mirrors/external-secrets
1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Code Activity
1983 commits 135 branches 173 tags 201 MiB
Commit graph

52 commits

Author SHA1 Message Date
dependabot[bot]
cf0c819c60
chore(deps): bump fkirc/skip-duplicate-actions from 4.0.0 to 5.2.0 (#1594) 
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 4.0.0 to 5.2.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v4.0.0...v5.2.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-10-04 22:07:34 +02:00
Moritz Johner
95ce6027a1
fix: run trivy only when authenticated (#1554) 
PRs from forked repos can not publish images, hence this scan fails.

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-09-15 23:40:02 +02:00
Moritz Johner
673f12456a
feat: run scanner on pr (#1553) 
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-09-15 17:17:52 +02:00
dependabot[bot]
229733e7fd
chore(deps): bump sigstore/cosign-installer from 2.5.1 to 2.6.0 (#1541) 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.1 to 2.6.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.1...v2.6.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-13 07:27:36 +02:00
Moritz Johner
ed0ceb8d84
fix: aws parameter store json decode, bump go 1.19 (#1525) 
* fix: parameter store should decode complex json values

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-09-06 19:46:36 +02:00
dependabot[bot]
90027b559c
chore(deps): bump sigstore/cosign-installer from 2.5.0 to 2.5.1 (#1480) 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.0...v2.5.1)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-08-22 20:18:46 +02:00
dependabot[bot]
67fedc840e
Kubernetes v1.24 upgrade (#1345) 
* build(deps): bump sigs.k8s.io/controller-runtime from 0.11.2 to 0.12.3

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.11.2 to 0.12.3.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.11.2...v0.12.3)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* feat: bump kubernetes 1.24

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: backwards-compatible vault implementation

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* feat: add audiences field to serviceAccountRef

This will be used by aws, azure, gcp, kubernetes & vault providers
in combination with TokenRequest API: it will _append_ audience claims
to provider-specific audiences.

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* feat: refactor kubernetes client to match provider/client interfaces

the kubernetes provider mixed up provider and client interfaces which
made it really hard to reason about. This commit separates into two
structs, each implements one interface.
The client struct fields have been renamed and annotated so their use
and scope is clear.

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: deprecate expirationSeconds

expirationSeconds is not needed because we generate a
service account token on the fly for a single use.
There will be no replacement for this.

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: rename token fetch audiences field

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

* fix: generate CRDs

Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Moritz Johner <beller.moritz@googlemail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Moritz Johner <beller.moritz@googlemail.com>
 2022-08-19 17:32:06 +02:00
dependabot[bot]
ae2d5fbfab
⬆️build(deps): bump sigstore/cosign-installer from 2.4.1 to 2.5.0 (#1412) 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.4.1 to 2.5.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.4.1...v2.5.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-08-03 11:30:25 -03:00
dependabot[bot]
ca4e42bd91
build(deps): bump sigstore/cosign-installer from 2.4.0 to 2.4.1 (#1319) 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.4.0 to 2.4.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.4.0...v2.4.1)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-04 18:53:44 -03:00
cpanato
5d67325213
update cosign installer action 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2022-06-11 12:08:28 +02:00
dependabot[bot]
76e3042290
build(deps): bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3.1.0...v3.2.0)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-16 08:05:30 +00:00
paul-the-alien[bot]
f569c78d8a
Merge pull request #1116 from external-secrets/dependabot/github_actions/docker/setup-qemu-action-2 
build(deps): bump docker/setup-qemu-action from 1 to 2
 2022-05-10 12:11:13 +00:00
paul-the-alien[bot]
2d36cb9dad
Merge pull request #1115 from external-secrets/dependabot/github_actions/docker/setup-buildx-action-2 
build(deps): bump docker/setup-buildx-action from 1 to 2
 2022-05-10 12:11:02 +00:00
dependabot[bot]
515e866ba4
build(deps): bump docker/setup-qemu-action from 1 to 2 
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1 to 2.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-09 08:05:35 +00:00
dependabot[bot]
8433f33f51
build(deps): bump docker/setup-buildx-action from 1 to 2 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-09 08:05:33 +00:00
dependabot[bot]
49d821575e
build(deps): bump docker/login-action from 1 to 2 
Bumps [docker/login-action](https://github.com/docker/login-action) from 1 to 2.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-09 08:05:30 +00:00
dependabot[bot]
71e3d8b0cb
build(deps): bump fkirc/skip-duplicate-actions from 3.4.1 to 4.0.0 
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 3.4.1 to 4.0.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v3.4.1...v4.0.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-18 13:31:44 +00:00
dependabot[bot]
03a1b86c9f
build(deps): bump actions/setup-go from 2 to 3 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2 to 3.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-11 08:06:16 +00:00
dependabot[bot]
589a56b9a2
build(deps): bump actions/cache from 2.1.7 to 3 
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.7 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.7...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-28 08:07:03 +00:00
cpanato
acd7788af2
add missing install of cosign in the CIs pipelines 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2022-03-20 16:57:49 +01:00
Carlos Tadeu Panato Junior
332977caba
sign images using cosign (#845) 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2022-03-19 21:07:50 +01:00
dependabot[bot]
a1c0934e01
build(deps): bump actions/checkout from 2 to 3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-07 08:06:46 +00:00
dependabot[bot]
a9b6dd4d13
build(deps): bump golangci/golangci-lint-action from 2 to 3.1.0 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 2 to 3.1.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v2...v3.1.0)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-02-28 08:05:44 +00:00
Moritz Johner
e015bed08d chore: update k8s / envtest 2022-01-28 19:51:07 +01:00
Moritz Johner
9c7abdfdac chore: update go to 1.17 2021-12-17 12:23:57 +01:00
dependabot[bot]
e2f237dc4d
Bump actions/cache from 2.1.6 to 2.1.7 
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.6 to 2.1.7.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.6...v2.1.7)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-11-29 08:05:28 +00:00
John Hobbs
e9d1002234 Update golangci-lint version in GitHub actions. 2021-10-28 00:32:28 -05:00
Lucas Severo Alves
559c50bd1d Use same linter version as other step 2021-10-23 15:39:31 +02:00
Lucas Severo Alves
2380ddb02f add golang-ci linter to check-diff step 2021-10-23 15:33:01 +02:00
Lucas Severo Alves
3fc5aa913b
chore: remove sonar manual step 2021-09-30 17:18:18 +02:00
Lucas Severo Alves
449bac5d65
fix: use sonar token as env var 2021-09-28 18:55:16 +02:00
Lucas Severo Alves
c6fa6386eb
fix: gh actions syntax 2021-09-28 18:52:04 +02:00
Lucas Severo Alves
199b6a5745
fix: cant run sonar on forks for now 2021-09-28 18:17:18 +02:00
Lucas Severo Alves
decec96b55
fix: expose sonar token 2021-09-28 17:19:03 +02:00
Serdar Kalaycı
dff4d27469 Add Sonar analysis to CI and push coverage to it 2021-09-20 16:35:31 +03:00
dependabot[bot]
356a656a7d
chore(deps): bump codecov/codecov-action from 2.0.2 to 2.0.3 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.2 to 2.0.3.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/v2.0.2...v2.0.3)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-08-30 08:02:40 +00:00
dependabot[bot]
dedb41376e
chore(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 3.4.1 
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 3.4.0 to 3.4.1.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Changelog](https://github.com/fkirc/skip-duplicate-actions/blob/master/CHANGELOG.md)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v3.4.0...v3.4.1)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-08-09 08:04:12 +00:00
paul-the-alien[bot]
4b72792f1f
Merge pull request #284 from external-secrets/dependabot/github_actions/codecov/codecov-action-2.0.2 
chore(deps): bump codecov/codecov-action from 1 to 2.0.2
 2021-08-07 09:21:15 +00:00
dependabot[bot]
baed468318
chore(deps): bump codecov/codecov-action from 1 to 2.0.2 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 1 to 2.0.2.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/v1...v2.0.2)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-07-26 08:02:56 +00:00
Moritz Johner
7a86987791 feat: add arm build 2021-07-21 23:44:53 +02:00
Moritz Johner
73ca014cfb feat: implement templateFrom 2021-06-28 21:29:09 +02:00
Lucas Severo Alves
6e97e2211d feat: add ok-to-test workflow 2021-06-13 15:36:05 +02:00
dependabot[bot]
123c97ad8b
chore(deps): bump actions/cache from 2.1.5 to 2.1.6 
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.5 to 2.1.6.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.5...v2.1.6)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-05-31 06:38:01 +00:00
Moritz Johner
7beec56522 feat: add basic e2e test 2021-04-25 15:44:15 +02:00
dependabot[bot]
ecd714488a
chore(deps): bump actions/cache from v2.1.4 to v2.1.5 
Bumps [actions/cache](https://github.com/actions/cache) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.4...1a9e2138d905efd099035b49d8b7a3888c653ca8)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-04-13 07:50:00 +00:00
paul-the-alien[bot]
109ade5859
Merge pull request #74 from external-secrets/dependabot/github_actions/actions/cache-v2.1.4 
chore(deps): bump actions/cache from v2 to v2.1.4
 2021-04-03 22:52:18 +00:00
dependabot[bot]
d163480898
chore(deps): bump actions/cache from v2 to v2.1.4 
Bumps [actions/cache](https://github.com/actions/cache) from v2 to v2.1.4.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2...26968a09c0ea4f3e233fdddbafd1166051a095f6)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-03-22 04:30:59 +00:00
dependabot[bot]
5a6cf20d6c
chore(deps): bump fkirc/skip-duplicate-actions from v2.1.0 to v3.4.0 
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from v2.1.0 to v3.4.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Changelog](https://github.com/fkirc/skip-duplicate-actions/blob/master/CHANGELOG.md)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v2.1.0...4c656bbdb6906310fa6213604828008bc28fe55d)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-03-22 04:30:54 +00:00
Kellin McAvoy
2083192b55 Fix CI docker buildx args 2021-03-21 17:38:40 -05:00
Markus Maga
5fcfdff74f
fix(ci): use correct env name GHCR_USERNAME 2021-03-18 02:28:06 +01:00