Purpose: TLDR of why we need this?
'ingress-nginx' reaches End of Life (EOL) at the end of March 2026. Continued use after this date poses security risks and lack of support for newer Kubernetes versions.
Functionality: TLDR of what will this change?
Replace the current 'ingress-nginx' controller with a supported alternative (e.g., a Gateway API-based controller like Envoy Gateway, or Traefik). This will involve updating ingress annotations and class names across all cluster manifests.
Affects: Where will this change?
The following files specifically use the nginx ingress class or related annotations:
choose-native-plants/release-values.yamlecho-http.yamlcert-manager.issuers.yamlbalancer/kustomization.yaml (Patch)sealed-secrets/release-values.yamlmetabase/release-values.yamlpaws-data-pipeline/release-values.yamlprevention-point/release-values.yaml- Also potentially
app/deploy/manifests/balancer/base/ingress.yaml (referenced by balancer/ lens).
Pros/Cons
Pros: Security compliance, modern ingress features.
Cons: Potential downtime during migration, need to update multiple manifests.
Additional context
The following files specifically use the nginx ingress class or specific annotations (like nginx.ingress.kubernetes.io/proxy-body-size) that will need to be translated to the new ingress controller's format:
choose-native-plants/release-values.yamlpaws-data-pipeline/release-values.yamlmetabase/release-values.yamlprevention-point/release-values.yamlsealed-secrets/release-values.yamlbalancer/kustomization.yaml (Patch)echo-http.yamlcert-manager.issuers.yaml (ACME challenge solvers)
Purpose: TLDR of why we need this?
'ingress-nginx' reaches End of Life (EOL) at the end of March 2026. Continued use after this date poses security risks and lack of support for newer Kubernetes versions.
Functionality: TLDR of what will this change?
Replace the current 'ingress-nginx' controller with a supported alternative (e.g., a Gateway API-based controller like Envoy Gateway, or Traefik). This will involve updating ingress annotations and class names across all cluster manifests.
Affects: Where will this change?
The following files specifically use the
nginxingress class or related annotations:choose-native-plants/release-values.yamlecho-http.yamlcert-manager.issuers.yamlbalancer/kustomization.yaml(Patch)sealed-secrets/release-values.yamlmetabase/release-values.yamlpaws-data-pipeline/release-values.yamlprevention-point/release-values.yamlapp/deploy/manifests/balancer/base/ingress.yaml(referenced bybalancer/lens).Pros/Cons
Pros: Security compliance, modern ingress features.
Cons: Potential downtime during migration, need to update multiple manifests.
Additional context
The following files specifically use the
nginxingress class or specific annotations (likenginx.ingress.kubernetes.io/proxy-body-size) that will need to be translated to the new ingress controller's format:choose-native-plants/release-values.yamlpaws-data-pipeline/release-values.yamlmetabase/release-values.yamlprevention-point/release-values.yamlsealed-secrets/release-values.yamlbalancer/kustomization.yaml(Patch)echo-http.yamlcert-manager.issuers.yaml(ACME challenge solvers)