stevehipwell
diff --git a/‎charts/tigera-operator/CHANGELOG.md‎
Lines changed: 9 additions & 2 deletions b/‎charts/tigera-operator/CHANGELOG.md‎
Lines changed: 9 additions & 2 deletions
diff --git a/‎charts/tigera-operator/Chart.yaml‎
Lines changed: 2 additions & 2 deletions b/‎charts/tigera-operator/Chart.yaml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎charts/tigera-operator/README.md‎
Lines changed: 4 additions & 4 deletions b/‎charts/tigera-operator/README.md‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎charts/tigera-operator/crds/apiservers.operator.tigera.io.yaml‎
Lines changed: 1 addition & 1 deletion b/‎charts/tigera-operator/crds/apiservers.operator.tigera.io.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎charts/tigera-operator/crds/calico/bgpconfigurations.crd.projectcalico.org.yaml‎
Lines changed: 6 additions & 72 deletions b/‎charts/tigera-operator/crds/calico/bgpconfigurations.crd.projectcalico.org.yaml‎
Lines changed: 6 additions & 72 deletions
diff --git a/‎charts/tigera-operator/crds/calico/bgpfilters.crd.projectcalico.org.yaml‎
Lines changed: 0 additions & 20 deletions b/‎charts/tigera-operator/crds/calico/bgpfilters.crd.projectcalico.org.yaml‎
Lines changed: 0 additions & 20 deletions
@@ -14,17 +14,23 @@
 
 ## [UNRELEASED]
 
+## [v2.13.0] - 2025-11-05
+
+### Changed
+
+- Update the _Tigera Operator_ OCI image to [v1.40.0](https://github.com/tigera/operator/releases/tag/v1.40.0) (_Calico_ [v3.31.0](https://github.com/projectcalico/calico/releases/tag/v3.31.0)). ([#1283](https://github.com/stevehipwell/helm-charts/pull/1283)) _@stevehipwell_
+
 ## [v2.12.6] - 2025-11-05
 
 ### Changed
 
-- Update the _Tigera Operator_ OCI image to [v1.38.7](https://github.com/tigera/operator/releases/tag/v1.38.7) (_Calico_ [v3.30.4](https://github.com/projectcalico/calico/releases/tag/v3.30.4 )). ([#1282](https://github.com/stevehipwell/helm-charts/pull/1282)) _@stevehipwell_
+- Update the _Tigera Operator_ OCI image to [v1.38.7](https://github.com/tigera/operator/releases/tag/v1.38.7) (_Calico_ [v3.30.4](https://github.com/projectcalico/calico/releases/tag/v3.30.4)). ([#1282](https://github.com/stevehipwell/helm-charts/pull/1282)) _@stevehipwell_
 
 ## [v2.12.5] - 2025-09-01
 
 ### Changed
 
-- Update the _Tigera Operator_ OCI image to [v1.38.6](https://github.com/tigera/operator/releases/tag/v1.38.6) (_Calico_ [v3.30.3](https://github.com/projectcalico/calico/releases/tag/v3.30.3 )). ([#1242](https://github.com/stevehipwell/helm-charts/pull/1242)) _@stevehipwell_
+- Update the _Tigera Operator_ OCI image to [v1.38.6](https://github.com/tigera/operator/releases/tag/v1.38.6) (_Calico_ [v3.30.3](https://github.com/projectcalico/calico/releases/tag/v3.30.3)). ([#1242](https://github.com/stevehipwell/helm-charts/pull/1242)) _@stevehipwell_
 
 ## [v2.12.4] - 2025-08-11
 
@@ -637,6 +643,7 @@
 RELEASE LINKS
 -->
 [UNRELEASED]: https://github.com/stevehipwell/helm-charts/tree/main/charts/tigera-operator
+[v2.13.0]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.13.0
 [v2.12.6]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.12.6
 [v2.12.5]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.12.5
 [v2.12.4]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.12.4
 
@@ -2,8 +2,8 @@ apiVersion: v2
 name: tigera-operator
 description: Helm chart to install the Tigera Operator for managing Calico.
 type: application
-version: 2.12.6
-appVersion: 1.38.7
+version: 2.13.0
+appVersion: 1.40.0
 keywords:
   - kubernetes
   - cni
 
@@ -1,6 +1,6 @@
 # tigera-operator
 
-![Version: 2.12.6](https://img.shields.io/badge/Version-2.12.6-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.38.7](https://img.shields.io/badge/AppVersion-1.38.7-informational?style=flat-square)
+![Version: 2.13.0](https://img.shields.io/badge/Version-2.13.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.40.0](https://img.shields.io/badge/AppVersion-1.40.0-informational?style=flat-square)
 
 The [Tigera Operator](https://www.tigera.io/) is a Kubernetes operator which manages the lifecycle of a [Calico](https://www.tigera.io/project-calico/) or [Calico Enterprise](https://www.tigera.io/tigera-products/calico-enterprise/) installation on Kubernetes. Its goal is to make installation, upgrades, and ongoing lifecycle management of _Calico_ and _Calico Enterprise_ as simple and reliable as possible.
 
@@ -27,15 +27,15 @@ It is possible to use the _Tigera Operator_ for other use-cases by installing ad
 To install the chart using the recommended OCI method you can use the following command.
 
 ```shell
-helm upgrade --install tigera-operator oci://ghcr.io/stevehipwell/helm-charts/tigera-operator --version 2.12.6
+helm upgrade --install tigera-operator oci://ghcr.io/stevehipwell/helm-charts/tigera-operator --version 2.13.0
 ```
 
 #### Verification
 
 As the OCI chart release is signed by [Cosign](https://github.com/sigstore/cosign) you can verify the chart before installing it by running the following command.
 
 ```shell
-cosign verify --certificate-oidc-issuer https://token.actions.githubusercontent.com --certificate-identity-regexp 'https://github\.com/action-stars/helm-workflows/\.github/workflows/release\.yaml@.+' --certificate-github-workflow-repository stevehipwell/helm-charts --certificate-github-workflow-name Release ghcr.io/stevehipwell/helm-charts/tigera-operator:2.12.6
+cosign verify --certificate-oidc-issuer https://token.actions.githubusercontent.com --certificate-identity-regexp 'https://github\.com/action-stars/helm-workflows/\.github/workflows/release\.yaml@.+' --certificate-github-workflow-repository stevehipwell/helm-charts --certificate-github-workflow-name Release ghcr.io/stevehipwell/helm-charts/tigera-operator:2.13.0
 ```
 
 ### Non-OCI Repository
@@ -44,7 +44,7 @@ Alternatively you can use the legacy non-OCI method via the following commands.
 
 ```shell
 helm repo add stevehipwell https://stevehipwell.github.io/helm-charts/
-helm upgrade --install tigera-operator stevehipwell/tigera-operator --version 2.12.6
+helm upgrade --install tigera-operator stevehipwell/tigera-operator --version 2.13.0
 ```
 
 ## Values
 
@@ -40,7 +40,7 @@ spec:
               properties:
                 apiServerDeployment:
                   description: |-
-                    APIServerDeployment configures the calico-apiserver (or tigera-apiserver in Enterprise) Deployment. If
+                    APIServerDeployment configures the calico-apiserver Deployment. If
                     used in conjunction with ControlPlaneNodeSelector or ControlPlaneTolerations, then these overrides
                     take precedence.
                   properties:
 
@@ -15,163 +15,97 @@ spec:
     - name: v1
       schema:
         openAPIV3Schema:
-          description: BGPConfiguration contains the configuration for any BGP routing.
           properties:
             apiVersion:
-              description: |-
-                APIVersion defines the versioned schema of this representation of an object.
-                Servers should convert recognized schemas to the latest internal value, and
-                may reject unrecognized values.
-                More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
               type: string
             kind:
-              description: |-
-                Kind is a string value representing the REST resource this object represents.
-                Servers may infer this from the endpoint the client submits requests to.
-                Cannot be updated.
-                In CamelCase.
-                More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
               type: string
             metadata:
               type: object
             spec:
-              description: BGPConfigurationSpec contains the values of the BGP configuration.
               properties:
                 asNumber:
-                  description: 'ASNumber is the default AS number used by a node. [Default: 64512]'
                   format: int32
                   type: integer
                 bindMode:
-                  description: |-
-                    BindMode indicates whether to listen for BGP connections on all addresses (None)
-                    or only on the node's canonical IP address Node.Spec.BGP.IPvXAddress (NodeIP).
-                    Default behaviour is to listen for BGP connections on all addresses.
                   type: string
                 communities:
-                  description: Communities is a list of BGP community values and their arbitrary names for tagging routes.
                   items:
-                    description: Community contains standard or large community value and its name.
                     properties:
                       name:
-                        description: Name given to community value.
                         type: string
                       value:
-                        description: |-
-                          Value must be of format `aa:nn` or `aa:nn:mm`.
-                          For standard community use `aa:nn` format, where `aa` and `nn` are 16 bit number.
-                          For large community use `aa:nn:mm` format, where `aa`, `nn` and `mm` are 32 bit number.
-                          Where, `aa` is an AS Number, `nn` and `mm` are per-AS identifier.
                         pattern: ^(\d+):(\d+)$|^(\d+):(\d+):(\d+)$
                         type: string
                     type: object
                   type: array
                 ignoredInterfaces:
-                  description: IgnoredInterfaces indicates the network interfaces that needs to be excluded when reading device routes.
                   items:
                     type: string
                   type: array
                 listenPort:
-                  description: ListenPort is the port where BGP protocol should listen. Defaults to 179
                   maximum: 65535
                   minimum: 1
                   type: integer
                 localWorkloadPeeringIPV4:
-                  description: |-
-                    The virtual IPv4 address of the node with which its local workload is expected to peer.
-                    It is recommended to use a link-local address.
                   type: string
                 localWorkloadPeeringIPV6:
-                  description: |-
-                    The virtual IPv6 address of the node with which its local workload is expected to peer.
-                    It is recommended to use a link-local address.
                   type: string
                 logSeverityScreen:
-                  description: 'LogSeverityScreen is the log severity above which logs are sent to the stdout. [Default: INFO]'
                   type: string
                 nodeMeshMaxRestartTime:
-                  description: |-
-                    Time to allow for software restart for node-to-mesh peerings.  When specified, this is configured
-                    as the graceful restart timeout.  When not specified, the BIRD default of 120s is used.
-                    This field can only be set on the default BGPConfiguration instance and requires that NodeMesh is enabled
                   type: string
                 nodeMeshPassword:
-                  description: |-
-                    Optional BGP password for full node-to-mesh peerings.
-                    This field can only be set on the default BGPConfiguration instance and requires that NodeMesh is enabled
                   properties:
                     secretKeyRef:
-                      description: Selects a key of a secret in the node pod's namespace.
                       properties:
                         key:
-                          description: The key of the secret to select from.  Must be a valid secret key.
                           type: string
                         name:
                           default: ""
-                          description: |-
-                            Name of the referent.
-                            This field is effectively required, but due to backwards compatibility is
-                            allowed to be empty. Instances of this type with an empty value here are
-                            almost certainly wrong.
-                            More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
                           type: string
                         optional:
-                          description: Specify whether the Secret or its key must be defined
                           type: boolean
                       required:
                         - key
                       type: object
                       x-kubernetes-map-type: atomic
                   type: object
                 nodeToNodeMeshEnabled:
-                  description: 'NodeToNodeMeshEnabled sets whether full node to node BGP mesh is enabled. [Default: true]'
                   type: boolean
                 prefixAdvertisements:
-                  description: PrefixAdvertisements contains per-prefix advertisement configuration.
                   items:
-                    description: PrefixAdvertisement configures advertisement properties for the specified CIDR.
                     properties:
                       cidr:
-                        description: CIDR for which properties should be advertised.
                         type: string
                       communities:
-                        description: |-
-                          Communities can be list of either community names already defined in `Specs.Communities` or community value of format `aa:nn` or `aa:nn:mm`.
-                          For standard community use `aa:nn` format, where `aa` and `nn` are 16 bit number.
-                          For large community use `aa:nn:mm` format, where `aa`, `nn` and `mm` are 32 bit number.
-                          Where,`aa` is an AS Number, `nn` and `mm` are per-AS identifier.
                         items:
                           type: string
                         type: array
                     type: object
                   type: array
                 serviceClusterIPs:
-                  description: |-
-                    ServiceClusterIPs are the CIDR blocks from which service cluster IPs are allocated.
-                    If specified, Calico will advertise these blocks, as well as any cluster IPs within them.
                   items:
-                    description: ServiceClusterIPBlock represents a single allowed ClusterIP CIDR block.
                     properties:
                       cidr:
                         type: string
                     type: object
                   type: array
                 serviceExternalIPs:
-                  description: |-
-                    ServiceExternalIPs are the CIDR blocks for Kubernetes Service External IPs.
-                    Kubernetes Service ExternalIPs will only be advertised if they are within one of these blocks.
                   items:
-                    description: ServiceExternalIPBlock represents a single allowed External IP CIDR block.
                     properties:
                       cidr:
                         type: string
                     type: object
                   type: array
+                serviceLoadBalancerAggregation:
+                  default: Enabled
+                  enum:
+                    - Enabled
+                    - Disabled
+                  type: string
                 serviceLoadBalancerIPs:
-                  description: |-
-                    ServiceLoadBalancerIPs are the CIDR blocks for Kubernetes Service LoadBalancer IPs.
-                    Kubernetes Service status.LoadBalancer.Ingress IPs will only be advertised if they are within one of these blocks.
                   items:
-                    description: ServiceLoadBalancerIPBlock represents a single allowed LoadBalancer IP CIDR block.
                     properties:
                       cidr:
                         type: string
 
@@ -17,29 +17,15 @@ spec:
         openAPIV3Schema:
           properties:
             apiVersion:
-              description: |-
-                APIVersion defines the versioned schema of this representation of an object.
-                Servers should convert recognized schemas to the latest internal value, and
-                may reject unrecognized values.
-                More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
               type: string
             kind:
-              description: |-
-                Kind is a string value representing the REST resource this object represents.
-                Servers may infer this from the endpoint the client submits requests to.
-                Cannot be updated.
-                In CamelCase.
-                More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
               type: string
             metadata:
               type: object
             spec:
-              description: BGPFilterSpec contains the IPv4 and IPv6 filter rules of the BGP Filter.
               properties:
                 exportV4:
-                  description: The ordered set of IPv4 BGPFilter rules acting on exporting routes to a peer.
                   items:
-                    description: BGPFilterRuleV4 defines a BGP filter rule consisting a single IPv4 CIDR block and a filter action for this CIDR.
                     properties:
                       action:
                         type: string
@@ -69,9 +55,7 @@ spec:
                     type: object
                   type: array
                 exportV6:
-                  description: The ordered set of IPv6 BGPFilter rules acting on exporting routes to a peer.
                   items:
-                    description: BGPFilterRuleV6 defines a BGP filter rule consisting a single IPv6 CIDR block and a filter action for this CIDR.
                     properties:
                       action:
                         type: string
@@ -101,9 +85,7 @@ spec:
                     type: object
                   type: array
                 importV4:
-                  description: The ordered set of IPv4 BGPFilter rules acting on importing routes from a peer.
                   items:
-                    description: BGPFilterRuleV4 defines a BGP filter rule consisting a single IPv4 CIDR block and a filter action for this CIDR.
                     properties:
                       action:
                         type: string
@@ -133,9 +115,7 @@ spec:
                     type: object
                   type: array
                 importV6:
-                  description: The ordered set of IPv6 BGPFilter rules acting on importing routes from a peer.
                   items:
-                    description: BGPFilterRuleV6 defines a BGP filter rule consisting a single IPv6 CIDR block and a filter action for this CIDR.
                     properties:
                       action:
                         type: string