eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/argocd/manifests
History
Erich Blume 796baaa41a Upgrade External Secrets Operator v2.2.0 + migrate Helm to kustomize (#312) 
## Summary

- Upgrade External Secrets Operator from v1.3.2 (helm-chart-2.0.0) to v2.2.0
- Migrate from Helm chart deployment to static kustomize manifests, matching the repo's kustomize-first pattern
- Merge separate `-config` ArgoCD apps into the main operator apps (6 → 4 apps)
- Clean up Helm-specific labels (`helm.sh/chart`, `managed-by: Helm`)
- Update README example from v1beta1 to v1 API

## Breaking changes assessment

Low risk — v2.0.0 removed Alibaba and Device42 providers (we use neither). No templating changes affect us. All ExternalSecrets already use v1 API.

## Deployment steps

1. Sync CRDs first on both clusters (new CRD version)
2. Sync operator apps (now kustomize-based)
3. Verify ClusterSecretStore and all ExternalSecrets are healthy
4. Delete orphaned config apps: `argocd app delete external-secrets-config` and `-config-ringtail`
5. `mise run services-check`

Reviewed-on: #312
2026-03-25 15:56:41 -07:00
..
1password-connect Fix 1Password Connect credentials for chart 2.3.0 2026-02-13 17:30:45 -08:00
alloy-k8s Update container tags to fd0bebb (post-merge rebuild) 2026-03-24 13:39:26 -07:00
alloy-ringtail Deploy Tor Snowflake proxy on ringtail (#311) 2026-03-24 20:51:40 -07:00
alloy-tracing-ringtail Update container tags to fd0bebb (post-merge rebuild) 2026-03-24 13:39:26 -07:00
argocd Add ExternalSecret default fields to prevent ArgoCD drift 2026-03-05 09:11:23 -08:00
authentik Update container tags to fd0bebb (post-merge rebuild) 2026-03-24 13:39:26 -07:00
cloudnative-pg Port CloudNative-PG off Helm to direct release manifest (#268) 2026-02-25 17:37:53 -08:00
cv Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
databases Pin blumeops-pg to PostgreSQL 18.3 2026-02-27 16:25:32 -08:00
devpi Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
docs Update docs release to v1.15.0 2026-03-24 19:51:17 -07:00
external-secrets Upgrade External Secrets Operator v2.2.0 + migrate Helm to kustomize (#312) 2026-03-25 15:56:41 -07:00
forgejo-runner Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
frigate Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
grafana C2: Deploy infrastructure alerting pipeline (#303) 2026-03-22 14:52:56 -07:00
grafana-config Deploy Tor Snowflake proxy on ringtail (#311) 2026-03-24 20:51:40 -07:00
homepage Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
immich Fix mirror org refs in ArgoCD apps and widen credential template (#266) 2026-02-25 06:55:53 -08:00
kiwix Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
kube-state-metrics Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
kube-state-metrics-ringtail Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
loki Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
mealie Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
miniflux Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
navidrome Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
ntfy Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
nvidia-device-plugin Add :kustomized sentinel tag to manifest images, review devpi 2026-03-06 08:15:06 -08:00
ollama Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
prometheus Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
prowler Include link to upstream prowler issue 2026-03-24 19:48:43 -07:00
tailscale-operator Expose Forgejo publicly at forge.eblu.me (#278) 2026-03-03 08:40:41 -08:00
tailscale-operator-base Revert Tailscale operator to v1.94.2 — images not yet published 2026-03-22 19:41:40 -07:00
tailscale-operator-ringtail Deploy Tailscale operator on ringtail k3s cluster (#215) 2026-02-19 09:33:05 -08:00
tempo Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
teslamate Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
torrent Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00
unpoller Add RuntimeDefault seccomp profiles to all managed workloads 2026-03-24 16:19:40 -07:00