chore(deps): update dependency shivering-isles/infrastructure-gitops to v23.12
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| shivering-isles/infrastructure-gitops | repository | minor |
v23.11 -> v23.12
|
Release Notes
shivering-isles/infrastructure-gitops (shivering-isles/infrastructure-gitops)
v23.12: GitOps Infrastructure 23.12
[v23.12] - 2023-11-30
Removal
- mastodon: Drop elasticsearch
- mok: Strip down postfix image
🎁 Features
- blog: Release newest blog post
- dns: Adjust services to keep source IP for queries
- dns: Add blocky Dashboard
- dns: Switch to blocky and DNS resolver
- dns: Add DNS metric collection
- dns: Add readinessprobe to DNS pods
- dns: Add DoT as upstream to see which one is quicker
- dns: Add dns blocklists
- earthly: Add autoupdate command
- immich: Upgrade to version v1.89.0
- mastodon: Upgrade to version 4.2.1
- mok: Use helm for postfix configuration
- nas: Add SLO for all S3 related routes
- nginx: Add beautiful custom error page
- postgres: Add alert for WAL size
- shared: Fix broken policy definiton
- shared: Add egress network policy for postgres operator
🐞 Bug Fixes
- blog: Fix various links
- dns: Increase CPU limits
- dns: Use capability instead of sysctl
- dns: Fix some remaining issues with monitoring
- dns: Add missing network policy for DoT
- dns: Fix DNSSEC validation
- dns: Use latest build
- dnsproxy: Use GOMAXPROCS and GOMEMLIMIT from Kubernetes resources
- immich: Redeploy ingress that switch to server section
- immich: Pin version
- mastodon: Fix common lib by updating deps
- mastodon: Add network policy to allow database backups
- mastodon: fix unit tests to allow release of the chart
- mastodon: Actually bummp version
- mok: Fix indentation for master.cf
- mok: Use the config files defined in the chart
- mok: Fix typo in podSpec
- mok: Remove unused supervisord from postfix liveness check
- mok: Add wrong " at the end of config line
- mok: Bump version for slimmed down postfix image
- mok: Also fix startup probe to drop supervisord
- mok: Fix wrong file modes
- postfix: bring postfix configs closer together
- shared: temporarily allow apiserver access using hardcoded ranges
- shared: Add missing access to kube-apiserver
- shared: Use proper egress network policy schema
- shared: Use NAS IP directly
🔁 Continuous Integration
- charts: Add condition to run helm-unittest when changing gitlab-ci
- charts: Upgrade to new helm-unittest version
- earthly: Make docker login optional
- earthly: Remove unused dockerfile build instructions
- images: Adjust include setup in earthly target
- renovate: Allow upgrades to Fedora 39
🚧 Chores
- blog: Use fully updated image
- deps: update helm release matrix-synapse to v3.7.11
- deps: update helm release gitlab-runner to v0.58.2
- deps: update docker.io/syncthing/syncthing docker tag to v1.26.1
- deps: update helm release renovate to v37.36.2
- deps: update helm release matrix-synapse to v3.7.10
- deps: update dependency https://github.com/immich-app/immich.git to v1.84.0
- deps: update quay.io/shivering-isles/blog docker tag to v2023.11.27.1604
- deps: update docker.io/earthly/earthly docker tag to v0.7.22
- deps: update helm release uptime-kuma to v2.15.0
-
deps: update ghcr.io/0xerr0r/blocky:main docker digest to
5835ff7 - deps: update helm release gitlab-runner to v0.59.2
- deps: update dependency kubernetes/kubernetes to v1.28.4
- deps: update helm release kube-prometheus-stack to v54.2.2
-
deps: update ghcr.io/0xerr0r/blocky:main docker digest to
080c8cc - deps: update dependency mikefarah/yq to v4.40.3
- deps: update helm release harbor to v1.13.1
- deps: update helm release gitlab-runner to v0.59.0
- deps: update dependency https://github.com/immich-app/immich.git to v1.87.0
- deps: update helm release tigera-operator to v3.26.4
- deps: update helm release oauth2-proxy to v6.19.1
- deps: update helm release matrix-synapse to v3.7.12
- deps: update helm release amd-gpu to v0.10.0
- deps: update quay.io/fedora/fedora docker tag to v39
- deps: update helm release kube-prometheus-stack to v54.1.0
- deps: update quay.io/shivering-isles/blog docker tag to v2023.11.16.1600
- deps: update helm release oauth2-proxy to v6.20.0
-
deps: update quay.io/fedora/fedora:39 docker digest to
490a2eb - deps: update docker.io/jellyfin/jellyfin docker tag to v10.8.13
- deps: update docker.io/aquasec/trivy docker tag to v0.47.0
- deps: update helm release renovate to v37.57.2
- deps: update helm release oauth2-proxy to v6.19.0
- deps: update dependency https://github.com/immich-app/immich.git to v1.86.0
- deps: update quay.io/shivering-isles/blog docker tag to v2023.11.13.1592
- deps: update helm release kured to v5.3.1
- deps: update helm release sbom-operator to v0.30.0
- deps: update helm release kured to v5.3.0
-
deps: update quay.io/fedora/fedora:38 docker digest to
242d1f5 - deps: update dependency https://github.com/immich-app/immich.git to v1.85.0
- deps: update helm release oauth2-proxy to v6.18.1
- deps: update gcr.io/projectsigstore/cosign docker tag to v2.2.1
- deps: update docker.io/library/golang docker tag to v1.21.4
- deps: update docker.io/jellyfin/jellyfin docker tag to v10.8.12
- deps: update helm release matrix-synapse to v3.7.13
- deps: update docker.io/syncthing/syncthing docker tag to v1.26.0
- deps: update helm release kube-prometheus-stack to v54
- deps: update quay.io/shivering-isles/blog docker tag to v2023.11.06.1580
- dns: rename containers and pin image properly
- hedgedoc: Update postgresql to version 13.2.21
- immich: Upgrade to version 0.2.0 with 1.88.2
- keycloak: Upgrade to version 23
- mastodon: Update to latest postgresql
- nextcloud: Add network restriction icon
- nextcloud: Upgrade postgresql and redis
- system-upgrade: Upgrade to Kubernetes 1.27.8
Reverts
- feat(dns): Add dns blocklists
This is an automated release. See #115640 for details.
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot. The local configuration can be found in the SI Renovate Bot repository.