bump 0.9.16 (#3385)

Signed-off-by: Gustavo Carvalho <gusfcarvalho@gmail.com>

deploy/charts/external-secrets/Chart.yaml

@@ -2,8 +2,8 @@ apiVersion: v2
 name: external-secrets
 description: External secret management for Kubernetes
 type: application
-version: "0.9.15-2"
-appVersion: "v0.9.15-2"
+version: "0.9.16"
+appVersion: "v0.9.16"
 kubeVersion: ">= 1.19.0-0"
 keywords:
   - kubernetes-external-secrets

deploy/charts/external-secrets/README.md

@@ -4,7 +4,7 @@
 
 [//]: # (README.md generated by gotmpl. DO NOT EDIT.)
 
-![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![Version: 0.9.15-2](https://img.shields.io/badge/Version-0.9.15--2-informational?style=flat-square)
+![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![Version: 0.9.16](https://img.shields.io/badge/Version-0.9.16-informational?style=flat-square)
 
 External secret management for Kubernetes
 

deploy/charts/external-secrets/tests/__snapshot__/cert_controller_test.yaml.snap

@@ -7,8 +7,8 @@ should match snapshot of default values:
         app.kubernetes.io/instance: RELEASE-NAME
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: external-secrets-cert-controller
-        app.kubernetes.io/version: v0.9.15-2
-        helm.sh/chart: external-secrets-0.9.15-2
+        app.kubernetes.io/version: v0.9.16
+        helm.sh/chart: external-secrets-0.9.16
       name: RELEASE-NAME-external-secrets-cert-controller
       namespace: NAMESPACE
     spec:
@@ -24,8 +24,8 @@ should match snapshot of default values:
             app.kubernetes.io/instance: RELEASE-NAME
             app.kubernetes.io/managed-by: Helm
             app.kubernetes.io/name: external-secrets-cert-controller
-            app.kubernetes.io/version: v0.9.15-2
-            helm.sh/chart: external-secrets-0.9.15-2
+            app.kubernetes.io/version: v0.9.16
+            helm.sh/chart: external-secrets-0.9.16
         spec:
           automountServiceAccountToken: true
           containers:
@@ -38,7 +38,7 @@ should match snapshot of default values:
                 - --secret-namespace=NAMESPACE
                 - --metrics-addr=:8080
                 - --healthz-addr=:8081
-              image: ghcr.io/external-secrets/external-secrets:v0.9.15-2
+              image: ghcr.io/external-secrets/external-secrets:v0.9.16
               imagePullPolicy: IfNotPresent
               name: cert-controller
               ports:

deploy/charts/external-secrets/tests/__snapshot__/controller_test.yaml.snap

@@ -7,8 +7,8 @@ should match snapshot of default values:
         app.kubernetes.io/instance: RELEASE-NAME
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: external-secrets
-        app.kubernetes.io/version: v0.9.15-2
-        helm.sh/chart: external-secrets-0.9.15-2
+        app.kubernetes.io/version: v0.9.16
+        helm.sh/chart: external-secrets-0.9.16
       name: RELEASE-NAME-external-secrets
       namespace: NAMESPACE
     spec:
@@ -24,15 +24,15 @@ should match snapshot of default values:
             app.kubernetes.io/instance: RELEASE-NAME
             app.kubernetes.io/managed-by: Helm
             app.kubernetes.io/name: external-secrets
-            app.kubernetes.io/version: v0.9.15-2
-            helm.sh/chart: external-secrets-0.9.15-2
+            app.kubernetes.io/version: v0.9.16
+            helm.sh/chart: external-secrets-0.9.16
         spec:
           automountServiceAccountToken: true
           containers:
             - args:
                 - --concurrent=1
                 - --metrics-addr=:8080
-              image: ghcr.io/external-secrets/external-secrets:v0.9.15-2
+              image: ghcr.io/external-secrets/external-secrets:v0.9.16
               imagePullPolicy: IfNotPresent
               name: external-secrets
               ports:

deploy/charts/external-secrets/tests/__snapshot__/crds_test.yaml.snap

@@ -2017,10 +2017,10 @@ should match snapshot of default values:
                           description: AzureKV configures this store to sync secrets using Azure Key Vault provider
                           properties:
                             authSecretRef:
-                              description: Auth configures how the operator authenticates with Azure. Required for ServicePrincipal auth type.
+                              description: Auth configures how the operator authenticates with Azure. Required for ServicePrincipal auth type. Optional for WorkloadIdentity.
                               properties:
                                 clientId:
-                                  description: The Azure clientId of the service principle used for authentication.
+                                  description: The Azure clientId of the service principle or managed identity used for authentication.
                                   properties:
                                     key:
                                       description: |-
@@ -2053,6 +2053,23 @@ should match snapshot of default values:
                                         to the namespace of the referent.
                                       type: string
                                   type: object
+                                tenantId:
+                                  description: The Azure tenantId of the managed identity used for authentication.
+                                  properties:
+                                    key:
+                                      description: |-
+                                        The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
+                                        defaulted, in others it may be required.
+                                      type: string
+                                    name:
+                                      description: The name of the Secret resource being referred to.
+                                      type: string
+                                    namespace:
+                                      description: |-
+                                        Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
+                                        to the namespace of the referent.
+                                      type: string
+                                  type: object
                               type: object
                             authType:
                               default: ServicePrincipal
@@ -2107,7 +2124,7 @@ should match snapshot of default values:
                                 - name
                               type: object
                             tenantId:
-                              description: TenantID configures the Azure Tenant to send requests to. Required for ServicePrincipal auth type.
+                              description: TenantID configures the Azure Tenant to send requests to. Required for ServicePrincipal auth type. Optional for WorkloadIdentity.
                               type: string
                             vaultUrl:
                               description: Vault Url from which the secrets to be fetched from.
@@ -3045,6 +3062,60 @@ should match snapshot of default values:
                             - region
                             - vault
                           type: object
+                        passbolt:
+                          properties:
+                            auth:
+                              description: Auth defines the information necessary to authenticate against Passbolt Server
+                              properties:
+                                passwordSecretRef:
+                                  description: |-
+                                    A reference to a specific 'key' within a Secret resource,
+                                    In some instances, `key` is a required field.
+                                  properties:
+                                    key:
+                                      description: |-
+                                        The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
+                                        defaulted, in others it may be required.
+                                      type: string
+                                    name:
+                                      description: The name of the Secret resource being referred to.
+                                      type: string
+                                    namespace:
+                                      description: |-
+                                        Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
+                                        to the namespace of the referent.
+                                      type: string
+                                  type: object
+                                privateKeySecretRef:
+                                  description: |-
+                                    A reference to a specific 'key' within a Secret resource,
+                                    In some instances, `key` is a required field.
+                                  properties:
+                                    key:
+                                      description: |-
+                                        The key of the entry in the Secret resource's `data` field to be used. Some instances of this field may be
+                                        defaulted, in others it may be required.
+                                      type: string
+                                    name:
+                                      description: The name of the Secret resource being referred to.
+                                      type: string
+                                    namespace:
+                                      description: |-
+                                        Namespace of the resource being referred to. Ignored if referent is not cluster-scoped. cluster-scoped defaults
+                                        to the namespace of the referent.
+                                      type: string
+                                  type: object
+                              required:
+                                - passwordSecretRef
+                                - privateKeySecretRef
+                              type: object
+                            host:
+                              description: Host defines the Passbolt Server to connect to
+                              type: string
+                          required:
+                            - auth
+                            - host
+                          type: object
                         passworddepot:
                           description: Configures a store to sync secrets with a Password Depot instance.
                           properties:

deploy/charts/external-secrets/tests/__snapshot__/webhook_test.yaml.snap

@@ -7,8 +7,8 @@ should match snapshot of default values:
         app.kubernetes.io/instance: RELEASE-NAME
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: external-secrets-webhook
-        app.kubernetes.io/version: v0.9.15-2
-        helm.sh/chart: external-secrets-0.9.15-2
+        app.kubernetes.io/version: v0.9.16
+        helm.sh/chart: external-secrets-0.9.16
       name: RELEASE-NAME-external-secrets-webhook
       namespace: NAMESPACE
     spec:
@@ -24,8 +24,8 @@ should match snapshot of default values:
             app.kubernetes.io/instance: RELEASE-NAME
             app.kubernetes.io/managed-by: Helm
             app.kubernetes.io/name: external-secrets-webhook
-            app.kubernetes.io/version: v0.9.15-2
-            helm.sh/chart: external-secrets-0.9.15-2
+            app.kubernetes.io/version: v0.9.16
+            helm.sh/chart: external-secrets-0.9.16
         spec:
           automountServiceAccountToken: true
           containers:
@@ -37,7 +37,7 @@ should match snapshot of default values:
                 - --check-interval=5m
                 - --metrics-addr=:8080
                 - --healthz-addr=:8081
-              image: ghcr.io/external-secrets/external-secrets:v0.9.15-2
+              image: ghcr.io/external-secrets/external-secrets:v0.9.16
               imagePullPolicy: IfNotPresent
               name: webhook
               ports:
@@ -81,8 +81,8 @@ should match snapshot of default values:
         app.kubernetes.io/instance: RELEASE-NAME
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: external-secrets-webhook
-        app.kubernetes.io/version: v0.9.15-2
+        app.kubernetes.io/version: v0.9.16
         external-secrets.io/component: webhook
-        helm.sh/chart: external-secrets-0.9.15-2
+        helm.sh/chart: external-secrets-0.9.16
       name: RELEASE-NAME-external-secrets-webhook
       namespace: NAMESPACE