| ID | Au | Desc | As | Rea | Cr | Up | Re | Cmntrs | Labels | Tags |
| 5843 |  |
Design: Go Module Proliferation | 
| 2wk | 9h | 9h |   |
size/L
release-note-none
approved
lgtm
do-not-merge/hold
kind/design
dco-signoff: yes
|
assigned assignee-updated collaborator-last commented reviewed-with-comment send
|
|
| 5337 |  |
WIP: Support loading controller configuration from a versioned file |
2
|
8mo | 5h | 2d | |
release-note-none
area/api
do-not-merge/work-in-progress
needs-ok-to-test
size/XXL
dco-signoff: yes
needs-kind
|
collaborator-last commented new-commits recv
|
|
| 5876 |  |
helm: add support for TLS configuration and application protocol |
|
|
2d | 11h | 18h | |
release-note
size/S
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
assigned assignee-updated commented recv unreviewed
|
| 5880 | |
Separate binaries/tests into separate modules with minimal dependencies | 14h | 9h |
release-note
approved
kind/feature
size/XXL
area/acme
dco-signoff: yes
area/testing
|
collaborator-last unreviewed
|
||||
| 5824 | |
Controller partial metadata | 3wk | 16h | 17h | |
release-note
approved
area/api
kind/cleanup
size/XXL
area/acme
area/ca
area/vault
dco-signoff: yes
area/testing
area/acme/dns01
area/acme/http01
|
collaborator-last commented open-milestone unreviewed
|
||
| 4330 |  |
Add client certificate auth method for Vault issuer |
4
|
2y | 13h | 19h |    |
release-note
size/XL
approved
area/api
kind/feature
area/acme
area/vault
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
commented recv recv-q reviewed-with-comment similar
|
|
| 5158 |  |
Added certificate owner ref field |
|
5
|
10mo | 16h | 1d |  |
release-note
size/XL
approved
area/api
kind/feature
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
assigned assignee-updated commented contributor-last recv reviewed-with-comment similar
|
| 5879 | |
Deprecate klog flags and add a deprecation message | 1d | 1d |
release-note
approved
kind/cleanup
size/M
dco-signoff: yes
area/testing
|
collaborator-last unreviewed
|
||||
| 5530 |  |
Added support for using env config for configuring Vault issuer. |
| 5mo | 1d | 1d | |
size/L
release-note
needs-rebase
area/api
do-not-merge/work-in-progress
needs-ok-to-test
area/vault
dco-signoff: no
area/deploy
needs-kind
|
assigned assignee-updated commented draft member-last send unreviewed
|
|
| 5828 |  |
Add support for json logging format |
|
3wk | 1d | 1d | |
release-note-none
kind/feature
size/M
dco-signoff: yes
ok-to-test
|
commented member-last reviewed-with-comment send
|
|
| 5324 | |
Create 20220720-per-certificate-owner-ref.md |
5
|
8mo | 1d | 1d |   |
size/L
release-note-none
approved
kind/design
dco-signoff: yes
|
commented member-last new-commits similar
|
|
| 3931 |  |
Added PodDisruptionBudgets to helm chart |
|
7
16
|
2y | 1d | 1d |           |
size/L
release-note
approved
kind/feature
dco-signoff: yes
ok-to-test
area/deploy
|
approved assigned assignee-updated commented member-last send
|
| 5761 |  |
feat: Add option to allow filtering DNS Names by ACME Challenge solvers | 7wk | 1d | 5wk | |
size/L
release-note-none
needs-rebase
area/api
needs-ok-to-test
area/acme
dco-signoff: yes
needs-kind
|
collaborator-last commented send unreviewed
|
||
| 5814 |  |
WIP: Review make commands on Linux Arm64 |
3
|
4wk | 2d | 4wk | |
release-note-none
needs-rebase
size/S
do-not-merge/work-in-progress
needs-ok-to-test
dco-signoff: no
needs-kind
|
collaborator-last commented new-commits recv
|
|
| 5848 | |
WIP: Design: core-issuers |
| 19d | 2d | 2d |  |
release-note-none
approved
lgtm
do-not-merge/work-in-progress
do-not-merge/hold
kind/design
size/M
dco-signoff: yes
|
assigned commented member-last reviewed-with-comment
|
|
| 5874 | |
Cleanup certificate request approval webhook | 2d | 2d | 2d | |
size/L
release-note-none
approved
kind/cleanup
dco-signoff: yes
|
commented member-last unreviewed
|
||
| 4570 |  |
`RevisionHistoryLimit` has a default value of 25 | 
|
|
1y | 3d | 8mo | |
release-note
area/api
size/M
lifecycle/stale
dco-signoff: yes
ok-to-test
area/deploy
needs-kind
|
assigned collaborator-last commented new-commits send
|
| 5094 | |
WIP server-side apply in tests v2 | 10mo | 3d |
size/L
release-note-none
needs-rebase
approved
do-not-merge/work-in-progress
kind/cleanup
lifecycle/stale
dco-signoff: yes
area/testing
|
collaborator-last unreviewed
|
||||
| 5126 | |
WIP: Only remove the cleanup finalizer if the cleanup succeeds | 10mo | 3d | 10mo | |
size/L
release-note-none
needs-rebase
approved
do-not-merge/work-in-progress
kind/cleanup
lifecycle/stale
area/acme
dco-signoff: yes
area/testing
|
collaborator-last commented unreviewed
|
||
| 5447 |  |
Allow extra DNS-01 propagation time to be configured |
|
6mo | 3d | 6mo |  |
release-note
size/S
lifecycle/stale
area/acme
dco-signoff: yes
ok-to-test
area/acme/dns01
needs-kind
|
collaborator-last commented recv unreviewed
|
|
| 5378 | |
Unify semver version generation | 7mo | 3d | 6mo | |
size/L
release-note-none
needs-rebase
approved
do-not-merge/work-in-progress
kind/cleanup
lifecycle/stale
dco-signoff: yes
|
changes-requested collaborator-last commented draft
|
||
| 5436 | |
Move CSR resource in design to GA |
|
6mo | 3d | 6mo |  |
release-note
approved
size/S
kind/design
lifecycle/stale
dco-signoff: yes
|
collaborator-last commented reviewed-with-comment send
|
|
| 5860 |  |
Fix helm loglevel parsing | 11d | 6d | 6d | |
size/XS
release-note-none
needs-ok-to-test
dco-signoff: yes
area/deploy
needs-kind
|
collaborator-last commented reviewed-with-comment send
|
||
| 5383 | |
Generate applyconfigurations and Apply functions | 7mo | 12d | 5wk | |
release-note
approved
area/api
do-not-merge/work-in-progress
priority/important-longterm
size/XXL
dco-signoff: yes
needs-kind
|
commented draft member-last unreviewed
|
||
| 5766 | |
Cainjector limit controllers | 7wk | 13d | 13d | |
size/L
release-note
approved
do-not-merge/hold
kind/feature
dco-signoff: yes
|
collaborator-last commented new-commits open-milestone
|
||
| 5003 |  |
Implement the DNS-over-HTTPS check |
2
|
11mo | 17d | 7mo |    |
release-note-none
needs-rebase
do-not-merge/work-in-progress
size/XXL
area/acme
dco-signoff: yes
area/testing
ok-to-test
area/acme/dns01
needs-kind
|
commented draft recv recv-q unreviewed
|
|
| 5093 |  |
Add relabeling and metricRelabelings settings for ServiceMonitor. |
| 10mo | 2wk | 10mo |   |
release-note
size/S
needs-ok-to-test
dco-signoff: yes
area/deploy
needs-kind
|
assigned recv recv-q similar unreviewed
|
|
| 5777 |  |
helm: Add option to keep CRDs when helm chart is uninstalled |
3
|
6wk | 3wk | 4wk |  |
release-note
needs-ok-to-test
size/M
dco-signoff: yes
area/deploy
needs-kind
|
commented recv recv-q unreviewed
|
|
| 5823 |  |
[master] added if enabled for certManager and webhooks resource |
| 4wk | 3wk | 3wk | |
do-not-merge/release-note-label-needed
size/S
needs-ok-to-test
dco-signoff: no
area/deploy
needs-kind
|
assigned commented recv unreviewed
|
|
| 5830 |  |
WIP: ocsp stapling for certificates | 3wk | 3wk | 3wk | |
size/L
release-note-none
do-not-merge/work-in-progress
needs-ok-to-test
dco-signoff: yes
needs-kind
|
collaborator-last commented draft reviewed-with-comment send
|
||
| 5829 | |
Graduate SSA | 3wk | 3wk | 3wk | |
size/XS
release-note
approved
kind/feature
dco-signoff: yes
|
collaborator-last commented send unreviewed
|
||
| 5542 |  |
[helm] Introduce cert-manager-resources helm chart | 4mo | 3wk | 4mo |
size/L
do-not-merge/release-note-label-needed
needs-ok-to-test
lifecycle/rotten
dco-signoff: yes
area/deploy
needs-kind
|
collaborator-last recv unreviewed
|
|||
| 5446 | |
Allow concurrent same-FQDN DNS-01 challenges when using route53 | 6mo | 4wk | 5mo | |
release-note
needs-ok-to-test
size/M
area/acme
dco-signoff: yes
area/testing
needs-kind
|
commented recv reviewed-with-comment
|
||
| 5778 | |
[helm] Add support for relabelings and metricRelabelings an serviceMonitor | 6wk | 5wk | 5wk | |
size/L
release-note
needs-ok-to-test
dco-signoff: yes
area/deploy
needs-kind
|
commented contributor-last recv similar unreviewed
|
||
| 5670 |  |
feat(chart): support probes for cert-manager and cainjector |
|
|
2mo | 5wk | 5wk | |
release-note
kind/feature
size/M
triage/needs-information
dco-signoff: yes
ok-to-test
area/deploy
|
assigned assignee-updated changes-requested collaborator-last commented send
|
| 5373 |  |
Allow config of http01 solver pod security context |
2
|
7mo | 5wk | 2mo | |
size/L
release-note
needs-rebase
area/api
kind/feature
area/acme
dco-signoff: yes
ok-to-test
area/acme/http01
area/deploy
|
collaborator-last commented open-milestone send unreviewed
|
|
| 5356 |  |
Allow ECDSA for ACME client keys |
|
7mo | 5wk | 5wk |  |
size/L
release-note
needs-rebase
area/api
kind/feature
area/acme
dco-signoff: yes
area/testing
ok-to-test
area/deploy
|
commented member-last reviewed-with-comment send
|
|
| 5669 |  |
Added the ability to disable controllers via helm |
|
3
|
2mo | 5wk | 7wk | |
release-note
needs-rebase
kind/feature
size/XXL
dco-signoff: yes
ok-to-test
area/deploy
|
assigned assignee-updated changes-requested collaborator-last commented send
|
| 5747 | |
BUGFIX: if a LiteralSubject is set, the RequestMatchesSpec function does skip too many checks | 1mo | 7wk |
release-note-none
approved
kind/bug
kind/cleanup
kind/design
kind/documentation
kind/feature
size/M
dco-signoff: yes
|
collaborator-last unreviewed
|
||||
| 5743 | |
WIP: Certificate Generation improvements | 2mo | 7wk |
size/L
release-note-none
approved
area/api
do-not-merge/work-in-progress
kind/cleanup
dco-signoff: yes
area/testing
|
collaborator-last draft unreviewed
|
||||
| 5701 |  |
feat: added custom endpoint override flag for http solver | 2mo | 2mo | 2mo |  |
release-note
kind/feature
needs-ok-to-test
size/M
area/acme
dco-signoff: yes
area/acme/http01
|
recv recv-q unreviewed
|
||
| 5452 |  |
Update Azure SDK and remove deprecated autorest dependency |
|
6mo | 2mo | 3mo |  |
size/L
release-note-none
needs-rebase
do-not-merge/work-in-progress
area/acme
dco-signoff: yes
ok-to-test
area/acme/dns01
needs-kind
|
commented contributor-last draft new-commits send
|
|
| 5174 |  |
Add support for restricting the secrets watch list in cainjector |
7
|
9mo | 2mo | 3mo |  |
release-note
needs-rebase
kind/feature
size/M
dco-signoff: yes
ok-to-test
|
collaborator-last commented send unreviewed
|
|
| 4810 | |
Server Side Apply: Adds support for CA Injector controller to use SSA with Feature Gate |
4
|
1y | 2mo | 4mo | |
size/L
release-note
needs-rebase
approved
kind/feature
priority/important-soon
dco-signoff: yes
area/deploy
|
collaborator-last commented reviewed-with-comment send
|
|
| 5567 | |
WIP: Certificates: preventing CertificateRequest creation runaway | 4mo | 2mo | 2mo | |
release-note
approved
area/api
do-not-merge/work-in-progress
kind/feature
size/XXL
dco-signoff: yes
area/testing
area/deploy
|
commented member-last open-milestone reviewed-with-comment send
|
||
| 5686 |  |
Add missing healthz port to PSP in Helm Chart when hostNetwork is used | 2mo | 2mo | 2mo |
size/XS
release-note
needs-ok-to-test
dco-signoff: yes
area/deploy
needs-kind
|
collaborator-last recv unreviewed
|
|||
| 1203 | |
Clarify ingress-shim annotations | 8h | 8h | 8h |  |
approved
dco-signoff: yes
size/S
|
recv unreviewed
|
||
| 1202 | |
Add section about client cert authentication for vault | 13h | 13h | 13h | |
dco-signoff: yes
do-not-merge/work-in-progress
size/M
|
draft recv similar unreviewed
|
||
| 1197 | |
doc about new option default-cleanup-policy | 10d | 16h | 16h | |
approved
dco-signoff: yes
size/M
|
commented new-commits recv
|
||
| 1199 | |
Webhook troubleshooting: advise people to set `timeoutSeconds` to 30 seconds | 17h | 16h | |
approved
dco-signoff: yes
size/M
|
unreviewed
|
|||
| 1201 | |
Faster ./scripts/gendocs/generate script | 16h | 16h | |
approved
dco-signoff: yes
size/L
|
unreviewed
|
|||
| 1198 |  |
Bump webpack from 5.70.0 to 5.76.1 | 8d | 8d | 8d | |
dco-signoff: yes
size/M
dependencies
|
recv unreviewed
|
||
| 1196 | |
Document the `ingressClassName` field |
|
15d | 12d | 12d | |
approved
dco-signoff: yes
size/L
|
changes-requested commented member-last send
|
|
| 1192 | |
release-process: explain how and when to merge master into release-next | 3wk | 12d | 12d | |
approved
dco-signoff: yes
size/S
|
commented member-last new-commits
|
||
| 1195 | |
Fix description of what happens to denied CertificateRequest | 19d | 19d | 19d | |
approved
dco-signoff: yes
size/S
|
recv unreviewed
|
||
| 1048 |  |
[WIP] Document structure updates |
| 7mo | 5wk | 7mo | |
dco-signoff: yes
size/XXL
needs-rebase
do-not-merge/work-in-progress
ok-to-test
|
assigned assignee-updated commented contributor-last send unreviewed
|
|
| 1183 |  |
Docs: Clarify zeroSSL setup instructions |
| 5wk | 5wk | 5wk | |
size/XS
dco-signoff: yes
|
assigned recv recv-q unreviewed
|
|
| 548 | |
Move the "Approval API" documentation to /concepts/certificaterequest |
|
|
2y | 3wk | 2y | |
approved
dco-signoff: yes
kind/cleanup
size/XL
needs-rebase
|
assigned assignee-updated changes-requested commented contributor-last send
|
| 982 | |
WIP: [GSOD] Define our audiences |
| 10mo | 1mo | 1mo | |
approved
dco-signoff: yes
lgtm
do-not-merge/work-in-progress
size/M
|
assigned assignee-updated commented member-last send unreviewed
|
|
| 1075 | |
Move Issuer / ClusterIssuer and Certificate resource content to a sub-folder of configuration/ | 6mo | 5mo | |
approved
dco-signoff: yes
size/L
needs-rebase
|
contributor-last reviewed-with-comment
|
|||
| 1071 | |
Improved the summary on the docs homepage |
2
|
6mo | 6mo | 6mo |  |
approved
dco-signoff: yes
size/S
|
commented contributor-last new-commits recv-q
|
|
| 1005 |  |
Route53 accessKeyIDSecretRef docs | 9mo | 9mo | 9mo | |
size/XS
dco-signoff: yes
needs-ok-to-test
|
recv unreviewed
|
||
| 948 |  |
add note to ingress class definition |
| 10mo | 10mo | 10mo | |
dco-signoff: no
size/XS
needs-ok-to-test
|
assigned recv unreviewed
|
|
| 859 | |
Move the meetings and slack information to a separate page |
|
1y | 10mo | 10mo | |
approved
dco-signoff: yes
needs-rebase
size/M
|
changes-requested commented member-last send
|
|
| 701 |  |
Issuer with IRSA needs ambient credentials flag |
|
2y | 11mo | 1y |  |
dco-signoff: no
size/S
ok-to-test
|
commented contributor-last new-commits send
|
|
| 446 |  |
Add multiple ingresses usage section | 2y | 11mo | 2y | |
size/XS
dco-signoff: yes
needs-rebase
needs-ok-to-test
|
changes-requested commented contributor-last send
|
||
| 790 |  |
Update route53.md | 1y | 11mo | 1y | |
dco-signoff: no
size/XS
needs-rebase
needs-ok-to-test
|
changes-requested commented contributor-last send
|
||
| 751 |  |
Added kubectl config for recursive nameservers | 1y | 11mo | 1y | |
dco-signoff: no
size/XS
needs-rebase
ok-to-test
|
approved commented contributor-last send
|
||
| 451 |  |
update to ingress. | 2y | 1y | 2y | |
dco-signoff: no
size/XS
needs-rebase
needs-ok-to-test
|
contributor-last recv unreviewed
|
||
| 528 |  |
Update "Setting Nameservers for DNS01 Self Check" example | 2y | 1y | 2y |
size/XS
dco-signoff: yes
needs-rebase
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 121 | |
Bump golang.org/x/net from 0.0.0-20220225172249-27dd8689420f to 0.7.0 | 16d | 16d | 16d |
dco-signoff: yes
needs-ok-to-test
size/S
dependencies
|
contributor-last recv similar unreviewed
|
|||
| 120 | |
Bump golang.org/x/text from 0.3.7 to 0.3.8 | 3wk | 3wk | 3wk |
dco-signoff: yes
needs-ok-to-test
size/S
dependencies
|
contributor-last recv similar unreviewed
|
|||
| 118 | |
Bump helm.sh/helm/v3 from 3.9.4 to 3.11.1 | 6wk | 6wk | 6wk |
dco-signoff: yes
needs-ok-to-test
size/L
dependencies
|
contributor-last recv unreviewed
|
|||
| 17 | |
Add image validation for Docker architecture |
| 2y | 1y | 2y | |
dco-signoff: yes
lgtm
size/L
needs-rebase
|
assigned assignee-updated commented contributor-last new-commits send
|
|
| 43 | |
No more requirement "be in the release folder" to run cmrel, remove the flag --cloudbuild | 2y | 2y |
dco-signoff: yes
approved
size/M
needs-rebase
|
contributor-last unreviewed
|
||||
| 36 | |
Add the "cmrel update-release-branch" command | 2y | 2y | 2y | |
dco-signoff: yes
approved
size/M
needs-rebase
do-not-merge/work-in-progress
|
commented contributor-last draft unreviewed
|
||
| 202 |  |
Support adding pod annotations | 8d | 8d | 8d |
dco-signoff: yes
size/XS
needs-ok-to-test
|
contributor-last recv similar unreviewed
|
|||
| 187 |  |
Add the ability to ignore cluster scoped resources. | 3mo | 3wk | 4wk | |
dco-signoff: yes
size/XS
ok-to-test
|
commented contributor-last recv recv-q reviewed-with-comment
|
||
| 194 | |
Add IstioOperator CR for v1.17.0 | 4wk | 4wk | |
dco-signoff: yes
size/M
|
contributor-last recv-q unreviewed
|
|||
| 179 |  |
Allow ECDSA serving certificate |
| 6mo | 4wk | 5wk | |
dco-signoff: yes
lgtm
approved
size/S
ok-to-test
|
assigned assignee-updated commented contributor-last new-commits send
|
|
| 208 |  |
Templating in policy |
|
18d | 2d | 2d | |
dco-signoff: yes
size/L
ok-to-test
|
commented recv unreviewed
|
|
| 117 |  |
fixes #13 - Allow node selection based on nodeSelector, tolerations, affinities and topologySpreadConstraints | 1d | 1d | 1d |
dco-signoff: yes
size/M
needs-ok-to-test
|
contributor-last recv unreviewed
|
|||
| 116 |  |
feat: add support for additional pod annotations/labels | 4wk | 4wk | 4wk |
dco-signoff: yes
needs-ok-to-test
size/S
|
contributor-last recv similar unreviewed
|
|||
| 89 | |
WIP: use SSA | 2mo | 6wk | 7wk | |
dco-signoff: yes
do-not-merge/work-in-progress
needs-rebase
size/XXL
|
commented contributor-last new-commits
|
||
| 108 |  |
Supporting a secret target |
|
3
|
7wk | 4wk | 4wk | |
dco-signoff: yes
size/XL
ok-to-test
|
assigned assignee-updated commented member-last reviewed-with-comment send
|
| 98 | |
Cert formats proposal | 2mo | 2mo |
dco-signoff: yes
approved
size/L
|
contributor-last unreviewed
|
||||
| 43 | |
Add a design for public trust bundles |
4
|
7mo | 6wk | 2mo |  |
dco-signoff: yes
approved
size/L
|
commented contributor-last new-commits
|
|
| 129 |  |
Add attribute support for certificate subject | 3mo | 3wk | 2mo | |
dco-signoff: yes
size/L
ok-to-test
|
commented recv reviewed-with-comment
|
||
| 139 | |
Bump golang.org/x/text from 0.3.7 to 0.3.8 in /hack/tools | 3wk | 3wk | 3wk |
dco-signoff: yes
size/S
needs-ok-to-test
dependencies
|
contributor-last recv similar unreviewed
|
|||
| 138 | |
Bump golang.org/x/net from 0.2.0 to 0.7.0 | 4wk | 4wk | 4wk |
dco-signoff: yes
size/S
needs-ok-to-test
dependencies
|
contributor-last recv similar unreviewed
|
|||
| 135 | |
Added options to all containers |
| 2mo | 4wk | 5wk | |
dco-signoff: yes
size/L
needs-rebase
ok-to-test
|
assigned commented contributor-last send unreviewed
|
|
| 24 |  |
Add missing --csi-driver-name option to daemonset | 1mo | 3wk | 5wk | |
dco-signoff: yes
size/XS
ok-to-test
|
commented contributor-last new-commits send
|
||
| 24 | |
Document release process and update the versions of the GitHub Actions workflows | 1d | 1d |
dco-signoff: yes
size/M
approved
|
contributor-last unreviewed
|
||||
| 48 |  |
Retry pending request when issue is called |
| 3wk | 9d | 3wk | |
dco-signoff: yes
size/L
needs-ok-to-test
|
assigned assignee-updated contributor-last new-commits recv recv-q
|
|
| 46 | |
Add timeout to renewal issuance logic | 3wk | 9d | 3wk | |
dco-signoff: yes
size/M
needs-ok-to-test
|
contributor-last recv recv-q unreviewed
|
||
| 28 |  |
Include Pod UID on CertificateRequest resources |
|
|
8mo | 8mo | 8mo | |
dco-signoff: yes
do-not-merge/hold
approved
size/XS
ok-to-test
|
assigned contributor-last recv recv-q unreviewed
|
| 34 | |
WIP: E2E testing boilerplate |
|
6mo | 4wk | 6mo | |
size/XXL
dco-signoff: yes
do-not-merge/hold
approved
do-not-merge/work-in-progress
needs-rebase
|
commented contributor-last new-commits recv recv-q
|
|
| 29 | |
WIP: Provide Linux Arm64 Image | 3wk | 3wk | 3wk |
do-not-merge/work-in-progress
dco-signoff: yes
size/L
|
contributor-last recv unreviewed
|
|||
| 28 | |
Cleanup make files | 7mo | 7mo |
dco-signoff: yes
size/XL
|
contributor-last unreviewed
|
||||
| 10 | |
Generate Kubernetes Events | 2y | 1y |
dco-signoff: yes
size/L
needs-rebase
|
contributor-last unreviewed
|
