From 76f4d196f16caebe165b467f4016f36c6862c4ef Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 21 Oct 2024 20:30:57 +0000 Subject: [PATCH] Update Helm release etcd to v9.15.2 Signed-off-by: Renovate Bot --- class/defaults.yml | 2 +- .../etcd/templates/networkpolicy.yaml | 27 +++++++++++++++ .../etcd/10_chart/etcd/templates/pdb.yaml | 4 ++- .../etcd/templates/serviceaccount.yaml | 12 +++++++ .../10_chart/etcd/templates/statefulset.yaml | 33 +++++++++++++++---- .../10_chart/etcd/templates/svc-headless.yaml | 5 ++- .../etcd/10_chart/etcd/templates/svc.yaml | 6 ++-- 7 files changed, 78 insertions(+), 11 deletions(-) create mode 100644 tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/networkpolicy.yaml create mode 100644 tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/serviceaccount.yaml diff --git a/class/defaults.yml b/class/defaults.yml index 453bee3..812c353 100644 --- a/class/defaults.yml +++ b/class/defaults.yml @@ -22,7 +22,7 @@ parameters: charts: etcd: source: https://charts.bitnami.com/bitnami - version: "9.1.0" + version: "9.15.2" helm_release_name: ${_instance} helm_values: diff --git a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/networkpolicy.yaml b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/networkpolicy.yaml new file mode 100644 index 0000000..6ee5dfe --- /dev/null +++ b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/networkpolicy.yaml @@ -0,0 +1,27 @@ +apiVersion: networking.k8s.io/v1 +kind: NetworkPolicy +metadata: + labels: + app.kubernetes.io/component: etcd + app.kubernetes.io/instance: etcd + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: etcd + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 + name: etcd + namespace: syn-etcd +spec: + egress: + - {} + ingress: + - ports: + - port: 2379 + - port: 2380 + podSelector: + matchLabels: + app.kubernetes.io/component: etcd + app.kubernetes.io/instance: etcd + app.kubernetes.io/name: etcd + policyTypes: + - Ingress + - Egress diff --git a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/pdb.yaml b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/pdb.yaml index f710bce..e8c7e88 100644 --- a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/pdb.yaml +++ b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/pdb.yaml @@ -2,10 +2,12 @@ apiVersion: policy/v1 kind: PodDisruptionBudget metadata: labels: + app.kubernetes.io/component: etcd app.kubernetes.io/instance: etcd app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: etcd - helm.sh/chart: etcd-9.1.0 + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 name: etcd namespace: syn-etcd spec: diff --git a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/serviceaccount.yaml b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/serviceaccount.yaml new file mode 100644 index 0000000..6c0c781 --- /dev/null +++ b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/serviceaccount.yaml @@ -0,0 +1,12 @@ +apiVersion: v1 +automountServiceAccountToken: false +kind: ServiceAccount +metadata: + labels: + app.kubernetes.io/instance: etcd + app.kubernetes.io/managed-by: Helm + app.kubernetes.io/name: etcd + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 + name: etcd + namespace: syn-etcd diff --git a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/statefulset.yaml b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/statefulset.yaml index cf17121..6b6922a 100644 --- a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/statefulset.yaml +++ b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/statefulset.yaml @@ -6,7 +6,8 @@ metadata: app.kubernetes.io/instance: etcd app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: etcd - helm.sh/chart: etcd-9.1.0 + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 name: etcd namespace: syn-etcd spec: @@ -26,7 +27,8 @@ spec: app.kubernetes.io/instance: etcd app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: etcd - helm.sh/chart: etcd-9.1.0 + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 spec: affinity: nodeAffinity: null @@ -36,10 +38,12 @@ spec: - podAffinityTerm: labelSelector: matchLabels: + app.kubernetes.io/component: etcd app.kubernetes.io/instance: etcd app.kubernetes.io/name: etcd topologyKey: kubernetes.io/hostname weight: 1 + automountServiceAccountToken: false containers: - env: - name: BITNAMI_DEBUG @@ -124,14 +128,26 @@ spec: periodSeconds: 10 successThreshold: 1 timeoutSeconds: 5 - resources: - limits: {} - requests: {} securityContext: allowPrivilegeEscalation: false + capabilities: + drop: + - ALL + privileged: false + readOnlyRootFilesystem: false + runAsGroup: 0 runAsNonRoot: true runAsUser: 1001 + seLinuxOptions: null + seccompProfile: + type: RuntimeDefault volumeMounts: + - mountPath: /opt/bitnami/etcd/conf/ + name: empty-dir + subPath: app-conf-dir + - mountPath: /tmp + name: empty-dir + subPath: tmp-dir - mountPath: /bitnami/etcd name: data - mountPath: /opt/bitnami/etcd/certs/token/ @@ -145,8 +161,13 @@ spec: readOnly: true securityContext: fsGroup: 1001 - serviceAccountName: default + fsGroupChangePolicy: Always + supplementalGroups: [] + sysctls: [] + serviceAccountName: etcd volumes: + - emptyDir: {} + name: empty-dir - name: etcd-jwt-token secret: defaultMode: 256 diff --git a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc-headless.yaml b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc-headless.yaml index 60c3838..1005bf0 100644 --- a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc-headless.yaml +++ b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc-headless.yaml @@ -4,10 +4,12 @@ metadata: annotations: service.alpha.kubernetes.io/tolerate-unready-endpoints: 'true' labels: + app.kubernetes.io/component: etcd app.kubernetes.io/instance: etcd app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: etcd - helm.sh/chart: etcd-9.1.0 + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 name: etcd-headless namespace: syn-etcd spec: @@ -21,6 +23,7 @@ spec: targetPort: peer publishNotReadyAddresses: true selector: + app.kubernetes.io/component: etcd app.kubernetes.io/instance: etcd app.kubernetes.io/name: etcd type: ClusterIP diff --git a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc.yaml b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc.yaml index 82830a4..409ed59 100644 --- a/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc.yaml +++ b/tests/golden/defaults/etcd/etcd/10_chart/etcd/templates/svc.yaml @@ -1,12 +1,13 @@ apiVersion: v1 kind: Service metadata: - annotations: null labels: + app.kubernetes.io/component: etcd app.kubernetes.io/instance: etcd app.kubernetes.io/managed-by: Helm app.kubernetes.io/name: etcd - helm.sh/chart: etcd-9.1.0 + app.kubernetes.io/version: 3.5.12 + helm.sh/chart: etcd-9.15.2 name: etcd namespace: syn-etcd spec: @@ -20,6 +21,7 @@ spec: port: 2380 targetPort: peer selector: + app.kubernetes.io/component: etcd app.kubernetes.io/instance: etcd app.kubernetes.io/name: etcd sessionAffinity: None