Update dependency Pulumi.Kubernetes to v4

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
Pulumi.Kubernetes (source)	3.23.1 → 4.28.0

---

Release Notes

pulumi/pulumi-kubernetes (Pulumi.Kubernetes)

v4.28.0

Changed

• Upgrade Kubernetes schema and libraries to v1.35.2.

v4.27.0

Fixed

• #​4181 Fix PVC timeout when updating to a storage class with WaitForFirstConsumer bind mode.

Added

• #​3661 Support for OCI login inside the provider process. Providing a username/password to Chart v4 and Release v3 will now login to private OCI
  registries as expected.
  (#​2911 and #​1914)

v4.26.0

Fixed

• #​4122 Implements a new provider config option, alwaysRender, which sets Diff_Someto true when used in combination with renderYAMLtoDirectory.
  This allows for user-defined opt-in behavior for YAML manifests to be idempotently generated on every pulumi up, and for Update() to show these changes to a user.

• Fixed a race condition in StatefulSet await logic where Pulumi could
  incorrectly report a rollout as complete before the controller had processed
  the update. This occurred when Pulumi checked status fields before the
  controller updated observedGeneration, causing stale "ready" values to be
  trusted.

• Fixed a regression of
  #​2943 which could
  cause Deployments to erroneously report diffs.

Changed

• Upgraded helm.sh/helm to v3.18.6. (#​3969)

• #​4156 Upgrade Kubernetes schema and libraries to v1.35.1

v4.25.0

v4.24.1

Fixed

• Fixed a regression of #​2943 which could cause Deployments to erroneously report diffs.

Changed

• Upgraded helm.sh/helm to v3.18.6. (#​3969)

v4.24.0

Added

• Added a plainHttp option to the v4.Chart resource. (#​3250)

Changed

• The pulumi.com/waitFor annotation now uses an
  RFC9535-compliant JSONPath
  parser. This makes it possible to wait for more complex scenarios.

  For example:

  • To wait for a Pod's status.phase to be "Running" or "Succeeded":

    pulumi.com/waitFor: "jsonpath={.status[?@​ == 'Running' || @​ == 'Succeeded' ]}"

  • To wait for for an object to have a "Failed" or "Complete" condition with
    a "True" value:

    pulumi.com/waitFor: "jsonpath={.conditions[?(@​.type=='Failed'||@​.type=='Complete')].status}=True

  (Tools like jsonpath.com are very helpful for
  ensuring your JSONPath expression works as expected.)

  Importantly, please note that kubectl wait --for=jsonpath=... supports only
  a subset of RFC9535. This means some complex waitFor annotations will not
  be reproducible with kubectl.

  Existing expressions should continue to work normally with one notable
  exception: a selector like .items[] now requires an explicit wildcard, i.e.
  .items[*].

  As a reminder, the pulumi.com/waitFor annotation is experimental and
  subject to change. Similarly, RFC9535 is still only proposed and may also
  change in the future.

• enableConfigMapMutable and enableSecretMutable are now stable.
  (#​3886)

Fixed

• Helm resources all now use the correct registry/config.json file for
  credentials. For backward-compatibility registry.json is preferred if
  it exists. (#​3606)

• Fixed an issue where deletions could take longer than necessary. (#​3317)

• Significantly reduced memory usage. (#​3713)

• Fixed incorrect deprecation warnings for VolumeAttributesClass. (#​3772)

• SecretPatch inputs are now automatically marked as secret.

v4.23.0

Changed

• Updated Kubernetes schemas and libraries to v1.33.0. (#​3619)

v4.22.2

Fixed

• Fix panic when valueYamlFiles field in helm.v3.Release resources are nil (#​3601)

v4.22.1

Fixed

• Fix race condition in Deleted condition (#​3550)

v4.22.0

Changed

• Update Pulumi dependency to v3.153.1 (#​3534)
• Update ESC dependency to v0.13.0 (#​3551)

Fixed

• Fix race condition in Deleted condition. (#​3550)

v4.21.1

Added

• Windows executable releases are now signed. (#​3455)

v4.21.0

Changed

• Upgrade pulumi-java to version v1.0.0 (#​3436)

v4.20.0

Added

• Added support for autonaming configuration specified by the engine.
  (#​3363)

v4.19.0

Changed

• Updated Kubernetes schemas and libraries to v1.32.0. (#​3343)

v4.18.4

Changed

• [nodejs] Resolves punycode deprecation warnings by using native fetch instead of node-fetch.
  (#​3301)

Fixed

• pulumi.com/waitFor and other await annotations now correctly take precedence over default await logic.
  (#​3329)

• JSONPath expressions used with the pulumi.com/waitFor annotation will no longer hang indefinitely if they match non-primitive fields.
  (#​3345)

• [java] CRDs that contain any x-kubernetes-* fields can now be succesfully created and managed by Pulumi.
  (#​3325)

v4.18.3

Fixed

• Objects created on clusters older than 1.18 will no longer see a
  before-first-apply conflict when Pulumi performs a server-side apply for
  the first time. (#​3275)

• The provider's user agent is now set correctly when communicating with
  the Kubernetes API server.
  (#​3267)

v4.18.2

Fixed

• The provider's Pulumi dependency was updated to version v3.136.1 to address
  potential "pulumi.runtime.invokeOutput is not a function" errors.
  (pulumi/pulumi#17518)

v4.18.1

Added

• Schemagen is now a library that can be consumed by other packages. (#​3187)

Changed

• Updated beta Kubernetes client libraries to stable v1.31 release. (#​3196)

v4.18.0

Added

• The new enableSecretMutable provider configuration option treats changes to
  Secrets as updates instead of replacements (similar to the
  enableConfigMapMutable option).

  The default replacement behavior can be preserved for a particular Secret
  by setting its immutable field to true.
  (#​2291)

  Note: These options (enableSecretMutable and enableConfigMapMutable)
  may become the default behavior in a future v5 release of the provider.
  Programs that depend on the replacement of Secrets and ConfigMaps (e.g.
  to trigger updates for downstream dependencies like Deployments) are
  recommended to explicitly specify immutable: true.

• A warning is now emitted if an object has finalizers which might be blocking
  deletion. (#​1418)

• EXPERIMENTAL: Generic await logic is now available as an opt-in feature.
  Running a program with PULUMI_K8S_AWAIT_ALL=true will now cause Pulumi to
  await readiness for all resources, including custom resources.

  Generic readiness is determined according to some well-known conventions (like
  the "Ready" condition) as determined by cli-utils.

  Pulumi's current behavior, without this feature enabled, is to assume some
  resources are immediately available, which can cause downstream resources to
  fail.

  Existing readiness logic is unaffected by this setting.
  (#​2996)

• EXPERIMENTAL: The pulumi.com/waitFor annotation was introduced to allow
  for custom readiness checks. This override Pulumi's own await logic for the
  resource (however the pulumi.com/skipAwait annotation still takes
  precedence).

  The value of this annotation can take 3 forms:

  1. A string prefixed with jsonpath= followed by a
     JSONPath
     expression and an optional value.

     The JSONPath expression accepts the same syntax as
     kubectl get -o jsonpath={...}.

     If a value is provided, the resource is considered ready when the
     JSONPath expression evaluates to the same value. For example this
     resource expects its "phase" field to have a value of "Running":

     `pulumi.com/waitFor: "jsonpath={.status.phase}=Running"`
     

     If a value is not provided, the resource will be considered ready when
     any value exists at the given path, similar to kubectl wait --for jsonpath=.... This resource will wait until it has a webhook configured
     with a CA bundle:

     `pulumi.com/waitFor: "jsonpath={.webhooks[*].clientConfig.caBundle}"`
     

  2. A string prefixed with condition= followed by the type of the
     condition and an optional status. This matches the behavior of
     kubectl wait --for=condition=... and will wait until the resource has a
     matching condition. The expected status defaults to "True" if not
     specified.

     `pulumi.com/waitFor: "condition=Synced"`
     
     `pulumi.com/waitFor: "condition=Reconciling=False"`
     

  3. A string containing a JSON array of multiple jsonpath= and
     condition= expressions.

     `pulumi.com/waitFor: '["jsonpath={.foo}", "condition=Bar"]'` 
     

• Pulumi will now emit logs for any Kubernetes "Warning" Events associated with
  resources being created, updated or deleted.
  (https://redirect.github.com/pulumi/pulumi-kubernetes/pull/3135/files)

Fixed

• The immutable field is now respected for ConfigMaps when the provider is configured with enableConfigMapMutable.
  (#​3181)

• Fixed a panic that could occur during deletion. (#​3157)

v4.17.1

Fixed

• Fixed a panic that would occur when updating ServiceAccounts. (#​3166)
• Fixed a panic that could occur when using clusterIdentifier provider configuration. (#​3168)

v4.17.0

Changed

• Updated Kubernetes schemas and libraries to v1.31.0. (#​3144)

Fixed

• Services with selectors targeting 0 Pods will no longer hang indefinitely.
  (#​605)
• Services without selectors will no longer hang indefinitely.
  (#​799)

v4.16.0

Added

• clusterIdentifier configuration can now be used to manually control the
  replacement behavior of a provider resource.
  (#​3068)

• Pod errors now include the pod's last termination state, as well as the pod's
  termination message if available.
  (#​3091)

  The pod's termination message can be helpful in CrashLoopBackOff situations but
  will only be reported if it was correctly configured.

  By default, the pod's termination message is read from
  /dev/termination-log. This location can be configured with
  terminationMessagePath.

  Use terminationMessagePolicy: FallbackToLogsOnError to use the pod's logs
  as its termination message.

• Documentation is now generated for all languages supported by overlay types.
  (#​3107)

Fixed

• Updated logic to accurately detect if a resource is a Patch variant. (#​3102)
• Added Java as a supported language for CustomResource overlays. (#​3120)
• Status messages reported during updates are now more accurately scoped to the
  affected resource. (#​3128)
• PersistentVolumeClaims with a bind mode of WaitForFirstConsumer will no
  longer hang indefinitely. (#​3130)
• [java] Fixed an issue where child resources could not be registered by Chart v4. (#​3119)

v4.15.0

Changed

• CustomResource should have plain apiVersion and kind properties (#​3079)
• Updated Kubernetes schema and libraries to v1.31.0.
  (#​3144)

Fixed

• Prevent CustomResourceDefinitions from always being applied to the cluster during preview operations (#​3096)

v4.14.0

Added

• TypedDict input types for the Python SDK (#​3070)

Changed

• The Release resource no longer ignores empty lists when merging values. (#​2995)

Fixed

• Chart v4 now handles an array of assets. (#​3061)
• Fix previews always failing when a resource is to be replaced (#​3053)

v4.13.1

Added

• Kustomize Directory v2 resource (#​3036)
• CustomResource for Java SDK (#​3020)

Changed

• Update to pulumi-java v0.12.0 (#​3025)

Fixed

• Fixed Chart v4 fails on update (#​3046)
• Fixed a panic that occurs when diffing Job resources containing replaceUnready annotations and an unreachable cluster connection. (#​3024)
• Fixed spurious diffing for updates when in renderYaml mode (#​3030)

v4.12.0

Added

• Added a new Helm Chart v4 resource. (#​2947)
• Added support for deletion propagation policies (e.g. Orphan). (#​3011)
• Server-side apply conflict errors now include the original field manager's name. (#​2983)

Changed

• Pulumi will now wait for DaemonSets to become ready. (#​2953)
• The Release resource's merge behavior for valueYamlFiles now more closely matches Helm's behavior. (#​2963)

Fixed

• Helm Chart V3 previews no longer fail when the cluster is unreachable. (#​2992)
• Fixed a panic that could occur when a missing field became null. (#​1970)

v4.11.0

• [dotnet] Unknowns for previews involving an uninitialized provider (#​2957)
• Update Kubernetes schemas and libraries to v1.30.0 (#​2932)

v4.10.0

• ConfigGroup V2 (#​2844)
• ConfigFile V2 (#​2862)
• Bugfix for ambiguous kinds (#​2889)
• [yaml/v2] Support for resource ordering (#​2894)
• Bugfix for deployment await logic not referencing the correct deployment status (#​2943)

New Features

A new MLC-based implementation of ConfigGroup and of ConfigFile is now available in the "yaml/v2" package. These resources are
usable in all Pulumi languages, including Pulumi YAML and in the Java Pulumi SDK.

Note that transformations aren't supported in this release (see pulumi/pulumi#12996).

v4.9.1

• Use async invokes to avoid hangs/stalls in Python helm, kustomize, and yaml components (#​2863)

v4.9.0

• Fix SSA ignoreChanges by enhancing field manager path comparisons (#​2828)
• Update nodejs SDK dependencies (#​2858, #​2861)

v4.8.1

• skip normalization in preview w/ computed fields (#​2846)

v4.8.0

• Fix DiffConfig issue when when provider's kubeconfig is set to file path (#​2771)
• Fix for replacement having incorrect status messages (#​2810)
• Use output properties for await logic (#​2790)
• Support for metadata.generateName (CSA) (#​2808)
• Fix unmarshalling of Helm values yaml file (#​2815)
• Handle unknowns in Helm Release resource (#​2822)

v4.7.1

• Fix deployment await logic for accurate rollout detection

v4.7.0

• Fix JSON encoding of KubeVersion and Version on Chart resource (.NET SDK) (#​2740)
• Fix option propagation in component resources (Python SDK) (#​2717)
• Fix option propagation in component resources (.NET SDK) (#​2720)
• Fix option propagation in component resources (NodeJS SDK) (#​2713)
• Fix option propagation in component resources (Go SDK) (#​2709)

Breaking Changes

In previous versions of the pulumi-kubernetes .NET SDK, the ConfigFile and ConfigGroup component resources inadvertently assigned the wrong parent to the child resource(s).
This would happen when the component resource itself had a parent; the child would be assigned that same parent. This also had the effect of disregarding the component resource's provider in favor of the parent's provider.

For example, here's a before/after look at the component hierarchy:

Before:

├─ pkg:index:MyComponent            parent
│  ├─ kubernetes:core/v1:ConfigMap  cg-options-cg-options-cm-1
│  ├─ kubernetes:yaml:ConfigFile    cg-options-testdata/options/configgroup/manifest.yaml
│  ├─ kubernetes:core/v1:ConfigMap  cg-options-configgroup-cm-1
│  ├─ kubernetes:yaml:ConfigFile    cg-options-testdata/options/configgroup/empty.yaml
│  └─ kubernetes:yaml:ConfigGroup   cg-options

After:

└─ pkg:index:MyComponent                  parent
   └─ kubernetes:yaml:ConfigGroup         cg-options
      ├─ kubernetes:yaml:ConfigFile       cg-options-testdata/options/configgroup/manifest.yaml
      │  └─ kubernetes:core/v1:ConfigMap  cg-options-configgroup-cm-1
      └─ kubernetes:core/v1:ConfigMap     cg-options-cg-options-cm-1

This release addresses this issue and attempts to heal existing stacks using aliases. This is effective at avoiding a replacement except in the case where the child was created with the wrong provider. In this case, Pulumi will suggest a replacement of the child resource(s), such that they use the correct provider.

v4.6.1

• Fix: Refine URN lookup by using its core type for more accurate resource identification (#​2719)

v4.6.0

• Fix: Helm OCI chart deployment fails in Windows (#​2648)
• Fix: compute version field in Check for content detection (#​2672)
• Fix: Fix: Helm Release fails with "the server could not find the requested resource" (#​2677)
• Fix Helm Chart resource lookup key handling for objects in default namespace (#​2655)
• Update Kubernetes schemas and libraries to v1.29.0 (#​2690)
• Fix panic when using PULUMI_KUBERNETES_MANAGED_BY_LABEL env var with SSA created objects (#​2711)
• Fix normalization of base64 encoded secrets.data values to strip whitespace (#​2715)

Resources Renamed

• #/types/kubernetes:core/v1:ResourceRequirements
  • renamed to: #/types/kubernetes:core/v1:VolumeResourceRequirements
• #/types/kubernetes:core/v1:ResourceRequirementsPatch
  • renamed to: #/types/kubernetes:core/v1:VolumeResourceRequirementsPatch

New Resources

• flowcontrol.apiserver.k8s.io/v1.FlowSchema
• flowcontrol.apiserver.k8s.io/v1.FlowSchemaList
• flowcontrol.apiserver.k8s.io/v1.FlowSchemaPatch
• flowcontrol.apiserver.k8s.io/v1.PriorityLevelConfiguration
• flowcontrol.apiserver.k8s.io/v1.PriorityLevelConfigurationList
• flowcontrol.apiserver.k8s.io/v1.PriorityLevelConfigurationPatch
• networking.k8s.io/v1alpha1.ServiceCIDR
• networking.k8s.io/v1alpha1.ServiceCIDRList
• networking.k8s.io/v1alpha1.ServiceCIDRPatch
• storage.k8s.io/v1alpha1.VolumeAttributesClass
• storage.k8s.io/v1alpha1.VolumeAttributesClassList
• storage.k8s.io/v1alpha1.VolumeAttributesClassPatch

v4.5.6

v4.5.5

• Fix: Make the invoke calls for Helm charts and YAML config resilient to the value being None or an empty dict (#​2665)

v4.5.4

• Fix: Helm Release: chart requires kubeVersion (#​2653)

v4.5.3

• Fix: Update pulumi version to 3.91.1 to pick up fixes in python codegen (#​2647)

v4.5.2

• Fix: Do not patch field managers for Patch resources (#​2640)

v4.5.1

• Revert: Normalize provider inputs and make available as outputs (#​2627)

v4.5.0

• helm.v3.ChartOpts: Add KubeVersion field that can be passed to avoid asking the kubernetes API server for the version (#​2593)
• Fix for Helm Import regression (#​2605)
• Improved search functionality for Helm Import (#​2610)
• Fix SSA dry-run previews when a Pulumi program uses Apply on the status subresource (#​2615)
• Normalize provider inputs and make available as outputs (#​2598)

v4.4.0

• Fix normalizing fields with empty objects/slices (#​2576)
• helm.v3.Release: Improved cancellation support (#​2579)
• Update Kubernetes client library to v0.28.2 (#​2585)

v4.3.0

• helm.v3.Release: Detect changes to local charts (#​2568)
• Ignore read-only inputs in Kubernetes object metadata (#​2571)
• Handle fields specified in ignoreChanges gracefully without needing a refresh when drift has occurred (#​2566)

v4.2.0

• Reintroduce switching builds to pyproject.toml; when publishing the package to PyPI both
  source-based and wheel distributions are now published. For most users the installs will now favor
  the wheel distribution, but users invoking pip with --no-binary :all: will continue having
  installs based on the source distribution.
• Return mapping information for terraform conversions (#​2457)
• feature: added skipUpdateUnreachable flag to proceed with the updates without failing (#​2528)

v4.1.1

• Revert the switch to pyproject.toml and wheel-based PyPI publishing as it impacts users that run pip with --no-binary
  (see #​2540)

v4.1.0

• fix: ensure CSA does not hit API Server for preview (#​2522)
• Fix helm.v3.Release replace behavior (#​2532)
• [sdk/python] Switch to pyproject.toml and wheel-based PyPI publishing (#​2493)
• Update Kubernetes to v1.28.0 (#​2526)

v4.0.3

• fix: ensure data is not dropped when normalizing Secrets (#​2514)

v4.0.2

• [sdk/python] Drop unused pyyaml dependency (#​2502)
• Fix continuous diff for Secret stringData field (#​2511)
• Fix diff for CRD with status set on input (#​2512)

v4.0.1

• Gracefully handle undefined resource schemes (#​2504)
• Fix diff for CRD .spec.preserveUnknownFields (#​2506)

v4.0.0

Breaking changes:

• Remove deprecated enableDryRun provider flag (#​2400)
• Remove deprecated helm/v2 SDK (#​2396)
• Remove deprecated enableReplaceCRD provider flag (#​2402)
• Drop support for Kubernetes clusters older than v1.13 (#​2414)
• Make all resource output properties required (#​2422)

Other changes:

• Enable Server-side Apply by default (#​2398)
• Automatically fall back to client-side preview if server-side preview fails (#​2419)
• Drop support for legacy pulumi.com/initialApiVersion annotation (#​2443)
• Overhaul logic for resource diffing (#​2445)
  • Drop usage of the "kubectl.kubernetes.io/last-applied-configuration" annotation.
  • Compute preview diffs using resource inputs rather than making a dry-run API call.
  • Automatically update .metadata.managedFields to work with resources that were managed with client-side apply, and later upgraded to use server-side apply.
  • Fix a bug with the diff calculation so that resource drift is detected accurately after a refresh.
• Update go module version to v4 (#​2466)
• Upgrade to latest helm dependency (#​2474)
• Improve error handling for List resources (#​2493)

v3.30.2

• Improve deleteUnreachable workflow for unreachable clusters (#​2489)

v3.30.1

• Add experimental helmChart support to kustomize.Directory (#​2471)

v3.30.0

• [sdk/python] Fix bug with class methods for YAML transformations (#​2469)
• Fix StatefulSet await logic for OnDelete update (#​2473)
• Skip wait for Pods on headless Service (#​2475)

v3.29.1

• Fix provider handling of CustomResources with Patch suffix (#​2438)
• Improve status message for Deployment awaiter (#​2456)

v3.29.0

• Fix regression in file/folder checking logic that caused incorrect parsing of compressed chart files (#​2428)
• Update Patch resources rather than replacing (#​2429)

v3.28.1

• Add a "strict mode" configuration option (#​2425)

v3.28.0

• Handle resource change from static name to autoname under SSA (#​2392)
• Fix Helm release creation when the name of the chart conflicts with the name of a folder in the current working directory (#​2410)
• Remove imperative authentication and authorization resources: TokenRequest, TokenReview, LocalSubjectAccessReview,
  SelfSubjectReview, SelfSubjectAccessReview, SelfSubjectRulesReview, and SubjectAccessReview (#​2413)
• Improve check for existing resource GVK (#​2418)

v3.27.1

• Update Kubernetes client library to v0.27.1 (#​2380)
• Increase default client burst and QPS to avoid throttling (#​2381)
• Add HTTP request timeout option to KubeClientSettings (#​2383)

v3.27.0

• Change destroy operation to use foreground cascading delete (#​2379)

v3.26.0

• Do not await during .get or import operations (#​2373)

v3.25.0

• Update Kubernetes to v1.27.0

New resources

authentication.k8s.io/v1beta1.SelfSubjectReview
authentication.k8s.io/v1beta1.SelfSubjectReviewPatch
certificates.k8s.io/v1alpha1.ClusterTrustBundle
certificates.k8s.io/v1alpha1.ClusterTrustBundleList
certificates.k8s.io/v1alpha1.ClusterTrustBundlePatch
networking.k8s.io/v1alpha1.IPAddress
networking.k8s.io/v1alpha1.IPAddressList
networking.k8s.io/v1alpha1.IPAddressPatch
resource.k8s.io/v1alpha2.PodSchedulingContext
resource.k8s.io/v1alpha2.PodSchedulingContextList
resource.k8s.io/v1alpha2.PodSchedulingContextPatch
resource.k8s.io/v1alpha2.ResourceClaim
resource.k8s.io/v1alpha2.ResourceClaimList
resource.k8s.io/v1alpha2.ResourceClaimPatch
resource.k8s.io/v1alpha2.ResourceClaimTemplate
resource.k8s.io/v1alpha2.ResourceClaimTemplateList
resource.k8s.io/v1alpha2.ResourceClaimTemplatePatch
resource.k8s.io/v1alpha2.ResourceClass
resource.k8s.io/v1alpha2.ResourceClassList
resource.k8s.io/v1alpha2.ResourceClassPatch

Resources moved from v1alpha1 to v1alpha2

• "kubernetes:resource.k8s.io/v1alpha1:ResourceClaimTemplateList"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClassList"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClassPatch"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClaimList"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClass"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClaimTemplate"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClaimTemplatePatch"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClaim"
• "kubernetes:resource.k8s.io/v1alpha1:ResourceClaimPatch"

Resources moved from v1beta1 to v1

• "kubernetes:storage.k8s.io/v1beta1:CSIStorageCapacity"
• "kubernetes:storage.k8s.io/v1beta1:CSIStorageCapacityPatch"
• "kubernetes:storage.k8s.io/v1beta1:CSIStorageCapacityList"

Resources renamed

• "kubernetes:resource.k8s.io/v1alpha1:PodSchedulingList"
  • Renamed to kubernetes:resource.k8s.io/v1alpha2:PodSchedulingContextList
• "kubernetes:resource.k8s.io/v1alpha1:PodSchedulingPatch"
  • Renamed to kubernetes:resource.k8s.io/v1alpha2:PodSchedulingContextPatch
• "kubernetes:resource.k8s.io/v1alpha1:PodScheduling"
  • Renamed to kubernetes:resource.k8s.io/v1alpha2:PodSchedulingContext

New Features

• Allow instantiation of kustomize.Directory with a not fully configured provider (#​2347)

v3.24.3

• Handle CSA to SSA field manager conflicts (#​2354)

v3.24.2

• Update Pulumi Java SDK to v0.8.0 (#​2337)
• Remove empty keys when merging unstructured resources for diffing (#​2332)

v3.24.1

• Move invoke_yaml_decode into ConfigGroup for python (#​2317)
• Upgrade to latest helm dependency (#​2318)

v3.24.0

• Fix unencrypted secrets in the state outputs after Secret.get (#​2300)
• Upgrade to latest helm and k8s client dependencies (#​2292)
• Fix await status for Job and Pod (#​2299)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.