Skip to content

chore(deps): update helm release cert-manager to v1.13.3

Stackspin-renovate Bot requested to merge renovate/cert-manager-1.x into main

This MR contains the following updates:

Package Update Change
cert-manager patch v1.13.2 -> v1.13.3

Release Notes

cert-manager/cert-manager (cert-manager)


Compare Source

cert-manager is the easiest way to automatically manage certificates in Kubernetes and OpenShift clusters.

️ Read about the breaking changes in cert-manager 1.13 before you upgrade from a < v1.13 version!

This patch release contains fixes for the following security vulnerabilities in the cert-manager-controller:

  • GO-2023-2334: Decryption of malicious PBES2 JWE objects can consume unbounded system resources.

If you use ArtifactHub Security report or trivy, this patch will also silence the following warning about a vulnerability in code which is imported but not used by the cert-manager-controller:

  • CVE-2023-47108: DoS vulnerability in otelgrpc due to unbound cardinality metrics.

An ongoing security audit of cert-manager suggested some changes to the webhook code to mitigate DoS attacks, and these are included in this patch release.

Bug or Regression

Nothing has changed.

  • v1.11.0 → v1.12.0
  • v0.110.6 → v0.110.7
  • v1.0.3 → v1.0.4
  • v3.0.0 → v3.0.1
  • v1.2.4 → v1.3.0
  • v1.1.0 → v1.1.2
  • v0.5.9 → v0.6.0
  • v0.45.0 → v0.46.0
  • v0.44.0 → v0.46.0
  • v1.19.0 → v1.20.0
  • v1.19.0 → v1.20.0
  • v1.19.0 → v1.20.0
  • v1.19.0 → v1.20.0
  • v1.19.0 → v1.20.0
  • v1.19.0 → v1.20.0
  • v1.2.1 → v1.3.0
  • v0.13.0 → v0.14.0
  • f966b18 → b8732ec
  • f966b18 → b8732ec
  • v1.58.3 → v1.59.0

Nothing has changed.


📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Merge request reports