From a44bec34cdb8cf2a9c94e5d83e5b30bbf860ce37 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 3 Apr 2026 18:28:21 +0000 Subject: [PATCH 1/7] chore(deps): update support-deps to v1.24.3 | datasource | package | from | to | | ----------- | -------------------------- | ------- | ------- | | github-tags | defenseunicorns/uds-common | v1.24.2 | v1.24.3 | --- .github/workflows/auto-update.yaml | 2 +- .github/workflows/commitlint.yaml | 2 +- .github/workflows/lint.yaml | 2 +- .github/workflows/release.yaml | 2 +- .github/workflows/scan.yaml | 2 +- .github/workflows/scorecard.yaml | 2 +- .github/workflows/test.yaml | 4 ++-- tasks.yaml | 18 +++++++++--------- 8 files changed, 17 insertions(+), 17 deletions(-) diff --git a/.github/workflows/auto-update.yaml b/.github/workflows/auto-update.yaml index 8764464..d0ca713 100644 --- a/.github/workflows/auto-update.yaml +++ b/.github/workflows/auto-update.yaml @@ -20,5 +20,5 @@ concurrency: jobs: auto-update: - uses: defenseunicorns/uds-common/.github/workflows/callable-auto-update.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-auto-update.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit # Inherits all secrets from the parent workflow. diff --git a/.github/workflows/commitlint.yaml b/.github/workflows/commitlint.yaml index b0405d3..32805e2 100644 --- a/.github/workflows/commitlint.yaml +++ b/.github/workflows/commitlint.yaml @@ -15,4 +15,4 @@ permissions: jobs: validate: - uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml index 83fb420..2839d98 100644 --- a/.github/workflows/lint.yaml +++ b/.github/workflows/lint.yaml @@ -15,5 +15,5 @@ permissions: jobs: validate: - uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 3d1950f..2f44364 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -27,7 +27,7 @@ jobs: exclude: - flavor: registry1 architecture: arm64 - uses: defenseunicorns/uds-common/.github/workflows/callable-publish.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-publish.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 with: flavor: ${{ matrix.flavor }} options: --set BASE_REPO="ghcr.io/uds-packages" diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml index 5431303..9478f79 100644 --- a/.github/workflows/scan.yaml +++ b/.github/workflows/scan.yaml @@ -18,5 +18,5 @@ jobs: packages: read # Allows reading the content of the repository's packages. id-token: write # Allows authentication to Chainguard via OIDC. pull-requests: write # Allows writing the scan results comment to the pull request. - uses: defenseunicorns/uds-common/.github/workflows/callable-scan.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-scan.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit # Inherits all secrets from the parent workflow. diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index d0a7798..d4547d2 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -32,5 +32,5 @@ jobs: security-events: write # Used to receive a badge. id-token: write - uses: defenseunicorns/uds-common/.github/workflows/callable-scorecard.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-scorecard.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 secrets: inherit diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index f9d6008..fb9ddc7 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -29,7 +29,7 @@ jobs: uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: test-flavor - uses: defenseunicorns/uds-common/.github/actions/test-flavor@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/actions/test-flavor@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 id: test-flavor outputs: upgrade-flavors: ${{ steps.test-flavor.outputs.upgrade-flavors }} @@ -41,7 +41,7 @@ jobs: matrix: type: [install, upgrade] flavor: [upstream, registry1, unicorn] - uses: defenseunicorns/uds-common/.github/workflows/callable-test.yaml@0cfdcaa2dbe7a539dec471edbb081c88b06fe8ec # v1.24.2 + uses: defenseunicorns/uds-common/.github/workflows/callable-test.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 with: upgrade-flavors: ${{ needs.check-flavor.outputs.upgrade-flavors }} flavor: ${{ matrix.flavor }} diff --git a/tasks.yaml b/tasks.yaml index 815f476..687bb83 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -3,15 +3,15 @@ includes: - test: ./tasks/test.yaml - - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/create.yaml - - publish: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/publish.yaml - - lint: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/lint.yaml - - pull: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/pull.yaml - - deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/deploy.yaml - - setup: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/setup.yaml - - actions: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/actions.yaml - - badge: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/badge.yaml - - upgrade: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.2/tasks/upgrade.yaml + - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/create.yaml + - publish: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/publish.yaml + - lint: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/lint.yaml + - pull: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/pull.yaml + - deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/deploy.yaml + - setup: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/setup.yaml + - actions: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/actions.yaml + - badge: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/badge.yaml + - upgrade: https://raw.githubusercontent.com/defenseunicorns/uds-common/v1.24.3/tasks/upgrade.yaml tasks: - name: default From 2b4bcd867122caef0b953289992933ad617aa9fe Mon Sep 17 00:00:00 2001 From: codyshoffner Date: Fri, 3 Apr 2026 13:53:43 -0500 Subject: [PATCH 2/7] ci: add base repo for testing --- .github/workflows/test.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index fb9ddc7..4327935 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -43,6 +43,7 @@ jobs: flavor: [upstream, registry1, unicorn] uses: defenseunicorns/uds-common/.github/workflows/callable-test.yaml@3185f4da527edbdfaa39d572c8120e0048b4128b # v1.24.3 with: + options: --set BASE_REPO="ghcr.io/uds-packages" upgrade-flavors: ${{ needs.check-flavor.outputs.upgrade-flavors }} flavor: ${{ matrix.flavor }} type: ${{ matrix.type }} From bfc6fadd1b5908ef4d3bc5b1743aff25061aaa8d Mon Sep 17 00:00:00 2001 From: codyshoffner Date: Mon, 6 Apr 2026 10:09:09 -0500 Subject: [PATCH 3/7] ci: testing --- tasks.yaml | 2 ++ values/values.yaml | 1 + 2 files changed, 3 insertions(+) diff --git a/tasks.yaml b/tasks.yaml index 687bb83..91b3e41 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -41,6 +41,8 @@ tasks: - task: create-dev-package - task: create:test-bundle - task: deploy:test-bundle + # with: + # options: "--force-conflicts" # CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names diff --git a/values/values.yaml b/values/values.yaml index b46714e..be5a8c9 100644 --- a/values/values.yaml +++ b/values/values.yaml @@ -2,6 +2,7 @@ # SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial configGeneral: + enable_crd_registration: false # Without enable_lazy_spilo_upgrade set to true the pods will do a rolling upgrade every resync_period. We have # experienced issues with database corruption when this happens. Deciding instead to do lazy upgrading which means the # StatefulSet is modified but a rolling update is not automatically triggered. From 0a9dd714f496a87b4dabb4f3cbd3f176e16bf29f Mon Sep 17 00:00:00 2001 From: codyshoffner Date: Mon, 6 Apr 2026 10:11:12 -0500 Subject: [PATCH 4/7] linting --- tasks.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/tasks.yaml b/tasks.yaml index 91b3e41..97d86ef 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -41,10 +41,10 @@ tasks: - task: create-dev-package - task: create:test-bundle - task: deploy:test-bundle - # with: + # with: # options: "--force-conflicts" -# CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names + # CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names - name: test-install description: Test the health of a Postgres Operator deployment From 909f441b8808f71861f3fd43f00541206e358076 Mon Sep 17 00:00:00 2001 From: codyshoffner Date: Mon, 6 Apr 2026 10:18:08 -0500 Subject: [PATCH 5/7] ci: testing --- tasks.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/tasks.yaml b/tasks.yaml index 97d86ef..f06b338 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -41,8 +41,8 @@ tasks: - task: create-dev-package - task: create:test-bundle - task: deploy:test-bundle - # with: - # options: "--force-conflicts" + with: + options: "--force-conflicts" # CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names From 8904d813f285a1fe26bb7ecbd75f5609e9bab465 Mon Sep 17 00:00:00 2001 From: codyshoffner Date: Mon, 6 Apr 2026 10:28:01 -0500 Subject: [PATCH 6/7] ci: testing --- tasks.yaml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/tasks.yaml b/tasks.yaml index f06b338..3f86c36 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -33,6 +33,8 @@ tasks: actions: - task: create:test-bundle - task: deploy:test-bundle + with: + options: "--force-conflicts" - task: test:all - name: dev @@ -59,6 +61,8 @@ tasks: - task: upgrade:create-latest-tag-bundle - task: setup:k3d-test-cluster - task: deploy:test-bundle + with: + options: "--force-conflicts" - task: create-dev-package - task: create-deploy-test-bundle From c3a44a1da046cb0f37c8f1d2e7f7af762558da57 Mon Sep 17 00:00:00 2001 From: codyshoffner Date: Mon, 6 Apr 2026 11:46:24 -0500 Subject: [PATCH 7/7] ci: testing --- tasks.yaml | 6 ------ zarf.yaml | 1 + 2 files changed, 1 insertion(+), 6 deletions(-) diff --git a/tasks.yaml b/tasks.yaml index 3f86c36..ffcae94 100644 --- a/tasks.yaml +++ b/tasks.yaml @@ -33,8 +33,6 @@ tasks: actions: - task: create:test-bundle - task: deploy:test-bundle - with: - options: "--force-conflicts" - task: test:all - name: dev @@ -43,8 +41,6 @@ tasks: - task: create-dev-package - task: create:test-bundle - task: deploy:test-bundle - with: - options: "--force-conflicts" # CI will execute the following (via uds-common/.github/workflows/callable-[test|publish].yaml) so they need to be here with these names @@ -61,8 +57,6 @@ tasks: - task: upgrade:create-latest-tag-bundle - task: setup:k3d-test-cluster - task: deploy:test-bundle - with: - options: "--force-conflicts" - task: create-dev-package - task: create-deploy-test-bundle diff --git a/zarf.yaml b/zarf.yaml index fe6de88..b874dc9 100644 --- a/zarf.yaml +++ b/zarf.yaml @@ -24,6 +24,7 @@ components: - https://github.com/zalando/postgres-operator/raw/v1.15.1/charts/postgres-operator/crds/operatorconfigurations.yaml - https://github.com/zalando/postgres-operator/raw/v1.15.1/charts/postgres-operator/crds/postgresqls.yaml - https://github.com/zalando/postgres-operator/raw/v1.15.1/charts/postgres-operator/crds/postgresteams.yaml + serverSideApply: "false" - name: postgres-operator required: true only: