Update dependency zarf-dev/zarf to v0.71.1

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Update	Change
zarf-dev/zarf	minor	v0.60.0 → v0.71.1
zarf-dev/zarf	minor	0.60.0 → 0.71.1

---

Release Notes

zarf-dev/zarf (zarf-dev/zarf)

v0.71.1

Compare Source

Bug Fixes

• actions: shell quote action wait bug (#​4588) (331f46e)

What's Changed

🚀 Updates

• fix(actions): shell quote action wait bug by @​AustinAbro321 in #​4588
• chore(main): release 0.71.1 by @​zarf-release-please[bot] in #​4590

Full Changelog: zarf-dev/zarf@v0.71.0...v0.71.1

v0.71.0

Compare Source

⚠ BREAKING CHANGES

• registry-proxy: built-in mtls support (#​4162)
• wait: create wait package and call it directly within actions (#​4549)
• remove global plainHTTP and insecureSkipTLSVerify in favor of optional parameters (#​4561)
• move v1alpha1 validation logic to it's own package (#​4544)

Features

• add nodeSelector to zarf agent and registry charts (#​4565) (a23e909)
• error early during healthchecks when status is terminal (#​4547) (eb54546)
• prune: allow for pruning to continue on manifest unknown (#​4566) (6814ead)
• registry-proxy: built-in mtls support (#​4162) (b493381)
• release: add release please workflow and docs (#​4558) (b4cb102)
• remove direct usage of parent command zarf package inspect (#​4548) (1904293)
• remove global plainHTTP and insecureSkipTLSVerify in favor of optional parameters (#​4561) (3eed404)
• sign: implement support for sigstore bundle format (#​4519) (9c3d446)
• values: support for chart values merge (#​4581) (81df552)

Bug Fixes

• helm: preserve block scalar semantics (#​4541) (8655c1c)

Refactoring

• move v1alpha1 validation logic to it's own package (#​4544) (502a6be)
• wait: create wait package and call it directly within actions (#​4549) (2498e1c)

What's Changed

🚀 Updates

• feat: remove direct usage of parent command zarf package inspect by @​AustinAbro321 in #​4548
• fix(helm): preserve block scalar semantics by @​brandtkeller in #​4541
• feat: error early during healthchecks when status is terminal by @​AustinAbro321 in #​4547
• docs: fix grammatical error in OnlyHasImageLayers doc comment by @​jasonwashburn in #​4552
• chore: update dos games package 1.3.0 by @​AustinAbro321 in #​4555
• docs: clarify data injections deprecation timeline by @​AustinAbro321 in #​4556
• chore: update dos-games references to 1.3 by @​AustinAbro321 in #​4557
• refactor!: move v1alpha1 validation logic to it's own package by @​AustinAbro321 in #​4544
• feat(release): add release please workflow and docs by @​brandtkeller in #​4558
• feat(sign): implement support for sigstore bundle format by @​brandtkeller in #​4519
• feat(prune): allow for pruning to continue on manifest unknown by @​brandtkeller in #​4566
• feat: add nodeSelector to zarf agent and registry charts by @​rodneyxr in #​4565
• feat!: remove global plainHTTP and insecureSkipTLSVerify in favor of optional parameters by @​AustinAbro321 in #​4561
• chore: update TSC list in CONTRIBUTING.md by @​mkcp in #​4575
• chore(docs): add Brandt Keller to TSC by @​brandtkeller in #​4578
• feat(values): support for chart values merge by @​brandtkeller in #​4581
• refactor(wait)!: create wait package and call it directly within actions by @​AustinAbro321 in #​4549
• feat(registry-proxy)!: built-in mtls support by @​AustinAbro321 in #​4162
• chore(main): release 0.71.0 by @​zarf-release-please[bot] in #​4564

📦 Dependencies

• chore(deps): bump github/codeql-action from 4.31.10 to 4.31.11 by @​dependabot[bot] in #​4554
• chore(deps): bump actions/checkout from 6.0.1 to 6.0.2 in the actions-organization group by @​dependabot[bot] in #​4553
• chore(deps): bump sigs.k8s.io/controller-runtime from 0.22.4 to 0.23.0 by @​dependabot[bot] in #​4534
• chore(deps): bump github/codeql-action from 4.31.11 to 4.32.0 by @​dependabot[bot] in #​4576

New Contributors

• @​zarf-release-please[bot] made their first contribution in #​4564

Full Changelog: zarf-dev/zarf@v0.70.1...v0.71.0

v0.70.1

Compare Source

What's Changed

🚀 Updates

• feat: deprecate data injections by @​AustinAbro321 in #​4068
• feat(build): support arch detection and macos development by @​brandtkeller in #​4512
• feat(agent): mutate read-only OCI volumes by @​a1994sc in #​3235
• feat: add support for Argo CD ApplicationSets by @​robinlieb in #​4348
• feat!: remove insecure flag by @​AustinAbro321 in #​4521
• docs: update kiwix example and migration guide to use read-only oci volumes by @​AustinAbro321 in #​4520
• fix: inputting the same credentials as zarf state should not re-generate passwords by @​AustinAbro321 in #​4523
• chore(deps): npm updates for /site by @​brandtkeller in #​4526
• docs: replace adr reference with zep reference by @​AustinAbro321 in #​4532
• feat(load): support explicit VerificationStrategy by @​brandtkeller in #​4540
• chore(docs): 2026 roadmap by @​brandtkeller in #​4525
• feat: move value pkg out of internal by @​mkcp in #​4543
• feat: add --set-values flags and migrate --set to alias new --set-variables by @​mkcp in #​4466

📦 Dependencies

• chore(deps): bump the golang group across 1 directory with 2 updates by @​dependabot[bot] in #​4514
• chore(deps): bump the actions-organization group with 2 updates by @​dependabot[bot] in #​4529
• chore(deps): bump github/codeql-action from 4.31.9 to 4.31.10 by @​dependabot[bot] in #​4530
• chore(deps): bump the k8s group across 1 directory with 5 updates by @​dependabot[bot] in #​4485
• chore(deps): bump github.com/sigstore/fulcio from 1.8.3 to 1.8.5 by @​dependabot[bot] in #​4517
• chore(deps): bump github.com/sigstore/cosign/v3 from 3.0.3 to 3.0.4 by @​dependabot[bot] in #​4515
• chore(deps): bump diff from 5.2.0 to 5.2.2 in /site by @​dependabot[bot] in #​4533

Full Changelog: zarf-dev/zarf@v0.69.0...v0.70.1

v0.70.0

Compare Source

v0.69.0

Compare Source

👋 Hey Everyone! Zarf v0.69.0 has been released. :zarf:

Notably we have a few SDK breaking changes as we charge towards v1.0.0 (expect more on this soon):

1. Support for the injector being architecture aware (and thus only scheduling on a matching architecture node) has required updates to the cluster.StartInjection() function. This only impacts those who are using the SDK for injection.
2. SkipSignatureValidation has been removed from the packager.LoadOptions and layout.PackageLayoutOptions structs with the addition of a Verify field. This change impacts SDK users who explicitly set the SkipSignatureValidation field on the mentioned options.

Regarding package verification and item 2 above - Zarf is now attempting verification when possible on all deployments but only enforcing verification when --verify is set (or package.verify: true in your config file). See issue #​4048 for more context on decision. --skip-signature-validation flag has been deprecated but retained so as to not break any users with automation.

Note!: If you are explicitly relying on Zarf to fail deployments based on verification - you will need to set --verify to have parity with previous behaviors.

Other improvements or fixes:

• k3s upstream bugs and init package updates - #​4435
• fixes for flux objects with the registry proxy feature - #​4486
• arbitrary manifest naming support - #​4493

As well as other dependency updates and bug fixes for user and development experience.

Thanks to all of those who contributed to this release!

What's Changed

🚀 Updates

• feat!: update injector to respect arch of package by @​a1994sc in #​4405
• test: use arch of local machine in external tests by @​robinlieb in #​4488
• chore(dependencies): update k3s version to 1.34.3 by @​AustinAbro321 in #​4435
• feat: log git repo clone by @​AustinAbro321 in #​4498
• fix: properly mutate flux ocirepo and helmrepo objects when using the registry proxy by @​AustinAbro321 in #​4486
• chore: remove re-declared vars in test loops by @​AustinAbro321 in #​4500
• fix: remove values log by @​AustinAbro321 in #​4503
• CI: image archive test flake by @​AustinAbro321 in #​4506
• feat(create): allow creation with specified and arbitrary manifest file by @​brandtkeller in #​4493
• feat!(verify): deprecate --skip-signature-validation in favor of --verify by @​brandtkeller in #​4457

📦 Dependencies

• chore(deps): bump github/codeql-action from 4.31.8 to 4.31.9 by @​dependabot[bot] in #​4494
• chore(deps): bump the cosign-providers group across 1 directory with 4 updates by @​dependabot[bot] in #​4478
• chore(deps): bump helm.sh/helm/v3 from 3.19.3 to 3.19.4 by @​dependabot[bot] in #​4483
• chore(deps): bump github.com/BurntSushi/toml from 1.5.0 to 1.6.0 by @​dependabot[bot] in #​4496
• chore(deps): bump github.com/goccy/go-yaml from 1.19.0 to 1.19.1 by @​dependabot[bot] in #​4497
• chore(deps): bump github.com/fluxcd/pkg/apis/meta from 1.23.0 to 1.24.0 by @​dependabot[bot] in #​4502
• chore(deps): bump github.com/goccy/go-yaml from 1.19.1 to 1.19.2 by @​dependabot[bot] in #​4504

Full Changelog: zarf-dev/zarf@v0.68.1...v0.69.0

v0.68.1

Compare Source

What's Changed

🚀 Updates

• fix!: correct proxy var by @​AustinAbro321 in #​4451
• refactor!: generate schema within Zarf by @​AustinAbro321 in #​4392
• fix(tools,wait): add an http client with a timeout slightly shorter than waitInterval to wait.go by @​mkcp in #​4453
• fix(deps): bump cosign to v3.0.3 to resolve vulnerabilities by @​brandtkeller in #​4462
• fix(make): add linxu arm detection to make build by @​brandtkeller in #​4465
• chore(schema): synchronize v1alpha1 schema with generation by @​brandtkeller in #​4463
• feat: add ability to store package documentation by @​AustinAbro321 in #​4393
• feat: support importing image archives into a package by @​AustinAbro321 in #​4334
• fix: use fully qualified reference during image archive duplication check by @​AustinAbro321 in #​4489
• fix: move image archive validation to assemble by @​AustinAbro321 in #​4490

📦 Dependencies

• chore(deps): bump github/codeql-action from 4.31.5 to 4.31.7 by @​dependabot[bot] in #​4449
• chore(deps): bump golangci/golangci-lint-action from 9.1.0 to 9.2.0 by @​dependabot[bot] in #​4448
• chore(deps): bump the actions-organization group with 3 updates by @​dependabot[bot] in #​4447
• chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.2 to 5.7.0 by @​dependabot[bot] in #​4450
• chore(deps): bump the golang group across 1 directory with 3 updates by @​dependabot[bot] in #​4455
• chore(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 by @​dependabot[bot] in #​4433
• chore(deps): bump the cosign-providers group across 1 directory with 4 updates by @​dependabot[bot] in #​4459
• chore(deps): bump github.com/fairwindsops/pluto/v5 from 5.22.6 to 5.22.7 by @​dependabot[bot] in #​4461
• chore(deps): bump helm.sh/helm/v3 from 3.19.2 to 3.19.3 by @​dependabot[bot] in #​4472
• chore(deps): bump the k8s group across 1 directory with 6 updates by @​dependabot[bot] in #​4468
• chore(deps): bump the actions-organization group with 2 updates by @​dependabot[bot] in #​4475
• chore(deps): bump codecov/codecov-action from 5.5.1 to 5.5.2 by @​dependabot[bot] in #​4477
• chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8 by @​dependabot[bot] in #​4476
• chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.11 to 1.4.12 by @​dependabot[bot] in #​4479
• chore(deps): bump github.com/mikefarah/yq/v4 from 4.49.2 to 4.50.1 by @​dependabot[bot] in #​4480

Full Changelog: zarf-dev/zarf@v0.67.0...v0.68.1

v0.68.0

Compare Source

v0.67.0

Compare Source

BREAKING CHANGES:

• Zarf now allows setting static injector nodeport values. Check your nodeport configuration values.
• Values files can now be referenced from any directory during zarf package create. Check that your package builds work as expected if you are using the values alpha feature.

Notables:
New command alias zarf package push for zarf package publish
Values schema validation now catches configuration errors earlier - as well as zarf dev inspect can analyze values configurations (alpha)
Custom security contexts can be configured for registry deployments
The SDK now exports the images and features packages

Bug fixes include:

• Image detection properly handles underscores in names
• zarf package publish works when package names match existing directories
• Agent release discovery works with custom-named init packages
• Archive creation post-pull clears attributes and sorts files for reproducible package checksums

Dependency updates as always - Helm, K9s, etc

What's Changed

🚀 Updates

• refactor: remove init from src/cmd by @​AustinAbro321 in #​4365
• ci: cleanup pre-installed tools more aggressively and always log cluster info in test-upgrade by @​AustinAbro321 in #​4367
• fix/docs(values/templating): fix and test values-templating example by @​mkcp in #​4377
• chore(deps): update deps to remove replace directive by @​brandtkeller in #​4381
• feat!: allow setting static injector nodeport by @​AustinAbro321 in #​4382
• refactor: generate schema purely through go by @​AustinAbro321 in #​4385
• docs(examples): fix misleading comment in examples/values-templating by @​mkcp in #​4386
• fix: find the agent release when deployed with a custom named init package by @​AustinAbro321 in #​4398
• chore: add push alias for zarf package publish by @​joonas in #​4404
• docs(examples): add required flag to zarf dev generate command example by @​JoshuaFurman in #​4415
• chore(feature): make feature package public by @​mkcp in #​4399
• feat(sdk): export images package by @​AustinAbro321 in #​4424
• fix: properly find images containing underscores by @​jasonwashburn in #​4391
• fix: publish breaks when Zarf package name and existing directory nam… by @​ericwyles in #​4402
• fix: log correct image count by @​AustinAbro321 in #​4430
• fix(archive): clear attributes and sort files on archive creation by @​brandtkeller in #​4432
• chore(deps): bump helm, k9s, and grype to resolve vulns by @​brandtkeller in #​4438
• feat: allow custom security context by @​robertmarsal in #​4434
• feat(values): dev inspect by @​mkcp in #​4268
• feat(values): add schema validation by @​mkcp in #​4252
• fix!: allow values files from any directory on Zarf package create by @​Racer159 in #​4403
• fix(values): write and read values.schema.json from a fixed location by @​mkcp in #​4441
• chore: ignore inspect values file by @​AustinAbro321 in #​4444

📦 Dependencies

• chore(deps): bump the golang group across 1 directory with 2 updates by @​dependabot[bot] in #​4372
• chore(deps): bump github.com/docker/cli from 29.0.0+incompatible to 29.0.1+incompatible in the docker group across 1 directory by @​dependabot[bot] in #​4373
• chore(deps): bump sigs.k8s.io/kustomize/api from 0.20.1 to 0.21.0 by @​dependabot[bot] in #​4380
• chore(deps): bump golang.org/x/crypto from 0.44.0 to 0.45.0 by @​dependabot[bot] in #​4389
• chore(deps): bump github.com/docker/cli from 29.0.1+incompatible to 29.0.2+incompatible in the docker group across 1 directory by @​dependabot[bot] in #​4379
• chore(deps): bump astro from 5.14.4 to 5.16.0 in /site by @​dependabot[bot] in #​4390
• chore(deps): bump github.com/fluxcd/source-controller/api from 1.7.3 to 1.7.4 by @​dependabot[bot] in #​4396
• chore(deps): bump the cosign-providers group across 1 directory with 4 updates by @​dependabot[bot] in #​4394
• chore(deps): bump github.com/mikefarah/yq/v4 from 4.48.1 to 4.48.2 by @​dependabot[bot] in #​4395
• chore(deps): bump github.com/go-git/go-git/v5 from 5.16.3 to 5.16.4 by @​dependabot[bot] in #​4409
• chore(deps): bump github/codeql-action from 4.31.2 to 4.31.4 by @​dependabot[bot] in #​4408
• chore(deps): bump golangci/golangci-lint-action from 9.0.0 to 9.1.0 by @​dependabot[bot] in #​4407
• chore(deps): bump github.com/google/go-containerregistry from 0.20.6 to 0.20.7 by @​dependabot[bot] in #​4412
• chore(deps): bump github.com/docker/cli from 29.0.2+incompatible to 29.0.4+incompatible in the docker group across 1 directory by @​dependabot[bot] in #​4411
• chore(deps): bump github.com/mikefarah/yq/v4 from 4.48.2 to 4.49.2 by @​dependabot[bot] in #​4413
• chore(deps): bump github/codeql-action from 4.31.4 to 4.31.5 by @​dependabot[bot] in #​4422
• chore(deps): bump aws-actions/configure-aws-credentials from 5.1.0 to 5.1.1 by @​dependabot[bot] in #​4421
• chore(deps): bump the actions-organization group with 4 updates by @​dependabot[bot] in #​4406
• chore(deps): bump github.com/goccy/go-yaml from 1.18.0 to 1.19.0 by @​dependabot[bot] in #​4423

New Contributors

• @​JoshuaFurman made their first contribution in #​4415
• @​ericwyles made their first contribution in #​4402
• @​robertmarsal made their first contribution in #​4434

Full Changelog: zarf-dev/zarf@v0.66.0...v0.67.0

v0.66.0

Compare Source

What's Changed

🚀 Updates

• chore: expand the LogWriter implementation by @​Racer159 in #​4318
• fix(ci): switch to internal registry chart for external test by @​brandtkeller in #​4340
• feat: add support for kustomize plugins by @​JeffResc in #​4285
• feat: add check version requirement by @​AustinAbro321 in #​4308
• feat!(sign): add package sign command by @​brandtkeller in #​4301
• docs: update wordpress example and tutorial by @​robinlieb in #​4326
• feat(verify): package verify command support by @​brandtkeller in #​4325
• fix(actions): make go-templates opt-in by default by @​mkcp in #​4344
• fix: publish unique images in the injector by @​AustinAbro321 in #​4349
• docs: update custom init tutorial by @​AustinAbro321 in #​4358
• feat: add flag to update images in zarf.yaml by @​robinlieb in #​4335
• chore(deps): replace containerd/selinux for vulnerabilities by @​brandtkeller in #​4363

📦 Dependencies

• chore(deps): bump github.com/fairwindsops/pluto/v5 from 5.22.5 to 5.22.6 by @​dependabot[bot] in #​4337
• chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.10 to 1.4.11 by @​dependabot[bot] in #​4329
• chore(deps): bump github/codeql-action from 4.31.0 to 4.31.2 by @​dependabot[bot] in #​4336
• chore(deps): bump sigs.k8s.io/controller-runtime from 0.22.3 to 0.22.4 by @​dependabot[bot] in #​4341
• chore(deps): bump github.com/anchore/stereoscope from 0.1.11 to 0.1.12 by @​dependabot[bot] in #​4342
• chore(deps): bump github.com/anchore/syft from 1.36.0 to 1.37.0 by @​dependabot[bot] in #​4343
• chore(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 by @​dependabot[bot] in #​4351
• chore(deps): bump golang.org/x/sync from 0.17.0 to 0.18.0 in the golang group across 1 directory by @​dependabot[bot] in #​4352
• chore(deps): bump the docker group across 1 directory with 2 updates by @​dependabot[bot] in #​4345
• chore(deps): bump the k8s group across 1 directory with 6 updates by @​dependabot[bot] in #​4359

Full Changelog: zarf-dev/zarf@v0.65.1...v0.66.0

v0.65.1

Compare Source

What's Changed

🚀 Updates

• fix: remove defaults prior to state check during re-init by @​AustinAbro321 in #​4333

Full Changelog: zarf-dev/zarf@v0.65.0-rc1...v0.65.1

v0.65.0

Compare Source

What's Changed

🚀 Updates

• feat/fix(template): allow templates to be disabled in actions by @​mkcp in #​4283
• fix(ci): add name_template to the release configuration by @​brandtkeller in #​4287
• feat: improve error message when image platform not found by @​AustinAbro321 in #​4295
• chore(deps): bump cosign to v3 by @​brandtkeller in #​4297
• feat!: allow Zarf registry deployment behind a proxy by @​AustinAbro321 in #​3956
• fix: wait shell escaping by @​vincent-onebrief in #​4260
• docs: mark zarf dev generate as stable by @​AustinAbro321 in #​4310
• docs: mark zarf dev deploy as stable by @​AustinAbro321 in #​4311
• docs: differential packages by @​AustinAbro321 in #​4313
• docs: remove warnings that Flux and ArgoCD webhooks are not stable by @​AustinAbro321 in #​4309
• fix: support remote valuesFiles by @​michalszynkiewicz in #​4306
• feat(helm): update FindAnnotatedImagesForChart to support dependencies by @​brandtkeller in #​4288
• docs: mark differential as stable by @​AustinAbro321 in #​4312
• feat(values): package remove actions templating by @​mkcp in #​4267
• feat!: require opt into to include username and hostname in package by @​robinlieb in #​4321
• chore: allow backwards compatibility with empty chart version by @​AustinAbro321 in #​4314
• docs: encourage unit tests in contribute section by @​AustinAbro321 in #​4330
• fix(distribution): disable otel tracing by default by @​brandtkeller in #​4324
• feat(template): add pre-engine helm funcs by @​mkcp in #​4304

📦 Dependencies

• chore(deps): bump github.com/anchore/syft from 1.33.0 to 1.34.2 by @​dependabot[bot] in #​4281
• chore(deps): bump github.com/pterm/pterm from 0.12.81 to 0.12.82 by @​dependabot[bot] in #​4277
• chore(deps): bump github/codeql-action from 4.30.8 to 4.30.9 by @​dependabot[bot] in #​4292
• chore(deps): bump github.com/mikefarah/yq/v4 from 4.47.2 to 4.48.1 by @​dependabot[bot] in #​4293
• chore(deps): bump actions/setup-node from 5.0.0 to 6.0.0 in the actions-organization group by @​dependabot[bot] in #​4291
• chore(deps): bump github.com/anchore/syft from 1.34.2 to 1.36.0 by @​dependabot[bot] in #​4305
• chore(deps): bump the actions-organization group with 4 updates by @​dependabot[bot] in #​4315
• chore(deps): bump github/codeql-action from 4.30.9 to 4.31.0 by @​dependabot[bot] in #​4316
• chore(deps): bump github.com/fluxcd/source-controller/api from 1.7.2 to 1.7.3 by @​dependabot[bot] in #​4322

New Contributors

• @​michalszynkiewicz made their first contribution in #​4306
• @​robinlieb made their first contribution in #​4321

Full Changelog: zarf-dev/zarf@v0.64.0...v0.65.0

v0.64.0

Compare Source

What's Changed

🚀 Updates

• chore(docs): airgap demonstrations by @​brandtkeller in #​4097
• fix: cleanup temp directory on pull and differential package loads by @​AustinAbro321 in #​4234
• docs: use fully-qualified brew install command by @​joonas in #​4239
• docs(examples): remove terraform references by @​AustinAbro321 in #​4242
• fix: Helm error message lists incorrect retries by @​AustinAbro321 in #​4243
• refactor!: use local structs instead of global package config in src/cmd by @​AustinAbro321 in #​4235
• docs(faqs): add "When should I clear my Zarf cache?" faq by @​mkcp in #​4248
• docs: clean up 'understanding' file by @​loganripplinger in #​4250
• refactor!: remove global confirm flag by @​AustinAbro321 in #​4249
• chore: cleanup error handling in deploy logic by @​Racer159 in #​4255
• docs: fix typos by @​suzuki-shunsuke in #​4261
• chore(deps): update mholt/archives to resolve rardecode vulnerability by @​brandtkeller in #​4266
• fix(create): allow multiple overrides from environment variable by @​brandtkeller in #​4245
• feat: Add Values alpha by @​mkcp in #​4136

📦 Dependencies

• chore(deps): bump github.com/sigstore/cosign/v2 from 2.6.0 to 2.6.1 by @​dependabot[bot] in #​4229
• chore(deps): bump the docker group across 1 directory with 2 updates by @​dependabot[bot] in #​4228
• chore(deps): bump github/codeql-action from 3.30.5 to 3.30.6 by @​dependabot[bot] in #​4232
• chore(deps): bump docker/login-action from 3.5.0 to 3.6.0 by @​dependabot[bot] in #​4231
• chore(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by @​dependabot[bot] in #​4230
• chore(deps): bump github.com/fluxcd/source-controller/api from 1.7.0 to 1.7.1 by @​dependabot[bot] in #​4238
• chore(deps): bump sigs.k8s.io/controller-runtime from 0.22.1 to 0.22.2 by @​dependabot[bot] in #​4237
• chore(deps): bump the golang group across 1 directory with 2 updates by @​dependabot[bot] in #​4246
• chore(deps): bump github.com/fluxcd/pkg/apis/meta from 1.21.0 to 1.22.0 by @​dependabot[bot] in #​4254
• chore(deps): bump github.com/go-git/go-git/v5 from 5.16.2 to 5.16.3 by @​dependabot[bot] in #​4233
• chore(deps): bump astro from 5.13.2 to 5.14.4 in /site by @​dependabot[bot] in #​4259
• chore(deps): bump aws-actions/configure-aws-credentials from 5.0.0 to 5.1.0 by @​dependabot[bot] in #​4263
• chore(deps): bump actions/dependency-review-action from 4.8.0 to 4.8.1 in the actions-organization group by @​dependabot[bot] in #​4262
• chore(deps): bump sigs.k8s.io/controller-runtime from 0.22.2 to 0.22.3 by @​dependabot[bot] in #​4265
• chore(deps): bump the docker group across 1 directory with 2 updates by @​dependabot[bot] in #​4247
• chore(deps): bump github.com/fluxcd/source-controller/api from 1.7.1 to 1.7.2 by @​dependabot[bot] in #​4270
• chore(deps): bump github.com/avast/retry-go/v4 from 4.6.1 to 4.7.0 by @​dependabot[bot] in #​4269
• chore(deps): bump github/codeql-action from 3.30.6 to 4.30.8 by @​dependabot[bot] in #​4264
• chore(deps): bump github.com/gofrs/flock from 0.12.1 to 0.13.0 by @​dependabot[bot] in #​4271

New Contributors

• @​loganripplinger made their first contribution in #​4250
• @​suzuki-shunsuke made their first contribution in #​4261

Full Changelog: zarf-dev/zarf@v0.63.0-rc1...v0.64.0

v0.63.0

Compare Source

What's Changed

🚀 Updates

• feat!: merge chart properties by @​vincent-onebrief in #​4193
• fix(deploy): track success/failed chart install status by @​brandtkeller in #​4172
• fix: respect insecure flag in zarf tools registry prune|catalog|copy by @​AustinAbro321 in #​4206
• fix(ci): fix issue with nightly tag latest by @​brandtkeller in #​4203
• feat: stop retrying helm install/upgrade by @​AustinAbro321 in #​4209
• feat: labeling all resources created by a zarf package by @​sgettys in #​4194
• chore: update gitea chart to 12.3.0 by @​a1994sc in #​3859
• fix(ci): install latest version of syft for release expectations by @​brandtkeller in #​4216
• feat: make the registry overrides deterministic and ordered by @​richluby in #​4208
• docs: add TrueFull

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.