cert-manager
v1.20.2SecurityPatch release fixing a Helm chart YAML generation bug when webhook.config and webhook.volumes are both set, plus Go 1.26.2 upgrade to address dependency vulnerabilities.
breakingUpgrade immediately if you use both webhook.config and webhook.volumes
If your Helm values set both webhook.config and webhook.volumes, the chart has been generating invalid YAML — meaning your webhook may have silently deployed with incorrect configuration. Upgrade to v1.20.2 and redeploy, then verify the webhook pod is running with the expected volume mounts and config.
securityDependency vulnerabilities patched — upgrade to get the fixes
The Go runtime and dependencies were bumped specifically to address reported CVEs. The release notes don't call out specific CVE IDs, but don't let that slow you down — cert-manager sits in a privileged position in your cluster handling certificate issuance, so keeping it current on security patches is non-negotiable. Schedule an upgrade in your next maintenance window.
主な変更 (3)
- Fixed invalid YAML output in Helm chart when both webhook.config and webhook.volumes are defined simultaneously
- Go runtime bumped to 1.26.2
- Go dependencies updated to resolve reported vulnerabilities