Update module github.com/gardener/gardener to v1.134.0 #660

gardener-ci-robot · 2025-12-11T23:10:14Z

This PR contains the following updates:

Package	Change	Age	Confidence
github.com/gardener/gardener	`v1.133.0` → `v1.134.0`

Release Notes

gardener/gardener (github.com/gardener/gardener)

`v1.134.0`

Compare Source

[github.com/gardener/gardener:v1.134.0]

⚠️ Breaking Changes

[OPERATOR] The DoNotCopyBackupCredentials feature gate has been promoted to GA and can no longer be disabled. The Seed backup secret is no longer copied from the Shoot infrastructure credentials in case an operator does not provide an existing backup secret. If you configure seed.spec.backup.credentialsRef, make sure that the referred credential already exists. For production setups, it is advised that operators configure a separate set of credentials for Seed backup and Shoot infrastructure. by @dimityrmirchev [#13564]
[OPERATOR] Several fields and configurations of operator.gardener.cloud/v1alpha1.Extension resources are now validated:
- At least an extension or admission deployment must be specified (spec.deployment.{extension,admission})
- A Helm deployment configuration must be in place (spec.deployment.extension.helm or spec.deployment.admission.{runtimeCluster,virtualCluster}.helm)
- A valid OCI repository configuration is required (helm.ociRepository)
Please check your Extension resources and rectify them accordingly, before upgrading to this version. by @timuthy [#13528]
[OPERATOR] The GA-ed and unconditionally enabled ShootCredentialsBinding feature gate is removed. If you have references to this feature gate, clean them up before upgrading to this version of Gardener. by @ialidzhikov [#13576]
[DEVELOPER] Ensure you have the docker compose plugin installed for starting the local setup. by @timebertt [#13551]
[DEVELOPER] The registry for the local development setup is now exposed under registry.local.gardener.cloud instead of garden.local.gardener.cloud. Make sure to update your /etc/hosts file by replacing the existing 127.0.0.1 garden.local.gardener.cloud entries with 127.0.0.1 registry.local.gardener.cloud. by @timebertt [#13551]
[DEVELOPER] To support self-hosted shoots with managed infrastructure, the Worker extension (controller/delegate) needs to use the technical ID from Cluster.shoot.status.technicalID for prefixing the names of machine-related objects. The Worker namespace is kube-system for self-hosted shoots. Read the docs. by @timebertt [#13485]

📰 Noteworthy

[OPERATOR] As the DoNotCopyBackupCredentials feature gate cannot be disabled, backup secrets that were copied from Shoot infrastructure credentials in previous reconciliations are labeled with gardener.cloud/secret-status=previously-managed and Gardener no longer takes care of them. Operators are responsible to delete those if unused for other scenarios. by @dimityrmirchev [#13564]
[OPERATOR] Introduced GEP-35 that outlines a migration strategy from Vali to VictoriaLogs as a database for Garden, Seed & Shoot clusters. by @rrhubenov [#13242]

✨ New Features

[OPERATOR] Istio-gateways now provide access logs for requests to kube-apiservers via the apiserver-proxy endpoint when IstioTLSTermination feature gate is active. by @oliver-goetz [#13569]
[OPERATOR] Seed clusters are now labelled with a specific extension label extensions.extensions.gardener.cloud/<extension-type>: true whenever such an extension is activated for the seed. by @timuthy [#13509]
[USER] Istio access logs are now visible for users in the shoot plutono. by @majst01 [#13548]
[DEVELOPER] The Worker extension no longer needs to fetch the machine state from the ShootState object in the garden cluster. Instead, Gardener populates the machine state directly in the Worker.status.state field on restoration of the shoot. Read the docs. by @timebertt [#13485]

🐛 Bug Fixes

[OPERATOR] A bug which caused kube-apiserver metrics to be scraped thrice when IstioTLSTermination feature gate is active has been fixed. by @oliver-goetz [#13590]
[OPERATOR] Fixed a bug where operators could not exclusively specify count limits in the Garden's spec.virtualCluster.gardener.gardenerAdmissionController.resourceAdmissionConfiguration.limit field. by @tobschli [#13577]
[USER] A bug which prevented the wildcard certificate endpoints to be advertised in the shoot status has been fixed. by @oliver-goetz [#13644]
[USER] Fixed DNS resolution issues during dual-stack migration by ensuring /etc/resolv.conf only contains the IPv4 DNS server address until the kube-dns service is fully migrated. by @axel7born [#13601]

🏃 Others

[OPERATOR] Seeds are now labeled with seed.gardener.cloud/provider=<seed.spec.provider.type> and seed.gardener.cloud/region=<seed.spec.provider.region>. by @georgibaltiev [#12623]
[OPERATOR] apiserver-proxy endpoints now using the same keep alive settings and connection timeout as default kube-apiserver endpoints when IstioTLSTermination feature gate is active. by @oliver-goetz [#13569]
[OPERATOR] Projects are no-longer requeued with back-off when they have a deletionTimestamp and still existing Shoots in the corresponding namespaces. Instead they are now automatically requeued on Shoot deletion events if they no-longer contain any Shoots so that the deletion of the Project can finish. by @plkokanov [#13052]
[OPERATOR] ManagedResources are no-longer requeued with back-off, if their responsibility was transferred from one gardener-resource-manager to another, while waiting for the original gardener-resource-manager to finish cleaning up the deployed resources. Instead, ManagedResources are automatically requeued when the cleanup of resources by the original gardener-resource-manager has finished. by @plkokanov [#13052]
[DEVELOPER] The VPAInPlaceUpdates feature gate is enabled in local setups for gardenlet and gardener-operator. by @vitanovs [#13508]
[DEVELOPER] Update remote local setup with most recent hosts for end-to-end tests and instructions for an IPv6 setup by @vicwicker [#13436]
[DEVELOPER] Usages of controller-runtime's deprecated reconcile.Result{Requeue: true} have been removed. by @plkokanov [#13052]
[DEVELOPER] Ignore whitespace-only YAML chunks when parsing ManagedResource secrets. This prevents decoder errors from trailing --- separators. by @DockToFuture [#13622]
[DEPENDENCY] The following dependencies have been updated:
- quay.io/kiwigrid/k8s-sidecar from 2.1.3 to 2.1.4. by @gardener-ci-robot [#13567]
[DEPENDENCY] The gardener/autoscaler image for Shoots with Kubernetes version 1.34 has been updated to v1.34.0. Release Notes by @takoverflow [#13554]
[DEPENDENCY] The following dependencies have been updated:
- gardener/etcd-druid from v0.33.0 to v0.34.0. Release Notes
- github.com/gardener/etcd-druid/api from v0.33.0 to v0.34.0. by @Shreyas-s14 [#13617]
[DEPENDENCY] The following dependencies have been updated:
- gardener/dashboard from 1.82.6 to 1.83.0. Release Notes by @gardener-ci-robot [#13620]
[DEPENDENCY] The following dependencies have been updated:
- gardener/dashboard from 1.82.5 to 1.82.6. Release Notes by @gardener-ci-robot [#13619]
[DEPENDENCY] The following dependencies have been updated:
- registry.k8s.io/ingress-nginx/controller-chroot from v1.14.0 to v1.14.1. by @gardener-ci-robot [#13599]
[DEPENDENCY] The following dependencies have been updated:
- gcr.io/istio-release/pilot from 1.27.3 to 1.27.4.
- gcr.io/istio-release/proxyv2 from 1.27.3 to 1.27.4.
- istio.io/api from v1.27.3 to v1.27.4. by @gardener-ci-robot [#13595]
[DEPENDENCY] The following dependencies have been updated:
- envoyproxy/envoy from distroless-v1.36.2 to v1.36.3. Release Notes by @gardener-ci-robot [#13598]
[DEPENDENCY] The following dependencies have been updated:
- quay.io/cortexproject/cortex from v1.20.0 to v1.20.1. by @gardener-ci-robot [#13597]
[DEPENDENCY] The following dependencies have been updated:
- quay.io/kiwigrid/k8s-sidecar from 2.1.2 to 2.1.3. by @gardener-ci-robot [#13562]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.134.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.134.0
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.134.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.134.0

Container (OCI) Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.134.0
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.134.0
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.134.0
gardenadm: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenadm:v1.134.0
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.134.0
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.134.0
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.134.0
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.134.0
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.134.0

`v1.133.1`

Compare Source

[github.com/gardener/gardener:v1.133.1]

🐛 Bug Fixes

[OPERATOR] Fixed a bug where operators could not exclusively specify count limits in the Garden's spec.virtualCluster.gardener.gardenerAdmissionController.resourceAdmissionConfiguration.limit field. by @tobschli [#13581]
[USER] A bug which prevented the wildcard certificate endpoints to be advertised in the shoot status has been fixed. by @oliver-goetz [#13641]

Helm Charts

controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.133.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.133.1
operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.133.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.133.1

Container (OCI) Images

admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.133.1
apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.133.1
controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.133.1
gardenadm: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenadm:v1.133.1
gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.133.1
node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.133.1
operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.133.1
resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.133.1
scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.133.1

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

gardener-ci-robot · 2025-12-11T23:10:16Z

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

23 additional dependencies were updated

Details:

Package	Change
`k8s.io/api`	`v0.34.2` -> `v0.34.3`
`k8s.io/apimachinery`	`v0.34.2` -> `v0.34.3`
`k8s.io/apiserver`	`v0.34.2` -> `v0.34.3`
`k8s.io/client-go`	`v0.34.2` -> `v0.34.3`
`k8s.io/component-base`	`v0.34.2` -> `v0.34.3`
`k8s.io/pod-security-admission`	`v0.34.2` -> `v0.34.3`
`github.com/gardener/etcd-druid/api`	`v0.33.0` -> `v0.34.0`
`github.com/open-telemetry/opentelemetry-operator`	`v0.139.0` -> `v0.140.0`
`golang.org/x/crypto`	`v0.45.0` -> `v0.46.0`
`golang.org/x/exp`	`v0.0.0-20251113190631-e25ba8c21ef6` -> `v0.0.0-20251209150349-8475f28825e9`
`golang.org/x/mod`	`v0.30.0` -> `v0.31.0`
`golang.org/x/net`	`v0.47.0` -> `v0.48.0`
`golang.org/x/sync`	`v0.18.0` -> `v0.19.0`
`golang.org/x/sys`	`v0.38.0` -> `v0.39.0`
`golang.org/x/telemetry`	`v0.0.0-20251111182119-bc8e575c7b54` -> `v0.0.0-20251203150158-8fff8a5912fc`
`golang.org/x/term`	`v0.37.0` -> `v0.38.0`
`golang.org/x/text`	`v0.31.0` -> `v0.32.0`
`golang.org/x/tools`	`v0.39.0` -> `v0.40.0`
`k8s.io/apiextensions-apiserver`	`v0.34.2` -> `v0.34.3`
`k8s.io/cli-runtime`	`v0.34.2` -> `v0.34.3`
`k8s.io/code-generator`	`v0.34.2` -> `v0.34.3`
`k8s.io/kube-aggregator`	`v0.34.2` -> `v0.34.3`
`k8s.io/metrics`	`v0.34.2` -> `v0.34.3`

gardener-prow · 2025-12-11T23:10:21Z

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign dimityrmirchev for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

gardener-ci-robot requested a review from a team as a code owner December 11, 2025 23:10

gardener-ci-robot added the kind/enhancement Enhancement, improvement, extension label Dec 11, 2025

gardener-prow bot added cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Dec 11, 2025

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Dec 12, 2025

gardener-ci-robot closed this Dec 12, 2025

gardener-ci-robot deleted the renovate/github.com-gardener-gardener-1.x branch December 12, 2025 04:42

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Dec 12, 2025

gardener-ci-robot reopened this Dec 12, 2025

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from 7e33ae1 to 5e8ddf6 Compare December 12, 2025 05:38

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Dec 12, 2025

gardener-ci-robot closed this Dec 12, 2025

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Dec 12, 2025

gardener-ci-robot reopened this Dec 12, 2025

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from 5e8ddf6 to 56261f2 Compare December 12, 2025 08:46

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Dec 12, 2025

gardener-ci-robot closed this Dec 12, 2025

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Dec 12, 2025

gardener-ci-robot reopened this Dec 12, 2025

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from 56261f2 to 46ec4cf Compare December 12, 2025 13:22

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Dec 12, 2025

gardener-ci-robot closed this Dec 12, 2025

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Dec 13, 2025

gardener-ci-robot reopened this Dec 13, 2025

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch from 206fb0e to 46ec4cf Compare December 13, 2025 00:14

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Dec 28, 2025

gardener-ci-robot closed this Dec 28, 2025

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Dec 28, 2025

gardener-ci-robot reopened this Dec 28, 2025

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from e890f67 to 33650f1 Compare December 28, 2025 21:59

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Dec 31, 2025

gardener-ci-robot closed this Dec 31, 2025

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Dec 31, 2025

gardener-ci-robot reopened this Dec 31, 2025

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from 33650f1 to 0b466d0 Compare December 31, 2025 11:35

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Jan 1, 2026

gardener-ci-robot closed this Jan 1, 2026

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Jan 1, 2026

gardener-ci-robot reopened this Jan 1, 2026

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch from 0b466d0 to 1c97a99 Compare January 1, 2026 10:07

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Jan 3, 2026

gardener-ci-robot closed this Jan 3, 2026

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Jan 3, 2026

gardener-ci-robot reopened this Jan 3, 2026

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from 1c97a99 to 14b2185 Compare January 3, 2026 04:19

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0~~ Update module github.com/gardener/gardener to v1.134.0 - autoclosed Jan 3, 2026

gardener-ci-robot closed this Jan 3, 2026

Update module github.com/gardener/gardener to v1.134.0

b5d2013

gardener-ci-robot changed the title ~~Update module github.com/gardener/gardener to v1.134.0 - autoclosed~~ Update module github.com/gardener/gardener to v1.134.0 Jan 3, 2026

gardener-ci-robot reopened this Jan 3, 2026

gardener-ci-robot force-pushed the renovate/github.com-gardener-gardener-1.x branch 2 times, most recently from 14b2185 to b5d2013 Compare January 3, 2026 07:21

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update module github.com/gardener/gardener to v1.134.0 #660

Update module github.com/gardener/gardener to v1.134.0 #660

gardener-ci-robot commented Dec 11, 2025 •

edited

Loading

Uh oh!

gardener-ci-robot commented Dec 11, 2025

Uh oh!

gardener-prow bot commented Dec 11, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Update module github.com/gardener/gardener to v1.134.0 #660

Are you sure you want to change the base?

Update module github.com/gardener/gardener to v1.134.0 #660

Conversation

gardener-ci-robot commented Dec 11, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v1.134.0

[github.com/gardener/gardener:v1.134.0]

⚠️ Breaking Changes

📰 Noteworthy

✨ New Features

🐛 Bug Fixes

🏃 Others

Helm Charts

Container (OCI) Images

v1.133.1

[github.com/gardener/gardener:v1.133.1]

🐛 Bug Fixes

Helm Charts

Container (OCI) Images

Configuration

Uh oh!

gardener-ci-robot commented Dec 11, 2025

ℹ️ Artifact update notice

File name: go.mod

Uh oh!

gardener-prow bot commented Dec 11, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

gardener-ci-robot commented Dec 11, 2025 •

edited

Loading

`v1.134.0`

`v1.133.1`