Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the dependencies group with 3 updates #25

Merged
merged 1 commit into from
Aug 26, 2024
Merged

Bump the dependencies group with 3 updates #25

merged 1 commit into from
Aug 26, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 26, 2024

Bumps the dependencies group with 3 updates: io.strimzi:api, org.apache.maven.plugins:maven-dependency-plugin and org.apache.maven.plugins:maven-checkstyle-plugin.

Updates io.strimzi:api from 0.42.0 to 0.43.0

Release notes

Sourced from io.strimzi:api's releases.

0.43.0

⚠️ Important: Strimzi 0.43 is the last version with support for Kubernetes 1.23 and 1.24. From Strimzi 0.44.0 on, we will support only Kubernetes 1.25 and newer.

Main changes since 0.42.0

This release contains the following new features and improvements:

  • Add support for Apache Kafka 3.8.0
  • Remove support for Apache Kafka 3.6.0, 3.6.1, and 3.6.2
  • Example alerts for Connectors/Tasks in failed state
  • Support for specifying additional volumes and volume mounts in Strimzi custom resources
  • Strimzi Drain Cleaner updated to 1.2.0 (included in the Strimzi installation files)
  • Additional OAuth configuration options have been added for 'oauth' authentication on the listener and the client. On the listener serverBearerTokenLocation and userNamePrefix have been added. On the client accessTokenLocation, clientAssertion, clientAssertionLocation, clientAssertionType, and saslExtensions have been added.
  • Support for custom Cruise Control API users
  • HTTP bridge updated to 0.30.0
  • Unregistration of KRaft nodes after scale-down
  • Kafka Exporter updated to 1.8.0 (and the Grafana dashboard updated to work with it)

All changes are under the 0.43.0 milestone.

Watch out also for some notable changes, deprecations, and removals:

  • The storage overrides for configuring per-broker storage class are deprecated and will be removed in the future. If you are using the storage overrides, you should migrate to KafkaNodePool resources and use multiple node pools with a different storage class each.

Upgrading from Strimzi 0.42.0

See the documentation for upgrade instructions.

Upgrading from Strimzi 0.22 or earlier

Direct upgrade from Strimzi 0.22 or earlier is not supported anymore! You have to upgrade first to one of the previous versions of Strimzi. You will also need to convert the CRD resources. For more details, see the documentation.

Container images

The following container images are part of this release:

Name Image
Operators quay.io/strimzi/operator@sha256:d3732245f34afaa6b571f1f912e1cd017891b22003d6367ae8ca059b2a5cb13c
Apache Kafka 3.7.0 quay.io/strimzi/kafka@sha256:d27cf5bf3624e18ba705246b14f92d12b8a15eb8551b13abf027cf71b549baf0
Apache Kafka 3.7.1 quay.io/strimzi/kafka@sha256:ad06ead5125bce87498b1582a76e78143a6d21408ac4b12bb7e6007aa4cabd84
Apache Kafka 3.8.0 quay.io/strimzi/kafka@sha256:b2f4e8895e9ed66228512ce14aec685101fa75dc329128d47cb1c15e3aef3c9c
Strimzi Bridge quay.io/strimzi/kafka-bridge@sha256:80f329ecd3ba96fac12e75be874dce0debc8395337737581de34238ce11c8fb1
Kaniko executor quay.io/strimzi/kaniko-executor@sha256:ef1a39c363e145041d80103c3c12da9429ce06cf21dff6fb1fb75d0c0ed9c35b
Maven Builder quay.io/strimzi/maven-builder@sha256:6414f8f3985f221b0eda53867c00494140108d17579c4dcbbc93934bb00e5d49

New Contributors

... (truncated)

Changelog

Sourced from io.strimzi:api's changelog.

0.43.0

  • Add support for Apache Kafka 3.8.0. Remove support for Apache Kafka 3.6.0, 3.6.1, and 3.6.2.
  • Added alerts for Connectors/Tasks in failed state.
  • Support for specifying additional volumes and volume mounts in Strimzi custom resources
  • Strimzi Drain Cleaner updated to 1.2.0 (included in the Strimzi installation files)
  • Additional OAuth configuration options have been added for 'oauth' authentication on the listener and the client. On the listener serverBearerTokenLocation and userNamePrefix have been added. On the client accessTokenLocation, clientAssertion, clientAssertionLocation, clientAssertionType, and saslExtensions have been added.
  • Add support for custom Cruise Control API users
  • Update HTTP bridge to latest 0.30.0 release
  • Unregistration of KRaft nodes after scale-down
  • Update Kafka Exporter to 1.8.0 and update the Grafana dashboard to work with it

Changes, deprecations and removals

  • The storage overrides for configuring per-broker storage class are deprecated and will be removed in the future. If you are using the storage overrides, you should migrate to KafkaNodePool resources and use multiple node pools with a different storage class each.
  • Strimzi 0.43.0 (and any of its patch releases) is the last Strimzi version with support for Kubernetes 1.23 and 1.24. From Strimzi 0.44.0 on, we will support only Kubernetes 1.25 and newer.
Commits
  • 23c0fb0 Prepare for 0.43.O release
  • e9ea238 Update the Kafka Exporter to 1.8.0 (#10472)
  • 1e7ecb0 Update of unit tests to use KRaft - part 9 (#10468)
  • 251ad91 Add note about Kube 1.23 and 1.24 plans to the Helm Chart README (#10469)
  • 0e24bbe Fix broken spotbugs in system tests (#10470)
  • f8c4bc1 [ST] Fix Keycloak connection refused issue (#10452)
  • ce5d124 fix: fixed the token-permission and pinned dependencies issue (#10463)
  • f747ab4 Update Maven task version in Azure Pipelines to Maven@4 (#10455)
  • 9181fa3 Address various warnings in ResourceUtils class (#10456)
  • 4b54ddc [ST] Remove usage of examples from our template classes and add namespaceName...
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-dependency-plugin from 3.7.1 to 3.8.0

Commits
  • 75814c7 [maven-release-plugin] prepare release maven-dependency-plugin-3.8.0
  • 50397c4 [MDEP-903] Upgrade to Doxia 2.0.0 Milestone Stack
  • 1115ecb Bump org.codehaus.plexus:plexus-archiver from 4.9.2 to 4.10.0
  • 5288cec Bump org.apache.maven.plugins:maven-plugins from 42 to 43
  • ea4d8e2 Bump jettyVersion from 9.4.54.v20240208 to 9.4.55.v20240627
  • 2d0b82a Bump org.codehaus.plexus:plexus-io from 3.4.2 to 3.5.0
  • 86b7772 (doc) Remove repeated word
  • 94e1caf Bump org.jsoup:jsoup from 1.17.2 to 1.18.1
  • 06b4273 Bump org.assertj:assertj-core from 3.26.0 to 3.26.3
  • 71cee33 Remove outdated invoker conditions
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-checkstyle-plugin from 3.4.0 to 3.5.0

Commits
  • 868abc9 [maven-release-plugin] prepare release maven-checkstyle-plugin-3.5.0
  • 9043f8a [MCHECKSTYLE-446] Dynamically calculate xrefLocation/xrefTestLocation
  • 0e7bd00 [MCHECKSTYLE-445] Upgrade to Doxia 2.0.0 Milestone Stack
  • b92666d Bump org.apache.maven.plugins:maven-plugins from 42 to 43
  • 3699112 use new Reproducible Central badge endpoint
  • d1076a3 Bump org.apache.commons:commons-lang3 from 3.15.0 to 3.16.0
  • b5a4300 Bump org.apache.commons:commons-lang3 from 3.14.0 to 3.15.0
  • ccb9d9f Directory, not folder
  • fbe29ae Remove outdated invoker conditions
  • 67aeb01 Bump org.codehaus.mojo:animal-sniffer-maven-plugin from 1.23 to 1.24
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the dependencies group with 3 updates
3fc0493 
Bumps the dependencies group with 3 updates: [io.strimzi:api](https://github.com/strimzi/strimzi-kafka-operator), [org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin) and [org.apache.maven.plugins:maven-checkstyle-plugin](https://github.com/apache/maven-checkstyle-plugin).


Updates `io.strimzi:api` from 0.42.0 to 0.43.0
- [Release notes](https://github.com/strimzi/strimzi-kafka-operator/releases)
- [Changelog](https://github.com/strimzi/strimzi-kafka-operator/blob/main/CHANGELOG.md)
- [Commits](strimzi/strimzi-kafka-operator@0.42.0...0.43.0)

Updates `org.apache.maven.plugins:maven-dependency-plugin` from 3.7.1 to 3.8.0
- [Release notes](https://github.com/apache/maven-dependency-plugin/releases)
- [Commits](apache/maven-dependency-plugin@maven-dependency-plugin-3.7.1...maven-dependency-plugin-3.8.0)

Updates `org.apache.maven.plugins:maven-checkstyle-plugin` from 3.4.0 to 3.5.0
- [Commits](apache/maven-checkstyle-plugin@maven-checkstyle-plugin-3.4.0...maven-checkstyle-plugin-3.5.0)

---
updated-dependencies:
- dependency-name: io.strimzi:api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: org.apache.maven.plugins:maven-dependency-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: org.apache.maven.plugins:maven-checkstyle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 26, 2024
@kornys kornys merged commit ef451b3 into main Aug 26, 2024
3 checks passed
@kornys kornys deleted the dependabot/maven/dependencies-d770517531 branch August 26, 2024 07:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kornys kornys kornys approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kornys