Upgrade Supported ArgoCD Chart Version

[RoseSecurity]

Describe the Feature

Argo versions 0.1.0 through 2.10.0-rc1, v2.9.3, v2.8.7, v2.7.15 are affected by CVE-2024-22424, a CSRF attack when the attacker has the ability to write HTML to a page on the same parent domain as Argo CD.

Expected Behavior

Propose that we update the default values for Argo's chart from:

argo/argo-cd	5.19.12      	v2.5.9

to an unaffected version patched after 2.10-rc2, 2.9.4, 2.8.8, 2.7.16

Use Case

N/A

Describe Ideal Solution

Update default value for:

variable "chart_version" {
  type        = string
  description = "Specify the exact chart version to install. If this is not specified, the latest version is installed."
  default     = "5.19.12"
}

And validate it works as intended

Alternatives Considered

No response

Additional Context

No response

[mtb-xt]

We were able to upgrade ArgoCD's chart to version 5.55.0 without any problems. That's the last version of the chart without breaking changes, that bumps the app version to 2.10.
We also updated the image used from 2.10.0 to 2.10.14 without any issues, using chart 5.55.0

[RoseSecurity]

@mtb-xt How does this look? Any thoughts?

[mtb-xt]

@mtb-xt How does this look? Any thoughts?

Looks good :) Thank you!

[RoseSecurity]

Closing this issue as it has been completed