renovate[bot]
f35f87285c
chore(deps): update golang docker tag to v1.26.1 ( #780 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 12:04:27 +01:00
renovate[bot]
2b3ee982dd
chore(deps): update dependency go to v1.26.1 ( #762 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 12:03:54 +01:00
renovate[bot]
2f7881318c
chore(deps): update dependency dagger/dagger to v0.20.1 ( #782 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 12:02:58 +01:00
renovate[bot]
4509b6381f
chore(deps): update golangci/golangci-lint docker tag to v2.10.1 ( #781 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 12:01:58 +01:00
renovate[bot]
9d2cdd4d5d
chore(deps): update fsouza/fake-gcs-server docker tag to v1.53.1 ( #760 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 11:52:24 +01:00
Marco Nenciarini
ce7b7612ae
fix(security): harden GitHub Actions workflows against expression injection ( #773 )
...
release-please / release-please (push) Failing after 3s
Move `${{ }}` expressions from `run:` blocks into step-level `env:`
blocks, then reference them as properly-quoted shell variables.
Part of cloudnative-pg/cloudnative-pg#10113
Assisted-by: Claude Opus 4.6
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-03-06 10:37:54 +01:00
renovate[bot]
79238f5772
fix(deps): update module github.com/cert-manager/cert-manager to v1.19.3 [security] ( #775 )
...
release-please / release-please (push) Failing after 4s
This PR contains the following updates:
| Package | Change |
[Age](https://docs.renovatebot.com/merge-confidence/ ) |
[Confidence](https://docs.renovatebot.com/merge-confidence/ ) |
|---|---|---|---|
|
[github.com/cert-manager/cert-manager](https://redirect.github.com/cert-manager/cert-manager )
| `v1.19.2` → `v1.19.3` |
|
|
### GitHub Vulnerability Alerts
####
[CVE-2026-25518](https://redirect.github.com/cert-manager/cert-manager/security/advisories/GHSA-gx3x-vq4p-mhhv )
### Impact
The cert-manager-controller performs DNS lookups during ACME DNS-01
processing (for zone discovery and propagation self-checks). By default,
these lookups use standard unencrypted DNS.
An attacker who can intercept and modify DNS traffic from the
cert-manager-controller pod can insert a crafted entry into
cert-manager's DNS cache. Accessing this entry will trigger a panic,
resulting in Denial of Service (DoS) of the cert-manager controller.
The issue can also be exploited if the authoritative DNS server for the
domain being validated is controlled by a malicious actor.
### Patches
The vulnerability was introduced in cert-manager v1.18.0 and has been
patched in cert-manager v1.19.3 and v1.18.5, which are the supported
minor releases at the time of publishing.
cert-manager versions prior to v1.18.0 are unaffected.
### Workarounds
- Using DNS-over-HTTPS reduces the risk of DNS traffic being intercepted
and modified.
- Note that DNS-over-HTTPS does *not* prevent the risk of an
attacker-controlled authoritative DNS server.
### Resources
- Fix for cert-manager 1.18:
[https://github.com/cert-manager/cert-manager/pull/8467 ](https://redirect.github.com/cert-manager/cert-manager/pull/8467 )
- Fix for cert-manager 1.19:
[https://github.com/cert-manager/cert-manager/pull/8468 ](https://redirect.github.com/cert-manager/cert-manager/pull/8468 )
- Fix for master branch:
[https://github.com/cert-manager/cert-manager/pull/8469 ](https://redirect.github.com/cert-manager/cert-manager/pull/8469 )
### Credits
Huge thanks to Oleh Konko (@​1seal) for reporting the issue,
providing a detailed PoC and an initial patch!
---
### Release Notes
<details>
<summary>cert-manager/cert-manager
(github.com/cert-manager/cert-manager)</summary>
###
[`v1.19.3`](https://redirect.github.com/cert-manager/cert-manager/releases/tag/v1.19.3 )
[Compare
Source](https://redirect.github.com/cert-manager/cert-manager/compare/v1.19.2...v1.19.3 )
cert-manager is the easiest way to automatically manage certificates in
Kubernetes and OpenShift clusters.
This release contains three bug fixes, including a fix for the MODERATE
severity DoS issue in GHSA-gx3x-vq4p-mhhv. All users should upgrade to
the latest release.
#### Changes by Kind
##### Bug or Regression
- Fixed an infinite re-issuance loop that could occur when an issuer
returns a certificate with a public key that doesn't match the CSR. The
issuing controller now validates the certificate before storing it and
fails with backoff on mismatch.
([#​8415](https://redirect.github.com/cert-manager/cert-manager/issues/8415 ),
[@​cert-manager-bot](https://redirect.github.com/cert-manager-bot ))
- Fixed an issue where HTTP-01 challenges failed when the Host header
contained an IPv6 address. This means that users can now issue IP
address certificates for IPv6 address subjects.
([#​8436](https://redirect.github.com/cert-manager/cert-manager/issues/8436 ),
[@​cert-manager-bot](https://redirect.github.com/cert-manager-bot ))
- Security (MODERATE): Fix a potential panic in the cert-manager
controller when a DNS response in an unexpected order was cached. If an
attacker was able to modify DNS responses (or if they controlled the DNS
server) it was possible to cause denial of service for the cert-manager
controller.
([#​8468](https://redirect.github.com/cert-manager/cert-manager/issues/8468 ),
[@​SgtCoDFish](https://redirect.github.com/SgtCoDFish ))
##### Other (Cleanup or Flake)
- Bump go to 1.25.6
([#​8459](https://redirect.github.com/cert-manager/cert-manager/issues/8459 ),
[@​SgtCoDFish](https://redirect.github.com/SgtCoDFish ))
</details>
---
### Configuration
📅 **Schedule**: Branch creation - "" (UTC), Automerge - At any time (no
schedule defined).
🚦 **Automerge**: Enabled.
♻ **Rebasing**: Never, or you tick the rebase/retry checkbox.
🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box
---
This PR was generated by [Mend Renovate](https://mend.io/renovate/ ).
View the [repository job
log](https://developer.mend.io/github/cloudnative-pg/plugin-barman-cloud ).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My41NS40IiwidXBkYXRlZEluVmVyIjoiNDMuNTUuNCIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiYXV0b21hdGVkIiwibm8taXNzdWUiXX0=-->
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-06 12:42:04 +11:00
Gabriele Bartolini
f12c978732
docs: add CONTRIBUTING.md file
...
release-please / release-please (push) Failing after 4s
Signed-off-by: Gabriele Bartolini <gabriele.bartolini@enterprisedb.com>
2026-03-02 17:03:09 +11:00
Marco Nenciarini
08ab561429
docs(apidoc): filter Optional markers from validation column ( #723 )
...
release-please / release-please (push) Failing after 4s
The crd-ref-docs tool v0.3.0 started rendering `+optional` Go markers as
`Optional: {}` in API documentation's validation column. This appeared
as redundant empty JSON objects since the Required column already
conveyed this information. The PR updates the documentation template to
filter these markers while keeping meaningful validation rules like
patterns and enums, and removes unnecessary customMarkers configuration.
Closes #722
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-02-04 13:46:51 +01:00
renovate[bot]
5001fe7831
fix(deps): update all non-major go dependencies ( #751 )
...
release-please / release-please (push) Failing after 3s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-02-02 12:04:15 +01:00
renovate[bot]
c1d46ac604
chore(deps): update fsouza/fake-gcs-server docker tag to v1.53.0 ( #755 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-02-02 12:03:29 +01:00
renovate[bot]
e91a126c9d
chore(deps): refresh pip-compile outputs ( #754 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-02-02 11:21:04 +01:00
Peggie
5cad545385
chore(main): release 0.11.0 ( #717 )
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 3s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
🤖 I have created a release *beep* *boop*
---
##
[0.11.0](https://github.com/cloudnative-pg/plugin-barman-cloud/compare/v0.10.0...v0.11.0 )
(2026-01-30)
### Features
* Add support for DefaultAzureCredential authentication mechanism
([#681 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/681 ))
([2c134ea2c134eafe4#702 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/702 ))
([fa546eafa546eae05#710 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/710 ))
([0153abb0153abba82#705 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/705 )
* **deps:** Update all non-major go dependencies
([#719 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/719 ))
([4a637d74a637d7c58#715 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/715 ))
([b3bcf6db3bcf6d9c1#748 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/748 ))
([71bd4d871bd4d808d#746 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/746 ))
([378c76a378c76a526#735 ](https://github.com/cloudnative-pg/plugin-barman-cloud/issues/735 )
---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please ). See
[documentation](https://github.com/googleapis/release-please#release-please ).
Signed-off-by: Peggie <info@cloudnative-pg.io>
2026-01-30 16:32:12 +01:00
Marco Nenciarini
d1ca8ed02b
docs(release): documentation for release 0.11.0 ( #749 )
...
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-30 15:06:29 +01:00
Andreas Lindhé
5cb779ed34
Remove mention of objects never being deleted ( #750 )
...
Signed-off-by: Andreas Lindhé <7773090+lindhe@users.noreply.github.com>
2026-01-30 14:56:26 +01:00
renovate[bot]
71bd4d808d
fix(deps): update module sigs.k8s.io/controller-runtime to v0.23.1 ( #748 )
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 4s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-29 19:39:06 +01:00
renovate[bot]
fa4de0dd0f
chore(deps): update dependency setuptools to v80.10.2 ( #747 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-29 18:11:37 +01:00
Andreas Lindhé
4d9d4dce49
Remove mention of s3UsePathStyle setting ( #745 )
...
Removed the mention of `s3UsePathStyle`, which has never been implemented.
For details, see #588
Signed-off-by: Andreas Lindhé <7773090+lindhe@users.noreply.github.com>
2026-01-29 17:42:20 +01:00
renovate[bot]
77800474c9
chore(deps): refresh pip-compile outputs ( #738 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-29 17:28:12 +01:00
renovate[bot]
be649e9dd8
chore(deps): update dependency controller-runtime to v0.23.1 ( #739 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-29 16:53:42 +01:00
renovate[bot]
e2099c6d89
chore(deps): lock file maintenance documentation dependencies ( #737 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-29 16:52:47 +01:00
Marco Nenciarini
378c76a526
fix: resolve WAL archiving performance and memory issues ( #746 )
...
The barman-cloud plugin experienced significant performance degradation
and memory growth compared to the embedded solution. WAL archiving was
noticeably slower and memory consumption grew over time.
Root cause: The sidecar uses a read-only filesystem which prevents
Python from creating bytecode at runtime. When Python finds missing or
stale bytecode (.pyc files), it attempts to recompile on every
invocation, causing high CPU usage and memory consumption. The previous
approach pre-compiled bytecode in a separate base image, but the
bytecode was marked as stale when copied between Docker stages,
triggering runtime recompilation attempts.
This change eliminates bytecode staleness by ensuring all Python
bytecode is properly compiled in the final image before the sidecar
starts. The image is now fully distroless and based on trixie
(previously it was distroless-based but copied unnecessary files from
the build stage), reducing size from 463MB to 270MB and package count
from 188 to 35, while maintaining zero HIGH/CRITICAL vulnerabilities.
Closes #656
Closes #711
Closes #735
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-29 16:43:55 +01:00
renovate[bot]
064eac2199
chore(deps): update golang docker tag to v1.25.6 ( #734 )
...
release-please / release-please (push) Failing after 39s
Barman Base Image / build (push) Failing after 4s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-18 22:33:55 +01:00
renovate[bot]
2c8d0aa8c4
chore(deps): update dependency go to v1.25.6 ( #733 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-18 22:32:51 +01:00
renovate[bot]
a8b214c460
chore(deps): update dependency dagger/dagger to v0.19.10 ( #730 )
...
release-please / release-please (push) Failing after 3s
Barman Base Image / build (push) Failing after 3s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-15 17:40:43 +01:00
Nils Vogels
604fb9c430
docs: Update documentation to use correct reference
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
Signed-off-by: Nils Vogels <n.vogels@aves-it.nl>
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-14 19:39:15 +01:00
renovate[bot]
fa546eae05
feat(deps): update barman-cloud to v3.17.0 ( #702 )
...
release-please / release-please (push) Failing after 3s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-14 13:39:57 +01:00
renovate[bot]
ad8a1767a7
chore(deps): update golangci/golangci-lint docker tag to v2.8.0 ( #721 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-14 12:20:09 +01:00
renovate[bot]
e5eb03e181
chore(deps): update all sagikazarmark daggerverse dependencies to 5dcc7e4 ( #728 )
...
Barman Base Image / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-13 18:04:08 +01:00
renovate[bot]
e943923f8f
chore(deps): refresh pip-compile outputs ( #704 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-13 18:03:43 +01:00
renovate[bot]
4a637d7c58
fix(deps): update all non-major go dependencies ( #719 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-13 16:14:41 +01:00
renovate[bot]
24fbc01a33
chore(deps): lock file maintenance ( #714 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-13 16:14:04 +01:00
Marco Nenciarini
5bc006b035
ci(e2e): pin emulator versions and fix Azurite compatibility ( #725 )
...
release-please / release-please (push) Failing after 2s
Pin all e2e test emulator images to specific SHA256 digests to ensure
immutability and prevent unexpected breakage from upstream changes.
The three emulators (Azurite for Azure, MinIO for S3, and
fake-gcs-server for GCS) were previously using the :latest tag, which
could cause test failures when new versions with breaking changes or
bugs were released.
Using SHA256 digests instead of version tags provides immutability
(ensures we always pull the exact same image), transparency (easy to
verify what's running via digest comparison), and Renovate compatibility
(can still track and propose updates). All pinned SHAs match the current
:latest tag, confirming we're using the same images that were previously
tested.
Updated Renovate configuration to track digest-based updates while
preserving version information in comments for human readability. Fixed
Renovate to scan test directories and handle multi-line regex patterns
for .go files.
Also fixed Azurite compatibility issue by adding the
--skipApiVersionCheck flag. Tests were failing because the PostgreSQL
container images install Python dependencies without version pinning,
which resulted in azure-storage-blob 12.28.0 (released January 6, 2026)
being installed. This version uses API version 2026-02-06 which Azurite
3.35.0 doesn't support yet. The flag allows Azurite to accept any API
version in the test environment.
Note that MinIO is now in maintenance mode and will not receive further
updates, but it has been included for completeness.
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-13 09:54:30 +01:00
Marco Nenciarini
4f5b407c0f
ci(docs): pin crd-ref-docs version to avoid upstream changes ( #724 )
...
release-please / release-please (push) Failing after 3s
Pin crd-ref-docs to v0.2.0 (latest stable release) instead of using the
master branch. This prevents issues from upstream changes and provides
better control over when to adopt new versions.
Configure Renovate to automatically track and update the version,
allowing us to review and test changes before merging.
Closes #722
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-12 14:19:00 +01:00
renovate[bot]
b3bcf6d9c1
fix(deps): update k8s.io/utils digest to 914a6e7 ( #715 )
...
release-please / release-please (push) Failing after 2s
Barman Base Image / build (push) Failing after 2s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-10 16:08:17 +01:00
renovate[bot]
757ca11304
chore(deps): update dependency dagger/dagger to v0.19.9 ( #718 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-10 16:03:47 +01:00
renovate[bot]
31acf7ce0f
chore(deps): update dependency barman to v3.17.0 ( #720 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-01-10 16:01:49 +01:00
Marco Nenciarini
95a26f5236
docs(authentication): add disclaimer about authentication methods testing ( #716 )
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
This PR adds a disclaimer to the object stores documentation clarifying
that the Barman Cloud Plugin does not independently test all
authentication methods supported by barman-cloud. The plugin's
responsibility is limited to passing the provided credentials to
barman-cloud, which then handles authentication according to its own
implementation.
This documentation change was decided by the maintainers as part of the
discussion around Azure Default Credentials support (#662 ).
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-09 14:29:06 +01:00
Armando Ruocco
2c134eafe4
feat: add support for DefaultAzureCredential authentication mechanism ( #681 )
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 1s
This commit adds support for the DefaultAzureCredential authentication
mechanism in Azure Blob Storage. Users can now use the
`useDefaultAzureCredentials` option to enable Azure's default credential
chain, which automatically discovers and uses available credentials in
the following order
1. Environment Variables (Service Principal)
2. Managed Identity
3. Azure CLI
4. Azure PowerShell
This is particularly useful when running on Azure Kubernetes Service
(AKS) with Workload Identity, eliminating the need to explicitly store
credentials in Kubernetes Secrets.
Signed-off-by: Armando Ruocco <armando.ruocco@enterprisedb.com>
Signed-off-by: Gabriele Fedi <gabriele.fedi@enterprisedb.com>
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
Co-authored-by: Gabriele Fedi <gabriele.fedi@enterprisedb.com>
Co-authored-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-08 14:58:27 +01:00
Marco Nenciarini
0153abba82
fix(azure): update barman-cloud with Azure validation fix ( #710 )
...
release-please / release-please (push) Failing after 2s
This change fixes Azure credentials validation to require a storage
account when using explicit credentials such as a storage key or SAS
token, and ensures the connection string is mutually exclusive with
other authentication parameters.
Closes #705
Related: cloudnative-pg/barman-cloud#177
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2026-01-08 09:25:15 +01:00
Peggie
1d7974516f
chore(main): release 0.10.0 ( #668 )
...
release-please / release-please (push) Failing after 3s
Barman Base Image / build (push) Failing after 2s
Signed-off-by: Peggie <info@cloudnative-pg.io>
2025-12-30 16:24:03 +01:00
Marco Nenciarini
afa39ba786
docs(release): documentation for release 0.10.0 ( #709 )
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2025-12-30 14:15:47 +01:00
Marco Nenciarini
b7b2b5b787
docs(targetTime): align documentation with cloudnative-pg ( #708 )
...
Follow-up to #700 to align the targetTime documentation with
cloudnative-pg standards. The note now covers all timestamp formats (not
just RFC 3339) and uses PostgreSQL format in the example to avoid
advertising the non-standard RFC3339-like format without timezone. A
warning has been added recommending to always specify an explicit
timezone to avoid ambiguity.
Related: #699
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
2025-12-30 13:15:34 +01:00
Marco Nenciarini
1f1d30043b
fix(targetTime): treat RFC3339-like timestamps without timezone as UTC ( #700 )
...
Update the machinery dependency to include the fix that ensures
RFC3339-like timestamps without timezone (e.g., "2024-01-15T10:30:00")
are interpreted as UTC.
The documentation has been updated to use a targetTime example with an
explicit Z suffix and to clarify that RFC3339-like timestamps without timezone
are interpreted as UTC.
Closes #699
Signed-off-by: Marco Nenciarini <marco.nenciarini@enterprisedb.com>
Signed-off-by: Armando Ruocco <armando.ruocco@enterprisedb.com>
Co-authored-by: Armando Ruocco <armando.ruocco@enterprisedb.com>
2025-12-30 09:56:59 +01:00
renovate[bot]
db96dcc128
fix(deps): update all non-major go dependencies ( #701 )
...
Deploy Docusaurus to GitHub Pages / build (push) Failing after 2s
Deploy Docusaurus to GitHub Pages / deploy (push) Has been skipped
release-please / release-please (push) Failing after 2s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-29 18:00:01 +01:00
renovate[bot]
359a99a517
chore(deps): lock file maintenance ( #703 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-29 16:51:22 +01:00
renovate[bot]
3f8d4f7257
fix(deps): update module google.golang.org/grpc to v1.78.0 ( #697 )
...
release-please / release-please (push) Failing after 3s
Barman Base Image / build (push) Failing after 11s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-23 14:23:04 +01:00
renovate[bot]
89bdef2466
chore(deps): update k8s.io/utils digest to 718f0e5 ( #696 )
...
release-please / release-please (push) Failing after 3s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-23 12:39:37 +01:00
renovate[bot]
95ef5dce1d
fix(deps): update k8s.io/utils digest to 383b50a ( #695 )
...
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-23 09:19:51 +01:00
renovate[bot]
1ce6a787af
chore(deps): update barman-cloud-base docker tag to v3.16.2-202512221525 ( #650 )
...
release-please / release-please (push) Failing after 4s
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-22 20:42:42 +01:00
