mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
2909 commits 16 branches 550 tags 288 MiB
Commit graph

313 commits

Author SHA1 Message Date
shuting
2fc3b3b998
Fixes 1410 strategic merge patch (#1414) 
* fixes #1410

* fix unit test

* re-initialize worker immediately on failure
 2020-12-23 17:48:00 -08:00
shuting
3c5f9f8888
1398 - Reduce RCR throttling requests (#1406) 
* reduce RCR throttling requests by merging policy application (policy - namespace) results into single RCR

* - refactor policy controller; - fix RCR issue

* - refactor RCR controller; - fix cpolr on ns update; - reduce throttling when getting resources; - fix tests

* update CRD schema

* fix typo
 2020-12-21 11:04:19 -08:00
shuting
5f70f5feec
fixes #1399 (#1400) 2020-12-15 15:21:39 -08:00
Jim Bugwadia
b25a037113 fix generate clone/data check 2020-12-14 02:43:16 -08:00
Jim Bugwadia
41f636b702 Merge branch 'main' into 1390_generate_no_data 2020-12-13 00:50:16 -08:00
Jim Bugwadia
5dcf37141b allow generate with no data/status 2020-12-12 21:19:37 -08:00
Shuting Zhao
4e81d0966d update message 2020-12-09 17:19:26 -08:00
Shuting Zhao
304a7e1b1e add warning message when validates poclies 2020-12-09 15:37:45 -08:00
shuting
c1764a85d1
1370 clean up stale RCRs (#1373) 
* remove env "POLICY-TYPE"

* clean up resource in goroutine

* clean up stale RCRs on namespace deletion

* go vet

* clean up code
 2020-12-08 23:04:16 -08:00
shuting
ab5f2274f9
1314 validate rule (#1368) 
* fixes 1314

* fix panic
 2020-12-08 22:52:37 -08:00
shuting
624b481df3
Fix 1351 - policy report (#1359) 
* ignore Kyverno CRDs existence check when server is not available

* clean up cluster / reportChangeRequest

* resolve PR comments

* - fixes #1351; - clean up code

* fo fmt
 2020-12-04 10:04:46 -08:00
Shuting Zhao
6e1be1c901 fix https://github.com/kyverno/kyverno/issues/1324 2020-11-30 12:54:48 -08:00
Jim Bugwadia
2344b2c305
1319 fix throttling (#1341) 
* fix policy status and generate controller issues

* shorten ACTION column name

* update logs

Co-authored-by: Shuting Zhao <shutting06@gmail.com>
 2020-11-30 11:22:20 -08:00
Jim Bugwadia
ec95724e97
update webhook registration and monitor (#1318) 
* update webhook registration and monitor

* update log

* fix test

* improve logs

* improve logs

* format changes

* decrease interval for webhook config checks
 2020-11-26 16:07:06 -08:00
Jim Bugwadia
dcc7fff6ef Merge branch 'main' into 1298_fix_variable_validation 2020-11-25 12:27:01 -08:00
Jim Bugwadia
4c47d40a3c fix check for background mode 2020-11-25 10:11:59 -08:00
Jim Bugwadia
125faaf4e3 fix variable substitution 2020-11-25 00:21:51 -08:00
NoSkillGirl
40b40fb601 fixed attotaions for empty set 2020-11-25 11:50:53 +05:30
Jim Bugwadia
54f816c246 trim variable for context lookups 2020-11-24 17:48:54 -08:00
NoSkillGirl
3571260a9e added skipped policy in policy report 2020-11-19 15:03:15 +05:30
NoSkillGirl
5794889752 Merge branch 'main' into policyreport_cli 2020-11-18 14:43:30 +05:30
Shuting Zhao
b9fb926ddb fixes for golint ./... 2020-11-17 13:07:30 -08:00
Shuting Zhao
63e11c205d remove namespace check in policy validation 2020-11-16 13:02:45 -08:00
Shuting Zhao
2ff9d03b3f - set tag optional in generaterequest; - fix generate controller error log 2020-11-13 17:44:34 -08:00
Shuting Zhao
943935ee1b properly deserialize anyPattern 2020-11-13 16:25:51 -08:00
shuting
5e07ecc5f3
Add Policy Report (#1229) 
* add report in cli

* policy report crd added

* policy report added

* configmap added

* added jobs

* added jobs

* bug fixed

* added logic for cli

* common function added

* sub command added for policy report

* subcommand added for report

* common package changed

* configmap added

* added logic for kyverno cli

* added logic for jobs

* added logic for jobs

* added logic for jobs

* added logic for cli

* buf fix

* cli changes

* count bug fix

* docs added for command

* go fmt

* refactor codebase

* remove policy controller for policyreport

* policy report removed

* bug fixes

* bug fixes

* added job trigger if needed

* job deletation logic added

* build failed fix

* fixed e2e test

* remove hard coded variables

* packages adde

* improvment added in jobs sheduler

* policy report yaml added

* cronjob added

* small fixes

* remove background sync

* documentation added for report command

* remove extra log

* small improvement

* tested policy report

* revert hardcoded changes

* changes for demo

* demo changes

* resource aggrigation added

* More changes

* More changes

* - resolve PR comments; - refactor jobs controller

* set rbac for jobs

* add clean up in job controller

* add short names

* remove application scope for policyreport

* move job controller to policyreport

* add report logic in command apply

* - update policy report types;  - upgrade k8s library; - update code gen

* temporarily comment out code to pass CI build

* generate / update policyreport to cluster

* add unit test for CLI report

* add test for apply - generate policy report

* fix unit test

* - remove job controller; - remove in-memory configmap; - clean up kustomize manifest

* remove dependency

* add reportRequest / clusterReportRequest

* clean up policy report

* generate report request

* update crd clusterReportRequest

* - update json tag of report summary; - update definition manifests; -  fix dclient creation

* aggregate reportRequest into policy report

* fix unit tests

* - update report summary to optional; - generate clusterPolicyReport; - remove reportRequests after merged to report

* remove

* generate reportRequest in kyverno namespace

* update resource filter in helm chart

* - rename reportRequest to reportChangeRequest; -rename clusterReportRequest to clusterReportChangeRequest

* generate policy report in background scan

* skip generating report change request if there's entry results

* fix results entry removal when policy / rule gets deleted

* rename apiversion from policy.kubernetes.io to policy.k8s.io

* update summary.* to lower case

* move reportChangeRequest to kyverno.io/v1alpha1

* remove policy report flag

* fix report update

* clean up policy violation CRD

* remove violation CRD from manifest

* clean up policy violation code - remove pvGenerator

* change severity fields to lower case

* update import library

* set report category

Co-authored-by: Yuvraj <yuvraj.yad001@gmail.com>
Co-authored-by: Yuvraj <10830562+evalsocket@users.noreply.github.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2020-11-09 11:26:12 -08:00
NoSkillGirl
c56840ef3b fixed skip policy 2020-11-04 14:03:38 +05:30
Shuting Zhao
ece16de329 clean up policy violation code - remove pvGenerator 2020-11-02 18:09:20 -08:00
Shuting Zhao
f8c659ffa5 fix report update 2020-11-02 15:58:43 -08:00
Shuting Zhao
6952c6cc74 fix results entry removal when policy / rule gets deleted 2020-10-30 16:56:44 -07:00
Shuting Zhao
596647dadb generate policy report in background scan 2020-10-29 13:35:18 -07:00
Shuting Zhao
f499c1ebb7 remove 2020-10-27 20:46:41 -07:00
Shuting Zhao
32d834ea26 - update json tag of report summary; - update definition manifests; - fix dclient creation 2020-10-26 16:08:25 -07:00
Shuting Zhao
c89f16c598 clean up policy report 2020-10-22 19:57:28 -07:00
Shuting Zhao
2364ff1407 add reportRequest / clusterReportRequest 2020-10-22 16:15:43 -07:00
Shuting Zhao
09e52893c5 Merge branch 'master' into policyreport 2020-10-21 18:03:42 -07:00
Shuting Zhao
25409e42ea - remove job controller; - remove in-memory configmap; - clean up kustomize manifest 2020-10-21 17:56:17 -07:00
Jim Bugwadia
1f24ea6f75
fix regex for allowed variable to support spaces (#1200) 
* fix regex for allowed variable to support spaces

* remove log

* fix regex
 2020-10-19 12:36:55 -07:00
Shuting Zhao
c906baa1a7 - update policy report types; - upgrade k8s library; - update code gen 2020-10-15 17:54:58 -07:00
Shuting Zhao
f798e9cf2d add report logic in command apply 2020-10-15 17:29:07 -07:00
Shuting Zhao
8eb7f13355 add clean up in job controller 2020-10-14 19:00:13 -07:00
Jim Bugwadia
ae0c09a05c remove ContextEntry.path (prototype for API server lookup) 2020-10-14 18:48:23 -07:00
Jim Bugwadia
7f5c19332a update name 2020-10-14 18:30:18 -07:00
Jim Bugwadia
4ea1126fce remove docs and update README.md 2020-10-14 17:39:45 -07:00
Shuting Zhao
2a3775a2fa - resolve PR comments; - refactor jobs controller 2020-10-13 18:54:57 -07:00
Shuting Zhao
6b5e935e49 Merge branch 'feature/reports-cli' of https://github.com/evalsocket/kyverno into policyreport 
# Conflicts:
#	Makefile
#	cmd/kyverno/main.go
#	go.mod
#	go.sum
#	pkg/client/clientset/versioned/clientset.go
#	pkg/client/clientset/versioned/fake/clientset_generated.go
#	pkg/client/clientset/versioned/fake/register.go
#	pkg/client/clientset/versioned/scheme/register.go
#	pkg/client/informers/externalversions/factory.go
#	pkg/client/informers/externalversions/generic.go
#	pkg/client/listers/kyverno/v1/expansion_generated.go
#	pkg/policy/common.go
#	pkg/policy/controller.go
#	pkg/policy/existing.go
#	pkg/policyviolation/builder.go
#	pkg/policyviolation/generator.go
#	pkg/webhooks/server.go
#	pkg/webhooks/validate_audit.go
#	pkg/webhooks/validation.go
 2020-10-12 18:30:37 -07:00
Shuting Zhao
cdc5190c56 update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00
Pooja Singh
7fc0eaaee3
added condition for exclude selector (#1169) 
* added exclude selector condition

* small fix
 2020-10-06 14:27:40 -07:00
Mohan B E
51ac382c6c
Feature/configmaps var 724 (#1118) 
* added configmap data substitution for foreground mutate and validate

* added configmap data substitution for foreground mutate and validate fmt

* added configmap lookup for background

* added comments to resource cache

* added configmap data lookup in preConditions

* added parse strings in In operator and configmap lookup docs

* added configmap lookup docs

* modified configmap lookup docs
 2020-09-22 14:11:49 -07:00
Mohan B E
a1081c8f82
fixed policy validationa and patch strategic merge bug (#1136) 2020-09-18 12:18:13 -07:00