.0 (#22735) (@gcp-cherry-pick-bot[bot])d183d9c: fix: dynamic cluster distribution issue 20965, update the shard… (#21042) (@ivan-cai)49a4b7f: fix: fetch syncedRevision in UpdateRevisionForPaths (#21014) (#21015) (@toyamagu-2021)563ccb2: fix: fix KustomizeImage Match function to pass added unit tests (#21872) (@chengfang)6959e54: fix: have argocd server pass the appLabelKey for proper caching (#22186) (@gdsoumya)87671f5: fix: ignore prune=false resources from PruningRequired count (#21941) (@gdsoumya)75cb7fc: fix: issue 22206 - fixes overlapping lines in logs by increasing line height (#22207) (@GP3-RS)eed70ee: fix: login return_url doesn't work with custom server paths (#21588) (@alexmt)b600c5e: fix: make codegen permissions (#21667) (@dudo)c7e02ee: fix: make test fails with exec format error (#21630) (@reggie-k)85c6d26: fix: override sub with federated_claims.user_id when dex is used (#20683) (@aali309)11b8665: fix: remove kustomize binary from git (#21526) (@rumstead)6fea008: fix: remove project from cache key for project scoped credentials (cherry-pick #22712) (#22817) (@gcp-cherry-pick-bot[bot])686964d: fix: removed null security context from redis-ha values.yaml to placate helm 3.17.1 (#22035) (@reggie-k)6f38327: fix: resolve the failing e2e appset tests for ksonnet applications (#21580) (@reggie-k)806c5f6: fix: return cluster URL in error message, not full cluster object (#22094) (@crenshaw-dev)94b34f8: fix: upgrade x/crypto to v0.35.0 to solve CVE-2025-22869 (#22048) (@gergelyfabian)Documentation
e3caeba: docs(hydrator): document signature verification limitation (#21504) (@crenshaw-dev)04a1608: docs: 3.0 release date on May 06 (#22189) (@reggie-k)fdf9a30: docs: 3.0 upgrade guide (#21457) (@crenshaw-dev)c687247: docs: Add LY Corporation to list of users (#21592) (@Asuforce)898a126: docs: Add section on how to lock down/restrict the default project (#21757) (@dag-andersen)3f74b24: docs: Adding Argo CD CLI plugin support proposal (#19624) (@christianh814)7ba7fc0: docs: Auto Sync toggle does not work for Applications created with an ApplicationSet (#21577) (@revitalbarletz)f275157: docs: Document Helm 3.17.1 breaking changes (#22283) (@reggie-k)c4183aa: docs: Document askpass socket sharing between reposerver and cmp sidecar (#22083) (@peschmae)d19b02d: docs: Ensure Argo CD Hydrator branch prefix consistency (#21836) (@dag-andersen)167e122: docs: Fix typo code-gen/codegen contributors-quickstart.md (#21922) (@fe-ax)dc32867: docs: Fix typos and grammar in tls.md (#22229) (@todaywasawesome)87539aa: docs: Surface blog with (actual) release notes better (#21572) (@revitalbarletz)499f74d: docs: Update USERS.md (#22093) (@mreparaz)961147d: docs: Update sync-kubectl.md - Correct kubectl command for a sample (#22030) (@taeyeopkim1)1823d8f: docs: add applicationset controller doc to preserve annotations and labels (#22008) (@leoluz)77ff8f0: docs: add missing word (#21428) (@nitishfy)2d10d4e: docs: add mkdocs configuration stanza to .readthedocs.yaml (#21475) (@reggie-k)975e966: docs: add more info on whatlogin --coredoes (#21487) (@nitishfy)db8d2f0: docs: add note about comments in policy.csv files (#21339) (@morremeyer)9fd6bee: docs: add statusbadge.url override information (#21529) (@tobiasehlert)1645d57: docs: add wildcard globbing example to docs (#21429) (@LRost)65664ce: docs: clarify wording on cluster secrets (#21865) (@todaywasawesome)7327093: docs: custom resource action UI tweaks (#22202) (@crenshaw-dev)8a752a5: docs: document bearerToken in repo example doc (#22195) (@crenshaw-dev)8d12e35: docs: document logs RBAC enforcement remediation (#22285) (@reggie-k)f63f5f9: docs: document source hydrator maturity (#21969) (@crenshaw-dev)c32afb4: docs: endorse secrets operators, caution against plugins (#21629) (#21631) (@crenshaw-dev)05cde71: docs: fix aws sso documentation (#20681) (@chansuke)40d86e7: docs: fix broken link in notifications overview (#21684) (@jeanmorais)ce81912: docs: fix project role docs (#21832) (@klemmster)bd1018a: docs: fix tmp path and document Rancher caveat (#22252) (@crenshaw-dev)3c3410c: docs: fix typo in declarative-setup.md (#22256) (@muffl0n)846503b: docs: note idle connections issue for cluster namespaces (#21978) (@crenshaw-dev)1a56ea7: docs: remove branch var outdated from the cluster param (#21549) (@afzal442)070287c: docs: update contributors guide with repo clone and make targets (#21473) (@reggie-k)9f8d68f: docs: various wording fixes for 3.0 migration guide (#22343) (@todaywasawesome)Dependency updates
f2c5093: chore(deps): bump @types/selenium-webdriver from 4.1.27 to 4.1.28 in /ui-test (#21414) (@dependabot[bot])e6b110d: chore(deps): bump SonarSource/sonarqube-scan-action from 4.1.0 to 4.2.1 (#21230) (@dependabot[bot])cb135fd: chore(deps): bump axios from 1.7.4 to 1.8.2 in /ui-test (#22247) (@dependabot[bot])5e30858: chore(deps): bump bitnami/kubectl from 1.31 to 1.32 in /test/container (#21234) (@dependabot[bot])812a9da: chore(deps): bump chromedriver from 131.0.3 to 131.0.4 in /ui-test (#21268) (@dependabot[bot])c3600d2: chore(deps): bump chromedriver from 131.0.4 to 131.0.5 in /ui-test (#21415) (@dependabot[bot])742d45a: chore(deps): bump chromedriver from 131.0.5 to 132.0.0 in /ui-test (#21512) (@dependabot[bot])cdb7995: chore(deps): bump chromedriver from 132.0.0 to 132.0.1 in /ui-test (#21646) (@dependabot[bot])6c64d5f: chore(deps): bump chromedriver from 132.0.1 to 133.0.2 in /ui-test (#21916) (@dependabot[bot])c47152d: chore(deps): bump chromedriver from 133.0.2 to 133.0.3 in /ui-test (#22018) (@dependabot[bot])2cefcc5: chore(deps): bump chromedriver from 133.0.3 to 134.0.0 in /ui-test (#22218) (@dependabot[bot])a45f715: chore(deps): bump chromedriver from 134.0.0 to 134.0.2 in /ui-test (#22307) (@dependabot[bot])5207508: chore(deps): bump code.gitea.io/sdk/gitea from 0.19.0 to 0.20.0 (#21464) (@dependabot[bot])8ce1c33: chore(deps): bump docker/setup-buildx-action from 3.7.1 to 3.8.0 (#21210) (@dependabot[bot])1d47e1c: chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.8.0 to 1.8.1 (#21566) (@dependabot[bot])b3bf182: chore(deps): bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.8.1 to 1.8.2 (#21867) (@dependabot[bot])627da11: chore(deps): bump github.com/Azure/kubelogin from 0.1.6 to 0.1.8 (#22271) (@dependabot[bot])c8e1de6: chore(deps): bump github.com/Azure/kubelogin from 0.1.8 to 0.1.9 (#22308) (@dependabot[bot])2a760e1: chore(deps): bump github.com/alicebob/miniredis/v2 from 2.33.0 to 2.34.0 (#21232) (@dependabot[bot])2194443: chore(deps): bump github.com/aws/aws-sdk-go from 1.55.5 to 1.55.6 (#21514) (@dependabot[bot])5d84eb4: chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.7.1 to 4.8.0 (#21483) (@dependabot[bot])5e5ec1b: chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.8.0 to 4.8.1 (#21677) (@dependabot[bot])4723abd: chore(deps): bump github.com/bradleyfalzon/ghinstallation/v2 (#21353) (@dependabot[bot])ecee599: chore(deps): bump github.com/bradleyfalzon/ghinstallation/v2 from 2.13.0 to 2.14.0 (#21955) (@dependabot[bot])635e592: chore(deps): bump github.com/casbin/casbin/v2 from 2.102.0 to 2.103.0 (#21330) (@dependabot[bot])84f2ab8: chore(deps): bump github.com/casbin/govaluate from 1.2.0 to 1.3.0 (#21331) (@dependabot[bot])b3e31ed: chore(deps): bump github.com/coreos/go-oidc/v3 from 3.11.0 to 3.12.0 (#21383) (@dependabot[bot])de40dc2: chore(deps): bump github.com/coreos/go-oidc/v3 from 3.12.0 to 3.13.0 (#22347) (@dependabot[bot])d29124f: chore(deps): bump github.com/cyphar/filepath-securejoin (#21233) (@dependabot[bot])9a51757: chore(deps): bump github.com/cyphar/filepath-securejoin from 0.3.6 to 0.4.0 (#21484) (@dependabot[bot])eb8f05a: chore(deps): bump github.com/cyphar/filepath-securejoin from 0.4.0 to 0.4.1 (#21700) (@dependabot[bot])ab05f35: chore(deps): bump github.com/dlclark/regexp2 from 1.11.4 to 1.11.5 (#21853) (@dependabot[bot])b9f49df: chore(deps): bump github.com/evanphx/json-patch from 5.9.0+incompatible to 5.9.11+incompatible (#21699) (@dependabot[bot])dd366f5: chore(deps): bump github.com/go-git/go-git/v5 from 5.12.0 to 5.13.0 (#21329) (@dependabot[bot])8200e3d: chore(deps): bump github.com/go-git/go-git/v5 from 5.13.0 to 5.13.1 (#21352) (@dependabot[bot])bcf2143: chore(deps): bump github.com/go-git/go-git/v5 from 5.13.1 to 5.13.2 (#21641) (@dependabot[bot])cbef55e: chore(deps): bump github.com/go-git/go-git/v5 from 5.13.2 to 5.14.0 (#22076) (@dependabot[bot])0b0c737: chore(deps): bump github.com/go-jose/go-jose/v3 to v4 (#22154) (@nitishfy)c897e94: chore(deps): bump github.com/go-jose/go-jose/v4 from 4.0.2 to 4.0.5 (#21989) (@dependabot[bot])20f0fc6: chore(deps): bump github.com/golang-jwt/jwt to 4.5.2/5.2.2 (#22464) (@crenshaw-dev)1b1735f: chore(deps): bump github.com/golang/glog from 1.2.2 to 1.2.4 (#21693) (@dependabot[bot])f32f69f: chore(deps): bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#21956) (@dependabot[bot])f429352: chore(deps): bump github.com/gosimple/slug from 1.14.0 to 1.15.0 (#21304) (@dependabot[bot])7870200: chore(deps): bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 (#21915) (@dependabot[bot])0444fcd: chore(deps): bump github.com/prometheus/client_golang from 1.21.0 to 1.21.1 (#22180) (@dependabot[bot])562fa06: chore(deps): bump github.com/redis/go-redis/v9 from 9.7.0 to 9.7.1 (#21957) (@dependabot[bot])ca9da79: chore(deps): bump github.com/spf13/cobra from 1.8.1 to 1.9.1 (#21889) (@dependabot[bot])b17c5e4: chore(deps): bump github.com/spf13/pflag from 1.0.5 to 1.0.6 (#21717) (@dependabot[bot])edbce2a: chore(deps): bump gitops-engine to latest (#22071) (@pjiang-dev)d46f224: chore(deps): bump gitpod/workspace-full from230285etobec45eb(#20980) (@dependabot[bot])84b49c8: chore(deps): bump gitpod/workspace-full frombec45ebtoa47a68e(#21843) (@dependabot[bot])e784c47: chore(deps): bump go 1.23.5 & tools (#21748) (@agaudreault)21ea59d: chore(deps): bump go.opentelemetry.io/otel from 1.33.0 to 1.34.0 (#21569) (@dependabot[bot])64569e6: chore(deps): bump go.opentelemetry.io/otel from 1.34.0 to 1.35.0 (#22217) (@dependabot[bot])f2490fc: chore(deps): bump go.opentelemetry.io/otel/sdk from 1.33.0 to 1.34.0 (#21570) (@dependabot[bot])cce74a3: chore(deps): bump golang.org/x/crypto from 0.31.0 to 0.32.0 (#21397) (@dependabot[bot])50fb7bc: chore(deps): bump golang.org/x/crypto from 0.32.0 to 0.33.0 (#21827) (@dependabot[bot])bf2c4e8: chore(deps): bump golang.org/x/net from 0.32.0 to 0.33.0 (#21254) (@dependabot[bot])a807c0e: chore(deps): bump golang.org/x/net from 0.33.0 to 0.34.0 (#21396) (@dependabot[bot])9783c5e: chore(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 (#22182) (@dependabot[bot])a8b76f2: chore(deps): bump golang.org/x/net from 0.36.0 to 0.37.0 (#22209) (@dependabot[bot])0c1d218: chore(deps): bump golang.org/x/oauth2 from 0.24.0 to 0.25.0 (#21384) (@dependabot[bot])4641e80: chore(deps): bump golang.org/x/oauth2 from 0.25.0 to 0.26.0 (#21777) (@dependabot[bot])94d3899: chore(deps): bump golang.org/x/oauth2 from 0.26.0 to 0.27.0 (#21990) (@dependabot[bot])4c27f73: chore(deps): bump golang.org/x/oauth2 from 0.27.0 to 0.28.0 (#22211) (@dependabot[bot])4b08708: chore(deps): bump golang.org/x/sync from 0.10.0 to 0.11.0 (#21778) (@dependabot[bot])2d99403: chore(deps): bump golang.org/x/sync from 0.11.0 to 0.12.0 (#22216) (@dependabot[bot])38ad4f4: chore(deps): bump golang.org/x/term from 0.27.0 to 0.28.0 (#21382) (@dependabot[bot])73c3935: chore(deps): bump golang.org/x/term from 0.28.0 to 0.29.0 (#21776) (@dependabot[bot])270b352: chore(deps): bump golang.org/x/time from 0.10.0 to 0.11.0 (#22212) (@dependabot[bot])76d28b5: chore(deps): bump golang.org/x/time from 0.8.0 to 0.9.0 (#21385) (@dependabot[bot])7d0c10e: chore(deps): bump golang.org/x/time from 0.9.0 to 0.10.0 (#21779) (@dependabot[bot])6b57b16: chore(deps): bump google.golang.org/grpc from 1.68.1 to 1.69.0 (#21163) (@dependabot[bot])f15e1bc: chore(deps): bump google.golang.org/grpc from 1.69.0 to 1.69.2 (#21270) (@dependabot[bot])9a02f9b: chore(deps): bump google.golang.org/grpc from 1.69.2 to 1.69.4 (#21485) (@dependabot[bot])b4753d8: chore(deps): bump google.golang.org/grpc from 1.69.4 to 1.70.0 (#21657) (@dependabot[bot])2731c3f: chore(deps): bump google.golang.org/grpc from 1.70.0 to 1.71.0 (#22183) (@dependabot[bot])e052670: chore(deps): bump google.golang.org/protobuf from 1.35.2 to 1.36.0 (#21211) (@dependabot[bot])728b31e: chore(deps): bump google.golang.org/protobuf from 1.36.0 to 1.36.1 (#21303) (@dependabot[bot])2a497ef: chore(deps): bump google.golang.org/protobuf from 1.36.1 to 1.36.2 (#21412) (@dependabot[bot])d4d6713: chore(deps): bump google.golang.org/protobuf from 1.36.2 to 1.36.3 (#21513) (@dependabot[bot])7333c75: chore(deps): bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (#21676) (@dependabot[bot])4e2902d: chore(deps): bump google.golang.org/protobuf from 1.36.4 to 1.36.5 (#21813) (@dependabot[bot])4f179a1: chore(deps): bump jinja2 from 3.1.5 to 3.1.6 in /docs (#22219) (@dependabot[bot])0dddb9e: chore(deps): bump library/busybox froma5d0ce4to498a000in /test/e2e/multiarch-container (#21959) (@dependabot[bot])d3dda53: chore(deps): bump library/busybox in /test/e2e/multiarch-container (#21486) (@dependabot[bot])780285b: chore(deps): bump library/golang from 1.23.4 to 1.23.5 in /test/remote (#21535) (@dependabot[bot])7efd2fe: chore(deps): bump library/golang from 1.23.5 to 1.23.6 in /test/container (#21774) (@dependabot[bot])8e91ce9: chore(deps): bump library/golang from 1.23.5 to 1.23.6 in /test/remote (#21799) (@dependabot[bot])9e6b28b: chore(deps): bump library/golang from 1.23.6 to 1.24.0 in /test/container (#21866) (@dependabot[bot])ee83eea: chore(deps): bump library/golang from 1.23.6 to 1.24.0 in /test/remote (#21868) (@dependabot[bot])2168221: chore(deps): bump library/golang from 1.24.0 to 1.24.1 in /test/remote (#22184) (@dependabot[bot])98cd061: chore(deps): bump library/golang from2b1cbf2tocd0c949in /test/remote (#22020) (@dependabot[bot])dbf9393: chore(deps): bump library/golang in /test/container (#21533) (@dependabot[bot])fe8bab0: chore(deps): bump library/redis from 7.4.1 to 7.4.2 in /test/container (#21395) (@dependabot[bot])f108332: chore(deps): bump library/redis in /test/container (#20776) (@dependabot[bot])e920e71: chore(deps): bump library/redis in /test/container (#21253) (@dependabot[bot])87a7a6e: chore(deps): bump library/redis in /test/container (#21310) (@dependabot[bot])9011397: chore(deps): bump library/redis in /test/container (#21494) (@dependabot[bot])3639bfe: chore(deps): bump library/registry in /test/container (#20775) (@dependabot[bot])683e4e0: chore(deps): bump selenium-webdriver from 4.27.0 to 4.29.0 in /ui-test (#22117) (@dependabot[bot])871ed62: chore(deps): bump sigs.k8s.io/controller-runtime from 0.19.3 to 0.19.4 (#21411) (@dependabot[bot])527ef92: chore(deps): bump sigs.k8s.io/structured-merge-diff/v4 from 4.4.4-0.20241211184406-7bf59b3d70ee to 4.6.0 (#22181) (@dependabot[bot])e18b4d7: chore(deps): switch to new expr package (#21982) (@crenshaw-dev)36d563a: chore(deps): update dependency gotestyourself/gotestsum to v1.12.0 (#21900) (@renovate[bot])cae840b: chore(deps): update dependency gotestyourself/gotestsum to v1.12.1 (#22328) (@renovate[bot])cf89ee6: chore(deps): update dependency jinja2 to v3.1.5 (#21289) (@renovate[bot])1029388: chore(deps): update dependency pygments to v2.19.0 (#21379) (@renovate[bot])9cc5224: chore(deps): update dependency pygments to v2.19.1 (#21392) (@renovate[bot])a415822: chore(deps): update dependency pymdown-extensions to v10.13 (#21301) (@renovate[bot])4fee6b5: chore(deps): update dependency pymdown-extensions to v10.14 (#21403) (@renovate[bot])42fa72d: chore(deps): update dependency pymdown-extensions to v10.14.3 (#21619) (@renovate[bot])065fc31: chore(deps): update module github.com/golangci/golangci-lint to v1.63.2 (#21343) (@renovate[bot])33f2a6f: chore(deps): update module github.com/golangci/golangci-lint to v1.63.3 (#21348) (@renovate[bot])8245cd9: chore(deps): update module github.com/golangci/golangci-lint to v1.63.4 (#21368) (@renovate[bot])2e1db11: chore(deps): update module github.com/golangci/golangci-lint to v1.64.5 (#21850) (@renovate[bot])95a43e0: chore(deps): update module github.com/golangci/golangci-lint to v1.64.6 (#22115) (@renovate[bot])12928cb: chore(deps): update module github.com/golangci/golangci-lint to v1.64.7 (#22306) (@renovate[bot])d84ac3a: chore(deps-dev): bump @types/mocha from 10.0.9 to 10.0.10 in /ui-test (#21251) (@dependabot[bot])1f1c339: chore(deps-dev): bump @types/node from 22.10.10 to 22.13.4 in /ui-test (#21874) (@dependabot[bot])41dec01: chore(deps-dev): bump @types/node from 22.10.2 to 22.10.5 in /ui-test (#21381) (@dependabot[bot])2f57940: chore(deps-dev): bump @types/node from 22.10.5 to 22.10.6 in /ui-test (#21482) (@dependabot[bot])3a29a74: chore(deps-dev): bump @types/node from 22.10.6 to 22.10.7 in /ui-test (#21511) (@dependabot[bot])7706644: chore(deps-dev): bump @types/node from 22.10.7 to 22.10.8 in /ui-test (#21644) (@dependabot[bot])75def4f: chore(deps-dev): bump @types/node from 22.10.8 to 22.10.10 in /ui-test (#21658) (@dependabot[bot])33ad0a7: chore(deps-dev): bump @types/node from 22.13.4 to 22.13.5 in /ui-test (#21960) (@dependabot[bot])111cf2c: chore(deps-dev): bump @types/node from 22.13.5 to 22.13.10 in /ui-test (#22272) (@dependabot[bot])235470f: chore(deps-dev): bump @types/node from 22.9.3 to 22.10.2 in /ui-test (#21143) (@dependabot[bot])5b482d7: chore(deps-dev): bump mocha from 10.7.3 to 11.0.1 in /ui-test (#21030) (@dependabot[bot])b77d9d9: chore(deps-dev): bump typescript from 5.7.2 to 5.7.3 in /ui-test (#21443) (@dependabot[bot])05a9171: chore(deps-dev): bump typescript from 5.7.3 to 5.8.2 in /ui-test (#22118) (@dependabot[bot])Other work
fdf21f7: Add pollinate to USERS.md (#21247) (@shavmohin)3f0a155: Fix application url for custom base href (#21377) (@amit-o)c689352: Fixing the link in the docs (#21316) (@ali-hamza-noor)6f5537b: Merge commit from fork (@svghadi)4d59154: Replace deprecated go-gitlab dependency with client-go. (#21175) (@gbw)9309688: Stabilize on-deployed notification trigger (#21333) (@svghadi)cce4a28: Update ingress.md (#21324) (@aliabbasjaffri)80edbfe: Update toolchain-guide.md (#21288) (@Jonty16117)0b542ba: addprojectmissing field to spec (#21277) (@afzal442)1194766: added-ACL (#21238) (@surajyadav1108)fe598a8: chore!: add 60s default jitter (#22342) (@agaudreault)47bec8b: chore!: remove legacy repo support (#19768) (#21249) (@crenshaw-dev)5d147a3: chore(appset)!: always apply nested selectors (#14152) (#21492) (@crenshaw-dev)928fd19: chore(appset): simplify cluster list code (#21820) (@crenshaw-dev)75bbb50: chore(appset): use DB instead of kube client for cluster validation (#21190) (@crenshaw-dev)226a670: chore(ci): improve previous-version script readability, fix bug (cherry-pick #22378) (#22381) (@gcp-cherry-pick-bot[bot])77ad48a: chore(ci): run codegen as part of version bump job (#21404) (@crenshaw-dev)335b65b: chore(config)!: Ignore all.statusupdates & known high churn changes by default (#21760) (@agaudreault)ab07b0a: chore(controller): simplify sharding code (#21244) (@crenshaw-dev)261137d: chore(health): report progressing status for AppSets (#22092) (@crenshaw-dev)be293fe: chore(hydrator): improve error message (#21987) (@crenshaw-dev)42219fd: chore(lint): fix deep copy informers lint (#22290) (@crenshaw-dev)4e08b8d: chore(metrics)!: remove deprecated metrics (#21697) (@crenshaw-dev)bd37458: chore(refactor): remove app destination inferrence logic (#21189) (@crenshaw-dev)34fd729: chore(refactor): remove unused function/file (#21245) (@crenshaw-dev)bd9923f: chore(repo-server): simplify Kustomize/Helm version detection (#21540) (@crenshaw-dev)566bc2e: chore(test): simplify test assertions (#21242) (@crenshaw-dev)ecd0bcd: chore(ui): resolvets-jestconfig underglobalsis deprecated (#20036) (@jsoref)b6770bd: chore: Add divar.ir to USERS.md (#21344) (@aminarefzadeh)12a4dab: chore: Fix data race detection failures in application tests (#21271) (@eadred)45e4886: chore: Graceful shutdown for API Server (#18642) (#21224) (@andrii-korotkov-verkada)2ce593b: chore: Optimize Docker image layers (#21525) (@marcofranssen)07da3d4: chore: Option to disable sync with replace on API Server level (#21427) (#22073) (@andrii-korotkov-verkada)9d66e89: chore: Remove k8s 1.28 from e2e testing (#22245) (@andrii-korotkov-verkada)e14d6b7: chore: Update notifications to be less spammy (#20871) (#21884) (@andrii-korotkov-verkada)8d1aeb5: chore: Update some dependencies and add some comments about old libs (#22104) (#22208) (@andrii-korotkov-verkada)5223ce5: chore: Upgrade Redis from 7.0.15-alpine to 7.2.7-alpine and haproxy (#22108) (#22110) (@andrii-korotkov-verkada)d765aab: chore: Upgrade ubuntu base image to latest 24.04 digest (#21524) (@marcofranssen)91cb693: chore: action docker warnings (#21556) (@Softyy)8a447d9: chore: add e2e test for hook finalizer which prevents external resource deletion (#21113) (@dejanzele)6daaac5: chore: add log context to proxy extension requests (#21834) (@leoluz)acb47b4: chore: add script to bump major version (#21363) (@crenshaw-dev)944f9f7: chore: add the Argo CD type definitions and method comments (#21854) (@nitishfy)f044200: chore: bump gitops-engine (#22335) (@pjiang-dev)76dbaaa: chore: bump to github.com/grpc-ecosystem/go-grpc-middleware/v2 (#22098) (@mmorel-35)9b91454: chore: cleanupdiff-cachetestdata (#21600) (@llavaud)8507a87: chore: define apiextensionsv1 alias with importas (#21823) (@mmorel-35)74582e9: chore: embed trivial rand string function (#22177) (@crenshaw-dev)35a174b: chore: enable badCond from gocritic (#21632) (@mmorel-35)b04a7c1: chore: enable context-as-argument from revive (#21371) (@mmorel-35)c803257: chore: enable duplicated-imports from revive (#21378) (@mmorel-35)6c45721: chore: enable early-return from revive (#21423) (@mmorel-35)f245e8b: chore: enable err-error and strconcat of perfsprint linter (#21267) (@mmorel-35)8a6f53d: chore: enable errorf of perfsprint linter (#21280) (@mmorel-35)bf082c2: chore: enable ifElseChain from gocritic (#21636) (@mmorel-35)5508d1f: chore: enable importas for k8s.io/apimachinery/pkg/api/errors (#21262) (@mmorel-35)8126508: chore: enable importas for k8s.io/apimachinery/pkg/apis/meta/v1 (#21284) (@mmorel-35)4e5db16: chore: enable increment-decrement from revive (#21366) (@mmorel-35)947a7b8: chore: enable indent-error-flow from revive (#21394) (@mmorel-35)5ef4faa: chore: enable nolintlint (#21559) (@mmorel-35)753f7b6: chore: enable parallel helm manifest generation by default (#22224) (@nitishfy)c739478: chore: enable receiver-naming from revive (#21372) (@mmorel-35)9f0dc94: chore: enable redundant-import-alias from revive (#21386) (@mmorel-35)24893ad: chore: enable several rules from revive (#21638) (@mmorel-35)27915da: chore: enable singleCaseSwitch and commentFormatting rules from gocritic (#21616) (@mmorel-35)cb3024c: chore: enable superfluous-else from revive (#21373) (@mmorel-35)50c49ec: chore: enable unnecessary-stmt from revive (#21398) (@mmorel-35)53bc19b: chore: enable unused-parameter from revive (#21365) (@mmorel-35)9ea979b: chore: enable use-any from revive (#21282) (@mmorel-35)37aaeb3: chore: enable usetesting linter (#21935) (@mmorel-35)e66068c: chore: enable var-declaration from revive (#21370) (@mmorel-35)c1b2f78: chore: enable var-naming from revive (#21861) (@mmorel-35)ceb758c: chore: import k8s.io/api/core/v1 as corev1 (#21345) (@mmorel-35)3593f24: chore: mark with-hydrator manifests as generated (#21639) (@crenshaw-dev)045a027: chore: reggie-k as release champion for 3.0 (#21736) (@reggie-k)ffdbcb6: chore: reuse common PermissionDeniedAPIError (#21283) (@mmorel-35)2b1220c: chore: revise wrong resource customization usage example (#22074) (@hanxiaop)aeb0002: chore: set default tracking to annotation (#22289) (@crenshaw-dev)9b17495: chore: update go-github to use token (#21292) (@aburan28)38c2b34: chore: update gotestsum automatically (#21828) (@mikutas)228b86d: chore: update mockery version (#22126) (@gdsoumya)e3bcc48: chore: updates to Numaplane health checks (#21671) (@juliev0)922d080: chore: upgrade Go to 1.24 (#22242) (@sivchari)ef55ba5: chore: use dario.cat/mergo instead of github.com/imdario/mergo (#21274) (@mmorel-35)6087b4f: chore: use github.com/golang-jwt/jwt/v5 (#21276) (@mmorel-35)795bda5: chore: use github.com/grpc-ecosystem/go-grpc-middleware/providers/prometheus (#21937) (@mmorel-35)83257a9: chore: use grpc-middleware interceptors (#22329) (@mmorel-35)db82e23: chore: use internal errors util instead of pkg's (#22174) (@crenshaw-dev)48334cf: chore: use standard errors instead of github.com/pkg/errors (#21266) (@mmorel-35)9843bfb: chore: use testify instead of native testing (#21781) (@mmorel-35)13235ad: chore: use testify instead of testing.Fatal (#21258) (@mmorel-35)d7ccf47: chore: use testify instead of testing.Fatal or testing.Error in pkg (#20761) (@mmorel-35)e7d9091: chore: use testify instead of testing.Fatal or testing.Error in reposerver (#20762) (@mmorel-35)644af54: chore: version bumping helm3 (#22009) (@igaskin)e147247: ci: disable nolintlint linter (#21707) (@agaudreault)976a849: ci: fixes #21862 Concurrency in pr-title-check (#21863) (@appiepollo14)e5df999: crepocreds-short-changed (#21285) (@surajyadav1108)9a3cfcb: docs(2.14): adding basic upgrading docs for 2.14 (#21744) (@rumstead)622847b: docs(2.14): use 2.14.1 manifests as remote bases (#21759) (@rumstead)073ccf7: fix(#19314, #15700): allowssh/altsshsubdomains in repo URLs to match webhook payload (#21227) (@mtbennett-godaddy)8f285a5: fix(in-cluster): do not allow the cluster to be used when disabled (#21208) (@agaudreault)a1431be: fix(ui, rbac): project-roles (#21829) (@blakepettersson)26ebb9b: fixed the broken link while version upgrade/degrade (#21279) (@afzal442)2bcaa19: revert: add a check for user defined role referential integrity #21065 (#22130) (@rumstead)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.11...v3.0.0
v2.14.13Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
This release fixes a critical security issue: GHSA-2hj5-g64g-fp6p
Other work
24d5722: Merge commit from fork (@crenshaw-dev)d213c30: chore: bump gitops-engine ssd fix (#23072) (@pjiang-dev)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.12...v2.14.13
v2.14.12Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
f7ad2ad: fix(ApplicationSet): Check strategy type to verify it's a progressive sync (cherry-pick #22563) (#22833) (@gcp-cherry-pick-bot[bot])ced6a78: fix(health): handle nil lastTransitionTime (#22897) (cherry-pick #22900) (#22909) (@gcp-cherry-pick-bot[bot])25235fb: fix(test): broken e2e test (cherry-pick #22975) (#23052) (@gcp-cherry-pick-bot[bot])78e61ba: fix: Only port-forward to ready pods (#10610) (cherry-pick #22794) (#22826) (@mikebryant)fe93963: fix: do not normalize resource tracking on live crds (#22722) - cherrypick 2.14 (#22746) (@blakepettersson)5bc6f47: fix: infinite reconciliation loop when app is in error (#23047) (@agaudreault)b163de0: fix: remove project from cache key for project scoped credentials (#22816) (@pjiang-dev)Dependency updates
efe5d29: chore(deps): resolve CVE GO-2025-3540, GO-2025-3503, GO-2025-3487 within 2.14.10 (#22709) (@nathanlaceyraft)Other work
3a9ab77: fix(commit-server): apply image override (cherry-pick #22916) (#22918) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.11...v2.14.12
v2.14.11Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Features
91f5445: feat(hydrator): handle sourceHydrator fields from webhook (#19397) (cherry-pick #22485) (#22754) (@gcp-cherry-pick-bot[bot])Bug fixes
0451723: fix(appset): generated app errors should use the default requeue (#21887) (cherry-pick #21936) (#22672) (@gcp-cherry-pick-bot[bot])f6f7d29: fix(ui): avoid spurious error on hydration (#22506) (cherry-pick #22711) (#22714) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.10...v2.14.11
v2.14.10Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
b31d700: fix(cli): wrong variable to store --no-proxy value (cherry-pick #21226) (#22590) (@gcp-cherry-pick-bot[bot])6b15a04: fix: [cherry-pick] selfhealattemptscount needs to be reset at times (#22095, #20978) (#22583) (@Aaron-9900)be81419: fix: login return_url doesn't work with custom server paths (cherry-pick #21588) (#22594) (@gcp-cherry-pick-bot[bot])3b308d6: fix: respect delete confirmation for argocd app deletion (cherry-pick #22657) (#22664) (@gcp-cherry-pick-bot[bot])Dependency updates
4826fb0: chore(deps): Update github.com/expr-lang/expr to v1.17.0 fixing CVE-2025-29786 (#22651) (@heshamelsherif97)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.9...v2.14.10
v2.14.9Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
31a5545: fix: Check for semver constraint matching in application webhook handler (cherry-pick #21648) (#22508) (@gcp-cherry-pick-bot[bot])Other work
c868711: chore(dep): bump gitops-engine 2.14 (#22520) (@pjiang-dev)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.8...v2.14.9
v2.14.8Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
9a9e62d: fix(server): fully populate app destination before project checks (#22408) (#22426) (@crenshaw-dev)7acdaa9: fix: CVE-2025-26791 upgrading redoc dep to 2.4.0 to avoid DOMPurify b… (#21997) (@nmirasch)872319e: fix: handle annotated git tags correctly in repo server cache (#21771) (#22424) (@aali309)Dependency updates
9f832cd: chore(deps): bump github.com/golang-jwt/jwt to 4.5.2/5.2.2 (#22465) (@crenshaw-dev)Other work
ec45e33: fix(ui, rbac): project-roles (#21829) (2.14 backport) (#22461) (@blakepettersson)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.7...v2.14.8
v2.14.7Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Dependency updates
3940782: chore(deps): bump gitops engine (#22405) (@crenshaw-dev)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.6...v2.14.7
v2.14.6Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Features
38c0376: feat(server): make deep copies of objects returned by informers (#22173) (#22179) (#22340) (@rumstead)Dependency updates
defd4be: chore(deps): Update go-git from 5.12.0 to 5.13.2 to include several CVE fixes (#22313) (@anandf)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.5...v2.14.6
v2.14.5Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Dependency updates
ed242b9: chore(deps): bump github.com/redis/go-redis/v9 from 9.7.0 to 9.7.1 (#21957) (#22255) (@anandf)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.4...v2.14.5
v2.14.4Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
52231db: fix(actions): don't run empty Lua scripts (#22084) (cherry-pick #22161) (#22172) (@gcp-cherry-pick-bot[bot])962d7a9: fix(ci): use pinned Helm version for init-release (#22164) (cherry-pick #22165) (#22171) (@gcp-cherry-pick-bot[bot])54170a4: fix: make codegen permissions (cherry-pick #21667) (#22145) (@gcp-cherry-pick-bot[bot])Dependency updates
2eab10a: chore(deps): revert accidental upgrade of go.mod packages (#22162) (@crenshaw-dev)2b1e829: chore(deps): switch gitops-engine back to release-2.14 branch (#22163) (@crenshaw-dev)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.3...v2.14.4
v2.14.3Compare Source
Known Issues
securityContextfields in Redis manifests.All these issues are fixed in 2.14.4.
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
aaed35c: fix(applicationset): ApplicationSets with rolling sync stuck in Pending (cherry-pick #20230) (#21948) (@gcp-cherry-pick-bot[bot])d79185a: fix(hydrator): don't get cluster or API versions for hydrator (#21985) (#22038) (@crenshaw-dev)2dd70de: fix(hydrator): don't use manifest-generate-paths (#22039) (cherry-pick #22015) (#22061) (@gcp-cherry-pick-bot[bot])3adb83c: fix(hydrator): refresh by annotation instead of work queue (#22016) (#22067) (@crenshaw-dev)71fd4e5: fix: Check placement exists before length check (#22060) (cherry-pick #22057) (#22089) (@gcp-cherry-pick-bot[bot])896a461: fix: New kube applier for server side diff dry run with refactoring (#21488) (#21819) (@andrii-korotkov-verkada)63edc3e: fix: accidental v3 imports (#22068) (@crenshaw-dev)cb1df5d: fix: correct lookup for the kustomization file when applying patches (cherry-pick #22024) (#22086) (@nitishfy)92a3c3d: fix: correctly set compareWith when requesting app refresh with delay (fixes #18998) (cherry-pick #21298) (#21952) (@gcp-cherry-pick-bot[bot])8f925c6: fix: fetch syncedRevision in UpdateRevisionForPaths (#21014) (cherry-pick #21015) (#22011) (@gcp-cherry-pick-bot[bot])Documentation
b5be1df: docs: document source hydrator maturity (cherry-pick #21969) (#21970) (@gcp-cherry-pick-bot[bot])Other work
2b422d2: chore: add cherry pick for v2.14 (#21901) (@nitishfy)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.2...v2.14.3
v2.14.2Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
efd9c32: fix: Add proxy registry key by dest server + name (cherry-pick #21791) (#21794) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.1...v2.14.2
v2.14.1Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.14.0...v2.14.1
v2.14.0Compare Source
Important!
The 2.14.0 release manifests incorrectly use the 2.14.0-rc7 image. The 2.14.1 release will correct this error.
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Features
7d28c89: feat(health): resource customization for RabbitMQCluster (#15286) (@aaguilartablada)29c59ab: Revert "feat: exclude Endpoints and EndpointSlices Kubernetes resource by default" (#20334) (@agaudreault)83953fe: feat(app): Add optional 'name' to Source object (#20470) (@CefBoud)4a14051: feat(app): add ignore-healthcheck annotation (#20462) (@CefBoud)5543900: feat(applicationset): Add FlatList option to cluster generator - Fixes #20212 (#20231) (@OpenGuidou)92e0b55: feat(appset): Add a cache layer for Argo Projects to speed-up application validation (#18703) (@dacofr)27eebaa: feat(appset): add 'project' to the Cluster Generator params (#20338) (@CefBoud)9e9c9a9: feat(appset): parameterize requeue time #20063 (#20064) (@rumstead)dfbfdba: feat(appset): reduce cluster secret logging (#21109) (@rumstead)4c29c33: feat(cli): Add app diff option to specify exit code when diff (#20144) (@eugene70)3988861: feat(cmp): parameter to enable git creds to be shared from repo server to the plugin (#15107) (@jmcshane)19613a2: feat(controller): support Istio ServiceEntry network node #20270 (#20273) (@zapkub)19d85aa: feat(health): Adding more health checks for Keycloak, Postgres, Grafana, SolrCloud (#20294) (@rezellme)2a199bc: feat(health): add healthchecks for Gloo resources (#11379) (@zelig81)e4599e1: feat(rbac): add disable fine-grained inheritance flag (#20600) (#21553) (@agaudreault)d8dd2fc: feat(ui): Added a warning popup before closing the application create panel (#20807) (@surajyadav1108)1120a08: feat(ui): Added timing info to container state UI (#20920) (@surajyadav1108)a94a07e: feat(ui): Added title label for filters (#21149) (@surajyadav1108)36d189c: feat(ui): Support filter forconfiguredandunchangedon SYNC STATUS view (#20850) (@aali309)e09ff60: feat(ui): add token diff support in diff view (#19983) (@linghaoSu)f4c519a: feat(ui): display sha's revision in every history release (#19963) (@Tchoupinax)5796a7c: feat(ui): make name property for repos (#20077) (@surajyadav1108)fb825f7: feat(ui): move graphs by dragging mouse in app resource tree view (#18025) (#20009) (@linghaoSu)3088906: feat(ui): support auto theme (#20080) (@linghaoSu)24e67df: feat(ui): support enable word wrap in live and desired manifest panel (#20299) (@linghaoSu)eb10b70: feat: Add ability to hide certain annotations on secret resources (#18216) (@svghadi)ab8fdb8: feat: Add nodeSelector for Linux nodes (#20148) (@leehosu)b5d8edd: feat: Add reusable interactive prompts andconfigurecommand (issue #19528) (#19637) (@david-wu-octopus)9b481b1: feat: Adding skipSchemaValidation flag (#20771) (#20831) (@dmosesson)fd4cc93: feat: Change the file name convention when downloading pod logs (#19938) (@itaynvn-runai)99efafb: feat: Confluent Connector Resource Health Checker - #17695 (#17697) (@Clint-Chester)8ebf4a8: feat: Enable ignoreResourceUpdate by default #19992 (#20303) (@jaehanbyun)9741c06: feat: Sync timeouts for applications (#6055) (#20816) (@andrii-korotkov-verkada)8f0d3d0: feat: Timestamp for Health Status (#16972) (#18660) (@mkieweg)c8dcd83: feat: add ARGOCD_APP_REVISION_SHORT_8 variable in build environment (#19931) (@Falanty)4722a7f: feat: add Actions for PipelineRollout to allow/disallow data loss (#20298) (@juliev0)b05cafd: feat: add custom actions for Numaflow CRDs (#20332) (@dpadhiar)fdf539d: feat: add health check for ClusterResourceSet (#20746) (@nueavv)5138dd5: feat: add orphaned resource count metric (#20521) (@jaehanbyun)621330c: feat: add prompting to confirm account token deletion (#20654) (@pasha-codefresh)36ef563: feat: add prompting to confirm application commands (#20658) (@pasha-codefresh)d44d7ec: feat: add prompting to confirm application resource deletion (#20611) (@pasha-codefresh)29d5229: feat: add prompting to confirm delete certificate (#20547) (@pasha-codefresh)16e7517: feat: add prompting to confirm deletion of gpg public key (#20539) (@pasha-codefresh)83b1b6c: feat: add prompting to confirm project deletion (#20612) (@pasha-codefresh)8a4e7e0: feat: add prompting to confirm project role deletion (#20613) (@pasha-codefresh)2620593: feat: add prompting to confirm project window deletion (#20656) (@pasha-codefresh)9b6d3a9: feat: add prompting to confirm prune during backup import (#20546) (@pasha-codefresh)eb6d2e6: feat: add prompting to confirm remove of repository credentials (#20541) (@pasha-codefresh)0aa6c49: feat: add support for helm skipTests flag (#20118) (@jaehanbyun)b9d5387: feat: adopt delete app confirmation to new prompt util (#20664) (@pasha-codefresh)4e13b7f: feat: allow auth token to be passed in via env (#19898) (@ctrlaltf24)212efa4: feat: allow individual extension configs (#20491) (@leoluz)7c9bd2d: feat: application resource deletion protection (#20497) (@alexmt)a25378f: feat: appset scm generators and PR generators should be able to access only secrets related to appset (#20309) (@pasha-codefresh)2d8659b: feat: basic e2e tests in order to verify notification service health (#20182) (@pasha-codefresh)a288b4d: feat: exclude Endpoints and EndpointSlices Kubernetes resource by default (#20251) (@jaehanbyun)82484ce: feat: introduce health checks for Numaflow CRDs (#20297) (@dpadhiar)5d89339: feat: introduce pause/unpause actions for Numaplane CRDs (#20128) (@dpadhiar)d16df52: feat: manage clusters via proxy (#20374) (@pasha-codefresh)4a38442: feat: move appset delete confirmation to new prompt logic (#20677) (@pasha-codefresh)eba559a: feat: option to disable writing k8s events(#18205) (#18441) (@Jack-R-lantern)433b317: feat: source hydrator (#20345) (@crenshaw-dev)59ea2a8: feat: support Suspended state for MonoVertexRollout (#20583) (@dpadhiar)dc27102: feat: support using exponential backoff between self heal attempts (#20275) (@alexmt)b824956: feat: transmit manifest-generate-path resources to the cmp-server for plugin-based applications (#19209) (@jsolana)Bug fixes
684ee0b: Revert "fix: Graceful shutdown for the API server (#18642) (#20981)" (#21221) (#21222) (@gcp-cherry-pick-bot[bot])4471603: fix(api): send to closed channel in mergeLogStreams (#7006) (#21178) (@crenshaw-dev)bce16e9: fix(appset): Fix appset generate in --core mode for cluster gen (#21170) (@OpenGuidou)e953a2d: fix(appset): avoid panic when no steps in rollingSync (#20357) (@CefBoud)bd75510: fix(appset): events not honouring configured namespaces (#21219) (#21241) (#21519) (@eadred)479b182: fix(appset): reverted Gitlab SCM HasPath search and consider 404 errors as file not found (#16253) (cherry-pick #21597) (#21602) (@gcp-cherry-pick-bot[bot])ebf754e: fix(appset): update gitlab SCM provider to search on parent folder (#16253) (#21491) (#21503) (@gcp-cherry-pick-bot[bot])b8f85c9: fix(ci): get correct previous release version for release notes (#19443) (#20315) (@crenshaw-dev)79ba360: fix(ci): handle new k3s test version matrix (#20223) (#20427) (@crenshaw-dev)76fbc1f: fix(ci): ignore temporary files when checking for out of bound symlinks (#20527) (@CefBoud)c13c9c1: fix(ci): updating action-gh-release after upstream fix (#21407) (#21408) (@gcp-cherry-pick-bot[bot])2c2e669: fix(cli): Fix appset generate in --core mode (#20717) (@OpenGuidou)e654ed5: fix(cli): add missing resources and actions to cani CLI (#20347) (@crenshaw-dev)438e01b: fix(codegen): use kube_codegen.sh deepcopy and client gen correctly (#20644) (@crenshaw-dev)51471b3: fix(controller): rename cluster batch param and add to argocd-cmd-params-cm (#21402) (#21419) (@gcp-cherry-pick-bot[bot])ec499bb: fix(diff): avoid cache miss in server-side diff (#20423) (#20424) (@crenshaw-dev)e861b55: fix(diff): avoid cache miss in server-side diff (#20605) (@crenshaw-dev)d1ef0f8: fix(docs): ensure version dropdown sorts correctly regardless of browser language #20289 (#20322) (@jaehanbyun)ca91dd9: fix(extension): add header to support apps-in-any-namespace (#20123) (@agaudreault)5ba2405: fix(health): only consider non-empty health checks (#20232) (@blakepettersson)3070297: fix(helm): escape consecutive commas in cleanSetParameters (#19269) (#20113) (@eogns47)35174dc: fix(hydrator): UI nil checks (cherry-pick #21598) (#21601) (@gcp-cherry-pick-bot[bot])092bb73: fix(pkce): 20111 PKCE auth flow does not return user to previous path like dex auth flow (#20202) (@austin5219)b187fbb: fix(redis): CPU stuck at 100% after rolling update (#20645) (@agaudreault)a68d057: fix(server): accept HTTP/1.1 for backward compatibility (#20639) (@agaudreault)c8c22d3: fix(server): make a copy of secret objects when listing from the informers #19913 (#20805) (@rumstead)a7637cd: fix(server): missing selected ALPN property (#20579) (@agaudreault)8a9de6a: fix(ui): ArgoCD history tab shows latest values in all recent releases (#13006) (#21161) (@GuySaar8)b0e3160: fix(ui): Change tab title to Sync Windows (#20018) (@jsoref)33ecbbc: fix(ui): Prevent versionId 0 Error on New Applications with No History (#20574) (@pasha-codefresh)46f4945: fix(ui): Solve issue with navigating with dropdown from an application's page (cherry-pick #21737) (#21746) (@gcp-cherry-pick-bot[bot])9ac1670: fix(ui): Sync Health Statuses for Applications and everything else (#20020) (@jsoref)555854c: fix(ui): addstateparameter in the pkce flow (#17235) (@js3692)159eeec: fix(ui): add optional check to avoid undefined reference in project detail (#20044) (@linghaoSu)7718af1: fix(ui): adjust transform origin in application resource tree (#20180) (@srikanth597)40c6077: fix(ui): carry over state when using full screen mode button (#20022) (@linghaoSu)f6eaaea: fix(ui): display correct init info in Pod UI (#20387) (@crenshaw-dev)1fcbcc1: fix(ui): fix open application detail in new tab when basehref is set (#20004) (@lsq645599166)a78b628: fix(ui): fix select destination cluster type in create app (#20970) (@lsq645599166)d761c94: fix(ui): fix the slider tansition (#20641) (@ashutosh16)0681098: fix(ui): hide resource actions menu if it's empty (#20051) (@CefBoud)20e2e78: fix(ui): history error reported in the dev environment (#20133) (@youhonglian)ed4c0ee: fix(ui): source can in fact beundefined(#20381) (@blakepettersson)e31aebe: fix(ui): update ui e2e tests (#14619) (@ebuildy)fa9023a: fix: 20791 - sync multi-source application out of order source syncs (#21071) (@ishitasequeira)7f6340f: fix: API server should not attempt to read secrets in all namespaces (#20950) (@alexmt)e2bc96b: fix: Ability to disable Server Side Apply on individual resource level (#20697) (@pasha-codefresh)fcc186b: fix: Add redis password toforwardCacheClientstruct (#19599) (@NetanelK)155514e: fix: Allow to delete repos with invalid urls (#20921) (#20975) (@andrii-korotkov-verkada)6d8d32f: fix: ApplicationSet webhooks should use stricter comparison of repository URL (#20486) (@dacofr)b8e118f: fix: Bitbucket Cloud PR Author is processed correctly (#20769) (#20990) (@andrii-korotkov-verkada)f03146d: fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0 (#20087) (@chengfang)0a26e0f: fix: Change applicationset generate HTTP method to avoid route conflicts (#20758) (#21299) (@gcp-cherry-pick-bot[bot])fad534b: fix: Fix argocd appset generate failure due to missing clusterrole (#20162) (@pradithya)b2091e3: fix: Fix false positive in plugin application discovery (#20196) (@pradithya)3da5a3d: fix: Fix repeated 403 due to app namespace being undefined (#20699) (#20819) (@andrii-korotkov-verkada)d9be098: fix: Fix server side diff with fields removal (#20792) (#20842) (@andrii-korotkov-verkada)345c8a1: fix: GOLANGCI_LINT_VERSION (#20264) (@dcoppa)dce41c4: fix: Get pull request target branch for Azure DevOps (#19869) (#19871) ( <>)730363f: fix: Graceful shutdown for the API server (#18642) (#20981) (@andrii-korotkov-verkada)c6804e9: fix: Memory leak in repo-server (#20876) (@AJChandler)e1258cc: fix: Policy/policy.open-cluster-management.io health check is broken (#20108) (#20109) (@itewk)8a8fc37: fix: Policy/policy.open-cluster-management.io stuck in progressing status when no clusters match the policy (#21296) (cherry-pick #21297) (#21614) (@gcp-cherry-pick-bot[bot])030a7be: fix: Populate destination name when destination server is specified (#21063) (@adriananeci)7de5d27: fix: Rework git tag semver resolution (#20083) (#20096) (@PaulSonOfLars)8cf990b: fix: Rollback multi-source apps; 2nd follow-up to PR 14124 (#20566) (@keithchong)522d07a: fix: UI: Nothing happens selecting cluster URL/Name dropdown (#13655) (#21028) (@keithchong)2fe9a22: fix: add missing fields in listrepositories (#20991) (@blakepettersson)6002c7d: fix: allow pipes to be present in git username (#20040) (@blakepettersson)dc3f40c: fix: avoid resources lock contention (#8172) (#20329) (@mpelekh)9b11b21: fix: check err before use schedule and duration (#20043) (@daengdaengLee)17c412e: fix: check for source position when --show-params is set (#20682) (@gdsoumya)20f9719: fix: cleanup tempdir when errors occur in Helm chart extraction (#19861) (@ilia-medvedev-codefresh)fe67cd5: fix: corrected --roleARN to --role-arn as per updated CLI option (#20065) (@nueavv)cfa1c89: fix: disable automaxprocs logging (#20069) (@nitishfy)76104da: fix: don't disable buttons for multi-source apps (#20446) (@blakepettersson)dbc94ba: fix: fix broken link (#20070) (@nitishfy)fe7771c: fix: handle incorrect cluster RESTconfig without panic (#20150) (@CefBoud)6897c2e: fix: incorrect expr for server stats in Grafana dashboard.json (#21098) (@minchao)fa54ce2: fix: oras-go client should fallback to docker config if no credentials specified (#18133) (@tonyay163)0ca1ddb: fix: order conditions summary (#20759) (@mmorel-35)be880ad: fix: refine deny destination checks (#20045) (@blakepettersson)be24ef4: fix: remove broken link from code-contributions.md (#20795) ( <>)951f749: fix: remove hardcoded conditions from Numaflow CRD health checks (#20316) (@dpadhiar)52c3f93: fix: repo generate paths value in namespace install is incorrectly formatted (#20139) (@todaywasawesome)70ea865: fix: resolve the failing e2e appset tests for ksonnet applications (cherry-pick #21580) (#21604) (@gcp-cherry-pick-bot[bot])32cc663: fix: show multisource details for an appset when usingargocd appset getcommand (#20903) (@nitishfy)03a1609: fix: support managing cluster with multiple argocd instances and annotation based tracking (#20222) (@alexmt)4faf8dd: fix: the unmatching template issue introduced from #20237 (#20410) (@xcompass)49431b9: fix: update health check to support modelmesh (#20142) (@strangiato)9687619: fix: updates to health status for Numaplane resources (#20544) (@juliev0)1c6ec19: fix: useErrorContains(t, errinstead ofContains(t, err.Error()(#20220) (@mmorel-35)Documentation
b546ea7: docs(applicationset): complete sentence about Application deletion (#20944) (@tdabasinskas)ac69f52: docs(applicationset): explain how to add repo credentials (#20453) (@ruant)9b15589: docs(cli): fix example command (#20402) (@crenshaw-dev)bab2c41: docs(hydrator): document signature verification limitation (cherry-pick #21504) (#21585) (@gcp-cherry-pick-bot[bot])205b3d3: docs(ingress): use GRPC instead of HTTP2 (#21029) (@agaudreault)b60d28c: docs(proposal): manifest hydrator (#17755) (@crenshaw-dev)f89e1cf: docs(rbac): clarify glob pattern behavior for fine-grain RBAC (#20624) (@crenshaw-dev)735d090: docs(reconcile): adding optional condition when ignoring json (#20010) (@rumstead)ff08643: docs(resource_actions): specify when mergeBuiltinActions was introduced (#20917) (@morey-tech)6b19f10: docs(ui): sorting version (#20181) (@nueavv)6a9fe45: docs: Add404 Not Foundgithub notify error to troubleshooting docs (#20085) (@moleus)4b478ef: docs: Add empty GitHub.repoURL error to troubleshooting docs (#19926) (@moleus)f2e4739: docs: Add keycloak PKCE and argo-cd cli method documentation (#20698) (@albundy83)2f6b6ad: docs: Correct ApplicationSet (spec.preservedFields) (#20206) (@jyoungs)c445399: docs: Declarative argo clusters docs update for EKS (#20503) (@fideloper)a78594b: docs: Endpoints not excluded by default (#16023) (#20014) (@agaudreault)eb1bb83: docs: Fixargocd admin projdocs and examples (#21057) (@amine7536)fc6105b: docs: Fix post selector example (#20969) (@eriksjolund)b391642: docs: Improve self-heal and auto-sync behaviors explanation for multi-source apps (#20809) (#20811) (@andrii-korotkov-verkada)a849d41: docs: Proposal to add installation steps for local development using Kind (#20821) (@revitalbarletz)de06f77: docs: Remove FOSSA badge (#20038) (@jsoref)d408909: docs: Update Dex OIDC example (#20545) (@preethi-sv)2d9d2fd: docs: Update FAQ about known types (#6008) (#20929) (@andrii-korotkov-verkada)f460bf4: docs: Update Okta OIDC CLI instructions (#20021) (@34fathombelow)86769fc: docs: Update USERS.md (#20349) (@a-manraj-pvotal)807b6fb: docs: Update argocd path for command in notifification in troubleshooting docs (#20120) (@owngr)b6cc0e6: docs: Update orphaned resource number metric explanation in doc (#20702) (@jaehanbyun)3b623a6: docs: add TBC Bank to USERS.md (#20227) (@mategogiberidze)602665f: docs: addprojectto repo creds examples (#20057) (@morey-tech)1a69663: docs: add link to sprig website in the template docs site (#21184) (@KyriosGN0)bb8185e: docs: add mkdocs configuration stanza to .readthedocs.yaml (cherry-pick #21475) (#21608) (@gcp-cherry-pick-bot[bot])1dcf3a5: docs: add outpost24 to users.md (#20197) (@minhphong306)5f23bb6: docs: add user to users.md (#20042) (@nueavv)439edd0: docs: added Podman based set up in contributors quick-start (#20367) (@kswadi)0cd5ac4: docs: added note re. arch of example application on getting_started.md (#20143) (@Crumb5)0b48670: docs: clarify priority of health statuses (#20490) (@crenshaw-dev)049ba0a: docs: correct typos in authz-authn.md and proxy-extensions.md (#20391) (@cowboysj)4dcbbd7: docs: correct typos in documentation (#20569) (@SuminSSon)aff5e61: docs: document all unstable configurations (#20336) (#20438) (@agaudreault)6b5cdc7: docs: document server side pagination proposal (#17222) (@alexmt)7ab5015: docs: feature maturity page for alpha and beta features (#20336) (#20337) (@crenshaw-dev)e77727c: docs: fix paragraph in "User Guide/Kustomize" (#20053) (@4llan)038a832: docs: fix typo in ingress section of operator manual (#19946) (@kswadi)757c395: docs: fix typo in upgrading section of operator manual (#19950) (@vmdude)21d1f88: docs: include cluster-management.md in TOC (#19964) (@VannTen)9136064: docs: remove outdated ciphers (#21006) (@xlanor)dff4152: docs: update note about timeout.reconciliation (#20407) (@crenshaw-dev)4d17bf3: docs: update sync-wave documentation (#21155) (@chansuke)d542b02: docs: updating links to the directory and wording (#20335) (@ali-hamza-noor)Dependency updates
c90deaa: chore(deps): bump @types/selenium-webdriver in /ui-test (#20589) (@dependabot[bot])ea71067: chore(deps): bump Helm from 3.15.2 to 3.15.4 (#20135) (@pasha-codefresh)948aaf6: chore(deps): bump SonarSource/sonarqube-scan-action (#20278) (@dependabot[bot])ae183ad: chore(deps): bump SonarSource/sonarqube-scan-action from 2.3.0 to 3.0.0 (#19524) (@dependabot[bot])1fba4ea: chore(deps): bump SonarSource/sonarqube-scan-action from 3.0.0 to 3.1.0 (#20740) (@dependabot[bot])523b0e6: chore(deps): bump SonarSource/sonarqube-scan-action from 3.1.0 to 4.1.0 (#21034) (@dependabot[bot])4272b03: chore(deps): bump actions/cache from 4.0.2 to 4.1.0 (#20240) (@dependabot[bot])f984569: chore(deps): bump actions/cache from 4.1.0 to 4.1.1 (#20301) (@dependabot[bot])e9ff075: chore(deps): bump actions/cache from 4.1.1 to 4.1.2 (#20493) (@dependabot[bot])96d0226: chore(deps): bump actions/cache from 4.1.2 to 4.2.0 (#21084) (@dependabot[bot])bb1e75f: chore(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (#20529) (@dependabot[bot])be080a5: chore(deps): bump actions/setup-go from 5.1.0 to 5.2.0 (#21123) (@dependabot[bot])6b6d23b: chore(deps): bump actions/setup-node from 4.0.3 to 4.0.4 (#20025) (@dependabot[bot])683d030: chore(deps): bump actions/setup-node from 4.0.4 to 4.1.0 (#20528) (@dependabot[bot])1e84af7: chore(deps): bump actions/upload-artifact from 4.4.0 to 4.4.1 (#20279) (@dependabot[bot])3da774b: chore(deps): bump actions/upload-artifact from 4.4.1 to 4.4.2 (#20300) (@dependabot[bot])7031387: chore(deps): bump actions/upload-artifact from 4.4.2 to 4.4.3 (#20320) (@dependabot[bot])9b01c46: chore(deps): bump bitnami/kubectl in /test/container (#20024) (@dependabot[bot])109473f: chore(deps): bump bitnami/kubectl in /test/container (#20191) (@dependabot[bot])1a478a5: chore(deps): bump bitnami/kubectl in /test/container (#20516) (@dependabot[bot])02a4d9f: chore(deps): bump chromedriver from 128.0.3 to 129.0.0 in /ui-test (#19998) (@dependabot[bot])54bd694: chore(deps): bump chromedriver from 129.0.0 to 129.0.2 in /ui-test (#20189) (@dependabot[bot])c4fb5d9: chore(deps): bump chromedriver from 129.0.2 to 129.0.3 in /ui-test (#20317) (@dependabot[bot])47f63f0: chore(deps): bump chromedriver from 129.0.3 to 129.0.4 in /ui-test (#20340) (@dependabot[bot])1d12fcf: chore(deps): bump chromedriver from 129.0.4 to 130.0.0 in /ui-test (#20415) (@dependabot[bot])7eb2a19: chore(deps): bump chromedriver from 130.0.0 to 130.0.1 in /ui-test (#20515) (@dependabot[bot])df54a43: chore(deps): bump chromedriver from 130.0.1 to 130.0.2 in /ui-test (#20648) (@dependabot[bot])b652b6a: chore(deps): bump chromedriver from 130.0.2 to 130.0.4 in /ui-test (#20687) (@dependabot[bot])0ea189d: chore(deps): bump chromedriver from 130.0.4 to 131.0.1 in /ui-test (#20855) (@dependabot[bot])e28aa2e: chore(deps): bump chromedriver from 131.0.1 to 131.0.2 in /ui-test (#21050) (@dependabot[bot])87c853e: chore(deps): bump chromedriver from 131.0.2 to 131.0.3 in /ui-test (#21144) (@dependabot[bot])48551b3: chore(deps): bump codecov/codecov-action from 4.5.0 to 4.6.0 (#20188) (@dependabot[bot])e03d609: chore(deps): bump codecov/test-results-action from 1.0.0 to 1.0.1 (#20359) (@dependabot[bot])7d3661c: chore(deps): bump docker/build-push-action from 6.7.0 to 6.8.0 (#20154) (@dependabot[bot])afcc71b: chore(deps): bump docker/build-push-action from 6.8.0 to 6.9.0 (#20174) (@dependabot[bot])02d6866: chore(deps): bump docker/build-push-action from 6.9.0 to 6.10.0 (#20966) (@dependabot[bot])8ea78a1: chore(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.0 (#20224) (@dependabot[bot])5ebb61b: chore(deps): bump docker/setup-buildx-action from 3.7.0 to 3.7.1 (#20241) (@dependabot[bot])2c206a5: chore(deps): bump dompurify from 2.3.6 to 2.5.6 in /ui (#19955) (@dependabot[bot])dd2b458: chore(deps): bump github.com/Azure/kubelogin from 0.1.4 to 0.1.5 (#21033) (@dependabot[bot])19eaeb9: chore(deps): bump github.com/Azure/kubelogin from 0.1.5 to 0.1.6 (#21193) (@dependabot[bot])29ac238: chore(deps): bump github.com/Masterminds/semver/v3 from 3.3.0 to 3.3.1 (#20852) (@dependabot[bot])898c2b5: chore(deps): bump github.com/bmatcuk/doublestar/v4 from 4.6.1 to 4.7.1 (#20363) (@dependabot[bot])32c9e41: chore(deps): bump github.com/bradleyfalzon/ghinstallation/v2 (#20778) (@dependabot[bot])00d45ed: chore(deps): bump github.com/casbin/casbin/v2 from 2.100.0 to 2.101.0 (#20817) (@dependabot[bot])2d0a5e9: chore(deps): bump github.com/casbin/casbin/v2 from 2.101.0 to 2.102.0 (#21019) (@dependabot[bot])308c6cb: chore(deps): bump github.com/casbin/casbin/v2 from 2.99.0 to 2.100.0 (#19960) (@dependabot[bot])f78e741: chore(deps): bump github.com/cyphar/filepath-securejoin (#20173) (@dependabot[bot])e144d5c: chore(deps): bump github.com/cyphar/filepath-securejoin (#20319) (@dependabot[bot])ed2fde1: chore(deps): bump github.com/cyphar/filepath-securejoin (#21096) (@dependabot[bot])a8f95dc: chore(deps): bump github.com/fsnotify/fsnotify from 1.7.0 to 1.8.0 (#20629) (@dependabot[bot])d773179: chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (#20649) (@dependabot[bot])c06974f: chore(deps): bump github.com/itchyny/gojq from 0.12.16 to 0.12.17 (#21018) (@dependabot[bot])f4577e3: chore(deps): bump github.com/ktrysmt/go-bitbucket from 0.9.80 to 0.9.81 (#20397) (@dependabot[bot])f64db6d: chore(deps): bump github.com/prometheus/client_golang (#19974) (@dependabot[bot])f031f49: chore(deps): bump github.com/prometheus/client_golang (#20398) (@dependabot[bot])195de1a: chore(deps): bump github.com/redis/go-redis/v9 from 9.6.1 to 9.6.2 (#20377) (@dependabot[bot])e7e6f5b: chore(deps): bump github.com/redis/go-redis/v9 from 9.6.2 to 9.7.0 (#20441) (@dependabot[bot])8bce61e: chore(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#20930) (@dependabot[bot])1e359c8: chore(deps): bump github.com/xanzy/go-gitlab from 0.109.0 to 0.110.0 (#20260) (@dependabot[bot])94e81cd: chore(deps): bump github.com/xanzy/go-gitlab from 0.110.0 to 0.111.0 (#20339) (@dependabot[bot])81785b8: chore(deps): bump github.com/xanzy/go-gitlab from 0.111.0 to 0.112.0 (#20378) (@dependabot[bot])35b9158: chore(deps): bump github.com/xanzy/go-gitlab from 0.112.0 to 0.113.0 (#20676) (@dependabot[bot])74b219a: chore(deps): bump github.com/xanzy/go-gitlab from 0.113.0 to 0.114.0 (#20832) (@dependabot[bot])4f6e408: chore(deps): bump gitops-engine to latest (#21056) (@jmeridth)b2e52de: chore(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#20376) (@dependabot[bot])ed9d18f: chore(deps): bump go.opentelemetry.io/otel from 1.30.0 to 1.31.0 (#20360) (@dependabot[bot])2a72df2: chore(deps): bump go.opentelemetry.io/otel from 1.31.0 to 1.32.0 (#20744) (@dependabot[bot])4b229c0: chore(deps): bump go.opentelemetry.io/otel from 1.32.0 to 1.33.0 (#21166) (@dependabot[bot])e2c4b23: chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc (#20361) (@dependabot[bot])aef4c5a: chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc (#20741) (@dependabot[bot])3b81d3c: chore(deps): bump go.opentelemetry.io/otel/sdk from 1.31.0 to 1.32.0 (#20745) (@dependabot[bot])75b0b3c: chore(deps): bump go.opentelemetry.io/otel/sdk from 1.32.0 to 1.33.0 (#21165) (@dependabot[bot])0710ff9: chore(deps): bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 (#20068) (@dependabot[bot])3b2de54: chore(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#20243) (@dependabot[bot])146c1bb: chore(deps): bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#20707) (@dependabot[bot])6ace657: chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.30.0 (#21068) (@dependabot[bot])cc68f01: chore(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#21147) (@dependabot[bot])d063e60: chore(deps): bump golang.org/x/net from 0.29.0 to 0.30.0 (#20246) (@dependabot[bot])4a66a2a: chore(deps): bump golang.org/x/net from 0.30.0 to 0.31.0 (#20742) (@dependabot[bot])cdec7e2: chore(deps): bump golang.org/x/net from 0.31.0 to 0.32.0 (#21069) (@dependabot[bot])556b8c6: chore(deps): bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 (#20708) (@dependabot[bot])0eaa3d4: chore(deps): bump golang.org/x/sync from 0.8.0 to 0.9.0 (#20709) (@dependabot[bot])3a666dd: chore(deps): bump golang.org/x/term from 0.24.0 to 0.25.0 (#20245) (@dependabot[bot])b78f209: chore(deps): bump golang.org/x/term from 0.25.0 to 0.26.0 (#20705) (@dependabot[bot])0fbbc0d: chore(deps): bump golang.org/x/term from 0.26.0 to 0.27.0 (#21070) (@dependabot[bot])853c6b4: chore(deps): bump golang.org/x/time from 0.6.0 to 0.7.0 (#20244) (@dependabot[bot])aac6980: chore(deps): bump golang.org/x/time from 0.7.0 to 0.8.0 (#20704) (@dependabot[bot])8d268e7: chore(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 (#20207) (@dependabot[bot])864917b: chore(deps): bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#20059) (@dependabot[bot])2e9532d: chore(deps): bump google.golang.org/grpc from 1.67.0 to 1.67.1 (#20190) (@dependabot[bot])9f71ecb: chore(deps): bump google.golang.org/grpc from 1.67.1 to 1.68.1 (#21066) (@dependabot[bot])419cf25: chore(deps): bump google.golang.org/protobuf from 1.34.2 to 1.35.1 (#20277) (@dependabot[bot])c4f51c0: chore(deps): bump google.golang.org/protobuf from 1.35.1 to 1.35.2 (#20804) (@dependabot[bot])c68776e: chore(deps): bump goreleaser/goreleaser-action from 6.0.0 to 6.1.0 (#20701) (@dependabot[bot])8c00cf0: chore(deps): bump http-proxy-middleware from 2.0.4 to 2.0.7 in /ui (#20518) (@dependabot[bot])1a84db5: chore(deps): bump library/busybox in /test/e2e/multiarch-container (#20193) (@dependabot[bot])8d4ae26: chore(deps): bump library/busybox in /test/e2e/multiarch-container (#21145) (@dependabot[bot])21fa481: chore(deps): bump library/golang from 1.23.1 to 1.23.3 in /test/remote (#20703) (@dependabot[bot])955858e: chore(deps): bump library/golang from 1.23.3 to 1.23.4 in /test/remote (#21049) (@dependabot[bot])cc7c21e: chore(deps): bump library/golang in /test/container (#20700) (@dependabot[bot])0a57d21: chore(deps): bump library/golang in /test/container (#21048) (@dependabot[bot])c8eb5b5: chore(deps): bump library/node from 22.8.0 to 22.9.0 (#19999) (@dependabot[bot])9e6d78e: chore(deps): bump library/node from 22.8.0 to 22.9.0 in /test/container (#20001) (@dependabot[bot])04919f0: chore(deps): bump library/node from 22.8.0 to 22.9.0 in /ui-test (#19975) (@dependabot[bot])97d110b: chore(deps): bump library/node fromfa4b468tocbe2d5fin /ui-test (#19997) (@dependabot[bot])8d9a3a7: chore(deps): bump library/redis from 7.4.0 to 7.4.1 in /test/container (#20282) (@dependabot[bot])ea46572: chore(deps): bump library/redis in /test/container (#20442) (@dependabot[bot])a0b6943: chore(deps): bump library/redis in /test/container (#20494) (@dependabot[bot])065700c: chore(deps): bump nanoid from 3.3.7 to 3.3.8 in /ui (#21131) (@dependabot[bot])d636e53: chore(deps): bump peter-evans/create-pull-request from 7.0.2 to 7.0.3 (#19957) (@dependabot[bot])229826e: chore(deps): bump peter-evans/create-pull-request from 7.0.3 to 7.0.5 (#20000) (@dependabot[bot])2b64c71: chore(deps): bump selenium-webdriver and @types/selenium-webdriver (#19959) (@dependabot[bot])86519ca: chore(deps): bump selenium-webdriver from 4.24.1 to 4.25.0 in /ui-test (#20058) (@dependabot[bot])efd1964: chore(deps): bump selenium-webdriver from 4.25.0 to 4.26.0 in /ui-test (#20633) (@dependabot[bot])d6deaa9: chore(deps): bump selenium-webdriver from 4.26.0 to 4.27.0 in /ui-test (#20953) (@dependabot[bot])745f1cc: chore(deps): bump sigs.k8s.io/controller-runtime from 0.19.0 to 0.19.1 (#20530) (@dependabot[bot])9f1431e: chore(deps): bump sigs.k8s.io/controller-runtime from 0.19.1 to 0.19.2 (#20906) (@dependabot[bot])51a7966: chore(deps): bump sigs.k8s.io/controller-runtime from 0.19.2 to 0.19.3 (#21032) (@dependabot[bot])0014b25: chore(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0 (#20242) (@dependabot[bot])11267b9: chore(deps): bump softprops/action-gh-release from 2.0.8 to 2.0.9 (#20631) (@dependabot[bot])79b05d6: chore(deps): bump softprops/action-gh-release from 2.0.9 to 2.1.0 (#20760) (@dependabot[bot])6a3cdb6: chore(deps): bump softprops/action-gh-release from 2.1.0 to 2.2.0 (#21124) (@dependabot[bot])9a14d7f: chore(deps): bump thehanimo/pr-title-checker from 1.4.2 to 1.4.3 (#20951) (@dependabot[bot])8f65594: chore(deps): bump tj-actions/changed-files from 45.0.1 to 45.0.2 (#19958) (@dependabot[bot])ba0683c: chore(deps): bump tj-actions/changed-files from 45.0.2 to 45.0.3 (#20225) (@dependabot[bot])0066b0a: chore(deps): bump tj-actions/changed-files from 45.0.3 to 45.0.4 (#20739) (@dependabot[bot])1bf56d8: chore(deps): bump tj-actions/changed-files from 45.0.4 to 45.0.5 (#21095) (@dependabot[bot])67b2336: chore(deps): fix bump golang.org/x/net from 0.32.0 to 0.34.0 - CVE-2024-45338 (#21628) (@ishitasequeira)3625689: chore(deps): update dependency pymdown-extensions to v10.12 (#20567) (@renovate[bot])77b57af: chore(deps): update docker.io/library/golang:1.23.2 docker digest toa7f2fc9(#20318) (@renovate[bot])229ac1b: chore(deps): update docker.io/library/golang:1.23.2 docker digest toad5c126(#20419) (@renovate[bot])9592250: chore(deps): update docs dependencies (#20257) (@renovate[bot])14c50bd: chore(deps): update group golang to v1.23.2 (#20256) (@renovate[bot])aa1267a: chore(deps): update group golang to v1.23.3 (#20686) (@renovate[bot])b39f3b1: chore(deps): update module github.com/golangci/golangci-lint to v1.62.0 (#20737) (@renovate[bot])98688e0: chore(deps): update module github.com/golangci/golangci-lint to v1.62.2 (#20947) (@renovate[bot])e0863d9: chore(deps): update node version (#20248) (@renovate[bot])8b06307: chore(deps): update node.js to v23 (#20413) (@renovate[bot])cf498f6: chore(deps): upgradeargo-ui, including breaking changes (#19655) (@agilgur5)c641304: chore(deps-dev): bump @types/mocha from 10.0.8 to 10.0.9 in /ui-test (#20280) (@dependabot[bot])e28a05f: chore(deps-dev): bump @types/node from 22.5.5 to 22.7.2 in /ui-test (#20112) (@dependabot[bot])78c85a2: chore(deps-dev): bump @types/node from 22.7.2 to 22.7.5 in /ui-test (#20281) (@dependabot[bot])4e92079: chore(deps-dev): bump @types/node from 22.7.5 to 22.7.6 in /ui-test (#20414) (@dependabot[bot])adf08ed: chore(deps-dev): bump @types/node from 22.7.6 to 22.7.9 in /ui-test (#20514) (@dependabot[bot])14ba221: chore(deps-dev): bump @types/node from 22.7.9 to 22.8.4 in /ui-test (#20588) (@dependabot[bot])16649c6: chore(deps-dev): bump @types/node from 22.8.4 to 22.8.7 in /ui-test (#20647) (@dependabot[bot])c92efcf: chore(deps-dev): bump @types/node from 22.8.7 to 22.9.3 in /ui-test (#20932) (@dependabot[bot])52dbe51: chore(deps-dev): bump dotenv from 16.4.5 to 16.4.6 in /ui-test (#21031) (@dependabot[bot])89f222b: chore(deps-dev): bump dotenv from 16.4.6 to 16.4.7 in /ui-test (#21051) (@dependabot[bot])c6d45d8: chore(deps-dev): bump typescript from 5.6.2 to 5.6.3 in /ui-test (#20302) (@dependabot[bot])e8d5265: chore(deps-dev): bump typescript from 5.6.3 to 5.7.2 in /ui-test (#20931) (@dependabot[bot])Other work
b14f1d1: Add Alarm.com to users list. (#20672) (@max-lancaster)faa1009: Add Alauda to USERS (#20936) (@tossmilestone)d8fe100: Docs: Added prerequisites for argoCD, fork and clone repository, upstreaming, common make targets, steps before submitting a PR. (#20540) (@Shubhamzanzad)2bf5dc6: Fix application url for custom base href (#21377) (#21516) (@gcp-cherry-pick-bot[bot])38546a5: Fix docs/user-guide/diffing.md code block (#20596) (@q-yusufmahtab)acfc03e: Fix minor grammatical error in operator manual overview (#20691) (@Dutchy-)bc15ae8: Fix typo (#20127) (@symaras)5b25b28: Fixed incorrect pluralization on resources (#20468) (@yashrtalele)04e47cd: Fixes minor typo which lead to using the bearer token as api URL and was obviously not working. (#20169) (@appiepollo14)d59c85c: Merge commit from fork (@svghadi)8dbddb1: Update golang test image to use 1.23.4 multiarch (#21174) (@todaywasawesome)99560fb: Update troubleshooting-errors.md (#20201) (@todaywasawesome)ed311fe: add docs to build site locally (#20342) (@nitishfy)5d0a3e6: add flaglerhealth.io to userlist (#20724) (@XinyuanHu)0de5f60: chore(appset): reduce dupe code w/ DB (#21192) (@crenshaw-dev)d17aafd: chore(ci): add renovate for golangci-lint, go and node version (#20236) (@ggjulio)d3a3fe5: chore(ci): better handling of Go and Node dependency bumps (#20168) (@crenshaw-dev)7b1c076: chore(ci): update renovate config (#20254) (@ggjulio)8647db1: chore(controller): remove unnecessary field (#20295) (@crenshaw-dev)c216ece: chore(server): better error message for missing action (#20408) (#20409) (@crenshaw-dev)9203dd1: chore(server): simplify project validation logic (#21191) (@crenshaw-dev)45bbd46: chore(ui): fix sonarcloud warning (#16496) (@crenshaw-dev)79abbbe: chore: Add TextNow to USERS.md (#20602) (@nikolai-momot)d963b61: chore: Add some empty dir volume mounts for the application controller (#19474) (#19480) (@andrii-korotkov-verkada)9757866: chore: Add support for AdditionalURLs field in server settings query (#21045) (@andrii-korotkov-verkada)5f8de97: chore: Added unit tests and fix e2e tests for application sync decoupling feature (#19966) (@anandf)a7ff791: chore: Don't degrade PDB on InsufficientPods (#20171) (#20665) (@andrii-korotkov-verkada)e2eb655: chore: Fix data race detection failures in application tests (#21271) (#21302) (@gcp-cherry-pick-bot[bot])fc9b33b: chore: Fix get-previous-release test case (#20863) (@leoluz)9587ec9: chore: Fix to intermittent E2E test failures in deployment_test.go (#20974) (@jgwest)9009e57: chore: Graceful handling of panic in application set controller reconcile (#20935) (#20940) (@andrii-korotkov-verkada)018014c: chore: Graceful shutdown for API Server (#18642) (#21224) (#21229) (@gcp-cherry-pick-bot[bot])3c366ed: chore: Improve a sync with replace warning (#14161) (#20638) (@andrii-korotkov-verkada)bd322fe: chore: Improve the documentation regarding the selection of Application by Sync Windows (#21093) (@thecooldrop)a8e70e4: chore: Make dev env redis password protected (#19863) (@reggie-k)19bdbca: chore: Optimize e2e tests by improving EnsureCleanState (#20942) (@andrii-korotkov-verkada)97701f3: chore: Optimize e2e tests by removing redundant ensure clean state + some refactoring (#20939) (@andrii-korotkov-verkada)bd5d76f: chore: Parallelize EnsureCleanState for e2e tests, adding timing information (#20998) (@andrii-korotkov-verkada)4d306f1: chore: Reduse e2e tests runtime by using better sleep intervals in Expect (#20926) (@andrii-korotkov-verkada)5fc306e: chore: Remove or reduce sleep in e2e tests (#21010) (@andrii-korotkov-verkada)8320f88: chore: Remove sleep from when/then in e2e tests (#21008) (@andrii-korotkov-verkada)fc1986e: chore: Try to make CodeQL happy (#20094) (#20129) (@jsoref)1675b0b: chore: Update USERS.md (#20513) (@rohen-compatio)3f249ff: chore: Update notification engine to2fef5c9(#20276) (@ayatk)73fbcc9: chore: add bajaj finserv health ltd. in list of users (#20555) (@coderchirag-bfhl)71658c8: chore: add ziprecruiter to users (#21076) (@fffinkel)deb4d2b: chore: avoid unnecessary alloc (#21121) (@crenshaw-dev)ae028c2: chore: bump gitops-engine for performance improvement (#19954) (@crenshaw-dev)14a1a55: chore: bump gitops-engine for performance improvements (#19953) (@crenshaw-dev)9a76d9f: chore: bump k8s versions in e2e tests (#19669) (@crenshaw-dev)604c75b: chore: change invalid comment (#20500) (@pasha-codefresh)881025b: chore: cover cli utils and prompts utils with tests (#20674) (@pasha-codefresh)f869d23: chore: document credentials server (#20078) (@crenshaw-dev)2998687: chore: enable perfsprint linter (#20685) (@mmorel-35)cc98925: chore: enable thelper linter (#20405) (@mmorel-35)e0ebb02: chore: enable usestdlibvars linter (#20399) (@mmorel-35)0d7f1f7: chore: fix tests failing with Kustomize based errors (#21037) (@dudinea)0573ed7: chore: improve error logs (#20050) (@ajinkyak423)5c01cf6: chore: improve error logs in commands/admin/app.go (#20549) (@rameshgkwd05)0f872f5: chore: improve error logs in server/cluster/cluser.go (#20711) (@SuminSSon)6a09102: chore: log panics in JSON (#20924) (#20925) (@crenshaw-dev)90a1489: chore: reduce default max payload size in webhooks to 50MB (#21101) (@pasha-codefresh)e878ad5: chore: remove unused defaults from image workflow (#21183) (@crenshaw-dev)62a84d5: chore: rename Rollout 'Restart' action to 'Restart Pods' (#20841) (@crenshaw-dev)76537ce: chore: rename force-prompts-enabled to prompts-enabled flag name (#20752) (@pasha-codefresh)f506127: chore: rename protobuf field according to convention (#20221) (@alexmt)e1472f3: chore: replacing custom map util functions with golang std (#20311) (@DaanV2)6cf363c: chore: setting up 2.14 release champion and approver (#20870) (@rumstead)0cdbc3c: chore: simplify 'get repo' API implementation (#20348) (@crenshaw-dev)72c711e: chore: simplify sync status comparison (#21140) (@crenshaw-dev)4776e48: chore: update azure/kubelogin to address CVE (#20578) (@imjasonh)5583ebd: chore: update notifications-engine to22ccfe0(#20239) (@SLASHLogin)35c12d9: chore: use %q to simplify fmt.Sprintf (#21108) (@marinesnow34)5cdb1a0: chore: use new fake k8s client constructor (#21186) (@crenshaw-dev)7cc5907: chore: use testify instead of testing.Fatal or testing.Error in applicationset (#20726) (@mmorel-35)6b3e532: chore: use testify instead of testing.Fatal or testing.Error in cmd (#20750) (@mmorel-35)993d79c: chore: use testify instead of testing.Fatal or testing.Error in server (#20755) (@mmorel-35)0da5744: chore: use testify instead of testing.Fatal or testing.Error in test (#20754) (@mmorel-35)a6cce1d: chore: use testify instead of testing.Fatal or testing.Error in util (#20751) (@mmorel-35)ddb79fe: ci: Allow forks to opt-in for codeql (#19996) (@jsoref)f4d1e0f: clarify usage ofreffor multiple sources doc (#21011) (@agoddard)4e21523: doc: Update Show Orphaned Button Screenshot in Orphaned Resources Monitoring Documentation (#20533) (@jaehanbyun)b4b6307: doc: fix grammar (#21004) (@corneliusroemer)4745e08: docs(2.14): adding basic upgrading docs for 2.14 (#21744) (#21752) (@rumstead)1bbeab7: feat(clusters) - Add disableCompression option in the cluster config (#20291) (@OpenGuidou)7f417e2: fix notificaion controller crash loop (#19984) (@pasha-codefresh)52d5653: fix notification-catlog issue (#20237) (@ajinkyak423)d85a1de: fix(#18495): Add Alternate color of resources in sync panel (#19250) (@xyq175com)e80de49: fix(controller/ui): fix pod with sidecar state (#19843) (@linghaoSu)21026db: fixed formatting issue + added a few tidbits (#20522) (@fideloper)bcc224b: prevent crash during timer expiration after stream is closed (#19917) (@morapet)c090f84: pruned-icon-changed-to-trash (#21088) (@surajyadav1108)2f51067: psmdb.percona.com/PerconaServerMongoDB resource customization (#20628) (@niv8)83eb0b1: rerender when extensions update (#20559) (@imwithye)3570d7d: sec: update alpine/helm to 3.16.1 (#20253) (@pasha-codefresh)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.13.4...v2.14.0
v2.13.8Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
This release fixes a critical security issue: GHSA-2hj5-g64g-fp6p
Bug fixes
97fd4ac: fix(appset): generated app errors should use the default requeue (#21887) (cherry-pick #21936) (#22673) (@gcp-cherry-pick-bot[bot])41ab259: fix(test): broken e2e test (cherry-pick #22975) (#23053) (@gcp-cherry-pick-bot[bot])Other work
d508e3b: Merge commit from fork (@crenshaw-dev)6612b7b: chore: replace heptio-images with argocd-e2e-container (cherry-pick #23040) (#23056) (@nitishfy)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.13.7...v2.13.8
v2.13.7Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
0f65a3f: fix(cli): wrong variable to store --no-proxy value (cherry-pick #21226) (#22591) (@gcp-cherry-pick-bot[bot])bb70a1f: fix: Check placement exists before length check (#22060) (#22057) (#22505) (@aali309)Dependency updates
4b11800: chore(deps): update github.com/expr-lang/expr to v1.17.0 (#22610) (@aali309)fb5624c: chore(deps): update go-jose library from 4.0.2 to 4.0.5 (#22560) (@aali309)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.13.6...v2.13.7
v2.13.6Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
43f3cff: fix(ci): use pinned Helm version for init-release (#22164) (#22472) (@crenshaw-dev)17a535f: fix(server): Fix server crash due to race condition in go-redis triggered by DNS instability (#22251) (@anandf)3875dde: fix: CVE-2025-26791 upgrading redoc dep to 2.4.0, DOMPurify before 3.2.4 (#21966) (@nmirasch)6ef7f61: fix: correct lookup for the kustomization file when applying patches (cherry-pick #22024) (#22087) (@nitishfy)c7937f1: fix: correctly set compareWith when requesting app refresh with delay (fixes #18998) (cherry-pick #21298) (#21953) (@gcp-cherry-pick-bot[bot])6207fd0: fix: handle annotated git tags correctly in repo server cache (#21771) (#22397) (@aali309)Dependency updates
58ded15: chore(deps): bump github.com/golang-jwt/jwt to 4.5.2 (#22466) (@crenshaw-dev)Other work
8d02798: chore: Update change log for 2.13.6 (#22438) (@keithchong)180d689: chore: cherry-pick #21786 for v2.13 (#21906) (@nitishfy)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.13.5...v2.13.6
v2.13.5Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
49771c1: fix(ui): Solve issue with navigating with dropdown from an application's page (cherry-pick #21737) (#21747) (@gcp-cherry-pick-bot[bot])c6112c0: fix: Add proxy registry key by dest server + name (cherry-pick #21791) (#21793) (@gcp-cherry-pick-bot[bot])Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.13.4...v2.13.5
v2.13.4Compare Source
Quick Start
Non-HA:
HA:
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
2fe4536: fix(appset): events not honouring configured namespaces (#21219) (#21241) (#21520) (@eadred)99aaf43: fix: Policy/policy.open-cluster-management.io stuck in progressing status when no clusters match the policy (#21296) (cherry-pick #21297) (#21594) (@gcp-cherry-pick-bot[bot])2618ccc: fix: login return_url doesn't work with custom server paths (cherry-pick #21588) (#21603) (@gcp-cherry-pick-bot[bot])53dc116: fix: oras-go client should fallback to docker config if no credentials specified (cherry-pick 2.13 #18133) (#20872) (@eestolano)fd67e49: fix: resolve the failing e2e appset tests for ksonnet applications (cherry-pick #21580) (#21605) (@gcp-cherry-pick-bot[bot])Documentation
c0f847f: docs: Update Screenshot in Orphaned Resources Monitoring Section #20510 (cherry-pick #20533) (#21489) (@gcp-cherry-pick-bot[bot])c8a62bb: docs: add mkdocs configuration stanza to .readthedocs.yaml (cherry-pick #21475) (#21609) (@gcp-cherry-pick-bot[bot])Dependency updates
2e794fb: chore(deps): bump github.com/go-git/go-git/v5 from 5.12.0 to 5.13.0 (cherry-pick #21329) (#21401) (@gcp-cherry-pick-bot[bot])38e02ab: chore(deps): bump go-git version to go-git/v5 5.13.1 (#21551) (@aali309)Other work
49163b0: Fix application url for custom base href (#21377) (#21515) (@gcp-cherry-pick-bot[bot])10b9589: Merge commit from fork (@svghadi)Full Changelog: https://github.com/argoproj/argo-cd/compare/v2.13.3...v2.13.4
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.
a769bcdd7ato85a872362a85a872362ato6d296da6f0Checkout
From your project repository, check out a new branch and test the changes.