Prateek Pandey
55f26601c7
fix: use policyName key to get the policy name ( #4113 )
...
In case of namespace policy `ur.spec.policy`
contains namespace/policy-name combinations, hence
can't be used to set the policy name label.
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-06-17 00:56:54 +08:00
Batuhan Apaydın
db154f9df3
chore(dockerfile): use buildx features for cross-compilation ( #4023 ) ( #4123 )
...
* chore(dockerfile): use buildx features for cross-compilation
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
* feat(kyverno): main container image
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-06-16 09:53:43 +00:00
vivek kumar sahu
0fe8dcb3b6
Updated jp command flags and also added URL for help. ( #4122 )
...
Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com>
2022-06-16 17:29:47 +08:00
Prateek Pandey
65a812db4c
fix: handle nil ur while retry ( #4109 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-06-15 17:57:15 +08:00
Jim Bugwadia
5baa956e11
Release 1.7 ( #4099 )
...
* cherry-pick fix attestation checks https://github.com/kyverno/kyverno/pull/3999
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove TUF initialization from main (#4098 )
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
2022-06-10 10:40:47 +01:00
shuting
6589fd2137
Bump Charts version to 2.5.0 ( #4092 )
...
* bump chart versions to v2.4.2
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Update "make gen-helm"
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Bump chart to v2.5.0
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* bump chart to 2.5.0
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-06-09 09:57:53 -04:00
shuting
2acb161c5b
bump chart versions to v2.4.2 ( #4089 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-06-07 14:11:12 -04:00
shuting
29f54396e2
cherry-pick #4079 ( #4088 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: treydock <tdockendorf@osc.edu>
2022-06-07 16:01:30 +00:00
shuting
72b7b304f4
Remove s390X ( #4063 ) ( #4064 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-06-03 08:57:38 +00:00
shuting
673a1c0318
Bump charts version to 2.4.1 ( #4061 )
...
* Fix handling of kyverno-policies version check when port in image tag (#4042 )
* Fix handling of kyverno-policies version check when port in image tag
Fixes #4031
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Add release notes for chart
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Fix release notes and use splitList
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Ensure preconditions are present with default values (#4046 )
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Bump charts version
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: treydock <tdockendorf@osc.edu>
2022-06-03 06:52:34 +00:00
treydock
e3b792bfc0
Ensure preconditions are present with default values ( #4046 )
...
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-06-03 11:31:38 +05:30
treydock
09c138fb6b
Fix handling of kyverno-policies version check when port in image tag ( #4042 )
...
* Fix handling of kyverno-policies version check when port in image tag
Fixes #4031
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Add release notes for chart
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
* Fix release notes and use splitList
Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-06-03 11:31:38 +05:30
shuting
704dc46ec3
Tag v1.7.0 ( #4050 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-06-02 11:15:18 +00:00
Prateek Pandey
bb4b5e1d85
refactor: bump KIND version to use v1.24.0 k8s release ( #4049 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-06-01 15:13:13 +00:00
Vyankatesh Kudtarkar
eb9a36ddc8
fix policy typo ( #4039 ) ( #4045 )
2022-05-31 16:51:05 +00:00
shuting
de41b176f6
Tag 1.7.0-rc3 ( #4036 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-30 09:01:16 +00:00
shuting
1f4575678c
Fix labels with invalid charrs ( #4034 ) ( #4035 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-30 05:46:03 +00:00
shuting
845a83d3e2
Cherry-pick #4022 ( #4033 )
...
* Cherry-pick #4022
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Remove unused file
2022-05-30 09:26:03 +05:30
Vyankatesh Kudtarkar
1ac444451e
fix vulnerable ( #4027 ) ( #4028 )
2022-05-26 05:43:08 +00:00
Vyankatesh Kudtarkar
515d59ebcb
Request operation value by default to CREATE ( #3894 ) ( #4026 )
...
* set by default request.operation to CREATE
Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com>
* Added test cases
Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
Co-authored-by: vivek kumar sahu <vivekkumarsahu650@gmail.com>
2022-05-26 04:36:36 +00:00
shuting
6e57e6a44b
Release v1.7.0-rc2 ( #4021 )
...
* Tag 1.7.0-rc2
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Update Helm doc
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-25 08:56:34 +00:00
Charles-Edouard Brétéché
f2c8096d5f
Cherry pick #4007 #4008 ( #4020 )
...
* fix: remove update ur status in generator (#4008 )
* fix: stop mutating cached resource in ur controller (#4003 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit dac733755b2e91d233c0#4007
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-25 08:15:59 +00:00
Charles-Edouard Brétéché
56d32e93e7
fix: stop mutation policies when autogen internals is enabled (#4004,#4009,#3996) ( #4016 )
...
* fix: stop mutation policies when autogen internals is enabled (#4004 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit c9f8a68d8a#4009 )
* fix: stop mutating cached resource in ur controller (#4003 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit dac733755b3a3556919f#3996 )
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit 1712dfa947
2022-05-25 12:14:40 +08:00
Jim Bugwadia
eaa629714e
cherry-pick fix attestation checks https://github.com/kyverno/kyverno/pull/3999 ( #4015 )
...
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2022-05-24 16:25:26 +00:00
Charles-Edouard Brétéché
d55f2c34a2
refactor: add policy event listener in ur controller ( #4012 ) ( #4014 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit cd1fa030ee
2022-05-24 16:01:11 +00:00
shuting
93c69780bb
Support @ for mutate targets ( #3998 ) ( #4010 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-24 13:05:50 +00:00
Prateek Pandey
07e1afaa61
fix: stop mutating cached resource in ur controller ( #4003 ) ( #4006 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-24 16:09:51 +05:30
Charles-Edouard Brétéché
78e7c5dc18
fix: move ur controller filtering in reconciler ( #3964 ) ( #3994 )
...
* refactor: use BackgroundProcessingEnabled method
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: webhooks metrics reporting
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: metrics package
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: move ur controller filtering in reconciler (#3964 )
* fix: move ur controller filtering in reconciler
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: mark ur retry on conflict
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: test data
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: add filter back in update ur handler
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: added some logs about attempts and increased backoff
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: reconciliation logic
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: Test_Generate_Synchronize_Flag
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: small nits
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
(cherry picked from commit 1936d86623
2022-05-23 23:53:49 +08:00
Prateek Pandey
8dbadbc96b
fix: release ur when handler pod is gone ( #3993 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-05-23 14:23:10 +00:00
Prateek Pandey
97b874897b
fix: mark ur retry on conflict ( #3961 ) ( #3963 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-18 07:20:07 +00:00
shuting
c98d80627c
fix: replica count in helm chart ( #3954 ) ( #3962 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-18 04:16:13 +00:00
Prateek Pandey
3f47ab6a5d
Cherry pick #3953 #3955 ( #3960 )
...
* Cleanup URs on trigger deletion (#3955 )
* Clean URs on trigger deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Make kyverno api import aliases consistent
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Fix gofumpt error
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* Remove unused code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
* fix panic issue for ur (#3953 )
* fix the import
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-05-18 11:45:29 +08:00
Prateek Pandey
7d66968d7f
fix: handle UR delete once trigger namespace deleted ( #3934 ) ( #3938 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-05-17 15:41:42 +08:00
Prateek Pandey
000c90d424
fix: use patch to update handler status in UR ( #3927 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-05-17 12:59:11 +08:00
shuting
e779cb866a
Cleanup the UR for mutate policies once it's completed ( #3923 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-16 04:45:44 +00:00
shuting
4972f20259
Remove permissions in helm-release workflow ( #3901 ) ( #3903 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-12 08:34:38 +00:00
shuting
e84b508ffb
Release v1.7.0-rc1 ( #3896 )
...
Tag v1.7.0-rc1
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-05-12 05:23:14 +00:00
Jim Bugwadia
f05d86d375
cherry-pick #3893 ( #3895 )
2022-05-12 04:16:15 +00:00
Vyankatesh Kudtarkar
a0eadad77b
Fix subject match selector issue in cli ( #3887 ) ( #3892 )
...
Signed-off-by: Vyankatesh vyankateshkd@gmail.com
2022-05-11 16:36:42 +00:00
Prateek Pandey
44be131ed0
skip var checks in attestations ( #3876 ) ( #3885 )
...
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2022-05-11 09:57:00 +00:00
Prateek Pandey
ac75ea1717
fix: undo length validation check for generate rule resource name ( #3865 ) ( #3872 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-11 05:44:50 +00:00
shuting
0e6bf44b0f
Handle errors properly for mutate and generate on existing resources ( #3863 ) ( #3866 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
2022-05-10 23:08:50 +05:30
Prateek Pandey
eb25d6dc6f
refactor: remove unused functions ( #3844 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-05-10 18:13:25 +08:00
Vyankatesh Kudtarkar
737d3bdd36
handle subresources ( #3841 ) ( #3848 )
...
* handle subresources
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* make fmt
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix logger name
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix webhook and logs
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* make fmt
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-05-10 12:34:17 +08:00
Prateek Pandey
8b6d3d1f6a
feat: trigger generate on existing matched resource ( #3819 )
...
* feat: trigger generate on existing matched resource
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* refactor the triggers and fix review comments
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* add trigger for other matching kinds
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* implement match exclude using dynamic client
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* refactor generate trigger
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* increase sleep timeout
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* optimize unstructured list
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* fix review comments
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* log refactor and clean debug comments
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-05-09 07:13:11 +00:00
Charles-Edouard Brétéché
bbe65959bc
refactor: webhook config package (part 2) ( #3833 )
...
* refactor: webhookconfig package (part 1)
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: webhook config package (part 2)
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-08 14:14:31 +02:00
Charles-Edouard Brétéché
af56adb0a6
refactor: webhookconfig package (part 1) ( #3831 )
...
* refactor: webhookconfig package (part 1)
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix: sonatype issue
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-08 12:47:49 +01:00
Jim Bugwadia
69ac94b0ee
fix check and add logs ( #3838 )
...
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2022-05-08 07:45:02 +00:00
Sambhav Kothari
2dc54e5c1b
Allow variables of any kind to be defined ( #3828 )
...
Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>
2022-05-07 20:30:11 +00:00
Charles-Edouard Brétéché
306b22a5db
fix: policy deletion in webhookconfig ( #3832 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-05-07 21:09:19 +01:00
