Comparing changes

## Description This adds the Made for UDS badge and additional docs on the PeerAuthentication exceptions to GitLab ## Related Issue Fixes #164 ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [X] Other (security config, docs update, etc) ## Checklist before merging - [X] Test, docs, adr added or updated as needed - [X] [Contributor Guide Steps](https://github.com/defenseunicorns/uds-package-gitlab/blob/main/CONTRIBUTING.md#developer-workflow) followed

## Description > [!IMPORTANT] > ⚠️ **BREAKING CHANGE** This is a breaking change that requires `uds-core` `v0.22.0` but locks down GitLab to have no `remoteGenerated: Anywhere` entries by default. ## Related Issue Relates to defenseunicorns/uds-core#558 ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [X] Other (security config, docs update, etc) ## Checklist before merging - [X] Test, docs, adr added or updated as needed - [X] [Contributor Guide Steps](https://github.com/defenseunicorns/uds-package-gitlab/blob/main/CONTRIBUTING.md#developer-workflow) followed

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [github/codeql-action](https://togithub.com/github/codeql-action) | action | patch | `v3.25.13` -> `v3.25.15` | | [renovatebot/pre-commit-hooks](https://togithub.com/renovatebot/pre-commit-hooks) | repository | major | `37.440.4` -> `38.7.1` | Note: The `pre-commit` manager in Renovate is not supported by the `pre-commit` maintainers or community. Please do not report any problems there, instead [create a Discussion in the Renovate repository](https://togithub.com/renovatebot/renovate/discussions/new) if you have any questions. --- ### Release Notes <details> <summary>github/codeql-action (github/codeql-action)</summary> ### [`v3.25.15`](https://togithub.com/github/codeql-action/compare/v3.25.14...v3.25.15) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.25.14...v3.25.15) ### [`v3.25.14`](https://togithub.com/github/codeql-action/compare/v3.25.13...v3.25.14) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.25.13...v3.25.14) </details> <details> <summary>renovatebot/pre-commit-hooks (renovatebot/pre-commit-hooks)</summary> ### [`v38.7.1`](https://togithub.com/renovatebot/pre-commit-hooks/releases/tag/38.7.1) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/38.7.0...38.7.1) See https://github.com/renovatebot/renovate/releases/tag/38.7.1 for more changes ### [`v38.7.0`](https://togithub.com/renovatebot/pre-commit-hooks/releases/tag/38.7.0) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/38.5.0...38.7.0) See https://github.com/renovatebot/renovate/releases/tag/38.7.0 for more changes ### [`v38.5.0`](https://togithub.com/renovatebot/pre-commit-hooks/compare/38.4.0...38.5.0) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/38.4.0...38.5.0) ### [`v38.4.0`](https://togithub.com/renovatebot/pre-commit-hooks/releases/tag/38.4.0) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/38.1.0...38.4.0) See https://github.com/renovatebot/renovate/releases/tag/38.4.0 for more changes ### [`v38.1.0`](https://togithub.com/renovatebot/pre-commit-hooks/releases/tag/38.1.0) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/37.440.7...38.1.0) See https://github.com/renovatebot/renovate/releases/tag/38.1.0 for more changes ### [`v37.440.7`](https://togithub.com/renovatebot/pre-commit-hooks/releases/tag/37.440.7) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/37.440.6...37.440.7) See https://github.com/renovatebot/renovate/releases/tag/37.440.7 for more changes ### [`v37.440.6`](https://togithub.com/renovatebot/pre-commit-hooks/compare/37.440.5...37.440.6) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/37.440.5...37.440.6) ### [`v37.440.5`](https://togithub.com/renovatebot/pre-commit-hooks/compare/37.440.4...37.440.5) [Compare Source](https://togithub.com/renovatebot/pre-commit-hooks/compare/37.440.4...37.440.5) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7am and before 9am every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View the [repository job log](https://developer.mend.io/github/defenseunicorns/uds-package-gitlab).  --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Wayne Starr <me@racer159.com>

## Description Swap over to accept `openid-connect` instead of `openid_connect`. ## Related Issue Fixes #N/A ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [X] Other (security config, docs update, etc) ## Checklist before merging - [X] Test, docs, adr added or updated as needed - [X] [Contributor Guide Steps](https://github.com/defenseunicorns/uds-package-gitlab/blob/main/CONTRIBUTING.md#developer-workflow) followed Release-As: v17.1.2-uds.2

## Description This fixes the autosignin key docs since that must be an underscore `_` ## Related Issue Fixes #N/A ## Type of change - [X] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [ ] Other (security config, docs update, etc) ## Checklist before merging - [X] Test, docs, adr added or updated as needed - [X] [Contributor Guide Steps](https://github.com/defenseunicorns/uds-package-gitlab/blob/main/CONTRIBUTING.md#developer-workflow) followed Refs: 59e3954

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Update | Change | |---|---|---| | [gitlab](https://about.gitlab.com/) ([source](https://gitlab.com/gitlab-org/charts/gitlab)) | minor | `8.1.2` -> `8.1.3` | | registry.gitlab.com/gitlab-org/build/cng/certificates | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/cfssl-self-sign | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitaly | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-container-registry | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-exporter | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-pages | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-shell | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ee | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-toolbox-ee | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ee | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/gitlab-workhorse-ee | minor | `v17.1.2` -> `v17.2.1` | | registry.gitlab.com/gitlab-org/build/cng/kubectl | minor | `v17.1.2` -> `v17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/certificates](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/certificates)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitaly](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitaly)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-container-registry](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-container-registry)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-exporter](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-exporter)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-pages](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-pages)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-shell](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-shell)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-sidekiq](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-sidekiq)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-toolbox](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-toolbox)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-webservice](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-webservice)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/gitlab-workhorse](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/gitlab-workhorse)) | minor | `17.1.2` -> `17.2.1` | | [registry1.dso.mil/ironbank/gitlab/gitlab/kubectl](https://about.gitlab.com/) ([source](https://repo1.dso.mil/dsop/gitlab/gitlab/kubectl)) | minor | `17.1.2` -> `17.2.1` | --- ### Release Notes <details> <summary>gitlab-org/charts/gitlab (gitlab)</summary> ### [`v8.2.1`](https://gitlab.com/gitlab-org/charts/gitlab/blob/HEAD/CHANGELOG.md#821-2024-07-24) [Compare Source](https://gitlab.com/gitlab-org/charts/gitlab/compare/v8.2.0...v8.2.1) ##### Changed (1 change) - [Update gitlab-org/charts/gitlab-runner from 0.66.0 to 0.67.0](https://gitlab.com/gitlab-org/security/charts/gitlab/-/commit/28a61a472f39a3da9aba14a518b3375f3831274d) ### [`v8.2.0`](https://gitlab.com/gitlab-org/charts/gitlab/blob/HEAD/CHANGELOG.md#820-2024-07-17) [Compare Source](https://gitlab.com/gitlab-org/charts/gitlab/compare/v8.1.3...v8.2.0) ##### Added (5 changes) - [Add support for configuring node affinity](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/d46049c5b7c6aea1d6fbbdf2e72eaf4da34da2a7) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3770)) - [Add StartupProbe for Gitaly](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/4e9e27c504109a783f88625252996c130a9e8ed6) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3828)) - [Pages namespace in path configuration](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/35fb7358830e4773be5eba44bcd2afabf5d17fa6) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3821)) - [Registry: add redis rate-limiter connection settings](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/2190cbb778854f2af461033d0fa1c3bf930b830d) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3794)) - [GitLab Shell: Support public key algorithms](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/ca16729ed341b873e6aae80b74e803e2348aa40e) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3798)) ##### Changed (4 changes) - [Update gitlab-org/gitlab-qa from 14.10.0 to 14.12.0](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/59a3c9d4bb40b02ae21b9d893d079af8734d0958) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3822)) - [Update gitlab-org/container-registry from 4.5.0-gitlab to 4.6.0-gitlab](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/6732226e39aab24b8a478a4a841e2bd94355a4d4) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3826)) - [Update cert-manager/cert-manager from 1.12.11 to 1.12.12](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/726af7eb0d223e28ba35b0287a3134ba267ddd01) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3817)) - [Update gitlab-org/charts/gitlab-runner from 0.65.0 to 0.66.0](https://gitlab.com/gitlab-org/charts/gitlab/-/commit/4b2f9346d27fa467ea97cc4f44794288e61325a8) ([merge request](https://gitlab.com/gitlab-org/charts/gitlab/-/merge_requests/3810)) ### [`v8.1.3`](https://gitlab.com/gitlab-org/charts/gitlab/blob/HEAD/CHANGELOG.md#813-2024-07-24) [Compare Source](https://gitlab.com/gitlab-org/charts/gitlab/compare/v8.1.2...v8.1.3) No changes. </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 7am and before 9am every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View the [repository job log](https://developer.mend.io/github/defenseunicorns/uds-package-gitlab).  --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Wayne Starr <me@racer159.com> Release-As: v17.2.1-uds.0

🤖 I have created a release *beep* *boop* --- ## [17.2.1-uds.0](v17.1.2-uds.1...v17.2.1-uds.0) (2024-07-29) ### ⚠ BREAKING CHANGES * remove egress anywhere for SSO ([#177](#177)) ### Miscellaneous * add PeerAuthentication docs and Made for UDS Badge ([#174](#174)) ([4909378](4909378)) * **deps:** update gitlab package dependencies ([#171](#171)) ([f9c0081](f9c0081)) * **deps:** update gitlab support dependencies ([#175](#175)) ([d7be43a](d7be43a)) * remove egress anywhere for SSO ([#177](#177)) ([996181d](996181d)) * swap to `openid-connect` instead of `_` ([#179](#179)) ([59e3954](59e3954)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

-Original file line number
+Diff line change
@@ @@ -45,6 +45,6 @@ jobs: @@
           # Upload the results to GitHub's code scanning dashboard.
           - name: "Upload to code-scanning"
-            uses: github/codeql-action/upload-sarif@2d790406f505036ef40ecba973cc774a50395aac # v3.25.13
+            uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3.25.15
             with:
               sarif_file: results.sarif

-Original file line number
+Diff line change
@@ @@ -15,7 +15,7 @@ jobs: @@
         steps:
           - name: Create release tag
             id: tag
-            uses: google-github-actions/release-please-action@e4dc86ba9405554aeba3c6bb2d169500e7d3b4ee # v4.1.1
+            uses: googleapis/release-please-action@7987652d64b4581673a76e33ad5e98e3dd56832f # v4.1.3
           - id: release-flag
             run: echo "release_created=${{ steps.tag.outputs.release_created || false }}" >> $GITHUB_OUTPUT

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Comparing changes

Open a pull request

Commits on Jul 24, 2024

Commits on Jul 26, 2024

Commits on Jul 29, 2024

There are no files selected for viewing