kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-07 00:17:13 +00:00

Author	SHA1	Message	Date
Yashvardhan Kukreja	10c714d5ba	feat: [preconditions, conditions] added backwards-compatible support for logical operators (#1604 ) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-03-01 20:31:06 -08:00
Yashvardhan Kukreja	6f15432a21	added: make target to auto generate code (#1603 ) * added: make auto-generate target to sync the auto-generated code by kubebuilder Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com> * synced: all the auto-generable files with kubebuilder's controller-gen Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-03-01 10:58:58 -08:00
Arsh Sharma	da8e449d3c	fix: removed validator (#1646 ) Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>	2021-02-26 11:27:21 -08:00
Arsh Sharma	86879bd267	feat(operators): supporting subset checking (#1613 ) * fix(operators): supporting subset checking Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * fix(operators): removed print statement Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * test(operators): added test file for in Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * fix(operators): fixed switching Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * tests(operators): completed tests for In and NotIn Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * chore(operators): code cleanup Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * chore(operators): added comments for tests Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * fix(operators): changed logic based on new definitions Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * test: updated NotIn tests Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>	2021-02-26 10:53:54 -08:00
Pooja Singh	070f13783f	added namespace label in context (#1644 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-02-25 20:52:53 -08:00
Jim Bugwadia	0d1f0b5897	Merge pull request #1636 from realshuting/1621_fix_configmap_variables Substitute variables in context.configMap	2021-02-25 19:53:11 -08:00
Jim Bugwadia	b0ac8c5610	Merge pull request #1645 from realshuting/1340_json_patch Support AllowMissingPathOnRemove and EnsurePathExistsOnAdd in patchesJSON6902	2021-02-25 19:51:10 -08:00
Arsh Sharma	a0d28f0b16	fix: list operators in deny conditions (#1641 ) * fix: list operators in deny conditions Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * fix: regenerated YAMLs Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>	2021-02-25 19:13:35 -08:00
Pooja Singh	f438e0d5e6	Fix for - Generate policy fails if trigger resource name exceed 58 characters (#1631 ) * seperated generated-by label Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * restricted label to 63 characters Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * seperated labels and restriced char count to 63 Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-02-25 18:48:45 -08:00
Shuting Zhao	7795f335c8	fix negative index Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-25 18:36:13 -08:00
Shuting Zhao	517c60fadc	add unit tests Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-25 18:02:52 -08:00
Shuting Zhao	c4ebef7b0d	- support AllowMissingPathOnRemove and EnsurePathExistsOnAdd in patchesJSON6902 - upgrade to evanphx/json-patch/v5 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-25 15:25:07 -08:00
Shuting Zhao	492d0e8009	remove kustomize patchesJSON6902 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-25 15:25:07 -08:00
Shuting Zhao	edc89c7b50	fix unit test Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-22 17:22:34 -08:00
Shuting Zhao	d770d6680b	add request.namespace in the background process Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-22 17:22:23 -08:00
Shuting Zhao	17c72c1578	substitute variables in context.configMap Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-22 16:27:20 -08:00
Raj Babu Das	7a1629aa9d	Adding parallel GitHub pipeline to reduce the build time (#1635 ) * refactoring github workflow Signed-off-by: rajdas98 <mail.rajdas@gmail.com> * refactoring github workflow Signed-off-by: rajdas98 <mail.rajdas@gmail.com> * stage-pipeline Signed-off-by: rajdas98 <mail.rajdas@gmail.com> * Refactoring release and push github workflow Signed-off-by: rajdas98 <mail.rajdas@gmail.com> * refactoring github workflow Signed-off-by: rajdas98 <mail.rajdas@gmail.com> * adding release-cli-via-krew Signed-off-by: rajdas98 <mail.rajdas@gmail.com>	2021-02-22 14:48:11 -08:00
treydock	e3a8c5091c	Fix Helm chart notes to use template values (#1634 ) Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>	2021-02-22 13:22:28 -08:00
shuting	267be0815f	Bug fixes - policy validation, auto-generated rules, apiCall support in mutate and generate (#1629 ) * Fix invalid policy reports generated for blocked resource Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix 1464 - copy context and preconditions to auto-gen rules Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix 1628 - add policy validations Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix 1593 - support apiCall in mutate and generate Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix test Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-22 12:08:26 -08:00
shuting	6fc349716c	Switch to use annotations to store resource info in cluster/reportChangeRequest (#1625 ) * skip sending API request for filtered resource * fix PR comment Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fixes https://github.com/kyverno/kyverno/issues/1490 Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix bug - namespace is not returned properly Signed-off-by: Shuting Zhao <shutting06@gmail.com> * reduce throttling - list resource using lister * refactor resource cache * fix test Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix label selector Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix build failure Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fixes #1480 * store resource name and kind in (c)rcr's annotation	2021-02-19 09:09:41 -08:00
Yashvardhan Kukreja	ba9d294a43	feat: added versioned validation and installation of controller-gen (#1618 ) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-02-18 20:53:53 -08:00
Raj Babu Das	0b832a038d	Adding multi arch support in all kyverno components (AMD6 and ARM64) (#1542 ) * Adding multi arch support Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding multi arch support Signed-off-by: Raj Das <mail.rajdas@gmail.com> * minor refactors Signed-off-by: Raj Das <mail.rajdas@gmail.com> * adding buildx action in e2e.yaml Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding kyvernopre Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding kyvernopre Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding amd build Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding go env Signed-off-by: Raj Das <mail.rajdas@gmail.com> * minor fix Signed-off-by: Raj Das <mail.rajdas@gmail.com> * removing docker tag Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding local dockerfile build command Signed-off-by: rajdas98 <mail.rajdas@gmail.com>	2021-02-18 18:09:01 -08:00
treydock	48f0d90dd1	Allow some helm policies to be excluded (#1611 ) * Allow some helm policies to be excluded Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu> * Make Helm security policies opt-in when podSecurityStandard=custom Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>	2021-02-18 11:50:35 -08:00
Vyankatesh Kudtarkar	164885d087	Update Kyverno test command (#1608 ) * fix link (#1566) Signed-off-by: vyankatesh <vyankatesh@neualto.com> * update icon in chart.yaml Signed-off-by: Shuting Zhao <shutting06@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * Adding default policies for restricted mode and adding notes to helm install (#1556) * Adding default policies for restricted mode, taking validationFailureAction from values.yaml and adding notes on helm install Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding emoji Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Update NOTES.txt * minor fix Signed-off-by: Raj Das <mail.rajdas@gmail.com> * adding to readme Signed-off-by: Raj Das <mail.rajdas@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * update links and formatting in PR template (#1573) * update links and formatting in PR template Signed-off-by: Chip Zoller <chipzoller@gmail.com> * update policy submission request template Signed-off-by: Chip Zoller <chipzoller@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix: restricting empty value to pass through the validation checks (#1574) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * Actually fix contributor link in PR template (#1575) * update links and formatting in PR template Signed-off-by: Chip Zoller <chipzoller@gmail.com> * update policy submission request template Signed-off-by: Chip Zoller <chipzoller@gmail.com> * actually fix contrib guidelines Signed-off-by: Chip Zoller <chipzoller@gmail.com> * actually fix contrib guidelines Signed-off-by: Chip Zoller <chipzoller@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * code improvement (#1567) * code improvement Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * added if conditions Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * fixed unit test cases Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * feat(operators): support subset checking for in and notin (#1555) * feat(operators): support subset checking for in and notin Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * feat(operators): fixed NotIn function Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * panic fix (#1601) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> Signed-off-by: vyankatesh <vyankatesh@neualto.com> * update kyverno cli test cmd Signed-off-by: vyankatesh <vyankatesh@neualto.com> * code indentation Signed-off-by: vyankatesh <vyankatesh@neualto.com> * change help text Signed-off-by: vyankatesh <vyankatesh@neualto.com> Co-authored-by: Dekel <dekelb@users.noreply.github.com> Co-authored-by: Shuting Zhao <shutting06@gmail.com> Co-authored-by: Raj Babu Das <mail.rajdas@gmail.com> Co-authored-by: Chip Zoller <chipzoller@gmail.com> Co-authored-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com> Co-authored-by: Pooja Singh <36136335+NoSkillGirl@users.noreply.github.com> Co-authored-by: Arsh Sharma <56963264+RinkiyaKeDad@users.noreply.github.com> Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-02-17 11:30:41 -08:00
Jim Bugwadia	731474a9a2	rename context2 -> enginecontext (#1605 ) Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-02-16 19:17:20 -08:00
Shuting Zhao	f2b00a1f1e	update chart link - icon	2021-02-16 14:42:19 -08:00
Shuting Zhao	f6192d08b0	release v1.3.3	2021-02-16 13:49:50 -08:00
Yashvardhan Kukreja	478f32b8b4	fix: allowed templatised values to be exempted from validation checks (#1599 ) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-02-16 13:06:07 -08:00
Pooja Singh	a21195f362	panic fix (#1609 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-02-16 12:48:04 -08:00
Pooja Singh	33ec907a09	panic fix (#1601 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-02-15 11:27:09 -08:00
Arsh Sharma	596bc9ba6f	feat(operators): support subset checking for in and notin (#1555 ) * feat(operators): support subset checking for in and notin Signed-off-by: Arsh Sharma <arshsharma461@gmail.com> * feat(operators): fixed NotIn function Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>	2021-02-10 13:05:36 -08:00
Pooja Singh	0de83ebe17	code improvement (#1567 ) * code improvement Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * added if conditions Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * fixed unit test cases Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-02-10 10:28:50 -08:00
Chip Zoller	6d2d2e3c1b	Actually fix contributor link in PR template (#1575 ) * update links and formatting in PR template Signed-off-by: Chip Zoller <chipzoller@gmail.com> * update policy submission request template Signed-off-by: Chip Zoller <chipzoller@gmail.com> * actually fix contrib guidelines Signed-off-by: Chip Zoller <chipzoller@gmail.com> * actually fix contrib guidelines Signed-off-by: Chip Zoller <chipzoller@gmail.com>	2021-02-10 08:57:43 -08:00
Yashvardhan Kukreja	fe6652d9ca	fix: restricting empty value to pass through the validation checks (#1574 ) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-02-09 17:16:02 -08:00
Chip Zoller	4dbfb9490b	update links and formatting in PR template (#1573 ) * update links and formatting in PR template Signed-off-by: Chip Zoller <chipzoller@gmail.com> * update policy submission request template Signed-off-by: Chip Zoller <chipzoller@gmail.com>	2021-02-09 15:02:15 -08:00
Raj Babu Das	b04626a5f8	Adding default policies for restricted mode and adding notes to helm install (#1556 ) * Adding default policies for restricted mode, taking validationFailureAction from values.yaml and adding notes on helm install Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Adding emoji Signed-off-by: Raj Das <mail.rajdas@gmail.com> * Update NOTES.txt * minor fix Signed-off-by: Raj Das <mail.rajdas@gmail.com> * adding to readme Signed-off-by: Raj Das <mail.rajdas@gmail.com>	2021-02-09 14:03:52 -08:00
Jim Bugwadia	b46be39744	Merge pull request #1571 from realshuting/update_icon Update icon in chart.yaml	2021-02-09 13:58:14 -08:00
Shuting Zhao	9429af277d	update icon in chart.yaml Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-09 13:30:40 -08:00
Dekel	276d06f906	fix link (#1566 )	2021-02-09 11:37:30 -08:00
Yashvardhan Kukreja	426475b16c	added: gofmt check over the existing github workflows (#1553 ) * added: gofmt check over the existing github workflows Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com> * added: gofmt check with logs added Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-02-09 11:34:13 -08:00
Shuting Zhao	b9a64ea41d	release v1.3.2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-09 10:59:44 -08:00
Pooja Singh	4788085c4f	Panic fix in generation.go (#1563 ) * added if condition Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * fixed test condition Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-02-09 10:34:57 -08:00
Shuting Zhao	db1bfba3f8	release v1.3.2-rc3	2021-02-08 18:15:28 -08:00
Jim Bugwadia	cbe575ec32	Merge pull request #1562 from realshuting/1543_unkown_unstructured Allow "watch" from policy controller - cluster role "kyverno:policycontroller"	2021-02-08 18:02:52 -08:00
Shuting Zhao	e0d523eb2d	Merge branch 'main' into 1543_unkown_unstructured Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-08 17:38:11 -08:00
Shuting Zhao	77a94fda6b	add "watch" to cluster role kyverno:policycontroller Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-08 17:35:35 -08:00
shuting	8dcfa185b1	Remove duplicate results' entries from policy report (#1559 ) * remove duplicate results' entries from policy report Signed-off-by: Shuting Zhao <shutting06@gmail.com> * improve error reporting when removing duplicate result entries Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-08 14:42:17 -08:00
Shuting Zhao	88af9924bd	improve error reporting when removing duplicate result entries Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-08 14:19:08 -08:00
shuting	ecc052f0cd	upload logo (#1560 ) Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-08 13:09:37 -08:00
Shuting Zhao	50b126fe56	remove duplicate results' entries from policy report Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-02-08 12:33:26 -08:00

1 2 3 4 5 ...

3064 commits