kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2024-12-15 17:51:20 +00:00

Author	SHA1	Message	Date
Charles-Edouard Brétéché	8d08250e07	feat: add autogen controllers to policy status (#3332 ) * feat: add autogen controllers to policy status Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * feat: add autogen controllers to policy status Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-03-10 23:51:29 +08:00
Charles-Edouard Brétéché	78239a2947	chore: gen helm crds from config crds (#3356 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-03-10 15:07:48 +00:00
Charles-Edouard Brétéché	d8da39d12d	refactor: introduce api common types (#3365 ) * fix: configmap resource filters generated by helm does not account for namespace Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: move api functions closer to the struct they belong to Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: introduce api common types Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-03-10 14:45:15 +00:00
Naman Lakhwani	126742ad57	adding emptyDir vol for keyless signing (#3366 ) * adding emptyDir vol Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com> * adding env TUF_ROOT Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>	2022-03-10 08:09:22 +00:00
Charles-Edouard Brétéché	753d24d53c	refactor: move api functions closer to the struct they belong to (#3363 ) * fix: configmap resource filters generated by helm does not account for namespace Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: move api functions closer to the struct they belong to Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-03-09 16:04:09 +00:00
Charles-Edouard Brétéché	ce5f648f30	refactor: introduce rules getters and setters (#3350 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> Co-authored-by: Prateek Pandey <prateekpandey14@gmail.com>	2022-03-09 15:28:31 +00:00
Charles-Edouard Brétéché	ea977b259c	refactor: move controller autogen annotation in api package (#3364 ) * fix: configmap resource filters generated by helm does not account for namespace Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refator: move controller autogen annotation in api package Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-09 21:48:04 +08:00
Shubham Nazare	4c1a8336b0	Add new test-case-selector flag to test command (#3183 ) * added new test-case flag to test command Signed-off-by: Shubham Nazare <shubham4443@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> Co-authored-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-03-09 07:40:53 +00:00
Ivan Wallis	deda7a5336	support RSA, ECDSA and EDDSA public key verification (#3362 ) Signed-off-by: Ivan Wallis <iwallis@gmail.com>	2022-03-08 21:58:14 -08:00
Charles-Edouard Brétéché	2987647692	fix: configmap resource filters generated by helm does not account for namespace (#3358 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-09 02:04:25 +08:00
Charles-Edouard Brétéché	51501cce9d	chore: check helm docs are up to date (#3310 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-03-08 15:10:53 +00:00
Vyankatesh Kudtarkar	148a892277	Fix any_all wildcard issue (#3352 )	2022-03-08 12:59:33 +00:00
Charles-Edouard Brétéché	8187b9331e	fix: invalid path in helm-test workflow (#3344 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-03-08 01:08:46 +00:00
Sambhav Kothari	e1ca384ecc	Add Bloomberg to adopters (#3348 )	2022-03-07 20:31:24 +00:00
Prateek Nandle	666130bf6c	updated description field of foreach (#3157 ) Signed-off-by: Prateeknandle <prateeknandle@gmail.com>	2022-03-07 19:26:19 +05:30
Charles-Edouard Brétéché	51db68ba20	chore: verify codegen in CI (#3343 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-07 15:13:36 +05:30
Gasmi Christophe	e0503088ec	Update generate clusterrole (#3336 ) - Update clusterrole.yaml - Fix apigroup for resourcequota and limitrange Signed-off-by: Christophe Gasmi <rekcah78@gmail.com>	2022-03-07 12:57:57 +05:30
Charles-Edouard Brétéché	90d0badda4	fix: CRD generation (#3334 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-06 11:07:51 -08:00
Charles-Edouard Brétéché	1293ef4691	refactor: reduce usage of reflect.DeepEqual (#3328 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-02 17:20:27 +00:00
Charles-Edouard Brétéché	93ad2d6011	fix: update codegen (#3329 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-02 22:19:21 +05:30
Charles-Edouard Brétéché	8cc883becc	fix: naming typos (#3327 ) fix: naming typos Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-03-02 07:29:33 +00:00
Charles-Edouard Brétéché	7232de45c6	refactor: introduce autogen package (#3316 ) * refactor: pass only spec instead of whole policy when possible Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: introduce autogen package Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-03-01 23:19:31 +00:00
Charles-Edouard Brétéché	1154612489	refactor: pass only spec instead of whole policy when possible (#3315 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-03-01 22:42:19 +00:00
Prateek Pandey	4846bd0293	fetch tag across all branches instead of current branch (#3324 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-03-01 11:59:28 -08:00
Naman Lakhwani	fd7addd2fa	add separate step for digest (#3321 ) Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>	2022-03-01 20:05:14 +05:30
Naman Lakhwani	985e2cc158	adding check for digest and update git command Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>	2022-03-01 18:36:16 +05:30
Naman Lakhwani	6b5bcfcc42	correcting makefile latest tag (#3314 ) Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>	2022-02-28 19:02:24 +00:00
Charles-Edouard Brétéché	1dd745f9a9	fix: helm install docs (#3312 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-02-28 15:49:19 +00:00
Charles-Edouard Brétéché	fef7bb6f0f	fix: seccomp profile (#3313 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-02-28 14:40:40 +00:00
Charles-Edouard Brétéché	c84939df00	chore: drop helm v2 (#3311 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-02-28 08:50:39 -05:00
Charles-Edouard Brétéché	c13f7a4fea	feat: gen kyverno helm chart docs (#3309 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-02-25 13:25:21 -05:00
Charles-Edouard Brétéché	b7f6fc81db	feat: gen kyverno-policies helm chart docs (#3301 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-02-25 16:22:00 +00:00
Naman Lakhwani	378a1d6b95	Fix workflow using regex in `main` (#3306 ) * using regex Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com> * added condition Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>	2022-02-25 08:48:11 +00:00
Naman Lakhwani	af98c00724	arranging permissions (#3293 ) Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-02-25 08:11:22 +00:00
José Hisse	c8a31ab16a	fix: helm chart broken when use generatecontrollerExtraResources (#3302 ) Signed-off-by: José Hisse <josehisse@gmail.com>	2022-02-25 07:35:34 +00:00
Charles-Edouard Brétéché	c79b66d3a3	feat: support background mode configuration in kyverno-policies chart (#3299 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-02-24 16:31:51 +00:00
Sambhav Kothari	c4075af3d1	Improve CLI test times by instantiating openapi controller once (#3297 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-02-24 23:34:12 +08:00
Emin AKTAS	388b160840	Fix namespace typo (#3298 ) Signed-off-by: Emin Aktas <emin.aktas@trendyol.com> Signed-off-by: eminaktas <eminaktas34@gmail.com>	2022-02-24 13:39:22 +00:00
skuethe	bf662b1ed4	fix: add support for other platforms before executing docker buildx (#3296 )	2022-02-24 11:36:10 +00:00
Prateek Pandey	66969d35ea	validate and block policy based on the matched kind cache (#3283 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Co-authored-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-02-23 22:27:18 +05:30
Charles-Edouard Brétéché	447bafbed5	fix: comma separated lists in config (#3290 ) This PR fixes comma separated lists in config. Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-02-23 16:15:44 +00:00
Sambhav Kothari	e9e96e7b1c	Run E2E tests on all supported k8s versions (#3256 )	2022-02-23 15:52:08 +00:00
Naman Lakhwani	a9c9b25bb5	latest will point to main (#3285 ) Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-02-23 15:30:49 +00:00
Sambhav Kothari	147fc6db56	Shallow clone git repositories for kyverno test command Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-02-23 23:12:34 +08:00
Naman Lakhwani	81ab535433	update trivy scanning (#3284 ) Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>	2022-02-23 10:40:07 +08:00
skuethe	016771acde	feat: add linux/s390x builds (#3277 ) Signed-off-by: skuethe <56306041+skuethe@users.noreply.github.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-02-22 23:40:46 +08:00
Vyankatesh Kudtarkar	e8bf16a00b	Fix label mutation while updating the secret (#3273 ) * Fix label mutation while updating the secret * Update util.go * fix converter issue * code indentation	2022-02-22 19:49:03 +08:00
Ryan White	c13aeca7fa	Modify capabilities for compatibility with Pod Security (#3274 ) Kyverno manifests are incompatible with the restricted Pod Security Standards included with Kubernetes 1.22 and 1.23 because the Pod Security admission controller looks for "ALL" in securityContext.capabilities.drop, but does not accept "all". `1b741f89aa/policy/check_capabilities_restricted.go (L88)` Signed-off-by: Ryan White <ryan@alzabo.io>	2022-02-22 08:14:17 +00:00
treydock	99efd8136f	Fix Helm releasing to preserve creation timestamps (#3268 )	2022-02-21 15:50:42 +00:00
Afzal Ansari	9f8d2aef8e	Added `kyverno test` subcommand for test manifest file (#3264 ) * Adds `kyverno test` subcommand for test manifest file Signed-off-by: afzal442 <afzal442@gmail.com> Adds sub cmd Signed-off-by: afzal442 <afzal442@gmail.com> Adds usage Signed-off-by: afzal442 <afzal442@gmail.com> * Refactors the help command Signed-off-by: afzal442 <afzal442@gmail.com> Refactors help cmd Signed-off-by: afzal442 <afzal442@gmail.com> * Modifies manifest desc and removes the unused test manifest Signed-off-by: afzal442 <afzal442@gmail.com> Adds changes Signed-off-by: afzal442 <afzal442@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-02-21 05:23:29 +00:00

1 2 3 4 5 ...

4064 commits