kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00

Author	SHA1	Message	Date
Mariam Fahmy	86fff3b394	feat: compile and evaluate autogen rules (#12163 )	2025-02-15 12:56:51 +08:00
Mariam Fahmy	829ab94b11	fix CEL autogen (#12165 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-02-14 09:45:10 +00:00
Frank Jogeleit	05f9bb4506	feat: configure admission and background flag for ValidatingPolicies (#12153 )	2025-02-13 17:24:45 +00:00
shuting	ce2c27c2d2	fix: sort autogen resources list (#12162 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2025-02-13 12:49:39 +00:00
shuting	813b80d3d9	fix: update match conditions for autogen rules (#12146 ) * fix: update match conditions for autogen rules Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: autogen match condition prefix Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: merge main Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com> Signed-off-by: shuting <shuting@nirmata.com>	2025-02-12 08:34:19 +00:00
Mariam Fahmy	7d5750a717	chore: move celexceptions to the new group (#12143 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-02-11 19:05:22 +02:00
Mariam Fahmy	f012241a82	feat: add cel-autogen chainsaw tests (#12135 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2025-02-10 22:30:12 +00:00
Vishal Choudhary	de0d8e04f8	feat: add image data fetching support (#12134 )	2025-02-10 18:33:01 +05:30
shuting	0548d09c21	feat: add status.autogen (#12109 ) * feat: add status.autogen Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update codegen Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update codegen Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2025-02-07 22:22:49 +05:30
Mariam Fahmy	a4c10f6bb4	feat: compile and evaluate polex's match conditions (#12113 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-02-06 15:30:59 +02:00
Charles-Edouard Brétéché	02fceb64f7	feat: implement background scan (#12101 ) * feat: implement background scan Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * scanner Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor request Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-06 05:49:41 +02:00
Mariam Fahmy	192e655c45	chore: remove polex compiler (#12078 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-02-04 11:52:19 +00:00
Charles-Edouard Brétéché	b908b1037a	feat: consider validation actions (#12072 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-04 06:29:40 +02:00
Charles-Edouard Brétéché	e55a90cc4b	feat: implement match conditions failure policy (#12071 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-04 00:04:26 +02:00
Charles-Edouard Brétéché	884a77a044	feat: add context provider in admission handling (#12070 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-03 19:11:31 +02:00
Mariam Fahmy	202ab74ff5	feat: compile CEL exceptions (#12066 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-02-03 17:17:41 +02:00
Charles-Edouard Brétéché	1cb0d1c356	feat: add message expression support to validating policies (#12063 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-03 14:04:19 +00:00
Vishal Choudhary	7d8ed212a4	feat: create image data loader (#12036 ) * feat: add image data loader to context Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: build Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: linter Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * feat: tests Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: update types Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * feat: replace crane with remote Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: linter Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: linter Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> --------- Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-03 13:42:40 +00:00
Charles-Edouard Brétéché	2bf7262814	feat: add admission request cel variable (#12054 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-03 11:40:05 +00:00
Charles-Edouard Brétéché	0077fdae2b	feat: add validation message in cel engine response (#12052 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-02-03 11:13:06 +00:00
Charles-Edouard Brétéché	f59b78aef0	feat: process cel engine response in webhook handler (#12047 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-31 11:07:22 +00:00
Charles-Edouard Brétéché	b8f7a83942	feat: support adminssion review in cel engine (#12046 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-31 08:03:59 +00:00
Charles-Edouard Brétéché	7a4e1bede9	feat: use more admission attributes (#12044 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-30 23:58:12 +00:00
Charles-Edouard Brétéché	2ab3b2dd51	fix: cel lib get config map return type (#12042 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-31 01:15:05 +02:00
Charles-Edouard Brétéché	f448db3f36	feat: use admission attributes (#12041 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-30 20:36:41 +00:00
Charles-Edouard Brétéché	dfa9f2f727	feat(validating policies): add support for ns and object selectors (#12034 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-30 01:07:01 +02:00
Charles-Edouard Brétéché	a36f8c857c	fix: don't sort cel policies (#12028 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-29 15:00:46 +00:00
Charles-Edouard Brétéché	1d3a9294cc	feat: watch validating policies (#12008 ) * feat: watch validating policies Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rest config Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-28 16:24:40 +00:00
Charles-Edouard Brétéché	db4f7fb5e6	feat: register cel context lib (#12007 ) * feat: register cel context lib Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * unit test Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-27 16:16:27 +00:00
Mariam Fahmy	b8c6931aa5	feat: add autogen package for ValidatingPolicies (#11996 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-01-27 12:36:11 +00:00
Charles-Edouard Brétéché	a5fe768a53	feat: implement cel engine context provider (#11995 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-24 15:42:58 +00:00
Charles-Edouard Brétéché	ed80be3eff	feat: add support for more context elements (#11986 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-24 08:37:33 +00:00
Charles-Edouard Brétéché	144bf436ed	fix: implement cel context lib correctly (#11983 ) * fix: implement cel context lib correctly Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more changes Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-23 11:02:33 +00:00
Charles-Edouard Brétéché	f5467fcd61	refactor: reduce generic policy interface (#11977 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-22 16:32:30 +00:00
Charles-Edouard Brétéché	9d11e8f98c	feat: introduce evaluation results in cel engine (#11971 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-21 16:41:45 +00:00
Charles-Edouard Brétéché	54a8a53205	feat: add validating policy engine api wrapper (#11963 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-21 15:59:34 +08:00
Charles-Edouard Brétéché	a30fc14d4d	feat: add namespace support in CLI values (#11958 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-20 13:43:13 +02:00
Charles-Edouard Brétéché	5cc408dddb	feat: use policy provider (#11947 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-20 09:43:05 +00:00
Charles-Edouard Brétéché	7351501ef6	feat(cli,apply): load validating policies (#11933 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-17 09:53:17 +00:00
Frank Jogeleit	c0d7df709a	Implement Object type checking based on OpenAPI v3 schema (#11919 ) * Implement Object type checking based on OpenAPI v3 schema Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de> * Fix conflicting resource name Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de> * make typeName an configurable argument Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de> --------- Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-14 15:36:09 +00:00
Charles-Edouard Brétéché	6af7ab8905	feat: add CEL variables type checking (#11920 ) * feat: add CEL variables support Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * feat: add CEL variables type checking Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more types Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * provider Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-14 15:57:55 +01:00
Mariam Fahmy	4678078c3d	feat: add auditAnnotation in CEL Compiler (#11918 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2025-01-14 13:16:29 +00:00
Charles-Edouard Brétéché	9177c57b21	feat: add CEL variables support (#11913 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-14 09:41:18 +00:00
Charles-Edouard Brétéché	616cb93bc4	feat: add validating policy compiler (#11906 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-13 13:56:36 +01:00
Charles-Edouard Brétéché	bdc55fbc93	feat: add context cel lib to get config map (#11898 ) * feat: add context cel lib to get config map Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * function name Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix type Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2025-01-10 14:19:50 +00:00
Frank Jogeleit	032d428b12	feat: setup validating policy cel environment (#11897 ) Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de>	2025-01-10 13:54:04 +00:00
Charles-Edouard Brétéché	47e99166a5	feat: add kyverno vap API (#11790 ) * feat: add kyverno vap API Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * add context lib Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>	2025-01-08 15:56:36 +00:00

47 commits