chore(deps): update dependency kluctl/kluctl to v2.26.0

[uniget-bot]

This PR contains the following updates:

Package	Update	Change
kluctl/kluctl	minor	2.25.1 -> 2.26.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

kluctl/kluctl (kluctl/kluctl)

v2.26.0: kluctl-v2.26.0

Compare Source

Kluctl v2.26.0 comes with new features, improvements and fixes.

New Features and Improvements

Helm Charts via Git

You can now use Helm Charts located in Git, without any need to release them in any form. This is done by directly providing the Git url und branch/tag information. See this documentation for more details: https://kluctl.io/docs/kluctl/deployments/helm/#git

List target names

The command kluctl list-targets not supports --only-names to list only the names of existing targets.

Passing Git credentials

You can now pass Git credentials via CLI and environment variables.

Bugfixes and improvements

• Kluctl should be able to handle situations better in which you have limited permissions, e.g. only permissions to a single namespace.
• Kluctl will now prevent . and .. as default tags when such pathes are used as deployment items.
• The GitOps controller will now clean up temporary gpg-agents when SOPS+GPG is used, preventing resource exhaustion.

Contributors

Thanks you to all the contributors who participated in this release:

• @​aljoshare
• @​mfrehe
• @​dankaiser1808

Changelog

For a detailed list of changes, see the release comparison: kluctl/kluctl@v2.25.0...v2.26.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[nicholasdille-bot]

Auto-approved because label type/renovate is present.

[github-actions]

🔍 Vulnerabilities of ghcr.io/uniget-org/tools/kluctl:2.26.0

📦 Image Reference ghcr.io/uniget-org/tools/kluctl:2.26.0

digest	sha256:e8701d842a4f301c2c9ff7f88e9203889306e33bae613922f04835a5a41e8d0f
vulnerabilities
platform	linux/amd64
size	90 MB
packages	280

k8s.io/apiserver 0.31.4 (golang) pkg:golang/k8s.io/[email protected] OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities Affected range <1.15.10 Fixed version 1.15.10, 1.16.7, 1.17.3 CVSS Score 4.3 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Description The Kubernetes API server component has been found to be vulnerable to a denial of service attack via successful API requests.

[github-actions]

Attempting automerge. See https://github.com/uniget-org/tools/actions/runs/12397410695.

[github-actions]

PR is clean and can be merged. See https://github.com/uniget-org/tools/actions/runs/12397410695.