From 744c209347cea345e94f9c711d43b25a3d6d96d0 Mon Sep 17 00:00:00 2001 From: Michele Baldessari Date: Thu, 4 Jun 2026 10:31:25 +0200 Subject: [PATCH 1/3] Add message and notice to app of apps Note that this will only work on argocd-3.5 and later. It has no effect on older argo versions --- templates/policies/application-policies.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/templates/policies/application-policies.yaml b/templates/policies/application-policies.yaml index cee7f3e..eb1ff51 100644 --- a/templates/policies/application-policies.yaml +++ b/templates/policies/application-policies.yaml @@ -58,7 +58,8 @@ spec: name: {{ $.Values.global.pattern }}-{{ .name }} namespace: {{ $.Values.global.vpArgoNamespace }} annotations: - notice.argocd.argoproj.io/severity: critical + notice.argocd.argoproj.io/severity: info + notice.argocd.argoproj.io/content: "App of Apps" finalizers: - resources-finalizer.argocd.argoproj.io/foreground spec: From 6b975c209983e7d839b66ecbd4fb328ef918019d Mon Sep 17 00:00:00 2001 From: Michele Baldessari Date: Thu, 4 Jun 2026 10:40:35 +0200 Subject: [PATCH 2/3] Add validatedpatterns.io/pattern to clusterwide argo This is the case on the clusterwide argo on the hub, so let's align them --- templates/policies/application-policies.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/templates/policies/application-policies.yaml b/templates/policies/application-policies.yaml index eb1ff51..106fa99 100644 --- a/templates/policies/application-policies.yaml +++ b/templates/policies/application-policies.yaml @@ -60,6 +60,8 @@ spec: annotations: notice.argocd.argoproj.io/severity: info notice.argocd.argoproj.io/content: "App of Apps" + labels: + validatedpatterns.io/pattern: {{ $.Values.global.pattern }} finalizers: - resources-finalizer.argocd.argoproj.io/foreground spec: From 3816b35904bd2c36c0289e91b5436e77ff16cf0b Mon Sep 17 00:00:00 2001 From: Michele Baldessari Date: Thu, 4 Jun 2026 10:57:54 +0200 Subject: [PATCH 3/3] Fix zizmor complaint --- .github/workflows/helm-lint.yml | 2 +- .github/workflows/helm-unittest.yml | 2 +- .github/workflows/superlinter.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/helm-lint.yml b/.github/workflows/helm-lint.yml index 904d2f2..8723e77 100644 --- a/.github/workflows/helm-lint.yml +++ b/.github/workflows/helm-lint.yml @@ -17,7 +17,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false diff --git a/.github/workflows/helm-unittest.yml b/.github/workflows/helm-unittest.yml index aa2d1e8..9054feb 100644 --- a/.github/workflows/helm-unittest.yml +++ b/.github/workflows/helm-unittest.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false diff --git a/.github/workflows/superlinter.yml b/.github/workflows/superlinter.yml index 73451b1..65fcde3 100644 --- a/.github/workflows/superlinter.yml +++ b/.github/workflows/superlinter.yml @@ -13,7 +13,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: # Full git history is needed to get a proper list of changed files within `super-linter` fetch-depth: 0