| ID | Au | Desc | As | Rea | Cr | Up | Re | Cmntrs | Labels | Tags |
| 8588 |  |
feat(deploy/charts): adding validate for prometheus crds |
|
2d | 3h | 17h |     |
release-note
kind/feature
size/M
dco-signoff: yes
area/deploy
|
collaborator-last commented new-commits
|
|
| 8602 |  |
fix(deps): update module github.com/segmentio/encoding to v0.5.4 (master)
|
6h | 6h | 6h | |
size/XS
release-note-none
kind/cleanup
dco-signoff: yes
area/testing
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 8600 | |
fix(deps): update module google.golang.org/api to v0.271.0 (master)
|
11h | 6h | 11h | |
release-note-none
size/S
kind/cleanup
dco-signoff: yes
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 8457 |  |
feat(acme): add support for ECDSA account key algorithm in ACME issuers | 5wk | 21h | 5d | |
release-note
size/XL
area/api
kind/feature
area/acme
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
collaborator-last commented new-commits send similar
|
||
| 8529 |  |
fix: schedule readiness re-evaluation at certificate expiry time | 19d | 1d | 1d | |
size/L
release-note
kind/bug
dco-signoff: yes
ok-to-test
|
commented member-last new-commits send
|
||
| 8594 |  |
Fix typo "commonname" in PreferredChain field comment | 1d | 1d | 1d | |
release-note-none
size/S
area/api
kind/cleanup
needs-ok-to-test
dco-signoff: yes
area/deploy
|
contributor-last recv recv-q unreviewed
|
||
| 8592 |  |
docs: Update Helm repository references to OCI registry | 1d | 1d | 1d | |
release-note
size/S
kind/documentation
needs-ok-to-test
dco-signoff: yes
area/deploy
|
recv recv-q unreviewed
|
||
| 7521 |  |
ClusterIssuer read caBundle from Secret | 1y | 1d | 10mo |   |
size/L
release-note
needs-rebase
area/api
kind/feature
needs-ok-to-test
area/acme
lifecycle/rotten
dco-signoff: yes
area/deploy
|
commented contributor-last recv-q send unreviewed
|
||
| 8577 |  |
fix(keymanager): preserve expected secret when cleaning up duplicates | 5d | 1d | 5d | |
release-note
needs-ok-to-test
size/M
dco-signoff: yes
needs-kind
|
new-commits recv recv-q
|
||
| 8585 |  |
feat: support ECC keys for ACME account private keys | 3d | 2d | 2d | |
size/L
do-not-merge/release-note-label-needed
needs-ok-to-test
area/acme
dco-signoff: yes
needs-kind
|
collaborator-last commented send similar unreviewed
|
||
| 8258 | |
feat(certificate): renewal policy and windows code |
3
|
3mo | 2d | 2d |    |
release-note
area/api
kind/feature
size/XXL
area/acme
dco-signoff: yes
area/testing
area/acme/dns01
area/deploy
|
collaborator-last commented open-milestone reviewed-with-comment similar
|
|
| 7908 | |
WIP: Graduate ServerSideApply feature gates to Beta |
|
|
7mo | 3d | 3mo | |
size/L
release-note
needs-rebase
do-not-merge/work-in-progress
kind/feature
area/acme
dco-signoff: yes
area/testing
cybr
|
assigned assignee-updated commented contributor-last recv-q send unreviewed
|
| 8422 |  |
feat: Add AWS authentication method for Vault Issuer |
4
|
7wk | 3d | 16d | |
do-not-merge/release-note-label-needed
area/api
kind/feature
size/XXL
area/vault
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
commented contributor-last recv recv-q reviewed-with-comment
|
|
| 7689 |  |
Add Vertical Pod Autoscaler |
|
2
|
10mo | 3d | 3d |   |
size/L
release-note
approved
kind/feature
dco-signoff: yes
ok-to-test
area/deploy
|
assigned assignee-updated changes-requested collaborator-last commented send
|
| 8571 | |
fix(certificate-shim): trying to fix flaky tests | 7d | 4d | 4d | |
size/L
release-note-none
kind/cleanup
dco-signoff: yes
|
collaborator-last commented new-commits
|
||
| 8395 |  |
Clarify code around DNS01 Self Check | 1mo | 4d | 5d |  |
release-note-none
kind/cleanup
size/M
area/acme
dco-signoff: yes
ok-to-test
area/acme/dns01
|
commented recv recv-q reviewed-with-comment
|
||
| 7733 |  |
fixes #5864: cert-manager CA to issue certs after verify with CA Certs Validity |
|
10mo | 5d | 9mo |    |
size/L
release-note
kind/bug
kind/feature
lifecycle/rotten
dco-signoff: yes
ok-to-test
|
commented contributor-last new-commits recv recv-q
|
|
| 7654 |  |
Implement fallback for git_version creation in forked environments | 11mo | 5d | 11mo |  |
release-note-none
size/S
kind/cleanup
needs-ok-to-test
lifecycle/rotten
dco-signoff: yes
|
commented contributor-last recv-q reviewed-with-comment send
|
||
| 8574 | |
feat(design): proposed ari design | 5d | 5d | |
size/L
release-note-none
kind/design
dco-signoff: yes
|
contributor-last recv-q unreviewed
|
|||
| 7852 |  |
adds cli option configure ACME challange authorization timeout |
|
8mo | 5d | 7mo | |
release-note
area/api
kind/feature
size/M
area/acme
dco-signoff: yes
ok-to-test
|
commented new-commits recv recv-q similar
|
|
| 7906 |  |
fix: Venafi call GetRefreshToken only when access token invalid for password/username authentication |
2
|
7mo | 6d | 6mo |  |
release-note
size/S
kind/bug
lifecycle/stale
dco-signoff: yes
ok-to-test
|
commented contributor-last send unreviewed
|
|
| 8567 | |
Fix typo in Order Duration field comment | 7d | 7d | 7d | |
release-note-none
size/S
area/api
kind/cleanup
dco-signoff: yes
ok-to-test
area/deploy
|
commented contributor-last recv-q send unreviewed
|
||
| 8523 |  |
feat(helm): add opt-in ttlSecondsAfterFinished for startupapicheck Job |
2
|
3wk | 7d | 8d | |
release-note
size/S
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented recv reviewed-with-comment similar
|
|
| 7897 |  |
wip: add retry mechanism for challenge solver whenever we detect unauthorized error |
|
7mo | 9d | 4mo |  |
size/XL
release-note-none
area/api
do-not-merge/work-in-progress
area/acme
dco-signoff: yes
area/testing
ok-to-test
area/acme/dns01
area/monitoring
area/deploy
needs-kind
|
commented contributor-last recv recv-q reviewed-with-comment
|
|
| 7399 |  |
Add renew window to restrict when certificate renewal can happen | 1y | 11d | 1y |  |
size/L
release-note
needs-rebase
area/api
kind/feature
needs-ok-to-test
lifecycle/stale
dco-signoff: yes
area/testing
area/deploy
|
contributor-last recv recv-q similar unreviewed
|
||
| 8536 | |
Re-enable the ListenerSet e2e tests | 16d | 11d | 14d | |
release-note-none
do-not-merge/hold
kind/cleanup
size/XXL
dco-signoff: yes
area/testing
|
commented contributor-last new-commits recv-q send
|
||
| 8379 |  |
acmechallenges: stabilize solver resource names | 2mo | 12d | 2mo | |
size/XS
release-note
needs-rebase
kind/bug
area/acme
dco-signoff: yes
ok-to-test
|
commented contributor-last recv recv-q unreviewed
|
||
| 8527 |  |
[WIP]:AddS ML-DSA-65 post-quantum signature algorithm support | 19d | 13d | 19d | |
do-not-merge/release-note-label-needed
size/XL
needs-rebase
area/api
do-not-merge/work-in-progress
kind/feature
needs-ok-to-test
dco-signoff: yes
area/testing
area/deploy
|
contributor-last recv recv-q unreviewed
|
||
| 7439 |  |
helm: add checksum/config annotations | 1y | 18d | 18d | |
release-note-none
size/S
kind/feature
dco-signoff: yes
ok-to-test
area/deploy
|
changes-requested collaborator-last commented send
|
||
| 8534 |  |
feat: add --dns01-timeout flag to make DNS01 provider API timeout configurable | 16d | 16d | 16d | |
release-note
area/api
needs-ok-to-test
size/M
area/acme
dco-signoff: yes
area/acme/dns01
needs-kind
|
contributor-last recv recv-q unreviewed
|
||
| 8480 |  |
Add Subject Key Identifier (SKI) to issued certificates |
3
|
4wk | 3wk | 4wk | |
size/L
release-note
kind/feature
dco-signoff: yes
area/testing
ok-to-test
|
commented new-commits recv
|
|
| 8504 | |
WIP: Enable KAL | 3wk | 3wk | |
release-note-none
do-not-merge/work-in-progress
size/M
dco-signoff: yes
needs-kind
|
contributor-last recv-q unreviewed
|
|||
| 7886 | |
Improve array field characteristics in API | 7mo | 3wk | 3wk | |
size/L
release-note
area/api
do-not-merge/hold
kind/bug
kind/cleanup
dco-signoff: yes
area/deploy
|
commented member-last new-commits
|
||
| 8485 |  |
WIP: Adds Sign API call metric for the Vault issuer. | 4wk | 4wk | 4wk | |
release-note
do-not-merge/work-in-progress
kind/feature
needs-ok-to-test
size/M
dco-signoff: yes
area/monitoring
|
recv recv-q unreviewed
|
||
| 8253 |  |
refactor(issuer): add shared factory and per-instance registries | 3mo | 4wk | 4wk | |
size/L
release-note-none
lgtm
kind/cleanup
dco-signoff: yes
ok-to-test
|
commented member-last reviewed-with-comment send
|
||
| 8440 |  |
feat(chart): Set ttlSecondsAfterFinished for statupapicheck | 6wk | 4wk | 6wk | |
release-note
size/S
kind/feature
needs-ok-to-test
dco-signoff: yes
area/deploy
|
contributor-last recv recv-q similar unreviewed
|
||
| 8464 | |
improve dynamic source serving certificate renewal logic | 5wk | 4wk | 5wk | |
release-note
kind/bug
size/M
dco-signoff: yes
ok-to-test
|
commented contributor-last recv unreviewed
|
||
| 8255 | |
add dns issuer secrets validation before marking it as ready | 3mo | 5wk | 2mo | |
release-note
size/XL
lgtm
kind/bug
area/acme
dco-signoff: yes
area/testing
ok-to-test
|
commented contributor-last new-commits recv recv-q
|
||
| 7725 |  |
chore: allow additional properties in Helm setup #7668 |
2
|
10mo | 5wk | 10mo | |
size/XS
release-note-none
needs-ok-to-test
lifecycle/rotten
dco-signoff: no
area/deploy
needs-kind
|
commented contributor-last send unreviewed
|
|
| 8438 | |
POC: single cert-manager binary | 6wk | 6wk | |
release-note-none
do-not-merge/work-in-progress
kind/feature
size/XXL
dco-signoff: no
|
contributor-last draft recv-q unreviewed
|
|||
| 8375 |  |
feat: add health probes to cert-manager pods | 2mo | 6wk | 6wk |  |
size/L
do-not-merge/release-note-label-needed
area/api
dco-signoff: yes
tide/merge-method-squash
ok-to-test
area/deploy
needs-kind
|
commented member-last new-commits send
|
||
| 7646 |  |
Support custom ACME account key type. |
2
|
11mo | 7wk | 9mo |  |
size/L
release-note
needs-rebase
area/api
area/acme
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented new-commits recv recv-q
|
|
| 8336 |  |
Add global.tolerations to helm chart | 3mo | 7wk | 7wk | |
release-note
needs-rebase
kind/feature
needs-ok-to-test
size/M
dco-signoff: yes
area/deploy
|
changes-requested collaborator-last commented send
|
||
| 8220 | |
Add predicate filtering to queuing handler |
|
4mo | 1mo | 3mo | |
size/XL
release-note-none
needs-rebase
area/acme
dco-signoff: yes
area/acme/dns01
needs-kind
|
commented contributor-last recv-q send unreviewed
|
|
| 8407 | |
Use generics to make predicates typed | 7wk | 7wk | 7wk | |
size/L
release-note-none
kind/cleanup
dco-signoff: yes
area/testing
|
commented member-last new-commits
|
||
| 8367 | |
feat(helm) add startupProbe and readinessProbe to cert-manager-controller | 2mo | 2mo | 2mo | |
release-note-none
kind/feature
needs-ok-to-test
size/M
dco-signoff: yes
area/deploy
|
commented contributor-last recv recv-q unreviewed
|
||
| 4835 | |
Making sure per fixture only 1 setup is active at the same time | 
| 4y | 2mo | 8mo |  |
release-note-none
needs-rebase
lifecycle/frozen
kind/bug
size/M
dco-signoff: yes
area/testing
|
assigned assignee-updated commented contributor-last recv-q reviewed-with-comment
|
|
| 5447 |  |
Allow extra DNS-01 propagation time to be configured |
|
3y | 2mo | 8mo |   |
release-note
needs-rebase
size/S
lifecycle/frozen
kind/feature
area/acme
dco-signoff: yes
ok-to-test
area/acme/dns01
|
commented contributor-last recv-q send unreviewed
|
|
| 7236 | |
Route53: Allow STS token to be refreshed by the AWS client if necessary | 2y | 2mo | 11mo | |
release-note
size/XL
needs-rebase
area/api
kind/bug
kind/feature
area/acme
dco-signoff: yes
area/acme/dns01
area/deploy
|
commented contributor-last recv-q reviewed-with-comment send
|
||
| 5743 | |
Add MaxPathLen and add EncodeBasicConstraintsInRequest option to Certificate and CertificateRequest resources | 3y | 2mo | 11mo | |
size/L
release-note
needs-rebase
area/api
kind/cleanup
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
commented contributor-last recv-q reviewed-with-comment
|
||
| 7382 | |
Implement a single package for controlling cert-manager RNG |
3
|
1y | 2mo | 11mo | |
size/L
release-note
needs-rebase
do-not-merge/hold
kind/feature
area/acme
dco-signoff: yes
area/testing
|
commented contributor-last recv-q send unreviewed
|
|
| 7437 |  |
fix: annotate account private key secrets | 1y | 2mo | 1y | |
release-note
needs-rebase
size/S
area/api
kind/feature
area/acme
dco-signoff: yes
ok-to-test
|
commented contributor-last recv recv-q unreviewed
|
||
| 7449 | |
WIP: reconcile issuers using issuer-lib | 1y | 2mo | 9mo | |
release-note-none
needs-rebase
area/api
do-not-merge/work-in-progress
kind/cleanup
size/XXL
area/acme
area/ca
area/vault
dco-signoff: yes
area/testing
area/deploy
|
commented contributor-last recv-q unreviewed
|
||
| 7467 |  |
fix: ❗dns-01 route53 query change status retry timeout |
2
|
1y | 2mo | 10mo |  |
release-note
needs-rebase
size/S
kind/bug
area/acme
lifecycle/rotten
dco-signoff: yes
ok-to-test
area/acme/dns01
|
approved commented contributor-last recv-q send
|
|
| 7718 | |
Switch to makefile modules completely (part 1) | 10mo | 2mo | 3mo | |
release-note-none
needs-rebase
area/api
kind/cleanup
size/XXL
area/acme
dco-signoff: yes
area/testing
area/deploy
cybr
|
commented contributor-last new-commits recv-q send
|
||
| 7823 | |
Adding read perms for pods and services to DNS01 ClusterRole |
|
8mo | 2mo | 8mo | |
size/XS
release-note
needs-rebase
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented contributor-last recv recv-q reviewed-with-comment
|
|
| 7805 | |
feat: refactor challenge controller to be entirely non blocking | 8mo | 2mo | 4mo | |
release-note
needs-rebase
area/api
kind/bug
size/XXL
area/acme
dco-signoff: yes
area/testing
area/acme/dns01
area/acme/http01
area/deploy
cybr
|
commented contributor-last new-commits recv-q send
|
||
| 8339 | |
feat(pkcs12): Add flag to specify pkcs12 keystore alias | 3mo | 2mo | 3mo | |
size/L
release-note
needs-rebase
area/api
kind/feature
dco-signoff: yes
area/testing
area/deploy
|
contributor-last recv recv-q unreviewed
|
||
| 8263 |  |
fix: dont copy `kapp.k14s.io` annotations from Ingress to created resources |
|
3mo | 2mo | 2mo | |
size/XS
release-note
needs-rebase
kind/feature
dco-signoff: yes
ok-to-test
|
commented contributor-last recv-q send unreviewed
|
|
| 7662 |  |
Fix the issue of webhook routes generating duplicate operation IDs | 11mo | 2mo | 11mo | |
do-not-merge/release-note-label-needed
needs-ok-to-test
size/M
lifecycle/stale
area/acme
dco-signoff: yes
needs-kind
|
contributor-last recv recv-q unreviewed
|
||
| 7450 |  |
Make ACME Authorization Timeout Configurable | 1y | 2mo | 1y | |
size/L
release-note
needs-rebase
area/api
needs-ok-to-test
area/acme
dco-signoff: yes
area/acme/http01
area/deploy
needs-kind
|
commented contributor-last new-commits recv recv-q similar
|
||
| 8071 | |
Handle ACME Accept asynchronously | 5mo | 2mo | 5mo | |
size/L
release-note
needs-rebase
area/api
needs-ok-to-test
area/acme
dco-signoff: yes
area/testing
area/deploy
needs-kind
|
contributor-last recv recv-q unreviewed
|
||
| 8262 |  |
Bugfix #7388 kid missing issue with Infisical ACME server or any other ACME that requires EAB |
|
3mo | 2mo | 3mo |  |
size/L
release-note
needs-ok-to-test
area/acme
dco-signoff: yes
needs-kind
|
commented recv unreviewed
|
|
| 7289 |  |
Design proposal for delayed certificate activation | 1y | 3mo | 1y | |
size/L
release-note-none
kind/design
needs-ok-to-test
lifecycle/stale
dco-signoff: yes
|
commented contributor-last recv recv-q reviewed-with-comment
|
||
| 7583 |  |
Support for ACME servers that don't finalize within the ACME client finalizer retry window | 1y | 3mo | 1y |  |
release-note
kind/bug
needs-ok-to-test
size/M
area/acme
dco-signoff: yes
|
recv recv-q unreviewed
|
||
| 7614 |  |
Lower the minimum certificate duration from 1 hour to 5 minutes | 1y | 4mo | 1y | |
release-note
size/S
area/api
kind/feature
dco-signoff: yes
ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 8187 |  |
fix: add case for parsing key with ec parameters | 4mo | 4mo | 4mo | |
size/XS
release-note-none
kind/bug
needs-ok-to-test
dco-signoff: yes
|
changes-requested recv recv-q
|
||
| 7764 |  |
Doc: Add leaderElection.namespace recommendation | 9mo | 5mo | 5mo | |
size/XS
release-note-none
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented contributor-last recv-q send unreviewed
|
||
| 8141 | |
fix(helm): Align targetPorts in metrics endpoints for webhook and cainjector services |
2
|
5mo | 5mo | 5mo | |
size/XS
release-note-none
lgtm
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented member-last send unreviewed
|
|
| 2002 | |
[master] Freeze 1.19 and bump versions before merging release-next | 9h | 9h |  |
dco-signoff: yes
size/XXL
|
contributor-last recv-q reviewed-with-comment
|
|||
| 1997 | |
[release-next] Release Notes for cert-manager v1.20.0 | 12h | 9h | |
dco-signoff: yes
size/L
|
contributor-last new-commits recv-q
|
|||
| 2001 | |
[Post-Release] Merge release-next into master | 10h | 9h | |
dco-signoff: yes
size/XL
do-not-merge/work-in-progress
|
draft recv-q unreviewed
|
|||
| 1197 |  |
doc about new option default-cleanup-policy |
|
3y | 10h | 6mo | |
approved
dco-signoff: yes
needs-rebase
size/M
|
commented member-last new-commits send
|
|
| 1202 |  |
Add section about client cert authentication for vault | 3y | 10h | 2y | |
dco-signoff: yes
do-not-merge/work-in-progress
size/M
|
commented contributor-last draft new-commits send
|
||
| 1213 |  |
Draft of tutorial for Google's Public CA | 2y | 10h | 2y |  |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
commented contributor-last reviewed-with-comment send
|
||
| 859 | |
Move the meetings and slack information to a separate page |
|
4y | 10h | 3y | |
approved
dco-signoff: yes
needs-rebase
size/M
|
changes-requested commented member-last send
|
|
| 1787 |  |
Update Slack links to include both invite and direct channel URLs | 5mo | 10h | 5mo | |
size/XS
dco-signoff: yes
cybr
|
changes-requested commented member-last send
|
||
| 948 |  |
add note to ingress class definition |
| 3y | 10h | 2y | |
dco-signoff: no
size/XS
needs-rebase
needs-ok-to-test
|
assigned commented contributor-last send unreviewed
|
|
| 1785 | |
WIP: Add release-notes generator script and update release docs | 5mo | 10h | |
dco-signoff: yes
size/XXL
needs-rebase
do-not-merge/work-in-progress
|
contributor-last new-commits recv-q
|
|||
| 1927 |  |
Update Hetzner webhook link in README.md |
|
6wk | 10h | 6wk | |
size/XS
dco-signoff: yes
|
commented member-last send unreviewed
|
|
| 1587 |  |
Custom Certificate Support for cert-manager Webhook Endpoint | 1y | 10h | 1y | |
dco-signoff: yes
size/S
|
recv recv-q unreviewed
|
||
| 1672 | |
WIP: docs: Add an wrap-up announcement page |
|
10mo | 10h | 10mo | |
dco-signoff: yes
do-not-merge/work-in-progress
size/M
|
commented draft member-last new-commits send
|
|
| 790 |  |
Update route53.md | 4y | 10h | 2y | |
dco-signoff: no
size/XS
needs-rebase
needs-ok-to-test
|
changes-requested commented member-last send
|
||
| 1607 |  |
Document Log Level settings. Document DNS01 delegation using multiple providers. | 1y | 10h | 1y | |
dco-signoff: yes
size/M
|
recv recv-q unreviewed
|
||
| 1419 |  |
fix: TLSConfig secretName description | 2y | 10h | 2y | |
dco-signoff: yes
needs-rebase
size/S
|
changes-requested commented contributor-last recv-q send
|
||
| 1640 |  |
Update issuer.md | 1y | 10h | 5mo | |
size/XS
dco-signoff: yes
|
commented member-last reviewed-with-comment send
|
||
| 1450 |  |
Docker testing and validation | 2y | 10h | 2y | |
dco-signoff: yes
needs-rebase
size/M
|
contributor-last new-commits recv recv-q
|
||
| 1611 |  |
Update webhook troubleshooting documentation to including necessary curl command. | 1y | 10h | 1y | |
dco-signoff: yes
size/S
|
changes-requested contributor-last recv recv-q
|
||
| 1724 |  |
DRAFT: feat(tutorials): Add Gateway API | 8mo | 10h | 3wk | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
|
commented draft recv unreviewed
|
||
| 1686 | |
docs: harmonize `<p>` formatting by dropping internal spaces |
| 10mo | 10h | 10mo | |
size/XS
dco-signoff: yes
|
assigned changes-requested contributor-last recv recv-q
|
|
| 1909 |  |
docs: add ACK RRSA supported AliDNS webhook | 2mo | 10h | 6wk | |
size/XS
dco-signoff: yes
|
commented new-commits recv
|
||
| 1569 | |
wip: update cert-manager logo svg | 1y | 10h | 11mo | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
|
commented member-last send unreviewed
|
||
| 1602 |  |
acme troubleshooting: how to fix errored challenges | 1y | 10h | 1y | |
size/XS
dco-signoff: yes
|
contributor-last recv recv-q reviewed-with-comment
|
||
| 1075 | |
Move Issuer / ClusterIssuer and Certificate resource content to a sub-folder of configuration/ | 3y | 10h | 2y |  |
approved
dco-signoff: yes
size/L
needs-rebase
|
changes-requested commented member-last send
|
||
| 1447 | |
Explain how to install cert-manager using ArgoCD |
3
|
2y | 10h | 2y |   |
dco-signoff: yes
size/L
|
commented contributor-last recv-q reviewed-with-comment send
|
|
| 1364 | |
WIP: Patch release checklist | 2y | 10h | |
dco-signoff: yes
needs-rebase
do-not-merge/work-in-progress
size/M
|
contributor-last recv-q unreviewed
|
|||
| 1989 | |
chore(deps): update misc npm packages | 8d | 10h | 8d | |
dco-signoff: yes
size/M
ok-to-test
dependencies
|
recv recv-q similar unreviewed
|
||
| 1945 |  |
Fix Accessibility Violation for Homepage Logo Link | 5wk | 10h | 5wk | |
size/XS
dco-signoff: yes
|
commented member-last send unreviewed
|
||
| 1994 | |
chore(deps): lock file maintenance | 2d | 10h | 2d | |
dco-signoff: yes
size/L
ok-to-test
dependencies
|
recv recv-q unreviewed
|
||
| 1992 | |
chore(deps): update actions/setup-node digest to 53b8394 | 7d | 10h | 7d | |
size/XS
dco-signoff: yes
ok-to-test
dependencies
|
recv recv-q similar unreviewed
|
||
| 1959 | |
chore(deps): update eslint monorepo to v10 (major) | 4wk | 10h | 4wk | |
size/XS
dco-signoff: yes
ok-to-test
dependencies
|
contributor-last recv recv-q unreviewed
|
||
| 528 |  |
Update "Setting Nameservers for DNS01 Self Check" example | 4y | 4y | 4y |
size/XS
dco-signoff: yes
needs-rebase
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 210 | |
chore(deps): pin dependencies | 3mo | 4h | 3mo | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 261 | |
fix(deps): update module google.golang.org/api to v0.271.0 | 1d | 11h | 1d | |
dco-signoff: yes
size/M
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 262 | |
fix(deps): update module cloud.google.com/go/storage to v1.61.0 | 18h | 18h | 18h | |
dco-signoff: yes
size/S
dependencies
ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 258 | |
chore(deps): update docker.io/library/golang:1.26-alpine docker digest to 2389ebf | 5d | 5d | 5d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 225 | |
fix(deps): update module helm.sh/helm/v3 to v4 | 3mo | 5d | 3mo | |
dco-signoff: yes
size/M
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 43 | |
No more requirement "be in the release folder" to run cmrel, remove the flag --cloudbuild | 4y | 4y |
dco-signoff: yes
approved
size/M
needs-rebase
|
contributor-last unreviewed
|
||||
| 36 | |
Add the "cmrel update-release-branch" command | 4y | 4y | 4y | |
dco-signoff: yes
approved
size/M
needs-rebase
do-not-merge/work-in-progress
|
commented contributor-last draft unreviewed
|
||
| 260 | |
chore(deps): update docker.io/library/golang docker tag to v1.26 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 728 |  |
Deprioritize resync operations | 5wk | 6d | 12d |  |
dco-signoff: yes
size/S
ok-to-test
needs-rebase
|
commented contributor-last recv recv-q reviewed-with-comment
|
||
| 637 |  |
Fix/chartadditional annotations for cli args | 5mo | 3wk | 5mo | |
dco-signoff: yes
size/XS
ok-to-test
|
commented contributor-last recv recv-q reviewed-with-comment
|
||
| 760 | |
fix(deps): update misc go deps | 13h | 6h | 13h | |
dco-signoff: yes
size/M
ok-to-test
dependencies
|
contributor-last recv recv-q unreviewed
|
||
| 838 |  |
[CI] Merge self-upgrade-main into main | 6h | 6h | 6h | |
dco-signoff: yes
size/M
release-note-none
kind/cleanup
ok-to-test
skip-review
|
contributor-last recv recv-q similar unreviewed
|
||
| 837 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 14h | 6h | 14h | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 835 | |
Fix race condition with default deny and approving policies | 1d | 1d | 1d | |
dco-signoff: yes
size/L
needs-ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 834 | |
test: add unit tests for ServiceAccount CEL library | 1d | 1d | 1d | |
dco-signoff: yes
size/L
needs-ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 833 | |
fix: correct typos in code comments and documentation | 1d | 1d | 1d | |
dco-signoff: yes
needs-ok-to-test
size/S
|
contributor-last recv recv-q unreviewed
|
||
| 628 | |
Grant cert-manager RBAC to use all policies by default | 10mo | 4mo | 4mo | |
dco-signoff: yes
size/M
|
commented contributor-last recv-q send unreviewed
|
||
| 895 |  |
Allow specifying a custom type for Secret targets | 13d | 14h | 5d | |
dco-signoff: yes
size/XL
ok-to-test
|
commented new-commits recv
|
||
| 900 |  |
chart: add startupapicheck to ensure trust-manager is ready after install | 9d | 9d | 9d | |
dco-signoff: yes
needs-ok-to-test
size/XL
|
contributor-last recv recv-q unreviewed
|
||
| 702 | |
User-facing migration to ClusterBundle | 6mo | 10d | 6wk | |
dco-signoff: yes
do-not-merge/hold
size/XXL
|
commented member-last reviewed-with-comment
|
||
| 893 | |
Eliminate duplicate code for managing default trust bundle images | 16d | 12d | 12d | |
do-not-merge/work-in-progress
needs-ok-to-test
size/XL
needs-rebase
dco-signoff: no
|
commented draft recv recv-q reviewed-with-comment
|
||
| 836 |  |
Set securityContext and podSecurityContext in values | 1mo | 19d | 3wk | |
dco-signoff: yes
size/L
ok-to-test
|
commented member-last send similar unreviewed
|
||
| 558 |  |
feat(helm-chart): add ability to set pod level security context | 1y | 19d | 7mo |  |
dco-signoff: yes
ok-to-test
size/S
|
commented recv-q send unreviewed
|
||
| 683 | |
feat: Add a very basic pre-commit configuration | 7mo | 3wk | 6mo | |
dco-signoff: yes
size/XS
lifecycle/stale
|
commented contributor-last new-commits
|
||
| 304 |  |
Add support for PodMonitor | 2y | 4wk | 7mo | |
dco-signoff: yes
size/L
needs-ok-to-test
needs-rebase
lifecycle/frozen
|
commented contributor-last recv-q send unreviewed
|
||
| 395 | |
WIP: feat: inject bundle data into configmap | 2y | 6wk | 6wk | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
|
commented member-last unreviewed
|
||
| 762 |  |
Add support for injecting CA from secret for trust manager Webhook | 5mo | 7wk | 7wk | |
dco-signoff: yes
needs-ok-to-test
size/S
|
commented member-last reviewed-with-comment send
|
||
| 654 | |
Add design for trust source plugins |
|
7mo | 7wk | 7mo | |
dco-signoff: yes
size/M
do-not-merge/work-in-progress
|
commented draft reviewed-with-comment send
|
|
| 689 | |
Add build process for Debian Trixie | 6mo | 4mo | 6mo | |
dco-signoff: yes
size/L
needs-rebase
|
commented contributor-last recv-q unreviewed
|
||
| 871 | |
Introduce KAL optional fields checks |
|
4wk | 4d | 4d | |
dco-signoff: yes
size/XL
|
commented member-last reviewed-with-comment
|
|
| 420 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 14h | 6h | 14h | |
dependencies
dco-signoff: yes
size/L
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 188 | |
Remove SetCertificateRequestConditionError |
3
|
1y | 13d | 13d | |
dco-signoff: yes
size/XXL
|
commented member-last new-commits
|
|
| 324 | |
[VC-35742] Handle canceled context to prevent extra retries | 5mo | 5mo | 5mo | |
dco-signoff: yes
size/S
do-not-merge/work-in-progress
needs-ok-to-test
|
commented draft member-last send unreviewed
|
||
| 186 | |
Remove GetIssuerTypeIdentifier from Issuer API | 1y | 8mo |  |
dco-signoff: yes
needs-rebase
size/L
|
contributor-last recv-q unreviewed
|
|||
| 24 | |
Add conformance tests |
| 2y | 2y | 2y | |
dco-signoff: yes
size/XXL
approved
needs-rebase
|
assigned commented contributor-last reviewed-with-comment
|
|
| 417 | |
fix(deps): update module k8s.io/klog/v2 to v2.140.0 | 4d | 4d | 4d | |
dependencies
dco-signoff: yes
size/S
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 600 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 13h | 6h | 13h | |
dco-signoff: yes
size/L
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 502 |  |
Enable csi-lib metrics | 4mo | 1d | 1d | |
dco-signoff: yes
size/S
needs-rebase
ok-to-test
|
commented member-last reviewed-with-comment send
|
||
| 251 | |
PoC: Generate SPIFFE identities in csi-driver | 2y | 2y | 2y | |
dco-signoff: yes
size/S
do-not-merge/work-in-progress
needs-rebase
|
commented contributor-last draft recv-q unreviewed
|
||
| 129 |  |
Add attribute support for certificate subject |
|
3y | 2y | 2y | |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
commented contributor-last reviewed-with-comment send
|
|
| 135 |  |
Added options to all containers | 3y | 2y | 3y | |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
commented contributor-last send unreviewed
|
||
| 474 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 14h | 4h | 14h | |
dco-signoff: yes
size/L
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 107 | |
Remove csi-driver-spiffe approver | 2y | 2y |
size/XXL
dco-signoff: no
do-not-merge/work-in-progress
needs-rebase
|
contributor-last draft unreviewed
|
||||
| 345 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 14h | 14h | 14h | |
dco-signoff: yes
dependencies
size/L
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 303 |  |
feat: add support for setting private key encoding | 3mo | 2mo | 3mo | |
dco-signoff: yes
size/L
needs-ok-to-test
|
recv recv-q reviewed-with-comment similar
|
||
| 148 |  |
limit-namespaces for namespace-scope deployments |
|
1y | 1y | 1y |  |
dco-signoff: no
size/S
needs-ok-to-test
|
recv recv-q unreviewed
|
|
| 117 |  |
fill spec.tls.caCertificate in route with intermediate ca certificate… |
|
1y | 1y | 1y |   |
dco-signoff: yes
size/M
needs-rebase
ok-to-test
|
commented contributor-last new-commits recv-q send
|
|
| 187 | |
fix(deps): update misc go deps | 11d | 4h | 11d | |
dco-signoff: yes
size/L
ok-to-test
dependencies
|
contributor-last recv recv-q unreviewed
|
||
| 192 | |
[CI] Merge self-upgrade-main into main | 6h | 6h | 6h | |
dco-signoff: yes
size/S
kind/cleanup
release-note-none
ok-to-test
skip-review
|
contributor-last recv recv-q similar unreviewed
|
||
| 190 | |
fix(deps): update module golang.org/x/sync to v0.20.0
|
2d | 2d | 2d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
skip-review
|
contributor-last recv recv-q similar unreviewed
|
||
| 189 | |
fix(deps): update module k8s.io/klog/v2 to v2.140.0 | 4d | 4d | 4d | |
dco-signoff: yes
size/S
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 71 | |
Refactor filesystem.go and adapt tests to use a real file system | 1y | 8mo | 8mo | |
dco-signoff: yes
size/L
|
commented member-last reviewed-with-comment
|
||
| 138 | |
chore(deps): update docker.io/golang:1.26 docker digest to c7e98cc | 7d | 2h | 7d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 140 | |
chore(deps): update dependency golangci/golangci-lint to v2.11.3 | 5d | 18h | 5d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 142 | |
fix(deps): update module k8s.io/klog/v2 to v2.140.0 | 4d | 4d | 4d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 143 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 14h | 14h | 14h | |
dco-signoff: yes
size/L
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 434 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 13h | 4h | 13h | |
dco-signoff: yes
size/L
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 435 | |
[CI] Merge self-upgrade-main into main | 6h | 6h | 6h | |
dco-signoff: yes
size/S
ok-to-test
release-note-none
kind/cleanup
skip-review
|
contributor-last recv recv-q similar unreviewed
|
||
| 429 | |
chore(deps): update docker/login-action action to v4 | 6d | 6d | 6d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 68 | |
chore(deps): update terraform google to v7.23.0 | 5wk | 10h | 5wk | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 1157 |  |
Update k8s-infra-prow images, cert-manager-infra-images images as needed | 8d | 12h | 8d | |
dco-signoff: yes
size/M
|
contributor-last recv recv-q unreviewed
|
||
| 1159 | |
fix(deps): update module google.golang.org/api to v0.271.0 | 1d | 13h | 1d | |
dco-signoff: yes
size/M
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 1119 | |
Disable DCO for Copilot-authored PRs | 4mo | 3mo | |
dco-signoff: yes
size/S
needs-rebase
|
contributor-last recv-q unreviewed
|
|||
| 1114 | |
Add the 'cybr' label | 5mo | 5mo | 5mo | |
size/XS
dco-signoff: yes
|
commented member-last reviewed-with-comment send
|
||
| 560 | |
chore(deps): update tools | 8d | 10h | 8d | |
dco-signoff: yes
size/M
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 564 | |
chore(deps): update dependency cert-manager/cert-manager to v1.20.0 | 14h | 14h | 14h | |
dco-signoff: yes
size/S
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 492 | |
chore(deps): update module github.com/sigstore/cosign/v2 to v3 | 3mo | 19d | 3mo | |
dco-signoff: yes
size/XS
do-not-merge/hold
dependencies
ok-to-test
|
commented member-last send unreviewed
|
||
| 549 | |
Split (helm) generate-crds target | 3wk | 3wk | 3wk | |
dco-signoff: yes
size/M
|
commented member-last reviewed-with-comment
|
||
| 541 | |
Add Kube API linter | 4wk | 3wk | 4wk | |
dco-signoff: yes
size/M
needs-rebase
|
commented contributor-last recv-q reviewed-with-comment send
|
||
| 470 | |
feat(helm): adding `helm-diff` target |
|
4mo | 3mo | 3mo | |
dco-signoff: yes
size/S
cybr
ok-to-test
|
commented contributor-last new-commits recv recv-q
|
|
| 293 | |
Add Helm chart image baking | 10mo | 6mo | |
dco-signoff: yes
size/S
needs-rebase
|
contributor-last recv-q similar unreviewed
|
|||
| 55 | |
feat: add test module | 2y | 2y | 2y | |
dco-signoff: yes
size/M
|
commented contributor-last recv reviewed-with-comment
|
||
| 104 | |
Add Chart image baking | 10mo | 6mo | 6mo | |
dco-signoff: yes
size/L
needs-rebase
|
commented member-last reviewed-with-comment send similar
|
||
| 11 | |
Governance: folks meaningfully contributing to the biweekly can become GitHub Members | 2y | 3mo | |
do-not-merge/work-in-progress
dco-signoff: yes
size/S
|
draft reviewed-with-comment
|
|||
| 109 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 13h | 13h | 13h | |
dco-signoff: yes
size/L
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 64 |  |
Add imagePullSecrets to template | 2y | 2y | 2y |
size/XS
dco-signoff: yes
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 59 |  |
cleanup: remove unused NOTES.txt file | 2y | 2y | 2y |
size/XS
dco-signoff: yes
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 1 | |
Manage the cert-manager GitHub organisation from this repo | 2y | 2y | 2y | |
dco-signoff: yes
size/XXL
|
commented member-last unreviewed
|
||
| 58 | |
chore(deps): update misc github actions | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 13 |  |
Various QA fixes | 3wk | 3wk | 3wk | |
dco-signoff: yes
size/L
needs-ok-to-test
|
commented new-commits recv
|
||
| 4 | |
Add support for custom license templates | 2y | 6mo | |
dco-signoff: yes
size/S
|
contributor-last recv-q unreviewed
|
|||
| 8 | |
Optionally output a unified diff |
|
2mo | 3wk | 3wk | |
dco-signoff: yes
size/XL
needs-ok-to-test
|
commented recv recv-q unreviewed
|
|
| 454 | |
fix(deps): update module google.golang.org/api to v0.271.0 | 1d | 10h | 1d | |
size/M
ok-to-test
dependencies
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
||
| 457 | |
fix(deps): update module github.com/cert-manager/cert-manager to v1.20.0 | 14h | 14h | 14h | |
size/M
ok-to-test
dependencies
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
||
| 455 | |
Replace math/rand with math/rand/v2 | 1d | 1d | 1d | |
size/S
dco-signoff: yes
|
contributor-last recv recv-q unreviewed
|
||
| 452 | |
Add support for maxConcurrentReconciles | 4d | 1d | 1d | |
size/M
dco-signoff: yes
|
commented member-last reviewed-with-comment send
|
||
| 345 |  |
chore: add existing securityContext settings to values | 4mo | 4mo | 4mo | |
size/M
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
||
| 143 |  |
feat: allow creating or reusing an existing sa | 2y | 9mo | 2y | |
ok-to-test
|
recv recv-q unreviewed
|
||
| 159 |  |
Split certificate chain | 2y | 1y | 1y | |
commented member-last reviewed-with-comment send
|
|||
| 141 |  |
re-adding required clusterrole permission | 2y | 1y | 2y | |
size/XS
|
recv unreviewed
|
||
| 453 | |
fix(deps): update module k8s.io/klog/v2 to v2.140.0 | 4d | 4d | 4d | |
size/XS
ok-to-test
dependencies
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
