kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00

Author	SHA1	Message	Date
Charles-Edouard Brétéché	4c740e6999	refactor: remove obsolete structs from CLI (#6802 ) * feat: add policy reporter to the dev lab Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: remove obsolete structs from CLI Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-12 20:51:03 +08:00
shuting	d08a50a641	add source assertion (#6869 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-04-12 10:43:15 +00:00
dependabot[bot]	9220f84dd9	chore(deps): bump codecov/codecov-action from 3.1.1 to 3.1.2 (#6862 ) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.1 to 3.1.2. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](`d9f34f8cd5...40a12dcee2`) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-04-12 16:10:54 +08:00
Charles-Edouard Brétéché	d39c7ae41f	fix: add missing image pull secrets (#6858 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-12 13:13:04 +08:00
Charles-Edouard Brétéché	a0548898b7	refactor: move leader election code in internal package (#6854 ) * refactor: move registry client init in internal package Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: move leader election code in internal package Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-12 01:44:49 +08:00
Charles-Edouard Brétéché	89b0a649e3	feat: move cosign init in internal package (#6846 ) * refactor: configuration config map controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rbac Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * clean Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * clean Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * logs Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * feat: move cosign init in internal package Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2023-04-11 14:37:46 +00:00
Charles-Edouard Brétéché	93cf943ad1	refactor: move registry client init in internal package (#6853 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-11 13:32:17 +00:00
Charles-Edouard Brétéché	ff93502421	chore: add kuttl tests with default config (#6847 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: kyverno-bot <104836976+kyverno-bot@users.noreply.github.com>	2023-04-11 12:50:53 +00:00
Charles-Edouard Brétéché	3f51e99109	refactor: configuration config map controller (#6829 ) * refactor: configuration config map controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rbac Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * clean Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * clean Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-11 12:05:20 +00:00
Charles-Edouard Brétéché	ba59d6391a	fix: account for cosign default repository (#6849 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-11 11:19:40 +00:00
Charles-Edouard Brétéché	ed08a939ac	fix: kuttl tests for force-failure-policy-ignore config (#6840 ) * fix: kuttl tests for force-failure-policy-ignore config Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-11 12:24:12 +02:00
Charles-Edouard Brétéché	289ff3e1ce	refactor: factorise engine creation (#6837 ) * refactor: factorise engine creation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-11 07:12:05 +00:00
Jim Bugwadia	9fe330d7cf	fix API call SA token and response (#6842 ) Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2023-04-11 14:03:10 +08:00
Charles-Edouard Brétéché	3eff458126	fix: incorrect config loading when data is nil (#6818 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-11 03:34:47 +00:00
Charles-Edouard Brétéché	15afddd1d3	fix: makefile nit (#6838 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-10 17:45:21 -04:00
Charles-Edouard Brétéché	9e73ee7c91	chore: run conformance tests with multiple configs (#6811 ) * chore: run conformance tests with multiple configs Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * kuttl Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-10 20:30:49 +00:00
dependabot[bot]	c047e4c1f2	chore(deps): bump sigstore/cosign-installer from 2.8.1 to 3.0.2 (#6835 ) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.8.1 to 3.0.2. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](`9becc61764...9e9de2292d`) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-10 19:30:39 +00:00
dependabot[bot]	1b1a3f226f	chore(deps): bump golang.org/x/crypto from 0.7.0 to 0.8.0 (#6834 ) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.7.0 to 0.8.0. - [Release notes](https://github.com/golang/crypto/releases) - [Commits](https://github.com/golang/crypto/compare/v0.7.0...v0.8.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-04-10 13:50:34 +02:00
Charles-Edouard Brétéché	6e07693571	chore: fix makefile nits (#6828 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-07 17:07:32 -04:00
Charles-Edouard Brétéché	7a3f856ada	fix (#6825 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-07 17:37:07 +00:00
Charles-Edouard Brétéché	512e481119	chore: add slsa provenance jobs to all images published (#6824 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-07 15:20:56 +00:00
Charles-Edouard Brétéché	dfa8344eb4	fix: slsa provenance generation (#6821 ) * fix: slsa provenance generation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-07 13:47:15 +00:00
Charles-Edouard Brétéché	37c7880cc9	chore: implement expected tagging strategy (#6820 ) * chore: implement expected tagging strategy Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * version Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * version Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * version Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * version Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * version Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * version Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-07 08:10:53 -04:00
dependabot[bot]	a5fb8bdbd3	chore(deps): bump github/codeql-action from 2.2.10 to 2.2.11 (#6819 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.10 to 2.2.11. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`8c8d71dde4...d186a2a36c`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-04-07 07:41:14 +00:00
Charles-Edouard Brétéché	a6d6282b90	fix: improve config management (#6808 ) * fix: improve config logs Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * notification Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-06 19:13:32 +00:00
Charles-Edouard Brétéché	e79761eb95	chore: support multiple helm values (#6810 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-06 15:05:34 +00:00
Charles-Edouard Brétéché	58d4d3c28a	fix: add logs in webhook middlewares (#6797 )	2023-04-06 14:28:13 +00:00
Charles-Edouard Brétéché	a3147758e4	feat: add policy reporter to the dev lab (#6799 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-06 09:38:28 -04:00
dependabot[bot]	847e3e0fea	chore(deps): bump github/codeql-action from 2.2.9 to 2.2.10 (#6807 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.9 to 2.2.10. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`04df1262e6...8c8d71dde4`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-04-06 07:40:54 +00:00
Charles-Edouard Brétéché	de00c78513	refactor: simplify engine responses (#6804 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 22:55:42 +00:00
Jim Bugwadia	04d410d321	reinstate Sam (#6798 ) Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2023-04-05 21:25:51 +02:00
Charles-Edouard Brétéché	166122b0ea	refactor: engine response stats (#6796 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-06 01:07:04 +08:00
Charles-Edouard Brétéché	70b0f99f5e	chore: improve a few kuttl tests using shouldFail instead of commands (#6791 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 15:47:01 +00:00
Charles-Edouard Brétéché	5ec66918f6	feat: add subresource support to resource filters (#6780 ) * feat: add subresource support to resource filters Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * filter Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * values Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 13:51:07 +00:00
Charles-Edouard Brétéché	efde33c816	fix: drop hardcoded default exclusions (#6789 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 13:05:04 +00:00
Charles-Edouard Brétéché	ab8639b643	refactor: engine execution stats (#6792 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 12:27:18 +00:00
Charles-Edouard Brétéché	a710cccb7a	fix: replace background sa name in config by a flag (#6790 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 11:50:29 +00:00
shuting	a188491091	test: new kuttl test for image verify failure policy (#6788 ) * add a kuttl test Signed-off-by: ShutingZhao <shuting@nirmata.com> * rename policy Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-04-05 11:11:49 +00:00
Charles-Edouard Brétéché	784ca07419	refactor: engine rule response creation (#6784 ) * refactor: engine rule response creation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * private fields Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more private Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix unit tests Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 10:35:38 +00:00
Charles-Edouard Brétéché	6f8ef4fd30	fix: histogram buckets (#6783 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 09:58:07 +00:00
dependabot[bot]	b9da54e561	chore(deps): bump github.com/docker/docker (#6787 ) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 23.0.2+incompatible to 23.0.3+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](https://github.com/docker/docker/compare/v23.0.2...v23.0.3) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2023-04-05 09:11:36 +00:00
Charles-Edouard Brétéché	26d4154a1d	chore: bump a couple of deps (#6785 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-05 16:19:45 +08:00
Charles-Edouard Brétéché	5d6b987eec	refactor: kyverno_policy_execution_duration_seconds metric management (#6782 ) * refactor: kyverno_policy_results metric management Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: kyverno_policy_results metric management Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-04 16:34:58 +00:00
Charles-Edouard Brétéché	b2340785fc	refactor: kyverno_policy_results metric management (#6781 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-04 23:07:43 +08:00
Charles-Edouard Brétéché	2f1ac317f4	feat: add flag to skip resource filters in reports controller (#6778 ) * feat: add flag to skip resource filters in reports controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-04 13:05:29 +00:00
Charles-Edouard Brétéché	298e250693	feat: add exclude roles/cluster roles support in configmap (#6779 ) * feat: add exclude roles/cluster roles support in configmap Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * update chart Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * filter handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-04 11:59:02 +00:00
Vyom Yadav	80fc3013d3	fix: Support subresources as the trigger in generate rules (#6760 ) * fix: check background scanning only for validation policies Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com> * fix: Support subresources as the trigger in generate rules Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com> --------- Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>	2023-04-04 11:01:06 +00:00
Charles-Edouard Brétéché	4634760e9e	refactor: resolve roles/cluster roles/top level GVK earlier in the admission chain (#6775 ) * refactor: remove more admission request pointers Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: resolve roles/cluster roles earlier in the admission chain Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * enrich Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * enrich Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-04 10:23:20 +00:00
shuting	9bca7b36b1	fix clone test (#6777 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2023-04-04 11:46:58 +02:00
Charles-Edouard Brétéché	72e864fbca	feat: update resource filters (#6765 ) * feat: update resource filters Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-04-04 06:25:52 +00:00

1 2 3 4 5 ...

5752 commits