Update External Secrets Helm version.

Change Summary

This change updates the Helm chart version for the external-secrets module from 0.17.0 to 0.20.3. This update is intended to incorporate the latest features, bug fixes, and security patches provided by the external-secrets project.

Technical Details

• File Modified: IaC/modules/external-secrets/main.tf
• Change: The Helm chart version for the external-secrets release has been updated. ```diff
  • version = “0.17.0”
  • version = “0.20.3” ```
• Helm Release Configuration: The helm_release resource named release now deploys version 0.20.3 of the external-secrets chart.

  resource "helm_release" "release" {
    name       = "external-secrets"
    chart      = "external-secrets"
    repository = "https://charts.external-secrets.io"
    version    = "0.20.3"
    timeout    = "1500"
    namespace  = kubernetes_namespace.external_secrets.metadata[0].name
  }
  

Key Learnings & Insights

• Reasoning Behind the Change: Updating to the latest version ensures that the deployment benefits from recent improvements and security enhancements. It also allows the team to leverage new features and fixes that may not have been available in the previous version.
• Problem-Solving Approach: Regularly updating dependencies is a best practice to maintain a secure and efficient codebase. This change was identified during a routine dependency review.
• Best Practices:
  • Conduct regular dependency updates to stay current with the latest features and security patches.
  • Test updates in a staging environment before deploying to production to mitigate risks.
• Trade-offs: While updating to the latest version can introduce new features and improvements, it may also bring breaking changes. Therefore, it’s crucial to review the changelog and conduct thorough testing.

Impact Assessment

• Overall System: The update should enhance the functionality and security of the external-secrets deployment. It may introduce new configurations or behaviors that need to be reviewed.
• Performance: There should be no negative performance impact unless specified otherwise in the changelog of the new version.
• Security: The update is likely to include security patches, improving the overall security posture of the deployment.
• Breaking Changes: Review the changelog for version 0.20.3 to identify any breaking changes that may require additional modifications to the configuration or code.

Developer Notes

• Gotchas: Ensure that the new version does not introduce breaking changes that affect existing configurations. Review the external-secrets changelog carefully.
• Edge Cases: Pay attention to any new requirements or deprecated features in the updated Helm chart.
• Future Improvements: Consider setting up automated dependency updates or using tools like Dependabot to manage Helm chart versions more efficiently.