Releases: argoproj/argo-cd
v2.11.11
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.11/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.11/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- d758ac8: fix(diff): avoid cache miss in server-side diff (#20423) (#20424) (#20451) (@gcp-cherry-pick-bot[bot])
- a5761d0: fix: CVE-2024-43799 upgrading transitive dep express to 4.21.0 to avoid [email protected] (#20404) (@nmirasch)
Full Changelog: v2.11.10...v2.11.11
v2.13.0-rc4
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0-rc4/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0-rc4/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Features
- 92de225: feat(ui): display sha's revision in every history release (#19962) - release-2.13 (#20310) (@pasha-codefresh)
Bug fixes
- 1cddb8e: fix(ci): handle new k3s test version matrix (#20223) (#20427) (#20433) (@gcp-cherry-pick-bot[bot])
- 262c8fa: fix(ui): source can in fact be
undefined
(#20381) (#20418) (@gcp-cherry-pick-bot[bot]) - a9a8d0e: fix: check err before use schedule and duration (#20043) (#20353) (@gcp-cherry-pick-bot[bot])
Other work
- 97a49a2: fix(controller/ui): fix pod with sidecar state (#19843) (#20393) (@linghaoSu)
- a713e50: prevent crash during timer expiration after stream is closed (#19917) (#20272) (@agaudreault)
Full Changelog: v2.13.0-rc3...v2.13.0-rc4
v2.12.5
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.5/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.5/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- 53bb2e4: fix(ci): handle new k3s test version matrix (#20223) (#20427) (#20434) (@gcp-cherry-pick-bot[bot])
- 3ff57d2: fix(cli): cherrypick Redis password fix #19599 into 2.12 (#20262) (@NetanelK)
- 6e6857e: fix(ui): source can in fact be
undefined
(#20381) (#20420) (@blakepettersson) - e2eb54c: fix: cherrypick semver fix #20096 into 2.12 (#20215) (@PaulSonOfLars)
- 50271e1: fix: prevent crash during timer expiration after stream is closed (#19917) (#20271) (@agaudreault)
Documentation
Other work
- a05b042: chore(tests): fix erroneous cherry-pick (#20274) (@crenshaw-dev)
- 5f5fb0d: fix(controller/ui): fix pod with sidecar state (#19843) (#20394) (@linghaoSu)
Full Changelog: v2.12.4...v2.12.5
v2.11.10
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.10/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.10/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
Full Changelog: v2.11.9...v2.11.10
v2.10.18
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.10.18/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.10.18/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- a3e2359: fix: CVE-2024-43799 upgrading transitive dep express to 4.21.0 (#20400) (@nmirasch)
Full Changelog: v2.10.17...v2.10.18
v2.13.0-rc3
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0-rc3/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0-rc3/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- 9fc6ec1: fix(extension): add header to support apps-in-any-namespace (#20123) (#20126) (@gcp-cherry-pick-bot[bot])
- 3bc2e1a: fix(health): only consider non-empty health checks (#20232) (#20235) (@gcp-cherry-pick-bot[bot])
- a9d9d07: fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0 (#20087) (#20089) (@gcp-cherry-pick-bot[bot])
- 99b30a8: fix: Fix argocd appset generate failure due to missing clusterrole (#20162) (#20164) (@gcp-cherry-pick-bot[bot])
- 4149f48: fix: Fix false positive in plugin application discovery (#20196) (#20214) (@gcp-cherry-pick-bot[bot])
- 7244b8b: fix: Policy/policy.open-cluster-management.io health check is broken (#20108) (#20109) (#20258) (@gcp-cherry-pick-bot[bot])
- c6d9d50: fix: Rework git tag semver resolution (#20083) (#20096) (#20213) (@gcp-cherry-pick-bot[bot])
- 5eb1f9b: fix: update health check to support modelmesh (#20142) (#20218) (@gcp-cherry-pick-bot[bot])
Documentation
Dependency updates
Other work
- 8e81bb6: Fixes minor typo which lead to using the bearer token as api URL and was obviously not working. (#20169) (#20170) (@gcp-cherry-pick-bot[bot])
- 61f63f3: chore: Added unit tests and fix e2e tests for application sync decoupling feature (#19966) (#20219) (@gcp-cherry-pick-bot[bot])
Full Changelog: v2.13.0-rc2...v2.13.0-rc3
v2.12.4
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.4/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.4/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- 1568165: fix(appset): Fix perpetual appset reconciliation (#19822) (#19995) (@gcp-cherry-pick-bot[bot])
- b76a09e: fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0 (#20087) (#20090) (@gcp-cherry-pick-bot[bot])
- d56ef76: fix: diffing should not fail if resource fail schema validation (#19714) (#19729) (@gcp-cherry-pick-bot[bot])
Documentation
Dependency updates
- ff3ef71: cherry-pick chore(deps-dev): bump webpack from 5.84.1 to 5.94.0 in /ui (#20056) (@ishitasequeira)
- 08fe6f5: chore(deps): bump dompurify from 2.3.6 to 2.5.6 in /ui (#19955) (#20016) (@gcp-cherry-pick-bot[bot])
- 8590550: chore(deps): bump express from 4.19.2 to 4.20.0 in /ui (#19883) (#19987) (@chengfang)
Full Changelog: v2.12.3...v2.12.4
v2.11.9
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.9/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.11.9/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- bd78134: fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0 (#20087) (#20091) (@gcp-cherry-pick-bot[bot])
Dependency updates
- 54ac05b: chore(deps): bump dompurify from 2.3.6 to 2.5.6 in /ui (#19955) (#20017) (@gcp-cherry-pick-bot[bot])
- 93f7846: chore(deps): bump express from 4.19.2 to 4.20.0 in /ui (#19883) (#19989) (@chengfang)
- 8b79185: chore(deps-dev): bump webpack from 5.84.1 to 5.94.0 in /ui (#20055) (@ishitasequeira)
Full Changelog: v2.11.8...v2.11.9
v2.10.17
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.10.17/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.10.17/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- a1d3758: fix: ArgoCD 2.11 - Loop of PATCH calls to Application objects (#19340) (#19348) (@alexmt)
- f52dcf6: fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0 (#20087) (#20092) (@gcp-cherry-pick-bot[bot])
- 286568e: fix: diffing should not fail if resource fail schema validation (#19734) (@alexmt)
- 5b041c2: fix: docs version regex changed (#18756) (#19355) (@ft-jasong)
Dependency updates
- 1200b6c: chore(deps): bump dompurify from 2.3.6 to 2.5.6 in /ui (#19955) (#20031) (@gcp-cherry-pick-bot[bot])
- b3c2bc1: chore(deps): bump express from 4.17.3 to 4.19.2 in /ui (#17648) (#19266) (@gcp-cherry-pick-bot[bot])
- 9865a8a: chore(deps): bump express from 4.19.2 to 4.20.0 in /ui (#19883) (#19990) (@chengfang)
- 6b00605: chore(deps-dev): bump webpack from 5.84.1 to 5.94.0 in /ui (#20054) (@ishitasequeira)
Other work
Full Changelog: v2.10.16...v2.10.17
v2.13.0-rc2
Quick Start
Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0-rc2/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.13.0-rc2/manifests/ha/install.yaml
Release Signatures and Provenance
All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.
Upgrading
If upgrading from a different minor version, be sure to read the upgrading documentation.
Changelog
Bug fixes
- 425b408: fix: Add redis password to
forwardCacheClient
struct (#19599) (#19977) (@gcp-cherry-pick-bot[bot]) - 243ecc2: fix: notification controller crash loop in 2.13 RC1 (#19984) (#19986) (@gcp-cherry-pick-bot[bot])
Dependency updates
- 5392ca7: chore(deps): bump dompurify from 2.3.6 to 2.5.6 in /ui (#19955) (#20015) (@gcp-cherry-pick-bot[bot])
Full Changelog: v2.13.0-rc1...v2.13.0-rc2