cert-manager/cert-manager (github.com/cert-manager/cert-manager)
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We reverted the CRD-based API defaults forCertificate.Spec.IssuerRef andCertificateRequest.Spec.IssuerRef after they were found to cause unexpected certificate renewals after upgrading to 1.19.0. We will try re-introducing these API defaults in cert-manager1.20.
We fixed a bug that caused certificates to be re-issued unexpectedly if theissuerRef kind or group was changed to one of the "runtime" default values.
We upgraded Go to1.25.3 to address the following security vulnerabilities:CVE-2025-61724,CVE-2025-58187,CVE-2025-47912,CVE-2025-58183,CVE-2025-61723,CVE-2025-58186,CVE-2025-58185,CVE-2025-58188, andCVE-2025-61725.
📖 Read thefull 1.19 release notes on the cert-manager.io website before upgrading.
Changes sincev1.19.0:
Bug or Regression
- BUGFIX: in case kind or group in the
issuerRef of a Certificate was omitted, upgrading to1.19.x incorrectly caused the certificate to be renewed (#8175,@cert-manager-bot) - Bump Go to 1.25.3 to fix a backwards incompatible change to the validation of DNS names in X.509 SAN fields which prevented the use of DNS names with a trailing dot (#8177,@wallrj-cyberark)
- Revert API defaults for issuer reference kind and group introduced in 0.19.0 (#8178,@cert-manager-bot)
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
⚠️Known issues: The following known issues are fixed inv1.19.1:
This release focuses on expanding platform compatibility, improving deployment flexibility, enhancing observability, and addressing key reliability issues.
📖 Read the full release notes at cert-manager.io:https://cert-manager.io/docs/releases/release-notes/release-notes-1.19
Changes sincev1.18.0:
Feature
- Add IPv6 rules to the default network policy (#7726,@jcpunk)
- Add
global.nodeSelector to helm chart to allow for a singlenodeSelector to be set across all services. (#7818,@StingRayZA) - Add a feature gate to default to Ingress
pathTypeExact in ACME HTTP01 Ingress challenge solvers. (#7795,@sspreitzer) - Add generated
applyconfigurations allowing clients to make type-safe server-side apply requests for cert-manager resources. (#7866,@erikgb) - Added API defaults to issuer references group (cert-manager.io) and kind (Issuer). (#7414,@erikgb)
- Added
certmanager_certificate_challenge_status Prometheus metric. (#7736,@hjoshi123) - Added
protocol field forrfc2136 DNS01 provider (#7881,@hjoshi123) - Added experimental field
hostUsers flag to all pods. Not set by default. (#7973,@hjoshi123) - Support configurable resource requests and limits for ACME HTTP01 solver pods through ClusterIssuer and Issuer specifications, allowing granular resource management that overrides global
--acme-http01-solver-resource-* settings. (#7972,@lunarwhite) - The
CAInjectorMerging feature has been promoted to BETA and is now enabled by default (#8017,@ThatsMrTalbot) - The controller, webhook and ca-injector now log their version and git commit on startup for easier debugging and support. (#8072,@prasad89)
- Updated
certificate metrics to the collector approach. (#7856,@hjoshi123)
Bug or Regression
- ACME: Increased challenge authorization timeout to 2 minutes to fix
error waiting for authorization (#7796,@hjoshi123) - BUGFIX: permitted URI domains were incorrectly used to set the excluded URI domains in the CSR's name constraints (#7816,@kinolaev)
- Enforced ACME HTTP-01 solver validation to properly reject configurations when multiple ingress options (
class,ingressClassName,name) are specified simultaneously (#8021,@lunarwhite) - Increase maximum sizes of PEM certificates and chains which can be parsed in cert-manager, to handle leaf certificates with large numbers of DNS names or other identities (#7961,@SgtCoDFish)
- Reverted adding the
global.rbac.disableHTTPChallengesRole Helm option. (#7836,@inteon) - This change removes the
path label of core ACME client metrics and will require users to update their monitoring dashboards and alerting rules if using those metrics. (#8109,@mladen-rusev-cyberark) - Use the latest version of
ingress-nginx in E2E tests to ensure compatibility (#7792,@wallrj)
Other (Cleanup or Flake)
- Helm: Fix naming template of
tokenrequest RoleBinding resource to improve consistency (#7761,@lunarwhite) - Improve error messages when certificates, CRLs or private keys fail admission due to malformed or missing PEM data (#7928,@SgtCoDFish)
- Major upgrade of Akamai SDK. NOTE: The new version has not been fully tested end-to-end due to the lack of cloud infrastructure. (#8003,@hjoshi123)
- Update kind images to include the Kubernetes 1.33 node image (#7786,@wallrj)
- Use
maps.Copy for cleaner map handling (#8092,@quantpoet) - Vault: Migrate Vault E2E add-on tests from deprecated
vault-client-go to the newvault/api client. (#8059,@armagankaratosun)
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We fixed a bug which caused certificates to be re-issued unexpectedly, if the issuerRef kind or group was changed to one of the "runtime" default values. We increased the size limit when parsing PEM certificate chains to handle leaf certificates with large numbers of DNS named or other identities. We upgraded Go to 1.24.9 to fix various non-critical security vulnerabilities.
📖 Read thefull 1.18 release notes on the cert-manager.io website before upgrading.
Changes sincev1.18.2:
Bug or Regression
- BUGFIX: in case kind or group in the issuerRef of a Certificate was omitted, upgrading to 1.19.x incorrectly caused the certificate to be renewed (#8174,@cert-manager-bot)
- Bump Go to 1.24.9. Fixes the following vulnerabilities:CVE-2025-61724,CVE-2025-58187,CVE-2025-47912,CVE-2025-58183,CVE-2025-61723,CVE-2025-58186,CVE-2025-58185,CVE-2025-58188,CVE-2025-61725 (#8176,@wallrj-cyberark)
- Increase maximum sizes of PEM certificates and chains which can be parsed in cert-manager, to handle leaf certificates with large numbers of DNS names or other identities (#7966,@cert-manager-bot)
Other (Cleanup or Flake)
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We fixed a bug in the CSR's name constraints construction (only applies if you have enabled theNameConstraints feature gate).
We dropped the newglobal.rbac.disableHTTPChallengesRole Helm option due to a bug we found, this feature will be released inv1.19 instead.
Changes sincev1.18.1:
Bug or Regression
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We have added a new feature gateACMEHTTP01IngressPathTypeExact, to allowingress-nginx users to turn off the new default IngressPathType: Exact behavior, in ACME HTTP01 Ingress challenge solvers.
This change fixes the following issue:#7791
We have increased the ACME challenge authorization timeout to two minutes, which we hope will fix a timeout error (error waiting for authorization), which has been reported by multiple users, since the release of cert-managerv1.16.0.
This change should fix the following issues:#7337,#7444, and#7685.
ℹ️ Be sure to review all new features and changes below, and read thefull release notes carefully before upgrading.
Changes sincev1.18.0:
Feature
- Added a new feature gate
ACMEHTTP01IngressPathTypeExact, to allowingress-nginx users to turn off the new default IngressPathType: Exact behavior, in ACME HTTP01 Ingress challenge solvers. (#7810,@sspreitzer)
Bug or Regression
- ACME: Increased challenge authorization timeout to 2 minutes to fix
error waiting for authorization. (#7801,@hjoshi123)
Other (Cleanup or Flake)
- Use the latest version of ingress-nginx in E2E tests to ensure compatibility (
#7807,@wallrj)
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
cert-manager 1.18 introduces several new features and breaking changes. Highlights include support for ACME certificate profiles, a new default forCertificate.Spec.PrivateKey.RotationPolicy now set toAlways (breaking change), and the defaultCertificate.Spec.RevisionHistoryLimit now set to1 (potentially breaking).
ℹ️ Be sure to review all new features and changes below, and read thefull release notes carefully before upgrading.
Known Issues
- ACME HTTP01 challenge paths are rejected by the ingress-nginx validating webhook (#7791)
Changes sincev1.17.2:
Feature
- Add config to the Vault issuer to allow the server-name to be specified when validating the certificates the Vault server presents. (#7663,@ThatsMrTalbot)
- Added
app.kubernetes.io/managed-by: cert-manager label to the created Let's Encrypt account keys (#7577,@terinjokes) - Added certificate issuance and expiration time metrics (
certmanager_certificate_not_before_timestamp_seconds,certmanager_certificate_not_after_timestamp_seconds). (#7612,@solidDoWant) - Added ingress-shim option:
--extra-certificate-annotations, which sets a list of annotation keys to be copied from Ingress-like to resulting Certificate object (#7083,@k0da) - Added the
iss short name for the cert-managerIssuer resource. (#7373,@SgtCoDFish) - Added the
ciss short name for the cert-managerClusterIssuer resource (#7373,@SgtCoDFish) - Adds the
global.rbac.disableHTTPChallengesRole helm value to disable HTTP-01 ACME challenges. This allows cert-manager to drop its permission to create pods, improving security when HTTP-01 challenges are not required. (#7666,@ali-hamza-noor) - Allow customizing signature algorithm (#7591,@tareksha)
- Cache the full DNS response and handle TTL expiration in
FindZoneByFqdn (#7596,@ThatsIvan) - Cert-manager now uses a local fork of the golang.org/x/crypto/acme package (#7752,@wallrj)
- Add support forACME profiles extension. (#7777,@wallrj)
- Promote the
UseDomainQualifiedFinalizer feature to GA. (#7735,@jsoref) - Switched service/servicemon definitions to use port names instead of numbers. (#7727,@jcpunk)
- The default value of
Certificate.Spec.PrivateKey.RotationPolicy changed fromNever toAlways. (#7723,@wallrj) - Potentially breaking: Set the default revisionHistoryLimit to 1 for the CertificateRequest revisions (#7758,@ali-hamza-noor)
Documentation
Bug or Regression
- Bump
go-jose dependency to addressCVE-2025-27144. (#7606,@SgtCoDFish) - Bump
golang.org/x/oauth2 to patchCVE-2025-22868. (#7638,@NicholasBlaskey) - Bump
golang.org/x/crypto to patchGHSA-hcg3-q754-cr77. (#7638,@NicholasBlaskey) - Bump
github.com/golang-jwt/jwt to patchGHSA-mh63-6h87-95cp. (#7638,@NicholasBlaskey) - Change of the Kubernetes Ingress pathType from
ImplementationSpecific toExact for a reliable handling of ingress controllers and enhanced security. (#7767,@sspreitzer) - Fix AWS Route53 error detection for not-found errors during deletion of DNS records. (#7690,@wallrj)
- Fix behavior when running with
--namespace=<namespace>: limit the scope of cert-manager to a single namespace and disable cluster-scoped controllers. (#7678,@tsaarni) - Fix handling of certificates with IP addresses in the
commonName field; IP addresses are no longer added to the DNSsubjectAlternativeName list and are instead added to theipAddresses field as expected. (#7081,@johnjcool) - Fix issuing of certificates via DNS01 challenges on Cloudflare after a breaking change to the Cloudflare API (#7549,@LukeCarrier)
- Fixed the
certmanager_certificate_renewal_timestamp_seconds metric help text indicating that the metric is relative to expiration time, rather than Unix epoch time. (#7609,@solidDoWant) - Fixing the service account template to incorporate boolean values for the annotations. (#7698,@ali-hamza-noor)
- Quote nodeSelector values in Helm Chart (#7579,@tobiasbp)
- Skip Gateway TLS listeners in
Passthrough mode. (#6986,@vehagn) - Upgrade
golang.org/x/net fixingCVE-2025-22870. (#7619,@dependabot[bot])
Other (Cleanup or Flake)
- ACME E2E Tests: Upgraded Pebble to v2.7.0 and modified the ACME tests to match latest Pebble behaviour. (#7771,@wallrj)
- Patch the
third_party/forked/acme package with support for the ACME profiles extension. (#7776,@wallrj) - Promote the
AdditionalCertificateOutputFormats feature to GA, making additional formats always enabled. (#7744,@erikgb) - Remove deprecated feature gate
ValidateCAA. Setting this feature gate is now a no-op which does nothing but print a warning log line (#7553,@SgtCoDFish) - Update kind images to include the Kubernetes 1.33 node image (#7787,@cert-manager-bot)
- Upgrade Go to
v1.24.4 (#7785,@wallrj) - Use slices.Contains to simplify code (#7753,@cuinix)
Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We fixed a bug in the CSR's name constraints construction (only applies if you have enabled theNameConstraints feature gate).
Changes sincev1.17.3:
Bug or Regression
- BUGFIX: permitted URI domains were incorrectly used to set the excluded URI domains in the CSR's name constraints (#7832,@cert-manager-bot)
Uh oh!
There was an error while loading.Please reload this page.
This PR contains the following updates:
v4.2.3->v4.3.0v0.20.1->v0.20.9v4.3.0->v4.3.1v1.17.3->v1.19.1v0.17.2->v0.18.0v0.17.0->v0.17.1v1.10.0->v1.11.1v4.30.7->v4.31.21.24.4->1.25.3v0.5.2->v0.6.0v0.32.4->v0.34.1v0.32.4->v0.34.1v0.32.4->v0.34.1v0.32.4->v0.34.1v2.12.2->v2.13.2Release Notes
actions/cache (actions/cache)
v4.3.0Compare Source
What's Changed
v4.3.0release by@Link- in#1655New Contributors
Full Changelog:actions/cache@v4...v4.3.0
v4.2.4Compare Source
What's Changed
@actions/cacheto4.0.5and move@protobuf-ts/pluginto dev depdencies by@Link- in#16344.2.4by@Link- in#1636New Contributors
Full Changelog:actions/cache@v4...v4.2.4
anchore/sbom-action (anchore/sbom-action)
v0.20.9Compare Source
Changes in v0.20.9
v0.20.8Compare Source
Changes in v0.20.8
v0.20.7Compare Source
Changes in v0.20.7
v0.20.6Compare Source
Changes in v0.20.6
v0.20.5Compare Source
Changes in v0.20.5
v0.20.4Compare Source
Changes in v0.20.4
v0.20.3Compare Source
Changes in v0.20.3
v0.20.2Compare Source
Changes in v0.20.2
azure/setup-helm (azure/setup-helm)
v4.3.1Compare Source
Changed
Added
cert-manager/cert-manager (github.com/cert-manager/cert-manager)
v1.19.1Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We reverted the CRD-based API defaults for
Certificate.Spec.IssuerRefandCertificateRequest.Spec.IssuerRefafter they were found to cause unexpected certificate renewals after upgrading to 1.19.0. We will try re-introducing these API defaults in cert-manager1.20.We fixed a bug that caused certificates to be re-issued unexpectedly if the
issuerRefkind or group was changed to one of the "runtime" default values.We upgraded Go to
1.25.3to address the following security vulnerabilities:CVE-2025-61724,CVE-2025-58187,CVE-2025-47912,CVE-2025-58183,CVE-2025-61723,CVE-2025-58186,CVE-2025-58185,CVE-2025-58188, andCVE-2025-61725.Changes since
v1.19.0:Bug or Regression
issuerRefof a Certificate was omitted, upgrading to1.19.xincorrectly caused the certificate to be renewed (#8175,@cert-manager-bot)v1.19.0Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
This release focuses on expanding platform compatibility, improving deployment flexibility, enhancing observability, and addressing key reliability issues.
Changes since
v1.18.0:Feature
global.nodeSelectorto helm chart to allow for a singlenodeSelectorto be set across all services. (#7818,@StingRayZA)pathTypeExactin ACME HTTP01 Ingress challenge solvers. (#7795,@sspreitzer)applyconfigurationsallowing clients to make type-safe server-side apply requests for cert-manager resources. (#7866,@erikgb)certmanager_certificate_challenge_statusPrometheus metric. (#7736,@hjoshi123)protocolfield forrfc2136DNS01 provider (#7881,@hjoshi123)hostUsersflag to all pods. Not set by default. (#7973,@hjoshi123)--acme-http01-solver-resource-*settings. (#7972,@lunarwhite)CAInjectorMergingfeature has been promoted to BETA and is now enabled by default (#8017,@ThatsMrTalbot)certificatemetrics to the collector approach. (#7856,@hjoshi123)Bug or Regression
error waiting for authorization(#7796,@hjoshi123)class,ingressClassName,name) are specified simultaneously (#8021,@lunarwhite)global.rbac.disableHTTPChallengesRoleHelm option. (#7836,@inteon)pathlabel of core ACME client metrics and will require users to update their monitoring dashboards and alerting rules if using those metrics. (#8109,@mladen-rusev-cyberark)ingress-nginxin E2E tests to ensure compatibility (#7792,@wallrj)Other (Cleanup or Flake)
tokenrequestRoleBinding resource to improve consistency (#7761,@lunarwhite)maps.Copyfor cleaner map handling (#8092,@quantpoet)vault-client-goto the newvault/apiclient. (#8059,@armagankaratosun)v1.18.3Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We fixed a bug which caused certificates to be re-issued unexpectedly, if the issuerRef kind or group was changed to one of the "runtime" default values. We increased the size limit when parsing PEM certificate chains to handle leaf certificates with large numbers of DNS named or other identities. We upgraded Go to 1.24.9 to fix various non-critical security vulnerabilities.
Changes since
v1.18.2:Bug or Regression
Other (Cleanup or Flake)
v1.18.2Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We fixed a bug in the CSR's name constraints construction (only applies if you have enabled the
NameConstraintsfeature gate).We dropped the new
global.rbac.disableHTTPChallengesRoleHelm option due to a bug we found, this feature will be released inv1.19instead.Changes since
v1.18.1:Bug or Regression
global.rbac.disableHTTPChallengesRoleHelm option. (#7837,@cert-manager-bot)v1.18.1Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We have added a new feature gate
ACMEHTTP01IngressPathTypeExact, to allowingress-nginxusers to turn off the new default IngressPathType: Exactbehavior, in ACME HTTP01 Ingress challenge solvers.This change fixes the following issue:#7791
We have increased the ACME challenge authorization timeout to two minutes, which we hope will fix a timeout error (
error waiting for authorization), which has been reported by multiple users, since the release of cert-managerv1.16.0.This change should fix the following issues:#7337,#7444, and#7685.
Changes since
v1.18.0:Feature
ACMEHTTP01IngressPathTypeExact, to allowingress-nginxusers to turn off the new default IngressPathType: Exactbehavior, in ACME HTTP01 Ingress challenge solvers. (#7810,@sspreitzer)Bug or Regression
error waiting for authorization. (#7801,@hjoshi123)Other (Cleanup or Flake)
#7807,@wallrj)v1.18.0Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
cert-manager 1.18 introduces several new features and breaking changes. Highlights include support for ACME certificate profiles, a new default for
Certificate.Spec.PrivateKey.RotationPolicynow set toAlways(breaking change), and the defaultCertificate.Spec.RevisionHistoryLimitnow set to1(potentially breaking).Known Issues
Changes since
v1.17.2:Feature
app.kubernetes.io/managed-by: cert-managerlabel to the created Let's Encrypt account keys (#7577,@terinjokes)certmanager_certificate_not_before_timestamp_seconds,certmanager_certificate_not_after_timestamp_seconds). (#7612,@solidDoWant)--extra-certificate-annotations, which sets a list of annotation keys to be copied from Ingress-like to resulting Certificate object (#7083,@k0da)issshort name for the cert-managerIssuerresource. (#7373,@SgtCoDFish)cissshort name for the cert-managerClusterIssuerresource (#7373,@SgtCoDFish)global.rbac.disableHTTPChallengesRolehelm value to disable HTTP-01 ACME challenges. This allows cert-manager to drop its permission to create pods, improving security when HTTP-01 challenges are not required. (#7666,@ali-hamza-noor)FindZoneByFqdn(#7596,@ThatsIvan)UseDomainQualifiedFinalizerfeature to GA. (#7735,@jsoref)Certificate.Spec.PrivateKey.RotationPolicychanged fromNevertoAlways. (#7723,@wallrj)Documentation
Bug or Regression
go-josedependency to addressCVE-2025-27144. (#7606,@SgtCoDFish)golang.org/x/oauth2to patchCVE-2025-22868. (#7638,@NicholasBlaskey)golang.org/x/cryptoto patchGHSA-hcg3-q754-cr77. (#7638,@NicholasBlaskey)github.com/golang-jwt/jwtto patchGHSA-mh63-6h87-95cp. (#7638,@NicholasBlaskey)ImplementationSpecifictoExactfor a reliable handling of ingress controllers and enhanced security. (#7767,@sspreitzer)--namespace=<namespace>: limit the scope of cert-manager to a single namespace and disable cluster-scoped controllers. (#7678,@tsaarni)commonNamefield; IP addresses are no longer added to the DNSsubjectAlternativeNamelist and are instead added to theipAddressesfield as expected. (#7081,@johnjcool)certmanager_certificate_renewal_timestamp_secondsmetric help text indicating that the metric is relative to expiration time, rather than Unix epoch time. (#7609,@solidDoWant)Passthroughmode. (#6986,@vehagn)golang.org/x/netfixingCVE-2025-22870. (#7619,@dependabot[bot])Other (Cleanup or Flake)
third_party/forked/acmepackage with support for the ACME profiles extension. (#7776,@wallrj)AdditionalCertificateOutputFormatsfeature to GA, making additional formats always enabled. (#7744,@erikgb)ValidateCAA. Setting this feature gate is now a no-op which does nothing but print a warning log line (#7553,@SgtCoDFish)v1.24.4(#7785,@wallrj)v1.17.4Compare Source
cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.
We fixed a bug in the CSR's name constraints construction (only applies if you have enabled the
NameConstraintsfeature gate).Changes since
v1.17.3:Bug or Regression
stretchr/testify (github.com/stretchr/testify)
v1.11.1Compare Source
This release fixes#1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (
String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.What's Changed
Full Changelog:stretchr/testify@v1.11.0...v1.11.1
v1.11.0Compare Source
What's Changed
Functional Changes
v1.11.0 Includes a number of performance improvements.
Fixes
Documentation, Build & CI
New Contributors
Full Changelog:stretchr/testify@v1.10.0...v1.11.0
github/codeql-action (github/codeql-action)
v4.31.2Compare Source
v4.31.1Compare Source
v4.31.0Compare Source
v4.30.9Compare Source
CodeQL Action Changelog
See thereleases page for the relevant changes to the CodeQL CLI and language packs.
4.30.9 - 17 Oct 2025
setup-codeqlaction has been added which is similar toinit, except it only installs the CodeQL CLI and does not initialize a database. Do not use this in production as it is part of an internal experiment and subject to change at any time.#3204See the fullCHANGELOG.md for more information.
v4.30.8Compare Source
CodeQL Action Changelog
See thereleases page for the relevant changes to the CodeQL CLI and language packs.
4.30.8 - 10 Oct 2025
No user facing changes.
See the fullCHANGELOG.md for more information.
golang/go (go)
v1.25.3v1.25.2v1.25.1v1.25.0v1.24.9v1.24.8v1.24.7v1.24.6v1.24.5uber/mock (go.uber.org/mock)
v0.6.0Compare Source
0.6.0 (18 Aug 2025)
Added
Fixed
kubernetes/api (k8s.io/api)
v0.34.1Compare Source
v0.34.0Compare Source
v0.33.5Compare Source
v0.33.4Compare Source
v0.33.3Compare Source
v0.33.2Compare Source
v0.33.1Compare Source
v0.33.0Compare Source
v0.32.9Compare Source
v0.32.8Compare Source
v0.32.7[Compare Source](https://redirect.github.com/kubernetes/api/compare/v0.3
Configuration
📅Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦Automerge: Enabled.
♻Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻Immortal: This PR will be recreated if closed unmerged. Getconfig help if that's undesired.
This PR was generated byMend Renovate. View therepository job log.