diff --git a/.github/workflows/auto-update.yaml b/.github/workflows/auto-update.yaml index 8764464..d0ca713 100644 --- a/.github/workflows/auto-update.yaml +++ b/.github/workflows/auto-update.yaml @@ -20,5 +20,5 @@ concurrency: jobs: auto-update: - uses: defenseunicorns/uds-common/.github/workflows/callable-auto-update.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-auto-update.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit # Inherits all secrets from the parent workflow. diff --git a/.github/workflows/commitlint.yaml b/.github/workflows/commitlint.yaml index b0405d3..32805e2 100644 --- a/.github/workflows/commitlint.yaml +++ b/.github/workflows/commitlint.yaml @@ -15,4 +15,4 @@ permissions: jobs: validate: - uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index 83fb420..2839d98 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -15,5 +15,5 @@ permissions: jobs: validate: - uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 3d1950f..2f44364 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -27,7 +27,7 @@ jobs: exclude: - flavor: registry1 architecture: arm64 - uses: defenseunicorns/uds-common/.github/workflows/callable-publish.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-publish.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 with: flavor: ${{ matrix.flavor }} options: --set BASE_REPO="ghcr.io/uds-packages" diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml index 5431303..9478f79 100644 --- a/.github/workflows/scan.yaml +++ b/.github/workflows/scan.yaml @@ -18,5 +18,5 @@ jobs: packages: read # Allows reading the content of the repository's packages. id-token: write # Allows authentication to Chainguard via OIDC. pull-requests: write # Allows writing the scan results comment to the pull request. - uses: defenseunicorns/uds-common/.github/workflows/callable-scan.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-scan.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit # Inherits all secrets from the parent workflow. diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index d0a7798..d4547d2 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -32,5 +32,5 @@ jobs: security-events: write # Used to receive a badge. id-token: write - uses: defenseunicorns/uds-common/.github/workflows/callable-scorecard.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-scorecard.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index f9d6008..4327935 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -29,7 +29,7 @@ jobs: uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: test-flavor - uses: defenseunicorns/uds-common/.github/actions/test-flavor@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/actions/test-flavor@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 id: test-flavor outputs: upgrade-flavors: ${{ steps.test-flavor.outputs.upgrade-flavors }} @@ -41,8 +41,9 @@ jobs: matrix: type: [install, upgrade] flavor: [upstream, registry1, unicorn] - uses: defenseunicorns/uds-common/.github/workflows/callable-test.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-test.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 with: + options: --set BASE_REPO="ghcr.io/uds-packages" upgrade-flavors: ${{ needs.check-flavor.outputs.upgrade-flavors }} flavor: ${{ matrix.flavor }} type: ${{ matrix.type }} diff --git a/tasks.yaml b/tasks.yaml index 815f476..ffcae94 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -3,15 +3,15 @@ includes: - test: ./tasks/test.yaml - - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/create.yaml - - publish: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/publish.yaml - - lint: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/lint.yaml - - pull: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/pull.yaml - - deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/deploy.yaml - - setup: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/setup.yaml - - actions: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/actions.yaml - - badge: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/badge.yaml - - upgrade: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/upgrade.yaml + - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/create.yaml + - publish: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/publish.yaml + - lint: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/lint.yaml + - pull: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/pull.yaml + - deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/deploy.yaml + - setup: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/setup.yaml + - actions: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/actions.yaml + - badge: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/badge.yaml + - upgrade: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/upgrade.yaml tasks: - name: default @@ -42,7 +42,7 @@ tasks: - task: create:test-bundle - task: deploy:test-bundle -# CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names + # CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names - name: test-install description: Test the health of a Postgres Operator deployment diff --git a/values/values.yaml b/values/values.yaml index b46714e..be5a8c9 100644 --- a/values/values.yaml +++ b/values/values.yaml @@ -2,6 +2,7 @@ # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial configGeneral: + enable_crd_registration: false # Without enable_lazy_spilo_upgrade set to true the pods will do a rolling upgrade every resync_period. We have # experienced issues with database corruption when this happens. Deciding instead to do lazy upgrading which means the # StatefulSet is modified but a rolling update is not automatically triggered. diff --git a/zarf.yaml b/zarf.yaml index fe6de88..b874dc9 100644 --- a/zarf.yaml +++ b/zarf.yaml @@ -24,6 +24,7 @@ components: - https://github.com/zalando/postgres-operator/raw/v1.15.1/charts/postgres-operator/crds/operatorconfigurations.yaml - https://github.com/zalando/postgres-operator/raw/v1.15.1/charts/postgres-operator/crds/postgresqls.yaml - https://github.com/zalando/postgres-operator/raw/v1.15.1/charts/postgres-operator/crds/postgresteams.yaml + serverSideApply: "false" - name: postgres-operator required: true only: