Update CRDs based on new kubernetes group updates

tjmoore4 · tjmoore4 · commit c1c7aef846fb · 2026-02-05T16:26:36.000-05:00
diff --git a/config/dev/crd/bases/postgres-operator.crunchydata.com_pgadmins.yaml b/config/dev/crd/bases/postgres-operator.crunchydata.com_pgadmins.yaml
@@ -1318,6 +1318,24 @@ spec:
                               description: Kubelet's generated CSRs will be addressed
                                 to this signer.
                               type: string
+                            userAnnotations:
+                              additionalProperties:
+                                type: string
+                              description: |-
+                                userAnnotations allow pod authors to pass additional information to
+                                the signer implementation.  Kubernetes does not restrict or validate this
+                                metadata in any way.
+
+                                These values are copied verbatim into the `spec.unverifiedUserAnnotations` field of
+                                the PodCertificateRequest objects that Kubelet creates.
+
+                                Entries are subject to the same validation as object metadata annotations,
+                                with the addition that all keys must be domain-prefixed. No restrictions
+                                are placed on values, except an overall size limitation on the entire field.
+
+                                Signers should document the keys and values they support. Signers should
+                                deny requests that contain keys they do not recognize.
+                              type: object
                           required:
                           - keyType
                           - signerName
@@ -1595,7 +1613,7 @@ spec:
                   resources:
                     description: |-
                       resources represents the minimum resources the volume should have.
-                      If RecoverVolumeExpansionFailure feature is enabled users are allowed to specify resource requirements
+                      Users are allowed to specify resource requirements
                       that are lower than previous value but must still be higher than capacity recorded in the
                       status field of the claim.
                       More info: https://kubernetes.io/docs/concepts/storage/persistent-volumes#resources
@@ -2283,6 +2301,24 @@ spec:
                                   description: Kubelet's generated CSRs will be addressed
                                     to this signer.
                                   type: string
+                                userAnnotations:
+                                  additionalProperties:
+                                    type: string
+                                  description: |-
+                                    userAnnotations allow pod authors to pass additional information to
+                                    the signer implementation.  Kubernetes does not restrict or validate this
+                                    metadata in any way.
+
+                                    These values are copied verbatim into the `spec.unverifiedUserAnnotations` field of
+                                    the PodCertificateRequest objects that Kubelet creates.
+
+                                    Entries are subject to the same validation as object metadata annotations,
+                                    with the addition that all keys must be domain-prefixed. No restrictions
+                                    are placed on values, except an overall size limitation on the entire field.
+
+                                    Signers should document the keys and values they support. Signers should
+                                    deny requests that contain keys they do not recognize.
+                                  type: object
                               required:
                               - keyType
                               - signerName
@@ -2767,9 +2803,10 @@ spec:
                     operator:
                       description: |-
                         Operator represents a key's relationship to the value.
-                        Valid operators are Exists and Equal. Defaults to Equal.
+                        Valid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.
                         Exists is equivalent to wildcard for value, so that a pod can
                         tolerate all taints of a particular category.
+                        Lt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).
                       type: string
                     tolerationSeconds:
                       description: |-
diff --git a/config/dev/crd/bases/postgres-operator.crunchydata.com_pgupgrades.yaml b/config/dev/crd/bases/postgres-operator.crunchydata.com_pgupgrades.yaml
@@ -1104,9 +1104,10 @@ spec:
                     operator:
                       description: |-
                         Operator represents a key's relationship to the value.
-                        Valid operators are Exists and Equal. Defaults to Equal.
+                        Valid operators are Exists, Equal, Lt, and Gt. Defaults to Equal.
                         Exists is equivalent to wildcard for value, so that a pod can
                         tolerate all taints of a particular category.
+                        Lt and Gt perform numeric comparisons (requires feature gate TaintTolerationComparisonOperators).
                       type: string
                     tolerationSeconds:
                       description: |-
diff --git a/config/dev/crd/bases/postgres-operator.crunchydata.com_postgresclusters.yaml b/config/dev/crd/bases/postgres-operator.crunchydata.com_postgresclusters.yaml
