Compare commits

..

2 commits

Author SHA1 Message Date
renovate[bot]
d045f0f35f
Merge 1f89fff7af into c2592b6038 2024-10-18 14:22:37 +00:00
renovate[bot]
1f89fff7af
chore(deps): update docker image ghcr.io/fluxcd/helm-controller to v1.1.0 2024-09-26 23:05:13 +00:00
39 changed files with 152 additions and 227 deletions

View file

@ -3563,7 +3563,7 @@ spec:
fieldPath: metadata.namespace
- name: TUF_ROOT
value: /tmp/.sigstore
image: ghcr.io/fluxcd/source-controller:v1.4.1
image: ghcr.io/fluxcd/source-controller:v1.3.0
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@ -5299,7 +5299,7 @@ spec:
valueFrom:
fieldRef:
fieldPath: metadata.namespace
image: ghcr.io/fluxcd/kustomize-controller:v1.4.0
image: ghcr.io/fluxcd/kustomize-controller:v1.3.0
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:
@ -7975,7 +7975,7 @@ spec:
valueFrom:
fieldRef:
fieldPath: metadata.namespace
image: ghcr.io/fluxcd/notification-controller:v1.4.0
image: ghcr.io/fluxcd/notification-controller:v1.3.0
imagePullPolicy: IfNotPresent
livenessProbe:
httpGet:

View file

@ -1,6 +1,6 @@
image:
repository: adguard/adguardhome
tag: v0.107.54
tag: v0.107.53
env:
TZ: Europe/Amsterdam

View file

@ -4,7 +4,7 @@ controllers:
main:
image:
repository: flowiseai/flowise
tag: 2.2.0
tag: 1.8.4
command:
- flowise
- start

View file

@ -4,7 +4,7 @@ deployment:
image:
repository: quay.io/go-skynet/local-ai
#tag: latest-aio-gpu-nvidia-cuda-12
tag: v2.23.0-cublas-cuda12-ffmpeg
tag: v2.21.0-cublas-cuda12-ffmpeg
pullPolicy: Always
runtimeClassName: nvidia

View file

@ -1,7 +1,7 @@
image:
repository: docker.io/qdrant/qdrant
pullPolicy: IfNotPresent
tag: "v1.12.4"
tag: "v1.10.1"
useUnprivilegedImage: true
env:

View file

@ -8,7 +8,7 @@ installCRDs: true
global:
image:
repository: quay.io/argoproj/argocd
tag: v2.13.1
tag: v2.11.5
# imagePullPolicy: IfNotPresent
securityContext:
runAsUser: 999
@ -176,7 +176,7 @@ repoServer:
initContainers:
- name: copy-cmp-server
image: quay.io/argoproj/argocd:v2.13.1
image: quay.io/argoproj/argocd:v2.11.5
command:
- cp
- -n

View file

@ -1,6 +1,6 @@
image:
repository: ghcr.io/onedr0p/bazarr
tag: 1.4.5
tag: 1.4.3
ingress:
main:

View file

@ -1,6 +1,6 @@
image:
repository: ghcr.io/linuxserver/ombi
tag: 4.44.1
tag: 4.43.5
ingress:
main:

View file

@ -9,7 +9,7 @@ image:
# -- image repository
repository: ghcr.io/onedr0p/prowlarr-develop
# @default -- chart.appVersion
tag: "1.27"
tag: "1.21"
# -- image pull policy
pullPolicy: IfNotPresent

View file

@ -1,6 +1,6 @@
image:
repository: ghcr.io/onedr0p/radarr
tag: 5.15.1.9463
tag: 5.8.3.8933
env:
UMASK: "002"

View file

@ -1,6 +1,6 @@
image:
repository: ghcr.io/onedr0p/sonarr
tag: 4.0.11.2680
tag: 4.0.8.1874
securityContext:
privileged: true

View file

@ -42,19 +42,19 @@ apps:
namespace: ingress-internal
repoURL: https://kubernetes.github.io/ingress-nginx
chart: ingress-nginx
targetRevision: 4.11.3
targetRevision: 4.11.1
syncWave: '0'
- name: cilium
existingNamespace: kube-system
repoURL: https://helm.cilium.io
chart: cilium
targetRevision: 1.16.4
targetRevision: 1.15.9
- name: external-dns
repoURL: https://kubernetes-sigs.github.io/external-dns
chart: external-dns
targetRevision: 1.15.0
targetRevision: 1.14.5
secrets:
- name: cloudflare-api
keys:
@ -63,7 +63,7 @@ apps:
- name: external-dns-adguard
repoURL: https://kubernetes-sigs.github.io/external-dns
chart: external-dns
targetRevision: 1.15.0
targetRevision: 1.14.5
secrets:
- name: adguard-config
keys:
@ -75,7 +75,7 @@ apps:
namespace: cert-manager
repoURL: https://charts.jetstack.io
chart: cert-manager
targetRevision: v1.16.2
targetRevision: v1.15.3
secrets:
- name: cert-manager-vault-approle
keys:

View file

@ -64,7 +64,7 @@ ipv4:
ipv6:
enabled: false
kubeProxyReplacement: true
kubeProxyReplacement: strict
l2NeighDiscovery:
enabled: false
refreshPeriod: "30s"

View file

@ -4,7 +4,7 @@
image:
repository: registry.k8s.io/external-dns/external-dns
tag: "v0.15.0"
tag: "v0.14.2"
pullPolicy: IfNotPresent
shareProcessNamespace: false

View file

@ -4,7 +4,7 @@
image:
repository: registry.k8s.io/external-dns/external-dns
tag: "v0.15.0"
tag: "v0.14.2"
pullPolicy: IfNotPresent
shareProcessNamespace: false

View file

@ -6,7 +6,7 @@ apps:
- name: crossplane
repoURL: https://charts.crossplane.io/stable
chart: crossplane
targetRevision: 1.18.0
targetRevision: 1.16.0
secrets:
- name: terraform
keys:

View file

@ -1,7 +1,7 @@
---
image:
repository: ghcr.io/onedr0p/qbittorrent
tag: 5.0.2
tag: 4.6.5
ingress:
main:

View file

@ -13,7 +13,7 @@ strategy:
image:
registry: codeberg.org
repository: forgejo/forgejo
tag: "9.0"
tag: "7.0"
rootless: true
podSecurityContext:

View file

@ -5,7 +5,7 @@ apps:
- name: kube-prometheus-stack
repoURL: https://prometheus-community.github.io/helm-charts
chart: kube-prometheus-stack
targetRevision: 66.2.2
targetRevision: 60.5.0
secrets:
- name: grafana
keys:

View file

@ -11,7 +11,7 @@ grafana:
image:
repository: grafana/grafana
tag: 11.3.1
tag: 11.1.3
persistence:
enabled: true

View file

@ -2,7 +2,7 @@ loki:
enabled: true
image:
repository: grafana/loki
tag: 3.3.0
tag: 3.1.0
promtail:
enabled: true

View file

@ -24,7 +24,7 @@ server:
enabled: true
image:
repository: quay.io/prometheus/prometheus
tag: v2.55.1
tag: v2.53.1
strategy:
type: Recreate

View file

@ -4,7 +4,7 @@ controllers:
main:
image:
repository: homeassistant/home-assistant
tag: "2024.11"
tag: "2024.10"
env:
TZ: Europe/Berlin

View file

@ -1,6 +1,6 @@
image:
repository: influxdb
tag: 2.7.10-alpine
tag: 2.7.8-alpine
pullPolicy: IfNotPresent
## If specified, use these secrets to access the images
# pullSecrets:

View file

@ -172,7 +172,7 @@ sidecar:
# -- The image repository to pull from
repository: kiwigrid/k8s-sidecar
# -- The image tag to pull, default: `1.23.1`
tag: 1.28.0
tag: 1.27.5
# -- The image pull policy, default: `IfNotPresent`
pullPolicy: IfNotPresent
# -- The extra volume mounts for the sidecar

View file

@ -4,7 +4,7 @@ apps:
- name: homer
repoURL: https://djjudas21.github.io/charts
chart: homer
targetRevision: 8.2.2
targetRevision: 8.1.12
include:
- ingress-internal
- noRoot

View file

@ -1,6 +1,6 @@
image:
repository: b4bz/homer
tag: v24.11.5
tag: v24.05.1
initContainers:
clone-assets:

View file

@ -13,5 +13,5 @@ apps:
- name: ingress-external
repoURL: https://kubernetes.github.io/ingress-nginx
chart: ingress-nginx
targetRevision: 4.11.3
targetRevision: 4.11.1
syncWave: '0'

View file

@ -1,6 +1,6 @@
image:
repository: koenkk/zigbee2mqtt
tag: 1.41.0
tag: 1.39.0
service:
main:

View file

@ -1,6 +1,6 @@
image:
repository: ghcr.io/navidrome/navidrome
tag: 0.53.3
tag: 0.52.5
env:
TZ: "Europe/Amsterdam"
@ -71,4 +71,4 @@ resources:
cpu: 10m
memory: 50Mi
limits:
memory: 2Gi
memory: 750Mi

View file

@ -14,7 +14,7 @@ apps:
- name: nextcloud
repoURL: https://nextcloud.github.io/helm
chart: nextcloud
targetRevision: 6.2.4
targetRevision: 5.2.0
secrets:
- name: nextcloud-user
keys:

View file

@ -1,9 +1,9 @@
image:
tag: 30-fpm
tag: 29-fpm
pullPolicy: Always
nextcloud:
host: share.nold.in
host: share.gnu.one
extraEnv:
- name: HTTP_PROXY
value: http://proxy-squid.proxy.svc.cluster.local:3128
@ -76,8 +76,8 @@ ingress:
cert-manager.io/cluster-issuer: letsencrypt
traefik.ingress.kubernetes.io/router.tls: 'true'
kubernetes.io/ingress.class: ingress-external
external-dns.alpha.kubernetes.io/hostname: share.nold.in
external-dns.alpha.kubernetes.io/target: nold.in
external-dns.alpha.kubernetes.io/hostname: share.gnu.one
external-dns.alpha.kubernetes.io/target: gnu.one
external-dns.alpha.kubernetes.io/cloudflare-proxied: "false"
nginx.ingress.kubernetes.io/server-snippet: |-
@ -108,7 +108,7 @@ ingress:
tls:
- secretName: nextcloud-tls
hosts:
- share.nold.in
- share.gnu.one
nginx:
enabled: true

View file

@ -15,7 +15,7 @@ ingress:
- paperless.dc
image:
repository: ghcr.io/paperless-ngx/paperless-ngx
tag: 2.13.5
tag: 2.11.1
pullPolicy: IfNotPresent
# -- See the following files for additional environment variables:

View file

@ -11,7 +11,7 @@ apps:
namespace: s3
repoURL: https://charts.min.io
chart: minio
targetRevision: 5.3.0
targetRevision: 5.2.0
secrets:
- name: minio-root
keys:
@ -22,7 +22,7 @@ apps:
namespace: cnpg-system
repoURL: https://cloudnative-pg.github.io/charts
chart: cloudnative-pg
targetRevision: 0.22.1
targetRevision: 0.21.6
- name: redis-operator
repoURL: https://ot-container-kit.github.io/helm-charts

View file

@ -5,7 +5,7 @@ apps:
- name: vault
repoURL: https://helm.releases.hashicorp.com
chart: vault
targetRevision: 0.29.1
targetRevision: 0.28.1
syncWave: '-3'
ignoreDiff:
- group: "*"
@ -18,5 +18,5 @@ apps:
namespace: vault-secrets-operator
repoURL: https://ricoberger.github.io/helm-charts
chart: vault-secrets-operator
targetRevision: 2.6.1
targetRevision: 2.5.10
syncWave: '-2'

View file

@ -11,7 +11,7 @@ server:
enabled: true
image:
repository: "hashicorp/vault"
tag: "1.18.2"
tag: "1.17.2"
auditStorage:
accessMode: ReadWriteOnce
annotations: {}

View file

@ -19,7 +19,6 @@ env:
WOODPECKER_BACKEND_K8S_POD_ANNOTATIONS: ''
WOODPECKER_CONNECT_RETRY_COUNT: '1'
mapAgentSecret: false
# -- Add extra secret that is contains environment variables
extraSecretNamesForEnvFrom:
- woodpecker-secret

View file

@ -31,6 +31,10 @@ extraSecretNamesForEnvFrom:
- woodpecker-secret
- github-oauth
# -- Create a generic secret to store things in, e.g. env values
secrets:
- name: woodpecker-store
persistentVolume:
enabled: true
size: 10Gi

View file

@ -1,179 +1,101 @@
{
"enabled": true,
"timezone": "Europe/Berlin",
"dependencyDashboard": true,
"dependencyDashboardTitle": "Renovate Dashboard",
"commitMessageSuffix": "",
"commitBody": "",
"prHourlyLimit": 20,
"suppressNotifications": [
"prIgnoreNotification"
],
"rebaseWhen": "conflicted",
"assignees": [
"@nold360"
],
"helm-values": {
"fileMatch": [
"projects/.*/values/.+\\.ya?ml$"
]
},
"kubernetes": {
"fileMatch": [
"\\.ya?ml$"
"enabled": true,
"timezone": "Europe/Berlin",
"dependencyDashboard": true,
"dependencyDashboardTitle": "Renovate Dashboard",
"commitMessageSuffix": "",
"commitBody": "",
"suppressNotifications": ["prIgnoreNotification"],
"rebaseWhen": "conflicted",
"assignees": ["@nold360"],
"helm-values": {
"fileMatch": ["projects/.*/values/.+\\.ya?ml$"]
},
"kubernetes": {
"fileMatch": ["\\.ya?ml$"],
"ignorePaths": [
"projects",
"ansible",
"scripts",
".github"
]
},
"regexManagers": [
{
"fileMatch": ["project.ya?ml$"],
"matchStrings": [
"repoURL: (?<registryUrl>.*?)\n *chart: (?<depName>.*?)\n *targetRevision: (?<currentValue>.*)\n"
],
"datasourceTemplate": "helm"
}
],
"ignorePaths": [
"projects",
"ansible",
"scripts",
".github"
"packageRules": [
{
"datasources": ["helm"],
"managers": ["regex"],
"packageNames": [
"app-template",
"common"
],
"registryUrls": ["https://bjw-s.github.io/helm-charts"]
},
{
"datasources": ["helm"],
"commitMessageTopic": "Helm chart {{depName}}",
"separateMinorPatch": true
},
{
"datasources": ["docker"],
"commitMessageTopic": "Docker image {{depName}}",
"commitMessageExtra": "to {{#if isSingleVersion}}v{{{toVersion}}}{{else}}{{{newValue}}}{{/if}}",
"enabled": true,
"separateMinorPatch": true
},
{
"datasources": ["docker"],
"updateTypes": ["major"],
"labels": ["renovate/image-release", "dependency/major"]
},
{
"datasources": ["docker"],
"updateTypes": ["minor"],
"labels": ["renovate/image-release", "dependency/minor"]
},
{
"datasources": ["docker"],
"updateTypes": ["patch"],
"labels": ["renovate/image-release", "dependency/patch"]
},
{
"datasources": ["helm"],
"updateTypes": ["major"],
"labels": ["renovate/helm-release", "dependency/major"]
},
{
"datasources": ["helm"],
"updateTypes": ["minor"],
"labels": ["renovate/helm-release", "dependency/minor"]
},
{
"datasources": ["helm"],
"updateTypes": ["patch"],
"labels": ["renovate/helm-release", "dependency/patch"]
},
{
"datasources": ["docker"],
"automerge": true,
"requiredStatusChecks": null,
"schedule": "after 1am and before 5am",
"updateTypes": ["minor", "patch"],
"excludePackagePatterns": [ ".*cilium.*", ".*hubble.*", ".*cilium/operator"]
},
{
"datasources": ["helm"],
"automerge": true,
"requiredStatusChecks": null,
"schedule": "after 1am and before 5am",
"updateTypes": ["minor", "patch"],
"excludePackageNames": []
}
]
},
"customManagers": [
{
"customType": "regex",
"fileMatch": [
"project.ya?ml$"
],
"matchStrings": [
"repoURL: (?<registryUrl>.*?)\n *chart: (?<depName>.*?)\n *targetRevision: (?<currentValue>.*)\n"
],
"datasourceTemplate": "helm"
}
],
"packageRules": [
{
"matchDatasources": [
"helm"
],
"matchManagers": [
"custom.regex"
],
"matchPackageNames": [
"app-template",
"common"
],
"registryUrls": [
"https://bjw-s.github.io/helm-charts"
]
},
{
"matchDatasources": [
"helm"
],
"commitMessageTopic": "Helm chart {{depName}}",
"separateMinorPatch": true
},
{
"matchDatasources": [
"docker"
],
"commitMessageTopic": "Docker image {{depName}}",
"commitMessageExtra": "to {{#if isSingleVersion}}v{{{newVersion}}}{{else}}{{{newValue}}}{{/if}}",
"enabled": true,
"separateMinorPatch": true
},
{
"matchDatasources": [
"docker"
],
"matchUpdateTypes": [
"major"
],
"labels": [
"renovate/image-release",
"dependency/major"
]
},
{
"matchDatasources": [
"docker"
],
"matchUpdateTypes": [
"minor"
],
"labels": [
"renovate/image-release",
"dependency/minor"
]
},
{
"matchDatasources": [
"docker"
],
"matchUpdateTypes": [
"patch"
],
"labels": [
"renovate/image-release",
"dependency/patch"
]
},
{
"matchDatasources": [
"helm"
],
"matchUpdateTypes": [
"major"
],
"labels": [
"renovate/helm-release",
"dependency/major"
]
},
{
"matchDatasources": [
"helm"
],
"matchUpdateTypes": [
"minor"
],
"labels": [
"renovate/helm-release",
"dependency/minor"
]
},
{
"matchDatasources": [
"helm"
],
"matchUpdateTypes": [
"patch"
],
"labels": [
"renovate/helm-release",
"dependency/patch"
]
},
{
"matchDatasources": [
"docker"
],
"automerge": true,
"ignoreTests": true,
"schedule": "after 1am and before 5am",
"matchUpdateTypes": [
"minor",
"patch"
],
"matchPackageNames": [
"!/.*cilium.*/",
"!/.*hubble.*/",
"!/.*cilium/operator/"
]
},
{
"matchDatasources": [
"helm"
],
"automerge": true,
"ignoreTests": true,
"schedule": "after 1am and before 5am",
"matchUpdateTypes": [
"minor",
"patch"
],
"matchPackageNames": []
}
]
}
}