kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00

Author	SHA1	Message	Date
Charles-Edouard Brétéché	df6026732a	fix: dev lab (#6058 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2023-01-20 15:12:37 +00:00
Charles-Edouard Brétéché	af3882f869	feat: add missing polex flags (#6030 ) * feat: add missing polex flags Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * chart defaul Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-01-19 11:56:22 +08:00
Charles-Edouard Brétéché	f927b51b86	feat: add metrics service and service monitor to cleanup controller (#5653 ) * feat: add metrics service and service monitor to cleanup controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more config Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * name and certs Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix: conditions check Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * leader election Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * workflows Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rbac Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-12-12 18:39:29 +00:00
Charles-Edouard Brétéché	3dff75b8f1	feat: add dev config with support for prom loki and tempo (#5647 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-12-12 13:58:36 +08:00
Charles-Edouard Brétéché	a6aaffded3	feat: add cleanup handler (#5576 ) * feat: add cleanup handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * service Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-12-07 10:30:47 +00:00
Charles-Edouard Brétéché	92e5b3a5c8	chore: bump kyverno version in argo lab (#5482 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-11-26 14:02:25 +00:00
Charles-Edouard Brétéché	66e93a5732	fix: argocd lab monitoring namespace (#5446 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-11-23 08:58:56 +00:00
Charles-Edouard Brétéché	28619ce3db	refactor: split argocd lab into multiple steps (#5410 ) * refactor: argocd lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: split argocd lab into multiple steps Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix tempo Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-11-22 09:36:40 +01:00
Charles-Edouard Brétéché	1b4da0e632	chore: add tempo to argocd lab (#5365 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-11-17 07:02:55 +00:00
Charles-Edouard Brétéché	c077fb49d5	chore: add performance tests tool (#5241 ) * feat: add flag to configure the number of background scan workers Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * feat: add performance testing Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix pvc issue Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * make nodes count configurable Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * kube proxy Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * remove commented code Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * memory request Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-11-17 06:31:35 +00:00
Charles-Edouard Brétéché	e66f8a2f47	chore: enable json logs in argocd lab (#5349 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-11-15 18:15:22 +00:00
XDRAGON2002	25f8d4498b	[Feature] Pin Dependencies by Hash (#5168 ) * pin dependencies by hash Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * pin scripts Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Co-authored-by: shuting <shuting@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-11-07 08:59:26 +00:00
Charles-Edouard Brétéché	6325860c89	chore: add loki to argocd lab (#5231 ) * chore: add loki to argocd lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * chore: add loki to argocd lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-11-07 08:24:59 +00:00
Charles-Edouard Brétéché	b3c5a9c741	chore: server side apply in argo lab (#5209 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-11-03 11:16:07 +00:00
Charles-Edouard Brétéché	11bfad27ec	chore: add kind config file (#5178 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-11-01 22:53:58 +08:00
Charles-Edouard Brétéché	b732158831	feat: add metrics server and kube-prometheus-stack to argocd lab (#4995 ) * feat: add policy-reporter to argocd lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * feat: add metrics server and kube-prometheus-stack to argocd lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * typo Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-16 17:34:58 +00:00
Charles-Edouard Brétéché	7aefa89839	feat: add policy-reporter to argocd lab (#4988 ) * feat: add policy-reporter to argocd lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * readme Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Chip Zoller <chipzoller@gmail.com>	2022-10-16 17:39:43 +02:00
Charles-Edouard Brétéché	c213deab4b	chore: add argocd lab (#4884 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 07:25:48 +00:00
Lei Peng	c6da0a7800	refact：update script of generate-self-signed-cert-and-k8secrets.sh to supports custom namespace (#4758 ) Signed-off-by: hackerboy01 <penglei031303@gmail.com>	2022-10-03 18:21:46 +05:30
Charles-Edouard Brétéché	599a68e896	feat: enable autogen from makefile (#4467 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-01 14:14:56 +08:00
Charles-Edouard Brétéché	504acea12c	chore: remove godownloader and install-cli script (#4442 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-08-29 17:19:13 +02:00
Afzal Ansari	5262ed9225	refactor: shell to prevent globbing and word splitting (#3829 ) * refactors scripts/create-e2e-infrastruture sh Signed-off-by: afzal442 <afzal442@gmail.com> * refactors scripts/deploy-controller.sh Signed-off-by: afzal442 <afzal442@gmail.com> * refactors scripts/generate-server-cert.sh Signed-off-by: afzal442 <afzal442@gmail.com> * minor changes Signed-off-by: afzal442 <afzal442@gmail.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-05-07 16:46:50 +01:00
Charles-Edouard Brétéché	f34a542587	refactor: client gen code (#3695 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-04-27 12:30:43 +00:00
shuting	2b432490b5	Feat - add the new CR UpdateRequest for post mutation (#3592 ) * add new CR UpdateRequest Signed-off-by: ShutingZhao <shuting@nirmata.com> * add clienset for updaterequests Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-12 22:37:28 +05:30
Sambhav Kothari	e9e96e7b1c	Run E2E tests on all supported k8s versions (#3256 )	2022-02-23 15:52:08 +00:00
shuting	ae4d148318	Update dev image tag in Make targets (#3159 ) * - update dev images tag; - update chart testing Signed-off-by: ShutingZhao <shuting@nirmata.com> * update to use dev tag when setting up e2e tests infra Signed-off-by: ShutingZhao <shuting@nirmata.com> * default chart test image tag for busybox to latest Signed-off-by: ShutingZhao <shuting@nirmata.com> * set image tag to latest for chart testing Signed-off-by: ShutingZhao <shuting@nirmata.com> * correct tag Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove test tag in e2e.yaml Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-02-03 15:41:58 +08:00
Jim Bugwadia	b17e76493e	tighten and clarify Kyverno roles and permissions (#2799 ) * update roles and rolebindings Signed-off-by: Jim Bugwadia <jim@nirmata.com> * revert label and fix perms Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update role Signed-off-by: Jim Bugwadia <jim@nirmata.com> * restrict role Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix whitespace Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix tests and roles Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove ingress extensions/v1beta1 Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix chart Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix role Signed-off-by: Jim Bugwadia <jim@nirmata.com> * tighten and clarify Kyverno roles and permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fake commit to trigger workflows Signed-off-by: Jim Bugwadia <jim@nirmata.com> * revert tests and update test role Signed-off-by: Jim Bugwadia <jim@nirmata.com> * add newlines Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove update role Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove invalid param Signed-off-by: Jim Bugwadia <jim@nirmata.com> * cleanup roles in Helm templates Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove `mutate` cluster role binding Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-12-10 04:34:06 +00:00
Jose Armesto	831a9826d1	Restructure project to follow standards (#2632 ) Signed-off-by: Jose Armesto <github@armesto.net>	2021-10-29 18:13:20 +02:00
Sachin	e16d773957	Remove unused function (#2517 )	2021-10-11 12:46:28 -07:00
shuting	e288ed7fd2	Fix upgrade issue from 1.4.2 to 1.4.3-rc1 (#2387 ) * update git command to get tag in 'v' format Signed-off-by: Shuting Zhao <shutting06@gmail.com> add label "appVersion" to report change request Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix linter issue Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update git hash Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-09-14 01:06:56 -07:00
Frank Jogeleit	c522343c03	Update PolicyReport CRDs to wgpolicyk8s.io/v1alpha2 (#1825 )	2021-08-21 10:35:17 -07:00
shuting	6d5e988ebe	BugFix - update the annotation lastRequestTimestamp from active instances (#2019 ) * fix webhook monitor - inactive instance did not get latest request timestamp Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add checks for registered webhook configs Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update veridy_deployment.sh Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add debug steps in e2d workflow Signed-off-by: Shuting Zhao <shutting06@gmail.com> * fix CI errors Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-06-15 18:39:22 -07:00
vyankatesh	ab959d0ca4	bump kind to 0.11.0, k8s v1.21	2021-06-08 11:18:48 +05:30
Shuting Zhao	8affebb680	bump kind to 0.10.0, k8s 1.20.2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-04-05 13:58:51 -07:00
Yashvardhan Kukreja	6f15432a21	added: make target to auto generate code (#1603 ) * added: make auto-generate target to sync the auto-generated code by kubebuilder Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com> * synced: all the auto-generable files with kubebuilder's controller-gen Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-03-01 10:58:58 -08:00
shuting	d82f19be4e	Feature/fix dev mode execution (#1477 ) * add serverIP to X.509 certificate SANs * disable webhook monitor in debug mode Signed-off-by: Shuting Zhao <shutting06@gmail.com> Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2021-01-20 15:25:27 -08:00
Yuvraj	5ecdfda4e0	Improve github action (#1385 ) * Improve github action Improve the github action fix issue Trigger Krew on relese and skip prerelease Updated create infrastructure script * More changes * More changes * Added check for prerelease * Added check for prerelease * Revert change	2020-12-15 11:46:53 -08:00
Yuvraj	2ffe9b024b	Added kustomize install script (#1392 )	2020-12-13 11:43:01 +05:30
shuting	f73c40ab4e	Migrate image to GitHub registry (#1299 ) * migrate image to GitHub registry * remove registry login	2020-11-24 11:49:08 -08:00
shuting	bc2e7fcbb3	Revert "Migrate image to GitHub registry"	2020-11-19 13:59:26 -08:00
Shuting Zhao	4d2d4b9985	Update install.yaml	2020-11-19 12:31:08 -08:00
Shuting Zhao	0d963455c9	remove jq installation	2020-11-11 14:46:22 -08:00
Shuting Zhao	06f2fd8f39	install linux tool	2020-11-11 14:33:09 -08:00
Shuting Zhao	f6b3dadfba	update ci.sh	2020-11-11 14:24:04 -08:00
Shuting Zhao	b3e5cafdec	install kustomize with a specific version in ci automation	2020-11-11 14:09:45 -08:00
shuting	5e07ecc5f3	Add Policy Report (#1229 ) * add report in cli * policy report crd added * policy report added * configmap added * added jobs * added jobs * bug fixed * added logic for cli * common function added * sub command added for policy report * subcommand added for report * common package changed * configmap added * added logic for kyverno cli * added logic for jobs * added logic for jobs * added logic for jobs * added logic for cli * buf fix * cli changes * count bug fix * docs added for command * go fmt * refactor codebase * remove policy controller for policyreport * policy report removed * bug fixes * bug fixes * added job trigger if needed * job deletation logic added * build failed fix * fixed e2e test * remove hard coded variables * packages adde * improvment added in jobs sheduler * policy report yaml added * cronjob added * small fixes * remove background sync * documentation added for report command * remove extra log * small improvement * tested policy report * revert hardcoded changes * changes for demo * demo changes * resource aggrigation added * More changes * More changes * - resolve PR comments; - refactor jobs controller * set rbac for jobs * add clean up in job controller * add short names * remove application scope for policyreport * move job controller to policyreport * add report logic in command apply * - update policy report types; - upgrade k8s library; - update code gen * temporarily comment out code to pass CI build * generate / update policyreport to cluster * add unit test for CLI report * add test for apply - generate policy report * fix unit test * - remove job controller; - remove in-memory configmap; - clean up kustomize manifest * remove dependency * add reportRequest / clusterReportRequest * clean up policy report * generate report request * update crd clusterReportRequest * - update json tag of report summary; - update definition manifests; - fix dclient creation * aggregate reportRequest into policy report * fix unit tests * - update report summary to optional; - generate clusterPolicyReport; - remove reportRequests after merged to report * remove * generate reportRequest in kyverno namespace * update resource filter in helm chart * - rename reportRequest to reportChangeRequest; -rename clusterReportRequest to clusterReportChangeRequest * generate policy report in background scan * skip generating report change request if there's entry results * fix results entry removal when policy / rule gets deleted * rename apiversion from policy.kubernetes.io to policy.k8s.io * update summary.* to lower case * move reportChangeRequest to kyverno.io/v1alpha1 * remove policy report flag * fix report update * clean up policy violation CRD * remove violation CRD from manifest * clean up policy violation code - remove pvGenerator * change severity fields to lower case * update import library * set report category Co-authored-by: Yuvraj <yuvraj.yad001@gmail.com> Co-authored-by: Yuvraj <10830562+evalsocket@users.noreply.github.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2020-11-09 11:26:12 -08:00
Jim Bugwadia	8be30879f6	print deployment YAML on timeout	2020-10-22 12:43:50 -07:00
Jim Bugwadia	2ba2222f4e	add debug info on timeout	2020-10-22 12:30:24 -07:00
Shuting Zhao	cdc5190c56	update nirmata/kyverno to kyverno/kyverno	2020-10-07 11:12:31 -07:00
Yuvraj	9c0d54f35a	e2e workflow added (#1021 ) * e2e flow added * add kustomize image change in ci	2020-08-06 11:56:31 +05:30

1 2

85 commits