Argo CD - v2.4.19

Security

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.4.19/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.4.19/manifests/ha/install.yaml

Release signatures

All Argo CD container images and CLI binaries are signed by cosign. See the documentation on how to verify the signatures.

-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEesHEB7vX5Y2RxXypjMy1nI1z7iRG
JI9/gt/sYqzpsa65aaNP4npM43DDxoIy/MQBo9s/mxGxmA+8UXeDpVC9vw==
-----END PUBLIC KEY-----

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changes

This release includes 28 contributions from 12 contributors (4 of them new) with 0 features and 5 bug fixes.

A special thanks goes to the 4 new contributors:
- Aymen Ben Tanfous
- Gaël Jourdan-Weil
- Matt Clegg
- yanyx

Bug fixes (5)

  • fix: Fixed matrix requeueAfterSeconds for PR (#10914) (#10915)
  • fix: upgrade qs to avoid CVE-2022-24999
  • fix: upgrade superagent to resolve potential CVE (#9494)
  • fix: ssa e2e tests failing after updating to kubectl 1.26 (#11753)
  • fix: sign container images by digest (#11151)

Documentation (5)

  • docs: note risks of secret-injection plugins (#11617)
  • docs: clarify project destination possibilities (#11706)
  • docs: correct SSO configuration URL in example configmap (#11720)
  • docs: Update example dockerfile (#11721)
  • docs: clarify that all labels must exist (#11693)

Other (18)

  • chore: upgrade github.com/prometheus/client_golang to v1.11.1 to avoid CVE-2022-21698 (#12015)
  • chore: fix bad merge
  • chore(deps): bump actions/cache from 3.2.2 to 3.2.3 (#11928)
  • chore(deps): bump actions/checkout from 3.2.0 to 3.3.0 (#11895)
  • chore: fix codegen
  • chore: fix codegen
  • chore(deps): bump actions/setup-node from 3.5.1 to 3.6.0 (#11896)
  • chore(deps): bump actions/upload-artifact from 3.1.1 to 3.1.2 (#11929)
  • Revert "fix: ssa e2e tests failing after updating to kubectl 1.26 (#11753)"
  • chore: upgrade redis to 7.0.7 to avoid CVE-2022-3996 (#11925)
  • chore: Upgrade shipped version of Redis to 7.0.5 to fix CVE-2022-35951 (#10702)
  • chore(deps): bump actions/cache from 3.2.0 to 3.2.2 (#11839)
  • chore(deps): bump actions/download-artifact from 3.0.1 to 3.0.2 (#11894)
  • chore(deps): bump actions/cache from 3.0.11 to 3.2.0 (#11809)
  • chore: fix lint error (#11788)
  • chore: get image digest in seperate step (#11778)
  • chore(deps): bump actions/setup-go from 3.4.0 to 3.5.0 (#11697)
  • doc: correct kustomize demo path (#11762)

Details

date
Jan. 18, 2023, 2:59 a.m.
name
v2.4.19
type
Patch
official page
https://github.com/argoproj/argo-cd/releases/tag/v2.4.19
👇
Register or login to:
  • 🔍View and search all Argo CD releases.
  • 🛠️Create and share lists to track your tools.
  • 🚨Setup notifications for major, security, feature or patch updates.
  • 🚀Much more coming soon!
Continue with GitHub
Continue with Google
or