queue to be emptied once a day

Unprioritized issues older than 7 days (178)

Resolution: Add a priority/ or triage/ label

Average age: 172.7d, Avg wait: 65.4d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
5131 ingressShim doesn't supply x.509 subject fields required by our providers (TPP) policies 8d 8d 8d
kind/feature
recv
5128 helm chart: add annotations and labels globally 9d 9d 9d
kind/feature
recv
5120 Too many pending authorizations - On Certificate Orders 10d 6d 10d
kind/bug
author-last
commented
recv
5114 Intermediate certificate is not updated in child certificate 11d 11d 11d
kind/bug
recv
5108 Venafi issuer 10s timeout on certificate issuance.
13d 13d 13d
kind/feature
recv
5106 Makefile flake when checking shasums 13d 12d
kind/bug
kind/flake
5101 No backoff/delay when failing to create challenge solver pods 16d 16d 16d
kind/bug
recv
5098 Requested Certificates stuck in Pending 17d 17d 17d
kind/bug
author-last
recv
recv-q
similar
5088 ACME Issuer should support option to write intermediate and root CAs to Ingress TLS secret 19d 19d 19d
kind/feature
recv
5086 Issuing certificate as Secret does not exist 2wk 19d 2wk
contributor-last
recv
5085 Support Azure Workload Identities
5
2wk 2wk 2wk
kind/feature
author-last
recv
5079 Document the netcup external ACME webhook
2
3wk 18d
recv-q
5078 Venafi unit-test are flakey when run via make 3wk 3wk
5075 Create generic middleware/wrapper for instrumenting calls to external services 3wk 3wk
5073 Allow injecting CABundle to arbitrary Custom Resources 3wk 3wk 3wk
kind/feature
recv
5072 Cert-Manager auto rollout in gcloudAnthos 3wk 3wk 3wk
collaborator-last
commented
send
5071 Upgrade logr on cert-manager 1.5.3 3wk 19d 19d
kind/bug
collaborator-last
commented
send
5069 Error presenting challenge: the server could not find the requested resource even though resource exists 3wk 2d 3wk
kind/bug
recv
5068 cert-manager v1.9 tracking issue 3wk 3wk
5066 Threat model for cert-manager
3wk 3wk 3wk
kind/feature
collaborator-last
commented
5062 Cert-manager stops processing order request in "processing" status after several attempts 3wk 3wk 3wk
kind/bug
area/acme
author-last
commented
recv
recv-q
5046 Cannot use Certificate.spec.secretTemplate
3
5wk 5d 5wk
kind/bug
recv
recv-q
similar
5042 propagation check failed: DNS record for xxx not yet propagated
5wk 2wk 5wk
kind/bug
recv
recv-q
similar
5041 Failed to obtain venafi certificate: vcert error: your data contains problems: request doesn't match certificate: unmatched key modulus 5wk 5wk 5wk
kind/bug
recv
5031 ValidateCAA test function is flaky 6wk 6wk 6wk
kind/bug
recv
5028 Wrong nameserver for vault clusterissuer 6wk 3wk 3wk
author-last
commented
recv
recv-q
5021 Post-release steps for 1.8 6wk 5wk
kind/cleanup
5020 `cmctl` as downloaded for 1.8.0 shows `canary` as its version
6wk 6wk 6wk
kind/bug
commented
member-last
pr-unreviewed
send
5014 Allow monitoring externally managed certificates 7wk 7wk 7wk
kind/feature
recv
5005 Investigate why Contour fails with "Gateway not found in cache" in some end-to-end Prow jobs
7wk 6wk 6wk
kind/flake
commented
member-last
pr-closed
5004 install "cert-manager" on k8s meet "https://cert-manager-webhook.cert-manager.svc:443/mutate?timeout=10s"
2
7wk 4wk 7wk
recv
similar
5000 externalName: <service-name><namespace>.svc.cluster.local 7wk 7wk 7wk
kind/feature
recv
4999 Verification on 1.7.2 fails (Kubectl apply) 7wk 7wk 7wk
kind/bug
recv
4997 additional annotations to the ingress resource for the private key 7wk 6wk 7wk
kind/feature
recv
4982 Cert manager issues - pod is in constant restart 1mo 1mo 1mo
collaborator-last
commented
send
4980 Waiting for DNS-01 challenge propagation: dial tcp 173.245.59.41:53: connect: connection refused 2mo 4d 1mo
kind/bug
commented
recv-q
send
similar
4979 Overhaul the DNS01 solver
4
2mo 1mo
kind/feature
4959 Support AWS Auth Method for Vault 2mo 6d 2mo
kind/feature
recv
4956 cert-manager created multiple CertificateRequest objects with the same certificate-revision
2mo 1mo 1mo
kind/bug
commented
contributor-last
pr-merged
recv
4950 General flakiness of our end-to-end suite
2mo 1mo 1mo
kind/flake
commented
member-last
pr-approved
pr-closed
pr-new-commits
4947 Custom labels/annotations in ACME solver services created by Issuer/ClusterIssuer
3
2mo 19d 2mo
kind/feature
recv
4945 Is there a hosts limit in the tls section of an ingress? 2mo 2mo 2mo
recv
4944 Improve testing by exporting fake.scheme 2mo 2mo 2mo
kind/feature
recv
4941 Failed to perform self check GET request 2mo 9d 2mo
kind/bug
recv
recv-q
similar
4940 Migrate to Ginkgo 2 to get JUnit XML reports on Prow timeouts
2mo 3wk 3wk
kind/cleanup
collaborator-last
commented
open-milestone
pr-merged
send
4931 Enable Testing on ARM64 2mo 16d 2mo
kind/feature
author-last
commented
recv
recv-q
4927 Show cert issue date and expiration date in kubectl get certificates 2mo 2mo 2mo
kind/feature
collaborator-last
commented
send
4912 logging format json 2mo 6wk 2mo
kind/feature
recv
4902 Hi getting error Not ready: Internal error occurred: failed calling webhook "webhook.cert-manager.io": Post "https://cert-manager-webhook.cert-manager.svc:443/mutate?timeout=10s": Address is not allowed 2mo 2mo 2mo
collaborator-last
commented
send
similar
4901 Error from server (InternalError): error when creating "STDIN": Internal error occurred: failed calling webhook "defaulting.webhook.provisioners.karpenter.sh": Post "https://karpenter.karpenter-fargate.svc:443/default-resource?timeout=10s": x509: certificate is valid for karpenter-webhook, karpenter-webhook.karpenter-fargate, karpenter-webhook.karpenter-fargate.svc, karpenter-webhook.karpenter-fargate.svc.cluster.local, not karpenter.karpenter-fargate.svc 2mo 2mo 2mo
kind/bug
contributor-last
recv
recv-q
similar
4899 Certificate.Spec.RenewEvery instead of RenewBefore 2mo 2mo
kind/feature
4896 Unable to generate self-signed pkcs12 Certificate
3
2mo 5wk 2mo
contributor-last
recv
4895 cert manager webook certificate 2mo 2mo 2mo
recv
similar
4894 Can't create prod cert, but staging can 2mo 2mo 2mo
author-last
recv
recv-q
4893 Venafi ClusterIssuer fails to become Ready when authorize is slow
3
2mo 19d 3wk
kind/bug
area/venafi
commented
send
4892 Set up a permanent cert-manager installation to catch issues that only appear in long running deployments 2mo 2mo
kind/feature
4891 cert-manager cannot authenticate to vault after upgrading kubernetes to 1.21 2mo 2mo 2mo
author-last
recv
4889 error unmarshaling order: json: cannot unmarshal object into Go struct field Error.error.Err of type error 2mo 2mo 2mo
kind/bug
area/acme
author-last
commented
recv
recv-q
4884 Add a similar secretTemplate to the secret that is created by ACME Issuer 3mo 2mo 2mo
kind/feature
author-last
commented
recv
4877 HTTP01 solver fails self-check/propagation check on 1.7.1 when used with client-certificate auth on nginx Ingress 1.1.1
3mo 6wk 3mo
kind/bug
recv
recv-q
4871 LetsEncrypt Staging vs Production 3mo 2mo 2mo
kind/bug
author-last
commented
recv
4862 Cert-manager v1.7.1 suddenly stopped to work
3mo 2mo 3mo
commented
recv
recv-q
4859 Ignore ingressclass with no http01-ingress-class or provide a way to set the defaults 3mo 6d 3mo
kind/feature
lifecycle/stale
collaborator-last
recv
4856 Think about how we test our vendored version of Go's time.afterFunc
3mo 6d
kind/cleanup
lifecycle/stale
collaborator-last
pr-merged
4852 error: unable to retrieve the complete list of server APIs: webhook.cert-manager.io/v1beta1: the server is currently unable to handle the request 3mo 6d 3mo
kind/bug
lifecycle/stale
collaborator-last
commented
send
4846 More than one Certificate nominating same Secret induces runaway creation of many CertificateRequests and Orders
2
3mo 5wk 3mo
kind/bug
recv
recv-q
4829 Root CA missing in tls.crt since migration from 1.2 to 1.6.1 3mo 2mo 2mo
kind/bug
commented
member-last
send
4824 Repo Migration Followup Task List
3mo 13d
lifecycle/stale
assigned
assignee-updated
collaborator-last
pr-merged
4821 Allow `ingressClassName` to be set for HTTP01 solver ingresses.
50
3mo 11d 3wk
kind/feature
area/ingress-shim
commented
send
4812 No example of setting up a central cert-manager 3mo 2wk 3mo
kind/feature
lifecycle/stale
collaborator-last
recv
4806 Unable to update target object with new CA data; the object has been modified 3mo 3wk 3mo
kind/bug
lifecycle/stale
collaborator-last
commented
recv
4805 support for importing multiple CA generated from different issuers in jks certificates
3mo 19d 3mo
lifecycle/stale
collaborator-last
recv
4802 Failed to apply secret
2
3mo 3wk 3mo
kind/bug
lifecycle/stale
collaborator-last
commented
send
4797 Automatically renew certificates if OCSP indicates that it was revoked
4
3mo 12d 3mo
kind/feature
area/acme
author-last
commented
recv
4786 Investigate whether it would be valuable to decrease the initial backoff period for certificate issuance retries
5
3mo 6d 6d
collaborator-last
commented
pr-merged
send
4780 TestRunsSuite/Conformance/Extended/DeletingOneRecordRetainsOthers always fails - webhook godaddy 3mo 3wk 3mo
lifecycle/stale
collaborator-last
commented
recv
recv-q
4774 Using the Vault Issuer with a client certificate along with Kubernetes auth
3mo 10d
kind/feature
lifecycle/stale
collaborator-last
pr-unreviewed
recv-q
similar
4771 Internal error for webhook server certificate has expired or is not yet valid
3mo 1mo 3mo
commented
recv
recv-q
4767 Certificate resource dosent transition to True 4mo 1d 4mo
lifecycle/rotten
collaborator-last
recv
similar
4749 rfc2136 seems to not work with deep subdomains 4mo 4d 4mo
kind/bug
lifecycle/rotten
area/acme/dns01
collaborator-last
commented
recv
4747 Revoke Certificates
2
5
4mo 5d 4mo
kind/feature
lifecycle/rotten
collaborator-last
recv
similar
4733 Vault Service Account auth via ambient credentials
2
4
4mo 3wk 3mo
kind/feature
lifecycle/stale
area/vault
collaborator-last
commented
pr-unreviewed
send
4726 HTTP01 challenge fails, solver pod short-lived and all its traces wiped out
2
4mo 9d 4mo
kind/bug
lifecycle/rotten
collaborator-last
commented
send
4725 Requests for Let's Encrypt certificates in the cooldown period during initial creation keep failing
4mo 9d 4mo
kind/bug
lifecycle/rotten
collaborator-last
commented
recv
4724 add support for a homebrew installation/update
11
4mo 11d 4mo
kind/feature
lifecycle/rotten
area/ctl
collaborator-last
commented
send
4712 Bazel -> Make Migration Tracker
3
4mo 2mo 2mo
commented
member-last
pr-closed
pr-merged
send
4709 HTTP01 creation of acme is unsuccessful 4mo 11d 4mo
kind/bug
lifecycle/rotten
collaborator-last
commented
recv-q
send
4700 absence of nodeSelector causes the deployment to fail in the hybrid clusters with windows and linux workers 4mo 18d 4mo
kind/bug
lifecycle/rotten
collaborator-last
commented
send
4693 Pods should have seccompProfile RuntimeDefault 4mo 3wk 4mo
kind/bug
author-last
recv
4685 Unexpected EOF during watch stream event decoding: unexpected EOF 5mo 4wk 5mo
lifecycle/frozen
kind/bug
contributor-last
recv
recv-q
4657 Progress of the support of shell completion for the "kubectl cert-manager" plugin, coming in Kubernetes 1.24
5mo 1d 4mo
kind/feature
lifecycle/rotten
area/ctl
collaborator-last
commented
4654 Certificates issued by vault with isCa: true are missing CA:TRUE in certificate 5mo 9d 9d
kind/bug
commented
member-last
send
similar
4647 Generate .p12 and PEM with cert-manager
5mo 3wk 3wk
kind/feature
lifecycle/rotten
collaborator-last
commented
send
4631 Cert-manager not valid certificates 5mo 7d 5mo
lifecycle/rotten
collaborator-last
commented
recv
recv-q
similar
4630 This issue was incorrectly autoclosed, please reopen 5mo 2mo 5mo
author-last
recv
4621 Allow Certificate secretTemplate to specify the cert-manager.io/allow-direct-injection annotation
5mo 3wk 3wk
kind/feature
commented
member-last
open-milestone
pr-closed
send
similar
4594 TLS handshake error: EOF
3
6mo 9d 6mo
kind/bug
lifecycle/rotten
recv
recv-q
4561 Ability to specify secret ownerReference as part of the Certificate request
3
6mo 2d 6mo
kind/feature
recv
4535 Kubernetes: x509 certificate signed by unknown authority, possibly because of ECDSA verification failure
7mo 2mo 7mo
commented
recv-q
send
4494 Prometheus metrics for Orders 7mo 18d 7mo
kind/feature
lifecycle/rotten
collaborator-last
recv
4490 Subject Ingress Annotations
2
7mo 4wk 7mo
kind/feature
author-last
pr-changes-requested
recv
4489 Externalize controller argument config 7mo 2mo 7mo
kind/feature
assigned
recv
4454 Add certificate issuer / issuer type in prometheus metrics
8
8mo 5wk 5wk
good first issue
help wanted
kind/feature
commented
open-milestone
pr-new-commits
recv-q
send
4452 Error initializing issuer: context deadline exceeded
2
8mo 3d 8mo
kind/bug
lifecycle/stale
recv
recv-q
4423 Cert renewal loop
2
8mo 5wk 7mo
kind/bug
author-last
commented
recv
recv-q
4410 Support configuration via operator subscription
4
8mo 3d 3d
kind/feature
commented
member-last
send
4349 allowing greater configuration for the cloud provider tests
9mo 4wk 4wk
lifecycle/frozen
kind/feature
collaborator-last
commented
send
4331 Add Uninstall & Upgrade commands to `kubectl cert-manager`
9mo 6wk 6wk
kind/feature
commented
member-last
pr-closed
4289 Changing a Certificate keystores specification should update certificate Secret 9mo 3wk 9mo
kind/bug
lifecycle/stale
contributor-last
recv
recv-q
4246 ACME DNS Challenge and Propagation Delay (NXDOMAIN)
5
10mo 2mo 10mo
kind/bug
recv
4216 Error getting keypair for CA issuer: error parsing ecdsa private key: x509: failed to parse EC private key: asn1: structure error: length too large 10mo 10mo 10mo
recv
4210 Syncing secret across namespaces gives error "unable to fetch certificate that owns the secret" 10mo 11d 10mo
kind/bug
lifecycle/rotten
collaborator-last
recv
recv-q
4191 Setting default values for Pod's "resources"?
2
10mo 4d 3mo
lifecycle/stale
collaborator-last
commented
send
4114 Endless Sync Loop when installing Helm Chart via ArgoCD
5
11mo 17d 5mo
kind/bug
lifecycle/stale
collaborator-last
commented
pr-closed
pr-unreviewed
send
4071 Add a default value to RevisionHistoryLimit if none is provided in the Certificate
9
11mo 2mo 11mo
kind/feature
pr-new-commits
recv
recv-q
similar
3958 Sane defaults for Certificate revision history limit
7
1y 2mo 1y
kind/feature
recv
similar
3896 Cert Manager failing to renew certificate
17
1y 4d 8mo
kind/bug
commented
recv-q
send
similar
3747 Certificate issuerRef should be optional
1y 1mo 1y
kind/feature
contributor-last
recv
3743 Excessive DNS caching for DNS verification
4
1y 19d 19d
kind/bug
lifecycle/stale
commented
member-last
send
3719 DNS-01 broken scenario (GCP Cloud DNS) 1y 2mo 1y
kind/bug
author-last
recv
3592 Ability to not create ca.crt
2
1y 2mo 1y
author-last
commented
recv
3565 requestmanager_controller got stuck in a loop and stopped generating new certificates afterward
11
1y 3wk 7mo
kind/bug
commented
recv-q
send
981 The `kubectl operator install` instructions are broken (after upgrading kubectl operator v0.3.0 -> v0.4.0) 9d 9d 9d
commented
member-last
975 Some pages do not make it clear what the user should read next 16d 16d
974 Investigate styled 404 page 16d 16d
955 Document when the vault pki role required setting `require_cn=false` 3wk 3wk
944 Document how to install cert-manager in a different namespace
3wk 3wk 3wk
good first issue
assigned
assignee-updated
contributor-last
recv
936 Review public envvars for site 3wk 17d 17d
commented
member-last
931 Improve upgrade instructions using helm
3wk 3wk 3wk
recv
923 GSoD2022: Improve the navigation and structure of the cert-manager website 4wk 14d 4wk
assigned
contributor-last
recv
similar
922 GSoD2022: Dashamir Hoxha 4wk 3wk 3wk
assigned
assignee-updated
commented
member-last
send
921 GSoD2022: Improve the Navigation and Structure of the cert-manager Website by Mehak 4wk 3wk 3wk
assigned
assignee-updated
commented
member-last
send
similar
899 Upgrading from v1.7 to v1.8 check command should exclude null.
2
6wk 18d 6wk
recv
recv-q
891 Website refresh post-merge task list
7wk 3wk
assigned
assignee-updated
pr-merged
868 Document RBAC 2mo 2mo 2mo
contributor-last
recv
similar
866 Securing NGINX-ingress 2mo 2mo 2mo
recv
similar
851 create Cilium ingress tls example
3
3mo 3mo 3mo
assigned
assignee-updated
recv
847 missing documentation/information olm based installation metric prometheus 3mo 3mo 3mo
contributor-last
recv
844 Document feature gates 3mo 3mo
similar
841 remove dependency on golang from cmctl and kubectl-plugin installation documentation
3mo 3mo 3mo
contributor-last
pr-merged
recv
recv-q
836 Syncing Secrets Across Namespaces
3mo 1mo 3mo
recv
802 Spelling errors are unclear in pull request CI results and spell checker is unmaintained
4mo 3mo
kind/bug
contributor-last
pr-merged
776 Explain that you can pre-provision a Secret and Certificate.Spec.SecretName can refer to an existing Secret 5mo 5mo 5mo
commented
member-last
send
758 API reference docs: enum values not documented with typedef 6mo 6mo 6mo
recv
746 Enable Dark mode in the docs website 6mo 6mo 6mo
recv
706 Default key usages 8mo 8mo 8mo
recv
697 [IRSA] Needs `runAsUser: 1001` 8mo 8mo 8mo
recv
693 Azure DNS pod identity incorrectly documents principal_id 8mo 8mo 8mo
commented
member-last
send
672 List required Google CloudDNS permissions exhaustively 9mo 9mo 9mo
recv
662 Using "azureDNS" for the DNS01 Solver results "Multiple user assigned identities exist, please specify the clientId / resourceId"
9mo 9mo 9mo
recv
645 Investigate & add an FAQ/warning about images rolled back after GitOps upgrade 10mo 3mo 10mo
recv
recv-q
642 Move/ link to Webhook debugging docs 10mo 10mo
similar
604 Make it so that it is easier to find the doc for fixing webhook issues 11mo 4wk 11mo
contributor-last
recv
583 cert-manager with ZeroSSL
23
11mo 11d 3wk
commented
send
568 Add a diagram for LetsEncrypt cert issuance flow to the docs
4
1y 1y 1y
recv
561 Certificate Resources 1y 1y 1y
recv
similar
554 HTTP Validation, privateKeySecretRef 1y 11mo 1y
contributor-last
recv
similar
549 Effort towards a more user-friendly website 1y 1y
543 Add getting started documentation for users who want to quickly use cert-manager to issue LetsEncrypt certificates
4
1y 11mo 11mo
commented
member-last
send
542 Document the Istio VirtualService HTTP01 configuration options 1y 1y
532 Rework of the landing page (cert-manager.io)
3
1y 6mo 11mo
help wanted
good first issue
commented
member-last
send
486 OpenShift - broken link
1y 9mo 9mo
commented
member-last
send
469 DNS01: Delegated Domains for DNS01 example yaml solvers list items 1y 1y 1y
recv
466 installation/compatiblity 1y 1y 1y
recv
457 cainjector docs are missing the option to inject certs in apiservice resources
1y 1y 1y
recv
454 Cluster Resource Namespace 1y 1y 1y
recv
426 Create a sequence diagram that shows how a certificate gets issued with let's encrypt
2
1y 1y 1y
commented
member-last
pr-merged
425 Document ocspServers 1y 1y 1y
kind/documentation
commented
member-last
422 Page last modified date incorrect 1y 1y 1y
kind/bug
collaborator-last
commented
send
386 Uninstalling on Kubernetes - How to delete all those user created resources? 1y 1y 1y
collaborator-last
commented
send
330 Case for CertificatePrivateKey (encoding, algorithm) is wrong (v1) 2y 2y 2y
collaborator-last
commented
send
326 Securing Ingresses with Venafi 2y 2y 2y
collaborator-last
commented
send
similar
295 Route53 2y 1y 1y
kind/documentation
commented
member-last
send
50 Move cert-manager-release infrastructure to CNCF's GCP account
8mo 4mo 4mo
commented
member-last
42 Publish latest release number as part of creating a final release
9mo 8mo 8mo
commented
member-last
send
31 Move the manual steps of our release process to cmrel commands
1y 8mo 8mo
commented
member-last
pr-closed
27 Create cert-manager specific testing infrastructure
1y 8mo 8mo
assigned
assignee-updated
commented
member-last
pr-merged
send
19 Incorrect command line help: should include a --branch argument 2y 1y 1y
kind/cleanup
commented
contributor-last

Uncommented older than 7 days (93)

Resolution: Add a priority/ or triage/ label

Average age: 187.4d, Avg wait: 155.4d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
4722 High memory usage on cluster with many secrets
6
4mo 3wk 4mo
kind/bug
priority/important-soon
collaborator-last
open-milestone
recv
4653 Venafi TPP Support for Oauth 5mo 3wk 5mo
kind/feature
priority/backlog
recv
recv-q
4648 Kubernetes 1.22 Challenge stuck at pending : Waiting for HTTP-01 challenge propagation: wrong status code '404', expected '200'
2
13
5mo 3wk 5mo
kind/bug
priority/backlog
recv
recv-q
similar
3898 Allow setting PodDisruptionBudget policies via helm chart
2
1y 2mo 1y
kind/feature
priority/important-longterm
area/deploy
pr-closed
pr-new-commits
pr-unreviewed
recv
3711 Export issued cert into AWS ACM
18
1y 2mo 1y
kind/feature
priority/backlog
recv
3655 Specify Name Constraints in CA Certificate
4
1y 2wk 1y
kind/feature
priority/backlog
lifecycle/stale
collaborator-last
recv
850 Document available cert-manager Prometheus metrics 3mo 4wk 3mo
documentation
good first issue
priority/important-longterm
contributor-last
recv
770 Helm template fails with `--create-namespace` 5mo 4mo 5mo
triage/support
contributor-last
recv
recv-q
709 Update Securing NGINX-ingress tutorial for apiVersion networking.k8s.io/v1
7mo 7mo 7mo
good first issue
priority/important-soon
recv
551 Documentation on how to handle large-scale certificate management & best practices
2
1y 5mo 1y
help wanted
priority/important-longterm
kind/documentation
contributor-last
recv
480 Secret gets UID added to end of name 1y 1y 1y
triage/support
contributor-last
recv
recv-q
76 Upgrading from v0.10 to v0.11 - missing cainjector annotation 2y 2y 2y
priority/backlog
kind/documentation
contributor-last
recv
56 Route53: document use of "region" field 2y 1y 2y
documentation
priority/important-longterm
contributor-last
recv
recv-q
80 previously listed items omitted

Important soon, but no updates in 90 days (10)

Resolution: Downgrade to important-longterm

Average age: 706.2d, Avg wait: 74.1d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
709 Update Securing NGINX-ingress tutorial for apiVersion networking.k8s.io/v1
7mo 7mo 7mo
good first issue
priority/important-soon
recv
320 Document how to install cert-manager using gitops and known issues with particular gitops implementations
2
2y 1y 2y
documentation
priority/important-soon
commented
contributor-last
262 [DOCS]: Add info on how to customize kind CertManager when using OperatorHub method on Openshift
2y 1y 2y
kind/feature
priority/important-soon
author-last
commented
recv
recv-q
229 Documenting resolution for DigitalOcean + HTTP01 "connection timed out" error 2y 2y
priority/important-soon
kind/documentation
contributor-last
198 Document release process 2y 2y 2y
priority/important-soon
kind/documentation
assigned
commented
member-last
send
195 Document keystores 2y 1y 2y
priority/important-soon
kind/documentation
commented
member-last
send
174 Add documentation for CRD conversion webhook ca injection 2y 2y 2y
help wanted
priority/important-soon
kind/documentation
commented
member-last
send
144 Improve webhook debugging info
2y 1y 2y
priority/important-soon
kind/documentation
commented
member-last
pr-merged
send
similar
90 Document Certificate Subject Changes 2y 1y 1y
help wanted
good first issue
priority/important-soon
collaborator-last
commented
69 SelfSignedIssuer configuration - API reference docs 2y 2y 2y
help wanted
good first issue
priority/important-soon
kind/documentation
commented
member-last
send

Important longterm, but no updates in 180 days (6)

Resolution: Downgrade to backlog

Average age: 714.3d, Avg wait: 149.0d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
401 Bring tutorials up to date 1y 1y
priority/important-longterm
344 Add docs to explain webhooks 2y 1y
help wanted
good first issue
priority/important-longterm
contributor-last
223 Document wildcard certificate tutorial 2y 2y 2y
priority/important-longterm
kind/documentation
commented
contributor-last
send
178 Order of versions of cert-manager in menu 2y 2y 2y
priority/important-longterm
kind/documentation
commented
contributor-last
send
154 Documenting repo management process 2y 2y 2y
priority/important-longterm
kind/documentation
commented
contributor-last
send
56 Route53: document use of "region" field 2y 1y 2y
documentation
priority/important-longterm
contributor-last
recv
recv-q

Pull Requests: Review Ready (17)

Resolution: Review requests or mark them as do-not-merge/work-in-progress

Average age: 35.8d, Avg wait: 15.5d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
5143 ✨ Add OVH cloud as DNS01 ACME challenge solver, replaces #1088 1d 1d 1d
release-note
size/XL
area/api
needs-ok-to-test
area/acme
dco-signoff: no
area/acme/dns01
area/deploy
needs-kind
collaborator-last
recv
unreviewed
5141 Adding a namespace override for k8s resources
2d 2d 2d
size/L
release-note
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
collaborator-last
commented
new-commits
recv
recv-q
5135 Make ServiceMonitor support TLS config 5d 5d 5d
size/XS
release-note
needs-ok-to-test
dco-signoff: no
area/deploy
needs-kind
collaborator-last
recv
unreviewed
5122 Backport kube 1.24 test infra changes to release-1.7 10d 8d 8d
size/L
release-note-none
approved
kind/cleanup
dco-signoff: yes
area/testing
cherry-pick-approved
collaborator-last
commented
unreviewed
5127 Add EncodeUsagesInRequestAnnotationKey for certificate 9d 9d 9d
release-note
size/S
area/api
needs-ok-to-test
dco-signoff: yes
needs-kind
assigned
author-last
recv
unreviewed
5105 Replace update with patch operation 14d 13d 14d
release-note-none
size/S
needs-ok-to-test
dco-signoff: yes
area/testing
needs-kind
collaborator-last
recv
unreviewed
5093 Add relabeling and metricRelabelings settings for ServiceMonitor. 19d 19d 19d
release-note
size/S
needs-ok-to-test
dco-signoff: yes
area/deploy
needs-kind
collaborator-last
recv
unreviewed
5054 fix webhook can not run with args of kubeconfig 4wk 4wk 4wk
size/XS
release-note-none
kind/bug
needs-ok-to-test
area/acme
dco-signoff: yes
collaborator-last
recv
unreviewed
4969 add acmeHttp01SolverImage 2mo 7wk 1mo
size/XS
release-note
needs-ok-to-test
dco-signoff: yes
area/deploy
needs-kind
author-last
commented
recv
recv-q
unreviewed
4744 Trigger controller: test the trigger cases 4mo 7wk 7wk
size/XL
release-note-none
approved
kind/cleanup
dco-signoff: yes
area/testing
collaborator-last
commented
new-commits
4570 `RevisionHistoryLimit` has a default value of 25 6mo 2mo 2mo
release-note
area/api
size/M
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
assigned
collaborator-last
commented
new-commits
recv
recv-q
956 add external link to Netcup ACME webhook 3wk 3h 3wk
size/XS
dco-signoff: yes
needs-ok-to-test
author-last
recv
recv-q
unreviewed
985 Fix the link to `Upgrading from v1.7 to v1.8` in release notes for `1.8` 4h 4h 4h
size/XS
dco-signoff: yes
needs-ok-to-test
recv
unreviewed
984 Fix zerossl - test 2d 1d 2d
dco-signoff: yes
size/L
needs-ok-to-test
assigned
contributor-last
recv
unreviewed
930 update ibmcloud cis webhook link 4wk 13d 3wk
size/XS
dco-signoff: yes
needs-ok-to-test
author-last
commented
recv
unreviewed
948 add note to ingress class definition 3wk 3wk 3wk
dco-signoff: no
size/XS
needs-ok-to-test
assigned
author-last
recv
unreviewed
905 s/path/mountPath/ 5wk 3wk 3wk
size/XS
dco-signoff: yes
needs-ok-to-test
author-last
commented
recv
unreviewed

Unkinded Issues (102)

Resolution: Add a kind/ or triage/support label

Average age: 231.0d, Avg wait: 89.0d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
4963 How do i get the root cert expiry metrics if manual issuer? 2mo 3wk 3wk
priority/awaiting-more-evidence
priority/backlog
commented
member-last
send
4948 Apply changes to test objects by patching instead of updating
2mo 3wk
priority/important-soon
area/testing
open-milestone
pr-merged
pr-unreviewed
4918 Leader election timeout (?) causes exit 2mo 13h 3wk
priority/important-longterm
author-last
commented
recv
recv-q
4910 CNCF incubation tracking issue 2mo 2mo 2mo
priority/important-soon
assigned
assignee-updated
commented
member-last
send
4729 Cert-manager and Ingress pods in Crash loop back off (AKS)
2
4mo 4d 4mo
priority/awaiting-more-evidence
lifecycle/rotten
collaborator-last
commented
send
4704 Hardware requirements for Certificate Manager
4mo 16d 4mo
priority/backlog
lifecycle/rotten
collaborator-last
commented
send
4684 Serving certificate isn't particularly clear
5mo 1d 3wk
good first issue
help wanted
priority/backlog
commented
contributor-last
pr-unreviewed
recv
recv-q
4683 Provide Certificate is overdue for renewal status / has expired status 5mo 3wk 4mo
priority/backlog
lifecycle/stale
collaborator-last
commented
send
4538 Enable new Auth methods for Vault
2
7mo 3wk 3wk
priority/important-longterm
commented
member-last
send
4250 Support parallel DNS validation for same host
5
10mo 14d 6mo
priority/important-soon
area/acme/dns01
commented
open-milestone
recv
recv-q
3992 Add non-CRD yaml file
2
1y 3wk 10mo
priority/important-soon
area/deploy
commented
open-milestone
recv
753 Route53 - AWS IAM Account Setup is confusing
6mo 3wk 3wk
priority/backlog
commented
member-last
send
459 cert manager is no longer on the OpenShift operator list 1y 3wk 1y
priority/awaiting-more-evidence
assigned
assignee-updated
commented
contributor-last
recv-q
send
354 DigitalOcean access-token should not be base64-encoded 2y 1y 2y
priority/awaiting-more-evidence
author-last
commented
recv
2 Set up periodic job to publish an experimental release build
2y 1y
priority/backlog
assigned
contributor-last
87 previously listed items omitted

Unprioritized Recent Issues (183)

Resolution: Add a priority/ or triage/ label

Average age: 168.0d, Avg wait: 63.7d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
5145 Link to `Upgrading from v1.7 to v1.8` in release notes does not work 4h 4h 4h
kind/bug
recv
5144 `cnameStrategy: Follow` with SAN 4h 4h 4h
kind/bug
recv
5137 Slow healthz and livez endpoints cause liveness and readiness probe failures 4d 4d 4d
kind/bug
recv
5134 Letsencrypt acme cert challenges no longer working on AKS (nginx-ingress + cert-manager + clusterissuer + letsencrypt) 5d 5d 5d
kind/bug
recv
5132 HTTP01 - Did not get expected response when querying endpoint, expected X, but got X 6d 6d 6d
kind/bug
recv
178 previously listed items omitted

Uncommented Recent Issues (5)

Resolution: Add a comment

Average age: 3.4d, Avg wait: 3.3d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
5 previously listed items omitted: #5145 #5144 #5137 #5134 #5132
New, has multiple reactions, but not important-soon: No matching items
New, has multiple commenters, but not important-soon: No matching items
needs information, has update: No matching items

Recently updated issue has a question (5)

Resolution: Add an answer

Average age: 175.5d, Avg wait: 83.0d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
4750 if I create a certificate of an unverified domain will my rate limit get over? 4mo 4d 4mo
triage/support
lifecycle/rotten
collaborator-last
commented
recv
recv-q
4 previously listed items omitted: #5046 #4980 #4452 #3896
Triage Party v1.3.0