Update dependency fluxcd/flux2 to v2.0.0-rc.4

This MR contains the following updates:

Package	Update	Change
fluxcd/flux2	patch	2.0.0-rc.3 -> 2.0.0-rc.4

---

Release Notes

fluxcd/flux2

v2.0.0-rc.4

Compare Source

Highlights

This is the 4nd release candidate of Flux v2.0 GA. Users are advised to upgrade from older versions to v2.0.0-rc.4 as soon as possible.

Flux v2.0.0-rc.4 comes with support for Kustomize 5.0, Helm 3.12 and Cosign 2.0.

💡 For upgrading from v0.x, please see the procedure documented in RC.1.

⚠️ Note that Kustomize v5 contains breaking changes, please consult their changelog for more details.

⚠️ The GitOps Toolkit and the Flux controllers have been updated to controller-runtime v0.15 which contains breaking changes that could affect 3rd-party controllers that integrate with Flux.

Fixes and improvements

• Full support for Azure Workload Identity when connecting Flux to Azure Container Registry, Azure Blog Storage and Azure Key Vault.
• New command flux reconcile source chart for pulling Helm OCI charts on-demand from container registries (CLI).
• Retry OCI operations on network errors for flux push artifact (CLI).
• Support annotated Git tags with .spec.ref.name in GitRepository (source-controller).
• Fix pulling Helm OCI charts from ACR when using Azure OIDC (source-controller).
• Fix incorrect rate limiting for HelmRelease events (notification-controller).
• All components have been updated to patch vulnerabilities in Docker (CVE-2023-28840, CVE-2023-28841, CVE-2023-28842) and Sigstore (CVE-2023-30551).

Components changelog

• source-controller v1.0.0-rc.4
• kustomize-controller v1.0.0-rc.4
• notification-controller v1.0.0-rc.4
• helm-controller v0.34.0
• image-reflector-controller v0.28.0
• image-automation-controller v0.34.0

CLI Changelog

• MR #​3929 - @​stefanprodan - Update Git packages
• MR #​3928 - @​stefanprodan - Update kubectl to v1.27.2 in flux-cli image
• MR #​3927 - @​dependabot[bot] - build(deps): bump github/codeql-action from 2.3.3 to 2.3.5
• MR #​3926 - @​dependabot[bot] - build(deps): bump snyk/actions from 8061827 to b98d498
• MR #​3924 - @​hgranillo - Fix break lines in create helmrelease and source
• MR #​3922 - @​fluxcdbot - Update toolkit components
• MR #​3918 - @​somtochiama - Retry oci push operations
• MR #​3910 - @​stefanprodan - Update Kubernetes to v1.27 and Kustomize to v5.0
• MR #​3903 - @​dependabot[bot] - build(deps): bump sigstore/cosign-installer from 3.0.3 to 3.0.5
• MR #​3902 - @​dependabot[bot] - build(deps): bump actions/setup-go from 4.0.0 to 4.0.1
• MR #​3901 - @​dependabot[bot] - build(deps): bump helm/kind-action from 1.5.0 to 1.7.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

---

• If you want to rebase/retry this MR, check this box

---

This MR has been generated by Renovate Bot.