# 4.13.31 Created: 2024-01-25 13:06:10 +0000 UTC Image Digest: `sha256:07cf79d6998a9b6a2d19b7fe168a3300ad682de33f190c9eb27bf61e67d3eeee` Promoted from registry.ci.openshift.org/ocp/release:4.13.0-0.nightly-2024-01-24-133342 ## Changes from 4.13.12 ### Components * Kubernetes upgraded from 1.26.7 to 1.26.13 * Red Hat Enterprise Linux CoreOS upgraded from 413.92.202308312039-0 to 413.92.202401240938-0 ### Rebuilt images without code change * [agent-installer-api-server](https://github.com/openshift/assisted-service) git [06189bcd](https://github.com/openshift/assisted-service/commit/06189bcdb0bea068f8ac51a3550fcdcbde522a76) `sha256:8961e464f6c3b4133973e7c394ee91d1c2623a2afbb532672c959678d2c96cc6` * [alibaba-machine-controllers](https://github.com/openshift/cluster-api-provider-alibaba) git [4c0f96a6](https://github.com/openshift/cluster-api-provider-alibaba/commit/4c0f96a692dee91100d7085c05a68f3efb7e281d) `sha256:ca0cef31aaaebc89e1d9a920bad558d7a0b302c4f316a2c2cbb29ac72b7db16d` * [cluster-bootstrap](https://github.com/openshift/cluster-bootstrap) git [ee908b6b](https://github.com/openshift/cluster-bootstrap/commit/ee908b6bb91dee3e61aface46d53a00b4e9288a2) `sha256:334786f38ea2d9c957d56c0ac666a04a98247b6e68a3421e1566f03df714f532` * [cluster-update-keys](https://github.com/openshift/cluster-update-keys) git [5b725937](https://github.com/openshift/cluster-update-keys/commit/5b725937d51e9f089c3f99e27e4ee77a6d2cbbcd) `sha256:a49d29763b8b132b38a31569e188ee818cecc54256e046aee9d379d3eecf2747` * [configmap-reloader](https://github.com/openshift/configmap-reload) git [9adad592](https://github.com/openshift/configmap-reload/commit/9adad592e7d9bd5a723add16488e68365a64977f) `sha256:c34b8da8afc9eea3243e8fe513cc419a7f210ecba12a31e70d04948fb4e40afe` * [csi-driver-manila-operator](https://github.com/openshift/csi-driver-manila-operator) git [b1295cd1](https://github.com/openshift/csi-driver-manila-operator/commit/b1295cd1a5978faa503c199d59d129e3ecfe2aeb) `sha256:9848cf37756f93c6d328c434d5a4df44fce70905d412a38d58a95078b7f25340` * [csi-driver-nfs](https://github.com/openshift/csi-driver-nfs) git [2b914c21](https://github.com/openshift/csi-driver-nfs/commit/2b914c2161722ebf11f9275fa29e00a0b1306da1) `sha256:589418a76c140c6f85251826edff7813c7811b0dd6ae42178af4dd6cb7306aa3` * [driver-toolkit](https://github.com/openshift/driver-toolkit) git [d719bdcf](https://github.com/openshift/driver-toolkit/commit/d719bdcfa49bc18b729117ee513a86a1ddecb63a) `sha256:127668170092fcba9524a3f13ab1e88745cf69dda2ccde8f14e7f42df0d7ad45` * [egress-router-cni](https://github.com/openshift/egress-router-cni) git [756e3845](https://github.com/openshift/egress-router-cni/commit/756e38455b8e08a34510e188673c77503dca3ff1) `sha256:6f2a843ec6f57a9d31671851aeaeafd41850e32ec93eb8928d8cb2f6da0324fc` * [ibmcloud-machine-controllers](https://github.com/openshift/machine-api-provider-ibmcloud) git [bb253a0c](https://github.com/openshift/machine-api-provider-ibmcloud/commit/bb253a0c607f7d1f8139ffd401bd6c9c432090d1) `sha256:ca7dfb5c4e8c75ebfb12cc9f338681f769ce75b1e4b3235a462f5c306b6adc1c` * [ironic-machine-os-downloader](https://github.com/openshift/ironic-rhcos-downloader) git [ce291779](https://github.com/openshift/ironic-rhcos-downloader/commit/ce2917794de5723248fe3302c8833f89fb54265a) `sha256:df2ce2059894eb9e6459e25ea0acc439e172619d9d1cb6b903659a3d325dd109` * [ironic-static-ip-manager](https://github.com/openshift/ironic-static-ip-manager) git [4536724a](https://github.com/openshift/ironic-static-ip-manager/commit/4536724a8644fda91a74b23901ba1789eaff7179) `sha256:98dc73295e722239da8601be3c277a25db2c9f3db4cdb93495e5306f9f6c0179` * [keepalived-ipfailover](https://github.com/openshift/images) git [04659348](https://github.com/openshift/images/commit/04659348dbad0cd9b56596d5977d2934fa01d509) `sha256:e5eae9d45e156df5c4ff020e15789abfd76e72b877eae70f3b4f04112caa44c2` * [kube-storage-version-migrator](https://github.com/openshift/kubernetes-kube-storage-version-migrator) git [bad104d1](https://github.com/openshift/kubernetes-kube-storage-version-migrator/commit/bad104d13ba95bc850f5aaf96436f793d7985864) `sha256:c395c5cc536d31a0982547bb725b5f36629d9aea6b277ec27467a6a4266cc01a` * [kubevirt-cloud-controller-manager](https://github.com/openshift/cloud-provider-kubevirt) git [ee2033ec](https://github.com/openshift/cloud-provider-kubevirt/commit/ee2033ecd471dc9fc08d101c421a04916f4f55c5) `sha256:8142367abaab475a3eabc4714bd489b85355acd0113b267aa6b342bef0773444` * [kubevirt-csi-driver](https://github.com/openshift/kubevirt-csi-driver) git [efa0b943](https://github.com/openshift/kubevirt-csi-driver/commit/efa0b9432bf0f44a965dc978ada75ea9b0f3e511) `sha256:cadd110285fac4c27047e790090af93cb0902d21165b6cd5247bf68dd3ad881b` * [kuryr-cni](https://github.com/openshift/kuryr-kubernetes) git [36754b7b](https://github.com/openshift/kuryr-kubernetes/commit/36754b7b90928e26811e1c5ea13e7d0bd85709de) `sha256:cc55c8d47c7dea862bc9af381ec264808e2ab6293449d330099ad5382e364b3d` * [kuryr-controller](https://github.com/openshift/kuryr-kubernetes) git [36754b7b](https://github.com/openshift/kuryr-kubernetes/commit/36754b7b90928e26811e1c5ea13e7d0bd85709de) `sha256:e62e1946c40518b1b1d654cb3715f697cc872954275fbe0440d13169156e17a6` * machine-os-content `sha256:bd5aefb56ae91c56eacd7032b3377b92d2de55b25d999ce5b171f62e1b243e1a` * [machine-os-images](https://github.com/openshift/machine-os-images) git [b14856ff](https://github.com/openshift/machine-os-images/commit/b14856ffbc8fbe1f986cf1b7b835bbeaa786ce5e) `sha256:1c29d87571540358806830e31fd9f66cdbd77a2c2b023c21383da2c3de0edab9` * [multus-route-override-cni](https://github.com/openshift/route-override-cni) git [ca3bbec5](https://github.com/openshift/route-override-cni/commit/ca3bbec5c75ebcd6814bdd74856b27db755c9fa3) `sha256:762effee4eb53da1073a632e4ed94ef1398d074bdf9960ef30c5dee930eb6212` * [network-interface-bond-cni](https://github.com/openshift/bond-cni) git [84bda2af](https://github.com/openshift/bond-cni/commit/84bda2afb2ab260253b77d5d282df773cc6b3438) `sha256:0fe6890ef6caad549ff8fc76c735184f5d6039e9697944a149e610a3e839b2d2` * [network-tools](https://github.com/openshift/network-tools) git [073feda1](https://github.com/openshift/network-tools/commit/073feda14fbd894c4238d693afa38a06392f2360) `sha256:38902826d756ea9ac81d9831e3440b756592f680f825235963d8f99a435325a6` * [nutanix-cloud-controller-manager](https://github.com/openshift/cloud-provider-nutanix) git [4d1c58e2](https://github.com/openshift/cloud-provider-nutanix/commit/4d1c58e2b97f00e64ab4332d18dfdd531fb9cc4e) `sha256:e0016a9157152811fe983d8121e7ef9bbb10b460884f753be58a26092dbcdb1c` * [oauth-apiserver](https://github.com/openshift/oauth-apiserver) git [41c2dfea](https://github.com/openshift/oauth-apiserver/commit/41c2dfea104b3c686a00b068654843b48b4db53f) `sha256:09d11fa5abeb4c2e956e786b94792aac8fb47f7ef9820a98f649d5057c3dba78` * [oauth-proxy](https://github.com/openshift/oauth-proxy) git [44af5a3a](https://github.com/openshift/oauth-proxy/commit/44af5a3a021fd158c2e44d9951ad59a3d474cdf3) `sha256:bedd6fb2414e525a1d2ac4471098bdd38af2090e6fc731da9776970e3b6f3fda` * [openshift-controller-manager](https://github.com/openshift/openshift-controller-manager) git [385057e5](https://github.com/openshift/openshift-controller-manager/commit/385057e57752b7b4f21ef32d7a7993d266a591eb) `sha256:6aa5e920059429db0b812ee1a57ff4fcef527c56a3d6b70de953b757321e5e8e` * [ovirt-machine-controllers](https://github.com/openshift/cluster-api-provider-ovirt) git [22d89b3f](https://github.com/openshift/cluster-api-provider-ovirt/commit/22d89b3fd9e2e395a62f71092487d26c8940052e) `sha256:99162c556a23ab7354ca0f567098a91b30f200ae30d5c5775fe6dda95df1227b` * [prom-label-proxy](https://github.com/openshift/prom-label-proxy) git [b501d5e2](https://github.com/openshift/prom-label-proxy/commit/b501d5e2aff82d46a141223636b522aeae95b915) `sha256:208c40f8ee6765619e454bc7d7ba4ef3a483ceac98be0cd4ed028c8cd611115c` * rhel-coreos `sha256:74642e0db60c14ce548cc14a2428c8b4ab59942239a716329671ef47e0d34cfc` * rhel-coreos-extensions `sha256:a0d0f6a74ad9d3a689f19e54255039bc070618efcedc0c09fc8bd30470ef2325` * [route-controller-manager](https://github.com/openshift/route-controller-manager) git [6667a6cb](https://github.com/openshift/route-controller-manager/commit/6667a6cbf9a87331fcc4407375118c0bb884c925) `sha256:a3af54736659451d145ab9114902539f88441946fe90041a42d2bd45f639bfa1` * [service-ca-operator](https://github.com/openshift/service-ca-operator) git [5984aac1](https://github.com/openshift/service-ca-operator/commit/5984aac13df6c2f4440c67a1a14d32958bce9ec3) `sha256:07625b312d5da30798476f0daacf22dc65049b937cf1d2a7a779e4c763778439` ### [agent-installer-csr-approver, agent-installer-orchestrator](https://github.com/openshift/assisted-installer/tree/edf25423e34294b754ac16a67dbaf1aed7467ca4) * [MGMT-13586](https://issues.redhat.com/browse/MGMT-13586): Wait for ETCD Bootstrap to complete (#670) (#717) [#670](https://github.com/openshift/assisted-installer/pull/670) * [Full changelog](https://github.com/openshift/assisted-installer/compare/6160d18379195ac3f65ab3898429936a95522fd0...edf25423e34294b754ac16a67dbaf1aed7467ca4) ### [agent-installer-node-agent](https://github.com/openshift/assisted-installer-agent/tree/c5611048e36de8c7c917451fa8e4fb3f1edb8b6a) * [MGMT-13111](https://issues.redhat.com/browse/MGMT-13111): Freeze on `404 Not Found` (#628) [#628](https://github.com/openshift/assisted-installer-agent/pull/628) * [OCPBUGS-16373](https://issues.redhat.com/browse/OCPBUGS-16373): Ignore arping errors on RHEL 9 (#577) [#577](https://github.com/openshift/assisted-installer-agent/pull/577) * [Full changelog](https://github.com/openshift/assisted-installer-agent/compare/18863d3b7e3ddf52c2901db2e9f381862ebc7642...c5611048e36de8c7c917451fa8e4fb3f1edb8b6a) ### [alibaba-cloud-controller-manager](https://github.com/openshift/cloud-provider-alibaba-cloud/tree/e41e11ccf25fa74e4cfb4ace124f35cffc0191a7) * [OCPBUGS-21238](https://issues.redhat.com/browse/OCPBUGS-21238): Bump golang.org/x/net to v0.19.0 [#43](https://github.com/openshift/cloud-provider-alibaba-cloud/pull/43) * [Full changelog](https://github.com/openshift/cloud-provider-alibaba-cloud/compare/b5200baa784513b77437809c63fcc80cfd53c9df...e41e11ccf25fa74e4cfb4ace124f35cffc0191a7) ### [alibaba-cloud-csi-driver](https://github.com/openshift/alibaba-cloud-csi-driver/tree/6384f904d041b761670532ac183271b8110707f2) * [OCPBUGS-21329](https://issues.redhat.com/browse/OCPBUGS-21329): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#37](https://github.com/openshift/alibaba-cloud-csi-driver/pull/37) * [Full changelog](https://github.com/openshift/alibaba-cloud-csi-driver/compare/94667c6c213f07ec7613a6d6e831d64ee73181e1...6384f904d041b761670532ac183271b8110707f2) ### [alibaba-disk-csi-driver-operator](https://github.com/openshift/alibaba-disk-csi-driver-operator/tree/7e415973dda671d82ae58d0107af274ff053db5c) * [OCPBUGS-21428](https://issues.redhat.com/browse/OCPBUGS-21428): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#65](https://github.com/openshift/alibaba-disk-csi-driver-operator/pull/65) * [Full changelog](https://github.com/openshift/alibaba-disk-csi-driver-operator/compare/c08d87a1d043dc04d3d3cb59be9265ee5ed29b06...7e415973dda671d82ae58d0107af274ff053db5c) ### [apiserver-network-proxy](https://github.com/openshift/apiserver-network-proxy/tree/3362d673b054807a4974b4d600486933f7e0bd42) * [HOSTEDCP-1323](https://issues.redhat.com/browse/HOSTEDCP-1323): Merge latest code into 4.14 branch [#45](https://github.com/openshift/apiserver-network-proxy/pull/45) * [Full changelog](https://github.com/openshift/apiserver-network-proxy/compare/15cd4347b9384fac3d93029c6426dc15b964f557...3362d673b054807a4974b4d600486933f7e0bd42) ### [aws-cloud-controller-manager](https://github.com/openshift/cloud-provider-aws/tree/dece8be1a691a1dd82f561da6a1c7aca1b50d410) * [OCPBUGS-20738](https://issues.redhat.com/browse/OCPBUGS-20738): Update golang.org/x/net to v0.17.0 [#54](https://github.com/openshift/cloud-provider-aws/pull/54) * [Full changelog](https://github.com/openshift/cloud-provider-aws/compare/946daa07dbf49c4a1860a1c3fc4c05fa685c6590...dece8be1a691a1dd82f561da6a1c7aca1b50d410) ### [aws-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-aws/tree/de23838384b0859542041395fd84100efee34833) * [OCPBUGS-20836](https://issues.redhat.com/browse/OCPBUGS-20836): bump golang.org/x/net to v0.17.0 [#482](https://github.com/openshift/cluster-api-provider-aws/pull/482) * [Full changelog](https://github.com/openshift/cluster-api-provider-aws/compare/acb52a088682bf4019d616523881401526437fd3...de23838384b0859542041395fd84100efee34833) ### [aws-ebs-csi-driver](https://github.com/openshift/aws-ebs-csi-driver/tree/325cb029f5dac51e4efabe89a62315af134cad8d) * [OCPBUGS-20939](https://issues.redhat.com/browse/OCPBUGS-20939): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#240](https://github.com/openshift/aws-ebs-csi-driver/pull/240) * [Full changelog](https://github.com/openshift/aws-ebs-csi-driver/compare/923631d779405e7cb684c174fa42e589c318060f...325cb029f5dac51e4efabe89a62315af134cad8d) ### [aws-ebs-csi-driver-operator](https://github.com/openshift/aws-ebs-csi-driver-operator/tree/3cb879a801f54ecc5d03c7404deba7ca25bb5af5) * [OCPBUGS-21034](https://issues.redhat.com/browse/OCPBUGS-21034): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#281](https://github.com/openshift/aws-ebs-csi-driver-operator/pull/281) * [Full changelog](https://github.com/openshift/aws-ebs-csi-driver-operator/compare/baf14a425efed2764c79d630d5aecb4744066397...3cb879a801f54ecc5d03c7404deba7ca25bb5af5) ### [aws-machine-controllers](https://github.com/openshift/machine-api-provider-aws/tree/e1a57b5e4ce731e8f90cd2c0d4ded81e40fa7a37) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#96](https://github.com/openshift/machine-api-provider-aws/pull/96) * [OCPBUGS-21568](https://issues.redhat.com/browse/OCPBUGS-21568): Update golang.org/x/net to v0.17.0 [#89](https://github.com/openshift/machine-api-provider-aws/pull/89) * [Full changelog](https://github.com/openshift/machine-api-provider-aws/compare/ba3b3a31ca9efcc984015280965a4b28ffd740e0...e1a57b5e4ce731e8f90cd2c0d4ded81e40fa7a37) ### [aws-pod-identity-webhook](https://github.com/openshift/aws-pod-identity-webhook/tree/06140aba64cbaca89af882d1a658e318063fb928) * [OCPBUGS-21331](https://issues.redhat.com/browse/OCPBUGS-21331): Upgrade golang/x/net for CVE-2023-39325 [#184](https://github.com/openshift/aws-pod-identity-webhook/pull/184) * NO-ISSUE: Sync OWNERS with team members [#177](https://github.com/openshift/aws-pod-identity-webhook/pull/177) * snyk: exclude vendor/ [#172](https://github.com/openshift/aws-pod-identity-webhook/pull/172) * [Full changelog](https://github.com/openshift/aws-pod-identity-webhook/compare/125a4b45d02ac7596406e43810398688b25ec91d...06140aba64cbaca89af882d1a658e318063fb928) ### [azure-cloud-controller-manager, azure-cloud-node-manager](https://github.com/openshift/cloud-provider-azure/tree/bf9bd02236e13c426d58c9828685dd6c598ff15f) * [OCPBUGS-21419](https://issues.redhat.com/browse/OCPBUGS-21419): Bump golang.org/x/net to v0.18.0 [#94](https://github.com/openshift/cloud-provider-azure/pull/94) * [Full changelog](https://github.com/openshift/cloud-provider-azure/compare/b8d243397ff297baf875a88132f84d8cef34b968...bf9bd02236e13c426d58c9828685dd6c598ff15f) ### [azure-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-azure/tree/aa3b650ee93e7cb92556cf2e917074011578c040) * [OCPBUGS-21503](https://issues.redhat.com/browse/OCPBUGS-21503): bump golang.org/x/net to v0.17.0 [#288](https://github.com/openshift/cluster-api-provider-azure/pull/288) * [Full changelog](https://github.com/openshift/cluster-api-provider-azure/compare/8846366f4ae63a63ab75a35761cca1c95dee3c84...aa3b650ee93e7cb92556cf2e917074011578c040) ### [azure-disk-csi-driver](https://github.com/openshift/azure-disk-csi-driver/tree/b6d3fbcbf312f03247092323a88a43873b693f22) * [OCPBUGS-23216](https://issues.redhat.com/browse/OCPBUGS-23216): Update to v1.26.7 [#63](https://github.com/openshift/azure-disk-csi-driver/pull/63) * [OCPBUGS-20688](https://issues.redhat.com/browse/OCPBUGS-20688): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#55](https://github.com/openshift/azure-disk-csi-driver/pull/55) * [Full changelog](https://github.com/openshift/azure-disk-csi-driver/compare/89e21d61f6f23b2e89f1b24096e458d6ade8a40a...b6d3fbcbf312f03247092323a88a43873b693f22) ### [azure-disk-csi-driver-operator](https://github.com/openshift/azure-disk-csi-driver-operator/tree/8534d7563e209e12eec38a2027cd1d9efd530071) * [OCPBUGS-20766](https://issues.redhat.com/browse/OCPBUGS-20766): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#102](https://github.com/openshift/azure-disk-csi-driver-operator/pull/102) * [Full changelog](https://github.com/openshift/azure-disk-csi-driver-operator/compare/842415aa35f7151c34645161ef6aede60354ae2a...8534d7563e209e12eec38a2027cd1d9efd530071) ### [azure-file-csi-driver](https://github.com/openshift/azure-file-csi-driver/tree/33d52ecd52b09ba3ab431ce2e2850262a88c2282) * [OCPBUGS-20862](https://issues.redhat.com/browse/OCPBUGS-20862): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#38](https://github.com/openshift/azure-file-csi-driver/pull/38) * [Full changelog](https://github.com/openshift/azure-file-csi-driver/compare/60e0cb86a6055e420bfdb52530d0a0d6418f47fd...33d52ecd52b09ba3ab431ce2e2850262a88c2282) ### [azure-file-csi-driver-operator](https://github.com/openshift/azure-file-csi-driver-operator/tree/70e0530255150e513061730f7624c9c235ee7c38) * [OCPBUGS-20964](https://issues.redhat.com/browse/OCPBUGS-20964): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#77](https://github.com/openshift/azure-file-csi-driver-operator/pull/77) * [Full changelog](https://github.com/openshift/azure-file-csi-driver-operator/compare/a79311d87a15769d1bad162d80fb9cb978478a42...70e0530255150e513061730f7624c9c235ee7c38) ### [azure-machine-controllers](https://github.com/openshift/machine-api-provider-azure/tree/5923f3fd8bf3f8d3fe45658463e4200feb88abf9) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#89](https://github.com/openshift/machine-api-provider-azure/pull/89) * [OCPBUGS-20758](https://issues.redhat.com/browse/OCPBUGS-20758): Bump x/net package to v0.18.0 [#83](https://github.com/openshift/machine-api-provider-azure/pull/83) * [Full changelog](https://github.com/openshift/machine-api-provider-azure/compare/2c0c0ec9d486f737044033f5010a91e117c4e492...5923f3fd8bf3f8d3fe45658463e4200feb88abf9) ### [baremetal-installer, installer, installer-artifacts](https://github.com/openshift/installer/tree/7fdfcd378b4d05869e614964b44718d6126197d9) * [OCPBUGS-25420](https://issues.redhat.com/browse/OCPBUGS-25420): destroy: gcp: fix destroying regional disks [#7840](https://github.com/openshift/installer/pull/7840) * [OCPBUGS-23464](https://issues.redhat.com/browse/OCPBUGS-23464): Add KMS encryption keys if provided [#7746](https://github.com/openshift/installer/pull/7746) * [OCPBUGS-23141](https://issues.redhat.com/browse/OCPBUGS-23141): Specify google cloud CLI to version 447.0.0 [#7706](https://github.com/openshift/installer/pull/7706) * [OCPBUGS-22939](https://issues.redhat.com/browse/OCPBUGS-22939): azure: validation: validate defaultMachinePlatform [#7679](https://github.com/openshift/installer/pull/7679) * [OCPBUGS-14551](https://issues.redhat.com/browse/OCPBUGS-14551): [vSphere] Upi installation failed due to VMs for master and worker node creation failed [#7229](https://github.com/openshift/installer/pull/7229) * [OCPBUGS-19307](https://issues.redhat.com/browse/OCPBUGS-19307): Implement workaround to allow SNO installations for OKD/FCOS [#7480](https://github.com/openshift/installer/pull/7480) * [OCPBUGS-18787](https://issues.redhat.com/browse/OCPBUGS-18787): vSphere set bootstrap/master efi [#7481](https://github.com/openshift/installer/pull/7481) * [OCPBUGS-19320](https://issues.redhat.com/browse/OCPBUGS-19320): [release-4.13] for vsphere ipi add cluster domain to the uploaded vm configs so that… [#7498](https://github.com/openshift/installer/pull/7498) * [OCPBUGS-20141](https://issues.redhat.com/browse/OCPBUGS-20141): [release-4.13] Use updated ansible-core for Openstack image [#7559](https://github.com/openshift/installer/pull/7559) * [OCPBUGS-19670](https://issues.redhat.com/browse/OCPBUGS-19670): [release-4.13] Allow different service account for xpn installs in gcp [#7524](https://github.com/openshift/installer/pull/7524) * [OCPBUGS-19773](https://issues.redhat.com/browse/OCPBUGS-19773): Increase bootstrap timeout for vSphere platform by 30 mins [#7530](https://github.com/openshift/installer/pull/7530) * [OCPBUGS-16383](https://issues.redhat.com/browse/OCPBUGS-16383): [release-4.13] Default dataStore is returned the name instead the inventoryPath [#7343](https://github.com/openshift/installer/pull/7343) * [OCPBUGS-13681](https://issues.redhat.com/browse/OCPBUGS-13681): FCOS: bump to latest stable version [#7188](https://github.com/openshift/installer/pull/7188) * [OCPBUGS-11093](https://issues.redhat.com/browse/OCPBUGS-11093): Azure: don't set default subscriptionID for disk encryption sets [#7432](https://github.com/openshift/installer/pull/7432) * [OCPBUGS-17809](https://issues.redhat.com/browse/OCPBUGS-17809): Allow destroy for C2S isolated (us-iso and us-isob) partitions [#7427](https://github.com/openshift/installer/pull/7427) * [OCPBUGS-15231](https://issues.redhat.com/browse/OCPBUGS-15231): new Aws secret regions support [#7264](https://github.com/openshift/installer/pull/7264) * [OCPBUGS-15222](https://issues.redhat.com/browse/OCPBUGS-15222): terraform: aws: secret regions now support ALIAS record [#7262](https://github.com/openshift/installer/pull/7262) * [Full changelog](https://github.com/openshift/installer/compare/efdf6fb258d835614fef0d570074defa5d74aa93...7fdfcd378b4d05869e614964b44718d6126197d9) ### [baremetal-machine-controllers](https://github.com/openshift/cluster-api-provider-baremetal/tree/e9877cef729ea81e8f8e7ab233c2f3ec8d70db09) * [OCPBUGS-21701](https://issues.redhat.com/browse/OCPBUGS-21701): Uplift x/net to v0.17.0 [#199](https://github.com/openshift/cluster-api-provider-baremetal/pull/199) * [Full changelog](https://github.com/openshift/cluster-api-provider-baremetal/compare/7de328a2d332833257fde75368e624908a3eec13...e9877cef729ea81e8f8e7ab233c2f3ec8d70db09) ### [baremetal-operator](https://github.com/openshift/baremetal-operator/tree/ecd17336cec93d3e7046a5211a0d569a8899119d) * [OCPBUGS-23504](https://issues.redhat.com/browse/OCPBUGS-23504): hack for deploying V6-only clusters from dualstack hubs [#321](https://github.com/openshift/baremetal-operator/pull/321) * [OCPBUGS-21167](https://issues.redhat.com/browse/OCPBUGS-21167): Uplift x/net to v0.17.0 [#309](https://github.com/openshift/baremetal-operator/pull/309) * [Full changelog](https://github.com/openshift/baremetal-operator/compare/12e53b8aeee5bb4d576e88dad5611c798928249b...ecd17336cec93d3e7046a5211a0d569a8899119d) ### [baremetal-runtimecfg](https://github.com/openshift/baremetal-runtimecfg/tree/1280cf541c220af73b9886379dad2dfa4921f73b) * [OCPBUGS-26929](https://issues.redhat.com/browse/OCPBUGS-26929): Add .snyk file to ignore vendor and test files [#295](https://github.com/openshift/baremetal-runtimecfg/pull/295) * [OCPBUGS-22207](https://issues.redhat.com/browse/OCPBUGS-22207): deps: upgrade x/sys [#282](https://github.com/openshift/baremetal-runtimecfg/pull/282) * [OCPBUGS-20081](https://issues.redhat.com/browse/OCPBUGS-20081): Increase timeout for bootstrap kubeapi [#278](https://github.com/openshift/baremetal-runtimecfg/pull/278) * [Full changelog](https://github.com/openshift/baremetal-runtimecfg/compare/dc50979bf902b9e217ab694b225f391529b92963...1280cf541c220af73b9886379dad2dfa4921f73b) ### [cli, cli-artifacts, deployer, tools](https://github.com/openshift/oc/tree/7780c379ac62ddfc982b81eb0c4470b9597f505e) * [OCPBUGS-25418](https://issues.redhat.com/browse/OCPBUGS-25418): Add client version in must-gather summary [#1635](https://github.com/openshift/oc/pull/1635) * [OCPBUGS-24461](https://issues.redhat.com/browse/OCPBUGS-24461): Overwrite template's namespace with the explicit one [#1617](https://github.com/openshift/oc/pull/1617) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): Add OAuth2 Authorization Code Grant Flow for login [#1599](https://github.com/openshift/oc/pull/1599) * [OCPBUGS-22815](https://issues.redhat.com/browse/OCPBUGS-22815): regeneratemco: explicitly check for PlatformStatus field [#1593](https://github.com/openshift/oc/pull/1593) * [OCPBUGS-20298](https://issues.redhat.com/browse/OCPBUGS-20298): Use quay redis image instead docker mysql [#1566](https://github.com/openshift/oc/pull/1566) * [OCPBUGS-19942](https://issues.redhat.com/browse/OCPBUGS-19942): Truncate existing files when writing from inspect [#1553](https://github.com/openshift/oc/pull/1553) * [Full changelog](https://github.com/openshift/oc/compare/17b7accf8fd25125ce015cf4bea7d3cd3f336317...7780c379ac62ddfc982b81eb0c4470b9597f505e) ### [cloud-credential-operator](https://github.com/openshift/cloud-credential-operator/tree/69ccc0745135ca29ccbf69be4e74b69908303804) * [OCPBUGS-25369](https://issues.redhat.com/browse/OCPBUGS-25369): Discover AWS dns suffix from partition and region. [#640](https://github.com/openshift/cloud-credential-operator/pull/640) * [OCPBUGS-21367](https://issues.redhat.com/browse/OCPBUGS-21367): Upgrade golang/x/net for CVE-2023-39325 [#623](https://github.com/openshift/cloud-credential-operator/pull/623) * snyk: exclude vendor/ [#616](https://github.com/openshift/cloud-credential-operator/pull/616) * [Full changelog](https://github.com/openshift/cloud-credential-operator/compare/0621fcaf818f57ab05602259c1eb14db07b68dce...69ccc0745135ca29ccbf69be4e74b69908303804) ### [cloud-network-config-controller](https://github.com/openshift/cloud-network-config-controller/tree/78d453a5ca0f5e009d3a16e62f2e0e35c3ac5a9c) * [OCPBUGS-22299](https://issues.redhat.com/browse/OCPBUGS-22299): Azure: skip backend pool if attached to an outbound rule [#126](https://github.com/openshift/cloud-network-config-controller/pull/126) * [Full changelog](https://github.com/openshift/cloud-network-config-controller/compare/4f190d6b8c06257071e01b4d75ea9ae33fd20885...78d453a5ca0f5e009d3a16e62f2e0e35c3ac5a9c) ### [cluster-authentication-operator](https://github.com/openshift/cluster-authentication-operator/tree/2b2f67cf68ad52b362d51e4fcfc2f8aa98e4b929) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): Add openshift-cli-client OAuth Client [#641](https://github.com/openshift/cluster-authentication-operator/pull/641) * [OCPBUGS-22210](https://issues.redhat.com/browse/OCPBUGS-22210): increase timeout for probes [#638](https://github.com/openshift/cluster-authentication-operator/pull/638) * [Full changelog](https://github.com/openshift/cluster-authentication-operator/compare/a044dd9175d25911b799082fb189e4886391807b...2b2f67cf68ad52b362d51e4fcfc2f8aa98e4b929) ### [cluster-autoscaler](https://github.com/openshift/kubernetes-autoscaler/tree/9462ec99846bc6d071ce32488c21fd90f383eceb) * [OCPBUGS-23272](https://issues.redhat.com/browse/OCPBUGS-23272): Rebase 4.13 branch onto cluster autoscaler 1.26.4 [#268](https://github.com/openshift/kubernetes-autoscaler/pull/268) * [Full changelog](https://github.com/openshift/kubernetes-autoscaler/compare/c58c53bf7a82ee46414c7f7c0f2e0e438da93eeb...9462ec99846bc6d071ce32488c21fd90f383eceb) ### [cluster-autoscaler-operator](https://github.com/openshift/cluster-autoscaler-operator/tree/ade6cfb16944db8e2151f921640041e0b2a403c3) * [OCPBUGS-20770](https://issues.redhat.com/browse/OCPBUGS-20770): Bump x/net package to v0.18.0 [#299](https://github.com/openshift/cluster-autoscaler-operator/pull/299) * [OCPBUGS-17056](https://issues.redhat.com/browse/OCPBUGS-17056): Address long acquire times during update [#289](https://github.com/openshift/cluster-autoscaler-operator/pull/289) * [Full changelog](https://github.com/openshift/cluster-autoscaler-operator/compare/29a00c91292ecf6512e35d6f01c2d5b8696c17ca...ade6cfb16944db8e2151f921640041e0b2a403c3) ### [cluster-baremetal-operator](https://github.com/openshift/cluster-baremetal-operator/tree/b5eb7b6c7b85dd8ef51fe138ec7e6b5392391c11) * [OCPBUGS-23504](https://issues.redhat.com/browse/OCPBUGS-23504): hack for deploying V6-only clusters from dualstack hubs [#391](https://github.com/openshift/cluster-baremetal-operator/pull/391) * [OCPBUGS-23444](https://issues.redhat.com/browse/OCPBUGS-23444): Update the deprecated field APIServerInternalIP to APIServerInternalIPs [#385](https://github.com/openshift/cluster-baremetal-operator/pull/385) * [OCPBUGS-20867](https://issues.redhat.com/browse/OCPBUGS-20867): Uplift x/net to v0.17.0 [#370](https://github.com/openshift/cluster-baremetal-operator/pull/370) * [OCPBUGS-19369](https://issues.redhat.com/browse/OCPBUGS-19369): Guard against nil PlatformStatus [#363](https://github.com/openshift/cluster-baremetal-operator/pull/363) * [Full changelog](https://github.com/openshift/cluster-baremetal-operator/compare/ee42773269a65998812435c0f1ab0c08cd8154f5...b5eb7b6c7b85dd8ef51fe138ec7e6b5392391c11) ### [cluster-capi-controllers](https://github.com/openshift/cluster-api/tree/12f767b2bd5de1a2641962f5d86d8564333afc65) * [OCPBUGS-21531](https://issues.redhat.com/browse/OCPBUGS-21531): bump golang.org/x/net to v0.17.0 [#185](https://github.com/openshift/cluster-api/pull/185) * [Full changelog](https://github.com/openshift/cluster-api/compare/507f873307be10d8ddbbbe0fecba68aea7c2b5c1...12f767b2bd5de1a2641962f5d86d8564333afc65) ### [cluster-capi-operator](https://github.com/openshift/cluster-capi-operator/tree/b247793dd364f280ad097f5266b4164740e43a44) * [OCPBUGS-21082](https://issues.redhat.com/browse/OCPBUGS-21082): bump golang.org/x/net to v0.17.0 [#137](https://github.com/openshift/cluster-capi-operator/pull/137) * [Full changelog](https://github.com/openshift/cluster-capi-operator/compare/ce1c9a359ec9ab0c5526cd8594ea59bb52044026...b247793dd364f280ad097f5266b4164740e43a44) ### [cluster-cloud-controller-manager-operator](https://github.com/openshift/cluster-cloud-controller-manager-operator/tree/288b3fe3f2637e3ac80464cc5513011fd3a3c583) * [OCPBUGS-21169](https://issues.redhat.com/browse/OCPBUGS-21169): Bump golang.org/x/net to v0.18.0 [#296](https://github.com/openshift/cluster-cloud-controller-manager-operator/pull/296) * [Full changelog](https://github.com/openshift/cluster-cloud-controller-manager-operator/compare/ef4594ef3f4ca535aa1d34878b79184323ecf481...288b3fe3f2637e3ac80464cc5513011fd3a3c583) ### [cluster-config-operator](https://github.com/openshift/cluster-config-operator/tree/71636fa1d9fba6b06c7d30f83180f58b9c9ccf1e) * : OCPBUGS-21269: bump library-go to include switch to HTTP/1.1 [#372](https://github.com/openshift/cluster-config-operator/pull/372) * [Full changelog](https://github.com/openshift/cluster-config-operator/compare/a9e658abf7de525b411ff005b65e061e39f58bd6...71636fa1d9fba6b06c7d30f83180f58b9c9ccf1e) ### [cluster-control-plane-machine-set-operator](https://github.com/openshift/cluster-control-plane-machine-set-operator/tree/3110ed81e74c7ca7335bb3af4ba40d521a92dcb1) * [OCPBUGS-21364](https://issues.redhat.com/browse/OCPBUGS-21364): Bump golang.org/x/net to v0.17.0 [#259](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/259) * [OCPBUGS-20482](https://issues.redhat.com/browse/OCPBUGS-20482): fix: e2e: add gcp custom type to test framework [#249](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/249) * [OCPBUGS-17055](https://issues.redhat.com/browse/OCPBUGS-17055): Address long acquire times during update [#240](https://github.com/openshift/cluster-control-plane-machine-set-operator/pull/240) * [Full changelog](https://github.com/openshift/cluster-control-plane-machine-set-operator/compare/42f323cd02b4e86ed630ed6649e32f9a876b3444...3110ed81e74c7ca7335bb3af4ba40d521a92dcb1) ### [cluster-csi-snapshot-controller-operator](https://github.com/openshift/cluster-csi-snapshot-controller-operator/tree/544bc12e412d94153ef711cc0bb55eb40ab6d43e) * [OCPBUGS-21461](https://issues.redhat.com/browse/OCPBUGS-21461): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#168](https://github.com/openshift/cluster-csi-snapshot-controller-operator/pull/168) * [Full changelog](https://github.com/openshift/cluster-csi-snapshot-controller-operator/compare/97b486cb22d56c7ea17b6829606ae0c555bcc426...544bc12e412d94153ef711cc0bb55eb40ab6d43e) ### [cluster-dns-operator](https://github.com/openshift/cluster-dns-operator/tree/759791edae6fcd129e9f04adf6406328892f0f53) * [OCPBUGS-11449](https://issues.redhat.com/browse/OCPBUGS-11449): Set DNS DaemonSet's maxSurge value to 10% [#366](https://github.com/openshift/cluster-dns-operator/pull/366) * [OCPBUGS-21534](https://issues.redhat.com/browse/OCPBUGS-21534): Bump golang.org/x/net/http2 to v0.17.0 for CVE-2023-39325 in cluster-dns-operator [#390](https://github.com/openshift/cluster-dns-operator/pull/390) * [Full changelog](https://github.com/openshift/cluster-dns-operator/compare/c6768d4537b7c2969b77fea26429b2822c0ec844...759791edae6fcd129e9f04adf6406328892f0f53) ### [cluster-etcd-operator](https://github.com/openshift/cluster-etcd-operator/tree/93357ca1e9e0b3ad4eec6fb7e3f787faf3848896) * [OCPBUGS-23106](https://issues.redhat.com/browse/OCPBUGS-23106): [4.13] Remove z-upgrades from UpgradeBackupController [#1154](https://github.com/openshift/cluster-etcd-operator/pull/1154) * Revert "[release-4.13] OCPBUGS-23044: remove revision stability check from bootstrap complet…" [#1166](https://github.com/openshift/cluster-etcd-operator/pull/1166) * [OCPBUGS-22783](https://issues.redhat.com/browse/OCPBUGS-22783): relax readiness to local serializable requests [#1144](https://github.com/openshift/cluster-etcd-operator/pull/1144) * [OCPBUGS-23044](https://issues.redhat.com/browse/OCPBUGS-23044): remove revision stability check from bootstrap complet… [#1151](https://github.com/openshift/cluster-etcd-operator/pull/1151) * [OCPBUGS-21155](https://issues.redhat.com/browse/OCPBUGS-21155): fixing CVE-2023-39325 by updating dependencies [#1143](https://github.com/openshift/cluster-etcd-operator/pull/1143) * [OCPBUGS-20488](https://issues.redhat.com/browse/OCPBUGS-20488): prioritize podman pull in etcdctl dl [#1136](https://github.com/openshift/cluster-etcd-operator/pull/1136) * [OCPBUGS-19378](https://issues.redhat.com/browse/OCPBUGS-19378): [4.13] Backports of backup/restore fixes [#1117](https://github.com/openshift/cluster-etcd-operator/pull/1117) * [OCPBUGS-19825](https://issues.redhat.com/browse/OCPBUGS-19825): Update staticpod file permissions to conform with CIS benchmarks [#1125](https://github.com/openshift/cluster-etcd-operator/pull/1125) * [Full changelog](https://github.com/openshift/cluster-etcd-operator/compare/f8b2f77f9e480cae8f5fbda13fd2b54b61d276ee...93357ca1e9e0b3ad4eec6fb7e3f787faf3848896) ### [cluster-image-registry-operator](https://github.com/openshift/cluster-image-registry-operator/tree/e71b854303e698a0ec88afb91222d106208dbfef) * [OCPBUGS-22126](https://issues.redhat.com/browse/OCPBUGS-22126): increase storage account key cache expiration [#940](https://github.com/openshift/cluster-image-registry-operator/pull/940) * [OCPBUGS-20698](https://issues.redhat.com/browse/OCPBUGS-20698): mitigate effects of rapid reset [#946](https://github.com/openshift/cluster-image-registry-operator/pull/946) * [Full changelog](https://github.com/openshift/cluster-image-registry-operator/compare/3ed61e2b86c3ff0eddc66baa038a6b30a579ce15...e71b854303e698a0ec88afb91222d106208dbfef) ### [cluster-ingress-operator](https://github.com/openshift/cluster-ingress-operator/tree/5379ce1cb9305d89e0349a3e80fac8801c72eb42) * [OCPBUGS-20781](https://issues.redhat.com/browse/OCPBUGS-20781): Bump golang.org/x/net for CVE-2023-44487 [#987](https://github.com/openshift/cluster-ingress-operator/pull/987) * [OCPBUGS-22402](https://issues.redhat.com/browse/OCPBUGS-22402): test/e2e: Don't use openshift/origin-node [#991](https://github.com/openshift/cluster-ingress-operator/pull/991) * [Full changelog](https://github.com/openshift/cluster-ingress-operator/compare/2ecad04e6dcd3338b7180529a9f55cb13dff276d...5379ce1cb9305d89e0349a3e80fac8801c72eb42) ### [cluster-kube-apiserver-operator](https://github.com/openshift/cluster-kube-apiserver-operator/tree/a5ca01222476bb9f05916217be6f94f08e91a4ec) * : OCPBUGS-24023: Add workload partitioning annotation [#1591](https://github.com/openshift/cluster-kube-apiserver-operator/pull/1591) * : OCPBUGS-20880: bump library-go to include switch to HTTP/1.1 [#1573](https://github.com/openshift/cluster-kube-apiserver-operator/pull/1573) * [OCPBUGS-19825](https://issues.redhat.com/browse/OCPBUGS-19825): Update staticpod file permissions to conform with CIS benchmarks [#1558](https://github.com/openshift/cluster-kube-apiserver-operator/pull/1558) * [Full changelog](https://github.com/openshift/cluster-kube-apiserver-operator/compare/64248a87ca421b5f28d2d472c48cd29a465e75f8...a5ca01222476bb9f05916217be6f94f08e91a4ec) ### [cluster-kube-cluster-api-operator](https://github.com/openshift/cluster-api-operator/tree/18c076b1b56e06086fc3e4ea89d6922cca2d6b4a) * [OCPBUGS-20981](https://issues.redhat.com/browse/OCPBUGS-20981): bump golang.org/x/net to v0.17.0 [#28](https://github.com/openshift/cluster-api-operator/pull/28) * [Full changelog](https://github.com/openshift/cluster-api-operator/compare/8d627a55e6d765019f4879ea20e2016e6cc0be63...18c076b1b56e06086fc3e4ea89d6922cca2d6b4a) ### [cluster-kube-controller-manager-operator](https://github.com/openshift/cluster-kube-controller-manager-operator/tree/dac7113696160d1170d9b3773afa4a4b7cb2099b) * [OCPBUGS-27066](https://issues.redhat.com/browse/OCPBUGS-27066): bump(library-go)=release-4.13 [#788](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/788) * [OCPBUGS-21103](https://issues.redhat.com/browse/OCPBUGS-21103): Drop flags removed in k8s 1.26 [4.13] [#766](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/766) * [OCPBUGS-21078](https://issues.redhat.com/browse/OCPBUGS-21078): Bump deps to address CVE-2023-44487 [4.13] [#758](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/758) * [OCPBUGS-19825](https://issues.redhat.com/browse/OCPBUGS-19825): Update staticpod file permissions to conform with CIS benchmarks [#752](https://github.com/openshift/cluster-kube-controller-manager-operator/pull/752) * [Full changelog](https://github.com/openshift/cluster-kube-controller-manager-operator/compare/56b970786d152344f0d4762c8271d20e5fc9d28b...dac7113696160d1170d9b3773afa4a4b7cb2099b) ### [cluster-kube-scheduler-operator](https://github.com/openshift/cluster-kube-scheduler-operator/tree/2e7c269b358223b89632b35840e6a91cdc7bb9aa) * [OCPBUGS-27065](https://issues.redhat.com/browse/OCPBUGS-27065): bump(library-go)=release-4.13 [#528](https://github.com/openshift/cluster-kube-scheduler-operator/pull/528) * [OCPBUGS-21811](https://issues.redhat.com/browse/OCPBUGS-21811): Bump deps to address CVE-2023-44487 [#502](https://github.com/openshift/cluster-kube-scheduler-operator/pull/502) * [OCPBUGS-19825](https://issues.redhat.com/browse/OCPBUGS-19825): Update staticpod file permissions to conform with CIS benchmarks [#497](https://github.com/openshift/cluster-kube-scheduler-operator/pull/497) * [Full changelog](https://github.com/openshift/cluster-kube-scheduler-operator/compare/5c00da0816faf0f15e643f05666c963d862a8299...2e7c269b358223b89632b35840e6a91cdc7bb9aa) ### [cluster-kube-storage-version-migrator-operator](https://github.com/openshift/cluster-kube-storage-version-migrator-operator/tree/721de5d64083b17c22f6b784bb2c78af39d7b3b0) * : OCPBUGS-21355: bump library-go to include switch to HTTP/1.1 [#97](https://github.com/openshift/cluster-kube-storage-version-migrator-operator/pull/97) * [Full changelog](https://github.com/openshift/cluster-kube-storage-version-migrator-operator/compare/9f475980d1e6a70f0e9400aec6f15e5f5a6132b6...721de5d64083b17c22f6b784bb2c78af39d7b3b0) ### [cluster-machine-approver](https://github.com/openshift/cluster-machine-approver/tree/25fe7b4bd96baba2eef8c0c22521fdc8c08f981d) * [OCPBUGS-21447](https://issues.redhat.com/browse/OCPBUGS-21447): Bump x/net package to v0.18.0 [#213](https://github.com/openshift/cluster-machine-approver/pull/213) * [OCPBUGS-23368](https://issues.redhat.com/browse/OCPBUGS-23368): Filter non node CSRs in metrics [#210](https://github.com/openshift/cluster-machine-approver/pull/210) * [Full changelog](https://github.com/openshift/cluster-machine-approver/compare/ce66cd5420829c20837662770451ee1c64294d47...25fe7b4bd96baba2eef8c0c22521fdc8c08f981d) ### [cluster-monitoring-operator](https://github.com/openshift/cluster-monitoring-operator/tree/940be901f1ce6c462dd1b437e51a28761362c292) * [OCPBUGS-25388](https://issues.redhat.com/browse/OCPBUGS-25388): Add RHACM telemetry metric for 4.13 [#2203](https://github.com/openshift/cluster-monitoring-operator/pull/2203) * [OCPBUGS-21457](https://issues.redhat.com/browse/OCPBUGS-21457): Set the new --disable-http2 flag for prometheus-adapter to disable HTTP2 [#2146](https://github.com/openshift/cluster-monitoring-operator/pull/2146) * [OCPBUGS-22920](https://issues.redhat.com/browse/OCPBUGS-22920): jsonnet: pin commits [#2144](https://github.com/openshift/cluster-monitoring-operator/pull/2144) * [OCPBUGS-22842](https://issues.redhat.com/browse/OCPBUGS-22842): [release-4.13] add RHACS telemetry metrics [#2139](https://github.com/openshift/cluster-monitoring-operator/pull/2139) * [OCPBUGS-22308](https://issues.redhat.com/browse/OCPBUGS-22308): fix: force HTTP/1.1 connections [#2134](https://github.com/openshift/cluster-monitoring-operator/pull/2134) * [OCPBUGS-21250](https://issues.redhat.com/browse/OCPBUGS-21250): upgrade golang.org/x/net to v0.17.0 [#2122](https://github.com/openshift/cluster-monitoring-operator/pull/2122) * [OCPBUGS-22099](https://issues.redhat.com/browse/OCPBUGS-22099): Extend remote write test timeout [#2127](https://github.com/openshift/cluster-monitoring-operator/pull/2127) * [Full changelog](https://github.com/openshift/cluster-monitoring-operator/compare/547c850b30e2183f8a6c9842c82ce672ba72cc76...940be901f1ce6c462dd1b437e51a28761362c292) ### [cluster-network-operator](https://github.com/openshift/cluster-network-operator/tree/02159feb9a41ffdaa5133a7923712e0b745d7144) * [OCPBUGS-22293](https://issues.redhat.com/browse/OCPBUGS-22293): remove all managed fields used by old manager [#2094](https://github.com/openshift/cluster-network-operator/pull/2094) * [OCPBUGS-24570](https://issues.redhat.com/browse/OCPBUGS-24570): Disable weak SSH cipher suitesRm weak ciphers 4.13 [#2163](https://github.com/openshift/cluster-network-operator/pull/2163) * [OCPBUGS-21716](https://issues.redhat.com/browse/OCPBUGS-21716): Bump golang.org/x/net and github.com/openshift/library-go [#2123](https://github.com/openshift/cluster-network-operator/pull/2123) * [OCPBUGS-22896](https://issues.redhat.com/browse/OCPBUGS-22896): run update-codegen after adding maxLogFiles cfg [#2162](https://github.com/openshift/cluster-network-operator/pull/2162) * [OCPBUGS-22971](https://issues.redhat.com/browse/OCPBUGS-22971): HyperShift: Use the local konnectivity proxy when checking proxy readiness [#2098](https://github.com/openshift/cluster-network-operator/pull/2098) * [OCPBUGS-22896](https://issues.redhat.com/browse/OCPBUGS-22896): Remove oldest ovn acl log files when file limit exceeded [#2097](https://github.com/openshift/cluster-network-operator/pull/2097) * [SDN-4184](https://issues.redhat.com/browse/SDN-4184): Limit OVN-Kubernetes RBAC permissions [#2093](https://github.com/openshift/cluster-network-operator/pull/2093) * [OCPBUGS-20278](https://issues.redhat.com/browse/OCPBUGS-20278): Edited multus-admission-controller deployment config to not add autoount a service account token [#1885](https://github.com/openshift/cluster-network-operator/pull/1885) * [OCPBUGS-19894](https://issues.redhat.com/browse/OCPBUGS-19894): remove prestop hooks for northd, sbdbd and nbdb [#2001](https://github.com/openshift/cluster-network-operator/pull/2001) * [OCPBUGS-18722](https://issues.redhat.com/browse/OCPBUGS-18722): IBMCloud specific: patch out management workload for dataplane component thats needed for bootstrapping [#1994](https://github.com/openshift/cluster-network-operator/pull/1994) * [Full changelog](https://github.com/openshift/cluster-network-operator/compare/f91c5b944183bf189d866ecd8c6bbdb1b638f86b...02159feb9a41ffdaa5133a7923712e0b745d7144) ### [cluster-node-tuning-operator](https://github.com/openshift/cluster-node-tuning-operator/tree/05a417a71fb3ecccabe58ab98e139d245f619be1) * Disable HTTP/2 for webhook and metrics servers (#846) [#846](https://github.com/openshift/cluster-node-tuning-operator/pull/846) * Remove obsolete protocols and weak ciphers (#843) [#843](https://github.com/openshift/cluster-node-tuning-operator/pull/843) * [OCPBUGS-18493](https://issues.redhat.com/browse/OCPBUGS-18493): e2e: deflake IRQ load-balancing (#782) [#782](https://github.com/openshift/cluster-node-tuning-operator/pull/782) * Use RHEL9 as a base (#829) [#829](https://github.com/openshift/cluster-node-tuning-operator/pull/829) * [OCPBUGS-17943](https://issues.redhat.com/browse/OCPBUGS-17943): Add rtentsk plugin to pp tuned profile Signed-off-by: Brent Rowsell <browsell@redhat.com> (#796) [#796](https://github.com/openshift/cluster-node-tuning-operator/pull/796) * nto: avoid timeout when there are too many CSV (#818) [#818](https://github.com/openshift/cluster-node-tuning-operator/pull/818) * [OCPBUGS-19459](https://issues.redhat.com/browse/OCPBUGS-19459): check for object being nil (#820) [#820](https://github.com/openshift/cluster-node-tuning-operator/pull/820) * Add kubeconfig path for IBM Managed OpenShift (#814) [#814](https://github.com/openshift/cluster-node-tuning-operator/pull/814) * [OCPBUGS-14137](https://issues.redhat.com/browse/OCPBUGS-14137): e2e: perfprof: add SNO device recovery test (#653) (#806) [#653](https://github.com/openshift/cluster-node-tuning-operator/pull/653) * [OCPBUGS-18868](https://issues.redhat.com/browse/OCPBUGS-18868): [release-4.14] e2e: add expected max latancy to hwlatdetec test & rename constant (#788) (#808) [#788](https://github.com/openshift/cluster-node-tuning-operator/pull/788) * Sync DaemonSet if operand image changes (#786) [#786](https://github.com/openshift/cluster-node-tuning-operator/pull/786) * Revert "Revert "Release leader election on manager exit (#773)" (#797)" (#802) [#773](https://github.com/openshift/cluster-node-tuning-operator/pull/773) * [OCPBUGS-19351](https://issues.redhat.com/browse/OCPBUGS-19351): Keep Profile status.bootcmdline around (#803) [#803](https://github.com/openshift/cluster-node-tuning-operator/pull/803) * Revert "Release leader election on manager exit (#773)" (#797) [#773](https://github.com/openshift/cluster-node-tuning-operator/pull/773) * Release leader election on manager exit (#773) [#773](https://github.com/openshift/cluster-node-tuning-operator/pull/773) * Tighten the rules for modifying Tuned Profiles (#766) [#766](https://github.com/openshift/cluster-node-tuning-operator/pull/766) * [Full changelog](https://github.com/openshift/cluster-node-tuning-operator/compare/73cf3baf414f482e498779609656e28e381a0cec...05a417a71fb3ecccabe58ab98e139d245f619be1) ### [cluster-openshift-apiserver-operator](https://github.com/openshift/cluster-openshift-apiserver-operator/tree/9abb220ac11f370f323f2c248d3ee377394c88b8) * : OCPBUGS-20707: bump library-go to include switch to HTTP/1.1 [#555](https://github.com/openshift/cluster-openshift-apiserver-operator/pull/555) * [OCPBUGS-22210](https://issues.redhat.com/browse/OCPBUGS-22210): increase timeout for probes [#553](https://github.com/openshift/cluster-openshift-apiserver-operator/pull/553) * [Full changelog](https://github.com/openshift/cluster-openshift-apiserver-operator/compare/ea4f097def493950e6e65068284084935b8ce4d9...9abb220ac11f370f323f2c248d3ee377394c88b8) ### [cluster-openshift-controller-manager-operator](https://github.com/openshift/cluster-openshift-controller-manager-operator/tree/d2818fb5a41defcf3af577fa4cb0a247700ce44a) * [OCPBUGS-20796](https://issues.redhat.com/browse/OCPBUGS-20796): bump(k8s,openshift) to address CVE-2023-44487 [#310](https://github.com/openshift/cluster-openshift-controller-manager-operator/pull/310) * [Full changelog](https://github.com/openshift/cluster-openshift-controller-manager-operator/compare/9a8aba8cad6491a31e743a7e366d758351482d88...d2818fb5a41defcf3af577fa4cb0a247700ce44a) ### [cluster-platform-operators-manager](https://github.com/openshift/platform-operators/tree/312c5f24b5711a764350de899b83443a87296983) * [OCPBUGS-20998](https://issues.redhat.com/browse/OCPBUGS-20998): [release-4.13] Bump golang.org/x/net to v0.17.0 [#97](https://github.com/openshift/platform-operators/pull/97) * [Full changelog](https://github.com/openshift/platform-operators/compare/471a80685581ff95fec3bee818f6ee409836eb8e...312c5f24b5711a764350de899b83443a87296983) ### [cluster-policy-controller](https://github.com/openshift/cluster-policy-controller/tree/3b0d075530fdbfdacdfe574151a3313f5231459c) * [OCPBUGS-21103](https://issues.redhat.com/browse/OCPBUGS-21103): Bump deps to address CVE-2023-44487 [4.13] [#135](https://github.com/openshift/cluster-policy-controller/pull/135) * [Full changelog](https://github.com/openshift/cluster-policy-controller/compare/8d2af85d0b6dcf09256bd9fecc5d36ac77bc41d1...3b0d075530fdbfdacdfe574151a3313f5231459c) ### [cluster-samples-operator](https://github.com/openshift/cluster-samples-operator/tree/bcc08e9609e9c39d212857efd27d67753c64d91e) * [OCPBUGS-22390](https://issues.redhat.com/browse/OCPBUGS-22390): Sync library to remove invalid dockerhub references for OKD [#521](https://github.com/openshift/cluster-samples-operator/pull/521) * [Full changelog](https://github.com/openshift/cluster-samples-operator/compare/f785bad1227439dfdb627538b3f7ecd0eb28f33c...bcc08e9609e9c39d212857efd27d67753c64d91e) ### [cluster-storage-operator](https://github.com/openshift/cluster-storage-operator/tree/5cd56c344f5aae7ce53f1301115e247a1fd6fed5) * [OCPBUGS-21284](https://issues.redhat.com/browse/OCPBUGS-21284): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#406](https://github.com/openshift/cluster-storage-operator/pull/406) * [OCPBUGS-18132](https://issues.redhat.com/browse/OCPBUGS-18132): Add patch for allowing configmap updates via clusterrole [#396](https://github.com/openshift/cluster-storage-operator/pull/396) * [OCPBUGS-19036](https://issues.redhat.com/browse/OCPBUGS-19036): Fix PodStartupStorageOperationsFailing alert [#397](https://github.com/openshift/cluster-storage-operator/pull/397) * [Full changelog](https://github.com/openshift/cluster-storage-operator/compare/98120d5f97b9fa0e83e4e99f9f466072ce7ca9d6...5cd56c344f5aae7ce53f1301115e247a1fd6fed5) ### [cluster-version-operator](https://github.com/openshift/cluster-version-operator/tree/24517b23286b636f50390f9167b41b84da8514cf) * [OCPBUGS-27049](https://issues.redhat.com/browse/OCPBUGS-27049): pkg/cvo/availableupdates: Only bump LastAttempt on Cincinnati pulls [#1019](https://github.com/openshift/cluster-version-operator/pull/1019) * [OCPBUGS-20744](https://issues.redhat.com/browse/OCPBUGS-20744): [4.13] Bump http-related deps [#989](https://github.com/openshift/cluster-version-operator/pull/989) * [OCPBUGS-19472](https://issues.redhat.com/browse/OCPBUGS-19472): Reconcile Volumes in SCCs and flag Upgradeable=False when detecting modified SCC [#969](https://github.com/openshift/cluster-version-operator/pull/969) * [OCPBUGS-20321](https://issues.redhat.com/browse/OCPBUGS-20321): pkg/cvo/sync_worker: Always enable the DeploymentConfig capability [#981](https://github.com/openshift/cluster-version-operator/pull/981) * [OCPBUGS-19828](https://issues.redhat.com/browse/OCPBUGS-19828): pkg/clusterconditions/promql: Warm cache with 1s delay [#974](https://github.com/openshift/cluster-version-operator/pull/974) * [OCPBUGS-20263](https://issues.redhat.com/browse/OCPBUGS-20263): pkg/clusterconditions/cache: Avoid panic on all-fresh-cache evaluation [#980](https://github.com/openshift/cluster-version-operator/pull/980) * [Full changelog](https://github.com/openshift/cluster-version-operator/compare/2ba8f8d7bc59f596db65d47e80ef8765ae340c34...24517b23286b636f50390f9167b41b84da8514cf) ### [console](https://github.com/openshift/console/tree/071df39ac00de14ec18cfe29c18ad195bd2e7460) * [OCPBUGS-23483](https://issues.redhat.com/browse/OCPBUGS-23483): add access to create, edit and delete silences for developer user from developer perspective [#13349](https://github.com/openshift/console/pull/13349) * [OCPBUGS-25427](https://issues.redhat.com/browse/OCPBUGS-25427): Fix plugin proxy handler [#13449](https://github.com/openshift/console/pull/13449) * [OCPBUGS-25465](https://issues.redhat.com/browse/OCPBUGS-25465): fix runtime error on Node details Overview when Machin… [#13452](https://github.com/openshift/console/pull/13452) * [OCPBUGS-25146](https://issues.redhat.com/browse/OCPBUGS-25146): add access review for impersonate [#13437](https://github.com/openshift/console/pull/13437) * [OCPBUGS-24591](https://issues.redhat.com/browse/OCPBUGS-24591): ConsolePlugin metrics must no longer be grouped by the vendor [#13424](https://github.com/openshift/console/pull/13424) * [OCPBUGS-22241](https://issues.redhat.com/browse/OCPBUGS-22241): Save also the location.search and .hash values in localStorage to restore them after login [#13271](https://github.com/openshift/console/pull/13271) * [OCPBUGS-24240](https://issues.redhat.com/browse/OCPBUGS-24240): Subsequent PipelineRuns take initial PipelineRun name into account [#13385](https://github.com/openshift/console/pull/13385) * [OCPBUGS-23497](https://issues.redhat.com/browse/OCPBUGS-23497): Cannot Edit Shipwright Build [#13352](https://github.com/openshift/console/pull/13352) * [OCPBUGS-11316](https://issues.redhat.com/browse/OCPBUGS-11316): Fix description for BuildAdapter SDK extension [#12703](https://github.com/openshift/console/pull/12703) * [OCPBUGS-22986](https://issues.redhat.com/browse/OCPBUGS-22986): Correct logout process [#13310](https://github.com/openshift/console/pull/13310) * [OCPBUGS-23065](https://issues.redhat.com/browse/OCPBUGS-23065): remove expandable toggle for conditional update risk d… [#13316](https://github.com/openshift/console/pull/13316) * [OCPBUGS-22784](https://issues.redhat.com/browse/OCPBUGS-22784): add support for new features annotations while preservi… [#13299](https://github.com/openshift/console/pull/13299) * [OCPBUGS-19532](https://issues.redhat.com/browse/OCPBUGS-19532): use active namespace in Create cta href of create action for operator backed [#13179](https://github.com/openshift/console/pull/13179) * [OCPBUGS-18271](https://issues.redhat.com/browse/OCPBUGS-18271): update the KnativeServing API version to v1beta1 for global-config extension [#13112](https://github.com/openshift/console/pull/13112) * [OCPBUGS-20232](https://issues.redhat.com/browse/OCPBUGS-20232): show all the legends for Pipeline metrics in PipelineRun TaskRun Duration chart [#13224](https://github.com/openshift/console/pull/13224) * [OCPBUGS-20231](https://issues.redhat.com/browse/OCPBUGS-20231): fetch TaskRuns without selector and reduces the get TaskRuns requests [#13223](https://github.com/openshift/console/pull/13223) * [OCPBUGS-20330](https://issues.redhat.com/browse/OCPBUGS-20330): Check if filtered object contains name property [#13227](https://github.com/openshift/console/pull/13227) * [OCPBUGS-13285](https://issues.redhat.com/browse/OCPBUGS-13285): add multipath device type to LocalVolumeSet [#12804](https://github.com/openshift/console/pull/12804) * [OCPBUGS-17481](https://issues.redhat.com/browse/OCPBUGS-17481): Fix that "Delete application" doesn't work in topology when Pipelines operator is not installed [#13083](https://github.com/openshift/console/pull/13083) * [OCPBUGS-18764](https://issues.redhat.com/browse/OCPBUGS-18764): Fixed Edit Application form for Knative Services [#13147](https://github.com/openshift/console/pull/13147) * [OCPBUGS-18538](https://issues.redhat.com/browse/OCPBUGS-18538): OCP console mandate secret for repository creation [#13135](https://github.com/openshift/console/pull/13135) * [OCPBUGS-18679](https://issues.redhat.com/browse/OCPBUGS-18679): [knative] Don't rely on openshift/hello-openshift as a sample image [#13140](https://github.com/openshift/console/pull/13140) * [OCPBUGS-18289](https://issues.redhat.com/browse/OCPBUGS-18289): Not able to import the repository with .tekton directory and func.yaml file present [#13116](https://github.com/openshift/console/pull/13116) * [OCPBUGS-18443](https://issues.redhat.com/browse/OCPBUGS-18443): Fix crash when filtering the quick start catalog [#13127](https://github.com/openshift/console/pull/13127) * [OCPBUGS-18312](https://issues.redhat.com/browse/OCPBUGS-18312): Web console slowness on Project>Project access page [#13119](https://github.com/openshift/console/pull/13119) * [Full changelog](https://github.com/openshift/console/compare/875f16fa464ed8f2f0b9e86a5652ac085ebd5097...071df39ac00de14ec18cfe29c18ad195bd2e7460) ### [console-operator](https://github.com/openshift/console-operator/tree/af57a158949d258310b55729f0c238b291071d87) * [OCPBUGS-24591](https://issues.redhat.com/browse/OCPBUGS-24591): ConsolePlugin metrics must no longer be grouped by the vendor [#821](https://github.com/openshift/console-operator/pull/821) * [OCPBUGS-22333](https://issues.redhat.com/browse/OCPBUGS-22333): Make enabled plugins unique [#805](https://github.com/openshift/console-operator/pull/805) * [OCPBUGS-18972](https://issues.redhat.com/browse/OCPBUGS-18972): Manual backport of #761 [#793](https://github.com/openshift/console-operator/pull/793) * [OCPBUGS-18192](https://issues.redhat.com/browse/OCPBUGS-18192): Add haproxy timeout annotation to console routes [#787](https://github.com/openshift/console-operator/pull/787) * [Full changelog](https://github.com/openshift/console-operator/compare/6886f89bb31c59e60f35c20c05bcde0df8c29c94...af57a158949d258310b55729f0c238b291071d87) ### [container-networking-plugins](https://github.com/openshift/containernetworking-plugins/tree/614ca3c35e1847f38f0f427c04a064cd31ac5002) * [OCPBUGS-20594](https://issues.redhat.com/browse/OCPBUGS-20594): build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 [backport 4.13] [#130](https://github.com/openshift/containernetworking-plugins/pull/130) * [Full changelog](https://github.com/openshift/containernetworking-plugins/compare/dbf24deae8df2b7ccc4c468fddcbb4a19214afa5...614ca3c35e1847f38f0f427c04a064cd31ac5002) ### [coredns](https://github.com/openshift/coredns/tree/ad0cf541c700ca53e9d638072354d22df68e60c8) * [OCPBUGS-21046](https://issues.redhat.com/browse/OCPBUGS-21046): UPSTREAM: <carry>: openshift: Address CVE-2023-39325 [#102](https://github.com/openshift/coredns/pull/102) * [OCPBUGS-19985](https://issues.redhat.com/browse/OCPBUGS-19985): UPSTREAM: <carry>: openshift: Fix OCPBUGS-19985 [#97](https://github.com/openshift/coredns/pull/97) * [Full changelog](https://github.com/openshift/coredns/compare/5560e4ad8c343c211f0b2f9d85ce7331b20b87cb...ad0cf541c700ca53e9d638072354d22df68e60c8) ### [csi-driver-manila, openstack-cinder-csi-driver, openstack-cloud-controller-manager](https://github.com/openshift/cloud-provider-openstack/tree/6c8236f9d59e9a9533d7765e458209e633443050) * [OCPBUGS-27091](https://issues.redhat.com/browse/OCPBUGS-27091): Add .snyk file [#263](https://github.com/openshift/cloud-provider-openstack/pull/263) * [OCPBUGS-21251](https://issues.redhat.com/browse/OCPBUGS-21251): Merge upstream 1.26 into release-4.13 [#240](https://github.com/openshift/cloud-provider-openstack/pull/240) * [OCPBUGS-20571](https://issues.redhat.com/browse/OCPBUGS-20571): [release-4.13] CARRY: Add DOWNSTREAM_OWNERS [#228](https://github.com/openshift/cloud-provider-openstack/pull/228) * [OCPBUGS-20133](https://issues.redhat.com/browse/OCPBUGS-20133): FastFix: Merge https://github.com/kubernetes/cloud-provider-openstack:release-1.26 into release-4.13 [#221](https://github.com/openshift/cloud-provider-openstack/pull/221) * [Full changelog](https://github.com/openshift/cloud-provider-openstack/compare/c59255a34811a412bb9c7af4d176d8cdebf04367...6c8236f9d59e9a9533d7765e458209e633443050) ### [csi-driver-shared-resource, csi-driver-shared-resource-webhook](https://github.com/openshift/csi-driver-shared-resource/tree/d1900f9fd234753f73cd9c720e1f98825edb6d51) * [OCPBUGS-23116](https://issues.redhat.com/browse/OCPBUGS-23116): Should reference configmaps instead of secrets [#153](https://github.com/openshift/csi-driver-shared-resource/pull/153) * [OCPBUGS-20719](https://issues.redhat.com/browse/OCPBUGS-20719): bump golang.org/x/net to v0.17.0 [#147](https://github.com/openshift/csi-driver-shared-resource/pull/147) * [Full changelog](https://github.com/openshift/csi-driver-shared-resource/compare/f797d453f112aab86f3b7705c00ea871c2351d4a...d1900f9fd234753f73cd9c720e1f98825edb6d51) ### [csi-driver-shared-resource-operator](https://github.com/openshift/csi-driver-shared-resource-operator/tree/1dc475bba65ceda2c317543cca13d60c59db93c1) * [OCPBUGS-20806](https://issues.redhat.com/browse/OCPBUGS-20806): bump golang.org/x/net to v0.17.0 [#87](https://github.com/openshift/csi-driver-shared-resource-operator/pull/87) * [Full changelog](https://github.com/openshift/csi-driver-shared-resource-operator/compare/318c84a5cd3ffa9d92d7e7bf6c8dc4008dc132cf...1dc475bba65ceda2c317543cca13d60c59db93c1) ### [csi-external-attacher](https://github.com/openshift/csi-external-attacher/tree/d92908438817984fc47558fdaa03805d8c3b256c) * [OCPBUGS-21161](https://issues.redhat.com/browse/OCPBUGS-21161): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#61](https://github.com/openshift/csi-external-attacher/pull/61) * [Full changelog](https://github.com/openshift/csi-external-attacher/compare/e9d59a2d66491d60d43488e05af7b4b673c722fd...d92908438817984fc47558fdaa03805d8c3b256c) ### [csi-external-provisioner](https://github.com/openshift/csi-external-provisioner/tree/0bf126b77a721ddaa4706fcb41f8b7be8d292492) * [OCPBUGS-20759](https://issues.redhat.com/browse/OCPBUGS-20759): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#73](https://github.com/openshift/csi-external-provisioner/pull/73) * [Full changelog](https://github.com/openshift/csi-external-provisioner/compare/f1fa8099e31e57452b7cf6f2e1ca288ae21ce78f...0bf126b77a721ddaa4706fcb41f8b7be8d292492) ### [csi-external-resizer](https://github.com/openshift/csi-external-resizer/tree/e8036caff2482648a18c1ac776cf9d2474569d10) * [OCPBUGS-20908](https://issues.redhat.com/browse/OCPBUGS-20908): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#148](https://github.com/openshift/csi-external-resizer/pull/148) * [Full changelog](https://github.com/openshift/csi-external-resizer/compare/974ac363a4f95b810ebb6f09ba26dedf1c8b8a4a...e8036caff2482648a18c1ac776cf9d2474569d10) ### [csi-external-snapshotter, csi-snapshot-controller, csi-snapshot-validation-webhook](https://github.com/openshift/csi-external-snapshotter/tree/5ce4b5cac86efa3a45d5056c0a95004373cabb7b) * [OCPBUGS-21011](https://issues.redhat.com/browse/OCPBUGS-21011): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#110](https://github.com/openshift/csi-external-snapshotter/pull/110) * [Full changelog](https://github.com/openshift/csi-external-snapshotter/compare/3f52ee74753f7823f102c239d0750784b64b6398...5ce4b5cac86efa3a45d5056c0a95004373cabb7b) ### [csi-livenessprobe](https://github.com/openshift/csi-livenessprobe/tree/3587db51b8a672a2d3be2ac48ea107e474f33402) * [OCPBUGS-20636](https://issues.redhat.com/browse/OCPBUGS-20636): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#51](https://github.com/openshift/csi-livenessprobe/pull/51) * [Full changelog](https://github.com/openshift/csi-livenessprobe/compare/a888237c9ab43eab0ca992f0b18eff114ea4ade1...3587db51b8a672a2d3be2ac48ea107e474f33402) ### [csi-node-driver-registrar](https://github.com/openshift/csi-node-driver-registrar/tree/9ea90f34485500a525fcaad3d79ee82a41402d47) * [OCPBUGS-20686](https://issues.redhat.com/browse/OCPBUGS-20686): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#53](https://github.com/openshift/csi-node-driver-registrar/pull/53) * [Full changelog](https://github.com/openshift/csi-node-driver-registrar/compare/5f13d5e6f5b06a99995e0697d83bbdb36efceb46...9ea90f34485500a525fcaad3d79ee82a41402d47) ### [docker-builder](https://github.com/openshift/builder/tree/0155fb1876cd809c97b46dff0660931046ab6076) * [OCPBUGS-22468](https://issues.redhat.com/browse/OCPBUGS-22468): [release-4.13] Bump github.com/sigstore/rekor [#374](https://github.com/openshift/builder/pull/374) * [OCPBUGS-23021](https://issues.redhat.com/browse/OCPBUGS-23021): Add -p flag to cp command to preserve timestamps [#371](https://github.com/openshift/builder/pull/371) * [OCPBUGS-20709](https://issues.redhat.com/browse/OCPBUGS-20709): [release-4.13] Bump golang.org/x/net [#363](https://github.com/openshift/builder/pull/363) * [Full changelog](https://github.com/openshift/builder/compare/1fec8a28a78b81aabc2bcbe8ac4843c8b7938230...0155fb1876cd809c97b46dff0660931046ab6076) ### [docker-registry](https://github.com/openshift/image-registry/tree/47a15ac8b7233bb1de44c1364bbd787de2edaaf0) * [OCPBUGS-19655](https://issues.redhat.com/browse/OCPBUGS-19655): increase rest.Config QPS and Burst [#383](https://github.com/openshift/image-registry/pull/383) * [OCPBUGS-18321](https://issues.redhat.com/browse/OCPBUGS-18321): bump docker-distribution [#376](https://github.com/openshift/image-registry/pull/376) * [Full changelog](https://github.com/openshift/image-registry/compare/f414ba7310818c39af1eaf8239e056cb6f146128...47a15ac8b7233bb1de44c1364bbd787de2edaaf0) ### [etcd](https://github.com/openshift/etcd/tree/94dd170220eb83b551792ea24a9a903096a3e03d) * [OCPBUGS-26925](https://issues.redhat.com/browse/OCPBUGS-26925): Rebase etcd 3.5.11 openshift 4.13 [#239](https://github.com/openshift/etcd/pull/239) * [OCPBUGS-22697](https://issues.redhat.com/browse/OCPBUGS-22697): [4.13] Carrying fixes for CVE-2023-44487 [#225](https://github.com/openshift/etcd/pull/225) * [OCPBUGS-18497](https://issues.redhat.com/browse/OCPBUGS-18497): Updating ose-etcd images to be consistent with ART [#214](https://github.com/openshift/etcd/pull/214) * [Full changelog](https://github.com/openshift/etcd/compare/3734896c1ab0eb955e49374d30b0cf4d84b9deff...94dd170220eb83b551792ea24a9a903096a3e03d) ### [gcp-cloud-controller-manager](https://github.com/openshift/cloud-provider-gcp/tree/507fea9800dc63da95ce551d2fb03219d0b0597a) * [OCPBUGS-21303](https://issues.redhat.com/browse/OCPBUGS-21303): Bump golang.org/x/net to v0.18.0 [#43](https://github.com/openshift/cloud-provider-gcp/pull/43) * [Full changelog](https://github.com/openshift/cloud-provider-gcp/compare/efaf4dc692072338d472f086c9f691c71f4a028d...507fea9800dc63da95ce551d2fb03219d0b0597a) ### [gcp-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-gcp/tree/b8a2772574aacf16a998ff7c7ba24000eff60d07) * [OCPBUGS-21398](https://issues.redhat.com/browse/OCPBUGS-21398): Bump golang.org/x/net to v0.17.0 [#204](https://github.com/openshift/cluster-api-provider-gcp/pull/204) * [Full changelog](https://github.com/openshift/cluster-api-provider-gcp/compare/eaeccca9082e1c02ad3422ff49e69cc595bd2ec6...b8a2772574aacf16a998ff7c7ba24000eff60d07) ### [gcp-machine-controllers](https://github.com/openshift/machine-api-provider-gcp/tree/e53a397d838137a37895fe668cba4857a82e7da2) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality. [#74](https://github.com/openshift/machine-api-provider-gcp/pull/74) * [OCPBUGS-20851](https://issues.redhat.com/browse/OCPBUGS-20851): Bump x/net package to v0.18.0 [#68](https://github.com/openshift/machine-api-provider-gcp/pull/68) * [Full changelog](https://github.com/openshift/machine-api-provider-gcp/compare/38ddff06b72b364d1c994582d7ae3f119ef5d1a8...e53a397d838137a37895fe668cba4857a82e7da2) ### [gcp-pd-csi-driver](https://github.com/openshift/gcp-pd-csi-driver/tree/81e6074605854246cdab8425a7289ad83169571a) * [OCPBUGS-20735](https://issues.redhat.com/browse/OCPBUGS-20735): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#46](https://github.com/openshift/gcp-pd-csi-driver/pull/46) * [Full changelog](https://github.com/openshift/gcp-pd-csi-driver/compare/c30195c5c3148bf6e00795b49a79954e6d920130...81e6074605854246cdab8425a7289ad83169571a) ### [gcp-pd-csi-driver-operator](https://github.com/openshift/gcp-pd-csi-driver-operator/tree/08c561b8292b4a5de3d5bc553a3e463b1f93ec0c) * [OCPBUGS-20827](https://issues.redhat.com/browse/OCPBUGS-20827): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#88](https://github.com/openshift/gcp-pd-csi-driver-operator/pull/88) * [Full changelog](https://github.com/openshift/gcp-pd-csi-driver-operator/compare/6534fed3d667750a54fb6750bffc09bee61832e8...08c561b8292b4a5de3d5bc553a3e463b1f93ec0c) ### [haproxy-router](https://github.com/openshift/router/tree/431a6e667025931c68b4f747a224af29edf356f6) * [OCPBUGS-21117](https://issues.redhat.com/browse/OCPBUGS-21117): Bump golang.org/x/net to v0.17.0 to address CVE-2023-39325 [#531](https://github.com/openshift/router/pull/531) * [OCPBUGS-17762](https://issues.redhat.com/browse/OCPBUGS-17762): haproxy/template: mitigate CVE-2023-40225 [#506](https://github.com/openshift/router/pull/506) * [Full changelog](https://github.com/openshift/router/compare/54fb4419e676ed99daa42e726cce5e71442529ac...431a6e667025931c68b4f747a224af29edf356f6) ### [hyperkube, pod](https://github.com/openshift/kubernetes/tree/77e61a21000950826ba046c88ae51eb8913a3f68) * [OCPBUGS-27370](https://issues.redhat.com/browse/OCPBUGS-27370): Update to kubernetes 1.26.13 [#1859](https://github.com/openshift/kubernetes/pull/1859) * [OCPBUGS-25814](https://issues.redhat.com/browse/OCPBUGS-25814): Fix device uncertain errors on reboot - 4.13 [#1831](https://github.com/openshift/kubernetes/pull/1831) * [OCPBUGS-25988](https://issues.redhat.com/browse/OCPBUGS-25988): Update to kubernetes 1.26.12 [#1839](https://github.com/openshift/kubernetes/pull/1839) * [OCPBUGS-25767](https://issues.redhat.com/browse/OCPBUGS-25767): legacy-cloud-providers: prevent index out-of-range in getNextUnitNumber [#1834](https://github.com/openshift/kubernetes/pull/1834) * [OCPBUGS-23521](https://issues.redhat.com/browse/OCPBUGS-23521): UPSTREAM: <carry>: support for both icsp and idms objects [#1798](https://github.com/openshift/kubernetes/pull/1798) * [OCPBUGS-23567](https://issues.redhat.com/browse/OCPBUGS-23567): Update to kubernetes 1.26.11 [#1809](https://github.com/openshift/kubernetes/pull/1809) * [OCPBUGS-18829](https://issues.redhat.com/browse/OCPBUGS-18829): cm: reorder setting of sched_load_balance for sandbox slice [#1696](https://github.com/openshift/kubernetes/pull/1696) * [OCPBUGS-23287](https://issues.redhat.com/browse/OCPBUGS-23287): UPSTREAM: 121881: Use golang library instead of mklink [#1802](https://github.com/openshift/kubernetes/pull/1802) * openshift-hack: Fix sporadic 141 errors in build-rpms [#1773](https://github.com/openshift/kubernetes/pull/1773) * [OCPBUGS-20114](https://issues.redhat.com/browse/OCPBUGS-20114): UPSTREAM: <carry>: Do not allow nodes to set forbidden openshift labels [#1746](https://github.com/openshift/kubernetes/pull/1746) * [OCPBUGS-21063](https://issues.redhat.com/browse/OCPBUGS-21063): [release-4.13] UPSTREAM: 121126: [1.26][CVE-2023-39325] .: bump golang.org/x/net to v0.17.0 [#1759](https://github.com/openshift/kubernetes/pull/1759) * [OCPBUGS-19885](https://issues.redhat.com/browse/OCPBUGS-19885): UPSTREAM: 120789: change rolling update logic to exclude sunsetting nodes [#1725](https://github.com/openshift/kubernetes/pull/1725) * [OCPBUGS-18287](https://issues.redhat.com/browse/OCPBUGS-18287), [OCPBUGS-19480](https://issues.redhat.com/browse/OCPBUGS-19480): Update to Kubernetes 1.26.9 [#1715](https://github.com/openshift/kubernetes/pull/1715) * [OCPBUGS-18677](https://issues.redhat.com/browse/OCPBUGS-18677): UPSTREAM: <carry>: Force using host go always and use host libriaries [#1689](https://github.com/openshift/kubernetes/pull/1689) * [Full changelog](https://github.com/openshift/kubernetes/compare/0ef5eae6ff8657d9628f3961d49f1f3031a210dd...77e61a21000950826ba046c88ae51eb8913a3f68) ### [hypershift](https://github.com/openshift/hypershift/tree/1ef713f57c05135df9b141d29d9d0f8412eb7e58) * [HOSTEDCP-1146](https://issues.redhat.com/browse/HOSTEDCP-1146): cpo: use CPO spec container image if it is a sha256 reference [#3296](https://github.com/openshift/hypershift/pull/3296) * [OCPBUGS-22971](https://issues.redhat.com/browse/OCPBUGS-22971): Add konnectivity-proxy container to CNO [#3167](https://github.com/openshift/hypershift/pull/3167) * [OCPBUGS-23455](https://issues.redhat.com/browse/OCPBUGS-23455): Use the same etcd snapshot for all replicas during etcd restore [#3205](https://github.com/openshift/hypershift/pull/3205) * NO-JIRA: Red Hat Trusted App Pipeline purge hypershift-operator-release-413 [#3217](https://github.com/openshift/hypershift/pull/3217) * chore(deps): update rhtap references (release-4.13) [#3043](https://github.com/openshift/hypershift/pull/3043) * Update RHTAP references (release-4.13) [#2996](https://github.com/openshift/hypershift/pull/2996) * [OCPBUGS-17182](https://issues.redhat.com/browse/OCPBUGS-17182): add need-management-kas-access label to olm-collect-profiles pods [#2871](https://github.com/openshift/hypershift/pull/2871) * [OCPBUGS-16225](https://issues.redhat.com/browse/OCPBUGS-16225): Add missing probes to two services [#2821](https://github.com/openshift/hypershift/pull/2821) * fix(olm): Use 4.13 catalog source images [#2978](https://github.com/openshift/hypershift/pull/2978) * [Full changelog](https://github.com/openshift/hypershift/compare/86c3c63a08af8a0b2d208d437ee13f1fb463d829...1ef713f57c05135df9b141d29d9d0f8412eb7e58) ### [ibm-cloud-controller-manager](https://github.com/openshift/cloud-provider-ibm/tree/b5bcaf9caa96561a32ec5e7b79ca41e173ecfe25) * [OCPBUGS-24999](https://issues.redhat.com/browse/OCPBUGS-24999): Add Snyk file to exclude vendor directory on scan [#66](https://github.com/openshift/cloud-provider-ibm/pull/66) * [OCPBUGS-21137](https://issues.redhat.com/browse/OCPBUGS-21137): Bump golang.org/x/net to v0.18.0 [#56](https://github.com/openshift/cloud-provider-ibm/pull/56) * [Full changelog](https://github.com/openshift/cloud-provider-ibm/compare/59edd923386b36f2cad99150b7fd11fb7bbb1688...b5bcaf9caa96561a32ec5e7b79ca41e173ecfe25) ### [ibm-vpc-block-csi-driver](https://github.com/openshift/ibm-vpc-block-csi-driver/tree/3e0eb20f7521c895c2d11ae683fd53adadaeffba) * [OCPBUGS-18143](https://issues.redhat.com/browse/OCPBUGS-18143): [IBM VPC] failed provisioning volume in proxy cluster [#47](https://github.com/openshift/ibm-vpc-block-csi-driver/pull/47) * [OCPBUGS-21230](https://issues.redhat.com/browse/OCPBUGS-21230): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#51](https://github.com/openshift/ibm-vpc-block-csi-driver/pull/51) * [Full changelog](https://github.com/openshift/ibm-vpc-block-csi-driver/compare/42b5c256657da2de184c3e5ec9c619131ed1cd57...3e0eb20f7521c895c2d11ae683fd53adadaeffba) ### [ibm-vpc-block-csi-driver-operator](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/tree/38c439da0b0ff924ad6b3d0af6461605a8b498ac) * [OCPBUGS-21319](https://issues.redhat.com/browse/OCPBUGS-21319): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#82](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/pull/82) * [OCPBUGS-18143](https://issues.redhat.com/browse/OCPBUGS-18143): [IBM VPC] failed provisioning volume in proxy cluster [#76](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/pull/76) * [Full changelog](https://github.com/openshift/ibm-vpc-block-csi-driver-operator/compare/ce92007db2dfd6cd8b9b9c7cfcfaeec801e76097...38c439da0b0ff924ad6b3d0af6461605a8b498ac) ### [ibm-vpc-node-label-updater](https://github.com/openshift/ibm-vpc-node-label-updater/tree/7721a9e75b92bdd12ff9a05acc9274c0d0580aba) * [OCPBUGS-21432](https://issues.redhat.com/browse/OCPBUGS-21432): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#28](https://github.com/openshift/ibm-vpc-node-label-updater/pull/28) * [Full changelog](https://github.com/openshift/ibm-vpc-node-label-updater/compare/96ff048184ce4005bd8a4ae6ef1146ba0fa230ac...7721a9e75b92bdd12ff9a05acc9274c0d0580aba) ### [ibmcloud-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-ibmcloud/tree/c4441f101083a8ffe01d4d6bb372a8b32a30a9a6) * [OCPBUGS-21418](https://issues.redhat.com/browse/OCPBUGS-21418): UPSTREAM: <carry>: bump golang.org/x/net to v0.18.0 [#66](https://github.com/openshift/cluster-api-provider-ibmcloud/pull/66) * [Full changelog](https://github.com/openshift/cluster-api-provider-ibmcloud/compare/d221afa4bee0d722a97f49c0212dfb7954f49b93...c4441f101083a8ffe01d4d6bb372a8b32a30a9a6) ### [insights-operator](https://github.com/openshift/insights-operator/tree/a5cb14c1de0b5272c1224e7ed57901c161dc5ac0) * [OCPBUGS-23962](https://issues.redhat.com/browse/OCPBUGS-23962): adds helm information gather (#868) (#883) [#868](https://github.com/openshift/insights-operator/pull/868) * [OCPBUGS-22958](https://issues.redhat.com/browse/OCPBUGS-22958): adds cluster storageclasses gather (#858) (#875) [#858](https://github.com/openshift/insights-operator/pull/858) * [OCPBUGS-22953](https://issues.redhat.com/browse/OCPBUGS-22953): create Prometheus rules programmatically according the… (#860) [#860](https://github.com/openshift/insights-operator/pull/860) * [OCPBUGS-22914](https://issues.redhat.com/browse/OCPBUGS-22914): remove username & password config options (#859) [#859](https://github.com/openshift/insights-operator/pull/859) * [OCPBUGS-20750](https://issues.redhat.com/browse/OCPBUGS-20750): update dependencies (#840) [#840](https://github.com/openshift/insights-operator/pull/840) * Add cherry-pick from 4.14 (#848) [#848](https://github.com/openshift/insights-operator/pull/848) * [OCPBUGS-19476](https://issues.redhat.com/browse/OCPBUGS-19476): update Insights report config logging (#828) [#828](https://github.com/openshift/insights-operator/pull/828) * [OCPBUGS-17661](https://issues.redhat.com/browse/OCPBUGS-17661): workload info gatherer, add external image repo (#816) [#816](https://github.com/openshift/insights-operator/pull/816) * [Full changelog](https://github.com/openshift/insights-operator/compare/f87e4120ed55da397a323ddbc7fe1a5edb0f088c...a5cb14c1de0b5272c1224e7ed57901c161dc5ac0) ### [ironic](https://github.com/openshift/ironic-image/tree/1585b098ba30475c9fb2ecfa48ceca4623218a11) * [OCPBUGS-23978](https://issues.redhat.com/browse/OCPBUGS-23978): Ironic side of external_http_url (METAL-163) is not wired in correctly [#430](https://github.com/openshift/ironic-image/pull/430) * [OCPBUGS-23506](https://issues.redhat.com/browse/OCPBUGS-23506): Uplift eventlet version [#427](https://github.com/openshift/ironic-image/pull/427) * [OCPBUGS-23356](https://issues.redhat.com/browse/OCPBUGS-23356): Upgrade werkzeug dependency [#422](https://github.com/openshift/ironic-image/pull/422) * [OCPBUGS-19078](https://issues.redhat.com/browse/OCPBUGS-19078): Handle Eject DVD 4.13 [#416](https://github.com/openshift/ironic-image/pull/416) * [OCPBUGS-23072](https://issues.redhat.com/browse/OCPBUGS-23072): Use bash process substitution instead of pipe [#413](https://github.com/openshift/ironic-image/pull/413) * [Full changelog](https://github.com/openshift/ironic-image/compare/fc1cca95711797767336878bfb9e2e4b9801ecfa...1585b098ba30475c9fb2ecfa48ceca4623218a11) ### [ironic-agent](https://github.com/openshift/ironic-agent-image/tree/508e61245eb34d1f83771b1522021ffcde59fecc) * [OCPBUGS-19006](https://issues.redhat.com/browse/OCPBUGS-19006): backport hostname fixes [#89](https://github.com/openshift/ironic-agent-image/pull/89) * [Full changelog](https://github.com/openshift/ironic-agent-image/compare/c4141b13ec85e9642f60bcb55b50055c691f0b6b...508e61245eb34d1f83771b1522021ffcde59fecc) ### [k8s-prometheus-adapter](https://github.com/openshift/k8s-prometheus-adapter/tree/0fce7c7c97d56ba0a0ae4c6a2ba32e559b8a03d7) * [OCPBUGS-21457](https://issues.redhat.com/browse/OCPBUGS-21457): upgrade golang.org/x/net to 0.17.0 to address CVE [#90](https://github.com/openshift/k8s-prometheus-adapter/pull/90) * [OCPBUGS-20405](https://issues.redhat.com/browse/OCPBUGS-20405): limit number of simultaneous client requests [#78](https://github.com/openshift/k8s-prometheus-adapter/pull/78) * [Full changelog](https://github.com/openshift/k8s-prometheus-adapter/compare/b2e401059a11d23923adba51eeb82cbd5d75b7fc...0fce7c7c97d56ba0a0ae4c6a2ba32e559b8a03d7) ### [kube-proxy, sdn](https://github.com/openshift/sdn/tree/f86266b225c316e8c676894e5499fc6d8294d967) * [OCPBUGS-22932](https://issues.redhat.com/browse/OCPBUGS-22932): Change the permission of 80-openshift-network.conf to 600 [#582](https://github.com/openshift/sdn/pull/582) * [OCPBUGS-14504](https://issues.redhat.com/browse/OCPBUGS-14504): Use the ovsver build arg to infer the openvswitch short version number [#572](https://github.com/openshift/sdn/pull/572) * [Full changelog](https://github.com/openshift/sdn/compare/12a5bcfe56550165a550230d016f3a954b18ddbe...f86266b225c316e8c676894e5499fc6d8294d967) ### [kube-rbac-proxy](https://github.com/openshift/kube-rbac-proxy/tree/ae32bfa0f11ae2854339ab9af83c44ee1c04fe31) * [OCPBUGS-20702](https://issues.redhat.com/browse/OCPBUGS-20702): v0.15.0 downstream release 4.13 [#84](https://github.com/openshift/kube-rbac-proxy/pull/84) * [Full changelog](https://github.com/openshift/kube-rbac-proxy/compare/f1205e66bf34421046288bc74aed0d69b8434206...ae32bfa0f11ae2854339ab9af83c44ee1c04fe31) ### [kube-state-metrics](https://github.com/openshift/kube-state-metrics/tree/fd791df54d7271c1611090505509a03454168689) * [OCPBUGS-20778](https://issues.redhat.com/browse/OCPBUGS-20778): bump x/net to v0.17.0 [#102](https://github.com/openshift/kube-state-metrics/pull/102) * [Full changelog](https://github.com/openshift/kube-state-metrics/compare/4b9698489404f06195ba8a4646d58d67e13501d4...fd791df54d7271c1611090505509a03454168689) ### [libvirt-machine-controllers](https://github.com/openshift/cluster-api-provider-libvirt/tree/d4b7a8ab790a970ce2f0374146248b2307df0185) * "OCPBUGS-19927: libvirt: Don't force use of virtio console" [#268](https://github.com/openshift/cluster-api-provider-libvirt/pull/268) * [Full changelog](https://github.com/openshift/cluster-api-provider-libvirt/compare/e55e92c14b2cd4925f8489f5f074015a64ed5713...d4b7a8ab790a970ce2f0374146248b2307df0185) ### [machine-api-operator](https://github.com/openshift/machine-api-operator/tree/c2a173259a7f9621de82b6a40c80129667a49093) * [OCPBUGS-25165](https://issues.redhat.com/browse/OCPBUGS-25165): Add Snyk file to exclude vendor directory on scan [#1194](https://github.com/openshift/machine-api-operator/pull/1194) * [OCPBUGS-24277](https://issues.redhat.com/browse/OCPBUGS-24277): Update reference URL [#1188](https://github.com/openshift/machine-api-operator/pull/1188) * [OCPBUGS-24277](https://issues.redhat.com/browse/OCPBUGS-24277): Use docs URL instead of KCS article [#1181](https://github.com/openshift/machine-api-operator/pull/1181) * [OCPBUGS-21513](https://issues.redhat.com/browse/OCPBUGS-21513): Bump golang.org/x/net to v0.18.0 [#1175](https://github.com/openshift/machine-api-operator/pull/1175) * [Full changelog](https://github.com/openshift/machine-api-operator/compare/370fdaa43c6964e2af6abbde2bf37789de509bec...c2a173259a7f9621de82b6a40c80129667a49093) ### [machine-config-operator](https://github.com/openshift/machine-config-operator/tree/ae739351e6e723fd5fa74e3c8d37c4dfce1e48a5) * [OCPBUGS-22272](https://issues.redhat.com/browse/OCPBUGS-22272), [OCPBUGS-27172](https://issues.redhat.com/browse/OCPBUGS-27172): kubelet: fix kubelet labels [#4120](https://github.com/openshift/machine-config-operator/pull/4120) * [OCPBUGS-27096](https://issues.redhat.com/browse/OCPBUGS-27096): Azure Run ovs-configuration.service before dnsmasq.service [#4115](https://github.com/openshift/machine-config-operator/pull/4115) * [OCPBUGS-19658](https://issues.redhat.com/browse/OCPBUGS-19658): After dual-stack conversion reconcile IPFamilies [#3935](https://github.com/openshift/machine-config-operator/pull/3935) * [OCPBUGS-23468](https://issues.redhat.com/browse/OCPBUGS-23468): support icsp and idms objects [#4027](https://github.com/openshift/machine-config-operator/pull/4027) * [OCPBUGS-23536](https://issues.redhat.com/browse/OCPBUGS-23536): Introduce kubelet-dependencies.target and firstboot-osupdate.target [#4043](https://github.com/openshift/machine-config-operator/pull/4043) * [OCPBUGS-21052](https://issues.redhat.com/browse/OCPBUGS-21052): Update library-go and kube deps to latest version [#4011](https://github.com/openshift/machine-config-operator/pull/4011) * [OCPBUGS-22205](https://issues.redhat.com/browse/OCPBUGS-22205): Consider ingress VIPs when selecting node IP [#3991](https://github.com/openshift/machine-config-operator/pull/3991) * [OCPBUGS-18031](https://issues.redhat.com/browse/OCPBUGS-18031): on-prem: run resolv-prepender on NM reapply event [#3880](https://github.com/openshift/machine-config-operator/pull/3880) * [OCPBUGS-22412](https://issues.redhat.com/browse/OCPBUGS-22412): bootstrap_test: always set APIVersion and Kind for DNS [#4002](https://github.com/openshift/machine-config-operator/pull/4002) * [OCPBUGS-21721](https://issues.redhat.com/browse/OCPBUGS-21721): install/0000_90_machine-config-operator_90_deletion: Drop this file [#3983](https://github.com/openshift/machine-config-operator/pull/3983) * [OCPBUGS-20333](https://issues.redhat.com/browse/OCPBUGS-20333): resolv-prepender: avoid pulling baremetalRuntimeCfgImage again if it … [#3962](https://github.com/openshift/machine-config-operator/pull/3962) * [OCPBUGS-18803](https://issues.redhat.com/browse/OCPBUGS-18803): Soften grep pattern for ingress default router [#3908](https://github.com/openshift/machine-config-operator/pull/3908) * [OCPBUGS-19958](https://issues.redhat.com/browse/OCPBUGS-19958): [release-4.13] Backport logspam PRs [#3950](https://github.com/openshift/machine-config-operator/pull/3950) * [OCPBUGS-19675](https://issues.redhat.com/browse/OCPBUGS-19675): daemon: always use `podman cp` to copy extensions container content [#3938](https://github.com/openshift/machine-config-operator/pull/3938) * [OCPBUGS-19400](https://issues.redhat.com/browse/OCPBUGS-19400): install: Recreate and delayed default ServiceAccount deletion [#3923](https://github.com/openshift/machine-config-operator/pull/3923) * [OCPBUGS-19509](https://issues.redhat.com/browse/OCPBUGS-19509): Ignore invoking nbctl calls if its SDN [#3929](https://github.com/openshift/machine-config-operator/pull/3929) * [OCPBUGS-19414](https://issues.redhat.com/browse/OCPBUGS-19414): The kubeconfig copied on to each node has 644 permissions [#3924](https://github.com/openshift/machine-config-operator/pull/3924) * [OCPBUGS-18159](https://issues.redhat.com/browse/OCPBUGS-18159): Ensure azure-routes hack for internalLB hairpin traffic works for SGW [#3904](https://github.com/openshift/machine-config-operator/pull/3904) * [Full changelog](https://github.com/openshift/machine-config-operator/compare/aeb7d050748a23e0474f98a447d490e3b72e0ae6...ae739351e6e723fd5fa74e3c8d37c4dfce1e48a5) ### [machine-image-customization-controller](https://github.com/openshift/image-customization-controller/tree/34a4abe6ec47fff69476695eccffdb27fe23780c) * [OCPBUGS-27089](https://issues.redhat.com/browse/OCPBUGS-27089): configurable ironic agent vlan creation [#117](https://github.com/openshift/image-customization-controller/pull/117) * [OCPBUGS-21549](https://issues.redhat.com/browse/OCPBUGS-21549): Uplift x/net to v0.17.0 [#105](https://github.com/openshift/image-customization-controller/pull/105) * [OCPBUGS-19006](https://issues.redhat.com/browse/OCPBUGS-19006): Pass BareMetalHost name to IPA (take 2) [#98](https://github.com/openshift/image-customization-controller/pull/98) * [OCPBUGS-14250](https://issues.redhat.com/browse/OCPBUGS-14250): Watch networkData Secrets for changes [#95](https://github.com/openshift/image-customization-controller/pull/95) * [Full changelog](https://github.com/openshift/image-customization-controller/compare/87651668b314426960ea4974429f3b0ed16c3f31...34a4abe6ec47fff69476695eccffdb27fe23780c) ### [multus-admission-controller](https://github.com/openshift/multus-admission-controller/tree/9b0656af8316420bf05a7d3a0969feded615ed64) * [OCPBUGS-21353](https://issues.redhat.com/browse/OCPBUGS-21353): Update go.mod for CVE-2023-39325 [Release-4.13] [#72](https://github.com/openshift/multus-admission-controller/pull/72) * [Full changelog](https://github.com/openshift/multus-admission-controller/compare/f76d674edb07d7006f04748338c1013499c0e7ab...9b0656af8316420bf05a7d3a0969feded615ed64) ### [multus-cni](https://github.com/openshift/multus-cni/tree/906067fdbf94800efb89895b38ae037947a12b46) * [OCPBUGS-21076](https://issues.redhat.com/browse/OCPBUGS-21076): Update go.mod for CVE-2023-39325 [Release-4.13] [#195](https://github.com/openshift/multus-cni/pull/195) * [Full changelog](https://github.com/openshift/multus-cni/compare/bb616eff56bf0b71ad85009360231f4686a6e4a9...906067fdbf94800efb89895b38ae037947a12b46) ### [multus-networkpolicy](https://github.com/openshift/multus-networkpolicy/tree/7176ab75edaf6328bb1da06ba55378815271d218) * [OCPBUGS-21438](https://issues.redhat.com/browse/OCPBUGS-21438): Update go.mod for CVE-2023-39325 (#35) [#35](https://github.com/openshift/multus-networkpolicy/pull/35) * [Full changelog](https://github.com/openshift/multus-networkpolicy/compare/7b99c194d5d2b092a64dc7b8673ef96a399cc7a8...7176ab75edaf6328bb1da06ba55378815271d218) ### [multus-whereabouts-ipam-cni](https://github.com/openshift/whereabouts-cni/tree/d3815822520c2c836385b7a5a26c50574e0c22ba) * [OCPBUGS-27367](https://issues.redhat.com/browse/OCPBUGS-27367): [release-4.13] Backport fix assignment [#236](https://github.com/openshift/whereabouts-cni/pull/236) * [OCPBUGS-21512](https://issues.redhat.com/browse/OCPBUGS-21512): update golang.org/x/net to v0.17.0 [#208](https://github.com/openshift/whereabouts-cni/pull/208) * [Full changelog](https://github.com/openshift/whereabouts-cni/compare/7ea40205ffef4c3e047153f4655444245c2792d3...d3815822520c2c836385b7a5a26c50574e0c22ba) ### [must-gather](https://github.com/openshift/must-gather/tree/288ef2fcfe63cbfab0af69a41b508c044ee890aa) * [OCPBUGS-19928](https://issues.redhat.com/browse/OCPBUGS-19928): [release-4.13] Add csi-proxy logs collection in must-gather for Windows nodes [#383](https://github.com/openshift/must-gather/pull/383) * [Full changelog](https://github.com/openshift/must-gather/compare/5eca0cb65ea6dd13f907d1f7493ed237f07e3906...288ef2fcfe63cbfab0af69a41b508c044ee890aa) ### [network-metrics-daemon](https://github.com/openshift/network-metrics-daemon/tree/3ef81a5c468171f22d626c544fd7f02adc156ceb) * Added METRIC_TEST_IMAGE var (#90) [#90](https://github.com/openshift/network-metrics-daemon/pull/90) * Update the k8s dependencies to 1.26.10 (#83) [#83](https://github.com/openshift/network-metrics-daemon/pull/83) * [Full changelog](https://github.com/openshift/network-metrics-daemon/compare/e72c8ad1581132817c09e23295f55425a14a5c58...3ef81a5c468171f22d626c544fd7f02adc156ceb) ### [nutanix-machine-controllers](https://github.com/openshift/machine-api-provider-nutanix/tree/105c515996ed0856eca89e75b166e70331d95856) * [OCPBUGS-24563](https://issues.redhat.com/browse/OCPBUGS-24563): Reduce metrics cardinality [#59](https://github.com/openshift/machine-api-provider-nutanix/pull/59) * [OCPBUGS-25459](https://issues.redhat.com/browse/OCPBUGS-25459): Fix CI by running tests natively by default [#60](https://github.com/openshift/machine-api-provider-nutanix/pull/60) * [Full changelog](https://github.com/openshift/machine-api-provider-nutanix/compare/be43191e5b20c7d6a5755a39a22d31e7734b241a...105c515996ed0856eca89e75b166e70331d95856) ### [oauth-server](https://github.com/openshift/oauth-server/tree/eb54be281d8f215a6eaa6e10ed1b303c7d064bac) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): update osin to latest version [#139](https://github.com/openshift/oauth-server/pull/139) * [Full changelog](https://github.com/openshift/oauth-server/compare/b841149f2ec0c1ffcb0393e6f70b1e4547f3b18e...eb54be281d8f215a6eaa6e10ed1b303c7d064bac) ### [oc-mirror](https://github.com/openshift/oc-mirror/tree/2051a41bd9a1db390326423e4b36ac0d55768607) * [OCPBUGS-19429](https://issues.redhat.com/browse/OCPBUGS-19429): Fix cross EUS channel upgrade path calculation (#775) [#775](https://github.com/openshift/oc-mirror/pull/775) * [OCPBUGS-21460](https://issues.redhat.com/browse/OCPBUGS-21460): Fix CVE-2023-44487 and CVE-2023-39325 (#714) [#714](https://github.com/openshift/oc-mirror/pull/714) * Fix OCPBUGS-17546: pod catalogsource generated by oc-mirror will crashloopBackOff randomly (#700) [#700](https://github.com/openshift/oc-mirror/pull/700) * Fix OCPBUGS-14402 (#675) [#675](https://github.com/openshift/oc-mirror/pull/675) * [OCPBUGS-18556](https://issues.redhat.com/browse/OCPBUGS-18556): operator catalogs from oc-mirror fail to deploy because of invalid caches (#691) [#691](https://github.com/openshift/oc-mirror/pull/691) * [Full changelog](https://github.com/openshift/oc-mirror/compare/2f7e7bc237611601702ae32c3055a44f9694bf97...2051a41bd9a1db390326423e4b36ac0d55768607) ### [olm-rukpak](https://github.com/openshift/operator-framework-rukpak/tree/1261b81eb2b96d8b30741fcd1c82c5ae253ae1f9) * [OCPBUGS-23403](https://issues.redhat.com/browse/OCPBUGS-23403): [release-4.13] Address http2 vulnerability [#58](https://github.com/openshift/operator-framework-rukpak/pull/58) * [OCPBUGS-21363](https://issues.redhat.com/browse/OCPBUGS-21363): [release-4.13] Bump golang.org/x/net to v0.17.0 [#40](https://github.com/openshift/operator-framework-rukpak/pull/40) * UPSTREAM: <carry>: add downstream owners [#42](https://github.com/openshift/operator-framework-rukpak/pull/42) * [Full changelog](https://github.com/openshift/operator-framework-rukpak/compare/66b3e551fc2730beb4c46d478166b38766c5f346...1261b81eb2b96d8b30741fcd1c82c5ae253ae1f9) ### [openshift-apiserver](https://github.com/openshift/openshift-apiserver/tree/6c0733082d6ff258dc8787ef2e84c1ceb51a0655) * : OCPBUGS-21449: Enable HTTP/2 CVE mitigation [#398](https://github.com/openshift/openshift-apiserver/pull/398) * [Full changelog](https://github.com/openshift/openshift-apiserver/compare/0b82768216c0c0ffb171457fce71b3806c586e7c...6c0733082d6ff258dc8787ef2e84c1ceb51a0655) ### [openshift-state-metrics](https://github.com/openshift/openshift-state-metrics/tree/9be421f0c013c7f134c1d7cfe1c0ee2f2ae8eaf6) * [OCPBUGS-20723](https://issues.redhat.com/browse/OCPBUGS-20723): bump `x/net` to v0.17.0 [#108](https://github.com/openshift/openshift-state-metrics/pull/108) * [Full changelog](https://github.com/openshift/openshift-state-metrics/compare/7beb8807e2c0092b5e580a29903ff060140d8ff0...9be421f0c013c7f134c1d7cfe1c0ee2f2ae8eaf6) ### [openstack-cinder-csi-driver-operator](https://github.com/openshift/openstack-cinder-csi-driver-operator/tree/b50a649be8b691a6081487330da17e55d242a2e5) * [OCPBUGS-21565](https://issues.redhat.com/browse/OCPBUGS-21565): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#136](https://github.com/openshift/openstack-cinder-csi-driver-operator/pull/136) * [Full changelog](https://github.com/openshift/openstack-cinder-csi-driver-operator/compare/90ee04bcfbfc0eb6173bc9fbea8c9f87ec1dea7d...b50a649be8b691a6081487330da17e55d242a2e5) ### [openstack-machine-api-provider](https://github.com/openshift/machine-api-provider-openstack/tree/7bce9d67fba63a0ed6a39b78488da8e85bf07dbd) * Bug OCPBUGS-19460: Set controller's SyncPeriod to 1 hour [#85](https://github.com/openshift/machine-api-provider-openstack/pull/85) * [Full changelog](https://github.com/openshift/machine-api-provider-openstack/compare/36f48b76303aea04f997cda658ca5e25841a079c...7bce9d67fba63a0ed6a39b78488da8e85bf07dbd) ### [operator-lifecycle-manager, operator-registry](https://github.com/openshift/operator-framework-olm/tree/2357f7530362fffeb9f3279f07425425a942160f) * [OCPBUGS-8653](https://issues.redhat.com/browse/OCPBUGS-8653): bump golang-migrate to v4.16.1 (#1107) [#649](https://github.com/openshift/operator-framework-olm/pull/649) * [OCPBUGS-20815](https://issues.redhat.com/browse/OCPBUGS-20815): [release-4.13] fix apiserver vulnerability [#616](https://github.com/openshift/operator-framework-olm/pull/616) * [OCPBUGS-22133](https://issues.redhat.com/browse/OCPBUGS-22133): [release-4.13] Bump golang.org/x/net to v0.17.0 [#589](https://github.com/openshift/operator-framework-olm/pull/589) * [Full changelog](https://github.com/openshift/operator-framework-olm/compare/9957ffd6be55ffadf08c107191fa459e03af5f26...2357f7530362fffeb9f3279f07425425a942160f) ### [operator-marketplace](https://github.com/operator-framework/operator-marketplace/tree/867e7ed80fdbc6f5bb88f1589da740d9bd1d5721) * [OCPBUGS-20977](https://issues.redhat.com/browse/OCPBUGS-20977): [release-4.13] bump golang.org/x/net to 0.17.0 [#549](https://github.com/operator-framework/operator-marketplace/pull/549) * [OCPBUGS-19085](https://issues.redhat.com/browse/OCPBUGS-19085): Updating marketplace-operator images to be consistent with ART [#538](https://github.com/operator-framework/operator-marketplace/pull/538) * [OCPBUGS-18502](https://issues.redhat.com/browse/OCPBUGS-18502): remove a race condition [#532](https://github.com/operator-framework/operator-marketplace/pull/532) * [Full changelog](https://github.com/operator-framework/operator-marketplace/compare/d569c22c518fc931ff48f66fb38064ddd976729f...867e7ed80fdbc6f5bb88f1589da740d9bd1d5721) ### [ovirt-csi-driver](https://github.com/openshift/ovirt-csi-driver/tree/54958deb4998e08696af0abe3585486a6b5b6800) * [OCPBUGS-23155](https://issues.redhat.com/browse/OCPBUGS-23155): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#130](https://github.com/openshift/ovirt-csi-driver/pull/130) * [Full changelog](https://github.com/openshift/ovirt-csi-driver/compare/f21b470f4927f97eca93a0a390cffccd7d724043...54958deb4998e08696af0abe3585486a6b5b6800) ### [ovirt-csi-driver-operator](https://github.com/openshift/ovirt-csi-driver-operator/tree/b293972fe2c5eef4262130de621e75e5d0c37d8e) * [OCPBUGS-23241](https://issues.redhat.com/browse/OCPBUGS-23241): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#127](https://github.com/openshift/ovirt-csi-driver-operator/pull/127) * [Full changelog](https://github.com/openshift/ovirt-csi-driver-operator/compare/aca579dfc9aa1921849f9573f5179fcb2bf89f28...b293972fe2c5eef4262130de621e75e5d0c37d8e) ### [ovn-kubernetes-microshift-rhel-9, ovn-kubernetes-rhel-9](https://github.com/openshift/ovn-kubernetes/tree/916519bb221251af32cbfceacbd654e579162ac2) * [OCPBUGS-24419](https://issues.redhat.com/browse/OCPBUGS-24419): OVNK/GW: Ignore headless services in syncServices [#1971](https://github.com/openshift/ovn-kubernetes/pull/1971) * [OCPBUGS-23258](https://issues.redhat.com/browse/OCPBUGS-23258): Update leaderelection config to allow retries [#1992](https://github.com/openshift/ovn-kubernetes/pull/1992) * [OCPBUGS-26242](https://issues.redhat.com/browse/OCPBUGS-26242): Fix Egress IP Deletion Handler to Prevent OVN Policy Leaks [#2011](https://github.com/openshift/ovn-kubernetes/pull/2011) * [OCPBUGS-25923](https://issues.redhat.com/browse/OCPBUGS-25923): Forward ICMP packets to OVN loadbalancer [#2004](https://github.com/openshift/ovn-kubernetes/pull/2004) * [OCPBUGS-25224](https://issues.redhat.com/browse/OCPBUGS-25224): [release-4.13] fixes MTU configuration on gateway router [#1988](https://github.com/openshift/ovn-kubernetes/pull/1988) * [OCPBUGS-14799](https://issues.redhat.com/browse/OCPBUGS-14799): Updating endpoints when using allocateLBNP=0, lgw mode fails [#1940](https://github.com/openshift/ovn-kubernetes/pull/1940) * [OCPBUGS-25095](https://issues.redhat.com/browse/OCPBUGS-25095): Fragment oversized reply packets in LGW mode [#1983](https://github.com/openshift/ovn-kubernetes/pull/1983) * [OCPBUGS-24391](https://issues.redhat.com/browse/OCPBUGS-24391): Limit OVN-Kubernetes RBAC permissions [#1950](https://github.com/openshift/ovn-kubernetes/pull/1950) * [OCPBUGS-23014](https://issues.redhat.com/browse/OCPBUGS-23014): Netpol retryFramework cleanup [#1957](https://github.com/openshift/ovn-kubernetes/pull/1957) * [OCPBUGS-24263](https://issues.redhat.com/browse/OCPBUGS-24263): Bump OVN to 23.06.1-39.el9fdp [#1966](https://github.com/openshift/ovn-kubernetes/pull/1966) * [OCPBUGS-14314](https://issues.redhat.com/browse/OCPBUGS-14314): Fix compilation error in e2e.go tests due to missing int32 parameter [#1682](https://github.com/openshift/ovn-kubernetes/pull/1682) * [OCPBUGS-20047](https://issues.redhat.com/browse/OCPBUGS-20047): Adjust python ssl library dependency check [#1924](https://github.com/openshift/ovn-kubernetes/pull/1924) * [OCPBUGS-18976](https://issues.redhat.com/browse/OCPBUGS-18976): Update bridge flow cache when the host address changes [#1873](https://github.com/openshift/ovn-kubernetes/pull/1873) * [OCPBUGS-18791](https://issues.redhat.com/browse/OCPBUGS-18791), [OCPBUGS-18792](https://issues.redhat.com/browse/OCPBUGS-18792), [OCPBUGS-19088](https://issues.redhat.com/browse/OCPBUGS-19088), [OCPBUGS-7406](https://issues.redhat.com/browse/OCPBUGS-7406): Dockerfile: bump OVN to ovn23.06-23.06.1-8.el9fdp [#1880](https://github.com/openshift/ovn-kubernetes/pull/1880) * [OCPBUGS-18672](https://issues.redhat.com/browse/OCPBUGS-18672): Check libovsdbclient.ErrNotFound on wrapped errors [#1861](https://github.com/openshift/ovn-kubernetes/pull/1861) * [OCPBUGS-19449](https://issues.redhat.com/browse/OCPBUGS-19449): Do not return error if pod IP cannot be retrieved for `podSelectorPodNeedsDelete` and perf improvements [#1893](https://github.com/openshift/ovn-kubernetes/pull/1893) * [OCPBUGS-18585](https://issues.redhat.com/browse/OCPBUGS-18585): Fix OVN SNATing on GR by enabling gateway_mtu on rtoe port of GR [#1855](https://github.com/openshift/ovn-kubernetes/pull/1855) * [OCPBUGS-17123](https://issues.redhat.com/browse/OCPBUGS-17123): Remove stale egressip status entry [#1793](https://github.com/openshift/ovn-kubernetes/pull/1793) * [Full changelog](https://github.com/openshift/ovn-kubernetes/compare/75d07f23eb921493aafee24c540b05771b03b6d6...916519bb221251af32cbfceacbd654e579162ac2) ### [powervs-block-csi-driver](https://github.com/openshift/ibm-powervs-block-csi-driver/tree/530f646b86f1ba898f534900eb463ae957a1b89e) * [OCPBUGS-24728](https://issues.redhat.com/browse/OCPBUGS-24728): synk: ignore vendor dir [#61](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/61) * [OCPBUGS-21089](https://issues.redhat.com/browse/OCPBUGS-21089): CVE-2023-39325 - Update net dependencies - 4.13 [#52](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/52) * Update OWNERS add yussufsh [#54](https://github.com/openshift/ibm-powervs-block-csi-driver/pull/54) * [Full changelog](https://github.com/openshift/ibm-powervs-block-csi-driver/compare/26d166e8f7d1f33eff1efd7ccab92a27a188f431...530f646b86f1ba898f534900eb463ae957a1b89e) ### [powervs-block-csi-driver-operator](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/tree/e70c980e2561788b710d710efc3e09974ad7374c) * [OCPBUGS-25716](https://issues.redhat.com/browse/OCPBUGS-25716): snyk: ignore vendor dir [#61](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/61) * [OCPBUGS-21186](https://issues.redhat.com/browse/OCPBUGS-21186): CVE-2023-39325 - Update net dependencies - 4.13 [#41](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/41) * Update OWNERS add yussufsh [#45](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/pull/45) * [Full changelog](https://github.com/openshift/ibm-powervs-block-csi-driver-operator/compare/2d8e82b25c39fd0617632ae32fec070b7c5f8f21...e70c980e2561788b710d710efc3e09974ad7374c) ### [powervs-cloud-controller-manager](https://github.com/openshift/cloud-provider-powervs/tree/de68def0c918a05ad4bf32cc0470a7931d661c27) * [OCPBUGS-24731](https://issues.redhat.com/browse/OCPBUGS-24731): UPSTREAM: <carry>: snyk code scan exclude vendor directory [#53](https://github.com/openshift/cloud-provider-powervs/pull/53) * [OCPBUGS-21280](https://issues.redhat.com/browse/OCPBUGS-21280): CVE-2023-39325 - Update net dependencies - 4.13 [#46](https://github.com/openshift/cloud-provider-powervs/pull/46) * [Full changelog](https://github.com/openshift/cloud-provider-powervs/compare/130365622eb0c59e102049529695c8326d616213...de68def0c918a05ad4bf32cc0470a7931d661c27) ### [powervs-machine-controllers](https://github.com/openshift/machine-api-provider-powervs/tree/e275605a27d0cadce1d2b8c8351edfd18944e39e) * [OCPBUGS-24741](https://issues.redhat.com/browse/OCPBUGS-24741): snyk code scan exclude vendor directory [#64](https://github.com/openshift/machine-api-provider-powervs/pull/64) * [OCPBUGS-21880](https://issues.redhat.com/browse/OCPBUGS-21880): CVE-2023-39325 - Bump golang.org/x/net to v0.17.0 - 4.13 [#55](https://github.com/openshift/machine-api-provider-powervs/pull/55) * [Full changelog](https://github.com/openshift/machine-api-provider-powervs/compare/bf49c5c1b07137baa766b4d78b9e9c2650ef59ad...e275605a27d0cadce1d2b8c8351edfd18944e39e) ### [prometheus](https://github.com/openshift/prometheus/tree/72886096272245e064297c480b24ac4895230c89) * [OCPBUGS-26423](https://issues.redhat.com/browse/OCPBUGS-26423): Add Exemplars support for all time series [#191](https://github.com/openshift/prometheus/pull/191) * [OCPBUGS-21240](https://issues.redhat.com/browse/OCPBUGS-21240): update golang.org/x/net to v0.17.0 [4.13] [#174](https://github.com/openshift/prometheus/pull/174) * [Full changelog](https://github.com/openshift/prometheus/compare/8279148fd0d8b2aa2a1613a2e9810aea80f487df...72886096272245e064297c480b24ac4895230c89) ### [prometheus-alertmanager](https://github.com/openshift/prometheus-alertmanager/tree/df2f11e2ddc206ad1924ed766b4a394d84c9236f) * [OCPBUGS-21043](https://issues.redhat.com/browse/OCPBUGS-21043): Bump golang.org/x/net to v0.17.0 [#81](https://github.com/openshift/prometheus-alertmanager/pull/81) * [Full changelog](https://github.com/openshift/prometheus-alertmanager/compare/f44d574d8e170d6788cfbf2bdbc866d3e1fc1054...df2f11e2ddc206ad1924ed766b4a394d84c9236f) ### [prometheus-config-reloader, prometheus-operator, prometheus-operator-admission-webhook](https://github.com/openshift/prometheus-operator/tree/30fdccd139b2c63a9207bd30509aec8ddec7ff5d) * [OCPBUGS-20861](https://issues.redhat.com/browse/OCPBUGS-20861): Bump golang.org/x/net to v0.17.0 [#248](https://github.com/openshift/prometheus-operator/pull/248) * [Full changelog](https://github.com/openshift/prometheus-operator/compare/95a117826360e23e092be5bbee2da8dbcf44f17a...30fdccd139b2c63a9207bd30509aec8ddec7ff5d) ### [prometheus-node-exporter](https://github.com/openshift/node_exporter/tree/59d699cac664bfbfe83ef6a1615e34e062fd283d) * [OCPBUGS-21143](https://issues.redhat.com/browse/OCPBUGS-21143): upgrade golang.org/x/net to v0.17.0 [#135](https://github.com/openshift/node_exporter/pull/135) * [Full changelog](https://github.com/openshift/node_exporter/compare/5409afd036445411969ed074e681c73f2df36909...59d699cac664bfbfe83ef6a1615e34e062fd283d) ### [telemeter](https://github.com/openshift/telemeter/tree/8c9a8a75108afb1ba7fe6398b004cbc8229cc645) * [OCPBUGS-21327](https://issues.redhat.com/browse/OCPBUGS-21327): [release-4.13]: Bump golang.org/x/net to v0.17.0 [#485](https://github.com/openshift/telemeter/pull/485) * [Full changelog](https://github.com/openshift/telemeter/compare/be81b43429dcbf70f6ca19a9360ba455c97a1639...8c9a8a75108afb1ba7fe6398b004cbc8229cc645) ### [tests](https://github.com/openshift/origin/tree/99b9d537a935e6446ba1fcd55e9a5b5ba090820a) * [AUTH-443](https://issues.redhat.com/browse/AUTH-443): Add oauth-server redirect URI validation e2e tests [#28396](https://github.com/openshift/origin/pull/28396) * [OCPBUGS-19378](https://issues.redhat.com/browse/OCPBUGS-19378): [4.13] backport etcd restore tests [#28267](https://github.com/openshift/origin/pull/28267) * Bug OCPBUGS-17469: Correct condition for rejecting connection [#28151](https://github.com/openshift/origin/pull/28151) * [OCPBUGS-20361](https://issues.redhat.com/browse/OCPBUGS-20361): Update image stream test to create a manifest list image by default [#28318](https://github.com/openshift/origin/pull/28318) * [Full changelog](https://github.com/openshift/origin/compare/62852a2a543c7e12a2bca8d7393b1e84eab700b9...99b9d537a935e6446ba1fcd55e9a5b5ba090820a) ### [thanos](https://github.com/openshift/thanos/tree/9d44429f5179099aa42dcc2920020d9e401cd8f7) * [OCPBUGS-21157](https://issues.redhat.com/browse/OCPBUGS-21157): Bump golang.org/x/net to v0.17.0 [#125](https://github.com/openshift/thanos/pull/125) * [Full changelog](https://github.com/openshift/thanos/compare/43238be385374e76ca6148a6780ddff9ebca3d11...9d44429f5179099aa42dcc2920020d9e401cd8f7) ### [vsphere-cloud-controller-manager](https://github.com/openshift/cloud-provider-vsphere/tree/f56d57ba990f7f4ce1a6b1f9842331e9259c94f1) * [OCPBUGS-21506](https://issues.redhat.com/browse/OCPBUGS-21506): Bump golang.org/x/net to v0.18.0 [#55](https://github.com/openshift/cloud-provider-vsphere/pull/55) * [Full changelog](https://github.com/openshift/cloud-provider-vsphere/compare/0fe0c5c37d06893359f584e4b6f62d371703e9d1...f56d57ba990f7f4ce1a6b1f9842331e9259c94f1) ### [vsphere-cluster-api-controllers](https://github.com/openshift/cluster-api-provider-vsphere/tree/da63f2b930cdd6090904ee607319b40615b245f6) * [OCPBUGS-21556](https://issues.redhat.com/browse/OCPBUGS-21556): bump golang.org/x/net to v0.17.0 [#23](https://github.com/openshift/cluster-api-provider-vsphere/pull/23) * [Full changelog](https://github.com/openshift/cluster-api-provider-vsphere/compare/24e08ddf65fd387ea7c71e229b13e47d6cd3643f...da63f2b930cdd6090904ee607319b40615b245f6) ### [vsphere-csi-driver, vsphere-csi-driver-syncer](https://github.com/openshift/vmware-vsphere-csi-driver/tree/4d3036a6c7fe0c850bbadd942267426afe2ec16a) * [OCPBUGS-21561](https://issues.redhat.com/browse/OCPBUGS-21561): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#91](https://github.com/openshift/vmware-vsphere-csi-driver/pull/91) * [Full changelog](https://github.com/openshift/vmware-vsphere-csi-driver/compare/9079a510ebbe7bc0df6a06aae43b6dbada3adb32...4d3036a6c7fe0c850bbadd942267426afe2ec16a) ### [vsphere-csi-driver-operator](https://github.com/openshift/vmware-vsphere-csi-driver-operator/tree/a9e5036e12facff0193d563b752847191fc9dc91) * [OCPBUGS-21434](https://issues.redhat.com/browse/OCPBUGS-21434): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#174](https://github.com/openshift/vmware-vsphere-csi-driver-operator/pull/174) * [OCPBUGS-18132](https://issues.redhat.com/browse/OCPBUGS-18132): Block 4.14 upgrades with admin ack [#169](https://github.com/openshift/vmware-vsphere-csi-driver-operator/pull/169) * [OCPBUGS-18332](https://issues.redhat.com/browse/OCPBUGS-18332): disable controller hostNetwork [#166](https://github.com/openshift/vmware-vsphere-csi-driver-operator/pull/166) * [Full changelog](https://github.com/openshift/vmware-vsphere-csi-driver-operator/compare/ab111cf6a6f39b81ace6990dc56eb9ca14560614...a9e5036e12facff0193d563b752847191fc9dc91) ### [vsphere-problem-detector](https://github.com/openshift/vsphere-problem-detector/tree/3ad7408fb53a9377d9f5b2cf5ae38570a9ec5c59) * [OCPBUGS-21577](https://issues.redhat.com/browse/OCPBUGS-21577): CVE-2023-44487: bump golang.org/x/net to v0.17.0 [#130](https://github.com/openshift/vsphere-problem-detector/pull/130) * [Full changelog](https://github.com/openshift/vsphere-problem-detector/compare/64f62bff177c6f2df6f106eacecc05e49e9a9828...3ad7408fb53a9377d9f5b2cf5ae38570a9ec5c59)