From 0c518abc747c2e5dc727cb506869886a36095ccc Mon Sep 17 00:00:00 2001 From: Stefan Prodan Date: Tue, 23 Dec 2025 12:47:17 +0200 Subject: [PATCH 1/2] Set roadmap milestones for 2026 Signed-off-by: Stefan Prodan (cherry picked from commit a8a2d4ded911ee85010b84a8c7221cc7e17f6ef0) --- content/en/roadmap.md | 206 ++++++++++-------------------------------- 1 file changed, 49 insertions(+), 157 deletions(-) diff --git a/content/en/roadmap.md b/content/en/roadmap.md index 0ca466695..d6522b694 100644 --- a/content/en/roadmap.md +++ b/content/en/roadmap.md @@ -28,199 +28,91 @@ and security issues over new features. Depending on the volume of incoming issue the complexity of the fixes, the roadmap may be adjusted and new features may be postponed to the next milestone. -### v2.5 (Q1 2025) +### v2.8 (Q1 2026) -**Status**: Completed on 2025-02-20 (v2.5.0 [changelog](https://fluxcd.io/blog/2025/02/flux-v2.5.0/)) +**Status**: In Progress -The primary goal of this milestone is to integrate GitHub App for Git repositories authentication -and to extend Flux functionality with Common Expression Language(CEL) support. +The primary goal of this milestone is to add support for Helm v4 to helm-controller, +and to reduce the mean time to recovery (MTTR) for app deployments. + +- **OCI integrations** + - [ ] [Add support for verification with cosign v3](https://github.com/fluxcd/source-controller/issues/1923) -- **Git integrations** - - [x] [Support for GitHub App auth in source-controller](https://github.com/fluxcd/source-controller/pull/1647) - - [x] [Support for GitHub App auth in image-automation-controller](https://github.com/fluxcd/image-automation-controller/pull/780) - - [x] [Generate GitHub App secrets with the Flux CLI](https://github.com/fluxcd/flux2/pull/5103) +- **Helm integrations** + - [ ] [Add support for Helm v4 to helm-controller](https://github.com/fluxcd/helm-controller/issues/1300) + - [ ] [Reduce the mean time to recovery (MTTR) for Helm release](https://github.com/fluxcd/flux2/issues/5584) - **Kustomize integrations** - - [x] [Fine-grained control of garbage collection with `.spec.deletionPolicy`](https://github.com/fluxcd/kustomize-controller/pull/1314) - - [x] [Enable decryption of secrets generated by Kustomize components](https://github.com/fluxcd/kustomize-controller/pull/1283) - - [x] [Enable decryption of Kustomize patches](https://github.com/fluxcd/kustomize-controller/pull/1286) - - [x] [Custom Health Checks using CEL](https://github.com/fluxcd/flux2/pull/5151) + - [ ] [Reduce the mean time to recovery (MTTR) in case of a failed deployment](https://github.com/fluxcd/flux2/issues/5584) - **Alerting integrations** - - [x] [Custom Event Metadata from Annotations](https://github.com/fluxcd/flux2/pull/4809) - - [x] [Support Git commit status updates for OCIRepository](https://github.com/fluxcd/flux2/issues/5148) - -- **Webhook integrations** - - [x] [Implement `Receiver` resource filtering with CEL](https://github.com/fluxcd/notification-controller/pull/948) + - [ ] [Support ArtifactGenerator notifications](https://github.com/fluxcd/notification-controller/issues/1207) -- **Troubleshoot helpers** - - [x] [Implement `flux debug helmrelease --show-values`](https://github.com/fluxcd/flux2/pull/5106) - - [x] [Implement `flux debug kustomization --show-vars`](https://github.com/fluxcd/flux2/pull/5117) +- **Source extensions** + - [x] [Allow ExternalArtifact as a source in ArtifactGenerator](https://github.com/fluxcd/source-watcher/issues/259) + - [x] [Allow HelmChart as a source in ArtifactGenerator](https://github.com/fluxcd/source-watcher/issues/260) + - [ ] [Implement tarball extraction in ArtifactGenerator](https://github.com/fluxcd/source-watcher/issues/301) - **Conformance testing** - - [x] [End-to-end testing for Kubernetes 1.32](https://github.com/fluxcd/flux2/pull/5111) - - [x] [End-to-end testing for GitHub App auth](https://github.com/fluxcd/pkg/pull/818) + - [x] End-to-end testing for Kubernetes 1.35 - **EOL and Deprecations** - - End support for Flux v2.2.x - - End support for Kubernetes v1.29.x - -### v2.6 (Q2 2025) - -**Status**: Completed on 2025-05-29 (v2.6.0 [changelog](https://fluxcd.io/blog/2025/05/flux-v2.6.0/)) + - End support for Flux v2.5.x + - End support for Kubernetes v1.32.x + - Remove deprecated APIs in group `source.toolkit.fluxcd.io/v1beta2` + - Remove deprecated APIs in group `kustomize.toolkit.fluxcd.io/v1beta2` + - Remove deprecated APIs in group `helm.toolkit.fluxcd.io/v2beta2` -The primary goal of this milestone is to make a generally available release for the Flux OCI Artifacts APIs -and add support for object-level workload identity authentication for container registries. +### v2.9 (Q2 2026) -- **OCI artifacts integrations** - - [x] Promote the `OCIRepository` API to `v1` - - [x] Promote to stable the Flux CLI commands: - - `flux build artifact` - - `flux push artifact` - - `flux pull artifact` - - `flux tag artifact` - - `flux diff artifact` - - `flux list artifacts` - - [x] [Cache registry credentials for cloud providers](https://github.com/fluxcd/pkg/issues/642) - - [x] [Introduce object-level workload identity for OCIRepository](https://github.com/fluxcd/source-controller/pull/1790) +**Status**: Provisional -- **Image automation** - - [x] [Introduce object-level workload identity for ImageRepository](https://github.com/fluxcd/image-reflector-controller/pull/760) - - [x] [Add support for updating OCI digests](https://github.com/fluxcd/flux2/issues/4245) +The primary goal of this milestone is to add support for Helm [Chart API v3](https://helm.sh/de/community/hips/hip-0020), +and extend Flux server-side apply with field ignore rules. -- **Git integrations** - - [x] [Add support for sparse checkout in `GitRepository`](https://github.com/fluxcd/source-controller/pull/1774) - - [x] [Add support for Git HTTP/S mutual TLS](https://github.com/fluxcd/source-controller/issues/1761#issuecomment-2796296665) - - [x] [Implement caching for GitHub Application auth tokens](https://github.com/fluxcd/source-controller/pull/1745) +- **Helm integrations** + - [ ] Add support for Helm Chart API v3 to source-controller + - [ ] Add support for Helm Chart API v3 to helm-controller - **Kustomize integrations** - - [x] [Introduce object-level workload identity for KMS decryption](https://github.com/fluxcd/kustomize-controller/pull/1412) - - [x] [Implement `WaitForTermination` deletion policy](https://github.com/fluxcd/kustomize-controller/pull/1444) + - [ ] [Extend Server-Side Apply with field ignore rules](https://github.com/fluxcd/pkg/issues/696) - **Alerting integrations** - - [x] [Add support for GitHub App auth to `Provider` API](https://github.com/fluxcd/notification-controller/issues/996) - - [x] [Customise the ID of the Git commit status with CEL expressions](https://github.com/fluxcd/notification-controller/pull/1068) - - [x] [Add support for workload identity auth for Azure Event Hub to `Provider` API](https://github.com/fluxcd/notification-controller/issues/1047) - -- **Conformance testing** - - [x] End-to-end testing for Kubernetes 1.33 - -- **EOL and Deprecations** - - End support for Flux v2.3.x - - End support for Kubernetes v1.30.x - - Deprecate APIs in group `source.toolkit.fluxcd.io/v1beta2` - -### v2.7 (Q3 2025) - -**Status**: Completed on 2025-09-30 (v2.7.0 [changelog](https://fluxcd.io/blog/2025/05/flux-v2.7.0/)) - -The primary goal of this milestone is to make a generally available release for the Flux image automation APIs, -and make Flux watch for changes in ConfigMaps and Secrets referenced in Kustomizations and HelmReleases. - -- **Image automation** - - [x] Promote the `ImageUpdateAutomation` API to `v1` - - [x] Promote the `ImageRepository` API to `v1` - - [x] Promote the `ImagePolicy` API to `v1` - - [x] [Add support for Git sparse checkout](https://github.com/fluxcd/image-automation-controller/pull/920) - - [x] [Support object-level workload identity auth for Azure DevOps](https://github.com/fluxcd/image-automation-controller/pull/951) + - [ ] [Add support for posting comments to GitHub/GitLab](https://github.com/fluxcd/notification-controller/issues/1073) - **Source extensions** - - [x] Introduce the `ExternalArtifact` API to consume artifacts from external systems - - [x] Introduce the `ArtifactGenerator` API to compose and decompose Flux sources - -- **Kustomize integrations** - - [x] [Controller-level decryption for Age Keys](https://github.com/fluxcd/kustomize-controller/issues/1465) - - [x] [Transactional apply for `ClusterRole` and `ClusterRoleBinding`](https://github.com/fluxcd/pkg/issues/956) - - [x] [Add support for remote cluster authentication using Workload Identity](https://github.com/fluxcd/kustomize-controller/pull/1476) - - [x] [Watch ConfigMaps and Secrets referenced in Kustomizations](https://github.com/fluxcd/flux2/issues/5446) - - [x] [Extend the readiness evaluation of dependencies with CEL expressions](https://github.com/fluxcd/kustomize-controller/pull/1491) - - [x] [Track reconciliation attempts over time in `.status.history`](https://github.com/fluxcd/kustomize-controller/pull/1502) - - [x] [Cancel Health Checks on new source revision](https://github.com/fluxcd/kustomize-controller/pull/1520) - -- **Helm integrations** - - [x] [Extend HelmRelease post-renderer with CommonMetadata](https://github.com/fluxcd/helm-controller/pull/1223) - - [x] [Add support for remote cluster authentication using Workload Identity](https://github.com/fluxcd/helm-controller/pull/1249) - - [x] [Watch ConfigMaps and Secrets referenced in HelmReleases](https://github.com/fluxcd/helm-controller/pull/1258) - - [x] [Extend the readiness evaluation of dependencies with CEL expressions](https://github.com/fluxcd/helm-controller/pull/1271) - - [x] [Record the last Helm release action duration in status](https://github.com/fluxcd/helm-controller/pull/1282) - - [x] [Introduce `RetryOnFailure` lifecycle management strategy](https://github.com/fluxcd/helm-controller/issues/1278) - -- **Alerting integrations** - - [x] [Add support for OpenTelemetry tracing to `Provider` API](https://github.com/fluxcd/notification-controller/pull/1149) - - [x] [Add mTLS support to `Provider` API](https://github.com/fluxcd/notification-controller/pull/1137) - - [x] [Extend `Provider` API with `spec.proxySecretRef`](https://github.com/fluxcd/notification-controller/pull/1133) - - [x] [Support HTTP/S proxy for Telegram](https://github.com/fluxcd/notification-controller/pull/1140) - - [x] [Support workload identity auth for Azure DevOps commit status updates](https://github.com/fluxcd/notification-controller/issues/1008) - - [x] [Support object-level workload identity auth for Google Pub/Sub](https://github.com/fluxcd/notification-controller/pull/1154) - -- **Git integrations** - - [x] [Support mTLS for GitHub App transport in source-controller](https://github.com/fluxcd/source-controller/pull/1860) - - [x] [Support mTLS for GitHub App transport in image-automation-controller](https://github.com/fluxcd/image-automation-controller/pull/947) - - [x] [Support object-level workload identity auth for Azure DevOps](https://github.com/fluxcd/source-controller/pull/1871) - -- **Bucket integrations** - - [x] [Support object-level workload identity auth for Google Cloud Storage](https://github.com/fluxcd/source-controller/pull/1862) - - [x] [Support object-level workload identity auth for AWS S3](https://github.com/fluxcd/source-controller/pull/1868) - - [x] [Support object-level workload identity auth for Azure Blob Storage](https://github.com/fluxcd/source-controller/pull/1875) - -- **OCI integrations** - - [x] [Support workload identity auth for Azure private cloud](https://github.com/fluxcd/pkg/pull/1002) - -- **Security enhancements** - - [x] [Multi-tenancy lockdown support with controller flags](https://github.com/fluxcd/flux2/issues/5465) - -- **CLI improvements** - - [x] [Implement `flux migrate` command](https://github.com/fluxcd/flux2/pull/5473) - - [x] [Implement `flux [reconcile|suspend|resume] image policy` commands](https://github.com/fluxcd/flux2/pull/5492) - - [x] [Add `--show-history` to `flux debug` commands](https://github.com/fluxcd/flux2/issues/5503) + - [ ] [SDK for facilitating the development of 3rd party controllers based on the `ExternalArtifact` API](https://github.com/fluxcd/flux2/issues/5504) - **Conformance testing** - - [x] End-to-end testing for Kubernetes 1.34 + - [ ] End-to-end testing for Kubernetes 1.36 - **EOL and Deprecations** - - End support for Flux v2.4.x - - End support for Kubernetes v1.31.x - - Deprecate APIs in group `image.toolkit.fluxcd.io/v1beta2` - - Remove deprecated APIs in group `source.toolkit.fluxcd.io/v1beta1` - - Remove deprecated APIs in group `kustomize.toolkit.fluxcd.io/v1beta1` - - Remove deprecated APIs in group `helm.toolkit.fluxcd.io/v2beta1` - - Remove deprecated APIs in group `notification.toolkit.fluxcd.io/v1beta1` - - Remove deprecated APIs in group `image.toolkit.fluxcd.io/v1beta1` - - Remove the `autologin` deprecated flags from `image-reflector-controller` - - Remove deprecated template fields `.Updated` and `.Changed.ImageResult` in `ImageUpdateAutomation` - -### v2.8 (TBA) + - End support for Flux v2.6.x + - End support for Kubernetes v1.33.x + - Remove deprecated APIs in group `image.toolkit.fluxcd.io/v1beta2` + - Remove deprecated APIs in group `notification.toolkit.fluxcd.io/v1beta2` -**Status**: Provisional +### v2.10 (Q3 2026) -The primary goal of this milestone is to add support for Helm v4 to helm-controller, -and to extend Flux server-side apply with field ignore rules. - -- **OCI integrations** - - [ ] [Add support for verification with cosign v3](https://github.com/fluxcd/source-controller/issues/1923) +**Status**: Provisional -- **Helm integrations** - - [ ] [Add support for Helm v4 to helm-controller](https://github.com/fluxcd/helm-controller/issues/1300) +The primary goal of this milestone is to make a generally available release for the Flux Alerting APIs. -- **Kustomize integrations** - - [ ] [Extend Server-Side Apply with field ignore rules](https://github.com/fluxcd/pkg/issues/696) - - [ ] [Reduce the mean time to recovery (MTTR) in case of a failed deployment](https://github.com/fluxcd/flux2/issues/5584) +- **Alerting integrations** + - [ ] Promote the `Event` API to `v1` + - [ ] Promote the `Alert` API to `v1` + - [ ] Promote the `Provider` API to `v1` - **Source extensions** - - [ ] [SDK for facilitating the development of 3rd party controllers based on the `ExternalArtifact` API](https://github.com/fluxcd/flux2/issues/5504) - - [ ] [Allow ExternalArtifact as a source in ArtifactGenerator](https://github.com/fluxcd/source-watcher/issues/259) - - [ ] [Allow HelmChart as a source in ArtifactGenerator](https://github.com/fluxcd/source-watcher/issues/260) + - [ ] Build external artifacts locally with `flux build artifact generator` - **Conformance testing** - - [ ] End-to-end testing for Kubernetes 1.35 + - [ ] End-to-end testing for Kubernetes 1.37 - **EOL and Deprecations** - - End support for Flux v2.5.x - - End support for Kubernetes v1.32.x - - Remove deprecated APIs in group `source.toolkit.fluxcd.io/v1beta2` - - Remove deprecated APIs in group `kustomize.toolkit.fluxcd.io/v1beta2` - - Remove deprecated APIs in group `helm.toolkit.fluxcd.io/v2beta2` - - Remove deprecated APIs in group `notification.toolkit.fluxcd.io/v1beta2` + - End support for Flux v2.7.x + - End support for Kubernetes v1.34.x + - Deprecate APIs in group `notification.toolkit.fluxcd.io/v1beta3` ## Request for comments From 944bfa59f8ef71429d0538aa2fbdbc474a0950f0 Mon Sep 17 00:00:00 2001 From: Stefan Prodan Date: Mon, 29 Dec 2025 11:47:56 +0200 Subject: [PATCH 2/2] Announce 2026 roadmap Signed-off-by: Stefan Prodan (cherry picked from commit c425d4bbd56e43ec02e08c2f0fe1569db11ec280) --- content/en/_index.html | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/content/en/_index.html b/content/en/_index.html index 7a1f4d600..e67762ffe 100644 --- a/content/en/_index.html +++ b/content/en/_index.html @@ -66,8 +66,8 @@ all have great dashboards for you. --- -{{% home/announce emoji="📢" url="/kubecon/" %}} -Flux at KubeCon NA +{{% home/announce emoji="📢" url="/roadmap/" %}} +Check out the Roadmap for 2026 {{% /home/announce %}}