Issues that may be waiting for our response
NOTE: for this to work properly, GitHub token must have read access to read organization members
Questions awaiting follow-up: No matching items

Bugs awaiting follow-up (41)

Resolution: Comment or close the issue

Average age: 167.5d, Avg wait: 72.9d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
5349 Cannot install cert-manager with helm - Download failed - problem with Jetstack website 13d 11d 13d
kind/bug
recv
recv-q
5347 Got error:0A00010B:SSL routines::wrong version number 16d 16d 16d
kind/bug
author-last
recv
5316 Cert-manager shuts down without warning due to secret timeout 3wk 3wk 3wk
kind/bug
author-last
recv
recv-q
5304 `ParentRef` doesn't exists on newer versions of `gatewayAPI` 4wk 4wk 4wk
kind/bug
assigned
assignee-updated
author-last
pr-unreviewed
recv
5293 helm inflator kustomize not same result as helm install 4wk 4wk 4wk
kind/bug
author-last
recv
recv-q
5284 Challenge remain pending and does't rerun after I delegate dns zone 5wk 5wk 5wk
kind/bug
recv
5283 DNS Challenges Not Added to Specified Ingress Despite Specifying in ACME ClusterIssuer Manifest 5wk 5wk 5wk
kind/bug
recv
5268 error decoding private key 5wk 5wk 5wk
kind/bug
recv
5267 cm-acme-http-solver triggers no.scale.down.node.pod.not.backed.by.controller due to lack of PodDisruptionBudget
5wk 5wk 5wk
kind/bug
recv
5260 In Gateway API mode, with 5+ challenge-solvers in one certificate, provisioning fails 5wk 5wk 5wk
kind/bug
recv
5255 Error installing on ipv6 cluster 6wk 6wk 6wk
kind/bug
recv
5254 AKS high severity : on disabling automounting API credentials for service account installation of cert manager timesout
6wk 19d 6wk
kind/bug
author-last
recv
5253 Webhook FailedDiscoveryCheck failing or missing response from https://<ip>:10251/apis/webhook.cert-manager.io/v1alpha1: bad status 6wk 6wk 6wk
kind/bug
recv
5246 Secrets are not updated when key stores added/removed 6wk 6wk 6wk
kind/bug
recv
5238 no wait time between challenge requeues 7wk 7wk 7wk
kind/bug
recv
5210 Use instrumentedclient when performing credential verifications for Venafi client
2mo 2mo 2mo
kind/bug
pr-closed
recv
5171 TPP Allowed Domains can cause valid certificate to error 2mo 2mo 2mo
kind/bug
area/venafi
recv
5134 Letsencrypt acme cert challenges no longer working on AKS (nginx-ingress + cert-manager + clusterissuer + letsencrypt)
2
2mo 2mo 2mo
kind/bug
recv
5132 HTTP01 - Did not get expected response when querying endpoint, expected X, but got X 2mo 2mo 2mo
kind/bug
recv
5120 Too many pending authorizations - On Certificate Orders 3mo 2mo 3mo
kind/bug
author-last
commented
recv
5114 Intermediate certificate is not updated in child certificate 3mo 5d 3mo
kind/bug
lifecycle/stale
collaborator-last
recv
5098 Requested Certificates stuck in Pending 3mo 10d 3mo
kind/bug
lifecycle/stale
contributor-last
recv
recv-q
5069 Error presenting challenge: the server could not find the requested resource even though resource exists 3mo 19d 3mo
kind/bug
recv
5062 Cert-manager stops processing order request in "processing" status after several attempts 3mo 17d 3mo
kind/bug
lifecycle/stale
area/acme
collaborator-last
commented
recv
recv-q
5048 certificate not renewed for ingress with multiple hosts and http01-edit-in-place
2
4mo 16d 3mo
kind/bug
priority/backlog
author-last
commented
recv
5042 propagation check failed: DNS record for xxx not yet propagated
2
4mo 2mo 4mo
kind/bug
recv
recv-q
similar
5041 Failed to obtain venafi certificate: vcert error: your data contains problems: request doesn't match certificate: unmatched key modulus 4mo 3wk 4mo
kind/bug
contributor-last
recv
recv-q
4999 Verification on 1.7.2 fails (Kubectl apply) 4mo 2d 4mo
kind/bug
lifecycle/rotten
recv
4956 cert-manager created multiple CertificateRequest objects with the same certificate-revision
2
3
4mo 12d 4mo
kind/bug
commented
pr-merged
recv
recv-q
4941 Failed to perform self check GET request 5mo 3wk 5mo
kind/bug
recv
recv-q
similar
4877 HTTP01 solver fails self-check/propagation check on 1.7.1 when used with client-certificate auth on nginx Ingress 1.1.1
5mo 5wk 5mo
kind/bug
recv
recv-q
4846 More than one Certificate nominating same Secret induces runaway creation of many CertificateRequests and Orders
2
6mo 1mo 6mo
kind/bug
priority/important-soon
contributor-last
pr-new-commits
recv
recv-q
4722 High memory usage on cluster with many secrets
8
7mo 17d 7mo
kind/bug
priority/important-soon
contributor-last
open-milestone
recv
4685 Unexpected EOF during watch stream event decoding: unexpected EOF
7mo 3mo 7mo
lifecycle/frozen
kind/bug
contributor-last
recv
recv-q
4648 Kubernetes 1.22 Challenge stuck at pending : Waiting for HTTP-01 challenge propagation: wrong status code '404', expected '200'
2
14
8mo 17d 8mo
kind/bug
priority/backlog
lifecycle/stale
collaborator-last
recv
recv-q
similar
4423 Cert renewal loop
2
11mo 4wk 10mo
kind/bug
author-last
commented
recv
recv-q
4246 ACME DNS Challenge and Propagation Delay (NXDOMAIN)
7
1y 4wk 1y
kind/bug
recv
3719 DNS-01 broken scenario (GCP Cloud DNS) 1y 2mo 1y
kind/bug
author-last
recv
3383 Certificate API doc omits "3072" as valid RSA key size 2y 1d 2y
kind/bug
priority/important-longterm
author-last
commented
recv
3283 Passing apiVersion as apiGroup should give a validation error
2
15
2y 4wk 2y
area/api
kind/bug
priority/important-longterm
commented
recv
recv-q
2380 Helm chart version is not SemVer-compatible
4
2y 16d 1y
kind/bug
commented
recv
recv-q

Features awaiting follow-up (37)

Resolution: Comment or close the issue

Average age: 293.5d, Avg wait: 99.3d
ID Au Desc As Rea Cr Up Re Cmntrs Labels Tags
5386 Add subsection for microk8s clusters in ACME/HTTP01 article 15h 15h 15h
kind/feature
recv
5359 Packaging cert-manager with Carvel 10d 9d 10d
kind/feature
recv
5357 Support ECDSA keys for ACME accounts 11d 11d 11d
kind/feature
pr-unreviewed
recv
5355 Make the Helm chart container names unique to help troubleshoot 12d 12d 12d
kind/feature
recv
5344 metrics for failed calls to cloudflare 18d 18d 18d
kind/feature
recv
5326 Add ability to configure podTemplate securityContext fields in http solver 3wk 9d 3wk
kind/feature
recv
5274 Provide the ability to recover a Certificate request from an Error state
2
5wk 5wk 5wk
kind/feature
recv
5229 Add option to select CADN from yaml file for Venafi TPP requests 7wk 7wk 7wk
kind/feature
recv
5223 cert-manager reporting and alerting 1mo 1mo 1mo
kind/feature
recv
5215 Add relabeling in cert-manager serviceMonitor 1mo 1mo 1mo
kind/feature
author-last
commented
recv
recv-q
5149 topologySpreadConstraints support in helm chart
2
2mo 2mo 2mo
kind/feature
recv
5131 ingressShim doesn't supply x.509 subject fields required by our providers (TPP) policies 3mo 2d 3mo
kind/feature
lifecycle/stale
collaborator-last
recv
5128 helm chart: add annotations and labels globally 3mo 2d 3mo
kind/feature
lifecycle/stale
collaborator-last
recv
5088 ACME Issuer should support option to write intermediate and root CAs to Ingress TLS secret 3mo 13d 3mo
kind/feature
lifecycle/stale
collaborator-last
recv
5073 Allow injecting CABundle to arbitrary Custom Resources 3mo 2mo 2mo
kind/feature
author-last
commented
recv
5000 externalName: <service-name><namespace>.svc.cluster.local 4mo 17d 4mo
kind/feature
lifecycle/rotten
collaborator-last
recv
4959 Support AWS Auth Method for Vault 4mo 2mo 4mo
kind/feature
recv
4947 Custom labels/annotations in ACME solver services created by Issuer/ClusterIssuer
7
5mo 12d 5mo
kind/feature
lifecycle/stale
collaborator-last
recv
4931 Enable Testing on ARM64 5mo 9d 5mo
kind/feature
author-last
commented
recv
recv-q
4884 Add a similar secretTemplate to the secret that is created by ACME Issuer
5mo 2mo 5mo
kind/feature
author-last
commented
recv
4797 Automatically renew certificates if OCSP indicates that it was revoked
6
6mo 5d 6mo
kind/feature
area/acme
author-last
commented
recv
4778 Add cmctl upgrade migrate-api-version --dry-run
4
6mo 17d 4mo
good first issue
help wanted
kind/feature
priority/important-longterm
area/ctl
assigned
assignee-updated
commented
contributor-last
recv
4747 Revoke Certificates
2
5
6mo 6wk 6mo
kind/feature
recv
similar
4653 Venafi TPP Support for Oauth
3
8mo 4wk 8mo
kind/feature
priority/backlog
recv
recv-q
4561 Ability to specify secret ownerReference as part of the Certificate request
3
9mo 2mo 9mo
kind/feature
recv
4490 Subject Ingress Annotations
3
10mo 3d 10mo
kind/feature
pr-new-commits
recv
4153 Support DoT (DNS over TLS) for Recursive Nameservers
1y 4wk 3mo
kind/feature
priority/backlog
area/acme/dns01
author-last
commented
recv
3958 Sane defaults for Certificate revision history limit
9
1y 2mo 1y
kind/feature
recv
recv-q
similar
3898 Allow setting PodDisruptionBudget policies via helm chart
3
1y 2mo 1y
kind/feature
priority/important-longterm
area/deploy
author-last
pr-closed
pr-new-commits
recv
3747 Certificate issuerRef should be optional
1y 3wk 1y
kind/feature
lifecycle/rotten
collaborator-last
recv
3711 Export issued cert into AWS ACM
19
1y 1d 1y
kind/feature
priority/backlog
lifecycle/rotten
collaborator-last
recv
3655 Specify Name Constraints in CA Certificate
4
2y 5wk 2y
kind/feature
priority/backlog
author-last
recv
2605 No flag to set structured logging output, e.g. JSON?
31
2y 2mo 2y
help wanted
kind/feature
priority/backlog
author-last
commented
recv
recv-q
2538 cert-manager does not use ingress.class from Ingress annotated with cert-manager.io/cluster-issuer
56
2y 6d 11mo
area/api
kind/feature
priority/backlog
author-last
commented
recv
2332 Private ACME authority aka custom root certificate for ACME
17
2y 4wk 2y
good first issue
help wanted
kind/feature
priority/backlog
area/acme
commented
recv
recv-q
1282 Option to specify x509 extensions on certificates
12
3y 3wk 2y
area/api
help wanted
kind/feature
priority/backlog
lifecycle/stale
collaborator-last
commented
recv
recv-q
262 [DOCS]: Add info on how to customize kind CertManager when using OperatorHub method on Openshift
2y 2y 2y
kind/feature
priority/important-soon
author-last
commented
recv
recv-q
Items that deserve a follow-up comment: No matching items
Triage Party v1.3.0