kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00

Author	SHA1	Message	Date
Shuting Zhao	cd5070191f	correct tag Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-26 15:47:11 -07:00
Shuting Zhao	0c860b7327	release v1.3.5-rc1 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-26 15:14:05 -07:00
Jim Bugwadia	e7a8eb93ee	Merge pull request #1714 from kacejot/vars-substitution Bug Fix: #1506 issue; Resolve path reference in entire rule	2021-03-26 14:53:30 -07:00
Vyankatesh Kudtarkar	057ec4e690	Fix : 1657 (Update variable paths when auto generate the controller rules) and 1615 ( kyverno apply pipe through to kubectl) (#1735 ) * Fix 1657and 1615 Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix build issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> * remove logs Signed-off-by: vyankatesh <vyankatesh@neualto.com> Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-03-26 11:03:45 -07:00
Jim Bugwadia	f29f6b0369	add comment Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-26 10:47:59 -07:00
Jim Bugwadia	908950c47a	address comments Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 21:27:16 -07:00
Jim Bugwadia	72cdbafbae	fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 18:11:32 -07:00
Jim Bugwadia	8d03f8c59e	merge main Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 18:00:02 -07:00
Pooja Singh	a0ddd2c184	Added validate logic for generate to handle multiple items in array (#1727 ) * added validate logic for generate Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * format fix Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * gofmt fix Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * added test cases Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-25 17:04:43 -07:00
Jim Bugwadia	6dff9e0ab9	merge and resolve conflicts Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-25 16:43:12 -07:00
shuting	fd9acf21a7	Auto-recover policy report (#1730 ) * auto-recover policy report Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add flag background-scan to tune this interval Signed-off-by: Shuting Zhao <shutting06@gmail.com> * cleanup webhook configurations when Kyverno deployment is deleted Signed-off-by: Shuting Zhao <shutting06@gmail.com> * reconcile policy reports if Kyverno Configmap changes Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-25 12:28:03 -07:00
Jim Bugwadia	4d70013e22	Merge pull request #1724 from MarcelMue/fix-apipath-validation Make validateAPICall work with special characters in variables	2021-03-24 22:28:09 -07:00
shuting	c08843ef77	Add Images info to variables context (#1725 ) * - remove supportMutateValidate; - refactor new context in the webhook Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add ImageInfo to variables context Signed-off-by: Shuting Zhao <shutting06@gmail.com> * revert unexpected changes Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-23 10:34:03 -07:00
Marcel Mueller	c10a994045	Rename variable to kyvernoapicallvariable Signed-off-by: Marcel Mueller <marcel.mueller1@rwth-aachen.de>	2021-03-23 18:24:17 +01:00
Jim Bugwadia	f9be2651ad	Merge pull request #1729 from realshuting/1670_generate_concurrently make the number of generate workers configurable	2021-03-23 08:26:19 -07:00
Jim Bugwadia	9b90b215fe	Merge pull request #1728 from realshuting/fix-variable-subtitution-in-context.apiCall.jmesPath fixes variable substitution in context.apiCall.jmesPath	2021-03-23 08:25:12 -07:00
Shuting Zhao	669f01e9d2	add flag to kyverno's manifest Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-22 19:19:12 -07:00
Shuting Zhao	c3360b7389	make the number of generate workers configurable Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-22 19:14:06 -07:00
Shuting Zhao	d650d2b609	fixes variable substitution in context.apiCall.jmesPath Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-22 12:15:29 -07:00
Pooja Singh	bcc19971eb	skip GRs for spec being same in old and updated policy (#1723 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-19 15:33:52 -07:00
Pooja Singh	4128410207	Enhancement/existence anchor - should loop all the items in the array (#1719 ) * updated validating policy code Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * changed existance logic to loop all the items in array Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * updated comments and error messages Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-19 15:18:26 -07:00
Max Goncharenko	3373a79f26	Bug Fix: #1585 issue; validate on DELETE the oldResource (#1710 ) * fix #1585 issue; validate on DELETE the oldResource Signed-off-by: Max Goncharenko <kacejot@fex.net> * apply PR edits for #1585 issue fix; add test with nested var Signed-off-by: Max Goncharenko <kacejot@fex.net>	2021-03-19 14:43:26 -07:00
Marcel Mueller	4f96232e62	Make validateAPICall work with special characters in variables Signed-off-by: Marcel Mueller <marcel.mueller1@rwth-aachen.de>	2021-03-19 20:29:55 +01:00
Jim Bugwadia	802e6c2507	Merge pull request #1721 from realshuting/webhook_ha Fix variable substitution in NumericOperatorHandler	2021-03-18 14:09:02 -07:00
Shuting Zhao	7502e5da98	fix variable substitution in NumericOperatorHandler Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-18 13:40:14 -07:00
shuting	9a99cc3a33	fix Namespace scope (#1718 ) Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-17 10:28:44 -07:00
Vyankatesh Kudtarkar	04dc3ddfe3	Remove sample Dir and Remove testcases from test_runner (#1686 ) * remove sample Dir and remove testcases form test_runner Signed-off-by: vyankatesh <vyankatesh@neualto.com> * change git URL for test Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix fmt issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> * remove unused policy and test yamls Signed-off-by: vyankatesh <vyankatesh@neualto.com> * fix yaml path issue Signed-off-by: vyankatesh <vyankatesh@neualto.com> Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-03-16 14:35:32 -07:00
Adam Kosmin	60653eb620	support envVars with sane default (#1715 ) Co-authored-by: windowsrefund <mtf8>	2021-03-16 14:11:04 -07:00
Jim Bugwadia	ee54b8bff3	Merge pull request #1716 from jsnider-mtu/change-isNotIn Change isNotIn	2021-03-16 13:43:24 -07:00
Pooja Singh	861cec36c0	fixed issue (#1707 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-16 12:57:31 -07:00
Joshua Snider	6699bfab8c	Fix tests Signed-off-by: Joshua Snider <jsnider@mtu.edu>	2021-03-16 15:00:42 -04:00
shuting	c816cf3d69	Add certificate renewer in webhook registration controller (#1692 ) * load TLS pair from existing secret, if applicable Signed-off-by: Shuting Zhao <shutting06@gmail.com> * remove Kyverno managed secrets during shutdown Signed-off-by: Shuting Zhao <shutting06@gmail.com> * - add certificate renewer; - re-structure certificate package Signed-off-by: Shuting Zhao <shutting06@gmail.com> * commit un-saved file Signed-off-by: Shuting Zhao <shutting06@gmail.com> * eliminate throttling requests while registering webhook configs Signed-off-by: Shuting Zhao <shutting06@gmail.com> * disable webhook monitor (in old pod) during rolling update Signed-off-by: Shuting Zhao <shutting06@gmail.com> * remove webhook cleanup logic from init container Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update PR template Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update link to the website repo Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update repo name Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-16 11:31:04 -07:00
Joshua Snider	9377f70840	Change isNotIn Signed-off-by: Joshua Snider <jsnider@mtu.edu>	2021-03-16 14:26:41 -04:00
Jim Bugwadia	ff4fb41bdf	Merge pull request #1680 from jsnider-mtu/bug/groupVersion-in-api-path Bug Fix #1679; Set Version to Group/Version for /apis/* URLs	2021-03-16 08:43:44 -07:00
Max Goncharenko	24c4f06ecd	Fix #1506 ; Resolve path reference in entire rule instead of just pattern/overlay Signed-off-by: Max Goncharenko <kacejot@fex.net>	2021-03-16 13:45:40 +02:00
Max Goncharenko	db49046e26	fix #1465 : raise log level to error; add failed rules (#1709 ) Signed-off-by: Max Goncharenko <kacejot@fex.net>	2021-03-15 15:34:21 -07:00
Arsh Sharma	1dfcef1cc8	fix: changed logic for In and NotIn for sets (#1704 ) Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>	2021-03-15 12:59:24 -07:00
shuting	70d90ffb06	- remove preProcessJSONPatches; - update local Dockerfile (#1703 ) Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-15 10:29:46 -07:00
Yashvardhan Kukreja	bc1e28dbd6	fix: overwrite the output file when repetedly executing kyverno apply command (#1701 ) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-03-11 16:30:37 -08:00
Vyankatesh Kudtarkar	274287617a	fix git branch issue in test command (#1697 ) Signed-off-by: vyankatesh <vyankatesh@neualto.com> Co-authored-by: vyankatesh <vyankatesh@neualto.com>	2021-03-11 11:46:36 -08:00
Pooja Singh	22f9eb0ac5	Merge pull request #1694 from NoSkillGirl/bug/1693_namespaceSelector_cli Policy without namespace selector gives error in Kyverno CLI - "pass the namespace labels"	2021-03-12 00:39:25 +05:30
Raj Babu Das	08643773c3	removing go.sum from github workflow and adding unused pkg check (#1698 ) Signed-off-by: rajdas98 <mail.rajdas@gmail.com>	2021-03-11 10:14:46 -08:00
Jim Bugwadia	f5c2c30909	Merge pull request #1696 from kyverno/add_starchart_readme Update README.md	2021-03-11 07:13:40 -08:00
Jim Bugwadia	0ce59cb806	Update README.md Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-03-10 22:51:12 -08:00
NoSkillGirl	9caa926225	code improvement Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-11 10:31:53 +05:30
shuting	c8a41d83f7	Update Dockerfile; remove securityContext runAsUser (#1695 ) * - run Kyverno with specific uid; - remove "runAsUser" from deployment manifest Signed-off-by: Shuting Zhao <shutting06@gmail.com> * add LD_FLAGS when push Kyverno images Signed-off-by: Shuting Zhao <shutting06@gmail.com> * start Kyverno with UID 10001 Signed-off-by: Shuting Zhao <shutting06@gmail.com> * update initContainer and CLI Dockerfiles Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-03-10 14:47:09 -08:00
NoSkillGirl	247c876d25	added condition for policy with namespace selector Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-11 00:24:21 +05:30
Jim Bugwadia	bb361df696	Merge pull request #1597 from yashvardhan-kukreja/issue-1242/multiline-yaml-string-support feat: added functionality for delimiting multi-line block by newline characters	2021-03-10 09:58:38 -08:00
Pooja Singh	af4b85d3a8	Kyverno CLI - Namespace Selector (#1669 ) * added struct for namespace selector Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * added logic for namespace selector Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * added test case Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * improved code Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-09 12:45:45 -08:00
Pooja Singh	4f3798862a	added condition for slash in cli (#1667 ) Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-03-09 12:03:21 -08:00

... 5 6 7 8 9 ...

3429 commits