| ID | Au | Desc | As | Rea | Cr | Up | Re | Cmntrs | Labels | Tags |
| 8262 |  |
Bugfix #7388 kid missing issue with Infisical ACME server or any other ACME that requires EAB | 17d | 2h | 17d |   |
size/L
release-note
needs-ok-to-test
area/acme
dco-signoff: yes
needs-kind
|
contributor-last recv recv-q unreviewed
|
||
| 8301 |  |
venafi: Process custom fields annotations on Issuer |
2
|
1d | 11h | 14h |   |
size/L
release-note
kind/feature
dco-signoff: yes
ok-to-test
|
commented contributor-last new-commits recv
|
|
| 8258 |  |
feat(certificate): renewal policy and windows code | 18d | 15h | 18d | |
release-note
area/api
kind/feature
size/XXL
area/acme
dco-signoff: yes
area/testing
area/acme/dns01
area/deploy
|
contributor-last recv recv-q similar unreviewed
|
||
| 8304 |  |
fix(deps): update module sigs.k8s.io/gateway-api to v1.4.1 (master) | 18h | 18h | 18h | |
release-note-none
size/S
kind/cleanup
dco-signoff: yes
area/testing
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 8305 | |
fix(deps): update module github.com/cloudflare/cloudflare-go/v6 to v6.4.0 (master)
|
18h | 18h | 18h | |
size/XS
release-note-none
kind/cleanup
dco-signoff: yes
area/testing
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 7733 |  |
fixes #5864: cert-manager CA to issue certs after verify with CA Certs Validity |
|
7mo | 21h | 6mo |      |
size/L
release-note
kind/bug
kind/feature
lifecycle/stale
dco-signoff: yes
ok-to-test
|
commented new-commits recv recv-q
|
|
| 8232 |  |
Add checks for Duration/RenewBefore changes when determining if an ingress/gateway-api change should trigger a certificate update | 4wk | 1d | 4wk |  |
size/L
release-note
kind/bug
needs-ok-to-test
dco-signoff: yes
|
contributor-last recv recv-q reviewed-with-comment
|
||
| 8261 |  |
Improve event handler: add predicate support & replace deepequal with resource version comparison | 17d | 1d | |
size/XL
release-note-none
kind/cleanup
area/acme
dco-signoff: yes
|
contributor-last recv-q unreviewed
|
|||
| 7839 |  |
Design: support Gateway API's new XListenerSet resource |
9
7
|
5mo | 1d | 4d |     |
release-note-none
approved
kind/design
size/XXL
dco-signoff: yes
cybr
|
commented contributor-last recv-q reviewed-with-comment
|
|
| 8263 |  |
fix: dont copy `kapp.k14s.io` annotations from Ingress to created resources |
|
|
16d | 1d | 4d | |
size/XS
release-note
kind/feature
dco-signoff: yes
ok-to-test
cybr
|
assigned assignee-updated commented recv recv-q unreviewed
|
| 7652 |  |
Helm chart: add ability to add appprotocol to port in service |
3
|
8mo | 8d | 7mo |   |
size/XS
release-note
kind/bug
lifecycle/stale
dco-signoff: yes
ok-to-test
area/deploy
|
commented contributor-last recv-q reviewed-with-comment send
|
|
| 8228 |  |
feat(vault): add server as default audience | 4wk | 9d | 3wk | |
release-note
area/api
kind/feature
size/M
dco-signoff: yes
ok-to-test
area/deploy
|
commented contributor-last new-commits recv
|
||
| 7908 | |
WIP: Graduate ServerSideApply feature gates to Beta |
|
|
3mo | 10d | 16d | |
size/L
release-note
do-not-merge/work-in-progress
kind/feature
area/acme
dco-signoff: yes
area/testing
cybr
|
assigned assignee-updated commented contributor-last recv-q send unreviewed
|
| 8253 |  |
refactor(issuer): add shared factory and per-instance registries | 2wk | 10d | 13d | |
size/L
release-note-none
lgtm
kind/cleanup
dco-signoff: yes
ok-to-test
|
commented member-last reviewed-with-comment send
|
||
| 8255 |  |
add dns issuer secrets validation before marking it as ready | 19d | 12d | 13d | |
release-note
size/XL
area/acme
dco-signoff: yes
area/testing
ok-to-test
needs-kind
|
commented contributor-last recv unreviewed
|
||
| 7897 | |
wip: add retry mechanism for challenge solver whenever we detect unauthorized error |
|
4mo | 13d | 4wk |  |
size/XL
release-note-none
area/api
do-not-merge/work-in-progress
area/acme
dco-signoff: yes
area/testing
ok-to-test
area/acme/dns01
area/monitoring
area/deploy
needs-kind
|
commented member-last new-commits send
|
|
| 7439 |  |
helm: add checksum/config annotations | 1y | 14d | 1y | |
release-note-none
size/S
kind/feature
needs-ok-to-test
lifecycle/stale
dco-signoff: yes
area/deploy
|
contributor-last recv recv-q unreviewed
|
||
| 7583 |  |
Support for ACME servers that don't finalize within the ACME client finalizer retry window | 9mo | 15d | 9mo |  |
release-note
kind/bug
needs-ok-to-test
size/M
area/acme
dco-signoff: yes
|
recv recv-q unreviewed
|
||
| 8220 | |
Add predicate filtering to queuing handler |
|
5wk | 17d | 17d | |
size/L
release-note-none
area/acme
dco-signoff: yes
area/acme/dns01
needs-kind
|
commented member-last new-commits send
|
|
| 7718 | |
Switch to makefile modules completely (part 1) | 7mo | 19d | 19d | |
release-note-none
needs-rebase
area/api
kind/cleanup
size/XXL
area/acme
dco-signoff: yes
area/testing
area/deploy
cybr
|
commented member-last new-commits send
|
||
| 8139 | |
feat(design): adding initial design for certificate renewal |
2
|
2mo | 3wk | 7wk |   |
size/L
release-note-none
approved
lgtm
do-not-merge/hold
kind/design
dco-signoff: yes
|
commented contributor-last recv recv-q reviewed-with-comment
|
|
| 7654 |  |
Implement fallback for git_version creation in forked environments | 8mo | 3wk | 7mo | |
release-note-none
size/S
kind/cleanup
needs-ok-to-test
lifecycle/stale
dco-signoff: yes
|
commented contributor-last reviewed-with-comment send
|
||
| 7728 |  |
Add unhealthyPodEvictionPolicy to supported PDB options |
|
7mo | 3wk | 3wk | |
release-note
approved
lgtm
do-not-merge/hold
kind/feature
size/M
lifecycle/stale
dco-signoff: yes
ok-to-test
area/deploy
|
commented contributor-last recv-q reviewed-with-comment send
|
|
| 7467 |  |
fix: ❗dns-01 route53 query change status retry timeout |
2
|
11mo | 4wk | 7mo |  |
release-note
needs-rebase
size/S
kind/bug
area/acme
lifecycle/rotten
dco-signoff: yes
ok-to-test
area/acme/dns01
|
approved commented contributor-last recv-q send
|
|
| 7805 | |
feat: refactor challenge controller to be entirely non blocking | 5mo | 4wk | 6wk | |
release-note
needs-rebase
area/api
kind/bug
size/XXL
area/acme
dco-signoff: yes
area/testing
area/acme/dns01
area/acme/http01
area/deploy
cybr
|
commented contributor-last new-commits recv-q send
|
||
| 7852 |  |
adds cli option configure ACME challange authorization timeout | 4mo | 4wk | 4mo | |
release-note
needs-rebase
area/api
kind/feature
size/M
area/acme
dco-signoff: yes
ok-to-test
|
commented contributor-last new-commits recv-q send similar
|
||
| 7614 |  |
Lower the minimum certificate duration from 1 hour to 5 minutes | 9mo | 4wk | 9mo | |
release-note
size/S
area/api
kind/feature
dco-signoff: yes
ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 7748 | |
Design: "Image Configuration in Helm Chart" |
3
|
6mo | 4wk | 1mo | |
size/L
release-note-none
kind/design
dco-signoff: yes
cybr
|
commented member-last new-commits send
|
|
| 7725 |  |
chore: allow additional properties in Helm setup #7668 |
2
|
7mo | 5wk | 7mo | |
size/XS
release-note-none
needs-ok-to-test
lifecycle/stale
dco-signoff: no
area/deploy
needs-kind
|
commented contributor-last send unreviewed
|
|
| 8187 |  |
fix: add case for parsing key with ec parameters | 7wk | 5wk | 7wk | |
size/XS
release-note-none
kind/bug
needs-ok-to-test
dco-signoff: yes
|
changes-requested recv recv-q
|
||
| 7694 |  |
add ability to set metadata of created service | 7mo | 7wk | 7mo | |
size/L
release-note-none
needs-rebase
area/api
do-not-merge/work-in-progress
needs-ok-to-test
area/acme
lifecycle/rotten
dco-signoff: no
area/acme/http01
area/deploy
needs-kind
|
contributor-last draft recv recv-q unreviewed
|
||
| 7646 |  |
Support custom ACME account key type. |
2
|
8mo | 7wk | 6mo |  |
size/L
release-note
area/api
area/acme
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented new-commits recv recv-q
|
|
| 8141 |  |
fix(helm): Align targetPorts in metrics endpoints for webhook and cainjector services |
|
2mo | 1mo | 1mo | |
size/XS
release-note-none
lgtm
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented member-last send unreviewed
|
|
| 8115 |  |
feat: implements `global.imageRegistry` and fixes #6160 | 2mo | 1mo | 1mo | |
release-note
kind/feature
needs-ok-to-test
size/M
dco-signoff: yes
area/deploy
|
commented member-last reviewed-with-comment send
|
||
| 8071 |  |
Handle ACME Accept asynchronously | 2mo | 1mo | 2mo | |
size/L
release-note
area/api
needs-ok-to-test
area/acme
dco-signoff: yes
area/testing
area/deploy
needs-kind
|
recv recv-q unreviewed
|
||
| 7658 |  |
7196 order reason not set | 8mo | 2mo | 8mo | |
release-note
size/S
kind/bug
kind/design
area/acme
lifecycle/rotten
dco-signoff: yes
ok-to-test
|
commented contributor-last recv-q send unreviewed
|
||
| 7665 |  |
Add cookie jar to Acme client | 8mo | 2mo | 8mo | |
size/XS
do-not-merge/release-note-label-needed
kind/feature
needs-ok-to-test
area/acme
lifecycle/rotten
dco-signoff: yes
ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 7064 |  |
Adds certificate name key annotation validation in secret as part of post issuance policy chain |
2
|
2y | 2mo | 8mo | |
size/L
release-note-none
approved
lgtm
kind/bug
lifecycle/rotten
dco-signoff: yes
ok-to-test
|
commented contributor-last open-milestone recv-q reviewed-with-comment send
|
|
| 7558 | |
feat: add (helm) global.imageRepository |
2
2
|
10mo | 2mo | 6mo | |
size/L
release-note
do-not-merge/hold
kind/feature
dco-signoff: yes
area/deploy
|
commented contributor-last recv reviewed-with-comment
|
|
| 7764 |  |
Doc: Add leaderElection.namespace recommendation | 6mo | 2mo | 2mo | |
size/XS
release-note-none
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented contributor-last recv-q send unreviewed
|
||
| 4835 | |
Making sure per fixture only 1 setup is active at the same time | 
| 3y | 2mo | 4mo |  |
release-note-none
needs-rebase
lifecycle/frozen
kind/bug
size/M
dco-signoff: yes
area/testing
|
assigned assignee-updated commented contributor-last recv-q reviewed-with-comment
|
|
| 5447 |  |
Allow extra DNS-01 propagation time to be configured |
|
3y | 2mo | 4mo |   |
release-note
needs-rebase
size/S
lifecycle/frozen
kind/feature
area/acme
dco-signoff: yes
ok-to-test
area/acme/dns01
|
commented contributor-last open-milestone recv-q send unreviewed
|
|
| 5743 | |
Add MaxPathLen and add EncodeBasicConstraintsInRequest option to Certificate and CertificateRequest resources | 2y | 2mo | 8mo | |
size/L
release-note
needs-rebase
area/api
kind/cleanup
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
commented contributor-last open-milestone recv-q reviewed-with-comment
|
||
| 7236 | |
Route53: Allow STS token to be refreshed by the AWS client if necessary | 1y | 2mo | 8mo | |
release-note
size/XL
needs-rebase
area/api
kind/bug
kind/feature
area/acme
dco-signoff: yes
area/acme/dns01
area/deploy
|
commented contributor-last recv-q reviewed-with-comment send
|
||
| 7286 | |
Only remove the cleanup finalizer if the cleanup succeeds |
|
1y | 2mo | 1y | |
size/L
release-note-none
needs-rebase
do-not-merge/hold
lifecycle/frozen
kind/cleanup
area/acme
dco-signoff: yes
area/acme/dns01
area/acme/http01
|
commented contributor-last recv-q reviewed-with-comment
|
|
| 7382 | |
Implement a single package for controlling cert-manager RNG |
3
|
1y | 2mo | 8mo | |
size/L
release-note
needs-rebase
do-not-merge/hold
kind/feature
area/acme
dco-signoff: yes
area/testing
|
commented contributor-last recv-q send unreviewed
|
|
| 7437 |  |
fix: annotate account private key secrets | 1y | 2mo | 10mo | |
release-note
needs-rebase
size/S
area/api
kind/feature
area/acme
dco-signoff: yes
ok-to-test
|
commented contributor-last open-milestone recv recv-q unreviewed
|
||
| 7449 | |
WIP: reconcile issuers using issuer-lib | 1y | 2mo | 6mo | |
release-note-none
needs-rebase
area/api
do-not-merge/work-in-progress
kind/cleanup
size/XXL
area/acme
area/ca
area/vault
dco-signoff: yes
area/testing
area/deploy
|
commented contributor-last recv-q unreviewed
|
||
| 7642 |  |
fixes #7506: enable configurable max key/cert sizes, defaulting to original safe values introduced in #7401 | 8mo | 2mo | 3mo |   |
release-note
size/XL
needs-rebase
area/api
kind/bug
kind/feature
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
commented contributor-last recv-q reviewed-with-comment send
|
||
| 7823 |  |
Adding read perms for pods and services to DNS01 ClusterRole |
|
5mo | 2mo | 5mo | |
size/XS
release-note
needs-rebase
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
commented contributor-last recv recv-q reviewed-with-comment
|
|
| 8043 | |
WIP: feat(controller): adding labels to lease | 3mo | 2mo | 3mo | |
size/XS
release-note
do-not-merge/work-in-progress
do-not-merge/hold
kind/feature
dco-signoff: yes
|
commented contributor-last recv recv-q unreviewed
|
||
| 7906 |  |
fix: Venafi call GetRefreshToken only when access token invalid for password/username authentication |
2
|
3mo | 3mo | 3mo | |
release-note
size/S
kind/bug
dco-signoff: yes
ok-to-test
|
commented member-last send unreviewed
|
|
| 7886 | |
Improve array field characteristics in API | 4mo | 3mo | 4mo | |
size/L
release-note
area/api
do-not-merge/hold
kind/bug
kind/cleanup
dco-signoff: yes
area/deploy
|
commented member-last new-commits
|
||
| 7399 |  |
Add renew window to restrict when certificate renewal can happen | 1y | 3mo | 1y |  |
size/L
release-note
needs-rebase
area/api
kind/feature
needs-ok-to-test
dco-signoff: yes
area/testing
area/deploy
|
contributor-last recv recv-q similar unreviewed
|
||
| 7824 |  |
Add Azure Private DNS support to cert-manager | 5mo | 3mo | 5mo | |
release-note
needs-rebase
area/api
kind/feature
needs-ok-to-test
size/XXL
area/acme
dco-signoff: yes
area/acme/dns01
area/deploy
|
contributor-last new-commits recv recv-q
|
||
| 7450 | |
Make ACME Authorization Timeout Configurable | 1y | 3mo | 1y | |
size/L
release-note
area/api
needs-ok-to-test
area/acme
dco-signoff: yes
area/acme/http01
area/deploy
needs-kind
|
commented contributor-last new-commits recv recv-q similar
|
||
| 7689 | |
Add Vertical Pod Autoscaler |
2
|
7mo | 4mo | 7mo | |
size/L
release-note
approved
kind/feature
dco-signoff: yes
ok-to-test
area/deploy
|
commented new-commits recv recv-q
|
|
| 7662 |  |
Fix the issue of webhook routes generating duplicate operation IDs | 8mo | 5mo | 8mo | |
do-not-merge/release-note-label-needed
needs-ok-to-test
size/M
area/acme
dco-signoff: yes
needs-kind
|
contributor-last recv recv-q unreviewed
|
||
| 7289 |  |
Design proposal for delayed certificate activation | 1y | 5mo | 10mo | |
size/L
release-note-none
kind/design
needs-ok-to-test
dco-signoff: yes
|
commented contributor-last open-milestone recv recv-q reviewed-with-comment
|
||
| 7521 |  |
ClusterIssuer read caBundle from Secret | 10mo | 5mo | 7mo |   |
size/L
release-note
needs-rebase
area/api
kind/feature
needs-ok-to-test
area/acme
dco-signoff: yes
area/deploy
|
commented contributor-last recv-q send unreviewed
|
||
| 1868 | |
Remove the scarf.sh tracking pixel | 11h | 11h | 11h |  |
dco-signoff: yes
do-not-merge/hold
size/M
|
commented member-last unreviewed
|
||
| 1866 | |
Use admonitions similar to docusaurus | 1d | 1d | |
dco-signoff: yes
size/XXL
|
recv-q unreviewed
|
|||
| 1867 | |
chore(deps): pin dependencies | 1d | 1d | 1d | |
approved
dco-signoff: yes
lgtm
size/M
ok-to-test
dependencies
|
commented member-last send unreviewed
|
||
| 1827 |  |
Update NetworkPolicy guidelines to reflect the correct namespace | 4wk | 4wk | 4wk | |
size/XS
dco-signoff: yes
|
recv recv-q reviewed-with-comment
|
||
| 1785 | |
WIP: Add release-notes generator script and update release docs | 2mo | 7wk | |
dco-signoff: yes
size/XXL
needs-rebase
do-not-merge/work-in-progress
|
contributor-last new-commits recv-q
|
|||
| 1447 | |
Explain how to install cert-manager using ArgoCD |
2
|
2y | 7wk | 2y |   |
dco-signoff: yes
size/L
|
commented contributor-last recv-q reviewed-with-comment send
|
|
| 1787 |  |
Update Slack links to include both invite and direct channel URLs | 2mo | 1mo | 1mo | |
size/XS
dco-signoff: yes
|
changes-requested commented member-last send
|
||
| 1640 |  |
Update issuer.md | 10mo | 2mo | 2mo | |
size/XS
dco-signoff: yes
|
commented member-last reviewed-with-comment send
|
||
| 1602 |  |
acme troubleshooting: how to fix errored challenges | 1y | 2mo | 1y | |
size/XS
dco-signoff: yes
|
contributor-last recv recv-q reviewed-with-comment
|
||
| 1197 |  |
doc about new option default-cleanup-policy |
|
2y | 2mo | 2mo | |
approved
dco-signoff: yes
needs-rebase
size/M
|
commented member-last new-commits send
|
|
| 1724 |  |
DRAFT: feat(tutorials): Add Gateway API | 5mo | 5mo | 5mo | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
|
draft recv recv-q unreviewed
|
||
| 1686 | |
docs: harmonize `<p>` formatting by dropping internal spaces |
| 7mo | 7mo | 7mo | |
size/XS
dco-signoff: yes
|
assigned changes-requested contributor-last recv recv-q
|
|
| 1672 | |
WIP: docs: Add an wrap-up announcement page |
|
7mo | 7mo | 7mo | |
dco-signoff: yes
do-not-merge/work-in-progress
size/M
|
commented draft member-last new-commits send
|
|
| 1569 | |
wip: update cert-manager logo svg | 1y | 7mo | 7mo | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
|
commented member-last send unreviewed
|
||
| 1364 | |
WIP: Patch release checklist | 2y | 9mo | |
dco-signoff: yes
needs-rebase
do-not-merge/work-in-progress
size/M
|
contributor-last recv-q unreviewed
|
|||
| 1611 |  |
Update webhook troubleshooting documentation to including necessary curl command. | 1y | 1y | 1y | |
dco-signoff: yes
size/S
|
changes-requested recv recv-q
|
||
| 1607 |  |
Document Log Level settings. Document DNS01 delegation using multiple providers. | 1y | 1y | 1y | |
dco-signoff: yes
size/M
|
recv recv-q unreviewed
|
||
| 1587 |  |
Custom Certificate Support for cert-manager Webhook Endpoint | 1y | 1y | 1y | |
dco-signoff: yes
size/S
|
recv recv-q unreviewed
|
||
| 1202 |  |
Add section about client cert authentication for vault | 2y | 1y | 2y | |
dco-signoff: yes
do-not-merge/work-in-progress
size/M
|
commented contributor-last draft new-commits send
|
||
| 1419 |  |
fix: TLSConfig secretName description | 2y | 2y | 2y | |
dco-signoff: yes
needs-rebase
size/S
|
changes-requested commented contributor-last recv-q send
|
||
| 1450 |  |
Docker testing and validation | 2y | 2y | 2y | |
dco-signoff: yes
needs-rebase
size/M
|
contributor-last new-commits recv recv-q
|
||
| 1213 |  |
Draft of tutorial for Google's Public CA | 2y | 2y | 2y |  |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
commented contributor-last reviewed-with-comment send
|
||
| 1075 | |
Move Issuer / ClusterIssuer and Certificate resource content to a sub-folder of configuration/ | 3y | 2y | 2y |  |
approved
dco-signoff: yes
size/L
needs-rebase
|
changes-requested commented member-last send
|
||
| 790 |  |
Update route53.md | 3y | 2y | 2y | |
dco-signoff: no
size/XS
needs-rebase
needs-ok-to-test
|
changes-requested commented member-last send
|
||
| 1259 |  |
Fixed Azure Workload identity doc | 2y | 2y | 2y | |
dco-signoff: yes
size/S
|
recv unreviewed
|
||
| 948 |  |
add note to ingress class definition |
| 3y | 2y | 2y | |
dco-signoff: no
size/XS
needs-rebase
needs-ok-to-test
|
assigned commented contributor-last send unreviewed
|
|
| 859 | |
Move the meetings and slack information to a separate page |
|
3y | 3y | 3y | |
approved
dco-signoff: yes
needs-rebase
size/M
|
changes-requested commented member-last send
|
|
| 528 |  |
Update "Setting Nameservers for DNS01 Self Check" example | 4y | 3y | 4y |
size/XS
dco-signoff: yes
needs-rebase
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 200 |  |
Bump the all group across 1 directory with 12 updates | 9mo | 2mo | 2mo | |
dco-signoff: yes
size/L
dependencies
ok-to-test
go
|
commented contributor-last recv-q send similar unreviewed
|
||
| 201 | |
Add publish stage for pushing OCI helm chart | 9mo | 3mo | 3mo | |
dco-signoff: yes
size/XL
do-not-merge/work-in-progress
|
commented draft member-last unreviewed
|
||
| 43 | |
No more requirement "be in the release folder" to run cmrel, remove the flag --cloudbuild | 4y | 4y |
dco-signoff: yes
approved
size/M
needs-rebase
|
contributor-last unreviewed
|
||||
| 36 | |
Add the "cmrel update-release-branch" command | 4y | 4y | 4y | |
dco-signoff: yes
approved
size/M
needs-rebase
do-not-merge/work-in-progress
|
commented contributor-last draft unreviewed
|
||
| 684 | |
fix(deps): update misc go deps | 1d | 18h | 1d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q unreviewed
|
||
| 637 |  |
Fix/chartadditional annotations for cli args | 2mo | 18d | 2mo | |
dco-signoff: yes
size/XS
ok-to-test
|
commented contributor-last recv recv-q reviewed-with-comment
|
||
| 759 | |
[CI] Merge self-upgrade-main into main | 1d | 20h | 1d | |
dco-signoff: yes
size/M
release-note-none
kind/cleanup
ok-to-test
skip-review
|
contributor-last recv recv-q unreviewed
|
||
| 760 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 758 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 628 | |
Grant cert-manager RBAC to use all policies by default | 7mo | 6wk | 6wk | |
dco-signoff: yes
size/M
|
commented contributor-last recv-q send unreviewed
|
||
| 802 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 799 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
dco-signoff: yes
ok-to-test
size/S
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 702 | |
WIP: User-facing migration to ClusterBundle | 3mo | 3wk | |
dco-signoff: yes
do-not-merge/work-in-progress
size/XXL
|
contributor-last recv-q unreviewed
|
|||
| 689 | |
Add build process for Debian Trixie | 3mo | 4wk | 3mo | |
dco-signoff: yes
size/L
needs-rebase
|
commented contributor-last recv-q unreviewed
|
||
| 762 |  |
Add support for injecting CA from secret for trust manager Webhook | 2mo | 2mo | 2mo | |
dco-signoff: yes
needs-ok-to-test
size/S
|
commented recv unreviewed
|
||
| 683 | |
feat: Add a very basic pre-commit configuration | 3mo | 3mo | 3mo | |
dco-signoff: yes
size/XS
|
commented member-last new-commits
|
||
| 558 |  |
feat(helm-chart): add ability to set pod level security context | 9mo | 3mo | 3mo | |
dco-signoff: yes
ok-to-test
size/S
|
commented member-last send unreviewed
|
||
| 304 |  |
Add support for PodMonitor | 2y | 3mo | 3mo | |
dco-signoff: yes
size/L
needs-ok-to-test
lifecycle/frozen
|
commented member-last send unreviewed
|
||
| 659 | |
WIP: Dedicated controller for cleaning up bundle targets | 4mo | 3mo | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
needs-rebase
|
contributor-last recv-q unreviewed
|
|||
| 395 | |
WIP: feat: inject bundle data into configmap | 1y | 4mo | 4mo | |
dco-signoff: yes
size/L
do-not-merge/work-in-progress
|
commented member-last unreviewed
|
||
| 654 | |
Add design for trust source plugins |
|
4mo | 4mo | 4mo | |
dco-signoff: yes
size/M
do-not-merge/work-in-progress
|
commented draft reviewed-with-comment send
|
|
| 350 | |
bug(controller): fix missing ignore issuers logic |
|
4wk | 14d | 15d | |
dco-signoff: yes
size/M
|
commented contributor-last recv recv-q reviewed-with-comment
|
|
| 324 | |
[VC-35742] Handle canceled context to prevent extra retries | 2mo | 2mo | 2mo | |
dco-signoff: yes
size/S
do-not-merge/work-in-progress
needs-ok-to-test
|
commented draft member-last send unreviewed
|
||
| 186 | |
Remove GetIssuerTypeIdentifier from Issuer API | 1y | 5mo | |
dco-signoff: yes
needs-rebase
size/L
|
contributor-last recv-q unreviewed
|
|||
| 188 | |
Remove SetCertificateRequestConditionError | 1y | 5mo | |
dco-signoff: yes
size/XL
|
contributor-last recv-q unreviewed
|
|||
| 24 | |
Add conformance tests |
| 2y | 2y | 2y | |
dco-signoff: yes
size/XXL
approved
needs-rebase
|
assigned commented contributor-last reviewed-with-comment
|
|
| 527 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 525 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 502 |  |
Draft: demo for csi-lib metrics feature | 6wk | 3wk | 6wk | |
dco-signoff: yes
size/M
do-not-merge/work-in-progress
needs-rebase
needs-ok-to-test
|
contributor-last draft recv recv-q unreviewed
|
||
| 251 | |
PoC: Generate SPIFFE identities in csi-driver | 2y | 2y | 2y | |
dco-signoff: yes
size/S
do-not-merge/work-in-progress
needs-rebase
|
commented contributor-last draft recv-q unreviewed
|
||
| 129 |  |
Add attribute support for certificate subject |
|
2y | 2y | 2y | |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
commented contributor-last reviewed-with-comment send
|
|
| 135 |  |
Added options to all containers | 2y | 2y | 2y | |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
commented contributor-last send unreviewed
|
||
| 408 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 407 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
dco-signoff: yes
size/XS
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 107 | |
Remove csi-driver-spiffe approver | 2y | 2y |
size/XXL
dco-signoff: no
do-not-merge/work-in-progress
needs-rebase
|
contributor-last draft unreviewed
|
||||
| 292 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 290 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 148 |  |
limit-namespaces for namespace-scope deployments |
|
10mo | 10mo | 10mo |  |
dco-signoff: no
size/S
needs-ok-to-test
|
recv recv-q unreviewed
|
|
| 117 |  |
fill spec.tls.caCertificate in route with intermediate ca certificate… |
|
1y | 10mo | 1y |   |
dco-signoff: yes
size/M
needs-rebase
ok-to-test
|
commented contributor-last new-commits recv-q send
|
|
| 73 | |
Support prometheus metrics |
2
9
|
1y | 4d | 13d | |
size/XXL
dco-signoff: yes
ok-to-test
cybr
|
commented member-last reviewed-with-comment send
|
|
| 137 | |
fix(deps): update module google.golang.org/grpc to v1.77.0 | 17d | 6d | 17d | |
dco-signoff: yes
size/L
ok-to-test
dependencies
|
contributor-last recv recv-q similar unreviewed
|
||
| 71 | |
Refactor filesystem.go and adapt tests to use a real file system | 1y | 5mo | 5mo | |
dco-signoff: yes
size/L
|
commented member-last reviewed-with-comment
|
||
| 93 | |
Bump the all group with 3 updates | 3d | 3d | 3d | |
dco-signoff: yes
size/S
dependencies
github_actions
|
contributor-last recv recv-q similar unreviewed
|
||
| 92 | |
Bump golang from `e68f6a0` to `6981837` in the all group | 3d | 3d | 3d | |
dco-signoff: yes
size/XS
dependencies
docker
|
contributor-last recv recv-q unreviewed
|
||
| 359 | |
fix(deps): update module sigs.k8s.io/gateway-api to v1.4.1 | 18h | 18h | 18h | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 358 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 355 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 1d | 2d | |
dco-signoff: yes
size/XS
dependencies
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 1088 |  |
Update k8s-infra-prow images, k8s-staging-test-infra images, cert-manager-infra-images images as needed | 7mo | 2h | 7mo | |
dco-signoff: yes
size/M
|
contributor-last recv recv-q unreviewed
|
||
| 1119 | |
Disable DCO for Copilot-authored PRs | 3wk | 3wk | |
dco-signoff: yes
size/S
|
contributor-last recv-q unreviewed
|
|||
| 1103 | |
Drop separate licenses check on master | 4mo | 1mo | |
dco-signoff: yes
size/M
needs-rebase
|
contributor-last recv-q unreviewed
|
|||
| 1114 | |
Add the 'cybr' label | 1mo | 1mo | 1mo | |
size/XS
dco-signoff: yes
|
commented member-last reviewed-with-comment send
|
||
| 506 | |
Allow renovate to run `make generate` after updating the `go.mod` files | 3h | 2h | 3h | |
dco-signoff: yes
size/L
|
commented contributor-last reviewed-with-comment
|
||
| 505 | |
Remove Renovate workflow from repository-base module | 3h | 3h | 3h | |
dco-signoff: yes
lgtm
size/M
|
commented contributor-last unreviewed
|
||
| 495 |  |
fix(deps): update module github.com/google/go-containerregistry to v0.20.7 | 10d | 3h | 2d | |
dco-signoff: yes
size/S
dependencies
ok-to-test
|
commented member-last send similar unreviewed
|
||
| 470 | |
feat(helm): adding `helm-diff` target |
|
4wk | 15h | 8d | |
dco-signoff: yes
size/S
cybr
ok-to-test
|
commented contributor-last new-commits recv recv-q
|
|
| 492 | |
chore(deps): update module github.com/sigstore/cosign/v2 to v3
|
10d | 2d | 2d | |
dco-signoff: yes
size/XS
do-not-merge/hold
dependencies
ok-to-test
|
commented member-last send similar unreviewed
|
||
| 293 | |
Add Helm chart image baking | 6mo | 3mo | |
dco-signoff: yes
size/S
needs-rebase
|
contributor-last recv-q similar unreviewed
|
|||
| 310 | |
Add generate-applyconfigurations target to controller-gen module | 4mo | 4mo | |
dco-signoff: yes
size/S
|
contributor-last recv-q unreviewed
|
|||
| 55 | |
feat: add test module | 2y | 2y | 2y | |
dco-signoff: yes
size/M
|
commented contributor-last recv reviewed-with-comment
|
||
| 199 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
dco-signoff: yes
dependencies
size/XS
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 197 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
dco-signoff: yes
dependencies
size/XS
ok-to-test
|
contributor-last recv recv-q similar unreviewed
|
||
| 104 | |
Add Chart image baking | 6mo | 3mo | 3mo | |
dco-signoff: yes
size/L
needs-rebase
|
commented member-last reviewed-with-comment send similar
|
||
| 11 | |
Governance: folks meaningfully contributing to the biweekly can become GitHub Members | 2y | 3wk | |
do-not-merge/work-in-progress
dco-signoff: yes
size/S
|
draft reviewed-with-comment
|
|||
| 79 | |
Bump github.com/cert-manager/cert-manager from 1.15.1 to 1.15.4 in the go_modules group across 1 directory | 1y | 1y | 1y | |
size/XS
dco-signoff: yes
needs-ok-to-test
dependencies
|
contributor-last recv recv-q unreviewed
|
||
| 64 |  |
Add imagePullSecrets to template | 2y | 2y | 2y |
size/XS
dco-signoff: yes
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 59 |  |
cleanup: remove unused NOTES.txt file | 2y | 2y | 2y |
size/XS
dco-signoff: yes
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 1 | |
Manage the cert-manager GitHub organisation from this repo | 2y | 1y | 2y | |
dco-signoff: yes
size/XXL
|
commented member-last unreviewed
|
||
| 4 | |
Add support for custom license templates | 2y | 3mo | |
dco-signoff: yes
size/S
|
contributor-last recv-q unreviewed
|
|||
| 373 | |
fix(deps): update module github.com/spf13/cobra to v1.10.2 | 1d | 1d | 1d | |
size/XS
ok-to-test
dependencies
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
||
| 371 | |
fix(deps): update module google.golang.org/api to v0.257.0 | 2d | 2d | 2d | |
size/L
ok-to-test
dependencies
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
||
| 370 | |
chore(deps): update actions/checkout action to v6.0.1 | 2d | 2d | 2d | |
size/XS
ok-to-test
dependencies
dco-signoff: yes
|
contributor-last recv recv-q similar unreviewed
|
||
| 345 |  |
chore: add existing securityContext settings to values | 7wk | 7wk | 7wk | |
size/M
dco-signoff: yes
|
contributor-last recv recv-q unreviewed
|
||
| 143 |  |
feat: allow creating or reusing an existing sa | 2y | 6mo | 2y | |
ok-to-test
|
recv recv-q unreviewed
|
||
| 159 |  |
Split certificate chain | 2y | 9mo | 9mo | |
commented member-last reviewed-with-comment send
|
|||
| 141 |  |
re-adding required clusterrole permission | 2y | 10mo | 2y | |
size/XS
|
recv unreviewed
|
