diff --git a/.github/workflows/check-links.yaml b/.github/workflows/check-links.yaml index 71f13549..581a593a 100644 --- a/.github/workflows/check-links.yaml +++ b/.github/workflows/check-links.yaml @@ -15,7 +15,7 @@ jobs: issues: write steps: - name: Checkout Code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 - name: Restore lychee cache uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 @@ -41,7 +41,7 @@ jobs: - name: Create Issue From File if: ${{ steps.lychee.outputs.exit_code != 0 }} - uses: peter-evans/create-issue-from-file@24452a72d85239eacf1468b0f1982a9f3fec4c94 # v5.0.0 + uses: peter-evans/create-issue-from-file@e8ef132d6df98ed982188e460ebb3b5d4ef3a9cd # v5.0.1 with: title: Link Checker Report content-filepath: ./lychee/out.md diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml index bf58f6e0..cf5c866c 100644 --- a/.github/workflows/ci.yaml +++ b/.github/workflows/ci.yaml @@ -14,7 +14,7 @@ concurrency: jobs: lint: runs-on: ubuntu-24.04 - container: ghcr.io/chgl/kube-powertools:v2.3.22@sha256:3693e6ffe8f3d4f4dfbf9fcc7a18b8f26e561870668031667d9132df3a9ee8ab + container: ghcr.io/chgl/kube-powertools:v2.3.25@sha256:99b5cc7a49cd443fb953ca4ab52dc45245a5c43ad03e3503be06d0d0f512b67d steps: - name: Harden Runner uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 @@ -28,7 +28,7 @@ jobs: git config --global --add safe.directory /__w/charts/charts - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: fetch-depth: 0 @@ -91,7 +91,7 @@ jobs: disable-telemetry: true - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: fetch-depth: 0 @@ -124,7 +124,7 @@ jobs: if: ${{ false }} needs: - test - container: ghcr.io/chgl/kube-powertools:v2.3.22@sha256:3693e6ffe8f3d4f4dfbf9fcc7a18b8f26e561870668031667d9132df3a9ee8ab + container: ghcr.io/chgl/kube-powertools:v2.3.25@sha256:99b5cc7a49cd443fb953ca4ab52dc45245a5c43ad03e3503be06d0d0f512b67d permissions: pull-requests: write contents: write @@ -134,7 +134,7 @@ jobs: git config --global --add safe.directory /__w/charts/charts - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: fetch-depth: 0 ref: ${{ github.event.pull_request.head.ref }} diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml index cb97c315..d85e6ebb 100644 --- a/.github/workflows/mega-linter.yml +++ b/.github/workflows/mega-linter.yml @@ -30,7 +30,7 @@ jobs: steps: # Git Checkout - name: Checkout Code - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: token: ${{ secrets.GITHUB_TOKEN }} fetch-depth: 0 # If you use VALIDATE_ALL_CODEBASE = true, you can remove this line to improve performances diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 213ea2d8..5ec258a8 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -12,7 +12,7 @@ permissions: read-all jobs: release: runs-on: ubuntu-24.04 - container: ghcr.io/chgl/kube-powertools:v2.3.22@sha256:3693e6ffe8f3d4f4dfbf9fcc7a18b8f26e561870668031667d9132df3a9ee8ab + container: ghcr.io/chgl/kube-powertools:v2.3.25@sha256:99b5cc7a49cd443fb953ca4ab52dc45245a5c43ad03e3503be06d0d0f512b67d permissions: contents: write packages: write @@ -23,7 +23,7 @@ jobs: git config --global --add safe.directory /__w/charts/charts - name: Checkout - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: fetch-depth: 0 diff --git a/.github/workflows/scorecards.yaml b/.github/workflows/scorecards.yaml index 2785cc70..cf570da9 100644 --- a/.github/workflows/scorecards.yaml +++ b/.github/workflows/scorecards.yaml @@ -32,7 +32,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0 with: persist-credentials: false @@ -67,6 +67,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@8214744c546c1e5c8f03dde8fab3a7353211988d # v3.26.7 + uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10 with: sarif_file: results.sarif diff --git a/README.md b/README.md index 5d7337d1..d8520028 100644 --- a/README.md +++ b/README.md @@ -39,7 +39,7 @@ helm repo update 1. Mount the folder in the [kube-powertools](https://github.com/chgl/kube-powertools) container to easily run linters and checks ```sh - docker run --rm -it -v $PWD:/root/workspace ghcr.io/chgl/kube-powertools:v2.3.22@sha256:3693e6ffe8f3d4f4dfbf9fcc7a18b8f26e561870668031667d9132df3a9ee8ab + docker run --rm -it -v $PWD:/root/workspace ghcr.io/chgl/kube-powertools:v2.3.25@sha256:99b5cc7a49cd443fb953ca4ab52dc45245a5c43ad03e3503be06d0d0f512b67d ``` 1. Run chart-testing and the `chart-powerlint.sh` script to lint the chart @@ -51,7 +51,7 @@ helm repo update 1. (Optional) View the results of the [polaris audit check](https://github.com/FairwindsOps/polaris) in your browser ```sh - $ docker run --rm -it -p 9090:8080 -v $PWD:/root/workspace ghcr.io/chgl/kube-powertools:v2.3.22@sha256:3693e6ffe8f3d4f4dfbf9fcc7a18b8f26e561870668031667d9132df3a9ee8ab + $ docker run --rm -it -p 9090:8080 -v $PWD:/root/workspace ghcr.io/chgl/kube-powertools:v2.3.25@sha256:99b5cc7a49cd443fb953ca4ab52dc45245a5c43ad03e3503be06d0d0f512b67d bash-5.0: helm template charts/fhir-server/ | polaris dashboard --config=.polaris.yaml --audit-path=- ``` diff --git a/charts/fhir-server-exporter/Chart.lock b/charts/fhir-server-exporter/Chart.lock index a97030ec..d9e29b01 100644 --- a/charts/fhir-server-exporter/Chart.lock +++ b/charts/fhir-server-exporter/Chart.lock @@ -1,6 +1,6 @@ dependencies: - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -digest: sha256:4ef85dc0f268d2dbf824c44c0ffd3d63a763c760139603ad124dbeadfbc14895 -generated: "2024-09-13T19:42:32.608641029Z" + version: 2.24.0 +digest: sha256:328f5ab309b9b75d3516ba5ec0f1869b91eaa1e8503492772eac345c4962fcf6 +generated: "2024-10-03T13:16:44.510985757Z" diff --git a/charts/fhir-server-exporter/Chart.yaml b/charts/fhir-server-exporter/Chart.yaml index 32a72086..4dc936c2 100644 --- a/charts/fhir-server-exporter/Chart.yaml +++ b/charts/fhir-server-exporter/Chart.yaml @@ -16,8 +16,8 @@ kubeVersion: ">= 1.19.0" dependencies: - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -version: 1.1.5 + version: 2.24.0 +version: 1.1.6 appVersion: 2.x annotations: artifacthub.io/license: Apache-2.0 diff --git a/charts/fhir-server-exporter/values.yaml b/charts/fhir-server-exporter/values.yaml index 62a047f3..56339003 100644 --- a/charts/fhir-server-exporter/values.yaml +++ b/charts/fhir-server-exporter/values.yaml @@ -27,7 +27,7 @@ replicaCount: 1 image: # +doc-gen:ignore registry: ghcr.io repository: chgl/fhir-server-exporter - tag: v2.3.12@sha256:37b80b5b6daa88648eb2ca0e573a908375cf23b3c232c3cf9a63f7c3fd9c1499 + tag: v2.3.15@sha256:2d3a16d1871c5b0446891ca7e045781516b9e7b5b612fd64bf08158ca0443fee pullPolicy: IfNotPresent imagePullSecrets: [] @@ -130,7 +130,7 @@ curl: # +doc-gen:ignore image: registry: docker.io repository: curlimages/curl - tag: 8.10.0@sha256:a3838a5cf24fe940ec63e98fc37ce1dbe1d43286dc2b803c5bc5e9f067c7ad6d + tag: 8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b podDisruptionBudget: # create a PodDisruptionBudget resource for the pods diff --git a/charts/fhir-server/Chart.lock b/charts/fhir-server/Chart.lock index c4c354e7..00d83dbf 100644 --- a/charts/fhir-server/Chart.lock +++ b/charts/fhir-server/Chart.lock @@ -1,6 +1,6 @@ dependencies: - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -digest: sha256:4ef85dc0f268d2dbf824c44c0ffd3d63a763c760139603ad124dbeadfbc14895 -generated: "2024-09-13T19:42:39.193262084Z" + version: 2.24.0 +digest: sha256:328f5ab309b9b75d3516ba5ec0f1869b91eaa1e8503492772eac345c4962fcf6 +generated: "2024-10-03T13:16:45.776484871Z" diff --git a/charts/fhir-server/Chart.yaml b/charts/fhir-server/Chart.yaml index 8174322f..b73e1edd 100644 --- a/charts/fhir-server/Chart.yaml +++ b/charts/fhir-server/Chart.yaml @@ -10,12 +10,12 @@ maintainers: sources: - https://github.com/microsoft/fhir-server type: application -version: 0.11.4 +version: 0.11.5 deprecated: false dependencies: - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 + version: 2.24.0 annotations: artifacthub.io/changes: |- # When using the list of objects option the valid supported kinds are diff --git a/charts/fhir-server/values.yaml b/charts/fhir-server/values.yaml index f54827d3..356d6aec 100644 --- a/charts/fhir-server/values.yaml +++ b/charts/fhir-server/values.yaml @@ -7,7 +7,7 @@ replicaCount: 1 image: # +doc-gen:ignore registry: mcr.microsoft.com repository: healthcareapis/r4-fhir-server - tag: 4.0.249@sha256:56e8f17857c92d60779810ee48823b41d2c663b5c75839e30e79e3779dd82d6b + tag: 4.0.264@sha256:ef6ed5bcafd71e7c99d554519e883b6ee5a2eb151623ee9677bb23ce6c120e37 pullPolicy: IfNotPresent imagePullSecrets: [] @@ -186,7 +186,7 @@ curl: # +doc-gen:ignore image: registry: docker.io repository: curlimages/curl - tag: 8.10.0@sha256:a3838a5cf24fe940ec63e98fc37ce1dbe1d43286dc2b803c5bc5e9f067c7ad6d + tag: 8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b tests: automountServiceAccountToken: false diff --git a/charts/magnifhir/Chart.lock b/charts/magnifhir/Chart.lock index d1909337..7f57fd21 100644 --- a/charts/magnifhir/Chart.lock +++ b/charts/magnifhir/Chart.lock @@ -1,6 +1,6 @@ dependencies: - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -digest: sha256:4ef85dc0f268d2dbf824c44c0ffd3d63a763c760139603ad124dbeadfbc14895 -generated: "2024-09-13T19:42:45.705592708Z" + version: 2.24.0 +digest: sha256:328f5ab309b9b75d3516ba5ec0f1869b91eaa1e8503492772eac345c4962fcf6 +generated: "2024-10-03T13:16:47.084186303Z" diff --git a/charts/magnifhir/Chart.yaml b/charts/magnifhir/Chart.yaml index d6bc4252..3bb15ec7 100644 --- a/charts/magnifhir/Chart.yaml +++ b/charts/magnifhir/Chart.yaml @@ -17,8 +17,8 @@ deprecated: false dependencies: - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -version: 1.3.3 + version: 2.24.0 +version: 1.3.4 appVersion: 1.x annotations: artifacthub.io/license: Apache-2.0 diff --git a/charts/magnifhir/values.yaml b/charts/magnifhir/values.yaml index b17198eb..135f2352 100644 --- a/charts/magnifhir/values.yaml +++ b/charts/magnifhir/values.yaml @@ -192,7 +192,7 @@ curl: # +doc-gen:ignore image: registry: docker.io repository: curlimages/curl - tag: 8.10.0@sha256:a3838a5cf24fe940ec63e98fc37ce1dbe1d43286dc2b803c5bc5e9f067c7ad6d + tag: 8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b tests: automountServiceAccountToken: false diff --git a/charts/ohdsi/Chart.lock b/charts/ohdsi/Chart.lock index 52e7c1f4..c0954700 100644 --- a/charts/ohdsi/Chart.lock +++ b/charts/ohdsi/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: postgresql repository: oci://registry-1.docker.io/bitnamicharts - version: 15.5.31 + version: 15.5.38 - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -digest: sha256:887b743736f097086f12078fe1351265bbbf114fd274a8648f8e932f17e44113 -generated: "2024-09-16T21:44:00.010038883Z" + version: 2.24.0 +digest: sha256:8ffc4eeaf65b1050ad95292962d1b0386e282348b544277e2463a041bb158f91 +generated: "2024-10-03T13:16:48.554789248Z" diff --git a/charts/ohdsi/Chart.yaml b/charts/ohdsi/Chart.yaml index c596dbe2..64992961 100644 --- a/charts/ohdsi/Chart.yaml +++ b/charts/ohdsi/Chart.yaml @@ -15,16 +15,16 @@ maintainers: - name: chgl dependencies: - name: postgresql - version: 15.5.31 + version: 15.5.38 repository: oci://registry-1.docker.io/bitnamicharts condition: postgresql.enabled - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 + version: 2.24.0 icon: https://avatars.githubusercontent.com/u/6570077 deprecated: false kubeVersion: ">= 1.19.0" -version: 0.24.4 +version: 0.24.5 annotations: artifacthub.io/license: Apache-2.0 artifacthub.io/containsSecurityUpdates: "false" diff --git a/charts/ohdsi/values.yaml b/charts/ohdsi/values.yaml index 701b1d18..651afc0f 100644 --- a/charts/ohdsi/values.yaml +++ b/charts/ohdsi/values.yaml @@ -87,7 +87,7 @@ webApi: image: # +doc-gen:ignore registry: docker.io repository: bitnami/postgresql - tag: 16.4.0-debian-12-r9@sha256:75c5d322fd11bb10a0e4ddebf4ab312aa9ec2bbcf2b64986f7d87127483e2b14 + tag: 16.4.0-debian-12-r14@sha256:94bc968141e790ef9a23202cca6b53b44f295672b0bbdb1d5855384e6c2dac1f pullPolicy: IfNotPresent serviceAccount: @@ -638,7 +638,7 @@ curl: # +doc-gen:ignore image: registry: docker.io repository: curlimages/curl - tag: 8.10.0@sha256:a3838a5cf24fe940ec63e98fc37ce1dbe1d43286dc2b803c5bc5e9f067c7ad6d + tag: 8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b tests: automountServiceAccountToken: false diff --git a/charts/pathling-server/Chart.lock b/charts/pathling-server/Chart.lock index 68948014..18ad9936 100644 --- a/charts/pathling-server/Chart.lock +++ b/charts/pathling-server/Chart.lock @@ -1,9 +1,9 @@ dependencies: - name: minio repository: oci://registry-1.docker.io/bitnamicharts - version: 14.7.9 + version: 14.7.15 - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -digest: sha256:962a08515870b12569277957424d5aea10d20fdbdd0bfb83e9b97c294da0c19a -generated: "2024-09-16T21:44:01.607769251Z" + version: 2.24.0 +digest: sha256:0ee27c6567be9ff775b8e0925b39d0fcd48da3e66803edfb51036c7579193372 +generated: "2024-10-03T13:16:50.177140838Z" diff --git a/charts/pathling-server/Chart.yaml b/charts/pathling-server/Chart.yaml index 79e3020b..379dbe14 100644 --- a/charts/pathling-server/Chart.yaml +++ b/charts/pathling-server/Chart.yaml @@ -10,13 +10,13 @@ maintainers: url: https://github.com/chgl dependencies: - name: minio - version: 14.7.9 + version: 14.7.15 repository: oci://registry-1.docker.io/bitnamicharts condition: minio.enabled - name: common repository: oci://registry-1.docker.io/bitnamicharts - version: 2.23.0 -version: 0.8.4 + version: 2.24.0 +version: 0.8.5 appVersion: "7.x" annotations: artifacthub.io/license: Apache-2.0 diff --git a/charts/pathling-server/values.yaml b/charts/pathling-server/values.yaml index 46b0905e..07ffc5bc 100644 --- a/charts/pathling-server/values.yaml +++ b/charts/pathling-server/values.yaml @@ -246,7 +246,7 @@ curl: # +doc-gen:ignore image: registry: docker.io repository: curlimages/curl - tag: 8.10.0@sha256:a3838a5cf24fe940ec63e98fc37ce1dbe1d43286dc2b803c5bc5e9f067c7ad6d + tag: 8.10.1@sha256:d9b4541e214bcd85196d6e92e2753ac6d0ea699f0af5741f8c6cccbfcf00ef4b # -- container security context applied to init containers and the Helm test pods # @ignored