Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: Cut v2.11.0 #2317

Merged
merged 16 commits into from
Mar 12, 2024
Merged

chore: Cut v2.11.0 #2317

merged 16 commits into from
Mar 12, 2024

Conversation

rexagod
Copy link
Member

@rexagod rexagod commented Feb 18, 2024
edited
Loading

Signed-off-by: Pranshu Srivastava rexagod@gmail.com

Fixes #2293

dependabot bot and others added 7 commits January 1, 2024 09:37
@dependabot
build(deps): Bump github.com/prometheus/client_golang
a04bba6 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.17.0 to 1.18.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](prometheus/client_golang@v1.17.0...v1.18.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@k8s-ci-robot
Merge pull request kubernetes#2292 from kubernetes/dependabot/go_modu…
90bd24f 
…les/github.com/prometheus/client_golang-1.18.0

build(deps): Bump github.com/prometheus/client_golang from 1.17.0 to 1.18.0
@dependabot
build(deps): Bump k8s.io/klog/v2 from 2.110.1 to 2.120.1
e943588 
Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.110.1 to 2.120.1.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](kubernetes/klog@v2.110.1...v2.120.1)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@k8s-ci-robot
Merge pull request kubernetes#2309 from kubernetes/dependabot/go_modu…
0fb6eee 
…les/k8s.io/klog/v2-2.120.1

build(deps): Bump k8s.io/klog/v2 from 2.110.1 to 2.120.1
@dependabot
build(deps): Bump github.com/prometheus/common from 0.45.0 to 0.46.0
e52dcc8 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.45.0 to 0.46.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](prometheus/common@v0.45.0...v0.46.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@k8s-ci-robot
Merge pull request kubernetes#2312 from kubernetes/dependabot/go_modu…
122e5e8 
…les/github.com/prometheus/common-0.46.0

build(deps): Bump github.com/prometheus/common from 0.45.0 to 0.46.0
@jrcichra
feat: add kube_secret_owner metric
01507af 
Add the kube_secret_owner metric for Secrets.

This metric already exists for several other Kubernetes primitives (Jobs, Pods, etc).

Cluster operators will often use external secret stores with a controller
to reconcile those secrets into Kubernetes Secrets.

Cluster operators may wish to discourage manually managed secrets.

Having the secret owner data in kube-state-metrics allows graphing and alerting on unmanaged secrets.
@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. labels Feb 18, 2024
@k8s-ci-robot k8s-ci-robot added approved Indicates a PR has been approved by an approver from all required OWNERS files. size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Feb 18, 2024
@rexagod
Copy link
Member Author

rexagod commented Feb 18, 2024

v2.12.0+ will be released through an automated workflow, pushing shortly.

@rexagod rexagod changed the title *: Cut v2.11.0 chore: Cut v2.11.0 Feb 18, 2024
@dependabot
build(deps): Bump github.com/prometheus/common from 0.46.0 to 0.47.0
42a4999 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.46.0 to 0.47.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](prometheus/common@v0.46.0...v0.47.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@krishnaindani
Copy link

Is there any plan to fix GHSA-5f94-vhjq-rpg8 and GHSA-vvjp-q62m-2vph CVE's with this release? Fix is to build with 1.21.5 or 1.21.12.

@rexagod rexagod force-pushed the release-2.11 branch 2 times, most recently from 95aa601 to 862fc32 Compare February 20, 2024 20:13
mrueg
mrueg reviewed Feb 21, 2024
View reviewed changes
CHANGELOG.md Outdated Show resolved Hide resolved
@dashpole
Copy link
Contributor

/assign @dgrisonnet
/triage accepted

@k8s-ci-robot k8s-ci-robot added triage/accepted Indicates an issue or PR is ready to be actively worked on. and removed needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. labels Feb 22, 2024
k8s-ci-robot and others added 4 commits February 23, 2024 08:27
@k8s-ci-robot
Merge pull request kubernetes#2318 from kubernetes/dependabot/go_modu…
8481b06 
…les/github.com/prometheus/common-0.47.0

build(deps): Bump github.com/prometheus/common from 0.46.0 to 0.47.0
@dependabot
build(deps): Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0
8f2224e 
Bumps [github.com/prometheus/client_model](https://github.com/prometheus/client_model) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/prometheus/client_model/releases)
- [Commits](prometheus/client_model@v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@k8s-ci-robot
Merge pull request kubernetes#2322 from kubernetes/dependabot/go_modu…
a1329c1 
…les/github.com/prometheus/client_model-0.6.0

build(deps): Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0
@k8s-ci-robot
Merge pull request kubernetes#2298 from jrcichra/kube_secret_owner
c92541d 
feat: add kube_secret_owner metric
@krishnaindani
Copy link

when is the plan to release this version?

@liangyuanpeng liangyuanpeng mentioned this pull request Feb 28, 2024
Closed
yosshi825 and others added 3 commits February 29, 2024 16:08
@yosshi825
fix broken markdown format
e74428e
@yosshi825 @rexagod
Update docs/lease-metrics.md
195d277 
Co-authored-by: Pranshu Srivastava <prasriva@redhat.com>
@k8s-ci-robot
Merge pull request kubernetes#2332 from yosshi825/fix/broken-markdown…
44c65d2 
…-format

style: fix broken markdown format
@rexagod rexagod requested a review from mrueg March 4, 2024 09:44
@mrueg
Copy link
Member

mrueg commented Mar 4, 2024

Can you fix the markdown lint and rebase the release-2.11 branch on main first to reduce the delta to a minimum (that will help with merging it back)? release-2.11...main

@mrueg
Copy link
Member

mrueg commented Mar 4, 2024

Also I would suggest to wait for tomorrow until go 1.21.8 is released, see: https://groups.google.com/g/golang-announce/c/smSYdsWaO4o

@rexagod rexagod mentioned this pull request Mar 7, 2024
Merged
2 tasks
@rexagod rexagod force-pushed the release-2.11 branch 2 times, most recently from ba46a3c to ce23b82 Compare March 7, 2024 07:53
@rexagod rexagod mentioned this pull request Mar 7, 2024
Merged
1 task
mrueg
mrueg reviewed Mar 7, 2024
View reviewed changes
CHANGELOG.md Show resolved Hide resolved
@rexagod rexagod force-pushed the release-2.11 branch 2 times, most recently from 628ed26 to 785a0b5 Compare March 11, 2024 21:49
@rexagod
*: Cut v2.11.0
2413430 
Blocked by kubernetes#2316.

Signed-off-by: Pranshu Srivastava <rexagod@gmail.com>
@rexagod rexagod mentioned this pull request Mar 11, 2024
Closed
@mrueg
Copy link
Member

mrueg commented Mar 11, 2024

/lgtm

/hold
for @rexagod to unhold.

@k8s-ci-robot k8s-ci-robot added the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Mar 11, 2024
@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Mar 11, 2024
@rexagod
Copy link
Member Author

rexagod commented Mar 12, 2024

@dgrisonnet I believe this is good to go in now, but seeing as #2270 (comment) might be an /lgtm away, can we merge and include that here as well?

@rexagod
Copy link
Member Author

rexagod commented Mar 12, 2024

/unhold
/lgtm

Will include #2270 in the next release, going forward with this one since this has been in the pipeline for a while.

@k8s-ci-robot
Copy link
Contributor

@rexagod: you cannot LGTM your own PR.

In response to this:

/unhold
/lgtm

Will include #2270 in the next release, going forward with this one since this has been in the pipeline for a while.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@k8s-ci-robot k8s-ci-robot removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Mar 12, 2024
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: mrueg, rexagod

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot merged commit 5e4e7d0 into kubernetes:release-2.11 Mar 12, 2024
12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mrueg mrueg mrueg left review comments

@dgrisonnet dgrisonnet Awaiting requested review from dgrisonnet

Assignees

@mrueg mrueg

@dgrisonnet dgrisonnet

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. size/L Denotes a PR that changes 100-499 lines, ignoring generated files. triage/accepted Indicates an issue or PR is ready to be actively worked on.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
8 participants
@rexagod @krishnaindani @dashpole @mrueg @k8s-ci-robot @dgrisonnet @jrcichra @yosshi825