chore(deps): bump github.com/argoproj/argo-cd/v2 from 2.1.7 to 2.1.9

[dependabot]

Bumps github.com/argoproj/argo-cd/v2 from 2.1.7 to 2.1.9.

Release notes

Sourced from github.com/argoproj/argo-cd/v2's releases.

v2.1.9

Quick Start

Non-HA

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.1.9/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.1.9/manifests/ha/install.yaml

Special notes

This release contains the fix for a security issue with high severity. We recommend users on the 2.1 release branch to update to this release as soon as possible.

More information can be found in the related security advisory

Changes

Bug Fixes

• fix: Prevent value files outside repository root

v2.1.8

Quick Start

Non-HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.1.8/manifests/install.yaml

HA:

kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.1.8/manifests/ha/install.yaml

Bug Fixes

• fix: issue with keepalive (#7861)

... (truncated)

Changelog

Sourced from github.com/argoproj/argo-cd/v2's changelog.

Changelog

v2.2.0 (2021-12-14)

Upgrade instructions

Project Scoped repositories and clusters

The project scoped repositories and clusters is a feature that simplifies registering the repositories and cluster credentials. Instead of requiring operators to set up in advance all clusters and git repositories that can be used, developers can now do this on their own in a self-service manner.

Config Management Plugins V2

The Config Management Plugins V2 is set of enhancement of the existing config management plugins feature. The list includes improved installation experience, ability to package plugin into a separate image and improved plugin manifests discovery.

Resource tracking

Argo CD has traditionally tracked the resources it manages by the well-known "app.kubernetes.io/instance" property. While using this property works ok in simple scenarios, it also has several limitations. ArgoCD now allows you to use a new annotation (argocd.argoproj.io/tracking-id) for tracking your resources. Using this annotation is a much more flexible approach as there are no conflicts with other Kubernetes tools, and you can easily install multiple Argo CD instances on the same clusters.

Bug Fixes and Performance Enhancements

• Argo CD API server caches RBAC checks that significantly improves the GET /api/v1/applications API performance (#7587)
• Argo CD RBAC supports regex matches (#7165)
• Health check support for KubeVirt (#7176), Cassandra (#7017), Openshift Route (#7112), DeploymentConfig (#7114), Confluent (#6957) and SparkApplication (#7434) CRDs.
• Persistent banner (#7312) with custom positioning (#7462)
• Cluster name support in project destinations (#7198)
• around 30 more features and a total of 84 bug fixes

Commits

• 5c51d5d Bump version to 2.1.9
• ec9b6f1 Bump version to 2.1.9
• b7d9f00 Merge pull request from GHSA-63qx-x74g-jcr7
• 2fdaf7a Bump version to 2.1.8
• 5e64458 Bump version to 2.1.8
• 2475403 fix: issue with keepalive (#7861)
• a1e14d4 fix nil point (#7905)
• 425d35c fix: env vars to tune cluster cache were broken (#7779)
• 0d7c4cb fix: upgraded gitops engine to v0.4.2 (fixes #7561)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Superseded by #404.