Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY] #166

renovate · 2025-01-30T18:45:16Z

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/argoproj/argo-cd/v2	`v2.12.0` -> `v2.13.8`

GitHub Vulnerability Alerts

CVE-2025-23216

Impact

A vulnerability was discovered in Argo CD that exposed secret values in error messages and the diff view when an invalid Kubernetes Secret resource was synced from a repository.

The vulnerability assumes the user has write access to the repository and can exploit it, either intentionally or unintentionally, by committing an invalid Secret to repository and triggering a Sync. Once exploited, any user with read access to Argo CD can view the exposed secret data.

Patches

A patch for this vulnerability is available in the following Argo CD versions:

v2.13.4
v2.12.10
v2.11.13

Workarounds

There is no workaround other than upgrading.

References

Fixed with commit argoproj/argo-cd@6f5537b & argoproj/gitops-engine@7e21b91

CVE-2025-47933

Impact

This vulnerability allows an attacker to perform arbitrary actions on behalf of the victim via the API, such as creating, modifying, and deleting Kubernetes resources. Due to the improper filtering of URL protocols in the repository page, an attacker can achieve cross-site scripting with permission to edit the repository.

In ui/src/app/shared/components/urls.ts, the following code exists to parse the repository URL.

https://github.com/argoproj/argo-cd/blob/0ae5882d5ae9fe88efc51f65ca8543fb8c3a0aa1/ui/src/app/shared/components/urls.ts#L14-L26

Since this code doesn't validate the protocol of repository URLs, it's possible to inject javascript: URLs here.

https://github.com/argoproj/argo-cd/blob/0ae5882d5ae9fe88efc51f65ca8543fb8c3a0aa1/ui/src/app/shared/components/repo.tsx#L5-L7

As the return value of this function is used in the href attribute of the a tag, it's possible to achieve cross-site scripting by using javascript: URLs.

Browsers may return the proper hostname for javascript: URLs, allowing exploitation of this vulnerability.

Patches

A patch for this vulnerability has been released in the following Argo CD versions:

v3.0.4
v2.14.13
v2.13.8

The patch incorporates a way to validate the URL being passed in. Returning null if the validation fails.

Workarounds

There are no workarounds other than depending on the browser to filter the URL.

Credits

Disclosed by @Ry0taK RyotaK.

For more information

Open an issue in the Argo CD issue tracker or discussions
Join us on Slack in channel #argo-cd

Release Notes

argoproj/argo-cd (github.com/argoproj/argo-cd/v2)

`v2.13.8`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.8/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.8/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

This release fixes a critical security issue: GHSA-2hj5-g64g-fp6p

Bug fixes

97fd4ac: fix(appset): generated app errors should use the default requeue (#21887) (cherry-pick #21936) (#22673) (@gcp-cherry-pick-bot[bot])
41ab259: fix(test): broken e2e test (cherry-pick #22975) (#23053) (@gcp-cherry-pick-bot[bot])

Other work

d508e3b: Merge commit from fork (@crenshaw-dev)
6612b7b: chore: replace heptio-images with argocd-e2e-container (cherry-pick #23040) (#23056) (@nitishfy)

Full Changelog: argoproj/argo-cd@v2.13.7...v2.13.8

`v2.13.7`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.7/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.7/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

0f65a3f: fix(cli): wrong variable to store --no-proxy value (cherry-pick #21226) (#22591) (@gcp-cherry-pick-bot[bot])
bb70a1f: fix: Check placement exists before length check (#22060) (#22057) (#22505) (@aali309)

Dependency updates

4b11800: chore(deps): update github.com/expr-lang/expr to v1.17.0 (#22610) (@aali309)
fb5624c: chore(deps): update go-jose library from 4.0.2 to 4.0.5 (#22560) (@aali309)

Full Changelog: argoproj/argo-cd@v2.13.6...v2.13.7

`v2.13.6`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.6/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.6/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

43f3cff: fix(ci): use pinned Helm version for init-release (#22164) (#22472) (@crenshaw-dev)
17a535f: fix(server): Fix server crash due to race condition in go-redis triggered by DNS instability (#22251) (@anandf)
3875dde: fix: CVE-2025-26791 upgrading redoc dep to 2.4.0, DOMPurify before 3.2.4 (#21966) (@nmirasch)
6ef7f61: fix: correct lookup for the kustomization file when applying patches (cherry-pick #22024) (#22087) (@nitishfy)
c7937f1: fix: correctly set compareWith when requesting app refresh with delay (fixes #18998) (cherry-pick #21298) (#21953) (@gcp-cherry-pick-bot[bot])
6207fd0: fix: handle annotated git tags correctly in repo server cache (#21771) (#22397) (@aali309)

Dependency updates

58ded15: chore(deps): bump github.com/golang-jwt/jwt to 4.5.2 (#22466) (@crenshaw-dev)

Other work

8d02798: chore: Update change log for 2.13.6 (#22438) (@keithchong)
180d689: chore: cherry-pick #21786 for v2.13 (#21906) (@nitishfy)

Full Changelog: argoproj/argo-cd@v2.13.5...v2.13.6

`v2.13.5`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.5/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.5/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

49771c1: fix(ui): Solve issue with navigating with dropdown from an application's page (cherry-pick #21737) (#21747) (@gcp-cherry-pick-bot[bot])
c6112c0: fix: Add proxy registry key by dest server + name (cherry-pick #21791) (#21793) (@gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.13.4...v2.13.5

`v2.13.4`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.4/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.4/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

2fe4536: fix(appset): events not honouring configured namespaces (#21219) (#21241) (#21520) (@eadred)
99aaf43: fix: Policy/policy.open-cluster-management.io stuck in progressing status when no clusters match the policy (#21296) (cherry-pick #21297) (#21594) (@gcp-cherry-pick-bot[bot])
2618ccc: fix: login return_url doesn't work with custom server paths (cherry-pick #21588) (#21603) (@gcp-cherry-pick-bot[bot])
53dc116: fix: oras-go client should fallback to docker config if no credentials specified (cherry-pick 2.13 #18133) (#20872) (@eestolano)
fd67e49: fix: resolve the failing e2e appset tests for ksonnet applications (cherry-pick #21580) (#21605) (@gcp-cherry-pick-bot[bot])

Documentation

c0f847f: docs: Update Screenshot in Orphaned Resources Monitoring Section #20510 (cherry-pick #20533) (#21489) (@gcp-cherry-pick-bot[bot])
c8a62bb: docs: add mkdocs configuration stanza to .readthedocs.yaml (cherry-pick #21475) (#21609) (@gcp-cherry-pick-bot[bot])

Dependency updates

2e794fb: chore(deps): bump github.com/go-git/go-git/v5 from 5.12.0 to 5.13.0 (cherry-pick #21329) (#21401) (@gcp-cherry-pick-bot[bot])
38e02ab: chore(deps): bump go-git version to go-git/v5 5.13.1 (#21551) (@aali309)

Other work

49163b0: Fix application url for custom base href (#21377) (#21515) (@gcp-cherry-pick-bot[bot])
10b9589: Merge commit from fork (@svghadi)

Full Changelog: argoproj/argo-cd@v2.13.3...v2.13.4

`v2.13.3`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.3/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.3/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

f260510: fix(api): send to closed channel in mergeLogStreams (#7006) (#21178) (#21187) (@gcp-cherry-pick-bot[bot])
09eede0: fix(appset): Fix appset generate in --core mode for cluster gen (#21170) (#21236) (@gcp-cherry-pick-bot[bot])
64a14a0: fix(ui): add optional check to avoid undefined reference in project detail (#20044) (#21263) (@crenshaw-dev)
c76a131: fix: Change applicationset generate HTTP method to avoid route conflicts (#20758) (#21300) (@gcp-cherry-pick-bot[bot])
079754c: fix: Populate destination name when destination server is specified (#21063) (cherry-pick 2.13) (#21176) (@adriananeci)

Full Changelog: argoproj/argo-cd@v2.13.2...v2.13.3

`v2.13.2`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.2/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.2/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

ad36916: fix(cli): Fix appset generate in --core mode (#20717) (#20883) (@gcp-cherry-pick-bot[bot])
01ae20d: fix: 20791 - sync multi-source application out of order source syncs (cherry-pick #21071) (#21077) (@gcp-cherry-pick-bot[bot])
831e452: fix: API server should not attempt to read secrets in all namespaces (#20950) (#20960) (@gcp-cherry-pick-bot[bot])
a3624a3: fix: Allow to delete repos with invalid urls (#20921) (#20975) (#21116) (@gcp-cherry-pick-bot[bot])
89ef356: fix: Bitbucket Cloud PR Author is processed correctly (#20769) (#20990) (#21039) (@gcp-cherry-pick-bot[bot])
f8d6665: fix: Memory leak in repo-server (#20876) (#20894) (@gcp-cherry-pick-bot[bot])
b6af657: fix: add missing fields in listrepositories (#20991) (#21129) (@blakepettersson)

Dependency updates

0680ddb: chore(deps): bump http-proxy-middleware from 2.0.4 to 2.0.7 in /ui (#20518) (#20892) (@gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.13.1...v2.13.2

`v2.13.1`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.1/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.1/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Features

6a8cb6e: feat: option to disable writing k8s events(#18205) (#18441) (#20788) (@Jack-R-lantern)

Bug fixes

449e693: fix(pkce): 20202 Backport PKCE auth flow fix for basehref and reauth (#20675) (@austin5219)
68606c6: fix: Fix repeated 403 due to app namespace being undefined (#20699) (#20819) (#20860) (@gcp-cherry-pick-bot[bot])
99aab9a: fix: check for source position when --show-params is set (#20682) (#20689) (@gcp-cherry-pick-bot[bot])
d03ccf3: fix: disable automaxprocs logging (#20069) - cherry-pick 2.13 (#20718) (@pasha-codefresh)

Other work

7f45c9e: chore: Don't degrade PDB on InsufficientPods (#20171) (#20665) (#20694) (@gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.13.0...v2.13.1

`v2.13.0`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Features

e3b1d93: feat: allow individual extension configs (#20491) (#20525) (@leoluz)
2503eb3: feat: support using exponential backoff between self heal attempts (#20275) (#20480) (@alexmt)

Bug fixes

deb07ee: fix(appset): avoid panic when no steps in rollingSync (#20357) (#20492) (@gcp-cherry-pick-bot[bot])
e7f9881: fix(diff): avoid cache miss in server-side diff (#20605) (#20607) (@gcp-cherry-pick-bot[bot])
7bc333d: fix(ui): fix open application detail in new tab when basehref is set (#20004) (#20571) (@amit-o)
1fcbe3f: fix(ui): fix the slider tansition (#20641) (#20642) (@gcp-cherry-pick-bot[bot])
be57dfe: fix: support managing cluster with multiple argocd instances and annotation based tracking (#20222) (#20483) (@alexmt)
435989c: fix: support managing cluster with multiple argocd instances and annotation based tracking (#20222) (#20488) (@alexmt)

Documentation

d417417: docs(rbac): clarify glob pattern behavior for fine-grain RBAC (#20624) (#20626) (@gcp-cherry-pick-bot[bot])

Other work

3f708b8: rerender when extensions update (#20559) (#20601) (@gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.13.0-rc5...v2.13.0

`v2.12.12`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.12/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.12/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

9f6924b: fix: fixing back cherry-pick commit for #20222 (#22634) (@alexmt)

Full Changelog: argoproj/argo-cd@v2.12.11...v2.12.12

`v2.12.11`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.11/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.11/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

7400d14: fix(ci): use pinned Helm version for init-release (#22164) (#22473) (@crenshaw-dev)
44c36b8: fix: CVE-2025-26791 upgrading redoc dep to 2.4.0 to avoid DOMPurify b… (#21994) (@nmirasch)
61a1c74: fix: correctly set compareWith when requesting app refresh with delay (fixes #18998) (cherry-pick #21298) (#21954) (@gcp-cherry-pick-bot[bot])

Dependency updates

59f23e2: chore(deps): bump github.com/golang-jwt/jwt to 4.5.2 (#22467) (@crenshaw-dev)

Full Changelog: argoproj/argo-cd@v2.12.10...v2.12.11

`v2.12.10`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.10/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.10/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

c26ee69: fix(appset): events not honouring configured namespaces (#21219) (#21241) (#21521) (@eadred)
4ba830f: fix: resolve the failing e2e appset tests for ksonnet applications (cherry-pick #21580) (#21606) (@gcp-cherry-pick-bot[bot])

Documentation

84ace16: docs: add mkdocs configuration stanza to .readthedocs.yaml (cherry-pick #21475) (#21610) (@gcp-cherry-pick-bot[bot])

Dependency updates

b6e1080: chore(deps): bump go-git version to go-git/v5 5.13.1 (#21550) (@aali309)

Other work

a9d8027: Merge commit from fork (@svghadi)

Full Changelog: argoproj/argo-cd@v2.12.9...v2.12.10

`v2.12.9`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.9/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.9/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

041133a: fix(api): send to closed channel in mergeLogStreams (#7006) (#21178) (#21188) (@gcp-cherry-pick-bot[bot])
6934ace: fix: CVE-2024-21538 upgrading the indirect dependency cross-spawn to 7.0.5 (#21156) (@nmirasch)

Full Changelog: argoproj/argo-cd@v2.12.8...v2.12.9

`v2.12.8`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.8/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.8/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

05c1dd7: fix: 20791 - sync multi-source application out of order source syncs (cherry-pick #21071) (#21078) (@gcp-cherry-pick-bot[bot])
60d0786: fix: Allow to delete repos with invalid urls (#20921) (#20975) (#21117) (@gcp-cherry-pick-bot[bot])
7642db8: fix: add missing fields in listrepositories (#20991) (#21128) (@blakepettersson)

Dependency updates

b32d50d: chore(deps): bump http-proxy-middleware from 2.0.4 to 2.0.7 in /ui (#20518) (#20891) (@gcp-cherry-pick-bot[bot])

Other work

57cef1d: Add missing 2.12 upgrade to nav menu (#20657) (@fletch3555)

Full Changelog: argoproj/argo-cd@v2.12.7...v2.12.8

`v2.12.7`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.7/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.7/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Features

db5876f: feat: support using exponential backoff between self heal attempts (#20275) (#20479) (@alexmt)

Bug fixes

e48878b: fix(diff): avoid cache miss in server-side diff (#20605) (#20609) (@gcp-cherry-pick-bot[bot])
a41f868: fix(ui): fix create app panel reappear after closed (#19717) (#20507) (@gcp-cherry-pick-bot[bot])
cacb06a: fix: check err before use schedule and duration (#20043) (#20371) (@daengdaengLee)
32ef2e5: fix: support managing cluster with multiple argocd instances and annotation based tracking (#20222) (#20482) (@alexmt)

Documentation

0cae929: docs(rbac): clarify glob pattern behavior for fine-grain RBAC (#20624) (#20627) (@gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.12.6...v2.12.7

`v2.12.6`

Compare Source

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.6/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.6/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

68f63e7: fix(diff): avoid cache miss in server-side diff (#20423) (#20424) (#20450) (@gcp-cherry-pick-bot[bot])
358930b: fix: don't disable buttons for multi-source apps (#20446) (#20448) (@gcp-cherry-pick-bot[bot])

Full Changelog: argoproj/argo-cd@v2.12.5...v2.12.6

`v2.12.5`

Compare Source

Quick Start

Non-HA:

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/puzzle/goff).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xNDUuMCIsInVwZGF0ZWRJblZlciI6IjQwLjQwLjMiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=-->

renovate · 2025-01-30T18:45:17Z

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

16 additional dependencies were updated

Details:

Package	Change
`golang.org/x/text`	`v0.16.0` -> `v0.21.0`
`github.com/ProtonMail/go-crypto`	`v1.0.0` -> `v1.1.3`
`github.com/argoproj/gitops-engine`	`v0.7.1-0.20240714153147-adb68bcaab73` -> `v0.7.1-0.20250129155113-faf5a4e5c37d`
`github.com/cyphar/filepath-securejoin`	`v0.2.4` -> `v0.3.6`
`github.com/go-git/go-billy/v5`	`v5.5.0` -> `v5.6.1`
`github.com/go-git/go-git/v5`	`v5.12.0` -> `v5.13.1`
`github.com/skeema/knownhosts`	`v1.2.2` -> `v1.3.0`
`golang.org/x/crypto`	`v0.24.0` -> `v0.31.0`
`golang.org/x/exp`	`v0.0.0-20231110203233-9a3e6036ecaa` -> `v0.0.0-20240719175910-8a7402abbf56`
`golang.org/x/mod`	`v0.18.0` -> `v0.19.0`
`golang.org/x/net`	`v0.26.0` -> `v0.33.0`
`golang.org/x/sys`	`v0.21.0` -> `v0.28.0`
`golang.org/x/term`	`v0.21.0` -> `v0.27.0`
`golang.org/x/tools`	`v0.22.0` -> `v0.23.0`
`github.com/stretchr/testify`	`v1.9.0` -> `v1.10.0`
`golang.org/x/sync`	`v0.7.0` -> `v0.10.0`

renovate · 2025-05-28T18:59:12Z

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

any of the package files in this branch needs updating, or
the branch becomes conflicted, or
you click the rebase/retry checkbox if found above, or
you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum

Command failed: go get -d -t ./...
go: downloading github.com/argoproj/argo-cd/v2 v2.13.8
go: downloading github.com/ghodss/yaml v1.0.0
go: downloading github.com/pkg/errors v0.9.1
go: downloading github.com/sirupsen/logrus v1.9.3
go: downloading sigs.k8s.io/controller-runtime v0.19.0
go: downloading dagger.io/dagger v0.12.5
go: downloading golang.org/x/sync v0.10.0
go: downloading github.com/stretchr/testify v1.10.0
go: downloading github.com/spf13/cobra v1.8.1
go: downloading github.com/go-godo/godo v2.0.9+incompatible
go: downloading github.com/hexops/gotextdiff v1.0.3
go: downloading github.com/spf13/afero v1.11.0
go: downloading gopkg.in/yaml.v2 v2.4.0
go: downloading github.com/awalterschulze/gographviz v2.0.3+incompatible
go: downloading github.com/gosimple/slug v1.14.0
go: downloading github.com/imdario/mergo v0.3.16
go: downloading github.com/jeremywohl/flatten v1.0.1
go: downloading k8s.io/api v0.29.6
go: downloading k8s.io/apimachinery v0.29.6
go: downloading k8s.io/client-go v0.29.6
go: downloading sigs.k8s.io/yaml v1.4.0
go: downloading github.com/Masterminds/sprig/v3 v3.3.0
go: downloading github.com/valyala/fasttemplate v1.2.2
go: downloading k8s.io/klog/v2 v2.130.1
go: downloading k8s.io/utils v0.0.0-20240711033017-18e509b52bc8
go: downloading github.com/argoproj/gitops-engine v0.7.1-0.20250129155113-4c6e03c46314
go: downloading github.com/gobwas/glob v0.2.3
go: downloading github.com/gogo/protobuf v1.3.2
go: downloading github.com/google/go-cmp v0.6.0
go: downloading github.com/robfig/cron/v3 v3.0.1
go: downloading google.golang.org/grpc v1.66.2
go: downloading k8s.io/apiextensions-apiserver v0.29.6
go: downloading k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340
go: downloading github.com/grpc-ecosystem/go-grpc-middleware v1.4.0
go: downloading google.golang.org/protobuf v1.34.2
go: downloading github.com/r3labs/diff v1.1.0
go: downloading golang.org/x/sys v0.29.0
go: downloading github.com/evanphx/json-patch/v5 v5.9.0
go: downloading github.com/evanphx/json-patch v5.9.0+incompatible
go: downloading gopkg.in/evanphx/json-patch.v4 v4.12.0
go: downloading github.com/Khan/genqlient v0.7.0
go: downloading github.com/vektah/gqlparser/v2 v2.5.16
go: downloading go.opentelemetry.io/otel v1.30.0
go: downloading go.opentelemetry.io/otel/trace v1.30.0
go: downloading github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc
go: downloading github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
go: downloading github.com/inconshreveable/mousetrap v1.1.0
go: downloading github.com/spf13/pflag v1.0.5
go: downloading github.com/MichaelTJones/walk v0.0.0-20161122175330-4748e29d5718
go: downloading github.com/mgutz/str v1.2.0
go: downloading golang.org/x/text v0.21.0
go: downloading code.gitea.io/sdk/gitea v0.19.0
go: downloading github.com/gfleury/go-bitbucket-v1 v0.0.0-20220301131131-8e7ed04b843e
go: downloading github.com/google/go-github/v63 v63.0.0
go: downloading github.com/hashicorp/go-retryablehttp v0.7.7
go: downloading github.com/ktrysmt/go-bitbucket v0.9.80
go: downloading github.com/microsoft/azure-devops-go-api/azuredevops v1.0.0-b5
go: downloading github.com/xanzy/go-gitlab v0.109.0
go: downloading golang.org/x/oauth2 v0.23.0
go: downloading github.com/aws/aws-sdk-go v1.55.5
go: downloading github.com/google/uuid v1.6.0
go: downloading golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
go: downloading github.com/redis/go-redis/v9 v9.7.1
go: downloading github.com/argoproj/pkg v0.13.7-0.20230626144333-d56162821bd1
go: downloading github.com/gosimple/unidecode v1.0.1
go: downloading github.com/google/gofuzz v1.2.0
go: downloading dario.cat/mergo v1.0.1
go: downloading github.com/Masterminds/goutils v1.1.1
go: downloading github.com/Masterminds/semver/v3 v3.3.0
go: downloading github.com/huandu/xstrings v1.5.0
go: downloading github.com/mitchellh/copystructure v1.2.0
go: downloading github.com/shopspring/decimal v1.4.0
go: downloading github.com/spf13/cast v1.7.0
go: downloading golang.org/x/crypto v0.32.0
go: downloading github.com/go-logr/logr v1.4.2
go: downloading github.com/itchyny/gojq v0.12.16
go: downloading github.com/valyala/bytebufferpool v1.0.0
go: downloading gopkg.in/inf.v0 v0.9.1
go: downloading sigs.k8s.io/structured-merge-diff/v4 v4.4.1
go: downloading github.com/bmatcuk/doublestar/v4 v4.6.1
go: downloading github.com/bradleyfalzon/ghinstallation/v2 v2.11.0
go: downloading github.com/go-git/go-git/v5 v5.13.1
go: downloading github.com/patrickmn/go-cache v2.1.0+incompatible
go: downloading oras.land/oras-go/v2 v2.5.0
go: downloading k8s.io/kube-aggregator v0.29.6
go: downloading k8s.io/kubectl v0.29.6
go: downloading google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1
go: downloading google.golang.org/genproto v0.0.0-20231106174013-bbf56f31fb17
go: downloading golang.org/x/net v0.33.0
go: downloading golang.org/x/term v0.28.0
go: downloading github.com/emicklei/go-restful/v3 v3.11.0
go: downloading github.com/go-openapi/jsonreference v0.21.0
go: downloading github.com/go-openapi/swag v0.23.0
go: downloading github.com/google/gnostic-models v0.6.8
go: downloading github.com/golang-jwt/jwt/v4 v4.5.2
go: downloading github.com/grpc-ecosystem/grpc-gateway v1.16.0
go: downloading go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.55.0
go: downloading k8s.io/cli-runtime v0.29.6
go: downloading github.com/stretchr/objx v0.5.2
go: downloading sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd
go: downloading github.com/adrg/xdg v0.4.0
go: downloading github.com/mitchellh/go-homedir v1.1.0
go: downloading github.com/99designs/gqlgen v0.17.49
go: downloading go.opentelemetry.io/otel/metric v1.30.0
go: downloading gopkg.in/yaml.v3 v3.0.1
go: downloading github.com/davidmz/go-pageant v1.0.2
go: downloading github.com/go-fed/httpsig v1.1.0
go: downloading github.com/hashicorp/go-version v1.6.0
go: downloading github.com/mitchellh/mapstructure v1.5.0
go: downloading github.com/google/go-querystring v1.1.0
go: downloading github.com/hashicorp/go-cleanhttp v0.5.2
go: downloading golang.org/x/time v0.6.0
go: downloading github.com/cespare/xxhash/v2 v2.3.0
go: downloading github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f
go: downloading github.com/golang/protobuf v1.5.4
go: downloading github.com/mitchellh/reflectwalk v1.0.2
go: downloading k8s.io/kubernetes v1.31.0
go: downloading github.com/itchyny/timefmt-go v0.1.6
go: downloading github.com/dlclark/regexp2 v1.11.4
go: downloading github.com/json-iterator/go v1.1.12
go: downloading github.com/google/go-github/v62 v62.0.0
go: downloading github.com/ProtonMail/go-crypto v1.1.3
go: downloading github.com/go-git/go-billy/v5 v5.6.1
go: downloading github.com/sergi/go-diff v1.3.2-0.20230802210424-5b0b94c5c0d3
go: downloading github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da
go: downloading github.com/kevinburke/ssh_config v1.2.0
go: downloading github.com/skeema/knownhosts v1.3.0
go: downloading github.com/xanzy/ssh-agent v0.3.3
go: downloading github.com/jbenet/go-context v0.0.0-20150711004518-d14ea06fba99
go: downloading cloud.google.com/go/compute/metadata v0.3.0
go: downloading github.com/go-redis/cache/v9 v9.0.0
go: downloading github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51
go: downloading github.com/opencontainers/go-digest v1.0.0
go: downloading github.com/opencontainers/image-spec v1.1.0
go: downloading github.com/go-openapi/jsonpointer v0.21.0
go: downloading github.com/mailru/easyjson v0.7.7
go: downloading google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1
go: downloading github.com/bombsimon/logrusr/v2 v2.0.1
go: downloading github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de
go: downloading github.com/moby/term v0.5.0
go: downloading sigs.k8s.io/kustomize/api v0.17.2
go: downloading sigs.k8s.io/kustomize/kyaml v0.17.1
go: downloading github.com/jonboulle/clockwork v0.2.2
go: downloading k8s.io/component-base v0.29.6
go: downloading k8s.io/component-helpers v0.29.6
go: downloading go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc v0.0.0-20240518090000-14441aefdf88
go: downloading go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp v0.3.0
go: downloading go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.30.0
go: downloading go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.30.0
go: downloading go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.27.0
go: downloading go.opentelemetry.io/otel/log v0.3.0
go: downloading go.opentelemetry.io/otel/sdk v1.30.0
go: downloading go.opentelemetry.io/otel/sdk/log v0.3.0
go: downloading go.opentelemetry.io/proto/otlp v1.3.1
go: downloading github.com/sosodev/duration v1.3.1
go: downloading github.com/go-logr/stdr v1.2.2
go: downloading github.com/jmespath/go-jmespath v0.4.0
go: downloading github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd
go: downloading github.com/modern-go/reflect2 v1.0.2
go: downloading github.com/cyphar/filepath-securejoin v0.3.6
go: downloading github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376
go: downloading github.com/pjbgf/sha1cd v0.3.0
go: downloading github.com/emirpasic/gods v1.18.1
go: downloading github.com/Microsoft/go-winio v0.6.1
go: downloading github.com/klauspost/compress v1.17.9
go: downloading github.com/vmihailenco/go-tinylfu v0.2.2
go: downloading github.com/vmihailenco/msgpack/v5 v5.3.4
go: downloading github.com/josharian/intern v1.0.0
go: downloading github.com/moby/spdystream v0.4.0
go: downloading github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79
go: downloading github.com/peterbourgon/diskv v2.0.1+incompatible
go: downloading github.com/chai2010/gettext-go v1.0.2
go: downloading github.com/MakeNowJust/heredoc v1.0.0
go: downloading github.com/mitchellh/go-wordwrap v1.0.1
go: downloading github.com/russross/blackfriday/v2 v2.1.0
go: downloading github.com/exponent-io/jsonpath v0.0.0-20151013193312-d6023ce2651d
go: downloading github.com/fatih/camelcase v1.0.0
go: downloading github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822
go: downloading k8s.io/apiserver v0.29.6
go: downloading github.com/cloudflare/circl v1.3.7
go: downloading gopkg.in/warnings.v0 v0.1.2
go: downloading golang.org/x/tools v0.23.0
go: downloading github.com/vmihailenco/tagparser/v2 v2.0.0
go: downloading github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f
go: downloading github.com/google/btree v1.1.3
go: downloading github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1
go: downloading github.com/blang/semver/v4 v4.0.0
go: downloading github.com/go-errors/errors v1.4.2
go: downloading github.com/fvbommel/sortorder v1.1.0
go: downloading github.com/gorilla/websocket v1.5.3
go: downloading github.com/cenkalti/backoff/v4 v4.3.0
go: downloading github.com/grpc-ecosystem/grpc-gateway/v2 v2.22.0
go: downloading github.com/distribution/reference v0.5.0
go: downloading github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00
go: downloading github.com/xlab/treeprint v1.2.0
go: downloading github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510
go: downloading golang.org/x/mod v0.19.0
go: downloading go.starlark.net v0.0.0-20230525235612-a134d8f9ddca
go: downloading github.com/prometheus/client_golang v1.20.3
go: downloading github.com/prometheus/client_model v0.6.1
go: downloading github.com/prometheus/procfs v0.15.1
go: downloading github.com/beorn7/perks v1.0.1
go: downloading github.com/prometheus/common v0.55.0
go: github.com/puzzle/goff/argocd imports
	github.com/argoproj/argo-cd/v2/applicationset/utils imports
	github.com/argoproj/argo-cd/v2/util/argo/diff imports
	github.com/argoproj/gitops-engine/pkg/utils/kube/scheme imports
	k8s.io/kubernetes/pkg/apis/coordination/install imports
	k8s.io/kubernetes/pkg/apis/coordination/v1alpha1 imports
	k8s.io/api/coordination/v1alpha1: cannot find module providing package k8s.io/api/coordination/v1alpha1
go: github.com/puzzle/goff/argocd imports
	github.com/argoproj/argo-cd/v2/applicationset/utils imports
	github.com/argoproj/argo-cd/v2/util/argo/diff imports
	github.com/argoproj/gitops-engine/pkg/utils/kube/scheme imports
	k8s.io/kubernetes/pkg/apis/apps/install imports
	k8s.io/kubernetes/pkg/apis/apps/v1 imports
	k8s.io/kubernetes/pkg/features imports
	k8s.io/client-go/features: cannot find module providing package k8s.io/client-go/features

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Feb 6, 2025

renovate bot closed this Feb 6, 2025

renovate bot deleted the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch February 6, 2025 17:38

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Feb 6, 2025

renovate bot reopened this Feb 6, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from 39fcd97 to b1c5fc9 Compare February 6, 2025 21:47

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Feb 10, 2025

renovate bot closed this Feb 10, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Feb 11, 2025

renovate bot reopened this Feb 11, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from e053e89 to b1c5fc9 Compare February 11, 2025 00:39

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Feb 20, 2025

renovate bot closed this Feb 20, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Feb 20, 2025

renovate bot reopened this Feb 20, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from baee4d7 to b1c5fc9 Compare February 20, 2025 21:35

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Feb 21, 2025

renovate bot closed this Feb 21, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Feb 21, 2025

renovate bot reopened this Feb 21, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from d217627 to b1c5fc9 Compare February 21, 2025 18:38

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Feb 26, 2025

renovate bot closed this Feb 26, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Feb 26, 2025

renovate bot reopened this Feb 26, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from 7766848 to b1c5fc9 Compare February 26, 2025 23:11

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Mar 2, 2025

renovate bot closed this Mar 2, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Mar 2, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from 9ac0d81 to b1c5fc9 Compare April 22, 2025 17:03

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Apr 24, 2025

renovate bot closed this Apr 24, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Apr 24, 2025

renovate bot reopened this Apr 24, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from 4dc406b to b1c5fc9 Compare April 24, 2025 22:30

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed Apr 29, 2025

renovate bot closed this Apr 29, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] Apr 29, 2025

renovate bot reopened this Apr 29, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from ff763b8 to b1c5fc9 Compare April 29, 2025 23:06

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed May 19, 2025

renovate bot closed this May 19, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] May 19, 2025

renovate bot reopened this May 19, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from d8dc0af to b1c5fc9 Compare May 19, 2025 20:02

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed May 20, 2025

renovate bot closed this May 20, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] May 20, 2025

renovate bot reopened this May 20, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from 20e8f2c to b1c5fc9 Compare May 20, 2025 11:13

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed May 20, 2025

renovate bot closed this May 20, 2025

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] - autoclosed~~ Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY] May 20, 2025

renovate bot reopened this May 20, 2025

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from 093e089 to b1c5fc9 Compare May 20, 2025 22:26

Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY]

8cd09d6

renovate bot force-pushed the renovate/go-github.com-argoproj-argo-cd-v2-vulnerability branch from b1c5fc9 to 8cd09d6 Compare May 28, 2025 18:59

renovate bot changed the title ~~Update module github.com/argoproj/argo-cd/v2 to v2.12.10 [SECURITY]~~ Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY] May 28, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY] #166

Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY] #166

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY] #166

Are you sure you want to change the base?

Update module github.com/argoproj/argo-cd/v2 to v2.13.8 [SECURITY] #166

Uh oh!

Conversation

Uh oh!

GitHub Vulnerability Alerts

Impact

Patches

Workarounds

References

Impact

Patches

Workarounds

Credits

For more information

Release Notes

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Other work

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Dependency updates

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Dependency updates

Other work

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Documentation

Dependency updates

Other work

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog

Bug fixes

Dependency updates

Quick Start

Non-HA:

HA:

Release Signatures and Provenance

Upgrading

Changelog