Release Notes v1.112

Yake release notes and upgrade guide

danger

The registryOverwrite configuration is no longer supported. Please use other methods to point to internal registry mirrors or caches:

Update backup-s3 to 0.7.1

General Changes

Remove deployment anti affinity rule. (#12) @Gerrit91

Update gardener-controlplane to 1.110.3

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] Fix bug where gardenlet was missing permissions to read v1.Events in the istio ingress namespace in the seed cluster. by @vpnachev [#11163]

🏃 Others

[DEPENDENCY] The gardener/vpn2 image has been updated to 0.34.0. Release Notes by @gardener-ci-robot [#11161]
[OPERATOR] Fix a bug in the gardener operator where the issuer URL domain for workload identity tokens was not prefixed with discovery. resulting in invalid OIDC tokens and discovery documents. by @vpnachev [#11158]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.3
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.3
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.3
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.3

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.3
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.3
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.3
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.3
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.3
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.3
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.3
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.3

Update gardener-controlplane to 1.110.3

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] Fix bug where gardenlet was missing permissions to read v1.Events in the istio ingress namespace in the seed cluster. by @vpnachev [#11163]

🏃 Others

[DEPENDENCY] The gardener/vpn2 image has been updated to 0.34.0. Release Notes by @gardener-ci-robot [#11161]
[OPERATOR] Fix a bug in the gardener operator where the issuer URL domain for workload identity tokens was not prefixed with discovery. resulting in invalid OIDC tokens and discovery documents. by @vpnachev [#11158]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.3
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.3
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.3
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.3

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.3
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.3
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.3
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.3
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.3
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.3
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.3
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.3

Update gardenlet to 1.110.3

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] Fix bug where gardenlet was missing permissions to read v1.Events in the istio ingress namespace in the seed cluster. by @vpnachev [#11163]

🏃 Others

[DEPENDENCY] The gardener/vpn2 image has been updated to 0.34.0. Release Notes by @gardener-ci-robot [#11161]
[OPERATOR] Fix a bug in the gardener operator where the issuer URL domain for workload identity tokens was not prefixed with discovery. resulting in invalid OIDC tokens and discovery documents. by @vpnachev [#11158]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.3
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.3
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.3
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.3

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.3
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.3
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.3
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.3
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.3
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.3
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.3
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.3

Update provider-azure to 1.49.3

[gardener/gardener-extension-provider-azure]

🐛 Bug Fixes

[OPERATOR] Fix an issue causing nil pointer exception when the remote resource that was once existing and present in the inventory, had been deleted during reconciliation by @AndreasBurger [#1062]

Helm Charts

admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.49.3
admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.49.3
provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.49.3

Docker Images

gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.49.3
gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.49.3

Update cloudprofiles to 0.7.22

Full Changelog: https://github.com/gardener-community/cloudprofiles/compare/0.7.21...0.7.22

Update gardener-controlplane to 1.110.4

[gardener/gardener]

🏃 Others

[DEPENDENCY] The following images have been updated:
- registry.k8s.io/autoscaling/vpa-admission-controller: 1.2.1 -> 1.2.2
- registry.k8s.io/autoscaling/vpa-recommender: 1.2.1 -> 1.2.2
- registry.k8s.io/autoscaling/vpa-updater: 1.2.1 -> 1.2.2 by @ialidzhikov [#11179]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.4
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.4
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.4
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.4

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.4
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.4
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.4
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.4
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.4
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.4
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.4
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.4

Update gardener-controlplane to 1.110.4

[gardener/gardener]

🏃 Others

[DEPENDENCY] The following images have been updated:
- registry.k8s.io/autoscaling/vpa-admission-controller: 1.2.1 -> 1.2.2
- registry.k8s.io/autoscaling/vpa-recommender: 1.2.1 -> 1.2.2
- registry.k8s.io/autoscaling/vpa-updater: 1.2.1 -> 1.2.2 by @ialidzhikov [#11179]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.4
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.4
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.4
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.4

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.4
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.4
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.4
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.4
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.4
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.4
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.4
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.4

Update gardenlet to 1.110.4

[gardener/gardener]

🏃 Others

[DEPENDENCY] The following images have been updated:
- registry.k8s.io/autoscaling/vpa-admission-controller: 1.2.1 -> 1.2.2
- registry.k8s.io/autoscaling/vpa-recommender: 1.2.1 -> 1.2.2
- registry.k8s.io/autoscaling/vpa-updater: 1.2.1 -> 1.2.2 by @ialidzhikov [#11179]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.110.4
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.110.4
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.110.4
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.110.4

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.110.4
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.110.4
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.110.4
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.110.4
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.110.4
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.110.4
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.110.4
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.110.4

Update os-gardenlinux to 0.28.0

[gardener/gardener-extension-os-gardenlinux]

🏃 Others

[OPERATOR] SAST assets are now collected in the release pipeline and attached to the component-descriptor. by @MrBatschner [#225]
[OPERATOR] remove 11-exec_config.conf & config.toml file creation by @Roncossek [#215]

Helm Charts

os-gardenlinux: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/os-gardenlinux:v0.28.0

Docker Images

gardener-extension-os-gardenlinux: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/os-gardenlinux:v0.28.0

Update shoot-flux to 0.14.0

What's Changed

bump gardener to v1.109.0 by @ElDrinko in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/130

Full Changelog: https://github.com/stackitcloud/gardener-extension-shoot-flux/compare/v0.13.0...v0.14.0

Update shoot-dns-service to 1.56.0

[gardener/gardener-extension-shoot-dns-service]

📰 Noteworthy

[OPERATOR] The entry list stored in the extension resource status is now compressed to shift the limit before hitting the request size limit of etcd. by @MartinWeindel [#416]

Helm Charts

admission-shoot-dns-service-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-application:v1.56.0
admission-shoot-dns-service-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-runtime:v1.56.0
shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-dns-service:v1.56.0

Docker Images

gardener-extension-admission-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-shoot-dns-service:v1.56.0
gardener-extension-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-dns-service:v1.56.0

Update dashboard to 1.79.0

[gardener/dashboard]

⚠️ Breaking Changes

[OPERATOR] Access Restrictions:
- This dashboard version requires Gardener version v1.107.0 if access restrictions are configured.
- The accessRestriction.items[].display.visibleIf and accessRestriction.items[].display.inverted configurations are no longer supported and will be ignored. The dashboard will now assume visibleIf=true and inverted=false. However, this change does not affect the accessRestriction.items[].input.options[].display.visibleIf and accessRestriction.items[].input.options[].display.inverted settings. by @petersutter [#2163]
[OPERATOR] The dashboard no longer falls back to reading the cluster CA from the deprecated <shoot-name>.ca-cluster Secret. This change requires Gardener v1.89.0 or higher. by @petersutter [#2164]
[USER] Static token kubeconfig support has been removed from the dashboard. This feature is no longer needed as of Kubernetes version 1.27, where the enableStaticTokenKubeconfig field is permanently set to false. by @petersutter [#2171]
[USER] The dashboard no longer relies on the specific labels cloudprofile.garden.sapcloud.io/name and gardener.cloud/dnsProviderName to filter when selecting secrets. Instead, it now solely relies on the newly introduced provider.type field. As a result, cloud profiles are no longer selectable during secret creation, and all cloud profiles for the current infrastructure are now available for selection by @grolu [#2141]

🐛 Bug Fixes

[USER] Fixed alertmanager URL by @petersutter [#2178]
[USER] Resolved an issue where the editor search did not function correctly for non-editable clusters, such as 'Purpose: Infrastructure' by @grolu [#2176]
[OPERATOR] Switched to a polling-based watcher approach for kube-config files, as we've observed that some filesystem events can be missed by chokidar. by @holgerkoser [#2202]

🏃 Others

[OPERATOR] Action Required: The automatic mapping from accessRestriction.items[@key="seed.gardener.cloud/eu-access"] to accessRestriction.items[@key="eu-access-only"] will be removed in a future dashboard version. Dashboard operators who use seed.gardener.cloud/eu-access in their access restriction configuration should update the key to eu-access-only. If your configuration does not include seed.gardener.cloud/eu-access, no action is required. by @petersutter [#2196]

📖 Documentation

[OPERATOR] Fix the link reference to the shoot credentials rotation page. by @marc1404 [#2221]
[OPERATOR] Fix the link reference to the control plane high availability page. by @marc1404 [#2225]

Docker Images

gardener-dashboard: europe-docker.pkg.dev/gardener-project/releases/gardener/dashboard:1.79.0

Update dashboard to 1.79.0

[gardener/dashboard]

⚠️ Breaking Changes

[OPERATOR] Access Restrictions:
- This dashboard version requires Gardener version v1.107.0 if access restrictions are configured.
- The accessRestriction.items[].display.visibleIf and accessRestriction.items[].display.inverted configurations are no longer supported and will be ignored. The dashboard will now assume visibleIf=true and inverted=false. However, this change does not affect the accessRestriction.items[].input.options[].display.visibleIf and accessRestriction.items[].input.options[].display.inverted settings. by @petersutter [#2163]
[OPERATOR] The dashboard no longer falls back to reading the cluster CA from the deprecated <shoot-name>.ca-cluster Secret. This change requires Gardener v1.89.0 or higher. by @petersutter [#2164]
[USER] Static token kubeconfig support has been removed from the dashboard. This feature is no longer needed as of Kubernetes version 1.27, where the enableStaticTokenKubeconfig field is permanently set to false. by @petersutter [#2171]
[USER] The dashboard no longer relies on the specific labels cloudprofile.garden.sapcloud.io/name and gardener.cloud/dnsProviderName to filter when selecting secrets. Instead, it now solely relies on the newly introduced provider.type field. As a result, cloud profiles are no longer selectable during secret creation, and all cloud profiles for the current infrastructure are now available for selection by @grolu [#2141]

🐛 Bug Fixes

[USER] Fixed alertmanager URL by @petersutter [#2178]
[USER] Resolved an issue where the editor search did not function correctly for non-editable clusters, such as 'Purpose: Infrastructure' by @grolu [#2176]
[OPERATOR] Switched to a polling-based watcher approach for kube-config files, as we've observed that some filesystem events can be missed by chokidar. by @holgerkoser [#2202]

🏃 Others

[OPERATOR] Action Required: The automatic mapping from accessRestriction.items[@key="seed.gardener.cloud/eu-access"] to accessRestriction.items[@key="eu-access-only"] will be removed in a future dashboard version. Dashboard operators who use seed.gardener.cloud/eu-access in their access restriction configuration should update the key to eu-access-only. If your configuration does not include seed.gardener.cloud/eu-access, no action is required. by @petersutter [#2196]

📖 Documentation

[OPERATOR] Fix the link reference to the shoot credentials rotation page. by @marc1404 [#2221]
[OPERATOR] Fix the link reference to the control plane high availability page. by @marc1404 [#2225]

Docker Images

gardener-dashboard: europe-docker.pkg.dev/gardener-project/releases/gardener/dashboard:1.79.0

Update gardener-webterminal to 0.34.0

[gardener/terminal-controller-manager]

⚠️ Breaking Changes

[OPERATOR] The credential.secretRef property has been removed from the terminal host and target properties:
- For Seed resources, spec.secretRef was removed from the API without replacement, eliminating the need for credential.secretRef.
- For Shoot resources, credential.shootRef now replaces the previously used credential.secretRef for static token kubeconfigs. by @petersutter [#320]

✨ New Features

[OPERATOR] Enhance terminal pods with service account token projection when the terminal host and target are in the same cluster and namespace by @petersutter [#322]
[DEVELOPER] gosec was introduced for Static Application Security Testing (SAST). by @petersutter [#328]

Docker Images

terminal-controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/terminal-controller-manager:v0.34.0

Update gardener-webterminal to 0.34.0

[gardener/terminal-controller-manager]

⚠️ Breaking Changes

[OPERATOR] The credential.secretRef property has been removed from the terminal host and target properties:
- For Seed resources, spec.secretRef was removed from the API without replacement, eliminating the need for credential.secretRef.
- For Shoot resources, credential.shootRef now replaces the previously used credential.secretRef for static token kubeconfigs. by @petersutter [#320]

✨ New Features

[OPERATOR] Enhance terminal pods with service account token projection when the terminal host and target are in the same cluster and namespace by @petersutter [#322]
[DEVELOPER] gosec was introduced for Static Application Security Testing (SAST). by @petersutter [#328]

Docker Images

terminal-controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/terminal-controller-manager:v0.34.0

Update networking-calico to 1.46.0

[gardener/gardener-extension-networking-calico]

🏃 Others

[OPERATOR] Do not enable IPIP for non-overlay case when no networkConfig is set. by @DockToFuture [#563]

Helm Charts

admission-calico-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.46.0
admission-calico-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.46.0
networking-calico: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.46.0

Docker Images

gardener-extension-admission-calico: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.46.0
gardener-extension-networking-calico: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.46.0

Update os-ubuntu to 1.28.0

[gardener/gardener-extension-os-ubuntu]

🏃 Others

[OPERATOR] Container images for the ubuntu extension are now built with Docker buildx to enable cross-platform builds and default to the linux/amd64 architecture. by @Roncossek [#166]
[OPERATOR] SAST assets are now collected in the release pipeline and attached to the component-descriptor. by @MrBatschner [#177]

Helm Charts

os-ubuntu: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/os-ubuntu:v1.28.0

Docker Images

gardener-extension-os-ubuntu: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/os-ubuntu:v1.28.0

Update runtime-gvisor to 0.17.0

[gardener/gardener-extension-runtime-gvisor]

🏃 Others

[OPERATOR] SAST assets are now collected in the release pipeline and attached to the component-descriptor. by @MrBatschner [#173]

Helm Charts

runtime-gvisor: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/runtime-gvisor:v0.17.0

Docker Images

gardener-extension-runtime-gvisor-installation: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/runtime-gvisor-installation:v0.17.0
gardener-extension-runtime-gvisor: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/runtime-gvisor:v0.17.0

Update external-dns-management to 0.23.0

[gardener/external-dns-management]

⚠️ Breaking Changes

[USER] The creation and management of metadata DNS records holding the owner identifier for each DNSEntry has been removed. These metadata DNS records will be removed automatically.
For more details, please see https://github.com/gardener/external-dns-management/tree/master?tab=readme-ov-file#important-note-support-for-owner-identifiers-is-discontinued by @MartinWeindel [#403]

🐛 Bug Fixes

[OPERATOR] Ignore TTL on comparing alias records for remote provider by @MartinWeindel [#411]

Helm Charts

dns-controller-manager: europe-docker.pkg.dev/gardener-project/releases/charts/dns-controller-manager:v0.23.0

Docker Images

dns-controller-manager: europe-docker.pkg.dev/gardener-project/releases/dns-controller-manager:v0.23.0

Update gardener-controlplane to 1.111.0

[gardener/gardener]

⚠️ Breaking Changes

[OPERATOR] The OperatorConfiguration changed incompatibly: extensionRequired was renamed to extensionRequiredRuntime. by @timuthy [#11001]
[OPERATOR] The ShootManagedIssuer feature gate was removed. Enablement of the feature is now dependent on the existence of a secret in the garden namespace labeled with gardener.cloud/role: shoot-service-account-issuer. by @dimityrmirchev [#11078]
[OPERATOR] The ShootForceDeletion feature gate has been graduated to GA and is locked to true. by @shafeeqes [#11107]
[OPERATOR] This change applies to IPv4 clusters only.
Gardener uses the CIDR range of 240.0.0.0/8 which is reserved as per IANA db to map the cluster ip of the kubernetes api-server in the seed to a different network range before exposing it to the shoot in the kubernetes service. This frees up address space in the shoot and removes potential clashes with shoot workload ips.

Seed operators need to check if any of the following properties collide with the 240.0.0.0/8 range:
```
spec:  
  networks:  
    pods: < check here >  
    nodes: < check here >  
    services: < check here >  
    shootDefaults:  
      pods: < check here >  
      nodes: < check here >  
      services: < check here >  
```
by @domdom82 [#10949]
[OPERATOR] The wildcard TLS certificate for the runtime cluster must now be labelled with gardener.cloud/role=garden-cert instead of gardener.cloud/role=controlplane-cert to avoid duplicate role assignments for runtime and seed certificate secrets if Gardener runtime and seed run on the same cluster.
The old role name is deprecated for the runtime cluster. It will not be accepted anymore with the next Gardener release. by @MartinWeindel [#11113]
[DEPENDENCY] Client-related functions have been adapted to use the external version of k8s.io/component-base/config.ClientConnectionConfiguration. If you need a helper function for transitioning to the external version, use pkg/client/kubernetes.ConvertClientConnectionConfigurationToExternal. by @timebertt [#11052]
[DEPENDENCY] The package github.com/gardener/gardener/extensions/pkg/apis/config has been dropped. Use the versioned variant of the package instead: github.com/gardener/gardener/extensions/pkg/apis/config/v1alpha1. by @timebertt [#11056]

📰 Noteworthy

[USER] Expired versions from the NamespacedCloudProfile are always dropped, except for already applied versions. by @LucaBernstein [#10910]
[OPERATOR] The vpa field (ineffective since v1.102) has been removed from the ManagedSeed API. by @rfranzke [#11047]
[OPERATOR] Now "vali" contains the managed control plane logs from the early stages of shoot reconcile. by @nickytd [#11082]

✨ New Features

[OPERATOR] Gardener-Operator handles generic Gardener extensions in the Garden-Runtime cluster (type: Extension). Such extensions can be configured via spec.extensions in the Garden resource. by @timuthy [#11192]
[OPERATOR] gardener-node-agent now persists its applied changes after each step when reconciling the OSC. This should avoid unnecessary work and systemd unit restarts. by @maboehm [#10969]
[OPERATOR] Add vpa histogram decay half-life parameters to the Shoot spec. by @voelzmo [#10959]
[OPERATOR] The Gardener Admission Controller now implements a handler that can prevent tampering with system Secrets and ConfigMaps if they are labeled with gardener.cloud/update-restriction=true. by @dimityrmirchev [#11108]
[OPERATOR] Add flow and flow task metrics for timing duration, delay and result count to gardenlet metrics. by @LucaBernstein [#10967]
[USER] Gardener now allows to omit or to only partially define the machine image version in shoot.Spec.Provider.Workers[].Machine.Image.Version. The version will automatically be defaulted to the latest minor/patch version found in the referenced CloudProfile. by @LucaBernstein [#10954]
[DEVELOPER] The extension library now supports adding watches via WatchBuilder for other resources in the generic extension controller. by @domdom82 [#11064]
[DEVELOPER] Add option to register flow metrics on monitoring registry. by @LucaBernstein [#10967]
[DEVELOPER] A local setup for trying out, developing, and testing the autonomous shoot cluster functionality of gardenadm has been introduced. You can find the documentation here. by @rfranzke [#10977]

🐛 Bug Fixes

[OPERATOR] Gardener can now delete and migrate shoots that use dynamic node network allocation, even if the infrastructure creation has never been successfully completed. by @timebertt [#11038]
[OPERATOR] An issue was fixed in gardener-operator that prevented configuring OIDC for gardener-dashboard while using Structured Authentication. by @timuthy [#11080]
[OPERATOR] gardener-node-agent does not restart containerd.service on every OSC reconciliation anymore. by @oliver-goetz [#11120]
[USER] Fix the NamespacedCloudProfile status mutation. by @LucaBernstein [#11036]
[DEVELOPER] Avoid calling GetCluster for non-shoot namespaces in shootNotFailedPredicate and dnsrecord controller. by @MartinWeindel [#11123]
[DEVELOPER] gardener-node-agent deletes unit files and drop-ins only if it created them previously. by @oliver-goetz [#11015]

🏃 Others

[USER] Custom machine images and machine types in NamespacedCloudProfile are not interfered by later added conflicting entries in the parent CloudProfile. by @LucaBernstein [#11093]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.29.0. by @gardener-ci-robot [#11138]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.26.1. Release Notes by @gardener-ci-robot [#11202]
[DEPENDENCY] The gcr.io/istio-release/pilot image has been updated to 1.23.4. by @gardener-ci-robot [#11071]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.33.0. Release Notes by @gardener-ci-robot [#11167]
[DEPENDENCY] The registry.k8s.io/ingress-nginx/controller-chroot image has been updated to v1.12.0. by @gardener-ci-robot [#11087]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.28.4. by @gardener-ci-robot [#11053]
[DEPENDENCY] The gardener/logging image has been updated to v0.63.0. Release Notes by @gardener-ci-robot [#11195]
[DEPENDENCY] The registry.k8s.io/dns/k8s-dns-node-cache image has been updated to 1.24.0. by @gardener-ci-robot [#11032]
[DEPENDENCY] The gardener/alpine-conntrack image has been updated to 3.21.0. Release Notes by @gardener-ci-robot [#11023]
[DEPENDENCY] The gardener/dashboard image has been updated to 1.79.0. Release Notes by @gardener-ci-robot [#11199]
[DEPENDENCY] The quay.io/prometheus/alertmanager image has been updated to v0.28.0. by @gardener-ci-robot [#11176]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.32.3. Release Notes by @gardener-ci-robot [#11068]
[DEPENDENCY] The gardener/ingress-default-backend image has been updated to 0.21.0. Release Notes by @gardener-ci-robot [#11046]
[DEPENDENCY] The gardener/terminal-controller-manager image has been updated to v0.34.0. Release Notes by @gardener-ci-robot [#11212]
[DEPENDENCY] The gardener/alpine-conntrack image has been updated to 3.21.1. Release Notes by @gardener-ci-robot [#11151]
[DEVELOPER] Fix malformed file path error on go get github.com/gardener/gardener@master by @MartinWeindel [#11145]
[DEVELOPER] drop unused codepath from component_descriptor creation script. by @ccwienk [#11124]
[DEVELOPER] The images of the registry caches used in the extensions local setup are now updated to distribution/distribution@3.0.0 rc.2. by @ialidzhikov [#11079]
[OPERATOR] Add additional context to shoot admission DNS errors so that it is more obvious what should be changed. by @ScheererJ [#11022]
[OPERATOR] Allow specifying the IP families for the shoot creation tests. by @ScheererJ [#11135]
[OPERATOR] Switch vpa-recommender back to the image built from the vertical-pod-autoscaler upstream repo . by @plkokanov [#11122]
[OPERATOR] The gardener-dashboard configuration was enhanced in the garden API with fields gardenerDashboard.oidcConfig.clientIDPublic and gardenerDashboard.oidcConfig.issuerURL.
Those are required to switch from the deprecated kubeAPIServer.oidcConfig to kubeAPIServer.structuredAuthentication. by @timuthy [#11080]
[OPERATOR] gardener-operator now maintains a new condition RequiredVirtual for Extension resources. The new condition indicates whether the extension is related to required ControllerInstallations in the virtual garden cluster. by @timuthy [#11001]
[OPERATOR] Add alerts for capped VPA recommendations by @vicwicker [#11136]
[OPERATOR] Retry failed Cluster resource sync after otherwise successful Shoot reconciliation. by @LucaBernstein [#11144]
[OPERATOR] gardener-operator restarts itself when the garden resource is deleted. This is required to stop controllers gracefully that depend on the existence of a virtual garden cluster. by @timuthy [#11058]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.0
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.0

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.0
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.0
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.0
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.0
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.0
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.0

Update gardener-controlplane to 1.111.0

[gardener/gardener]

⚠️ Breaking Changes

[OPERATOR] The OperatorConfiguration changed incompatibly: extensionRequired was renamed to extensionRequiredRuntime. by @timuthy [#11001]
[OPERATOR] The ShootManagedIssuer feature gate was removed. Enablement of the feature is now dependent on the existence of a secret in the garden namespace labeled with gardener.cloud/role: shoot-service-account-issuer. by @dimityrmirchev [#11078]
[OPERATOR] The ShootForceDeletion feature gate has been graduated to GA and is locked to true. by @shafeeqes [#11107]
[OPERATOR] This change applies to IPv4 clusters only.
Gardener uses the CIDR range of 240.0.0.0/8 which is reserved as per IANA db to map the cluster ip of the kubernetes api-server in the seed to a different network range before exposing it to the shoot in the kubernetes service. This frees up address space in the shoot and removes potential clashes with shoot workload ips.

Seed operators need to check if any of the following properties collide with the 240.0.0.0/8 range:
```
spec:  
  networks:  
    pods: < check here >  
    nodes: < check here >  
    services: < check here >  
    shootDefaults:  
      pods: < check here >  
      nodes: < check here >  
      services: < check here >  
```
by @domdom82 [#10949]
[OPERATOR] The wildcard TLS certificate for the runtime cluster must now be labelled with gardener.cloud/role=garden-cert instead of gardener.cloud/role=controlplane-cert to avoid duplicate role assignments for runtime and seed certificate secrets if Gardener runtime and seed run on the same cluster.
The old role name is deprecated for the runtime cluster. It will not be accepted anymore with the next Gardener release. by @MartinWeindel [#11113]
[DEPENDENCY] Client-related functions have been adapted to use the external version of k8s.io/component-base/config.ClientConnectionConfiguration. If you need a helper function for transitioning to the external version, use pkg/client/kubernetes.ConvertClientConnectionConfigurationToExternal. by @timebertt [#11052]
[DEPENDENCY] The package github.com/gardener/gardener/extensions/pkg/apis/config has been dropped. Use the versioned variant of the package instead: github.com/gardener/gardener/extensions/pkg/apis/config/v1alpha1. by @timebertt [#11056]

📰 Noteworthy

[USER] Expired versions from the NamespacedCloudProfile are always dropped, except for already applied versions. by @LucaBernstein [#10910]
[OPERATOR] The vpa field (ineffective since v1.102) has been removed from the ManagedSeed API. by @rfranzke [#11047]
[OPERATOR] Now "vali" contains the managed control plane logs from the early stages of shoot reconcile. by @nickytd [#11082]

✨ New Features

[OPERATOR] Gardener-Operator handles generic Gardener extensions in the Garden-Runtime cluster (type: Extension). Such extensions can be configured via spec.extensions in the Garden resource. by @timuthy [#11192]
[OPERATOR] gardener-node-agent now persists its applied changes after each step when reconciling the OSC. This should avoid unnecessary work and systemd unit restarts. by @maboehm [#10969]
[OPERATOR] Add vpa histogram decay half-life parameters to the Shoot spec. by @voelzmo [#10959]
[OPERATOR] The Gardener Admission Controller now implements a handler that can prevent tampering with system Secrets and ConfigMaps if they are labeled with gardener.cloud/update-restriction=true. by @dimityrmirchev [#11108]
[OPERATOR] Add flow and flow task metrics for timing duration, delay and result count to gardenlet metrics. by @LucaBernstein [#10967]
[USER] Gardener now allows to omit or to only partially define the machine image version in shoot.Spec.Provider.Workers[].Machine.Image.Version. The version will automatically be defaulted to the latest minor/patch version found in the referenced CloudProfile. by @LucaBernstein [#10954]
[DEVELOPER] The extension library now supports adding watches via WatchBuilder for other resources in the generic extension controller. by @domdom82 [#11064]
[DEVELOPER] Add option to register flow metrics on monitoring registry. by @LucaBernstein [#10967]
[DEVELOPER] A local setup for trying out, developing, and testing the autonomous shoot cluster functionality of gardenadm has been introduced. You can find the documentation here. by @rfranzke [#10977]

🐛 Bug Fixes

[OPERATOR] Gardener can now delete and migrate shoots that use dynamic node network allocation, even if the infrastructure creation has never been successfully completed. by @timebertt [#11038]
[OPERATOR] An issue was fixed in gardener-operator that prevented configuring OIDC for gardener-dashboard while using Structured Authentication. by @timuthy [#11080]
[OPERATOR] gardener-node-agent does not restart containerd.service on every OSC reconciliation anymore. by @oliver-goetz [#11120]
[USER] Fix the NamespacedCloudProfile status mutation. by @LucaBernstein [#11036]
[DEVELOPER] Avoid calling GetCluster for non-shoot namespaces in shootNotFailedPredicate and dnsrecord controller. by @MartinWeindel [#11123]
[DEVELOPER] gardener-node-agent deletes unit files and drop-ins only if it created them previously. by @oliver-goetz [#11015]

🏃 Others

[USER] Custom machine images and machine types in NamespacedCloudProfile are not interfered by later added conflicting entries in the parent CloudProfile. by @LucaBernstein [#11093]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.29.0. by @gardener-ci-robot [#11138]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.26.1. Release Notes by @gardener-ci-robot [#11202]
[DEPENDENCY] The gcr.io/istio-release/pilot image has been updated to 1.23.4. by @gardener-ci-robot [#11071]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.33.0. Release Notes by @gardener-ci-robot [#11167]
[DEPENDENCY] The registry.k8s.io/ingress-nginx/controller-chroot image has been updated to v1.12.0. by @gardener-ci-robot [#11087]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.28.4. by @gardener-ci-robot [#11053]
[DEPENDENCY] The gardener/logging image has been updated to v0.63.0. Release Notes by @gardener-ci-robot [#11195]
[DEPENDENCY] The registry.k8s.io/dns/k8s-dns-node-cache image has been updated to 1.24.0. by @gardener-ci-robot [#11032]
[DEPENDENCY] The gardener/alpine-conntrack image has been updated to 3.21.0. Release Notes by @gardener-ci-robot [#11023]
[DEPENDENCY] The gardener/dashboard image has been updated to 1.79.0. Release Notes by @gardener-ci-robot [#11199]
[DEPENDENCY] The quay.io/prometheus/alertmanager image has been updated to v0.28.0. by @gardener-ci-robot [#11176]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.32.3. Release Notes by @gardener-ci-robot [#11068]
[DEPENDENCY] The gardener/ingress-default-backend image has been updated to 0.21.0. Release Notes by @gardener-ci-robot [#11046]
[DEPENDENCY] The gardener/terminal-controller-manager image has been updated to v0.34.0. Release Notes by @gardener-ci-robot [#11212]
[DEPENDENCY] The gardener/alpine-conntrack image has been updated to 3.21.1. Release Notes by @gardener-ci-robot [#11151]
[DEVELOPER] Fix malformed file path error on go get github.com/gardener/gardener@master by @MartinWeindel [#11145]
[DEVELOPER] drop unused codepath from component_descriptor creation script. by @ccwienk [#11124]
[DEVELOPER] The images of the registry caches used in the extensions local setup are now updated to distribution/distribution@3.0.0 rc.2. by @ialidzhikov [#11079]
[OPERATOR] Add additional context to shoot admission DNS errors so that it is more obvious what should be changed. by @ScheererJ [#11022]
[OPERATOR] Allow specifying the IP families for the shoot creation tests. by @ScheererJ [#11135]
[OPERATOR] Switch vpa-recommender back to the image built from the vertical-pod-autoscaler upstream repo . by @plkokanov [#11122]
[OPERATOR] The gardener-dashboard configuration was enhanced in the garden API with fields gardenerDashboard.oidcConfig.clientIDPublic and gardenerDashboard.oidcConfig.issuerURL.
Those are required to switch from the deprecated kubeAPIServer.oidcConfig to kubeAPIServer.structuredAuthentication. by @timuthy [#11080]
[OPERATOR] gardener-operator now maintains a new condition RequiredVirtual for Extension resources. The new condition indicates whether the extension is related to required ControllerInstallations in the virtual garden cluster. by @timuthy [#11001]
[OPERATOR] Add alerts for capped VPA recommendations by @vicwicker [#11136]
[OPERATOR] Retry failed Cluster resource sync after otherwise successful Shoot reconciliation. by @LucaBernstein [#11144]
[OPERATOR] gardener-operator restarts itself when the garden resource is deleted. This is required to stop controllers gracefully that depend on the existence of a virtual garden cluster. by @timuthy [#11058]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.0
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.0

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.0
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.0
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.0
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.0
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.0
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.0

Update gardenlet to 1.111.0

[gardener/gardener]

⚠️ Breaking Changes

[OPERATOR] The OperatorConfiguration changed incompatibly: extensionRequired was renamed to extensionRequiredRuntime. by @timuthy [#11001]
[OPERATOR] The ShootManagedIssuer feature gate was removed. Enablement of the feature is now dependent on the existence of a secret in the garden namespace labeled with gardener.cloud/role: shoot-service-account-issuer. by @dimityrmirchev [#11078]
[OPERATOR] The ShootForceDeletion feature gate has been graduated to GA and is locked to true. by @shafeeqes [#11107]
[OPERATOR] This change applies to IPv4 clusters only.
Gardener uses the CIDR range of 240.0.0.0/8 which is reserved as per IANA db to map the cluster ip of the kubernetes api-server in the seed to a different network range before exposing it to the shoot in the kubernetes service. This frees up address space in the shoot and removes potential clashes with shoot workload ips.

Seed operators need to check if any of the following properties collide with the 240.0.0.0/8 range:
```
spec:  
  networks:  
    pods: < check here >  
    nodes: < check here >  
    services: < check here >  
    shootDefaults:  
      pods: < check here >  
      nodes: < check here >  
      services: < check here >  
```
by @domdom82 [#10949]
[OPERATOR] The wildcard TLS certificate for the runtime cluster must now be labelled with gardener.cloud/role=garden-cert instead of gardener.cloud/role=controlplane-cert to avoid duplicate role assignments for runtime and seed certificate secrets if Gardener runtime and seed run on the same cluster.
The old role name is deprecated for the runtime cluster. It will not be accepted anymore with the next Gardener release. by @MartinWeindel [#11113]
[DEPENDENCY] Client-related functions have been adapted to use the external version of k8s.io/component-base/config.ClientConnectionConfiguration. If you need a helper function for transitioning to the external version, use pkg/client/kubernetes.ConvertClientConnectionConfigurationToExternal. by @timebertt [#11052]
[DEPENDENCY] The package github.com/gardener/gardener/extensions/pkg/apis/config has been dropped. Use the versioned variant of the package instead: github.com/gardener/gardener/extensions/pkg/apis/config/v1alpha1. by @timebertt [#11056]

📰 Noteworthy

[USER] Expired versions from the NamespacedCloudProfile are always dropped, except for already applied versions. by @LucaBernstein [#10910]
[OPERATOR] The vpa field (ineffective since v1.102) has been removed from the ManagedSeed API. by @rfranzke [#11047]
[OPERATOR] Now "vali" contains the managed control plane logs from the early stages of shoot reconcile. by @nickytd [#11082]

✨ New Features

[OPERATOR] Gardener-Operator handles generic Gardener extensions in the Garden-Runtime cluster (type: Extension). Such extensions can be configured via spec.extensions in the Garden resource. by @timuthy [#11192]
[OPERATOR] gardener-node-agent now persists its applied changes after each step when reconciling the OSC. This should avoid unnecessary work and systemd unit restarts. by @maboehm [#10969]
[OPERATOR] Add vpa histogram decay half-life parameters to the Shoot spec. by @voelzmo [#10959]
[OPERATOR] The Gardener Admission Controller now implements a handler that can prevent tampering with system Secrets and ConfigMaps if they are labeled with gardener.cloud/update-restriction=true. by @dimityrmirchev [#11108]
[OPERATOR] Add flow and flow task metrics for timing duration, delay and result count to gardenlet metrics. by @LucaBernstein [#10967]
[USER] Gardener now allows to omit or to only partially define the machine image version in shoot.Spec.Provider.Workers[].Machine.Image.Version. The version will automatically be defaulted to the latest minor/patch version found in the referenced CloudProfile. by @LucaBernstein [#10954]
[DEVELOPER] The extension library now supports adding watches via WatchBuilder for other resources in the generic extension controller. by @domdom82 [#11064]
[DEVELOPER] Add option to register flow metrics on monitoring registry. by @LucaBernstein [#10967]
[DEVELOPER] A local setup for trying out, developing, and testing the autonomous shoot cluster functionality of gardenadm has been introduced. You can find the documentation here. by @rfranzke [#10977]

🐛 Bug Fixes

[OPERATOR] Gardener can now delete and migrate shoots that use dynamic node network allocation, even if the infrastructure creation has never been successfully completed. by @timebertt [#11038]
[OPERATOR] An issue was fixed in gardener-operator that prevented configuring OIDC for gardener-dashboard while using Structured Authentication. by @timuthy [#11080]
[OPERATOR] gardener-node-agent does not restart containerd.service on every OSC reconciliation anymore. by @oliver-goetz [#11120]
[USER] Fix the NamespacedCloudProfile status mutation. by @LucaBernstein [#11036]
[DEVELOPER] Avoid calling GetCluster for non-shoot namespaces in shootNotFailedPredicate and dnsrecord controller. by @MartinWeindel [#11123]
[DEVELOPER] gardener-node-agent deletes unit files and drop-ins only if it created them previously. by @oliver-goetz [#11015]

🏃 Others

[USER] Custom machine images and machine types in NamespacedCloudProfile are not interfered by later added conflicting entries in the parent CloudProfile. by @LucaBernstein [#11093]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.29.0. by @gardener-ci-robot [#11138]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.26.1. Release Notes by @gardener-ci-robot [#11202]
[DEPENDENCY] The gcr.io/istio-release/pilot image has been updated to 1.23.4. by @gardener-ci-robot [#11071]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.33.0. Release Notes by @gardener-ci-robot [#11167]
[DEPENDENCY] The registry.k8s.io/ingress-nginx/controller-chroot image has been updated to v1.12.0. by @gardener-ci-robot [#11087]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.28.4. by @gardener-ci-robot [#11053]
[DEPENDENCY] The gardener/logging image has been updated to v0.63.0. Release Notes by @gardener-ci-robot [#11195]
[DEPENDENCY] The registry.k8s.io/dns/k8s-dns-node-cache image has been updated to 1.24.0. by @gardener-ci-robot [#11032]
[DEPENDENCY] The gardener/alpine-conntrack image has been updated to 3.21.0. Release Notes by @gardener-ci-robot [#11023]
[DEPENDENCY] The gardener/dashboard image has been updated to 1.79.0. Release Notes by @gardener-ci-robot [#11199]
[DEPENDENCY] The quay.io/prometheus/alertmanager image has been updated to v0.28.0. by @gardener-ci-robot [#11176]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.32.3. Release Notes by @gardener-ci-robot [#11068]
[DEPENDENCY] The gardener/ingress-default-backend image has been updated to 0.21.0. Release Notes by @gardener-ci-robot [#11046]
[DEPENDENCY] The gardener/terminal-controller-manager image has been updated to v0.34.0. Release Notes by @gardener-ci-robot [#11212]
[DEPENDENCY] The gardener/alpine-conntrack image has been updated to 3.21.1. Release Notes by @gardener-ci-robot [#11151]
[DEVELOPER] Fix malformed file path error on go get github.com/gardener/gardener@master by @MartinWeindel [#11145]
[DEVELOPER] drop unused codepath from component_descriptor creation script. by @ccwienk [#11124]
[DEVELOPER] The images of the registry caches used in the extensions local setup are now updated to distribution/distribution@3.0.0 rc.2. by @ialidzhikov [#11079]
[OPERATOR] Add additional context to shoot admission DNS errors so that it is more obvious what should be changed. by @ScheererJ [#11022]
[OPERATOR] Allow specifying the IP families for the shoot creation tests. by @ScheererJ [#11135]
[OPERATOR] Switch vpa-recommender back to the image built from the vertical-pod-autoscaler upstream repo . by @plkokanov [#11122]
[OPERATOR] The gardener-dashboard configuration was enhanced in the garden API with fields gardenerDashboard.oidcConfig.clientIDPublic and gardenerDashboard.oidcConfig.issuerURL.
Those are required to switch from the deprecated kubeAPIServer.oidcConfig to kubeAPIServer.structuredAuthentication. by @timuthy [#11080]
[OPERATOR] gardener-operator now maintains a new condition RequiredVirtual for Extension resources. The new condition indicates whether the extension is related to required ControllerInstallations in the virtual garden cluster. by @timuthy [#11001]
[OPERATOR] Add alerts for capped VPA recommendations by @vicwicker [#11136]
[OPERATOR] Retry failed Cluster resource sync after otherwise successful Shoot reconciliation. by @LucaBernstein [#11144]
[OPERATOR] gardener-operator restarts itself when the garden resource is deleted. This is required to stop controllers gracefully that depend on the existence of a virtual garden cluster. by @timuthy [#11058]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.0
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.0

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.0
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.0
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.0
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.0
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.0
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.0

Update shoot-dns-service to 1.56.1

[gardener/gardener-extension-shoot-dns-service]

🏃 Others

[OPERATOR] introduce image named dns-controller-manager-with-metadata-records by Martin Weindel <martin.weindel@sap.com> [$3708e670f9a36a2c04624b745718b7975fd9e77c]

Helm Charts

admission-shoot-dns-service-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-application:v1.56.1
admission-shoot-dns-service-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-runtime:v1.56.1
shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-dns-service:v1.56.1

Docker Images

gardener-extension-admission-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-shoot-dns-service:v1.56.1
gardener-extension-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-dns-service:v1.56.1

Update shoot-networking-filter to 0.22.0

[gardener/gardener-extension-shoot-networking-filter]

🏃 Others

[OPERATOR] Bumps github.com/gardener/gardener from 1.109.0 to 1.110.0. by @dependabot[bot] [#197]
[OPERATOR] Bumps github.com/gardener/gardener from 1.108.0 to 1.109.0. by @dependabot[bot] [#195]
[OPERATOR] Bumps github.com/gardener/gardener from 1.107.0 to 1.108.0. by @dependabot[bot] [#193]

Helm Charts

runtime-networking-filter: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/runtime-networking-filter:v0.22.0
shoot-networking-filter: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-networking-filter:v0.22.0

Docker Images

gardener-extension-shoot-networking-filter: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-networking-filter:v0.22.0
gardener-runtime-networking-filter: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/runtime-networking-filter:v0.22.0

Update provider-openstack to 1.45.0

[gardener/gardener-extension-provider-openstack]

📰 Noteworthy

[USER] The kube-system/csi-driver-node and kube-system/csi-driver-manila-node DaemonSets are no longer scaled by a VerticalPodAutoscaler as they do not really benefit from it. Removing VerticalPodAutoscaler for these components will reduce unnecessary evictions by VPA and will be a mitigation for https://issues.k8s.io/126921. by @ialidzhikov [#938]

🐛 Bug Fixes

[USER] Fix the NamespacedCloudProfile status mutation. by @LucaBernstein [#930]

🏃 Others

[DEPENDENCY] Update gardener to v1.110.0 by @hebelsan [#933]
[OPERATOR] The EgressCIDRS are now properly calculated for IPv6 addresses of the router. by @kon-angelo [#958]
[OPERATOR] The EgressCIDRS are now properly calculated for multiple external fixed IPs of the router. by @kon-angelo [#958]
[OPERATOR] Ignore not found errors on resource deletion during infrastructure reconciliation. by @kon-angelo [#948]

[gardener/machine-controller-manager-provider-openstack]

🏃 Others

[DEVELOPER] The gardener/machine-controller-manager dependency has been updated to v0.55.1. Release Notes v0.55.0
Release Notes v0.55.1 by @gardener-robot-ci-3 [gardener/machine-controller-manager-provider-openstack#204]
[DEVELOPER] Add gosec as sast makefile target by @hebelsan [gardener/machine-controller-manager-provider-openstack#199]
[DEPENDENCY] Update gardener/gardener to v1.108.1 by @hebelsan [gardener/machine-controller-manager-provider-openstack#200]
[OPERATOR] Increase VM status check timeout to 1200 seconds. by @kon-angelo [gardener/machine-controller-manager-provider-openstack#212]

[gardener/terraformer]

🐛 Bug Fixes

[DEVELOPER] Provider azurerm was updated to version 3.47.0 and is now properly recognising the ARM_OIDC_TOKEN_FILE_PATH env variable. by @dimityrmirchev [gardener/terraformer#156]

🏃 Others

[OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/terraformer#157]
[OPERATOR] Update alpine to v3.21.2 by @kon-angelo [gardener/terraformer#157]

Helm Charts

admission-openstack-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-openstack-application:v1.45.0
admission-openstack-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-openstack-runtime:v1.45.0
provider-openstack: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-openstack:v1.45.0

Docker Images

gardener-extension-admission-openstack: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-openstack:v1.45.0
gardener-extension-provider-openstack: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-openstack:v1.45.0

Update shoot-dns-service to 1.57.0

[gardener/gardener-extension-shoot-dns-service]

🏃 Others

[OPERATOR] Add support for switching the dns-controller-manager image. by @marc1404 [#421]

[gardener/external-dns-management]

⚠️ Breaking Changes

[USER] The creation and management of metadata DNS records holding the owner identifier for each DNSEntry has been removed. These metadata DNS records will be removed automatically.
For more details, please see https://github.com/gardener/external-dns-management/tree/master?tab=readme-ov-file#important-note-support-for-owner-identifiers-is-discontinued by @MartinWeindel [gardener/external-dns-management#403]

🐛 Bug Fixes

[OPERATOR] Ignore TTL on comparing alias records for remote provider by @MartinWeindel [gardener/external-dns-management#411]

Helm Charts

admission-shoot-dns-service-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-application:v1.57.0
admission-shoot-dns-service-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-runtime:v1.57.0
shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-dns-service:v1.57.0

Docker Images

gardener-extension-admission-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-shoot-dns-service:v1.57.0
gardener-extension-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-dns-service:v1.57.0

Update provider-alicloud to 1.58.0

[gardener/terraformer]

🐛 Bug Fixes

[DEVELOPER] Provider azurerm was updated to version 3.47.0 and is now properly recognising the ARM_OIDC_TOKEN_FILE_PATH env variable. by @dimityrmirchev [gardener/terraformer#156]

🏃 Others

[OPERATOR] Update alpine to v3.21.2 by @kon-angelo [gardener/terraformer#157]
[OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/terraformer#157]

[gardener/gardener-extension-provider-alicloud]

📰 Noteworthy

[USER] The kube-system/csi-disk-plugin-alicloud DaemonSet is no longer scaled by a VerticalPodAutoscaler as it does not really benefit from it. Removing VerticalPodAutoscaler for that component will reduce unnecessary evictions by VPA and will be a mitigation for https://issues.k8s.io/126921. by @ialidzhikov [#750]

🏃 Others

[OPERATOR] Update CSI image version by @kevin-lacoo [#757]
[OPERATOR] Update gardener/gardener dependency to v1.110.4 by @MartinWeindel [#756]
[OPERATOR] The kube-system/csi-disk-plugin-alicloud DaemonSet does no longer specify resource limits. by @ialidzhikov [#750]

Helm Charts

admission-alicloud-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-application:v1.58.0
admission-alicloud-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-runtime:v1.58.0
provider-alicloud: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.58.0

Docker Images

gardener-extension-admission-alicloud: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.58.0
gardener-extension-provider-alicloud: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.58.0

Update provider-aws to 1.60.0

[gardener/gardener-extension-provider-aws]

📰 Noteworthy

[USER] The kube-system/csi-driver-node DaemonSet is no longer scaled by a VerticalPodAutoscaler as it does not really benefit from it. Removing VerticalPodAutoscaler for that component will reduce unnecessary evictions by VPA and will be a mitigation for https://issues.k8s.io/126921. by @ialidzhikov [#1179]

✨ New Features

[USER] Support for VolumeAttributesClasses can now be enabled via shoot annotation. by @AndreasBurger [#1152]

🏃 Others

[OPERATOR] In IPv6 and dual stack shoot cluster external load balancers will get the aws dual stack load balancer annotations in order to work properly. by @DockToFuture [#1160]
[OPERATOR] Add validation of internal-subnet CIDR for IPv6 shoots by @AndreasBurger [#1186]
[OPERATOR] Set primary-ip-family flag for aws-ipam-controller by @DockToFuture [#1168]
[USER] Shoots with NodeLocalDNS enabled will use UDP instead of TCP for upstream DNS queries by default to avoid performance issues on AWS. by @domdom82 [#1161]
[DEPENDENCY] Update gardener to v1.110.0 by @hebelsan [#1176]

[gardener/machine-controller-manager-provider-aws]

🐛 Bug Fixes

[OPERATOR] Fixed a panic that occurs while fetching the status of a VM backing a machine from the provider. by @renormalize [gardener/machine-controller-manager-provider-aws#180]

🏃 Others

[OPERATOR] Added gosec for Static Application Security Testing (SAST). by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]
[DEVELOPER] Updated go lang version to 1.23.3 by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]
[DEVELOPER] The gardener/machine-controller-manager dependency has been updated to v0.55.1. Release Notes by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]

[gardener/terraformer]

🐛 Bug Fixes

[DEVELOPER] Provider azurerm was updated to version 3.47.0 and is now properly recognising the ARM_OIDC_TOKEN_FILE_PATH env variable. by @dimityrmirchev [gardener/terraformer#156]

🏃 Others

[OPERATOR] Update alpine to v3.21.2 by @kon-angelo [gardener/terraformer#157]
[OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/terraformer#157]

Helm Charts

admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.60.0
admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.60.0
provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.60.0

Docker Images

gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.60.0
gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.60.0

Update provider-gcp to 1.42.0

[gardener/gardener-extension-provider-gcp]

📰 Noteworthy

[USER] The kube-system/csi-driver-node DaemonSet is no longer scaled by a VerticalPodAutoscaler as it does not really benefit from it. Removing VerticalPodAutoscaler for that component will reduce unnecessary evictions by VPA and will be a mitigation for https://issues.k8s.io/126921. by @ialidzhikov [#929]
[OPERATOR] Added support for immutable backup buckets in the GCP provider extension. Operators can configure immutability settings to enhance backup data security by preventing data alteration or deletion before the specified retention period. by @seshachalam-yv [#906]

✨ New Features

[OPERATOR] Support specification of extended resources in provider config node template without re-specifying core resources. by @elankath [#889]

🐛 Bug Fixes

[USER] Fix the NamespacedCloudProfile status mutation. by @LucaBernstein [#942]

🏃 Others

[DEPENDENCY] Update gardener to v1.110.0 by @hebelsan [#927]
[OPERATOR] Validate that all images in cloudProfile map to a valid image in the cloudProfileConfig by @hebelsan [#932]

[gardener/machine-controller-manager-provider-gcp]

🏃 Others

[USER] MCM provider GCP is able to provide the values for a shieldedInstanceConfiguration from a machineClass to the GCP API. by @MrBatschner [gardener/machine-controller-manager-provider-gcp#135]
[DEVELOPER] The gardener/machine-controller-manager dependency has been updated to v0.55.1. Release Notes by @thiyyakat [gardener/machine-controller-manager-provider-gcp#134]
[DEVELOPER] Added gosec for Static Application Security Testing (SAST). by @thiyyakat [gardener/machine-controller-manager-provider-gcp#134]
[DEVELOPER] Updated go lang version to 1.23.3 by @thiyyakat [gardener/machine-controller-manager-provider-gcp#134]

[gardener/terraformer]

🐛 Bug Fixes

[DEVELOPER] Provider azurerm was updated to version 3.47.0 and is now properly recognising the ARM_OIDC_TOKEN_FILE_PATH env variable. by @dimityrmirchev [gardener/terraformer#156]

🏃 Others

[OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/terraformer#157]
[OPERATOR] Update alpine to v3.21.2 by @kon-angelo [gardener/terraformer#157]

Helm Charts

admission-gcp-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-application:v1.42.0
admission-gcp-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-runtime:v1.42.0
provider-gcp: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-gcp:v1.42.0

Docker Images

gardener-extension-admission-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.42.0
gardener-extension-provider-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.42.0

Update provider-openstack to 1.46.0

no release notes available

Helm Charts

admission-openstack-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-openstack-application:v1.46.0
admission-openstack-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-openstack-runtime:v1.46.0
provider-openstack: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-openstack:v1.46.0

Docker Images

gardener-extension-admission-openstack: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-openstack:v1.46.0
gardener-extension-provider-openstack: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-openstack:v1.46.0

Update cert-management to 0.17.3

[gardener/cert-management]

🏃 Others

[DEPENDENCY] Update module gardener/gardener from v1.110.0 to v1.110.2. by @gardener-ci-robot [#385]
[DEPENDENCY] Update module cert-manager/cert-manager from v1.16.2 to v1.16.3. by @gardener-ci-robot [#388]
[DEPENDENCY] Update golang docker tag from 1.23.4 to 1.23.5. by @gardener-ci-robot [#390]
[DEPENDENCY] Update go toolchain from 1.23.4 to 1.23.5. by @gardener-ci-robot [#389]
[DEPENDENCY] Update module gardener/external-dns-management from v0.22.2 to v0.23.0. by @gardener-ci-robot [#392]
[DEPENDENCY] Update module gardener/gardener from v1.110.4 to v1.111.0. by @gardener-ci-robot [#393]
[DEPENDENCY] Update module letsencrypt/pebble from v2.6.0 to v2.7.0. by @gardener-ci-robot [#394]

Helm Charts

cert-controller-manager: europe-docker.pkg.dev/gardener-project/releases/charts/cert-controller-manager:v0.17.3

Docker Images

cert-management: europe-docker.pkg.dev/gardener-project/releases/cert-controller-manager:v0.17.3

Update provider-gcp to 1.42.1

[gardener/gardener-extension-provider-gcp]

🏃 Others

[OPERATOR] Fix an issue where the node-cidr-mask-size was not respected by the IPAM controller of the cloud-controller-manager by @kon-angelo [#955]

Helm Charts

admission-gcp-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-application:v1.42.1
admission-gcp-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-runtime:v1.42.1
provider-gcp: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-gcp:v1.42.1

Docker Images

gardener-extension-admission-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.42.1
gardener-extension-provider-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.42.1

Update dashboard to 1.79.1

[gardener/dashboard]

🐛 Bug Fixes

[OPERATOR] Fixed an issue with redirectPath handling during the OIDC authentication flow. by @petersutter [#2278]

Docker Images

gardener-dashboard: europe-docker.pkg.dev/gardener-project/releases/gardener/dashboard:1.79.1

Update dashboard to 1.79.1

[gardener/dashboard]

🐛 Bug Fixes

[OPERATOR] Fixed an issue with redirectPath handling during the OIDC authentication flow. by @petersutter [#2278]

Docker Images

gardener-dashboard: europe-docker.pkg.dev/gardener-project/releases/gardener/dashboard:1.79.1

Update shoot-dns-service to 1.58.0

[gardener/gardener-extension-shoot-dns-service]

🏃 Others

[OPERATOR] Select dns-controller-manager image by seed-label service.dns.extensions.gardener.cloud/drop-metadata-records by @MartinWeindel [#426]

Helm Charts

admission-shoot-dns-service-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-application:v1.58.0
admission-shoot-dns-service-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-runtime:v1.58.0
shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-dns-service:v1.58.0

Docker Images

gardener-extension-admission-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-shoot-dns-service:v1.58.0
gardener-extension-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-dns-service:v1.58.0

Update os-coreos to 1.23.0

[gardener/gardener-extension-os-coreos]

✨ New Features

[OPERATOR] Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#121]

🏃 Others

[DEVELOPER] Static Application Security Testing (sast) with gosec got enabled on this repository. by @MrBatschner [#145]
[OPERATOR] Container images for the coreos extension are now built with Docker buildx to enable cross-platform builds and default to the linux/amd64 architecture. by @Roncossek [#148]
[OPERATOR] Allows the operator to deploy nodes with the timesyncing service ntp to be enabled and configured by default by @nschad [#142]

Helm Charts

os-coreos: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/os-coreos:v1.23.0

Docker Images

gardener-extension-os-coreos: europe-docker.pkg.dev/gardener-project/releases/extensions/os-coreos:v1.23.0

Update gardener-controlplane to 1.111.1

[gardener/gardener]

✨ New Features

[DEVELOPER] A wrapper function for OperatingSystemConfig provisioning bash script has been implemented. Using the wrapper ensures that the script exits early in case it has been executed successfully before. by @oliver-goetz [#11257]

🏃 Others

[DEPENDENCY] The gardener/dashboard image has been updated to 1.79.1. Release Notes by @gardener-ci-robot [#11262]
[OPERATOR] An issue has been fixed that caused the garden reconciliation to stop when structured authentication was used in combination with the gardener-dashboard oidcConfig. by @timuthy [#11233]
[DEVELOPER] testing framework: The RootPodExecutor no longer requires output from command execution to interpret the command execution as successful. by @ialidzhikov [#11253]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.1

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.1

Update gardener-controlplane to 1.111.1

[gardener/gardener]

✨ New Features

[DEVELOPER] A wrapper function for OperatingSystemConfig provisioning bash script has been implemented. Using the wrapper ensures that the script exits early in case it has been executed successfully before. by @oliver-goetz [#11257]

🏃 Others

[DEPENDENCY] The gardener/dashboard image has been updated to 1.79.1. Release Notes by @gardener-ci-robot [#11262]
[OPERATOR] An issue has been fixed that caused the garden reconciliation to stop when structured authentication was used in combination with the gardener-dashboard oidcConfig. by @timuthy [#11233]
[DEVELOPER] testing framework: The RootPodExecutor no longer requires output from command execution to interpret the command execution as successful. by @ialidzhikov [#11253]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.1

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.1

Update gardenlet to 1.111.1

[gardener/gardener]

✨ New Features

[DEVELOPER] A wrapper function for OperatingSystemConfig provisioning bash script has been implemented. Using the wrapper ensures that the script exits early in case it has been executed successfully before. by @oliver-goetz [#11257]

🏃 Others

[DEPENDENCY] The gardener/dashboard image has been updated to 1.79.1. Release Notes by @gardener-ci-robot [#11262]
[OPERATOR] An issue has been fixed that caused the garden reconciliation to stop when structured authentication was used in combination with the gardener-dashboard oidcConfig. by @timuthy [#11233]
[DEVELOPER] testing framework: The RootPodExecutor no longer requires output from command execution to interpret the command execution as successful. by @ialidzhikov [#11253]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.1

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.1

Update provider-azure to 1.49.4

[gardener/remedy-controller]

✨ New Features

[OPERATOR] The remedy controller now supports authentication via federated token. The file containing the token can be specified via the "aadFederatedTokenFile" field. by @dimityrmirchev [gardener/remedy-controller#64]

🏃 Others

[OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/remedy-controller#66]
[DEPENDENCY] Introduce SAST checking by @kon-angelo [gardener/remedy-controller#66]
[DEPENDENCY] Update gardener to v1.110.4 by @kon-angelo [gardener/remedy-controller#66]
[DEPENDENCY] Update go version to v1.22.0 by @LucaBernstein [gardener/remedy-controller#63]
[DEPENDENCY] Update gardener/gardener version to v1.96.2 by @LucaBernstein [gardener/remedy-controller#63]
[DEVELOPER] The vendor directory was removed in favor of the go mod cache. by @LucaBernstein [gardener/remedy-controller#63]

[gardener/terraformer]

🐛 Bug Fixes

[DEVELOPER] Provider azurerm was updated to version 3.47.0 and is now properly recognising the ARM_OIDC_TOKEN_FILE_PATH env variable. by @dimityrmirchev [gardener/terraformer#156]

🏃 Others

[OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/terraformer#157]
[OPERATOR] Update alpine to v3.21.2 by @kon-angelo [gardener/terraformer#157]

Helm Charts

admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.49.4
admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.49.4
provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.49.4

Docker Images

gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.49.4
gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.49.4

Update networking-calico to 1.46.1

no release notes available

Helm Charts

admission-calico-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.46.1
admission-calico-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.46.1
networking-calico: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.46.1

Docker Images

gardener-extension-admission-calico: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.46.1
gardener-extension-networking-calico: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.46.1

Update os-gardenlinux to 0.28.1

no release notes available

Helm Charts

os-gardenlinux: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/os-gardenlinux:v0.28.1

Docker Images

gardener-extension-os-gardenlinux: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/os-gardenlinux:v0.28.1

Update shoot-dns-service to 1.59.0

[gardener/gardener-extension-shoot-dns-service]

⚠️ Breaking Changes

[OPERATOR] The Helm charts for the application and runtime parts of the gardener-extension-admission-shoot-dns-service admission controller have been separated into standalone charts. These charts now assume a Garden setup with a virtual garden. Both charts must be deployed individually: the runtime chart on the Garden runtime cluster, and the application chart on the virtual garden. Additionally, the intermediate global level in the Helm values has been removed, so you may need to adjust your provided values accordingly. by @MartinWeindel [#429]

🏃 Others

[OPERATOR] Containers, which do not require privilege escalations, now forbid privilege escalations explicitly. by @georgibaltiev [#427]
[OPERATOR] Prepare for deployment of admission controller by gardener-operator by @MartinWeindel [#429]

Helm Charts

admission-shoot-dns-service-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-application:v1.59.0
admission-shoot-dns-service-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-runtime:v1.59.0
shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-dns-service:v1.59.0

Docker Images

gardener-extension-admission-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-shoot-dns-service:v1.59.0
gardener-extension-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-dns-service:v1.59.0

Update os-coreos to 1.24.0

[gardener/gardener-extension-os-coreos]

📰 Noteworthy

[OPERATOR] The 11-exec_config.conf is now being reconciled by the Provision step of the gardener-node-agent by @nschad [#161]

Helm Charts

os-coreos: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/os-coreos:v1.24.0

Docker Images

gardener-extension-os-coreos: europe-docker.pkg.dev/gardener-project/releases/extensions/os-coreos:v1.24.0

Update gardener-metrics-exporter to 0.34.0

[gardener/gardener-metrics-exporter]

🐛 Bug Fixes

[OPERATOR] fix some node related metrics not scraped by @crigertg [#116]

Docker Images

metrics-exporter: europe-docker.pkg.dev/gardener-project/releases/gardener/metrics-exporter:0.34.0

Update gardener-metrics-exporter to 0.34.0

[gardener/gardener-metrics-exporter]

🐛 Bug Fixes

[OPERATOR] fix some node related metrics not scraped by @crigertg [#116]

Docker Images

metrics-exporter: europe-docker.pkg.dev/gardener-project/releases/gardener/metrics-exporter:0.34.0

Update gardener-controlplane to 1.111.2

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] A bug preventing the deletion of Shoots that previously failed to create due to an erroneous kube-apiserver has been fixed. by @shafeeqes [#11296]
[OPERATOR] A bug which leads to a gardenlet nil pointer exception when running shoot deletion or migration flow for shoots where shoot.status.networking == nil has been fixed. by @oliver-goetz [#11307]
[OPERATOR] A bug which might lead to duplicate config entries for node-agent-authorizer webhook has been fixed. by @oliver-goetz [#11302]

🏃 Others

[DEPENDENCY] The gardener/machine-controller-manager image has been updated to v0.56.0. Release Notes by @gardener-ci-robot [#11299]
[DEPENDENCY] The gardener/autoscaler image has been updated to v1.30.2. Release Notes by @gardener-ci-robot [#11298]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.2
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.2

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.2
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.2
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.2
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.2
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.2
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.2

Update gardener-controlplane to 1.111.2

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] A bug preventing the deletion of Shoots that previously failed to create due to an erroneous kube-apiserver has been fixed. by @shafeeqes [#11296]
[OPERATOR] A bug which leads to a gardenlet nil pointer exception when running shoot deletion or migration flow for shoots where shoot.status.networking == nil has been fixed. by @oliver-goetz [#11307]
[OPERATOR] A bug which might lead to duplicate config entries for node-agent-authorizer webhook has been fixed. by @oliver-goetz [#11302]

🏃 Others

[DEPENDENCY] The gardener/machine-controller-manager image has been updated to v0.56.0. Release Notes by @gardener-ci-robot [#11299]
[DEPENDENCY] The gardener/autoscaler image has been updated to v1.30.2. Release Notes by @gardener-ci-robot [#11298]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.2
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.2

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.2
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.2
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.2
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.2
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.2
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.2

Update gardenlet to 1.111.2

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] A bug preventing the deletion of Shoots that previously failed to create due to an erroneous kube-apiserver has been fixed. by @shafeeqes [#11296]
[OPERATOR] A bug which leads to a gardenlet nil pointer exception when running shoot deletion or migration flow for shoots where shoot.status.networking == nil has been fixed. by @oliver-goetz [#11307]
[OPERATOR] A bug which might lead to duplicate config entries for node-agent-authorizer webhook has been fixed. by @oliver-goetz [#11302]

🏃 Others

[DEPENDENCY] The gardener/machine-controller-manager image has been updated to v0.56.0. Release Notes by @gardener-ci-robot [#11299]
[DEPENDENCY] The gardener/autoscaler image has been updated to v1.30.2. Release Notes by @gardener-ci-robot [#11298]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.111.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.111.2
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.111.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.111.2

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.111.2
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.111.2
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.111.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.111.2
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.111.2
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.111.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.111.2
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.111.2

Update shoot-flux to 0.15.0

What's Changed

🤖 Update module github.com/spf13/pflag to v1.0.6 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/131
🤖 Update module github.com/onsi/gomega to v1.36.2 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/129
🤖 Update k8s and gardener packages (patch) by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/106
🤖 Update k8s.io/utils digest to 24370be by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/126
🤖 Update module golang.org/x/tools to v0.29.0 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/124
🤖 Update dependency go to v1.23.5 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/123
🤖 Update module github.com/onsi/ginkgo/v2 to v2.22.2 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/128
🤖 Update dependency go to v1.23.6 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/132
🤖 Update module github.com/gardener/gardener to v1.111.2 by @renovate in https://github.com/stackitcloud/gardener-extension-shoot-flux/pull/112

Full Changelog: https://github.com/stackitcloud/gardener-extension-shoot-flux/compare/v0.14.0...v0.15.0

Update cert-management to 0.17.4

[gardener/cert-management]

🐛 Bug Fixes

[USER] Fix exhaustion of request quotas on concurrent certificates with same domain name by @MartinWeindel [#399]

🏃 Others

[DEPENDENCY] Update module gardener/gardener to v1.111.1. by @gardener-ci-robot [#398]

Helm Charts

cert-controller-manager: europe-docker.pkg.dev/gardener-project/releases/charts/cert-controller-manager:v0.17.4

Docker Images

cert-management: europe-docker.pkg.dev/gardener-project/releases/cert-controller-manager:v0.17.4

Update shoot-cert-service to 1.48.0

[gardener/cert-management]

🐛 Bug Fixes

[USER] Fix exhaustion of request quotas on concurrent certificates with same domain name by @MartinWeindel [gardener/cert-management#399]

🏃 Others

[OPERATOR] Support DNSRecord.spec.class by annotation cert.gardener.cloud/dnsrecord-class by @MartinWeindel [gardener/cert-management#384]
[DEPENDENCY] Update module gardener/gardener to v1.111.1. by @gardener-ci-robot [gardener/cert-management#398]

📖 Documentation

[DEVELOPER] Document gaps between the community cert-manager and Gardener's cert-management. by @marc1404 [gardener/cert-management#379]

[gardener/gardener-extension-shoot-cert-service]

🏃 Others

[OPERATOR] Bumps github.com/gardener/gardener from 1.109.0 to 1.110.0. by @dependabot[bot] [#324]
[OPERATOR] Containers, which do not require privilege escalations, now forbid privilege escalations explicitly. by @georgibaltiev [#335]

Helm Charts

shoot-cert-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-cert-service:v1.48.0

Docker Images

gardener-extension-shoot-cert-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.48.0

Update gardener-controlplane to 1.112.0

Update gardenlet to 1.112.0

Update cert-management to 0.17.5

[gardener/cert-management]

✨ New Features

[OPERATOR] Introduce multi-arch build for linux/arm64 images. by @marc1404 [#405]

Helm Charts

cert-controller-manager: europe-docker.pkg.dev/gardener-project/releases/charts/cert-controller-manager:v0.17.5

Docker Images

cert-management: europe-docker.pkg.dev/gardener-project/releases/cert-controller-manager:v0.17.5

Update external-dns-management to 0.23.1

[gardener/external-dns-management]

✨ New Features

[OPERATOR] Introduce multi-arch build for linux/arm64 images. by @marc1404 [#413]

Helm Charts

dns-controller-manager: europe-docker.pkg.dev/gardener-project/releases/charts/dns-controller-manager:v0.23.1

Docker Images

dns-controller-manager: europe-docker.pkg.dev/gardener-project/releases/dns-controller-manager:v0.23.1

Update shoot-dns-service to 1.60.0

[gardener/external-dns-management]

✨ New Features

[OPERATOR] Introduce multi-arch build for linux/arm64 images. by @marc1404 [gardener/external-dns-management#413]

[gardener/gardener-extension-shoot-dns-service]

🐛 Bug Fixes

[OPERATOR] Delay reconciliation of DNSEntries during restore step of control plane migration. by @MartinWeindel [#438]

Helm Charts

admission-shoot-dns-service-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-application:v1.60.0
admission-shoot-dns-service-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-shoot-dns-service-runtime:v1.60.0
shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-dns-service:v1.60.0

Docker Images

gardener-extension-admission-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-shoot-dns-service:v1.60.0
gardener-extension-shoot-dns-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-dns-service:v1.60.0

Update provider-gcp to 1.42.2

[gardener/gardener-extension-provider-gcp]

Helm Charts

admission-gcp-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-application:v1.42.2
admission-gcp-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-runtime:v1.42.2
provider-gcp: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-gcp:v1.42.2

Docker Images

gardener-extension-admission-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.42.2
gardener-extension-provider-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.42.2

Update provider-azure to 1.50.0

[gardener/gardener-extension-provider-azure]

⚠️ Breaking Changes

[USER] VMSS-Flex based shoots are not the default deployment for non-zonal shoots. by @kon-angelo [#1025]
[USER] Disable the creation of Availability-Set-based shoots. by @kon-angelo [#1025]
[OPERATOR] The Helm charts for the application and runtime parts of the gardener-extension-admission-azure admission controller have been separated into standalone charts. These charts now assume a Garden setup with a virtual garden. Both charts must be deployed individually: the runtime chart on the Garden runtime cluster, and the application chart on the virtual garden. Additionally, the intermediate global level in the Helm values has been removed, so you may need to adjust your provided values accordingly. by @MartinWeindel [#1030]

📰 Noteworthy

[USER] The kube-system/csi-driver-node-disk and kube-system/csi-driver-node-file DaemonSet are no longer scaled by a VerticalPodAutoscaler as they do not really benefit from it. Removing VerticalPodAutoscaler for these components will reduce unnecessary evictions by VPA and will be a mitigation for https://issues.k8s.io/126921. by @ialidzhikov [#1046]

✨ New Features

[USER] Introduce an annotation to migrate the availability-set shoots to VMSS-Flex shoots. by @kon-angelo [#1025]
[OPERATOR] Adjustments for additional deployment of extension and admission controller on Garden runtime cluster by gardener-operator. by @MartinWeindel [#1030]

🏃 Others

[OPERATOR] Fix an issue where the provider-extension would delete a route table because of a location mismatch by @kon-angelo [#1068]
[OPERATOR] Fixed an issue that prevented the Infrastructure resource to be correctly restored during control plane migration, if the Infrastructure was previously migrated from a single subnet network layout to a multiple subnet network layout. by @plkokanov [#907]
[OPERATOR] Validate that all images in cloudProfile are valid images in the cloudProfileConfig by @hebelsan [#1020]
[USER] Shoots with NodeLocalDNS enabled will use UDP instead of TCP for upstream DNS queries by default to avoid performance issues on Azure. by @domdom82 [#1032]
[USER] Update CSI images by @AndreasBurger [#1063]
[DEPENDENCY] Update gardener to v1.110.0 by @hebelsan [#1044]

[gardener/machine-controller-manager-provider-azure]

🏃 Others

[DEVELOPER] The gardener/machine-controller-manager dependency has been updated to v0.55.1. Release Notes by @thiyyakat [gardener/machine-controller-manager-provider-azure#169]
[DEVELOPER] Added gosec for Static Application Security Testing (SAST). by @thiyyakat [gardener/machine-controller-manager-provider-azure#169]
[DEVELOPER] Updated go lang version to 1.23 by @thiyyakat [gardener/machine-controller-manager-provider-azure#169]
[USER] It is now possible to use a workload identity token instead of a client secret when authenticating to Azure. The path to the file containing the federated token can be configured via the "workloadIdentityTokenFile" field in the secret config. by @dimityrmirchev [gardener/machine-controller-manager-provider-azure#167]

Helm Charts

admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.50.0
admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.50.0
provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.50.0

Docker Images

gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.50.0
gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.50.0

Update networking-calico to 1.46.2

[gardener/gardener-extension-networking-calico]

🏃 Others

[OPERATOR] Allow enablement of source network address translation in IPv6 scenarios. by @ScheererJ [#585]

Helm Charts

admission-calico-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.46.2
admission-calico-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.46.2
networking-calico: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.46.2

Docker Images

gardener-extension-admission-calico: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.46.2
gardener-extension-networking-calico: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.46.2

Update gardener-controlplane to 1.112.1

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] Specifying Seed labels in ManagedSeed.spec.gardenlet.config.seedConfig.metadata.labels is fixed. by @timebertt [#11368]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.112.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.112.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.112.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.112.1

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.112.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.112.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.112.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.112.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.112.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.112.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.112.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.112.1

Update gardener-controlplane to 1.112.1

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] Specifying Seed labels in ManagedSeed.spec.gardenlet.config.seedConfig.metadata.labels is fixed. by @timebertt [#11368]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.112.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.112.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.112.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.112.1

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.112.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.112.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.112.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.112.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.112.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.112.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.112.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.112.1

Update gardenlet to 1.112.1

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] Specifying Seed labels in ManagedSeed.spec.gardenlet.config.seedConfig.metadata.labels is fixed. by @timebertt [#11368]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.112.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.112.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.112.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.112.1

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.112.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.112.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.112.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.112.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.112.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.112.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.112.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.112.1

Update cloudprofiles to 0.7.23

Full Changelog: https://github.com/gardener-community/cloudprofiles/compare/0.7.22...0.7.23

Update shoot-oidc-service to 0.30.0

[gardener/oidc-webhook-authenticator]

✨ New Features

[USER] OWA is built using go version 1.23.5. by @dimityrmirchev [gardener/oidc-webhook-authenticator#171]

🏃 Others

[USER] Dependency to gopkg.in/square/go-jose.v2 was replaced with github.com/go-jose/go-jose/v4 by @dimityrmirchev [gardener/oidc-webhook-authenticator#169]
[USER] OWA is now built using go version 1.23.6. by @dimityrmirchev [gardener/oidc-webhook-authenticator#172]
[DEPENDENCY] golang.org/x/crypto was updated to v0.31.0 by @dimityrmirchev [gardener/oidc-webhook-authenticator#168]

[gardener/gardener-extension-shoot-oidc-service]

✨ New Features

[USER] Containers, which do not require privilege escalations, now forbid privilege escalations explicitly. by @georgibaltiev [#276]

🏃 Others

[OPERATOR] Extension reconciliation and kube-apiserver deployment mutation flows are improved to not consider hibernation status of the shoot cluster as OWA is no longer authenticating itself in-front of the kube-apiserver and the dead lock around issuing access tokens cannot occur anymore. by @vpnachev [#277]

Helm Charts

shoot-oidc-service: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-oidc-service:v0.30.0

Docker Images

gardener-extension-shoot-oidc-service: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-oidc-service:v0.30.0

Update gardener-controlplane to 1.112.2

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] An issue was fixed that caused a downtime of Gardener API services up to 1m every time the virtual-garden-kube-controller-manager changed its leader. by @plkokanov [#11454]
[OPERATOR] Fixed a bug that caused the Gardenlet to crash when deleting a hibernated shoot if the NodeAgentAuthorizer feature gate was enabled by @Wieneo [#11415]

🏃 Others

[DEPENDENCY] The following dependencies have been updated:
- gardener/machine-controller-manager from v0.56.0 to v0.56.1. Release Notes
- github.com/gardener/machine-controller-manager from v0.56.0 to v0.56.1. by @plkokanov [#11451]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.112.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.112.2
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.112.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.112.2

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.112.2
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.112.2
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.112.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.112.2
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.112.2
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.112.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.112.2
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.112.2

Update gardener-controlplane to 1.112.2

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] An issue was fixed that caused a downtime of Gardener API services up to 1m every time the virtual-garden-kube-controller-manager changed its leader. by @plkokanov [#11454]
[OPERATOR] Fixed a bug that caused the Gardenlet to crash when deleting a hibernated shoot if the NodeAgentAuthorizer feature gate was enabled by @Wieneo [#11415]

🏃 Others

[DEPENDENCY] The following dependencies have been updated:
- gardener/machine-controller-manager from v0.56.0 to v0.56.1. Release Notes
- github.com/gardener/machine-controller-manager from v0.56.0 to v0.56.1. by @plkokanov [#11451]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.112.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.112.2
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.112.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.112.2

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.112.2
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.112.2
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.112.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.112.2
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.112.2
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.112.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.112.2
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.112.2

Update gardenlet to 1.112.2

[gardener/gardener]

🐛 Bug Fixes

[OPERATOR] An issue was fixed that caused a downtime of Gardener API services up to 1m every time the virtual-garden-kube-controller-manager changed its leader. by @plkokanov [#11454]
[OPERATOR] Fixed a bug that caused the Gardenlet to crash when deleting a hibernated shoot if the NodeAgentAuthorizer feature gate was enabled by @Wieneo [#11415]

🏃 Others

[DEPENDENCY] The following dependencies have been updated:
- gardener/machine-controller-manager from v0.56.0 to v0.56.1. Release Notes
- github.com/gardener/machine-controller-manager from v0.56.0 to v0.56.1. by @plkokanov [#11451]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.112.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.112.2
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.112.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.112.2

Docker Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.112.2
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.112.2
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.112.2
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.112.2
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.112.2
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.112.2
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.112.2
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.112.2

Update os-gardenlinux to 0.29.0

[gardener/gardener-extension-os-gardenlinux]

🐛 Bug Fixes

[OPERATOR] Previous removal of 11-exec_config.conf systemd drop-in for containerd from the provision OSC was reverted, the file gets created again. by @MrBatschner [#232]
[OPERATOR] The provision OSC script does not run anymore when the node is rebooting. by @oliver-goetz [#231]

Helm Charts

os-gardenlinux: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/os-gardenlinux:v0.29.0

Docker Images

gardener-extension-os-gardenlinux: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/os-gardenlinux:v0.29.0

Update provider-alicloud to 1.59.0

[gardener/gardener-extension-provider-alicloud]

✨ New Features

[USER] Enable support for the field shoot.Spec.CloudProfile alongside cloudProfileName and enable the future use of NamespacedCloudProfiles. by @LucaBernstein [#755]
[USER] The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.32. You should consider the Kubernetes release notes before upgrading to 1.32. by @LucaBernstein [#762]

🐛 Bug Fixes

[OPERATOR] Correctly inject podNetwork cidr in control plane chart values. by @LucaBernstein [#763]

🏃 Others

[OPERATOR] Add gosec as sast makefile target by @kevin-lacoo [#758]
[OPERATOR] Add NamespacedCloudProfile admission mutation and validation to support custom machine images and types. by @LucaBernstein [#755]

[gardener/machine-controller-manager-provider-alicloud]

🏃 Others

[OPERATOR] Added gosec for Static Application Security Testing (SAST). by @aaronfern [gardener/machine-controller-manager-provider-alicloud#85]
[OPERATOR] golangci-lint will now be used as the linter instead of the older golint by @aaronfern [gardener/machine-controller-manager-provider-alicloud#80]
[OPERATOR] vendored MCM version has been upgraded to v0.56.0 by @aaronfern [gardener/machine-controller-manager-provider-alicloud#86]
[OPERATOR] pipeline_integration_test now uses the control plane of a cluster to deploy objects part of its tests by @aaronfern [gardener/machine-controller-manager-provider-alicloud#86]
[USER] Golang version updated to 1.22.5 by @rishabh-11 [gardener/machine-controller-manager-provider-alicloud#81]
[DEVELOPER] Golang version updated to 1.23.3 by @aaronfern [gardener/machine-controller-manager-provider-alicloud#87]

Helm Charts

admission-alicloud-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-application:v1.59.0
admission-alicloud-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-runtime:v1.59.0
provider-alicloud: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.59.0

Docker Images

gardener-extension-admission-alicloud: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.59.0
gardener-extension-provider-alicloud: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.59.0

Yake release notes and upgrade guide​

Related upstream release notes / changelogs​

General Changes​

[gardener/gardener]

🐛 Bug Fixes​

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener]

🐛 Bug Fixes​

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener]

🐛 Bug Fixes​

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener-extension-provider-azure]

🐛 Bug Fixes​

Helm Charts​

Docker Images​

[gardener/gardener]

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener]

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener]

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener-extension-os-gardenlinux]

🏃 Others​

Helm Charts​

Docker Images​

What's Changed​

[gardener/gardener-extension-shoot-dns-service]

📰 Noteworthy​

Helm Charts​

Docker Images​

[gardener/dashboard]

⚠️ Breaking Changes​

🐛 Bug Fixes​

🏃 Others​

📖 Documentation​

Docker Images​

[gardener/dashboard]

⚠️ Breaking Changes​

🐛 Bug Fixes​

🏃 Others​

📖 Documentation​

Docker Images​

[gardener/terminal-controller-manager]

⚠️ Breaking Changes​

✨ New Features​

Docker Images​

[gardener/terminal-controller-manager]

⚠️ Breaking Changes​

✨ New Features​

Docker Images​

[gardener/gardener-extension-networking-calico]

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener-extension-os-ubuntu]

🏃 Others​

Helm Charts​

Docker Images​

[gardener/gardener-extension-runtime-gvisor]

🏃 Others​

Helm Charts​

Docker Images​

[gardener/external-dns-management]

⚠️ Breaking Changes​

🐛 Bug Fixes​

Helm Charts​

Docker Images​

Yake release notes and upgrade guide

Related upstream release notes / changelogs

General Changes

🐛 Bug Fixes

🏃 Others

Helm Charts

Docker Images

🐛 Bug Fixes

🏃 Others

Helm Charts

Docker Images

🐛 Bug Fixes

🏃 Others

Helm Charts

Docker Images

🐛 Bug Fixes

Helm Charts

Docker Images

🏃 Others

Helm Charts

Docker Images

🏃 Others

Helm Charts

Docker Images

🏃 Others

Helm Charts

Docker Images

🏃 Others

Helm Charts

Docker Images

What's Changed

📰 Noteworthy

Helm Charts

Docker Images

⚠️ Breaking Changes

🐛 Bug Fixes

🏃 Others

📖 Documentation

Docker Images

⚠️ Breaking Changes

🐛 Bug Fixes

🏃 Others

📖 Documentation

Docker Images

⚠️ Breaking Changes

✨ New Features

Docker Images

⚠️ Breaking Changes

✨ New Features

Docker Images

🏃 Others

Helm Charts

Docker Images

🏃 Others

Helm Charts

Docker Images

🏃 Others

Helm Charts

Docker Images

⚠️ Breaking Changes

🐛 Bug Fixes

Helm Charts

Docker Images

⚠️ Breaking Changes

📰 Noteworthy

✨ New Features

🐛 Bug Fixes

🏃 Others

Helm Charts

Docker Images

⚠️ Breaking Changes

📰 Noteworthy

✨ New Features

🐛 Bug Fixes

🏃 Others

Helm Charts

Docker Images

⚠️ Breaking Changes

📰 Noteworthy

✨ New Features