fix(deps): update all go dependencies main (patch) #1804
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v1.14.0-rc.0
->v1.14.0-snapshot.5
v1.56.1
->v1.56.2
Release Notes
cilium/cilium (github.com/cilium/cilium)
v1.14.0-snapshot.5
Compare Source
v1.14.0-snapshot.4
: 1.14.0-snapshot.4Compare Source
Summary of Changes
Major Changes:
Minor Changes:
enable-ipsec-key-watcher
to allow users to disable the IPsec key watcher and thus require an agent restart for the key rotation to take effect. (#25893, @pchaigno)envoyConfig.enabled
that can be used to enable CiliumEnvoyConfig CRD independently of Cilium Ingress controller. (#26005, @jrajahalme)peerPort
field to CiliumBGPPeeringPolicy for specifying the port of a BGP neighbor. If unspecified, port 179 is used. (#25809, @danehans)CiliumPodIPPool
resources in multi-pool IPAM mode (#25991, @gandro)Bugfixes:
toServices
policy where service backend churn left stale CIDR identities (#25687, @christarazi)cluster-pool
,kubernetes
, andcrd
when nodes are deleted.Fix incorrect catch-all default-drop XFRM OUT policy for IPsec IPv6 traffic that could lead to leaking plain-text IPv6 traffic if combined with some other bug. (#25953, @pchaigno)
CI Changes:
Misc Changes:
Fix operator panic that occurs when Endpoint CRD is disabled and CiliumEndpointSlice is enabled (#25798, @doniacld)
690e413
(main) (#25277, @renovate[bot])6b3fa4b
(main) (#26050, @renovate[bot])2a357c4
(main) (#26284, @renovate[bot])ac58ff7
(main) (#25295, @renovate[bot])cilium endpoint regenerate
command (#25949, @christarazi)net.IP*
for ingress IPs (#26045, @christarazi)cluster-pool-v2beta
(#25767, @gandro)Docker Manifests
cilium
docker.io/cilium/cilium:v1.14.0-snapshot.4@​sha256:dd75919c7b81d06289ffa1dcc0e238f77294a45c57212a87634f277f28835e7d
quay.io/cilium/cilium:v1.14.0-snapshot.4@​sha256:dd75919c7b81d06289ffa1dcc0e238f77294a45c57212a87634f277f28835e7d
clustermesh-apiserver
docker.io/cilium/clustermesh-apiserver:v1.14.0-snapshot.4@​sha256:2b844061901af8bd3da5bb99d893694c915e2ceee05e661131e2d684fb0de68c
quay.io/cilium/clustermesh-apiserver:v1.14.0-snapshot.4@​sha256:2b844061901af8bd3da5bb99d893694c915e2ceee05e661131e2d684fb0de68c
docker-plugin
docker.io/cilium/docker-plugin:v1.14.0-snapshot.4@​sha256:0282b913a1fecd2088d64296e492a1a786a3f839551bf00679ae469a4558b620
quay.io/cilium/docker-plugin:v1.14.0-snapshot.4@​sha256:0282b913a1fecd2088d64296e492a1a786a3f839551bf00679ae469a4558b620
hubble-relay
docker.io/cilium/hubble-relay:v1.14.0-snapshot.4@​sha256:5a04cc8b09a00a254466b09f8ff77b9e4e56954aa5ac13f43c8a7c05a5725cd1
quay.io/cilium/hubble-relay:v1.14.0-snapshot.4@​sha256:5a04cc8b09a00a254466b09f8ff77b9e4e56954aa5ac13f43c8a7c05a5725cd1
kvstoremesh
docker.io/cilium/kvstoremesh:v1.14.0-snapshot.4@​sha256:a6c5a3f0f420fde69d4e60fdda82bd78c244fb2c12d09a6041a636840a02cc17
quay.io/cilium/kvstoremesh:v1.14.0-snapshot.4@​sha256:a6c5a3f0f420fde69d4e60fdda82bd78c244fb2c12d09a6041a636840a02cc17
operator-alibabacloud
docker.io/cilium/operator-alibabacloud:v1.14.0-snapshot.4@​sha256:86e40be4fac515ec3aae3f54bad8b7112ed0001a860c86092342dfd49fb5b97f
quay.io/cilium/operator-alibabacloud:v1.14.0-snapshot.4@​sha256:86e40be4fac515ec3aae3f54bad8b7112ed0001a860c86092342dfd49fb5b97f
operator-aws
docker.io/cilium/operator-aws:v1.14.0-snapshot.4@​sha256:449e30b7bf5492adfc605c50a1a0f5fc822af20ec6787fa93070a22fd5524731
quay.io/cilium/operator-aws:v1.14.0-snapshot.4@​sha256:449e30b7bf5492adfc605c50a1a0f5fc822af20ec6787fa93070a22fd5524731
operator-azure
docker.io/cilium/operator-azure:v1.14.0-snapshot.4@​sha256:72055583294266a78a2262d17fba2129f568946ba61708ee89e2bf74f7da693b
quay.io/cilium/operator-azure:v1.14.0-snapshot.4@​sha256:72055583294266a78a2262d17fba2129f568946ba61708ee89e2bf74f7da693b
operator-generic
docker.io/cilium/operator-generic:v1.14.0-snapshot.4@​sha256:1bfe879fff900180000265743afde223c809e3189c8dd704b1c10fb0ccedba6f
quay.io/cilium/operator-generic:v1.14.0-snapshot.4@​sha256:1bfe879fff900180000265743afde223c809e3189c8dd704b1c10fb0ccedba6f
operator
docker.io/cilium/operator:v1.14.0-snapshot.4@​sha256:2d47129ebb7bfca3b65e628c0eaaf02d1708ae4aedd29d70ea0f9dc282a7ebda
quay.io/cilium/operator:v1.14.0-snapshot.4@​sha256:2d47129ebb7bfca3b65e628c0eaaf02d1708ae4aedd29d70ea0f9dc282a7ebda
v1.14.0-snapshot.3
: 1.14.0-snapshot.3Compare Source
Summary of Changes
Major Changes:
Minor Changes:
ipam.cilium.io/ip-pool
annotation (#25511, @gandro)enable-endpoint-routes
withenable-high-scale-ipcache
. (#25601, @pchaigno)Bugfixes:
x-forwarded-for
header by adding an explicituse_remote_address: true
config to Envoy HTTP configuration to always use the actual remote address of the incoming connection rather than the value ofx-forwarded-for
header, which may originate from an untrusted source. This change has no effect on Cilium policy enforcement where the source security identity is always resolved before HTTP headers are parsed. Previous Cilium behavior of not addingx-forwarded-for
headers is retained via an explicitskip_xff_append: true
config setting, except for Cilium Ingress where the source IP address is now appended tox-forwarded-for
header. (#25674, @jrajahalme)Configuration
📅 Schedule: Branch creation - "on friday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.