784aad7778
Add mTLS (mutual TLS) support for proxy connections
...
This change adds support for mTLS authentication when connecting through
proxies that require client certificates (e.g., corporate proxies like Kraken).
Changes:
- Add ProxyTLSConfig type with fields for:
- clientCertSecretRef: K8s secret with tls.crt and tls.key
- caCertSecretRef: K8s secret with ca.crt
- caCertConfigMapRef: ConfigMap with ca.crt (alternative)
- insecureSkipVerify: Skip server cert verification (testing only)
- Update ProxyServerConfig to include optional TLS configuration
- Add proxyTLSVolumesAndMounts helper to create volumes and mounts
for proxy TLS certificates
- Update listener pod creation to mount proxy TLS certs at
/etc/proxy-tls/{http,https}-proxy/{client,ca}/
- Update runner pod creation to mount proxy TLS certs
- Update Helm values.yaml with mTLS configuration examples
- Update Helm templates to pass TLS config to CRD
- Regenerate CRDs with new ProxyTLSConfig schema
Note: This provides the infrastructure to mount certificates. The actual
TLS client configuration in ghalistener requires corresponding changes
in the github.com/actions/scaleset library to use these certificates.
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-05-18 23:23:06 -07:00
053b8f9ae5
Add health and readiness probes to controller manager ( #4459 )
2026-04-29 18:08:46 +02:00
13a03302c8
Add a flag for enabling pprof on the controller manager ( #4449 )
2026-04-24 10:03:26 +02:00
a401686bd5
Add option to disable workqueue bucket rate limiter ( #4451 )
2026-04-22 23:26:39 +02:00
74cfc3855e
Prepare 0.14.1 release ( #4448 )
2026-04-14 17:03:22 +01:00
8b7f232dc4
Prepare 0.14.0 release ( #4413 )
2026-03-19 18:53:37 +01:00
802dc28d38
Add multi-label support to scalesets ( #4408 )
2026-03-19 15:29:40 +01:00
9bc1c9e53e
Shutdown the scaleset when runner is deprecated ( #4404 )
...
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
2026-03-19 13:30:20 +01:00
276717a04b
Manually bump dependencies since it needs fixes related to the controller runtime API ( #4406 )
2026-03-16 10:09:36 +01:00
1d9f626c53
Allow users to apply labels and annotations to internal resources ( #4400 )
2026-03-12 10:32:54 +01:00
a505fb5616
Prepare 0.13.1 release ( #4341 )
2025-12-23 14:57:05 +01:00
a0c30df25b
Prepare 0.13.0 release ( #4280 )
2025-10-16 19:25:56 +02:00
634e42c916
Bump all dependencies ( #4266 )
2025-10-14 13:24:25 +02:00
088e2a3a90
Remove ephemeral runner when exit code != 0 and is patched with the job ( #4239 )
2025-09-17 21:40:37 +02:00
c27541140a
Remove JIT config from ephemeral runner status field ( #4191 )
2025-08-04 12:35:04 +02:00
a07dce28bb
Remove deprecated preserveUnknownFields from CRDs ( #4135 )
2025-07-24 08:47:34 +02:00
349cc0835e
Fix image pull secrets list arguments in the chart ( #4164 )
2025-07-01 15:28:18 +02:00
ded39bede6
Prepare 0.12.1 release ( #4153 )
2025-06-27 13:49:47 +02:00
d9826e5244
Prepare 0.12.0 release ( #4122 )
2025-06-13 14:23:26 +02:00
e46c929241
Azure Key Vault integration to resolve secrets ( #4090 )
2025-06-11 15:53:33 +02:00
cae7efa2c6
Create backoff mechanism for failed runners and allow re-creation of failed ephemeral runners ( #4059 )
2025-05-14 15:38:50 +02:00
4ca37fbdf2
Prepare 0.11.0 release ( #3992 )
2025-03-25 11:09:03 +01:00
5a960b5ebb
Create configurable metrics ( #3975 )
2025-03-24 15:27:42 +01:00
7033e299cd
Add events role permission to leader_election_role ( #3988 )
2025-03-24 15:10:47 +01:00
3c1a323381
feat: allow namespace overrides ( #3797 )
...
Signed-off-by: Jesús Fernández <7312236+fernandezcuesta@users.noreply.github.com>
Co-authored-by: Nikola Jokic <jokicnikola07@gmail.com>
2025-03-18 21:41:04 +01:00
fb9b96bf75
Update all dependencies, conforming to the new controller-runtime API ( #3949 )
2025-03-11 15:52:52 +01:00
75c6a94010
Use gha-runner-scale-set-controller.chart instead of .Chart.Version ( #3729 )
...
Co-authored-by: Nikola Jokic <jokicnikola07@gmail.com>
2025-03-10 11:48:30 +01:00
7a5996f467
Remove old githubrunnerscalesetlistener, remove warning and fix config bug ( #3937 )
2025-03-07 11:58:16 +01:00
66172ab0bd
Fix template tests and add go test on gha-validate-chart ( #3886 )
2025-01-15 15:54:33 +01:00
1e10417be8
Prepare `0.10.1` release ( #3859 )
2024-12-18 16:22:50 +01:00
1ef7196115
Fix helm chart bug related to `runnerMaxConcurrentReconciles` ( #3858 )
2024-12-18 16:14:55 +01:00
59cb1d2c8b
Prepare `0.10.0` release ( #3849 )
2024-12-16 11:39:55 +01:00
7e04027d19
Make k8s client rate limiter parameters configurable ( #3848 )
...
Co-authored-by: Taketoshi Fujiwara <t-b-fujiwara@mercari.com>
2024-12-13 15:37:01 +01:00
3998f6dee6
Make EphemeralRunnerController MaxConcurrentReconciles configurable ( #3832 )
...
Co-authored-by: Bassem Dghaidi <568794+Link-@users.noreply.github.com>
2024-12-11 21:19:43 +01:00
80d848339e
Prepare 0.9.3 release ( #3624 )
2024-06-25 12:35:39 +02:00
a62ca3d853
Exclude label prefix propagation ( #3607 )
2024-06-21 12:12:14 +02:00
3be7128f9a
Prepare 0.9.2 release ( #3530 )
2024-05-20 10:58:06 +02:00
ea13873f14
Remove service monitor that is not used in controller chart ( #3526 )
2024-05-17 13:06:57 +02:00
9e191cdd21
Prepare 0.9.1 release ( #3448 )
2024-04-17 10:51:28 +02:00
0006dd5eb1
Add topologySpreadConstraint to gha-runner-scale-set-controller chart ( #3405 )
2024-04-12 14:22:41 +02:00
4357525445
Prepare 0.9.0 release ( #3388 )
2024-03-27 11:54:17 +01:00
7a643a5107
Fix overscaling when the controller is much faster then the listener ( #3371 )
...
Co-authored-by: Francesco Renzi <rentziass@gmail.com>
2024-03-20 15:36:12 +01:00
a7af44e042
Deprecation warning of older listener for 0.9.0 release ( #3280 )
2024-03-18 12:59:41 +01:00
f225fef921
Bump Go version to 1.22.1 ( #3290 )
2024-03-18 12:46:30 +01:00
309b53143e
Prepare 0.8.3 release ( #3309 )
2024-02-28 10:26:32 +01:00
9fba37540a
Expose volumeMounts and volumes in gha-runner-scale-set-controller ( #3260 )
2024-02-12 14:47:09 +01:00
d72774753c
Prepare 0.8.2 release ( #3249 )
2024-01-26 11:03:08 +01:00
1f9b7541e6
Prepare 0.8.1 release ( #3184 )
2023-12-21 17:14:33 +01:00
3fab744a4f
Prepare 0.8.0 release ( #3175 )
2023-12-20 11:16:56 +01:00
1cba9c7800
Fix typo in helm chart ( #3104 )
...
Co-authored-by: Bassem Dghaidi <568794+Link-@users.noreply.github.com>
2023-11-30 11:32:59 +01:00
Dhawal Seth
Junya Okabe
Francesco Renzi
Nikola Jokic
Alex Hatzenbuhler
J. Fernández
Mikey Smet
Bassem Dghaidi
Yusuke Kuoka
Alexandre Chouinard
Talia Stocks
Adam Szaraniec