From a203baca75cb7ec99b9a4bd0d210044802aa3790 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Wed, 29 May 2024 12:48:20 -0600
Subject: [PATCH] chore(deps): update gitlab runner support dependencies (#78)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

[![Mend
Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/checkout](https://togithub.com/actions/checkout) | action |
patch | `v4.1.4` -> `v4.1.6` |
|
[actions/dependency-review-action](https://togithub.com/actions/dependency-review-action)
| action | patch | `v4.3.1` -> `v4.3.2` |
|
[defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common)
| | patch | `v0.4.2` -> `v0.4.4` |
|
[defenseunicorns/uds-common](https://togithub.com/defenseunicorns/uds-common)
| action | patch | `v0.4.0` -> `v0.4.4` |
| [defenseunicorns/zarf](https://togithub.com/defenseunicorns/zarf) | |
minor | `v0.31.0` -> `v0.34.0` |
| [github/codeql-action](https://togithub.com/github/codeql-action) |
action | patch | `v3.25.3` -> `v3.25.6` |
|
[google-github-actions/release-please-action](https://togithub.com/google-github-actions/release-please-action)
| action | patch | `v4.1.0` -> `v4.1.1` |
| [ossf/scorecard-action](https://togithub.com/ossf/scorecard-action) |
action | patch | `v2.3.1` -> `v2.3.3` |

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

###
[`v4.1.6`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v416)

[Compare
Source](https://togithub.com/actions/checkout/compare/v4.1.5...v4.1.6)

- Check platform to set archive extension appropriately by
[@&#8203;cory-miller](https://togithub.com/cory-miller) in
[https://github.com/actions/checkout/pull/1732](https://togithub.com/actions/checkout/pull/1732)

###
[`v4.1.5`](https://togithub.com/actions/checkout/releases/tag/v4.1.5)

[Compare
Source](https://togithub.com/actions/checkout/compare/v4.1.4...v4.1.5)

#### What's Changed

- Update NPM dependencies by
[@&#8203;cory-miller](https://togithub.com/cory-miller) in
[https://github.com/actions/checkout/pull/1703](https://togithub.com/actions/checkout/pull/1703)
- Bump github/codeql-action from 2 to 3 by
[@&#8203;dependabot](https://togithub.com/dependabot) in
[https://github.com/actions/checkout/pull/1694](https://togithub.com/actions/checkout/pull/1694)
- Bump actions/setup-node from 1 to 4 by
[@&#8203;dependabot](https://togithub.com/dependabot) in
[https://github.com/actions/checkout/pull/1696](https://togithub.com/actions/checkout/pull/1696)
- Bump actions/upload-artifact from 2 to 4 by
[@&#8203;dependabot](https://togithub.com/dependabot) in
[https://github.com/actions/checkout/pull/1695](https://togithub.com/actions/checkout/pull/1695)
- README: Suggest `user.email` to be
`41898282+github-actions[bot]@&#8203;users.noreply.github.com` by
[@&#8203;cory-miller](https://togithub.com/cory-miller) in
[https://github.com/actions/checkout/pull/1707](https://togithub.com/actions/checkout/pull/1707)

**Full Changelog**:
https://github.com/actions/checkout/compare/v4.1.4...v4.1.5

</details>

<details>
<summary>actions/dependency-review-action
(actions/dependency-review-action)</summary>

###
[`v4.3.2`](https://togithub.com/actions/dependency-review-action/releases/tag/v4.3.2)

[Compare
Source](https://togithub.com/actions/dependency-review-action/compare/v4.3.1...v4.3.2)

#### What's Changed

- Fix package-url parsing for allow-dependencies-licenses by
[@&#8203;juxtin](https://togithub.com/juxtin) in
[https://github.com/actions/dependency-review-action/pull/761](https://togithub.com/actions/dependency-review-action/pull/761)

**Full Changelog**:
https://github.com/actions/dependency-review-action/compare/v4.3.1...v4.3.2

</details>

<details>
<summary>defenseunicorns/uds-common
(defenseunicorns/uds-common)</summary>

###
[`v0.4.4`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.4.4)

[Compare
Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.4.3...v0.4.4)

##### Miscellaneous

- pull debug / log actions from uds-core
([#&#8203;135](https://togithub.com/defenseunicorns/uds-common/issues/135))
([b3c9928](https://togithub.com/defenseunicorns/uds-common/commit/b3c99286e4200c98a61d86484030f2be5ebb5c70))

###
[`v0.4.3`](https://togithub.com/defenseunicorns/uds-common/releases/tag/v0.4.3)

[Compare
Source](https://togithub.com/defenseunicorns/uds-common/compare/v0.4.2...v0.4.3)

##### Bug Fixes

- update renovate config to use docker versioning for zarf images
([#&#8203;128](https://togithub.com/defenseunicorns/uds-common/issues/128))
([c18e125](https://togithub.com/defenseunicorns/uds-common/commit/c18e12507384328bb53b81c096bc9827f96ba114))

##### Miscellaneous

- add an airgap note to UDS Package Practices (clarity is kindness)
([#&#8203;126](https://togithub.com/defenseunicorns/uds-common/issues/126))
([b70e1fe](https://togithub.com/defenseunicorns/uds-common/commit/b70e1fe165a521a33789298a7e69aa6a59d54968))
- adjust UDS package practice formatting
([#&#8203;123](https://togithub.com/defenseunicorns/uds-common/issues/123))
([f351d04](https://togithub.com/defenseunicorns/uds-common/commit/f351d04732a6e6e6fc2c62eff13f625a613effcc))
- **deps:** update uds common package dependencies to v6.6.3
([#&#8203;132](https://togithub.com/defenseunicorns/uds-common/issues/132))
([0ebdd1f](https://togithub.com/defenseunicorns/uds-common/commit/0ebdd1f5f2aa32720c88347027215305573bc716))
- **deps:** update uds common support dependencies
([#&#8203;125](https://togithub.com/defenseunicorns/uds-common/issues/125))
([e014724](https://togithub.com/defenseunicorns/uds-common/commit/e01472454d2b3ef9665546fbb24c9980f090d238))
- **deps:** update uds common support dependencies to v0.22.0
([#&#8203;133](https://togithub.com/defenseunicorns/uds-common/issues/133))
([2cf903d](https://togithub.com/defenseunicorns/uds-common/commit/2cf903d41d0dbfda1baaa9629d1fa3c5d1a88110))
- initial package practices
([#&#8203;117](https://togithub.com/defenseunicorns/uds-common/issues/117))
([d292b21](https://togithub.com/defenseunicorns/uds-common/commit/d292b216da73493743cd0a67b9763549c87c1819))
- update package practices with a bit more feedback
([#&#8203;129](https://togithub.com/defenseunicorns/uds-common/issues/129))
([af34fc9](https://togithub.com/defenseunicorns/uds-common/commit/af34fc90104c57d11a08678186b8b2aeaaac135d))

</details>

<details>
<summary>defenseunicorns/zarf (defenseunicorns/zarf)</summary>

###
[`v0.34.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.34.0)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.33.2...v0.34.0)

##### What's Changed

- refactor: move validate to expose it as receivers by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2419](https://togithub.com/defenseunicorns/zarf/pull/2419)
- docs: add additional detail to security policy by
[@&#8203;salaxander](https://togithub.com/salaxander) in
[https://github.com/defenseunicorns/zarf/pull/2488](https://togithub.com/defenseunicorns/zarf/pull/2488)
- chore: cleanup stale grype ignores and patch golang.org/x/net CVE by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2492](https://togithub.com/defenseunicorns/zarf/pull/2492)
- docs: injector and init package reference material by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2468](https://togithub.com/defenseunicorns/zarf/pull/2468)
- chore: patch CVE-2024-3817 by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2498](https://togithub.com/defenseunicorns/zarf/pull/2498)
- refactor: cleaner image pulls by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2460](https://togithub.com/defenseunicorns/zarf/pull/2460)
- chore: adding [@&#8203;dgershman](https://togithub.com/dgershman) by
[@&#8203;dgershman](https://togithub.com/dgershman) in
[https://github.com/defenseunicorns/zarf/pull/2506](https://togithub.com/defenseunicorns/zarf/pull/2506)
- refactor: context usage in k8s code by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2405](https://togithub.com/defenseunicorns/zarf/pull/2405)
- ci: run revive using golang-lint-ci by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2499](https://togithub.com/defenseunicorns/zarf/pull/2499)
- feat: update injector away from rouille to axum by
[@&#8203;schristoff](https://togithub.com/schristoff) in
[https://github.com/defenseunicorns/zarf/pull/2457](https://togithub.com/defenseunicorns/zarf/pull/2457)
- refactor: enable testifylint linter by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2504](https://togithub.com/defenseunicorns/zarf/pull/2504)
- chore: remove rouille CVE from grype ignore by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2515](https://togithub.com/defenseunicorns/zarf/pull/2515)
- fix(agent): missing path for pod without labels by
[@&#8203;brandtkeller](https://togithub.com/brandtkeller) in
[https://github.com/defenseunicorns/zarf/pull/2518](https://togithub.com/defenseunicorns/zarf/pull/2518)
- fix: adopt namespace metadata by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2494](https://togithub.com/defenseunicorns/zarf/pull/2494)
- refactor: enable ineffassign linter by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2500](https://togithub.com/defenseunicorns/zarf/pull/2500)
- test: cluster getDeployedPackages by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2523](https://togithub.com/defenseunicorns/zarf/pull/2523)
- test: add unit tests for merge zarf state by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2522](https://togithub.com/defenseunicorns/zarf/pull/2522)
- test: pod agent unit tests by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2526](https://togithub.com/defenseunicorns/zarf/pull/2526)
- docs: add google analytics for docs pages by
[@&#8203;salaxander](https://togithub.com/salaxander) in
[https://github.com/defenseunicorns/zarf/pull/2530](https://togithub.com/defenseunicorns/zarf/pull/2530)
- test: add unit tests for detect distro by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2521](https://togithub.com/defenseunicorns/zarf/pull/2521)
- test: add tests for injector by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2534](https://togithub.com/defenseunicorns/zarf/pull/2534)
- chore: add codecov by
[@&#8203;schristoff-du](https://togithub.com/schristoff-du) in
[https://github.com/defenseunicorns/zarf/pull/2529](https://togithub.com/defenseunicorns/zarf/pull/2529)
- chore: add unit tests for creator.LoadPackageDefinition by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2531](https://togithub.com/defenseunicorns/zarf/pull/2531)
- test: refactor network test by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2533](https://togithub.com/defenseunicorns/zarf/pull/2533)
- test: agent flux unit test by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2528](https://togithub.com/defenseunicorns/zarf/pull/2528)
- chore: fix codecov by
[@&#8203;schristoff](https://togithub.com/schristoff) in
[https://github.com/defenseunicorns/zarf/pull/2538](https://togithub.com/defenseunicorns/zarf/pull/2538)
- test: creator.ComposeComponents by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2537](https://togithub.com/defenseunicorns/zarf/pull/2537)
- refactor: remove use of k8s serivce account by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2544](https://togithub.com/defenseunicorns/zarf/pull/2544)
- refactor: remove use of k8s service by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2543](https://togithub.com/defenseunicorns/zarf/pull/2543)
- refactor: remove use of k8s configmap by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2541](https://togithub.com/defenseunicorns/zarf/pull/2541)
- refactor: remove use of k8s hpa by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2542](https://togithub.com/defenseunicorns/zarf/pull/2542)
- test: add secrets tests by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2540](https://togithub.com/defenseunicorns/zarf/pull/2540)
- refactor: allow callers to directly set logfile location by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2545](https://togithub.com/defenseunicorns/zarf/pull/2545)
- test: add test for packager source by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2525](https://togithub.com/defenseunicorns/zarf/pull/2525)
- chore: add unit tests to variables pkg by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2519](https://togithub.com/defenseunicorns/zarf/pull/2519)
- test: clean up tests for composer by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2532](https://togithub.com/defenseunicorns/zarf/pull/2532)
- test: argo agent unit tests by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2536](https://togithub.com/defenseunicorns/zarf/pull/2536)
- fix(release): do not delete testdata in release workflow by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2547](https://togithub.com/defenseunicorns/zarf/pull/2547)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.33.2...v0.34.0

###
[`v0.33.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.2)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.33.1...v0.33.2)

##### What's Changed

- fix: schema integration by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2463](https://togithub.com/defenseunicorns/zarf/pull/2463)
- docs: add contributor covenant code of conduct by
[@&#8203;salaxander](https://togithub.com/salaxander) in
[https://github.com/defenseunicorns/zarf/pull/2462](https://togithub.com/defenseunicorns/zarf/pull/2462)
- docs: fix casing on code of conduct badge by
[@&#8203;salaxander](https://togithub.com/salaxander) in
[https://github.com/defenseunicorns/zarf/pull/2466](https://togithub.com/defenseunicorns/zarf/pull/2466)
- fix(deps): update github.com/anchore/clio digest to
[`3c4abf8`](https://togithub.com/defenseunicorns/zarf/commit/3c4abf8) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2424](https://togithub.com/defenseunicorns/zarf/pull/2424)
- fix: update docker media type in registry by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2476](https://togithub.com/defenseunicorns/zarf/pull/2476)
- fix: adds GetVariableConfig function for packager by
[@&#8203;decleaver](https://togithub.com/decleaver) in
[https://github.com/defenseunicorns/zarf/pull/2475](https://togithub.com/defenseunicorns/zarf/pull/2475)
- test: add tests for remove copies from components to enable
refactoring by [@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2473](https://togithub.com/defenseunicorns/zarf/pull/2473)
- fix!: do not uninstall helm chart after failed install or upgrade by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2456](https://togithub.com/defenseunicorns/zarf/pull/2456)
- feat: inspect --list-images by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2478](https://togithub.com/defenseunicorns/zarf/pull/2478)
- refactor: remove copies from components to a filter by
[@&#8203;phillebaba](https://togithub.com/phillebaba) in
[https://github.com/defenseunicorns/zarf/pull/2474](https://togithub.com/defenseunicorns/zarf/pull/2474)
- chore: add support.md by
[@&#8203;schristoff](https://togithub.com/schristoff) in
[https://github.com/defenseunicorns/zarf/pull/2480](https://togithub.com/defenseunicorns/zarf/pull/2480)
- chore: add a check for go mod tidy by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2481](https://togithub.com/defenseunicorns/zarf/pull/2481)
- fix: use correct sha256 checksum for arm64 injector binary by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2483](https://togithub.com/defenseunicorns/zarf/pull/2483)
- fix: simplify go mod tidy check by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2482](https://togithub.com/defenseunicorns/zarf/pull/2482)

##### New Contributors

- [@&#8203;salaxander](https://togithub.com/salaxander) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2462](https://togithub.com/defenseunicorns/zarf/pull/2462)
- [@&#8203;phillebaba](https://togithub.com/phillebaba) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2473](https://togithub.com/defenseunicorns/zarf/pull/2473)
- [@&#8203;schristoff](https://togithub.com/schristoff) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2480](https://togithub.com/defenseunicorns/zarf/pull/2480)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.33.1...v0.33.2

###
[`v0.33.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.1)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.33.0...v0.33.1)

##### What's Changed

- fix: add redirect so old zarf base link is compatiable by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2432](https://togithub.com/defenseunicorns/zarf/pull/2432)
- ci: pin third-party gh actions by hash by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2433](https://togithub.com/defenseunicorns/zarf/pull/2433)
- docs: add redirect for examples by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2438](https://togithub.com/defenseunicorns/zarf/pull/2438)
- docs: update contributing and pre-commit by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2439](https://togithub.com/defenseunicorns/zarf/pull/2439)
- ci: fix revive image ref in lint workflow by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2436](https://togithub.com/defenseunicorns/zarf/pull/2436)
- fix: filter on running pods when finding an image for injector pod by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2415](https://togithub.com/defenseunicorns/zarf/pull/2415)
- fix: readme dead links by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2442](https://togithub.com/defenseunicorns/zarf/pull/2442)
- fix: differential package create with non local sources by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2444](https://togithub.com/defenseunicorns/zarf/pull/2444)
- refactor: move variables into separate package by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2414](https://togithub.com/defenseunicorns/zarf/pull/2414)
- ci: add top level workflow permission to commitlint by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2449](https://togithub.com/defenseunicorns/zarf/pull/2449)
- ci: remove unused env var from codeql workflow by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2450](https://togithub.com/defenseunicorns/zarf/pull/2450)
- chore: cleanup root level files and add SPDX check for Go files by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2431](https://togithub.com/defenseunicorns/zarf/pull/2431)
- feat: config to enable resilient registry by
[@&#8203;Michael-Kruggel](https://togithub.com/Michael-Kruggel) in
[https://github.com/defenseunicorns/zarf/pull/2440](https://togithub.com/defenseunicorns/zarf/pull/2440)
- docs: init package clarity and cleanup by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2447](https://togithub.com/defenseunicorns/zarf/pull/2447)
- ci: compare cves to main by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2448](https://togithub.com/defenseunicorns/zarf/pull/2448)
- test: unpin version in bigbang extension test by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2459](https://togithub.com/defenseunicorns/zarf/pull/2459)
- fix: broken schema from unexpanded embedded variables by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2458](https://togithub.com/defenseunicorns/zarf/pull/2458)
- fix: error on create if an index sha is used by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2429](https://togithub.com/defenseunicorns/zarf/pull/2429)

##### New Contributors

- [@&#8203;Michael-Kruggel](https://togithub.com/Michael-Kruggel) made
their first contribution in
[https://github.com/defenseunicorns/zarf/pull/2440](https://togithub.com/defenseunicorns/zarf/pull/2440)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.33.0...v0.33.1

###
[`v0.33.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.33.0)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.6...v0.33.0)

##### What's Changed

- fix: update deprecated syft packages command to syft scan by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2399](https://togithub.com/defenseunicorns/zarf/pull/2399)
- chore: move helpers to defenseunicorns/pkg by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2402](https://togithub.com/defenseunicorns/zarf/pull/2402)
- fix(deps): update github.com/anchore/clio digest to
[`fb5fc4c`](https://togithub.com/defenseunicorns/zarf/commit/fb5fc4c) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2366](https://togithub.com/defenseunicorns/zarf/pull/2366)
- feat(tools): add yq by
[@&#8203;zachariahmiller](https://togithub.com/zachariahmiller) in
[https://github.com/defenseunicorns/zarf/pull/2406](https://togithub.com/defenseunicorns/zarf/pull/2406)
- chore: switch to use oci lib in defenseunicorns/pkg by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2404](https://togithub.com/defenseunicorns/zarf/pull/2404)
- fix(deps): update module github.com/defenseunicorns/pkg/helpers to v1
by [@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2411](https://togithub.com/defenseunicorns/zarf/pull/2411)
- fix: use env var for PR title in commitlint workflow to prevent
untrusted script injection by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2418](https://togithub.com/defenseunicorns/zarf/pull/2418)
- fix: use default GITHUB_TOKEN for ossf/scorecard-action by
[@&#8203;bburky](https://togithub.com/bburky) in
[https://github.com/defenseunicorns/zarf/pull/2416](https://togithub.com/defenseunicorns/zarf/pull/2416)
- fix: remove duplicate logic for writing image layers to disk
concurrently by [@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2409](https://togithub.com/defenseunicorns/zarf/pull/2409)
- feat: add option to skip cosign lookup during find images by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2427](https://togithub.com/defenseunicorns/zarf/pull/2427)
- feat: allow chart deploy overrides ALPHA by
[@&#8203;naveensrinivasan](https://togithub.com/naveensrinivasan) in
[https://github.com/defenseunicorns/zarf/pull/2403](https://togithub.com/defenseunicorns/zarf/pull/2403)
- chore: update pull_request_template.md by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2428](https://togithub.com/defenseunicorns/zarf/pull/2428)
- ci: pin k3s image version in k3d github action by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2430](https://togithub.com/defenseunicorns/zarf/pull/2430)
- feat(docs): port docs to starlight by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2315](https://togithub.com/defenseunicorns/zarf/pull/2315)

##### New Contributors

- [@&#8203;zachariahmiller](https://togithub.com/zachariahmiller) made
their first contribution in
[https://github.com/defenseunicorns/zarf/pull/2406](https://togithub.com/defenseunicorns/zarf/pull/2406)
- [@&#8203;bburky](https://togithub.com/bburky) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2416](https://togithub.com/defenseunicorns/zarf/pull/2416)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.6...v0.33.0

###
[`v0.32.6`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.6)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6)

##### \[0.32.6] - 2024-03-22

> trying out some different release note generators, formatting may vary
for a few releases while we figure out what works best
~[@&#8203;Noxsios](https://togithub.com/Noxsios)

##### 🚀 Features

- \[**ALPHA**] feat: package generation ALPHA by
[@&#8203;andrewg-xyz](https://togithub.com/andrewg-xyz) in
[#&#8203;2269](https://togithub.com/defenseunicorns/zarf/pull/2269)
- *(lib)* feat(lib): configurable log file location by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2380](https://togithub.com/defenseunicorns/zarf/pull/2380)
- \[**BREAKING**] feat!: filter package components with strategy
interface by [@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2321](https://togithub.com/defenseunicorns/zarf/pull/2321)

##### 🐛 Bug Fixes

- fix: refactor create stages into separate lib by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[#&#8203;2223](https://togithub.com/defenseunicorns/zarf/pull/2223)
- fix: handle registry caBundle as a multiline string by
[@&#8203;AbrohamLincoln](https://togithub.com/AbrohamLincoln) in
[#&#8203;2381](https://togithub.com/defenseunicorns/zarf/pull/2381)
- *(regression)* fix: populate `p.sbomViewFiles` on `deploy` and
`mirror` by [@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[#&#8203;2386](https://togithub.com/defenseunicorns/zarf/pull/2386)
- fix: allow absolute paths for differential packages by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2397](https://togithub.com/defenseunicorns/zarf/pull/2397)
- fix: hotfix skeleton publish by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2398](https://togithub.com/defenseunicorns/zarf/pull/2398)

##### 🚜 Refactor

- refactor: split helpers/exec libs by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[#&#8203;2379](https://togithub.com/defenseunicorns/zarf/pull/2379)

##### 🧪 Testing

- test: data injection flake by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[#&#8203;2361](https://togithub.com/defenseunicorns/zarf/pull/2361)

##### ⚙️ Miscellaneous Tasks

- ci: add commitlint workflow and update contributing guide by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[#&#8203;2391](https://togithub.com/defenseunicorns/zarf/pull/2391)

##### 🛡️ Security

- *(release)* build: create PRs on `homebrew-tap` by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2385](https://togithub.com/defenseunicorns/zarf/pull/2385)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.5...v0.32.6

###
[`v0.32.5`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.5)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5)

##### \[0.32.5] - 2024-03-11

> trying out some different release note generators, formatting may vary
for a few releases while we figure out what works best
~[@&#8203;Noxsios](https://togithub.com/Noxsios)

##### 🚀 Features

- feat: add missing vendored tool version commands by
[@&#8203;eddiezane](https://togithub.com/eddiezane) in
[#&#8203;2232](https://togithub.com/defenseunicorns/zarf/pull/2232)
- feat: add `--why` flag for `zarf dev find-images` by
[@&#8203;waveywaves](https://togithub.com/waveywaves) in
[#&#8203;2309](https://togithub.com/defenseunicorns/zarf/pull/2309)
- feat: set variables on find images by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2282](https://togithub.com/defenseunicorns/zarf/pull/2282)
- feat: add configurable backoff and retries for Zarf operations by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[#&#8203;2345](https://togithub.com/defenseunicorns/zarf/pull/2345)

##### 🐛 Bug Fixes

- *(deps)*: update github.com/anchore/clio digest to
[`abcb719`](https://togithub.com/defenseunicorns/zarf/commit/abcb719) by
[@&#8203;renovate](https://togithub.com/renovate)\[bot] in
[#&#8203;2347](https://togithub.com/defenseunicorns/zarf/pull/2347)
- *(ci)*: change ECR image to docker.io image by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2353](https://togithub.com/defenseunicorns/zarf/pull/2353)
- fix: added OCI Image Index mediaType by
[@&#8203;mdaizcorbe](https://togithub.com/mdaizcorbe) in
[#&#8203;2352](https://togithub.com/defenseunicorns/zarf/pull/2352)
- fix: package publish progress bar frozen at zero by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2367](https://togithub.com/defenseunicorns/zarf/pull/2367)
- *(release)* hotfix `publish` not respecting source package
architecture by [@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2376](https://togithub.com/defenseunicorns/zarf/pull/2376)

##### 📚 Documentation

- chore: fix spelling by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2333](https://togithub.com/defenseunicorns/zarf/pull/2333)
- docs: formatting and grammar by
[@&#8203;beholdenkey](https://togithub.com/beholdenkey) in
[#&#8203;2350](https://togithub.com/defenseunicorns/zarf/pull/2350)

##### ⚙️ Miscellaneous Tasks

- chore: sorted go imports by
[@&#8203;naveensrinivasan](https://togithub.com/naveensrinivasan) in
[#&#8203;2349](https://togithub.com/defenseunicorns/zarf/pull/2349)
- chore: fix bb test by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2340](https://togithub.com/defenseunicorns/zarf/pull/2340)
- chore: update CODEOWNERS with
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[#&#8203;2354](https://togithub.com/defenseunicorns/zarf/pull/2354)
- chore: refactor and purify the OCI library within Zarf by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2235](https://togithub.com/defenseunicorns/zarf/pull/2235)
- chore: default to temp zarf cache in e2e tests by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[#&#8203;2355](https://togithub.com/defenseunicorns/zarf/pull/2355)

##### 🛡️ Security

- chore: configure agent server to avoid slowloris attack by
[@&#8203;naveensrinivasan](https://togithub.com/naveensrinivasan) in
[#&#8203;2342](https://togithub.com/defenseunicorns/zarf/pull/2342)
- chore: fix implicit memory aliasing in for loop by
[@&#8203;naveensrinivasan](https://togithub.com/naveensrinivasan) in
[#&#8203;2341](https://togithub.com/defenseunicorns/zarf/pull/2341)
- *(release)*: update release workflow to use token from gh app by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2368](https://togithub.com/defenseunicorns/zarf/pull/2368)
- *(release)*: use release environment secrets by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[#&#8203;2374](https://togithub.com/defenseunicorns/zarf/pull/2374)

##### First Time Contributors

- [@&#8203;eddiezane](https://togithub.com/eddiezane) made their first
contribution in
[#&#8203;2232](https://togithub.com/defenseunicorns/zarf/issues/2232)
- [@&#8203;beholdenkey](https://togithub.com/beholdenkey) made their
first contribution in
[#&#8203;2350](https://togithub.com/defenseunicorns/zarf/issues/2350)
- [@&#8203;mdaizcorbe](https://togithub.com/mdaizcorbe) made their first
contribution in
[#&#8203;2352](https://togithub.com/defenseunicorns/zarf/issues/2352)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.4...v0.32.5

###
[`v0.32.4`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.4)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4)

##### What's Changed

##### Fixes

- Improve `cmd` failure messaging when no timeout or retries are given
by [@&#8203;docandrew](https://togithub.com/docandrew) in
[https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301)
- Revert init package storageclass checks for git server and seed
registry by [@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2311](https://togithub.com/defenseunicorns/zarf/pull/2311)
- Fix multi-part tarballs being mismatched sizes by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2314](https://togithub.com/defenseunicorns/zarf/pull/2314)
- Change text template detection to check first *and* last 512 bytes by
[@&#8203;WeaponX314](https://togithub.com/WeaponX314) in
[https://github.com/defenseunicorns/zarf/pull/2310](https://togithub.com/defenseunicorns/zarf/pull/2310)
- Improve `zarf tools registry prune` messaging by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2323](https://togithub.com/defenseunicorns/zarf/pull/2323)
- Add http request header timeout to mitigate stalling image push by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2319](https://togithub.com/defenseunicorns/zarf/pull/2319)
- Allow host+subpath as the source registry for `--registry-override` in
package create by [@&#8203;waveywaves](https://togithub.com/waveywaves)
in
[https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306)

##### Dependencies

- Update github.com/anchore/clio digest to
[`cb94e40`](https://togithub.com/defenseunicorns/zarf/commit/cb94e40) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2294](https://togithub.com/defenseunicorns/zarf/pull/2294),
[https://github.com/defenseunicorns/zarf/pull/2297](https://togithub.com/defenseunicorns/zarf/pull/2297)
and
[https://github.com/defenseunicorns/zarf/pull/2300](https://togithub.com/defenseunicorns/zarf/pull/2300)
- **\[security]** Update module helm.sh/helm/v3 to v3.14.2 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2307](https://togithub.com/defenseunicorns/zarf/pull/2307)
and
[https://github.com/defenseunicorns/zarf/pull/2329](https://togithub.com/defenseunicorns/zarf/pull/2329)
- Update actions/checkout action to v4 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2317](https://togithub.com/defenseunicorns/zarf/pull/2317)
- Update actions/dependency-review-action action to v4 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2318](https://togithub.com/defenseunicorns/zarf/pull/2318)

##### Docs

- Update [Zarf roadmap](https://docs.zarf.dev/docs/roadmap) per 2024
goals by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2305](https://togithub.com/defenseunicorns/zarf/pull/2305)

##### Development

- Included Dependency Review action for PR reviews by
[@&#8203;naveensrinivasan](https://togithub.com/naveensrinivasan) in
[https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298)
- Resolve CodeQL linting issues across Zarf by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2322](https://togithub.com/defenseunicorns/zarf/pull/2322)

##### New Contributors

- [@&#8203;docandrew](https://togithub.com/docandrew) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2301](https://togithub.com/defenseunicorns/zarf/pull/2301)
- [@&#8203;naveensrinivasan](https://togithub.com/naveensrinivasan) made
their first contribution in
[https://github.com/defenseunicorns/zarf/pull/2298](https://togithub.com/defenseunicorns/zarf/pull/2298)
- [@&#8203;waveywaves](https://togithub.com/waveywaves) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2306](https://togithub.com/defenseunicorns/zarf/pull/2306)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.3...v0.32.4

###
[`v0.32.3`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.3)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3)

##### What's Changed

##### Fixes

- Properly handle panic that could occur during checksum validation by
[@&#8203;mjnagel](https://togithub.com/mjnagel) in
[https://github.com/defenseunicorns/zarf/pull/2262](https://togithub.com/defenseunicorns/zarf/pull/2262)
- Add the `--key` flag to the init cmd to properly allow for signed init
packages by [@&#8203;dgershman](https://togithub.com/dgershman) in
[https://github.com/defenseunicorns/zarf/pull/2259](https://togithub.com/defenseunicorns/zarf/pull/2259)
- Restore destroy script functionality during `zarf destroy` by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2274](https://togithub.com/defenseunicorns/zarf/pull/2274)
- Fix symlink inclusion within component resources by
[@&#8203;dgershman](https://togithub.com/dgershman) in
[https://github.com/defenseunicorns/zarf/pull/2256](https://togithub.com/defenseunicorns/zarf/pull/2256)
- Use memory friendly file split logic for partial packages by
[@&#8203;daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) in
[https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264)
- Fix reproducible tarball creation on Windows systems by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2293](https://togithub.com/defenseunicorns/zarf/pull/2293)

##### Docs

- Make branding more consistent and add community meetup references to
docs by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2258](https://togithub.com/defenseunicorns/zarf/pull/2258)

##### Dependencies

- Update github.com/anchore/clio digest by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2277](https://togithub.com/defenseunicorns/zarf/pull/2277)
and
[https://github.com/defenseunicorns/zarf/pull/2283](https://togithub.com/defenseunicorns/zarf/pull/2283)
- Update all non-major dependencies (including Gitea v1.21.5, Syft
v0.100.0, K9s v0.31.7 and Crane v0.19.0) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2187](https://togithub.com/defenseunicorns/zarf/pull/2187)

##### Development

- Add a more robust chart search regexManager by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2278](https://togithub.com/defenseunicorns/zarf/pull/2278)
and
[https://github.com/defenseunicorns/zarf/pull/2284](https://togithub.com/defenseunicorns/zarf/pull/2284)
- Partial refactor of injector logic in `k8s`, and `cluster` packages by
[@&#8203;chrishorton](https://togithub.com/chrishorton) in
[https://github.com/defenseunicorns/zarf/pull/2271](https://togithub.com/defenseunicorns/zarf/pull/2271)

##### New Contributors

- [@&#8203;daniel-palmer-gu](https://togithub.com/daniel-palmer-gu) made
their first contribution in
[https://github.com/defenseunicorns/zarf/pull/2264](https://togithub.com/defenseunicorns/zarf/pull/2264)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.2...v0.32.3

###
[`v0.32.2`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.2)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2)

##### What's Changed

##### Features

- Support authenticated Helm repositories that have been configured with
`helm repo add` by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2196](https://togithub.com/defenseunicorns/zarf/pull/2196)
- Verify that the specified storage class exists during `zarf init` by
[@&#8203;lucasrod16](https://togithub.com/lucasrod16) in
[https://github.com/defenseunicorns/zarf/pull/2180](https://togithub.com/defenseunicorns/zarf/pull/2180)
- Check for available node resources before building injector pod by
[@&#8203;chrishorton](https://togithub.com/chrishorton) in
[https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220)
- Officially support yaml extensions within the `zarf.yaml` using `x-`
keys by [@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2217](https://togithub.com/defenseunicorns/zarf/pull/2217)

##### Fixes

- Fix the inclusion of helm sub commands when rendering `zarf tools
help` by [@&#8203;jbrewer3](https://togithub.com/jbrewer3) in
[https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216)

##### Docs

- Fix typos in the extension `README.md` by
[@&#8203;mjnagel](https://togithub.com/mjnagel) in
[https://github.com/defenseunicorns/zarf/pull/2227](https://togithub.com/defenseunicorns/zarf/pull/2227)
- Fix a small grammatical error in the base `README.md` by
[@&#8203;cmwylie19](https://togithub.com/cmwylie19) in
[https://github.com/defenseunicorns/zarf/pull/2219](https://togithub.com/defenseunicorns/zarf/pull/2219)

##### Dependencies

- Update github.com/anchore/clio digest to
[`89e2fe8`](https://togithub.com/defenseunicorns/zarf/commit/89e2fe8) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2214](https://togithub.com/defenseunicorns/zarf/pull/2214)
- Update github.com/anchore/clio digest to
[`a5e93b6`](https://togithub.com/defenseunicorns/zarf/commit/a5e93b6) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2229](https://togithub.com/defenseunicorns/zarf/pull/2229)
- Update github.com/anchore/stereoscope digest to
[`eb656fc`](https://togithub.com/defenseunicorns/zarf/commit/eb656fc) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2230](https://togithub.com/defenseunicorns/zarf/pull/2230)

##### Development

- Remove workflow for automatically adding issues to the zarf project by
[@&#8203;YrrepNoj](https://togithub.com/YrrepNoj) in
[https://github.com/defenseunicorns/zarf/pull/2239](https://togithub.com/defenseunicorns/zarf/pull/2239)
- Delete unnecessary waitgroup from concurrencyTools by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2244](https://togithub.com/defenseunicorns/zarf/pull/2244)
- Update `NewOrasRemote` to take `ocispec.Platform` as an argument by
[@&#8203;decleaver](https://togithub.com/decleaver) in
[https://github.com/defenseunicorns/zarf/pull/2241](https://togithub.com/defenseunicorns/zarf/pull/2241)

##### New Contributors

- [@&#8203;jbrewer3](https://togithub.com/jbrewer3) made their first
contribution in
[https://github.com/defenseunicorns/zarf/pull/2216](https://togithub.com/defenseunicorns/zarf/pull/2216)
- [@&#8203;chrishorton](https://togithub.com/chrishorton) made their
first contribution in
[https://github.com/defenseunicorns/zarf/pull/2220](https://togithub.com/defenseunicorns/zarf/pull/2220)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.1...v0.32.2

###
[`v0.32.1`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.1)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.32.0...v0.32.1)

##### What's Changed

##### Fixes

- `ResolveRoot` now properly returns an error when a target platform is
not provided when used as a library by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2212](https://togithub.com/defenseunicorns/zarf/pull/2212)
- Fix reproducibility of internal tarballs for components + sboms to
allow better OCI layer reuse by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2210](https://togithub.com/defenseunicorns/zarf/pull/2210)

##### Docs

- Remove `dos-games` skeleton references and instead use the skeleton
architecture index by [@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2208](https://togithub.com/defenseunicorns/zarf/pull/2208)

##### Dependencies

- \[security] Update github.com/go-git/go-git/v5 to v5.11.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2209](https://togithub.com/defenseunicorns/zarf/pull/2209)
- \[security] Update github.com/containerd/containerd to v1.7.11 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2209](https://togithub.com/defenseunicorns/zarf/pull/2209)
- Update github.com/anchore/syft to v0.99.0 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2185](https://togithub.com/defenseunicorns/zarf/pull/2185)
- Update github.com/anchore/clio digest to
[`3e50431`](https://togithub.com/defenseunicorns/zarf/commit/3e50431) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2207](https://togithub.com/defenseunicorns/zarf/pull/2207)
- Update github.com/anchore/stereoscope digest to
[`590920d`](https://togithub.com/defenseunicorns/zarf/commit/590920d) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2206](https://togithub.com/defenseunicorns/zarf/pull/2206)
- Update github/codeql-action action to v3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2191](https://togithub.com/defenseunicorns/zarf/pull/2191)

**Full Changelog**:
https://github.com/defenseunicorns/zarf/compare/v0.32.0...v0.32.1

###
[`v0.32.0`](https://togithub.com/defenseunicorns/zarf/releases/tag/v0.32.0)

[Compare
Source](https://togithub.com/defenseunicorns/zarf/compare/v0.31.4...v0.32.0)

##### What's Changed

##### :warning: Breaking Changes

- Gitea has been updated from the 8.x series chart (app version 1.19.3)
to the 10.x series chart (app version 1.21.2) - this update contains
breaking changes and should be tested if you are using this component -
default Zarf installs will upgrade automatically but more advanced
configurations / use cases should be reviewed. [Gitea Release
Notes](https://togithub.com/go-gitea/gitea/releases)
- Zarf package OCI references now use OCI indexes / platforms to handle
architecture - packages published to OCI with this version of Zarf will
be placed within an index and won't be able to be pulled with older
versions - old packages will still be able to be pulled however.
- Component and package names can no longer start with a leading `-` as
this is used within the deselect syntax introduced for `--components`

##### Features

    <img
src="https://github.com/defenseunicorns/zarf/assets/3977569/b9f9e158-d70d-48dd-bcda-f37d728e700a"
width=555px/>

- Add `zarf dev deploy` for quickly testing packages and restructure
`zarf prepare` into `zarf dev` by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2170](https://togithub.com/defenseunicorns/zarf/pull/2170)
- Introduce unpinned resources (`images`/`repos`/`files`) warning for
`zarf dev lint` by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2171](https://togithub.com/defenseunicorns/zarf/pull/2171)
- Add glob selection and deselection support to `--components` by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2175](https://togithub.com/defenseunicorns/zarf/pull/2175)
- Switch to indexed platforms for OCI architectures (eliminate `-amd64`,
`-arm64` tag mangling) by
[@&#8203;Noxsios](https://togithub.com/Noxsios) in
[https://github.com/defenseunicorns/zarf/pull/2184](https://togithub.com/defenseunicorns/zarf/pull/2184)

<details>
<summary><h4>Rollup From v0.31 Patch Releases</h4></summary>

- Introduce `zarf prepare lint` to perform schema validation and lay
groundwork for standardizing best practices by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2075](https://togithub.com/defenseunicorns/zarf/pull/2075)
- Add `zarf package remove/inspect` completion for package names from
cluster sources by [@&#8203;WeaponX314](https://togithub.com/WeaponX314)
in
[https://github.com/defenseunicorns/zarf/pull/2151](https://togithub.com/defenseunicorns/zarf/pull/2151)
- Add a warning when no components are selected for deployment in a
package by [@&#8203;bdw617](https://togithub.com/bdw617) in
[https://github.com/defenseunicorns/zarf/pull/2167](https://togithub.com/defenseunicorns/zarf/pull/2167)
- Allow passing additional arguments to `k9s` when invoked by `zarf
tools monitor` by [@&#8203;WeaponX314](https://togithub.com/WeaponX314)
in
[https://github.com/defenseunicorns/zarf/pull/2095](https://togithub.com/defenseunicorns/zarf/pull/2095)
- Add `REGISTRY_CA_BUNDLE` variable to registry package and chart to
improve S3 backed registries by
[@&#8203;AbrohamLincoln](https://togithub.com/AbrohamLincoln) in
[https://github.com/defenseunicorns/zarf/pull/2008](https://togithub.com/defenseunicorns/zarf/pull/2008)
- Add `GIT_SERVER_DISABLE_REGISTRATION` variable to allow for Gitea
registration, so that SSO can be used by
[@&#8203;dgershman](https://togithub.com/dgershman) in
[https://github.com/defenseunicorns/zarf/pull/2118](https://togithub.com/defenseunicorns/zarf/pull/2118)
- `[Library Only]` Initial implementation of Helm Chart overrides at
deploy time by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2131](https://togithub.com/defenseunicorns/zarf/pull/2131)

</details>

##### Fixes

- Update error message when the image doesn't exist locally or on a
remote by [@&#8203;bdw617](https://togithub.com/bdw617) in
[https://github.com/defenseunicorns/zarf/pull/2160](https://togithub.com/defenseunicorns/zarf/pull/2160)
- Corrected k8s / helm k8s client version within Helm templating by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2197](https://togithub.com/defenseunicorns/zarf/pull/2197)
- Properly handle tunnel error channels to force retries of image
pushing by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2190](https://togithub.com/defenseunicorns/zarf/pull/2190)

<details>
<summary><h4>Rollup From v0.31 Patch Releases</h4></summary>

- Fix helm chart clobbering and differences with Zarf and Helm `chart`
names along with new [`repoName`
key](https://docs.zarf.dev/docs/create-a-zarf-package/zarf-schema#zarfchart)
by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2174](https://togithub.com/defenseunicorns/zarf/pull/2174)
- Add message asking if the user has init'ed their cluster and slim down
error messages more generally by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2177](https://togithub.com/defenseunicorns/zarf/pull/2177)
- Fix compose dropping the `only.localOS` filter from the composed
package by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2173](https://togithub.com/defenseunicorns/zarf/pull/2173)
- Improve Helm rollback logic, messaging, and support for local tarballs
by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2157](https://togithub.com/defenseunicorns/zarf/pull/2157)
- Add warnings to better log the errors encountered on image push
retries by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2147](https://togithub.com/defenseunicorns/zarf/pull/2147)
- Make `set -e` (and `$ErrorActionPreference = 'Stop';`) the default for
multiline actions so that they fail correctly by
[@&#8203;UncleGedd](https://togithub.com/UncleGedd) in
[https://github.com/defenseunicorns/zarf/pull/2148](https://togithub.com/defenseunicorns/zarf/pull/2148)
- Properly handle `variable` and `constant` merging when using
composable components by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2129](https://togithub.com/defenseunicorns/zarf/pull/2129)
- Use the node name instead of the hostname label to build the injector
pod by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2119](https://togithub.com/defenseunicorns/zarf/pull/2119)
- Resolve pathing issues while loading images with Zarf on Windows by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2106](https://togithub.com/defenseunicorns/zarf/pull/2106)
- Add an error channel for progress bar rendering to properly stop the
progress bar when used as a library by
[@&#8203;UncleGedd](https://togithub.com/UncleGedd) in
[https://github.com/defenseunicorns/zarf/pull/2117](https://togithub.com/defenseunicorns/zarf/pull/2117)
- Keep a useable empty dir volume within the registry even when
persistence is disabled by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2124](https://togithub.com/defenseunicorns/zarf/pull/2124)

</details>

##### Docs

<details>
<summary><h4>Rollup From v0.31 Patch Releases</h4></summary>

- Update the[ Airgap Software Delivery
course](https://docs.zarf.dev/docs/getting-started/understand-the-basics#airgap-basics)
name by [@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2172](https://togithub.com/defenseunicorns/zarf/pull/2172)
- Promote the Quick Start section to [Getting
Started](https://docs.zarf.dev/docs/getting-started/) by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2182](https://togithub.com/defenseunicorns/zarf/pull/2182)
- Fix link and content issues across the docs by
[@&#8203;AustinAbro321](https://togithub.com/AustinAbro321) in
[https://github.com/defenseunicorns/zarf/pull/2168](https://togithub.com/defenseunicorns/zarf/pull/2168)
- Improve the docs for [`zarf tools k9s`
options](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_tools_monitor)
and other [command
examples](https://docs.zarf.dev/docs/the-zarf-cli/cli-commands/zarf_package_mirror-resources#examples)
by [@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2132](https://togithub.com/defenseunicorns/zarf/pull/2132)
- Update the [Zarf overview](https://docs.zarf.dev/docs/zarf-overview)
to be more clear about how Zarf works by
[@&#8203;Racer159](https://togithub.com/Racer159) in
[https://github.com/defenseunicorns/zarf/pull/2122](https://togithub.com/defenseunicorns/zarf/pull/2122)

</details>

##### Dependencies

- Update gitea chart from 8.3.0 to 10.0.0 by
[@&#8203;TristanHoladay](https://togithub.com/TristanHoladay) in
[https://github.com/defenseunicorns/zarf/pull/2123](https://togithub.com/defenseunicorns/zarf/pull/2123)
- Update module golang.org/x/crypto to v0.17.0 \[security] by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2201](https://togithub.com/defenseunicorns/zarf/pull/2201)
- Update sigstore/cosign-installer action to v3 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/1400](https://togithub.com/defenseunicorns/zarf/pull/1400)
- Update github.com/anchore/stereoscope digest to
[`4b999b7`](https://togithub.com/defenseunicorns/zarf/commit/4b999b7) by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2198](https://togithub.com/defenseunicorns/zarf/pull/2198)
- Update dependency pepr to v20 by
[@&#8203;renovate](https://togithub.com/renovate) in
[https://github.com/defenseunicorns/zarf/pull/2193](https://togithub.com

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "after 7am and before 9am every
weekday" in timezone America/New_York, Automerge - At any time (no
schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://togithub.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Mend
Renovate](https://www.mend.io/free-developer-tools/renovate/). View
repository job log
[here](https://developer.mend.io/github/defenseunicorns/uds-package-gitlab-runner).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4zMzEuMCIsInVwZGF0ZWRJblZlciI6IjM3LjM3Ny44IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJzdXBwb3J0LWRlcHMiXX0=-->

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Wayne Starr <me@racer159.com>
---
 .github/workflows/codeql.yaml           |  8 ++++----
 .github/workflows/commitlint.yaml       |  2 +-
 .github/workflows/dependencyreview.yaml |  4 ++--
 .github/workflows/lint.yaml             |  4 ++--
 .github/workflows/scorecard.yaml        |  6 +++---
 .github/workflows/tag-and-release.yaml  |  8 ++++----
 .github/workflows/test.yaml             | 12 ++++++++----
 .vscode/settings.json                   |  2 +-
 tasks.yaml                              | 10 +++++-----
 tasks/publish.yaml                      |  4 ++--
 10 files changed, 32 insertions(+), 28 deletions(-)

diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml
index d6cabab..9d6c5d3 100644
--- a/.github/workflows/codeql.yaml
+++ b/.github/workflows/codeql.yaml
@@ -28,17 +28,17 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+        uses: github/codeql-action/init@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
         with:
           languages: ${{ matrix.language }}
       - name: Autobuild
-        uses: github/codeql-action/autobuild@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+        uses: github/codeql-action/autobuild@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
 
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+        uses: github/codeql-action/analyze@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
         with:
           category: "/language:${{matrix.language}}"
diff --git a/.github/workflows/commitlint.yaml b/.github/workflows/commitlint.yaml
index a52a792..7067cef 100644
--- a/.github/workflows/commitlint.yaml
+++ b/.github/workflows/commitlint.yaml
@@ -8,4 +8,4 @@ on:
 jobs:
   validate:
     name: Validate
-    uses: defenseunicorns/uds-common/.github/workflows/commitlint.yaml@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+    uses: defenseunicorns/uds-common/.github/workflows/commitlint.yaml@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
diff --git a/.github/workflows/dependencyreview.yaml b/.github/workflows/dependencyreview.yaml
index 57d3175..c6eb377 100644
--- a/.github/workflows/dependencyreview.yaml
+++ b/.github/workflows/dependencyreview.yaml
@@ -17,6 +17,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@e58c696e52cac8e62d61cc21fda89565d71505d7 # v4.3.1
+        uses: actions/dependency-review-action@0c155c5e8556a497adf53f2c18edabf945ed8e70 # v4.3.2
diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml
index 8134c7e..1e61289 100644
--- a/.github/workflows/lint.yaml
+++ b/.github/workflows/lint.yaml
@@ -15,12 +15,12 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           fetch-depth: 0
 
       - name: Environment setup
-        uses: defenseunicorns/uds-common/.github/actions/setup@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+        uses: defenseunicorns/uds-common/.github/actions/setup@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
         with:
           registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
           registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml
index b4a568d..c0bf00c 100644
--- a/.github/workflows/scorecard.yaml
+++ b/.github/workflows/scorecard.yaml
@@ -22,12 +22,12 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1
+        uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
         with:
           results_file: results.sarif
           results_format: sarif
@@ -45,6 +45,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+        uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/tag-and-release.yaml b/.github/workflows/tag-and-release.yaml
index 55f7c0a..484023b 100644
--- a/.github/workflows/tag-and-release.yaml
+++ b/.github/workflows/tag-and-release.yaml
@@ -19,7 +19,7 @@ jobs:
     steps:
       - name: Create release tag
         id: tag
-        uses: google-github-actions/release-please-action@a37ac6e4f6449ce8b3f7607e4d97d0146028dc0b # v4.1.0
+        uses: google-github-actions/release-please-action@e4dc86ba9405554aeba3c6bb2d169500e7d3b4ee # v4.1.1
       - id: release-flag
         run: echo "release_created=${{ steps.tag.outputs.release_created || false }}" >> $GITHUB_OUTPUT
 
@@ -37,10 +37,10 @@ jobs:
       packages: write
 
     steps:
-      - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+      - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Environment setup
-        uses: defenseunicorns/uds-common/.github/actions/setup@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+        uses: defenseunicorns/uds-common/.github/actions/setup@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
         with:
           registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
           registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
@@ -51,6 +51,6 @@ jobs:
 
       - name: Save logs
         if: always()
-        uses: defenseunicorns/uds-common/.github/actions/save-logs@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+        uses: defenseunicorns/uds-common/.github/actions/save-logs@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
         with:
           suffix: ${{ matrix.flavor }}-${{ github.run_id }}-${{ github.run_attempt }}
diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml
index d0af6f7..049fcb4 100644
--- a/.github/workflows/test.yaml
+++ b/.github/workflows/test.yaml
@@ -42,10 +42,10 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Environment setup
-        uses: defenseunicorns/uds-common/.github/actions/setup@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+        uses: defenseunicorns/uds-common/.github/actions/setup@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
         with:
           registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
           registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
@@ -55,13 +55,17 @@ jobs:
         run: cd test && npm ci
 
       - name: Test
-        uses: defenseunicorns/uds-common/.github/actions/test@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+        uses: defenseunicorns/uds-common/.github/actions/test@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
         with:
           flavor: ${{ matrix.flavor }}
           type: ${{ matrix.type }}
 
+      - name: Debug Output
+        if: ${{ always() }}
+        uses: defenseunicorns/uds-common/.github/actions/debug-output@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
+
       - name: Save logs
         if: always()
-        uses: defenseunicorns/uds-common/.github/actions/save-logs@a6fba9c0084319325d70816a3481aec0979649fa # v0.4.0
+        uses: defenseunicorns/uds-common/.github/actions/save-logs@6e6f60bef00842dffbde8409b466256e5a478e78 # v0.4.4
         with:
           suffix: ${{ matrix.type }}-${{ matrix.flavor }}-${{ github.run_id }}-${{ github.run_attempt }}
diff --git a/.vscode/settings.json b/.vscode/settings.json
index edfcc35..0e91bfc 100644
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -15,7 +15,7 @@
         "tasks.yaml",
         "tasks/**/*.yaml",
       ],
-      "https://raw.githubusercontent.com/defenseunicorns/zarf/v0.31.0/zarf.schema.json": [
+      "https://raw.githubusercontent.com/defenseunicorns/zarf/v0.34.0/zarf.schema.json": [
         "zarf.yaml"
       ]
     },
diff --git a/tasks.yaml b/tasks.yaml
index 3ad7bfc..e5b80d5 100644
--- a/tasks.yaml
+++ b/tasks.yaml
@@ -1,11 +1,11 @@
 includes:
   - dependencies: ./tasks/dependencies.yaml
   - test: ./tasks/test.yaml
-  - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/create.yaml
-  - lint: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/lint.yaml
-  - pull: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/pull.yaml
-  - deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/deploy.yaml
-  - setup: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/setup.yaml
+  - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/create.yaml
+  - lint: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/lint.yaml
+  - pull: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/pull.yaml
+  - deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/deploy.yaml
+  - setup: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/setup.yaml
 
 tasks:
   - name: default
diff --git a/tasks/publish.yaml b/tasks/publish.yaml
index 56ae5e5..fcdfbb2 100644
--- a/tasks/publish.yaml
+++ b/tasks/publish.yaml
@@ -1,6 +1,6 @@
 includes:
-  - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/create.yaml
-  - publish: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.2/tasks/publish.yaml
+  - create: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/create.yaml
+  - publish: https://raw.githubusercontent.com/defenseunicorns/uds-common/v0.4.4/tasks/publish.yaml
 
 tasks:
   - name: package