build(deps): bump helm.sh/helm/v3 from 3.20.2 to 3.21.0

[dependabot]

Bumps helm.sh/helm/v3 from 3.20.2 to 3.21.0.

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.21.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

• Join the discussion in Kubernetes Slack:
  • for questions and just to hang out
  • for discussing PRs, code, and bugs
• Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
• Test, debug, and contribute charts: ArtifactHub/packages

Notable Changes

• Kubernetes client libraries to v1.36
• notable changes here

Installation and Upgrading

Download Helm v3.21.0. The common platform binaries are here:

• MacOS amd64 (checksum / 8bc0c1f85f8738cc3cda4a2cc73047145bcdcb1f4d9cdcc29073037bfb22fa2e)
• MacOS arm64 (checksum / 68bfbdc022c543a2a022597b20298216877e98abe6e4a345d3ecf114d79cae5f)
• Linux amd64 (checksum / 0093eb572e3d2380f094df162ddb525e219249de88957afe24cfbb19632acd36)
• Linux arm (checksum / d310ac387324538a37192e8e13628eb1def2596bbac6b6481ae20d8d5e3532bd)
• Linux arm64 (checksum / 8de5a0c9a47431e59fd560e91e0779c8cf9316c383da7efb84128a4c339ecb2d)
• Linux i386 (checksum / fc85f14c9ce7e6a48a2b19a97edbc5529ed7aa2bc10f3d2c241e1c2ef12ccd22)
• Linux ppc64le (checksum / e2dced0f903acda417f879012c7e09ca461000e26a04e8f7a1cfe0dcf495f62c)
• Linux s390x (checksum / a176d7460a615b8df5b1a58ecf09fcc731c7733ca4cf10116cf198575b0371b5)
• Linux riscv64 (checksum / 4935c95c55bc5c3357143698a87185e17a39de9b6148dfd6cce0fc11859dbfeb)
• Windows amd64 (checksum / 3ea6b8383e6c0b7ce45d06a5746313b8e9225edd88d42f4f64582ff3792d7b55)
• Windows arm64 (checksum / 90d8c87e07267e6c71e678c9e33dd11cc121789c823ccc380de9d1dd521c8cba)

This release was signed by @​gjenkins8 with key BF88 8333 D96A 1C18 E268 2AAE D79D 67C9 EC01 6739, which can be found at https://keys.openpgp.org/vks/v1/by-fingerprint/BF888333D96A1C18E2682AAED79D67C9EC016739. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

• 3.21.1 will contain only bug fixes.
• 3.22.0 is the next feature release for Kubernetes v1.37

Changelog

• [v3] Bump to version v3.21 e0878d41b711792be60777fd65ad23a101e6b85f (George Jenkins)
• fix: upgrade opentelemetry packages to patch CVEs 13d5fc4ae0e7222e1af8796ff4fa467b52208471 (Terry Howe)
• fix: Chart dot-name path bug 2552884e3bc1b763c3901c5ea7240b59ef6791f1 (George Jenkins)
• fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow ec05dd5f0481c2de3a41a554adf3c52a6a2a9bb6 (Terry Howe)
• add image index test b0dfec5af4d7f642d8dea3b9058856541fe5017c (Pedro Tôrres)
• fix pulling charts from OCI indices e629995c5d65ec2d5095ecd6d094bf85d02b3266 (Pedro Tôrres)
• chore(deps): bump the k8s-io group with 7 updates 9c854fbd937ae0efe0e0a5063e7449d8973a85fd (dependabot[bot])
• chore(deps): bump golang.org/x/crypto from 0.47.0 to 0.48.0 a692247486fb6893f00af65fdfb05da538c7b1d5 (dependabot[bot])

... (truncated)

Commits

• e0878d4 [v3] Bump to version v3.21
• 4d4902c Merge pull request #32041 from TerryHowe/fix/upgrade-otel-cves
• 13d5fc4 fix: upgrade opentelemetry packages to patch CVEs
• a60cb79 Merge commit from fork
• d3bc853 Merge pull request #32026 from gjenkins8/gjenkins/code_action_pin_v3
• 2552884 fix: Chart dot-name path bug
• ec05dd5 fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow
• 6d809b2 Merge pull request #31883 from t0rr3sp3dr0/pedrotorres/backport-31776-to-v3
• b0dfec5 add image index test
• e629995 fix pulling charts from OCI indices
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.