Charles-Edouard Brétéché
|
f87fa52cb7
|
feat: bump to k8s 1.31 (#10938)
* feat: bump to k8s 1.31
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* tidy
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* mod
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix otel
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix otel schema
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: fix image verification tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* linter issues
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cel change
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-08-28 17:09:58 +00:00 |
|
Mariam Fahmy
|
c796bb765c
|
fix: return policies with either audit or enforce rules from the cache (#10667)
* fix: return policies with either audit or enforce rules from the cache
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: introduce validationFailureAction under verifyImage rules
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add chainsaw tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-08-06 18:24:28 +00:00 |
|
Mariam Fahmy
|
6d732d28c7
|
fix: get ns labels before creating a policy context (#10773)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-08-02 05:14:36 +03:00 |
|
Mariam Fahmy
|
734f1df059
|
fix: check the resource namespace (#10738)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-07-26 21:45:54 +08:00 |
|
Mariam Fahmy
|
94d9bbe73f
|
chore: use v2 clients for policy exceptions (#10530)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-06-24 16:36:55 +00:00 |
|
Charles-Edouard Brétéché
|
b36a2ecdcc
|
feat: bump update request api version (#10508)
* feat: bump update request api version
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* use v2
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-06-20 09:44:43 +00:00 |
|
Mariam Fahmy
|
c391fba64c
|
fix: get ns labels in the cluster mode when using the CLI (#10348)
* fix: get ns labels in the cluster mode when using the CLI
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: fix chainsaw test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* Update .vscode/launch.json
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-06-04 10:44:44 +00:00 |
|
Mariam Fahmy
|
aa59bbc947
|
fix: remove unused parameters (#10327)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-05-29 13:40:41 +00:00 |
|
shuting
|
fb9c66f455
|
feat(perf): add new linter prealloc to enforce slice declarations best practice (#10250)
* feat(perf): add new linter prealloc to enforce slice declarations best practice
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(linter): prealloac slices
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
|
2024-05-20 14:46:35 +05:30 |
|
Charles-Edouard Brétéché
|
4438b24b69
|
refactor: exception selector interface (#9907)
* refactor: exception selector interface
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-03-28 08:03:01 +00:00 |
|
Charles-Edouard Brétéché
|
a1cb4f1c30
|
fix: remove deprecated imageSignatureRepository flag (#9698)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-02-08 12:10:29 +00:00 |
|
Sanskar Gurdasani
|
231e7a681e
|
Support PolicyExceptions with CLI (#9525)
* loding policyExecptions from func
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* adding PolicyExceptions in crds
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* adding PolicyExceptions in GetPolicy function
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* adding policyexceptions in Load function
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* resolve error becuase of now Getpolicy return policyexceptions
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* added -exception flag loaded policyexception
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* added policyexceptions in processor and NewEngine
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* Revert "added -exception flag loaded policyexception"
This reverts commit f53b205c08.
* Revert "Added support for PolicyExceptions for apply command "
This reverts commit 82689ea0c1.
* Update cmd/cli/kubectl-kyverno/commands/test/test.go
loading exceptions with policies
Co-authored-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Signed-off-by: Sanskar Gurdasani <92817635+Sanskarzz@users.noreply.github.com>
* updated GetFullPaths function and remove unnecessary code
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* added tests for loading exceptions in GetPolicy function
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* added tests for loading policy exceptions
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* Used selector in List function
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* generated cli crd
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* updated loadpolicy_test tests and corrected kind
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* resolved unit test error in path_test.go file
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* limiting the usage of exceptions to ValidatingAdmissionPolicies
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
* remove changes in common code
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>
Signed-off-by: Sanskar Gurdasani <92817635+Sanskarzz@users.noreply.github.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-01-31 22:28:14 +00:00 |
|
Vishal Choudhary
|
c2e388a71c
|
fix: update CLI to use store for fetching regclient (#9315)
* fix: use docker keychain as default in 1.11
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: use store to get registry client
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: use kyverno as username
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: missed cli-test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: changed location
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: undo test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-01-05 06:26:25 +00:00 |
|
shuting
|
67b96a7cf2
|
refactor: mutate checks (#9255)
* refactor
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
|
2023-12-22 15:07:17 +02:00 |
|
raffis
|
cdd5d4fd22
|
fix(kubectl-kyverno): apply registry auth (#9151)
* fix(kubectl-kyverno): apply registry auth
Signed-off-by: Raffael Sahli <raffael.sahli@doodle.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Raffael Sahli <raffael.sahli@doodle.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-12-19 21:33:05 +00:00 |
|
Charles-Edouard Brétéché
|
584f841c1e
|
refactor: make CLI store non static (#9200)
* refactor: make CLI store non static
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* registry access
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* apply
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-12-19 22:45:53 +08:00 |
|
Charles-Edouard Brétéché
|
3f865d2038
|
fix: deep copy resource in cli when operation is update (#9191)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-12-18 15:31:19 +00:00 |
|
Anushka Mittal
|
f3c03f5257
|
Changes to correctly run delete operation in kyverno11beta4 (#8786)
* Changes to correctly run delete operation in kyverno11beta4
Co-authored-by: Anushka Mittal <anushka@nirmata.com>
Co-authored-by: Julian-Chu <yulang.chu@gmail.com>
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
* Update test/cli/test/deny-pod-deletion/deny-pod-deletion.yaml
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Signed-off-by: shuting <shutting06@gmail.com>
* Update test/cli/test/deny-pod-deletion/deny-pod-deletion.yaml
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Signed-off-by: shuting <shutting06@gmail.com>
* Add README.md for new test
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
* Correct policy.yaml
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
* Add new lines in test files
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
* Correct kyverno-test file
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
* Correct values.yaml
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
* Correct test files
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
* Add new test
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
---------
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
Signed-off-by: Anushka Mittal <138426011+anushkamittal2001@users.noreply.github.com>
Co-authored-by: shuting <shutting06@gmail.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2023-11-02 08:25:46 -04:00 |
|
Charles-Edouard Brétéché
|
a43a20adb9
|
feat: add cli api schemas (#8422)
* feat: add cli values schema
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* docs
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* makefile
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* v1alpha1
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* nits
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-17 23:50:17 +03:00 |
|
Charles-Edouard Brétéché
|
901efbc74c
|
fix: cli output improvements (#8398)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-14 11:45:18 +00:00 |
|
Charles-Edouard Brétéché
|
b9bc57b201
|
fix: replace fmt.Print calls by fmt.Fprint ones (#8389)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-14 02:55:19 +03:00 |
|
Charles-Edouard Brétéché
|
14ab6b72a2
|
fix: Kyverno variable substitution might not work correctly if the top level variable key contains dots (#8377)
* fix: Kyverno variable substitution might not work correctly if the top level variable key contains dots
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-13 14:04:39 +00:00 |
|
Charles-Edouard Brétéché
|
e3188fca8c
|
fix: Overridden request.operation is not considered by match/exclude with operations (#8361)
* fix: verifyImages w/ multiple entries is not consistent
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* clean
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: Kyverno apply produces false positives when validating 'empty dangling' tags
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: Overridden request.operation is not considered by match/exclude with operations
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-12 18:56:31 +00:00 |
|
Charles-Edouard Brétéché
|
dde312e65d
|
refactor: cli proper error handling (#8360)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-12 16:07:06 +00:00 |
|
Charles-Edouard Brétéché
|
44f0de5c53
|
fix: verifyImages w/ multiple entries is not consistent (#8357)
* fix: verifyImages w/ multiple entries is not consistent
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* clean
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unit tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-12 15:20:21 +00:00 |
|
Charles-Edouard Brétéché
|
045e955a6e
|
refactor: simplify cli processor (#8352)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-12 12:07:12 +00:00 |
|
Charles-Edouard Brétéché
|
10bb27b4da
|
fix: cli engine invocation order (#8327)
* fix: cli engine invocation order
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* mutate
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* verify images
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* validate
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* generate
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix and tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-11 13:41:36 +00:00 |
|
Charles-Edouard Brétéché
|
74fed89a17
|
fix: simplify cli autogen and labels selector check (#8325)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-10 19:10:02 +00:00 |
|
Charles-Edouard Brétéché
|
6b62358dae
|
refactore: move utils store package (#8293)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-06 15:17:12 +00:00 |
|
Charles-Edouard Brétéché
|
e98bfd1cd9
|
refactor: introduce cli processor package (#8281)
* refactor: introduce cli processor package
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* counts
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2023-09-06 12:48:55 +08:00 |
|