Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update crossplane dependencies #93

Merged
merged 1 commit into from
Nov 27, 2024
Merged

chore(deps): update crossplane dependencies #93

merged 1 commit into from
Nov 27, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 25, 2024

This PR contains the following updates:

Package Update Change
crossplane-contrib/function-auto-ready minor v0.2.1 -> v0.3.0
crossplane-contrib/function-go-templating minor v0.5.0 -> v0.8.0
crossplane-contrib/function-kcl patch v0.10.8 -> v0.10.10
upbound/provider-aws minor v1.14.0 -> v1.17.0

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

crossplane-contrib/function-auto-ready (crossplane-contrib/function-auto-ready)

v0.3.0

Compare Source

This release updates the function to use the new v1 function RPCs introduced with Crossplane v1.17.

This version is backward compatible with Crossplane v1.16 and earlier, that use v1beta1 function RPCs.

You can install this release using the following manifest:

apiVersion: pkg.crossplane.io/v1
kind: Function
metadata:
  name: function-auto-ready
spec:
  package: xpkg.upbound.io/crossplane-contrib/function-auto-ready:v0.3.0

What's Changed

Full Changelog: crossplane-contrib/function-auto-ready@v0.2.1...v0.3.0

crossplane-contrib/function-go-templating (crossplane-contrib/function-go-templating)

v0.8.0

Compare Source

What's Changed

New Contributors

Full Changelog: crossplane-contrib/function-go-templating@v0.7.0...v0.8.0

v0.7.0

Compare Source

What's Changed

New Contributors

Full Changelog: crossplane-contrib/function-go-templating@v0.6.0...v0.7.0

v0.6.0

Compare Source

What's Changed

New Contributors

Full Changelog: crossplane-contrib/function-go-templating@v0.5.0...v0.6.0

crossplane-contrib/function-kcl (crossplane-contrib/function-kcl)

v0.10.10: Release

Compare Source

v0.10.9: Release

Compare Source

upbound/provider-aws (upbound/provider-aws)

v1.17.0

Compare Source

The v1.17.0 release introduces the Terraform provider upgrade from 5.68.0 to 5.73.0, new resources, bug fixes, enhancements, and dependency updates.

Support for New Resources
  • ComputeEnvironment.batch.aws.upbound.io/v1beta1
  • JobQueue.batch.aws.upbound.io/v1beta1

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-aws@v1.16.0...v1.17.0

v1.16.0

Compare Source

The v1.16.0 release introduces important bug fixes and dependency updates.

Bug Fixes

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-aws@v1.15.0...v1.16.0

v1.15.0

Compare Source

In the v1.15.0 release, we've upgraded the underlying Terraform provider version from v5.58.0 to v5.68.0. This release also introduces new family providers, new resources, bug fixes, and dependency updates.

Support for New Resources
  • Pipeline.osis.aws.upbound.io/v1beta1
  • Agent.bedrockagent.aws.upbound.io/v1beta1

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-aws@v1.14.0...v1.15.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the automated label Nov 25, 2024
@village-labs-bot Village Labs Bot
Copy link

upbound/configuration-aws-network #93

Change Summary

  • Version upgrade for AWS EC2 provider from v1.14.0 to v1.17.0
  • Version upgrade for function-auto-ready from v0.2.1 to v0.3.0
  • Version upgrade for function-go-templating from v0.5.0 to v0.8.0
  • Version upgrade for function-kcl from v0.10.8 to v0.10.10

Potential Vulnerabilities

  • File: crossplane.yaml:20-21
  • Code: version: "v1.17.0"
  • Explanation: The significant version jump in the AWS EC2 provider (from 1.14.0 to 1.17.0) could introduce breaking changes or security patches that need careful review. Without reviewing the changelog of these versions, there might be security-related changes that need to be verified.

Code Smells

None identified in this change.

Debug Logs

None identified in this change.

Unintended Consequences

  • File: crossplane.yaml:20-30
  • Code:
      version: "v1.17.0"
      version: "v0.3.0"
      version: "v0.8.0"
      version: "v0.10.10"

  • Explanation: Multiple dependency version updates at once could lead to compatibility issues between components. Particularly concerning is the major version jump in function-go-templating (v0.5.0 to v0.8.0) which might introduce breaking changes in templating functionality.

  • File: crossplane.yaml:20-21

  • Code: version: "v1.17.0"

  • Explanation: Skipping several minor versions in the AWS provider update (1.14 to 1.17) might introduce unexpected behavior changes that could affect existing infrastructure. It would be safer to upgrade incrementally through intermediate versions.

Risk Score: 6

The risk score is moderate (6/10) due to:

  1. Multiple simultaneous version updates across different components
  2. Significant version jumps that skip intermediate releases
  3. Potential breaking changes in core infrastructure components (AWS provider)
  4. The update affects critical networking configuration components

@kaessert
Copy link
Collaborator

/test-examples

@kaessert kaessert merged commit 2d68234 into main Nov 27, 2024
4 checks passed
@kaessert kaessert deleted the renovate/crossplane-dependencies branch November 27, 2024 14:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kaessert kaessert kaessert approved these changes

Assignees
No one assigned
Labels
automated
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kaessert