Charles-Edouard Brétéché
10361343c5
release: fix chart versions for 1.11.0-beta.1 ( #8476 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-09-20 23:13:47 +00:00
Charles-Edouard Brétéché
9ce8d37656
release: v1.11.0-beta.1 ( #8463 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-09-20 13:56:34 +00:00
Vishal Choudhary
e2469415b7
feat: add support for custom sigstore using TUF ( #8385 )
...
* feat; add support for custom sigstore using TUF
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add kuttl test
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add commit hash
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add kyverno.yaml
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update kyverno deployment
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update ordering
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update deployment
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update create image step
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove wait step
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: install crane
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: set sha on install crane
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add cosign installer
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update custom deployment
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: helm chart linting
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update Chart.yaml
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: helm values liniting error
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove step
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: kind-deploy-kyverno
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: create configmap in kyverno namespace
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update policy
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: create kyverno ns
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: use envfrom
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: indentation
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update tuf root
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add sigstore volume
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: nit
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove tuf root
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: use default tuf instead :(
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update Create kind cluster
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove root
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update impl
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: nit
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: use custom test
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove force
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: cosign initialize
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add yes flag
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* update manifest
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: move tuf to features
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update comments
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore: helmchart generate
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: trailing white space
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove old fields
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: decouple env config map from tuf
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* change the way we pass flags
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: re add envConfigMap
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix env vars
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* remove envConfigMap
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-09-18 13:16:08 +00:00
Mariam Fahmy
7db8800b87
chore: move policy exceptions to beta ( #8378 )
...
* chore: move policy exceptions to beta
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix kuttl test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: keep v2alpha1 as the storage version
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: avoid using type aliases
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-09-14 14:23:51 +00:00
oaxiento
d4951476b2
fix: helm pre-delete-hook ( #8381 )
...
Signed-off-by: Markus Mansshardt <15368510+oaxiento@users.noreply.github.com>
2023-09-13 12:38:06 +00:00
Yannic Nevado Hidalgo
86039a3b32
feature(charts): optionally set resourceNames on extraResources for cleanup-controller ( #8307 )
...
Signed-off-by: yanehi <nevado-git@magenta.de>
Signed-off-by: Yannic Nevado Hidalgo <nevado-git@magenta.de>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-09-07 19:43:28 +00:00
Mariam Fahmy
29bb18d633
chore: remove validating admission policy support from v1.26 ( #8294 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-09-07 07:50:56 +00:00
Mariam Fahmy
8732183cc6
feat: generate backgroundscan reports for validating admission policies ( #8135 )
...
* feat: generate backgroundscan reports for validating admission policies
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: skip validate check images if errors are encourted when validating the resource
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-09-05 11:42:17 +00:00
Mariam Fahmy
381fbedf21
fix: check if VAPs are registered in the API server or not ( #8219 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-09-04 10:16:30 +00:00
Vishal Choudhary
478d324007
feat: remove description from deprecated fields ( #8186 )
...
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
2023-08-31 22:23:44 +00:00
Mariam Fahmy
c583b64120
feat: generate validating admission policies and their bindings from Kyverno policies ( #7840 )
...
* feat: generate validating admission policies and their bindings from Kyverno policies
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add generate VAPs feature flag
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: use container flags instead of feature flags
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: limit VAP generation to cluster policies
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add policy checks for generating VAPs
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: rename package
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: translate match/exclude resources in Kyverno policies to their alternatives in validating admission policies
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add vap info in kyverno policy status
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: delete the translation of
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add kuttl tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add generateValidatingAdmissionPolicy feature flag in the helm chart
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: update codegen
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add validating admission policy kuttl tests in the workflow
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: check K8s server version
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix lint issue
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: remove the kind config of VAPs
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-08-31 10:25:21 +00:00
Vishal Choudhary
62634af6aa
feat: migrate ignoreSCT from rekor to ctlog ( #8166 )
...
* feat: migrate ignoreSCT from rekor to ctlog
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: update tests for new crd
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
---------
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-30 08:39:49 +02:00
Charles-Edouard Brétéché
ecc7b87df6
chore: remove old comment from helm chart ( #8142 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-28 20:35:08 +00:00
Charles-Edouard Brétéché
0f9fe30c08
feat: allow overriding ca and tls secret names ( #8137 )
...
* feat: allow overriding ca and tls secret names
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-28 14:05:49 +00:00
Charles-Edouard Brétéché
ce66667779
chore: add .helmignore to .helmignore ( #8136 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-28 10:57:13 +00:00
Charles-Edouard Brétéché
ba2a787434
fix: conditions v2beta1 help ( #8115 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-25 08:49:24 +00:00
Mariam Fahmy
10172ae8e0
feat: support variables for CEL in Kyverno policies ( #8103 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-24 10:00:27 +00:00
Charles-Edouard Brétéché
87728f1771
refactor: background controller permissions ( #8083 )
...
* fix: reduce background controller permissions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* debug
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-23 12:29:56 +00:00
Mariam Fahmy
19b1944bc3
chore: replace usage of v1beta1 with v1alpha1 for cel subrule ( #8082 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-08-22 11:33:33 +00:00
Mariam Fahmy
cb1433b70b
chore: replace usage of v1alpha1 with v1beta1 for cel subrule ( #8075 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-08-21 10:38:31 +00:00
Charles-Edouard Brétéché
d7771cb835
fix: image pull policy missing ( #8067 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-18 15:01:04 +00:00
Charles-Edouard Brétéché
a3403131d6
feat: add match conditions support in webhooks ( #8042 )
...
* feat: add match conditions support in webhooks
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chart
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* release notes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* changelog
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix configmap
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* warning
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-08-18 08:32:15 +00:00
Charles-Edouard Brétéché
57a0f81040
feat: use k8s 1.28 libs ( #8037 )
...
* feat: use k8s 1.28 libs
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix validating admission policies
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix a typo
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-08-18 03:54:05 +00:00
Johannes Kleinlercher
df7027d11c
feat: possibility to create a GrafanaDashboard CR ( #7992 )
...
* feat: possibility to create a GrafanaDashboard CR
* fix: support more than one dashboard in configmap
* add changelog and update documentation
---------
Signed-off-by: Johannes Kleinlercher <johannes@kleinlercher.at>
Signed-off-by: treydock <treydock@gmail.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: treydock <treydock@gmail.com>
Co-authored-by: treydock <tdockendorf@osc.edu>
2023-08-15 16:38:19 +00:00
Vishal Choudhary
e9e44291bf
Support for Cosign 2.0 ( #7248 )
...
* cosign 2.0 version upgrade
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* IgnoreTlog and IgnoreSCT updated
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* removed cli packages
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* lazy evaluate vars in conditions (#7238 )
* lazy evaluate vars in conditions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove unnecessary conversion
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* Update test/conformance/kuttl/validate/clusterpolicy/standard/variables/lazyload/conditions/03-manifests.yaml
Signed-off-by: shuting <shutting06@gmail.com>
* Update test/conformance/kuttl/validate/clusterpolicy/standard/variables/lazyload/README.md
Signed-off-by: shuting <shutting06@gmail.com>
* added error check in test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
Co-authored-by: kyverno-bot <104836976+kyverno-bot@users.noreply.github.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* in-toto-golang update
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* added rekor
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* quote image in error (#7259 )
Signed-off-by: bakito <github@bakito.ch>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: auto update webhooks not configuring fail endpoint (#7261 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix latest version check (#7263 )
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore(deps): bump svenstaro/upload-release-action from 2.5.0 to 2.6.0 (#7270 )
Bumps [svenstaro/upload-release-action](https://github.com/svenstaro/upload-release-action ) from 2.5.0 to 2.6.0.
- [Release notes](https://github.com/svenstaro/upload-release-action/releases )
- [Changelog](https://github.com/svenstaro/upload-release-action/blob/master/CHANGELOG.md )
- [Commits](7319e4733e...58d5258088#7272 )
Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime ) from 0.14.6 to 0.15.0.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases )
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md )
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.14.6...v0.15.0 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add yaml util to check empty document (#7276 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (#7274 )
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (#7274 )
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (#7274 )
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* go mod update
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* removed cosign 1.13.1 dependency
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* added default rekor url
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* updated cosign option
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore(deps): bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 (#7274 )
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* go mod update
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* go sum fix
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* NIT
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix failing test: Test_VerifyManifest_MustAll_InvalidYAML
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* suggestions from jim
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* go mod fix
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* updates to cosign verification
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* kuttl test ignore sct
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* go mod fixes
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* go mod update
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* downgrading gcr version
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* null pointer error
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* updated failing cli tests
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* updated kuttl test with complete subjects
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fixed issue with wildcard replacement
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* engine tests
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* removed conflicts with notary
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* updated go mod
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* codegen and test
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* added pubkeys test
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* add default CTLogPubKeys
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* cleanup
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* unwanted test
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: auth checks with the APIVersion and the subresource (#7628 )
* fix auth checks with apiVersion and subresource
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add kuttl tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* remove duplicate code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update permissions
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: harden rbac permissions (#7638 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore(deps): bump sigstore/cosign-installer from 3.0.5 to 3.1.0 (#7664 )
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.0.5 to 3.1.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](dd6b2e2b61...d13028333d#7663 )
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.3 to 2.2.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](80e868c13c...08b4669551#7650 )
* Bump notation-go from 1.0.0-rc.3 -> 1.0.0-rc.6
Signed-off-by: webstradev <e.s.westra.95@gmail.com>
* fixed tests
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* added tests for repository
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
---------
Signed-off-by: webstradev <e.s.westra.95@gmail.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Co-authored-by: webstradev <e.s.westra.95@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
* fix: vscode debug config (#7653 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: pr updater workflow (#7665 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: add specific loaders from #7597 (#7671 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: add cluster select and relabling config for ServiceMonitors (#7659 )
* feat: add cluster select and relabling config for ServiceMonitors
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
* feat: add cluster select and relabling config for ServiceMonitors
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
---------
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
* fix: cleanup controller context from #7597 (#7672 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: cleanup controller rbac (#7669 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: migrate context loaders (part 1) from #7597 (#7676 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: migrate context loaders (part 2) from #7597 (#7677 )
* refactor: migrate context loaders (part 1) from #7597
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: migrate context loaders (part 2) from #7597
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: add lazy loading feature flag (#7680 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: image verification (#7652 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Fix deferred loading (#7597 )
* handle nested contexts
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add feature flag
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add kuttl tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix linter issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix CLI regclient
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: token permissions on report vulns workflow (#7611 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: token permissions (#7619 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: update the flag descriptions of the reports-controller (#7617 )
Signed-off-by: emmanuel-ferdman <emmanuelferdman@gmail.com>
* fix: panic if env var not defined (#7613 )
* fix: panic if env var not defined
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* use toggles instead of a flag
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update toggle name
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update toggle name
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix roles
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix role
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update manifests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove extra unlock
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix loader reset
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* propagate context
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cm resolver
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* level management
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* address review comments
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add enableDeferredLoading to other controllers
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* re-enable ACR credhelper
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* improve tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove image registry client init
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* check for invalid reset/restore
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* recursive kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add pre/post queries
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add check for a recursive match
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* new test suite
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* eval loaders at creation level
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add an index for resolving deps in order
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* improve comment
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* extract remove method
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* merge main
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* flags
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feature flag
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix flag
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* two rules kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* revert
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* per rule checkpoint
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix mutate chained rules
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* per rule checpoint/restore
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* log error
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: emmanuel-ferdman <emmanuelferdman@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Emmanuel Ferdman <emmanuelferdman@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
* fix: factorise confimap informer code (#7667 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
* chore(deps): bump sigstore/cosign-installer from 3.1.0 to 3.1.1 (#7689 )
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](d13028333d...6e04d228eb#7688 )
Signed-off-by: JaeHeung Han <hylowaker@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: add background only policy support (#6666 )
* feat: add background only policy support
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* webhook
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* validation
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* all disabled
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: pr updater workflow (#7697 )
* fix: pr updater workflow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Update .github/workflows/pr-update.yaml
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
* fix: customizable tracer configuration (#7644 )
* fix: customizable tracer configuration
Signed-off-by: Daniel Laszlo <laszlodaniel@icloud.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: harden rbac permissions (#7638 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* chore(deps): bump sigstore/cosign-installer from 3.0.5 to 3.1.0 (#7664 )
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.0.5 to 3.1.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](dd6b2e2b61...d13028333d#7663 )
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.1.3 to 2.2.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](80e868c13c...08b4669551#7650 )
* Bump notation-go from 1.0.0-rc.3 -> 1.0.0-rc.6
Signed-off-by: webstradev <e.s.westra.95@gmail.com>
* fixed tests
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* added tests for repository
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
---------
Signed-off-by: webstradev <e.s.westra.95@gmail.com>
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Co-authored-by: webstradev <e.s.westra.95@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: vscode debug config (#7653 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: pr updater workflow (#7665 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* refactor: add specific loaders from #7597 (#7671 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* feat: add cluster select and relabling config for ServiceMonitors (#7659 )
* feat: add cluster select and relabling config for ServiceMonitors
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
* feat: add cluster select and relabling config for ServiceMonitors
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
---------
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: cleanup controller context from #7597 (#7672 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: cleanup controller rbac (#7669 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* refactor: migrate context loaders (part 1) from #7597 (#7676 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* refactor: migrate context loaders (part 2) from #7597 (#7677 )
* refactor: migrate context loaders (part 1) from #7597
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* refactor: migrate context loaders (part 2) from #7597
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* feat: add lazy loading feature flag (#7680 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: image verification (#7652 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* Fix deferred loading (#7597 )
* handle nested contexts
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add feature flag
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add kuttl tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix linter issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix CLI regclient
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: token permissions on report vulns workflow (#7611 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: token permissions (#7619 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: update the flag descriptions of the reports-controller (#7617 )
Signed-off-by: emmanuel-ferdman <emmanuelferdman@gmail.com>
* fix: panic if env var not defined (#7613 )
* fix: panic if env var not defined
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* use toggles instead of a flag
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update toggle name
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update toggle name
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix roles
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix role
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update manifests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove extra unlock
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix loader reset
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* propagate context
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cm resolver
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* level management
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* address review comments
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add enableDeferredLoading to other controllers
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* re-enable ACR credhelper
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* improve tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove image registry client init
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* check for invalid reset/restore
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* recursive kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add pre/post queries
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add check for a recursive match
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* new test suite
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* eval loaders at creation level
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add an index for resolving deps in order
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* improve comment
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* extract remove method
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* merge main
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* flags
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feature flag
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix flag
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* two rules kuttl test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* revert
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* per rule checkpoint
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix mutate chained rules
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* per rule checpoint/restore
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* log error
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: emmanuel-ferdman <emmanuelferdman@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Emmanuel Ferdman <emmanuelferdman@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* fix: factorise confimap informer code (#7667 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
* chore(deps): bump sigstore/cosign-installer from 3.1.0 to 3.1.1 (#7689 )
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](d13028333d...6e04d228eb#7704 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* test: add kuttl tests for background only policies (#7709 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Feat: Upgrade controller-gen to v0.12.0 and fix tooling (#7683 )
* Upgrade controller-gen and fix tooling
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Address comments
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Add a marker in the sed command
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Upgrade to the latest version and rearrange the annotations
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Fix failing Verify Codegen tests
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Remove unnecessary file
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Restore original version in test folder
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Add creationTimestamp: null again in the test folder
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
---------
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
Co-authored-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: release signing (#7711 ) (#7713 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: use github token instead of pat (#7716 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: reduce token permissions (#7719 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: reduce token permissions (#7721 )
* fix: reduce token permissions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: reduce token permissions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: make `test --fail-only` return 1 if there are failed tests (#7717 )
Signed-off-by: Carles Figuerola <cfiguerola@expediagroup.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* remove redundant tests (#7702 )
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: use gh token instead of pat (#7723 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: remove obsolete scripts (#7720 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: reduce token permission (#7729 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: use github token instead of pat (#7727 )
* fix: remove jmespath replace directive
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: use github token instead of pat
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: use golang builtin version management (#7654 )
* fix: use golang builtin version management
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: template for user setup in kuttl (#7731 )
Signed-off-by: Alok N <alokme123@gmail.com>
* feat: Add option to add imagePullSecrets to cleanup CronJobs (#7730 )
* Add option to add imagePullSecrets to cleanup CronJobs
Signed-off-by: Alexander Olzem <olzemal@pm.me>
* Update chart README
Signed-off-by: Alexander Olzem <olzemal@pm.me>
---------
Signed-off-by: Alexander Olzem <olzemal@pm.me>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: typo in check cmd (#7733 )
Signed-off-by: emmanuel-ferdman <emmanuelferdman@gmail.com>
* fix: nits in cli flags (#7736 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: bump ko version (#7738 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: bump kind node versions (#7737 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: refactor cli values loading and remove dead code (#7739 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* [Feature] round() JMESPath function (#7489 )
* adding roundoff
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* removing unnecessary
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* adding test
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* adding edge case
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* fixing error
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* updating function call
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* updating function jpRound
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* error handling negative
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* fix
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* parsing
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cleanup
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore(deps): bump ubuntu from `6120be6` to `0bced47` in /.devcontainer (#7744 )
Bumps ubuntu from `6120be6` to `0bced47`.
---
updated-dependencies:
- dependency-name: ubuntu
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* fix: improve cli apply args check (#7746 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: remove cli dead code (#7748 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* Replaced gcr crane with gcr remote (#7747 )
* fix: oras-go/v2 version in go.sum
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* refactor: move kyverno constants out of v1 package (#7760 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: use register-gen to register k8s types (#7761 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore(deps): bump fluxcd/flux2 from 0.41.2 to 2.0.0 (#7764 )
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 0.41.2 to 2.0.0.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](dbda8fbdb8...9ea0a535ea#7765 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: add table output to cli apply command (#7757 )
* feat: add table output to cli apply command
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* factorise
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
* chore: bump cosign in gh workflows (#7715 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: switch to deepcopy-gen (#7766 )
* chore: switch to deepcopy-gen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: increase linter timeout (#7767 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* undo: revert back to cosign 2.0.2
cosign 2.1.1 has dependency conflicts with oras
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* remove markers
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: remove 0_14 version of gcr
k8s-sigstore-manifest got a new version so we can finally upgrade gcr to v0.15
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* add: add logging to tlogs and sct
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* undo: remove registryOpts in favor of registry client opts
added the missing parts from registryOptions in registry client opts
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore: add generated files
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore: clean go mod
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: remove bad logs
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* bug: fix go mod
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: update kubebuilder version in crds
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* update: rollback policy to ignore tlog
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* chore: update codegen
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
---------
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Signed-off-by: bakito <github@bakito.ch>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: webstradev <e.s.westra.95@gmail.com>
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
Signed-off-by: emmanuel-ferdman <emmanuelferdman@gmail.com>
Signed-off-by: JaeHeung Han <hylowaker@users.noreply.github.com>
Signed-off-by: Daniel Laszlo <laszlodaniel@icloud.com>
Signed-off-by: Daniel Laszlo <daniel.laszlo@bitpanda.com>
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
Signed-off-by: Carles Figuerola <cfiguerola@expediagroup.com>
Signed-off-by: Alok N <alokme123@gmail.com>
Signed-off-by: Alexander Olzem <olzemal@pm.me>
Signed-off-by: Rexbeast2 <ssukhveer514@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shutting06@gmail.com>
Co-authored-by: kyverno-bot <104836976+kyverno-bot@users.noreply.github.com>
Co-authored-by: Marc Brugger <github@bakito.ch>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: webstradev <e.s.westra.95@gmail.com>
Co-authored-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
Co-authored-by: Emmanuel Ferdman <emmanuelferdman@gmail.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: JaeHeung Han <hylowaker@users.noreply.github.com>
Co-authored-by: Daniel Laszlo <laszlodaniel@icloud.com>
Co-authored-by: Md Shahbaz Alam <shahbazalam75508@gmail.com>
Co-authored-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
Co-authored-by: Carles-Figuerola <carles@figuerola.info>
Co-authored-by: Alok Naushad <alokme123@gmail.com>
Co-authored-by: Alex Olzem <olzemal@gmail.com>
Co-authored-by: SukhveerS <78963782+Rexbeast2@users.noreply.github.com>
2023-08-15 14:25:55 +00:00
treydock
0b5f9a0f25
feat(chart) Allow podSecurityContext and securityContext for webhooksCleanup ( #7970 )
...
Fixes #7962
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-07 12:24:53 +00:00
Vishal Choudhary
b385693509
feat: add basic structure for image verify cache ( #7890 )
...
* feat: add interface for image verify cache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add basic client for cache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add ttl to client
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add flags and flag setup
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: added a default image verify cache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add propogation of cache to image verifier
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add useCache to image verification types
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* bug: add ivcache to image verifier
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: add logger to cache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* typo: DisabledImageVerfiyCache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* typo: DisabledImageVerfiyCache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* Update cmd/internal/flag.go
Signed-off-by: shuting <shutting06@gmail.com>
* feat: add use cache to v2beta1 crd
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* bug: change public attribute TTL to private
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: replace nil in test with disabled cache
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* fix: convert ttl time to time.Duration
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: update opts to use time.Duration
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat:add policy version and remove delete functions
by adding policy version, old entries will automatically become outdated and we will not have to remove them manually
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* feat: remove clear and update get and set to take interface as input
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* style: fix lint issue
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
---------
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Signed-off-by: shuting <shutting06@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-06 21:54:52 +02:00
Mike Bryant
fd67707c00
feat: Add support for server-side-apply in generate rules ( #7705 )
...
* feat: Add support for server-side-apply in generate rules
Signed-off-by: Mike Bryant <mike@mikebryant.me.uk>
* chore: run make codegen-all
Signed-off-by: Mike Bryant <mike.bryant@mettle.co.uk>
* chore: Remove unnecessary file I got from copy/paste
Signed-off-by: Mike Bryant <mike.bryant@mettle.co.uk>
---------
Signed-off-by: Mike Bryant <mike@mikebryant.me.uk>
Signed-off-by: Mike Bryant <mike.bryant@mettle.co.uk>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-08-02 17:59:37 +00:00
Ved Ratan
9f2cc6c99c
feat: add ttl controller ( #7821 )
...
* added the ttl controller
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fixed label and vars
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* added logger
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* applied fixes
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* removed comments
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* more lint fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* applied changes
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* minor fixes
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix logger, separate parse logic
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* added tests
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* added kuttl tests, validation utilities
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* commented code
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* renamed tests
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix test
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* created log.go
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix log.go
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* added README.md refactor code
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* added validation webhook
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* label-validation fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* added flag, updated verbs
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* updated verbs
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* updated helm chart
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* test fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* linter
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* imporoved webhook validation
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* linter fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* lint fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* fix codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* webhook names and path constants
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* constant label
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix label selector
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl test fix
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
* helm docs
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix controller logger
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: manager logger
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix failure policy
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* move kuttl tests in separate job
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* remove rbac steps
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* remove configmaps from core cluster role
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix logger
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* rename flag
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix error
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Ved Ratan <vedratan8@gmail.com>
Signed-off-by: Ved Ratan <82467006+VedRatan@users.noreply.github.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-08-02 16:47:40 +02:00
Alexej Disterhoft
590dce5830
fix(chart): only create ServiceMonitor if cluster supports it ( #7926 )
...
* fix: only create ServiceMonitor if cluster supports it
Adds an additional check to the ServiceMonitor template to ensure that
the cluster supports the `monitoring.coreos.com/v1` API version.
Signed-off-by: Alexej Disterhoft <alexej@disterhoft.de>
2023-07-28 12:27:36 +00:00
Jim Bugwadia
be2abbeaa8
add flag for policy reports ( #7888 )
...
* add flag for policy reports
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove logger param
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update launch
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove logging changes
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove logging changes
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove logging changes
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update Helm chart
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2023-07-26 12:22:51 +08:00
treydock
2273529a35
fix(policy chart): Skip DELETE requests on policies using deny statements ( #7883 )
...
Fixes #7456
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Co-authored-by: shuting <shuting@nirmata.com>
2023-07-24 14:29:35 +00:00
treydock
9429e12281
feat(chart) Add configurations for cleanup jobs and webhooks ( #7871 )
...
allow nodeSelector, tolerations and affinity settings for webhooksCleanup
allow affinity settings for cleanup jobs
Add helper to handle the labels for cleanup jobs, add component label
Fixes #7843
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Co-authored-by: shuting <shuting@nirmata.com>
2023-07-21 03:30:44 +00:00
treydock
752185c5af
Add nodeSelector for cleanupJob CronJob resources ( #7851 )
...
Fixes #7826
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
2023-07-19 13:40:31 +00:00
Marc Brugger
5505d3e085
feat: allow pod labels for cleanup jobs ( #7808 )
...
Signed-off-by: bakito <github@bakito.ch>
2023-07-11 17:11:13 +02:00
Paul N
faa50615d6
fix: admission controller rbac templating ( #7774 )
...
Fixes an regression introduced in #7633 where the helm template would render multiple
resources on the same line, resulting in invalid yaml.
This removes the hyphen in the template to ensure that each resource is
rendered on a new line
Signed-off-by: Paul Nicholson <brenix@gmail.com>
2023-07-07 11:36:42 +02:00
Alex Olzem
b9d3e9bb58
feat: Add option to add imagePullSecrets to cleanup CronJobs ( #7730 )
...
* Add option to add imagePullSecrets to cleanup CronJobs
Signed-off-by: Alexander Olzem <olzemal@pm.me>
* Update chart README
Signed-off-by: Alexander Olzem <olzemal@pm.me>
---------
Signed-off-by: Alexander Olzem <olzemal@pm.me>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-07-01 22:16:18 +00:00
Md Shahbaz Alam
41c3490ba9
Feat: Upgrade controller-gen to v0.12.0 and fix tooling ( #7683 )
...
* Upgrade controller-gen and fix tooling
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Address comments
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Add a marker in the sed command
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Upgrade to the latest version and rearrange the annotations
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Fix failing Verify Codegen tests
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Remove unnecessary file
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Restore original version in test folder
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
* Add creationTimestamp: null again in the test folder
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
---------
Signed-off-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
Co-authored-by: shahbaz <shahbaz@shahbaz.myguest.virtualbox.org>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-29 15:58:18 +00:00
Charles-Edouard Brétéché
1d5fe217da
feat: add background only policy support ( #6666 )
...
* feat: add background only policy support
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* webhook
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* validation
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* kuttl
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* all disabled
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-28 12:54:27 +00:00
Charles-Edouard Brétéché
441641515a
feat: add lazy loading feature flag ( #7680 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-27 13:44:15 +08:00
Charles-Edouard Brétéché
f9209de3ff
fix: cleanup controller rbac ( #7669 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-26 15:38:00 +00:00
Charles-Edouard Brétéché
f3a5a885e0
fix: cleanup controller context from #7597 ( #7672 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-26 14:57:23 +00:00
Frank Jogeleit
8aef874d75
feat: add cluster select and relabling config for ServiceMonitors ( #7659 )
...
* feat: add cluster select and relabling config for ServiceMonitors
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
* feat: add cluster select and relabling config for ServiceMonitors
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
---------
Signed-off-by: Frank Jogeleit <frank.jogeleit@lovoo.com>
2023-06-26 14:24:15 +00:00
Charles-Edouard Brétéché
9636eb7e3a
fix: harden rbac permissions ( #7638 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-26 11:57:24 +08:00
Charles-Edouard Brétéché
e267a1dacf
fix: harden certs secrets management ( #7634 )
...
* fix: harden certs secrets management
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* rbac
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* informers
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-22 20:14:53 +08:00
shuting
2264d21cd2
enable webhook clean up ( #7633 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-06-22 09:14:41 +00:00
Charles-Edouard Brétéché
511e9fefaf
fix: harden cleanup controller rbac ( #7626 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-21 12:53:48 +00:00
Charles-Edouard Brétéché
76139ea0ce
fix: service account name env var defined twice ( #7623 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-21 07:29:09 +00:00
Charles-Edouard Brétéché
362c5db2ed
fix: panic if env var not defined ( #7613 )
...
* fix: panic if env var not defined
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-06-21 04:12:01 +00:00
Vishal Choudhary
cec6a8ab20
Helpers to providers ( #7572 )
...
* renamed helpers
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
* related changes
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
---------
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
2023-06-16 20:25:46 +00:00
