mirror of synced 2026-05-30 03:40:47 +00:00

T

Hidde Beydals e1970390a1 Add SSH signing flags to bootstrap

Introduces four new persistent flags on flux bootstrap:
--ssh-signing-key-file, --ssh-signing-password, the hidden alias
--ssh-signing-passphrase, and the reuse boolean
--ssh-signing-reuse-private-key. They sit next to the existing
--gpg-key-ring / --gpg-passphrase / --gpg-key-id surface.

bootstrapValidate pre-flights the configured signing key for the
explicit GPG and SSH paths so malformed PEM, wrong passphrases, and
unsupported SSH algorithms surface before any clone runs. The GPG
pre-flight calls the now-exported SelectOpenPGPSigningEntity from
pkg/bootstrap directly, so the pre-flight cannot drift from the
bootstrap commit path. The reuse path's pre-flight runs inside each
subcommand's RunE (where the subcommand-local SSH transport password
is in scope) and lands with the wiring commits that follow.

A small effectiveSshSigningPassword helper resolves the
--ssh-signing-passphrase alias purely (returning the resolved value
or a mutual-exclusion error) instead of mutating the
package-scoped bootstrapArgs singleton inside bootstrapValidate.

Mutual exclusion is enforced between the GPG and SSH groups, and
between --ssh-signing-key-file and --ssh-signing-reuse-private-key.
--ssh-signing-reuse-private-key requires --private-key-file;
--ssh-signing-password requires --ssh-signing-key-file. The
--ssh-signing-passphrase alias is hidden in --help.

Signed-off-by: Hidde Beydals <hidde@hhh.computer>

2026-05-29 22:18:30 +02:00

.github

Add target branch name to update branch

2026-03-12 16:34:49 +00:00

action

Added retry logic to install.sh

2025-12-15 09:14:27 -05:00

cmd/flux

Add SSH signing flags to bootstrap

2026-05-29 22:18:30 +02:00

docs

Add missing things to release notes template

2026-02-27 12:38:51 +00:00

install

Update install/README.md

2023-01-11 13:13:20 +01:00

internal

feat: adding support digest pinning for flux plugin install

2026-04-29 18:01:18 +05:30

manifests

Update toolkit components

2026-05-20 10:44:10 +00:00

pkg

Cover pkg/bootstrap SSH signing roundtrip

2026-05-29 22:18:30 +02:00

rfcs

Assign RFC-0013 to the plugin system proposal

2026-04-13 16:09:20 +03:00

tests

Update fluxcd/pkg dependencies

2026-05-21 18:40:33 +00:00

.gitignore

fix makefile envtest setup and usage

2022-01-13 16:09:11 +05:30

.goreleaser.yml

Disable AUR publishing

2025-10-06 18:43:27 +03:00

.scorecard.yml

add: OSSF scorecard configuration file - ignore false-positive

2025-04-03 17:11:26 +02:00

AGENTS.md

Add AI Agents guidance

2026-04-12 21:14:44 +03:00

CODE_OF_CONDUCT.md

Add coc, dco and maintainers docs

2020-04-30 17:25:22 +03:00

CONTRIBUTING.md

docs: Add AI Coding Assistants Guidance

2026-04-12 16:07:18 +03:00

DCO

Add coc, dco and maintainers docs

2020-04-30 17:25:22 +03:00

Dockerfile

Build with Go 1.26

2026-02-19 11:11:47 +02:00

go.mod

Migrate bootstrap signing to generic Signer

2026-05-29 22:18:17 +02:00

go.sum

Migrate bootstrap signing to generic Signer

2026-05-29 22:18:17 +02:00

LICENSE

Initial commit

2020-04-24 12:38:22 +03:00

MAINTAINERS

Move MAINTAINERS to f/community

2022-05-18 17:28:49 +02:00

Makefile

Build with Go 1.26

2026-02-19 11:11:47 +02:00

netlify.toml

explain where docs are

2021-04-27 15:16:30 +02:00

README.md

Add source-watcher to docs

2025-10-03 19:45:13 +03:00

README.md

Flux version 2

Flux is a tool for keeping Kubernetes clusters in sync with sources of configuration (like Git repositories and OCI artifacts), and automating updates to configuration when there is new code to deploy.

Flux version 2 ("v2") is built from the ground up to use Kubernetes' API extension system, and to integrate with Prometheus and other core components of the Kubernetes ecosystem. In version 2, Flux supports multi-tenancy and support for syncing an arbitrary number of Git repositories, among other long-requested features.

Flux v2 is constructed with the GitOps Toolkit, a set of composable APIs and specialized tools for building Continuous Delivery on top of Kubernetes.

Flux is a Cloud Native Computing Foundation (CNCF) graduated project, used in production by various organisations and cloud providers.

Quickstart and documentation

To get started check out this guide on how to bootstrap Flux on Kubernetes and deploy a sample application in a GitOps manner.

For more comprehensive documentation, see the following guides:

If you need help, please refer to our Support page.

GitOps Toolkit

The GitOps Toolkit is the set of APIs and controllers that make up the runtime for Flux v2. The APIs comprise Kubernetes custom resources, which can be created and updated by a cluster user, or by other automation tooling.

You can use the toolkit to extend Flux, or to build your own systems for continuous delivery -- see the developer guides.

Components

Community

Need help or want to contribute? Please see the links below. The Flux project is always looking for new contributors and there are a multitude of ways to get involved.

Getting Started?
- Look at our Get Started guide and give us feedback
Need help?
- First: Ask questions on our GH Discussions page.
- Second: Talk to us in the #flux channel on CNCF Slack.
- Please follow our Support Guidelines (in short: be nice, be respectful of volunteers' time, understand that maintainers and contributors cannot respond to all DMs, and keep discussions in the public #flux channel as much as possible).
Have feature proposals or want to contribute?
- Propose features on our GitHub Discussions page.
- Join our upcoming dev meetings (meeting access and agenda).
- Join the flux-dev mailing list.
- Check out how to contribute to the project.
- Check out the project roadmap.

Events

Check out our events calendar, both with upcoming talks, events and meetings you can attend. Or view the resources section with past events videos you can watch.

We look forward to seeing you with us!