| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: cmctl-bash-completion | Distribution: openSUSE Tumbleweed |
| Version: 2.4.1 | Vendor: openSUSE |
| Release: 1.2 | Build date: Wed Feb 25 10:29:59 2026 |
| Group: System/Shells | Build host: reproducible |
| Size: 78497 | Source RPM: cmctl-2.4.1-1.2.src.rpm |
| Packager: https://bugs.opensuse.org | |
| Url: https://github.com/cert-manager/cmctl | |
| Summary: Bash Completion for cmctl | |
Bash command line completion support for cmctl.
Apache-2.0
* Wed Feb 25 2026 Johannes Kastl <opensuse_buildservice@ojkastl.de>
- Update to version 2.4.1:
This patch release is to fix several reported vulnerabilities,
notably including GO-2026-4394 and CVE-2025-68121.
* chore(deps): update actions/checkout action to v6.0.1 by
@octo-sts[bot] in #355
* fix(deps): update module github.com/spf13/cobra to v1.10.2 by
@octo-sts[bot] in #358
* fix(deps): update module sigs.k8s.io/gateway-api to v1.4.1 by
@octo-sts[bot] in #359
* fix(deps): update module helm.sh/helm/v3 to v4 by
@renovate[bot] in #363
* fix(deps): update golang.org/x deps by @renovate[bot] in #365
* fix(deps): update module github.com/cert-manager/cert-manager
to v1.19.2 by @renovate[bot] in #367
* fix(deps): update kubernetes go patches to v0.34.3 by
@renovate[bot] in #370
* fix(deps): update module helm.sh/helm/v3 to v3.19.3 by
@renovate[bot] in #372
* fix(deps): update module helm.sh/helm/v3 to v3.19.4 by
@renovate[bot] in #374
* fix(deps): update kubernetes go deps to v0.35.0 by
@renovate[bot] in #377
* Upgrade to Helm v4 by @erikgb in #381
* fix(deps): update k8s.io/utils digest to 914a6e7 by
@renovate[bot] in #384
* chore(deps): update actions/setup-go action to v6.2.0 by
@renovate[bot] in #388
* fix(deps): update module golang.org/x/crypto to v0.47.0 by
@renovate[bot] in #387
* fix(deps): update module helm.sh/helm/v4 to v4.0.5 by
@renovate[bot] in #389
* fix(deps): update module sigs.k8s.io/controller-runtime to
v0.23.0 by @renovate[bot] in #391
* chore(deps): update actions/checkout action to v6.0.2 by
@renovate[bot] in #395
* fix(deps): update module helm.sh/helm/v4 to v4.1.0 by
@renovate[bot] in #394
* fix(deps): update module sigs.k8s.io/controller-runtime to
v0.23.1 by @renovate[bot] in #398
* chore(deps): update docker/login-action digest to c94ce9f by
@renovate[bot] in #400
* fix(deps): update module github.com/cert-manager/cert-manager
to v1.19.3 by @renovate[bot] in #403
* Use correct Renovate preset config by @erikgb in #402
* fix(deps): update module golang.org/x/mod to v0.32.0 by
@renovate[bot] in #407
* fix(deps): update golang.org/x deps by @renovate[bot] in #409
* fix(deps): update kubernetes go patches to v0.35.1 by
@renovate[bot] in #412
* fix(deps): update module helm.sh/helm/v4 to v4.1.1 by
@renovate[bot] in #408
* Bump otel to address GO-2026-4394 by @SgtCoDFish in #418
* Thu Dec 04 2025 Johannes Kastl <opensuse_buildservice@ojkastl.de>
- Update to version 2.4.0:
* Bump the all group across 1 directory with 11 updates by
@dependabot[bot] in #261
* Bump helm to address reported vulns by @SgtCoDFish in #269
* Bump the all-go-deps group with 9 updates by @dependabot[bot]
in #271
* Bump actions/checkout from 4 to 5 in the all-gh-actions group
by @dependabot[bot] in #272
* Manual self upgrade by @erikgb in #275
* fix(deps): update golang.org/x deps by @github-actions[bot] in
[#276]
* Migrate to Go YAML v3 by @erikgb in #280
* fix(deps): update module github.com/stretchr/testify to v1.11.0
by @github-actions[bot] in #281
* Migrate away from archived github.com/google/gofuzz by @erikgb
in #283
* Manual self-upgrade by @erikgb in #287
* fix(deps): update module github.com/stretchr/testify to v1.11.1
by @github-actions[bot] in #285
* fix(deps): update misc go deps by @github-actions[bot] in #291
* fix(deps): upgrade Kubernetes to 1.34 by @erikgb in #294
* chore(deps): update actions/setup-go action to v6 by
@octo-sts[bot] in #300
* chore(deps): pin dependencies by @octo-sts[bot] in #299
* fix(deps): update module golang.org/x/sync to v0.17.0 by
@octo-sts[bot] in #308
* fix(deps): update golang.org/x deps by @octo-sts[bot] in #310
* fix(deps): update module sigs.k8s.io/controller-runtime to
v0.22.1 by @octo-sts[bot] in #309
* fix(deps): update kubernetes go patches to v0.34.1 by
@octo-sts[bot] in #312
* Bootstrap shared Renovate preset by @erikgb in #315
* Ungroup cert-manager dependency by @erikgb in #316
* fix(deps): update misc go deps by @octo-sts[bot] in #303
* chore(deps): update docker/login-action digest to 5e57cd1 by
@octo-sts[bot] in #322
* fix(deps): update module sigs.k8s.io/gateway-api to v1.4.0-rc.2
by @octo-sts[bot] in #318
* fix(deps): update kubernetes go deps by @octo-sts[bot] in #325
* fix(deps): update module github.com/cert-manager/cert-manager
to v1.19.0 by @octo-sts[bot] in #326
* fix(deps): update module sigs.k8s.io/controller-runtime to
v0.22.3 by @octo-sts[bot] in #331
* fix(deps): update golang.org/x deps by @octo-sts[bot] in #328
* fix(deps): update module github.com/cert-manager/cert-manager
to v1.19.1 by @octo-sts[bot] in #334
* fix(deps): update k8s.io/utils digest to bc988d5 by
@octo-sts[bot] in #333
* fix(deps): update module golang.org/x/sync to v0.18.0 by
@octo-sts[bot] in #341
* fix(deps): update golang.org/x deps by @octo-sts[bot] in #343
* fix(deps): update kubernetes go patches to v0.34.2 by
@octo-sts[bot] in #344
* fix(deps): update module helm.sh/helm/v3 to v3.19.2 by
@octo-sts[bot] in #342
* fix(deps): update module sigs.k8s.io/controller-runtime to
v0.22.4 by @octo-sts[bot] in #339
* fix(deps): update module golang.org/x/crypto to v0.45.0 by
@octo-sts[bot] in #347
* chore(deps): update misc github actions by @octo-sts[bot] in
[#346]
* chore(deps): update actions/checkout action to v6 by
@octo-sts[bot] in #348
* feat: publish images on release by @ThatsMrTalbot in #352
* chore: move release gh action to cncf runner by @ThatsMrTalbot
in #356
* Fri Jul 11 2025 Johannes Kastl <opensuse_buildservice@ojkastl.de>
- Update to version 2.3.0:
* Bump golang.org/x/crypto in the all group across 1 directory
* make generate
* Add new fields to the internal API types
* Update github.com/cert-manager/cert-manager to version 1.18.2
* Update goreleaser config to v2
* make upgrade-klone
* Update github.com/cert-manager/cert-manager to v1.17.4
* Update k8s.io/utils to version
0.0.0-20250604170112-4c0f3b243397
* Update k8s.io/kube-aggregator to version 0.33.2
* Update github.com/sergi/go-diff to version 1.4.0
* Update golang.org/x/sync to version 0.16.0
* Update github.com/go-logr/logr to version 1.4.3
* Update sigs.k8s.io/yaml to version 1.5.0
* Update sigs.k8s.io/controller-runtime to version 0.21.0
* Update helm.sh/helm/v3 to v3.18.4 to fix CVE-2025-53547
* Run 'make upgrade-klone' and 'make generate'
* Bump the all group with 2 updates
* Tue Apr 29 2025 Johannes Kastl <opensuse_buildservice@ojkastl.de>
- Update to version 2.2.0:
* Bump the all group across 1 directory with 9 updates by
@dependabot in #118
* Bump sigs.k8s.io/gateway-api from 1.1.0 to 1.2.0 in the all
group by @dependabot in #129
* Bump golang.org/x/crypto from 0.27.0 to 0.28.0 in the all group
by @dependabot in #130
* Bump helm.sh/helm/v3 from 3.16.1 to 3.16.2 in the all group by
@dependabot in #134
* Move old API definitions into this repo by @inteon in #121
* Bump github.com/cert-manager/cert-manager from 1.16.0 to 1.16.1
in the all group by @dependabot in #136
* Bump the all group across 1 directory with 12 updates by
@dependabot in #145
* Bump github.com/cert-manager/cert-manager from 1.16.1 to 1.16.2
in the all group by @dependabot in #147
* Bump the all group across 1 directory with 10 updates by
@dependabot in #150
* Bump the all group across 1 directory with 4 updates by
@dependabot in #156
* Bump the all group across 1 directory with 9 updates by
@dependabot in #160
* Bump helm.sh/helm/v3 from 3.16.3 to 3.16.4 in the all group by
@dependabot in #163
* Bump golang.org/x/net to v0.33.0 by @kashifest in #167
* Bump the all group across 1 directory with 13 updates by
@dependabot in #178
* Bump cert-manager dependency to 1.17.x by @erikgb in #205
* Bump the all group across 1 directory with 13 updates by
@dependabot in #206
* Bump the all group with 3 updates by @dependabot in #207
* Bump helm.sh/helm/v3 from 3.17.2 to 3.17.3 in the all group by
@dependabot in #208
* Bump containerd to patch CVE-2024-40635 by @lentzi90 in #215
* Add distributed releases to README.md by @inteon in #216
* Bump the all group across 1 directory with 10 updates by
@dependabot in #221
* fix: secret tests were failing on osx due to difference in
error message format by @ThatsMrTalbot in #218
* Sat Sep 14 2024 opensuse_buildservice@ojkastl.de
- Update to version 2.1.1:
* Bump golang.org/x/crypto from 0.26.0 to 0.27.0 in the all group
* BOT: run 'make upgrade-klone' and 'make generate'
* Run 'make upgrade-klone' and 'make generate'
* use same error format in test helpers
* add v1.15.2-alpha.0 as an exception to fetch
* Bump the all group across 1 directory with 11 updates
* Bump the all group across 1 directory with 2 updates
* Bump github.com/cert-manager/cert-manager in the all group
* Run 'make upgrade-klone' and 'make generate'
* Bump the all group with 8 updates
* run 'make generate'
* run 'make upgrade-klone'
* Bump the all group across 1 directory with 2 updates
* Bump the all group across 1 directory with 11 updates
* Tue Jun 11 2024 opensuse_buildservice@ojkastl.de
- Update to version 2.1.0:
* [CI] Merge self-upgrade into main by @github-actions in #35
* Bump the all group with 10 updates by @dependabot in #39
* BUGFIX: return correct error codes and add tests by @inteon in
[#40]
* [CI] Merge self-upgrade into main by @github-actions in #41
* [CI] Merge self-upgrade into main by @github-actions in #42
* Add go Makefile module by @inteon in #43
* Bump the all group with 4 updates by @dependabot in #50
* [CI] Merge self-upgrade into main by @github-actions in #45
* Fix linters by @inteon in #44
* [CI] Merge self-upgrade into main by @github-actions in #51
* Upgrade repository-base module by @inteon in #52
* [CI] Merge self-upgrade-main into main by @github-actions in
[#54]
* Bump the all group across 1 directory with 9 updates by
@dependabot in #55
* [CI] Merge self-upgrade-main into main by @github-actions in
[#56]
* [CI] Merge self-upgrade-main into main by @github-actions in
[#58]
* Bump github.com/cert-manager/cert-manager from 1.14.4 to 1.14.5
in the all group by @dependabot in #57
* Bump the all group across 1 directory with 2 updates by
@dependabot in #63
* [CI] Merge self-upgrade-main into main by @github-actions in
[#60]
* escape dot in regular expression by @wangli1030 in #66
* [CI] Merge self-upgrade-main into main by @github-actions in
[#64]
* Fix gosec errors and enable gosec linter by @inteon in #59
* docs: create RELEASE.md file documenting release process by
@ThatsMrTalbot in #68
* Run 'make klone-upgrade' and fix broken generator flags by
@inteon in #71
* [CI] Merge self-upgrade-main into main by @github-actions in
[#69]
* Bump the all group across 1 directory with 10 updates by
@dependabot in #70
* [CI] Merge self-upgrade-main into main by @github-actions in
[#73]
* Prepare for cert-manager v1.15.0: cleanup imports, point to
local test package by @inteon in #76
* Bump the all group across 1 directory with 3 updates by
@dependabot in #75
* Bump golang.org/x/crypto from 0.23.0 to 0.24.0 in the all group
by @dependabot in #77
* testdata fetcher: add exception for the v1.15.0-beta.0 release
which was abandoned by @inteon in #78
* [CI] Merge self-upgrade-main into main by @github-actions in
[#79]
* Bump the all group with 4 updates by @dependabot in #80
* Make the binary dynamically determine whether it is a kubectl
plugin by @inteon in #61
* Add tar.gz artifacts to the GH releases by @inteon in #81
* Fri Jun 07 2024 opensuse_buildservice@ojkastl.de
- change upstream URL to https://github.com/cert-manager/cmctl,
as the package was split out of the cert-manager repository
- Update to version 2.0.0:
v2.0.0 is the first cmctl release after moving the code from
cert-manager/cert-manager to cert-manager/cmctl.
From now on, we officially decouple the cmctl version from the
cert-manager version and version cmctl separately.
- chore: add thatsmrtalbot as reviewer by @ThatsMrTalbot in #16
- BUGFIX: re-enable install test and fix flags which were not
parsed correctly by @inteon in #14
- BREAKING: remove the default flag value for --v by @inteon in
[#12]
- Remove unused functions & variables by @inteon in #15
- Fix cmctl renew flags validation by @jace-ys in #20
- Uninstall flags bugfix by @inteon in #28
- Add uninstall tests by @inteon in #29
- Cleanup uninstall flags by @inteon in #30
- Make uninstalling cert-manager SAFE: don't uninstal the CRDs by
@inteon in #13
- Bugfix typos: Organizational(Unit) by @inteon in #31
- Move versionchecker from cert-manager/cert-manager to this repo
+ refactor tests by @inteon in #17
- Pass context through cmd and use RunE instead of Run by @inteon
in #33
* Fri Jun 07 2024 opensuse_buildservice@ojkastl.de
- Update to version 1.14.6:
* Update cmd/ctl's go.mod to v1.14.5
* Thu Apr 25 2024 opensuse_buildservice@ojkastl.de
- Update to version 1.14.5:
* [release-1.14] fix CVE-2023-45288, bump base images, bump go
* make update-licenses
* Bump github.com/go-jose/go-jose to v3.0.3 to fix CVE-2024-28180
* Update cmd/ctl's go.mod to v1.14.4
* Fri Mar 15 2024 opensuse_buildservice@ojkastl.de
- Update to version 1.14.4:
* upgrade Helm to fix CVE-2024-26147
* upgrade google.golang.org/protobuf fixing GO-2024-2611
* Update cmd/ctl's go.mod to v1.14.3
* Sat Feb 24 2024 opensuse_buildservice@ojkastl.de
- Update to version 1.14.3:
* run 'make update-licenses'
* bump base images and CVE dependencies
* Update cmd/ctl's go.mod to v1.14.2
* Thu Feb 08 2024 opensuse_buildservice@ojkastl.de
- Update to version 1.14.2:
* Bug or Regression
- BUGFIX: cert-manager CA and SelfSigned issuers incorrectly
copied the critical flag from the CSR instead of
re-calculating that field themselves. (#6727, @jetstack-bot)
- Helm: Fix a bug in the logic that differentiates between 0
and an empty value. (#6729, @jetstack-bot)
* Sat Feb 03 2024 opensuse_buildservice@ojkastl.de
- Update to version 1.14.1 (1.14.0 was not released):
cert-manager 1.14 brings a variety of features, security
improvements and bug fixes, including: support for creating X.509
certificates with "Other Name" fields, and support for creating
CA certificates with "Name Constraints" and "Authority
Information Accessors" extensions.
* Changes since 1.14.0:
- Fix broken cainjector image value in Helm chart (#6693,
@SgtCoDFish)
- Fix bug in cmctl namespace detection which prevented it being
used as a startupapicheck image in namespaces other than
cert-manager. (#6706, @inteon)
- Fix bug in cmctl which caused cmctl experimental install to
panic. (#6706, @inteon)
* Breaking Changes
- The startupapicheck job uses a new OCI image called
"startupapicheck", instead of the ctl image. If you run in
an environment in which images cannot be pulled, be sure to
include the new image.
- The KeyUsage and BasicConstraints extensions will now be
encoded as critical in the CertificateRequest's CSR blob.
* New X.509 Features
- The cert-manager Certificate resource now allows you to
configure a subset of "Other Name" SANs, which are described
in the Subject Alternative Name section of RFC 5280 (on page
37).
- We specifically support any otherName type with a UTF-8
value, such as the User Principal Name or sAMAccountName.
These are useful when issuing unique certificates for
authenticating with LDAP systems such as Microsoft Active
Directory. The feature is still in alpha stage and requires
you to enable the OtherName feature flag in the controller
and webhook components.
* New CA certificate Features
- You can now specify the X.509 v3 Authority Information
Accessors extension, with URLs for certificates issued by the
CA issuer.
- Users can now use name constraints in CA certificates. To
know more details on name constraints check out RFC section
https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.10
* Security
- An ongoing security audit of the cert-manager code revealed
some weaknesses which we have addressed in this release, such
as using more secure default settings in the HTTP servers
that serve metrics, healthz and pprof endpoints. This will
help mitigate denial-of-service attacks against those
important services.
- All the cert-manager containers are now configured with read
only root file system by default, to prevent unexpected
changes to the file system of the OCI image.
- And it is now possible to configure the metrics server to use
HTTPS rather than HTTP, so that clients can verify the
identity of the metrics server.
* Other
- The liveness probe of the cert-manager controller Pod is now
enabled by default.
- There is a new option .spec.keystores.pkcs12.algorithms to
specify encryption and MAC algorithms for PKCS.
* Fri Dec 08 2023 kastl@b1-systems.de
- Update to version 1.13.3:
* upgrade otel, docker and jose to fix CVE alerts
* Mon Oct 30 2023 kastl@b1-systems.de
- Update to version 1.13.2:
* update ctl's cert-manager dependency to latest 1.13 commit
* bump go dependencies to fix remaining HTTP2 CVE alerts
* bump otel version and related dependencies
* [release-1.13] Bump /x/net to address CVE-2023-44487 /
CVE-2023-39325
* [release-1.13] update go-licenses to incorporate Tim's changes
* Wed Sep 27 2023 kastl@b1-systems.de
- Update to version 1.13.1:
* import latest release-1.13 commit in cmctl
* fix go-restful 'DO NOT USE' version
* Wed Sep 13 2023 kastl@b1-systems.de
- Update to version 1.13.0:
* update cert-manager version imported by cmctl to the latest
'release-1.13' commit
* upgrade dependencies
* fix trivy CVE alert for cyphar/filepath-securejoin
* upgrade docker dependencies
* upgrade cert-manager to latest master digest
* upgrade to k8s 1.28.1
* upgrade all dependencies
* cleanup: some redundant code clean up
* update comment and explain why we use cmdutil.CheckErr
* check api, only log if -v is set
* use logging library in cmctl
* downgrade k8s.io/kube-openapi
* run 'make tidy'
* Bump k8s.io dependencies
* add validation to pki CertificateTemplate function and add
support for add DontAllowInsecureCSRUsageDefinition featuregate
to use old behavior in controller
* Update cmd/cmctl's go.mod to v1.13.0-alpha.0
* if wait is set to 0, we still want to check the API once
* Bump sigs.k8s.io/controller-runtime to v0.15.0
* Updates cmctl to point at latest cert-manager
* Bump k8s.io dependencies
* upgrade all our docker deps
* replace go.mod replace statements with require statements
* allow importing the ctl cmd package
* make update-licenses
* Bumps Helm to latest release
* Bumps c/r to latest commit
* use a concrete cert-manager version for cmctl
* replace deprecated wait.PollUntil() and wait.Poll()
* Tue Sep 05 2023 Johannes Kastl <kastl@b1-systems.de>
- update to 1.12.4:
no changes in cmctl in this release, all changes betweeen 1.12.3
and 1.12.4 are in other parts of the code.
Nevertheless, to keep in sync, we release this version.
* Thu Jul 27 2023 Johannes Kastl <kastl@b1-systems.de>
- update to 1.12.3:
* BUGFIX: 1-character bug was causing invalid log messages and a
memory leak (#6235, @jetstack-bot)
* Fri Jun 16 2023 kastl@b1-systems.de
- Update to version 1.12.2:
* if wait is set to 0, we still want to check the API once
* Fri May 26 2023 kastl@b1-systems.de
- Update to version 1.12.1:
* Bump cert-manager in cmctl to latest 1.12 commit
* Add a note that folks should not use top level helm
featureGates value to pass webhook flags
* Bump sigs.k8s.io/controller-runtime to v0.15.0
* Don't run API Priority and Fairness controller in webhook
extension apiserver
* Bump k8s.io dependencies
* Bumps kubebuilder SHAs
* Mon May 22 2023 kastl@b1-systems.de
- Update to version 1.12.0:
changelog to large to add, please see here
https://github.com/cert-manager/cert-manager/releases/tag/v1.12.0
- BuildRequire go1.20
* Wed May 10 2023 kastl@b1-systems.de
- Update to version 1.11.2:
* Bump kube libs
* Bump Docker
* [release-1.11] Bump go and base images to latest
* Adds kube 1.27 kind image
* [release-1.11] add gcb configuration file for building
cert-manager when tag pushed
* add go workspace files to gitignore
* Thu Apr 13 2023 kastl@b1-systems.de
- Update to version 1.11.1:
* Bump distroless base images and kind versions
* make: force the use of registry.k8s.io by ingressnginx
* update k8s.gcr.io to registry.k8s.io
* use jetstack vcert fork to properly reset on error for TPP
* bump go version
* update base images to latest
* bump dependencies to fix CVEs
* e2e: the vault addon was incorrectly using StdoutPipe
* bump base images to latest
* Code review feedback: fix imports
* Resets secrets lister in RFC2136 conformance tests
* RFC2136 solver has an init option to reset secrets lister
* A bunch of comments on webhook solver functionality
* Bump keystore-go to v4.4.1
* Use fake kube apiserver version when generating helm template
in cmctl x install
* Wed Jan 11 2023 kastl@b1-systems.de
- BuildRequire go1.19
- Update to version 1.11.0:
* Bump go to 1.19.5
* Bump containerd to fix reported vuln
* bump base images to latest
* Policy check ensures that cert.sepc.secretName secret gets labelled
* Keymanager controller ensures that temporary private key Secrets are labelled
* Issuing controller ensures that cert.spec.secretName secrets are labelled
* Adds a new label to cert-manager API
* move custom acmesolver image above extraArgs
* Log error if CA source is in a namespace that is not in scope
* Fix cainjector's namespace flag
* Code review feedback- better comment
* Bump golang.org/x/crypto and golang.org/x/oauth2
* Fix integration tests
* Ensures that only one secrets cache is created for cert-manager controller
* bump base images to latest
* avoid logging confusing error messages for external issuers
* Allow custom helm values files to be supplied to make ko-deploy-certmanager
* Remove trailing escape slash
* various ginkgo tweaks
* Remove duplicate ko-deploy-cert-manager make target
* use template when generating tempdir in verify-crds
* update LICENSES (make update-licenses)
* vcert: upgrade to v4.23.0 to fix "Click Retry" and "WebSDK CertRequest"
* fix(AzureDNS): suppress original message in adal.TokenRefreshError to prevent early CR reconciliations due to unique data (timestamp, Trace ID) that lands to CR status
* helm: add option to override ACME HTTP-01 solver image
* Bump sigs.k8s.io deps
* Bump supported versions of k8s mentioned in the helm chart
* Add some experimental ko based build and deploy tools
* update base images to latest
* Bump version of contour helm chart + images
* Add ko tool
* bump golang.org/x/net version to fix trivy vulns
* update SECURITY policy to exclude vuln reports
* Enable + use k8s 1.26 for e2e tests by default
* Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.10.0 to 3.10.3. - [Release notes](https://github.com/helm/helm/releases) - [Commits](helm/helm@v3.10.0...v3.10.3)
* add + use CABundle field for ACME servers in issuers
* change wording on descriptions for Vault and TPP 'CABundle' fields
* Update controller-runtime to v0.14.0
* kubebuilder did not yet create a 1.26 release
* add WithLegacy function to our fake discovery client
* Bump k8s.io deps to v0.26.0
* feat: Add max-concurrent-challenges parameter to helm
* fix kubebuilder tools arm64 sha256sum
* bump dep versions to fix trivy-reported vulns
* Fixed a typo in helm chart values
* bump go to 1.19.4
* remove verify-licenses from ci-presubmit
* Addressing review comments
* Updating CRDs
* Addressing review comments
* Update internal/controller/certificates/policies/checks.go
* Refreshing secrets when the keystore fields change
* Gateway and GatewayClass for tests are created against beta Gateway API
* Corrects test Gateway resources
* Removes unused check
* Updates Gateway API test dependency
* Bumps Contour Helm chart version
* Tests download Gateway installation bundle
* Update reference to HTTPRoute docs
* feature: update gateway api to v1beta1
* e2e: use Vault 1.12.1 instead of the outdated 1.2.3
* Return error when Gateway has a cross-namespace secret ref
* Use distinct manifest dirs for signed / unsigned manifests
* Add boilerplate comment
* Add error case + list all supported OIDs in cannonical order
* Make test assertion more specific to slice, need to verify ordering of rdns
* e2e test confirming LDAP rdn literalsubject in generated certificate
* chore(AzureDNS): added more comments as requested by @wallrj
* Test that the Sign function *does* use the Vault namespace
* Recreate the original behaviour of sending a Vault token to the unauthenticated sys/health endpoint.
* Remove unused Token method
* Remove unused Sys methods
* Test
* Set the Vault namespace using the official method in the vault SDK
* Gofmt files
* Add support for required LDAP (rfc4514) RDNs in LiteralSubject
* feat(AzureDNS): add a test for federated SPT
* fix: featureGates add webhook deployment in chart yaml
* updating to match feedback and adjust the RunAsNonRoot options for http01 solver to be more descriptive
* fail in case of invalid IP address
* enable basicConstraints feature in e2e environments by default
* Addressing review comments
* improve gen.CSR and use it everywhere
* Fix typos in explanatory comment
* Always initialize tlsClientConfig if the default is nil
* Use RenegotiateOnceAsClient and explain why
* chore(Azure): improve naming, add comments
* fix x/text vuln and ignore AWS vuln
* bump to latest go minor version to fix vulns
* Adding unit tests
* add make target for updating base images
* bump base / kind images
* re-order Helm parameters & move some values to constants
* feat: add commonLabels to webhook configmap
* Fixing CA flag in basic constraints extension
* feat(Azure): add support for workload identity
* fix: update scorecard not running
* Fire event for informational purposes when the CertificateRequest has not yet been approved.
* remove devel folder
* update base and kind images
* don't write to devel folder when updating kind images
* final update to old devel kind images
* minor language tweaks to README and ROADMAP
* Remove the old Helm chart for Vault
* [NIT] Changing variable name to denote right type
* [NIT] Changing variable name to denote right type
* use Vault Helm Chart provied by Hashicorp
* Add scorecard badge to README
* Add Scorecard Action yml
* Wed Jan 11 2023 kastl@b1-systems.de
- Update to version 1.10.2:
* Bump containerd to fix reported vuln
* bump base images to latest
* Code review feedback- better comment
* Fix integration tests
* Ensures that only one secrets cache is created for cert-manager controller
* avoid logging confusing error messages for external issuers
* use template when generating tempdir in verify-crds
* bump base images to latest versions
* bump helm version to fix CVE-2022-23525
* bump version of contour helm chart to 10.0.1
* enable testing with k8s 1.26 by adding new kind image
* bump base images to latest versions
* bump dep versions to fix trivy-reported vulns
* remove verify-licenses from ci-presubmit
* bump go to 1.19.4
* Use distinct manifest dirs for signed / unsigned manifests
* fix x/text vuln and ignore AWS vuln
/usr/share/bash-completion/completions/cmctl /usr/share/bash-completion/completions/kubectl-cert_manager
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Apr 7 22:37:12 2026