Skip to content

deps(go): bump helm.sh/helm/v3 from 3.20.2 to 3.21.0#740

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/helm.sh/helm/v3-3.21.0
Closed

deps(go): bump helm.sh/helm/v3 from 3.20.2 to 3.21.0#740
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/helm.sh/helm/v3-3.21.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 20, 2026
edited by cursor Bot
Loading

Bumps helm.sh/helm/v3 from 3.20.2 to 3.21.0.

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.21.0 is a feature release. Users are encouraged to upgrade for the best experience.

[!WARNING] Helm v3 is approaching end-of-life. Please update to Helm v4.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

  • Kubernetes client libraries to v1.36
  • notable changes here

Installation and Upgrading

Download Helm v3.21.0. The common platform binaries are here:

This release was signed by @​gjenkins8 with key BF88 8333 D96A 1C18 E268 2AAE D79D 67C9 EC01 6739, which can be found at https://keys.openpgp.org/vks/v1/by-fingerprint/BF888333D96A1C18E2682AAED79D67C9EC016739. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.21.1 will contain only bug fixes.
  • 3.22.0 is the next feature release for Kubernetes v1.37

Changelog

  • [v3] Bump to version v3.21 e0878d41b711792be60777fd65ad23a101e6b85f (George Jenkins)
  • fix: upgrade opentelemetry packages to patch CVEs 13d5fc4ae0e7222e1af8796ff4fa467b52208471 (Terry Howe)
  • fix: Chart dot-name path bug 2552884e3bc1b763c3901c5ea7240b59ef6791f1 (George Jenkins)
  • fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow ec05dd5f0481c2de3a41a554adf3c52a6a2a9bb6 (Terry Howe)
  • add image index test b0dfec5af4d7f642d8dea3b9058856541fe5017c (Pedro Tôrres)

... (truncated)

Commits
  • e0878d4 [v3] Bump to version v3.21
  • 4d4902c Merge pull request #32041 from TerryHowe/fix/upgrade-otel-cves
  • 13d5fc4 fix: upgrade opentelemetry packages to patch CVEs
  • a60cb79 Merge commit from fork
  • d3bc853 Merge pull request #32026 from gjenkins8/gjenkins/code_action_pin_v3
  • 2552884 fix: Chart dot-name path bug
  • ec05dd5 fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow
  • 6d809b2 Merge pull request #31883 from t0rr3sp3dr0/pedrotorres/backport-31776-to-v3
  • b0dfec5 add image index test
  • e629995 fix pulling charts from OCI indices
  • Additional commits viewable in compare view

Note

Low Risk
Low risk: this PR only updates Go module dependencies (notably helm.sh/helm/v3) with no application logic changes; risk is limited to potential behavior changes in updated upstream libraries at runtime.

Overview
Upgrades the Go dependency on Helm from helm.sh/helm/v3 v3.20.2 to v3.21.0.

Refreshes go.mod/go.sum accordingly, including related transitive version bumps (e.g., golang.org/x/*, github.com/lib/pq, grpc-gateway, and several OpenTelemetry modules).

Reviewed by Cursor Bugbot for commit b0506e1. Bugbot is set up for automated code reviews on this repo. Configure here.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels May 20, 2026
@dependabot dependabot Bot requested review from hisco and nadaverell as code owners May 20, 2026 09:25
@dependabot
deps(go): bump helm.sh/helm/v3 from 3.20.2 to 3.21.0
b0506e1 
Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.20.2 to 3.21.0.
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.20.2...v3.21.0)

---
updated-dependencies:
- dependency-name: helm.sh/helm/v3
  dependency-version: 3.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/helm.sh/helm/v3-3.21.0 branch from 5cce667 to b0506e1 Compare May 20, 2026 11:02
@nadaverell nadaverell closed this May 20, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 20, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/go_modules/helm.sh/helm/v3-3.21.0 branch May 20, 2026 14:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nadaverell nadaverell Awaiting requested review from nadaverell nadaverell is a code owner

@hisco hisco Awaiting requested review from hisco hisco is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nadaverell