chore(deps): update crossplane dependencies

[renovate]

This PR contains the following updates:

Package	Update	Change
crossplane-contrib/provider-helm	minor	v0.19.0 -> v0.20.0
crossplane-contrib/provider-kubernetes	minor	v0.15.0 -> v0.16.0
upbound/configuration-azure-network	minor	v0.9.0 -> v0.11.0
upbound/provider-azure	minor	v1.7.0 -> v1.9.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

crossplane-contrib/provider-helm (crossplane-contrib/provider-helm)

v0.20.0

Compare Source

What's Changed

[!NOTE]
Starting with v0.20.0, the image is published under the upbound organization in the Upbound Marketplace.
The new location for the image is xpkg.upbound.io/upbound/provider-helm:v0.20.0. Please use the new location when installing/upgrading the provider.

• allow additional build arguments by @​jastang in https://github.com/crossplane-contrib/provider-helm/pull/236
• consume golangci-lint 1.61.0 by @​erhancagirici in https://github.com/crossplane-contrib/provider-helm/pull/246
• Remove unused publishing code. by @​jeanduplessis in https://github.com/crossplane-contrib/provider-helm/pull/247
• [Backport release-0.20] bump helm to 3.16.2 by @​github-actions in https://github.com/crossplane-contrib/provider-helm/pull/249

New Contributors

• @​jastang made their first contribution in https://github.com/crossplane-contrib/provider-helm/pull/236
• @​jeanduplessis made their first contribution in https://github.com/crossplane-contrib/provider-helm/pull/247

Full Changelog: crossplane-contrib/provider-helm@v0.19.0...v0.20.0

crossplane-contrib/provider-kubernetes (crossplane-contrib/provider-kubernetes)

v0.16.0

Compare Source

What's Changed

[!NOTE]
Starting with v0.16.0, the image is published under the upbound organization in the Upbound Marketplace.
The new location for the image is xpkg.upbound.io/upbound/provider-kubernetes:v0.16.0. Please use the new location when installing/upgrading the provider.

• Support --build-arg from environment variables by @​jastang in https://github.com/crossplane-contrib/provider-kubernetes/pull/296
• consume golangci-lint 1.61.0 by @​erhancagirici in https://github.com/crossplane-contrib/provider-kubernetes/pull/307
• Remove unused publishing code. by @​jeanduplessis in https://github.com/crossplane-contrib/provider-kubernetes/pull/309

New Contributors

• @​jeanduplessis made their first contribution in https://github.com/crossplane-contrib/provider-kubernetes/pull/309

Full Changelog: crossplane-contrib/provider-kubernetes@v0.15.0...v0.16.0

upbound/configuration-azure-network (upbound/configuration-azure-network)

v0.11.0

Compare Source

What's Changed

• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-azure-network/pull/71
• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-azure-network/pull/73
• 🔄 synced file(s) with upbound/sa-up by @​upbound-bot in https://github.com/upbound/configuration-azure-network/pull/74
• chore(deps): update build digest to 1ed1933 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/75
• chore(deps): update dependency upbound/provider-azure to v1.9.0 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/72

New Contributors

• @​upbound-bot made their first contribution in https://github.com/upbound/configuration-azure-network/pull/71

Full Changelog: upbound/configuration-azure-network@v0.10.0...v0.11.0

v0.10.0

Compare Source

What's Changed

• Minimalistic unit/render testing with KCL by @​ytsarev in https://github.com/upbound/configuration-azure-network/pull/55
• Update uptest, skip .cache from xpkg by @​ytsarev in https://github.com/upbound/configuration-azure-network/pull/56
• Update composed azure resource to v1beta2 by @​ytsarev in https://github.com/upbound/configuration-azure-network/pull/58
• chore(deps): update reviewdog/action-yamllint action to v1.19.0 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/50
• chore(deps): update docker/login-action digest to 9780b0c by @​renovate in https://github.com/upbound/configuration-azure-network/pull/51
• chore(deps): update docker/setup-buildx-action digest to c47758b by @​renovate in https://github.com/upbound/configuration-azure-network/pull/52
• chore(deps): update actions/upload-artifact digest to b4b15b8 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/57
• chore(deps): update actions/checkout digest to eef6144 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/59
• Remove old qemu setup in CI workflow by @​ytsarev in https://github.com/upbound/configuration-azure-network/pull/63
• chore(deps): update dependency upbound/up to v0.34.1 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/62
• chore(deps): update dependency upbound/universal-crossplane to v1.17.1-up.1 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/61
• chore(deps): update dependency ubuntu to v24 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/64
• chore(deps): update dependency upbound/provider-azure to v1.7.0 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/60
• Upgrade to Uptest 1.2.0, switch to reusable uptest targets by @​ytsarev in https://github.com/upbound/configuration-azure-network/pull/65
• chore(deps): update dependency upbound/up to v0.34.2 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/66
• chore(deps): update actions/checkout digest to 11bd719 by @​renovate in https://github.com/upbound/configuration-azure-network/pull/67

Full Changelog: upbound/configuration-azure-network@v0.9.0...v0.10.0

upbound/provider-azure (upbound/provider-azure)

v1.9.0

Compare Source

The v1.9.0 release introduces new resources, bug fixes (an important one https://github.com/crossplane/upjet/pull/449), enhancements, and dependency updates.

Support for New Resources

• PrivateDNSResolverOutboundEndpoint.network.azure.upbound.io/v1beta1
• TrustedAccessRoleBinding.authorization.azure.upbound.io/v1beta1

What's Changed

• Update module github.com/golang-jwt/jwt/v4 to v4.5.1 [SECURITY] by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/867
• Add Private DNS Resolver Outbound Endpoint azurerm_private_dns_resolver_outbound_endpoint by @​faizan-younus in https://github.com/crossplane-contrib/provider-upjet-azure/pull/865
• Add feature azurerm_kubernetes_cluster_trusted_access_role_binding by @​drew0ps in https://github.com/crossplane-contrib/provider-upjet-azure/pull/871
• Bump upjet and add new examples with secret for container app resource by @​turkenf in https://github.com/crossplane-contrib/provider-upjet-azure/pull/873

Full Changelog: crossplane-contrib/provider-upjet-azure@v1.8.0...v1.9.0

v1.8.0

Compare Source

The v1.8.0 release introduces the Terraform provider upgrade from 3.110.0 to 3.116.0, new resources, bug fixes, enhancements, and dependency updates.

Support for New Resources

• PrivateDNSResolverInboundEndpoint.network.azure.upbound.io/v1beta1
• RedisCacheAccessPolicy.cache.azure.upbound.io/v1beta1
• RedisCacheAccessPolicyAssignment.cache.azure.upbound.io/v1beta1

What's Changed

• Update docker/setup-buildx-action digest to c47758b by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/833
• Update dependency ubuntu to v24 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/830
• Update actions/cache digest to 3624ceb by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/839
• Update actions/checkout digest to eef6144 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/840
• Update actions/upload-artifact digest to 604373d by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/841
• Update actions/upload-artifact digest to b4b15b8 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/842
• Add userAssignedIdentity reference to AKS cluster by @​twobiers in https://github.com/crossplane-contrib/provider-upjet-azure/pull/800
• Update actions/checkout digest to 11bd719 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/850
• Update actions/cache digest to 6849a64 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/847
• Update actions/setup-go digest to 41dfa10 by @​renovate in https://github.com/crossplane-contrib/provider-upjet-azure/pull/851
• Remove workflows no longer needed. by @​jeanduplessis in https://github.com/crossplane-contrib/provider-upjet-azure/pull/856
• Add Private DNS Resolver Inbound Endpoint azurerm_private_dns_resolver_inbound_endpoint by @​faizan-younus in https://github.com/crossplane-contrib/provider-upjet-azure/pull/810
• consume golangci-linter 1.61.0 by @​erhancagirici in https://github.com/crossplane-contrib/provider-upjet-azure/pull/854
• Use standalone crddiff tool by @​turkenf in https://github.com/crossplane-contrib/provider-upjet-azure/pull/857
• Added RedisAccessPolicies and RedisAccessPolicyAssignment resources by @​knutejoh in https://github.com/crossplane-contrib/provider-upjet-azure/pull/846
• Bump native tf provider to version 3.116.0 by @​turkenf in https://github.com/crossplane-contrib/provider-upjet-azure/pull/855
• Stop using deprecated upbound/official-provider-ci workflows by @​jeanduplessis in https://github.com/crossplane-contrib/provider-upjet-azure/pull/861
• bump go version to 1.23 by @​erhancagirici in https://github.com/crossplane-contrib/provider-upjet-azure/pull/866

New Contributors

• @​twobiers made their first contribution in https://github.com/crossplane-contrib/provider-upjet-azure/pull/800
• @​faizan-younus made their first contribution in https://github.com/crossplane-contrib/provider-upjet-azure/pull/810

Full Changelog: crossplane-contrib/provider-upjet-azure@v1.7.0...v1.8.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[village-labs-bot]

upbound/configuration-azure-aks #70

Change Summary

• Version updates across multiple dependencies: Azure Container Service provider (v1.7.0 → v1.9.0), Azure Network configuration (v0.9.0 → v0.11.0)
• Third-party provider updates: Helm provider (v0.19.0 → v0.20.0) and Kubernetes provider (v0.15.0 → v0.16.0)

Potential Vulnerabilities

• File: crossplane.yaml:19-20
• Code: version: "v1.9.0"
• Explanation: Major version jumps in infrastructure providers (like Azure Container Service) should be carefully reviewed for breaking changes that could affect security configurations or access controls.

Code Smells

No significant code smells detected in the changes. The modifications are straightforward version updates in the dependency specification.

Debug Logs

No debug logs found in the changes.

Unintended Consequences

1. Configuration Drift:

• File: crossplane.yaml:19-22
• Code:

version: "v1.9.0"
...
version: "v0.11.0"

• Explanation: Multiple simultaneous provider version updates could lead to unexpected behavior if these versions haven't been tested together in a staging environment.

2. Dependency Chain Impact:

• File: crossplane.yaml:23-26
• Code:

version: "v0.20.0"
...
version: "v0.16.0"

• Explanation: Updates to both Helm and Kubernetes providers simultaneously could cause issues if there are incompatibilities between these versions and the existing cluster configurations.

Risk Score: 6

The relatively high risk score is due to:

1. Multiple concurrent version updates across critical infrastructure components
2. Two-version jump in the Azure Container Service provider (1.7 to 1.9)
3. Potential for breaking changes across four different provider/configuration updates
4. Critical nature of AKS configuration changes in production environments

[kaessert]

/test-examples

[kaessert]

/test-examples

[kaessert]

/test-examples