AWS region where the ROSA cluster will be deployed
| `true` | `""` | | `rosa-cli-version` |Version of the ROSA CLI to use
| `true` | `latest` | | `awscli-version` |Version of the aws cli to use
| `true` | `2.15.52` | -| `openshift-version` |Version of the OpenShift to install
| `true` | `4.17.10` | +| `openshift-version` |Version of the OpenShift to install
| `true` | `4.17.11` | | `replicas` |Number of replicas for the ROSA cluster
| `true` | `2` | | `s3-backend-bucket` |Name of the S3 bucket to store Terraform state
| `true` | `""` | | `s3-bucket-region` |Region of the bucket containing the resources states, if not set, will fallback on aws-region
| `false` | `""` | @@ -95,7 +95,7 @@ This action is a `composite` action. # Version of the OpenShift to install # # Required: true - # Default: 4.17.10 + # Default: 4.17.11 replicas: # Number of replicas for the ROSA cluster diff --git a/.github/actions/rosa-create-cluster/action.yml b/.github/actions/rosa-create-cluster/action.yml index 4a42559..7a25dc2 100644 --- a/.github/actions/rosa-create-cluster/action.yml +++ b/.github/actions/rosa-create-cluster/action.yml @@ -36,7 +36,7 @@ inputs: description: Version of the OpenShift to install required: true # renovate: datasource=custom.rosa-camunda depName=red-hat-openshift versioning=semver - default: 4.17.10 + default: 4.17.11 replicas: description: Number of replicas for the ROSA cluster required: true diff --git a/.github/workflows/artifact-rosa-versions.yml b/.github/workflows/artifact-rosa-versions.yml index b3e34fa..c3d562f 100644 --- a/.github/workflows/artifact-rosa-versions.yml +++ b/.github/workflows/artifact-rosa-versions.yml @@ -60,7 +60,7 @@ jobs: - name: Notify in Slack in case of failure id: slack-notification if: failure() && github.event_name == 'schedule' - uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 with: vault_addr: ${{ secrets.VAULT_ADDR }} vault_role_id: ${{ secrets.VAULT_ROLE_ID }} diff --git a/.github/workflows/daily-cleanup.yml b/.github/workflows/daily-cleanup.yml index f17ef2b..3ca8636 100644 --- a/.github/workflows/daily-cleanup.yml +++ b/.github/workflows/daily-cleanup.yml @@ -103,7 +103,7 @@ jobs: - name: Notify in Slack in case of failure id: slack-notification if: failure() && github.event_name == 'schedule' && steps.retry_delete_clusters.outcome == 'failure' - uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 with: vault_addr: ${{ secrets.VAULT_ADDR }} vault_role_id: ${{ secrets.VAULT_ROLE_ID }} diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml index a1a2918..5e8ca57 100644 --- a/.github/workflows/labeler.yml +++ b/.github/workflows/labeler.yml @@ -20,7 +20,7 @@ jobs: - name: Notify in Slack in case of failure id: slack-notification if: failure() && github.event_name == 'schedule' - uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 with: vault_addr: ${{ secrets.VAULT_ADDR }} vault_role_id: ${{ secrets.VAULT_ROLE_ID }} diff --git a/.github/workflows/links.yml b/.github/workflows/links.yml index 0dc92f5..51c8bf4 100644 --- a/.github/workflows/links.yml +++ b/.github/workflows/links.yml @@ -46,7 +46,7 @@ jobs: - name: Notify in Slack in case of failure id: slack-notification if: failure() && github.event_name == 'schedule' - uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 with: vault_addr: ${{ secrets.VAULT_ADDR }} vault_role_id: ${{ secrets.VAULT_ROLE_ID }} diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 4cf71eb..a7b0d07 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -9,5 +9,5 @@ on: jobs: lint: - uses: camunda/infraex-common-config/.github/workflows/lint-global.yml@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/workflows/lint-global.yml@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 secrets: inherit diff --git a/.github/workflows/renovate-automerge.yml b/.github/workflows/renovate-automerge.yml index 64ed332..14a255a 100644 --- a/.github/workflows/renovate-automerge.yml +++ b/.github/workflows/renovate-automerge.yml @@ -11,5 +11,5 @@ concurrency: jobs: renovate-automerge: - uses: camunda/infraex-common-config/.github/workflows/automerge-global.yml@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/workflows/automerge-global.yml@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 secrets: inherit diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index e4e5272..c00fa51 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -145,7 +145,7 @@ jobs: - name: Notify in Slack in case of failure id: slack-notification if: failure() && github.event_name == 'schedule' - uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@08c796604f9b08614df763b333833dd1bdc037c0 # 1.2.11 + uses: camunda/infraex-common-config/.github/actions/report-failure-on-slack@41bed71d5715d2e2e83a83997a44be59fcddf615 # 1.2.12 with: vault_addr: ${{ secrets.VAULT_ADDR }} vault_role_id: ${{ secrets.VAULT_ROLE_ID }} diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml index 446f0ac..5535357 100644 --- a/.pre-commit-config.yaml +++ b/.pre-commit-config.yaml @@ -4,7 +4,7 @@ repos: - repo: https://github.com/camunda/infraex-common-config - rev: 1.2.11 # use tags until renovate supports sha: https://github.com/renovatebot/renovate/issues/22567 + rev: 1.2.12 # use tags until renovate supports sha: https://github.com/renovatebot/renovate/issues/22567 hooks: - id: update-action-readmes-docker @@ -22,7 +22,7 @@ repos: - id: detect-private-key - repo: https://github.com/rhysd/actionlint - rev: v1.7.6 + rev: v1.7.7 hooks: - id: actionlint-docker diff --git a/.tool-versions b/.tool-versions index f2c04ab..da1f75f 100644 --- a/.tool-versions +++ b/.tool-versions @@ -5,7 +5,7 @@ awscli 2.23.2 -golang 1.23.4 +golang 1.23.5 just 1.38.0 @@ -19,4 +19,4 @@ tflint 0.55.0 tfsec 1.28.13 -trivy 0.58.1 +trivy 0.58.2 diff --git a/modules/rosa-hcp/README.md b/modules/rosa-hcp/README.md index b878bf1..71252f3 100644 --- a/modules/rosa-hcp/README.md +++ b/modules/rosa-hcp/README.md @@ -26,7 +26,7 @@ | [htpasswd\_password](#input\_htpasswd\_password) | htpasswd password | `string` | n/a | yes | | [htpasswd\_username](#input\_htpasswd\_username) | htpasswd username | `string` | `"kubeadmin"` | no | | [machine\_cidr\_block](#input\_machine\_cidr\_block) | value of the CIDR block to use for the machine | `string` | `"10.0.0.0/18"` | no | -| [openshift\_version](#input\_openshift\_version) | The version of ROSA to be deployed | `string` | `"4.17.10"` | no | +| [openshift\_version](#input\_openshift\_version) | The version of ROSA to be deployed | `string` | `"4.17.11"` | no | | [pod\_cidr\_block](#input\_pod\_cidr\_block) | value of the CIDR block to use for the pods | `string` | `"10.0.64.0/18"` | no | | [replicas](#input\_replicas) | The number of computer nodes to create. Must be a minimum of 2 for a single-AZ cluster, 3 for multi-AZ. | `string` | `"2"` | no | | [service\_cidr\_block](#input\_service\_cidr\_block) | value of the CIDR block to use for the services | `string` | `"10.0.128.0/18"` | no | diff --git a/modules/rosa-hcp/vars.tf b/modules/rosa-hcp/vars.tf index e9de107..ce6d1f2 100644 --- a/modules/rosa-hcp/vars.tf +++ b/modules/rosa-hcp/vars.tf @@ -9,7 +9,7 @@ variable "openshift_version" { type = string description = "The version of ROSA to be deployed" # renovate: datasource=custom.rosa-camunda depName=red-hat-openshift versioning=semver - default = "4.17.10" + default = "4.17.11" validation { condition = can(regex("^[0-9]*[0-9]+.[0-9]*[0-9]+.[0-9]*[0-9]+$", var.openshift_version)) error_message = "openshift_version must be with structure