mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
1291 commits 16 branches 550 tags 288 MiB
Commit graph

60 commits

Author SHA1 Message Date
Jim Bugwadia
59e940a4b3 use negation anchor 2019-11-12 19:06:28 -08:00
Jim Bugwadia
99c241a4d9 fix disallow_host_network_hostport policy 2019-11-12 19:06:10 -08:00
Jim Bugwadia
e75791c58f use negation anchor 2019-11-12 19:02:31 -08:00
Jim Bugwadia
d9ce8818f0 fix disallow_host_network_hostport policy 2019-11-12 19:02:31 -08:00
Jim Bugwadia
ab2e671df5 update test scenario and change rule to audit mode 2019-11-07 19:28:48 -08:00
Jim Bugwadia
43e76e1237 fix policy 2019-11-07 19:03:09 -08:00
Jim Bugwadia
1173e062c9 - add policy and test for known ingress 
- fix messages and remove unnecessary comments in testrunner/scenario.go
 2019-11-05 19:07:44 -08:00
Jim Bugwadia
cd3e0f46f3 add policy doc 2019-11-05 16:45:37 -08:00
Jim Bugwadia
cab87f24ba add tect case 2019-11-05 15:32:45 -08:00
Shuting Zhao
664a85363a correct scenario test 2019-11-05 12:59:22 -08:00
Jim Bugwadia
5ded29f74e temp update for debugging 2019-11-05 12:28:44 -08:00
Shuting Zhao
764d0fede2 Merge commit '35bed4bc6aef6622b89f0fc4dee9a175aa9768ff' into 158_array_validation 2019-11-05 09:50:32 -08:00
Shivkumar Dudhani
cfbd212093
Merge pull request #427 from nirmata/375_handle_json_numbers_resubmit 
375 handle json numbers resubmit
 2019-11-04 18:05:24 -08:00
Jim Bugwadia
35bed4bc6a add safe-to-evict annotation 2019-11-04 17:55:13 -08:00
Jim Bugwadia
41afefbe8e add disallow Helm tiller 2019-11-03 18:19:06 -08:00
Jim Bugwadia
3b1143c934
Merge pull request #436 from nirmata/411_no_docker_sock_mount 
411 no docker sock mount
 2019-11-01 15:38:40 -07:00
shivkumar dudhani
a191bd67f4 update message string 2019-11-01 15:21:23 -07:00
Jim Bugwadia
1323a9a81e add policy and test case 2019-11-01 15:19:26 -07:00
Jim Bugwadia
8ddd9f036f
Merge branch 'master' into 410_no_new_capabilities 2019-11-01 14:53:56 -07:00
Jim Bugwadia
4fbc57bfed update policy and test case 2019-11-01 14:37:17 -07:00
Jim Bugwadia
aa6b65480a updated policy 2019-11-01 11:47:29 -07:00
Jim Bugwadia
eebfab87e5 add YAML and description 2019-10-31 18:40:54 -07:00
shivkumar dudhani
ea9bfe32cb update the policy 2019-10-31 13:29:16 -07:00
Shivkumar Dudhani
92c96aaf1f
Revert "use validatepattern in generate rule to check for subset existance" 2019-10-31 13:21:38 -07:00
shivkumar dudhani
61c1ea5a49 use validatepattern in generate rule to check for subset existance 2019-10-31 13:04:56 -07:00
shuting
a0f5419430
Merge pull request #416 from nirmata/158_array_validation 
update link to import policies
 2019-10-30 13:20:39 -07:00
Jim Bugwadia
3438e84013 fix YAML syntax 2019-10-30 13:12:29 -07:00
Jim Bugwadia
3783ae0495 update policy 2019-10-30 12:59:51 -07:00
Shuting Zhao
f25a336eeb - update doc; -remove duplicate policy 2019-10-30 12:29:57 -07:00
shivkumar dudhani
90575e1067 update policy 2019-10-24 18:48:48 -05:00
shivkumar dudhani
6b7b50f7af fix generate format 2019-10-24 12:37:52 -05:00
Shuting Zhao
c6d5ec7575 Merge commit '82647670a54ead965c8cb964f3063409d0826070' into 337_policy_description 
# Conflicts:
#	pkg/testrunner/testrunner_test.go
#	samples/README.md
#	samples/best_practices/policy_validate_deny_runasrootuser.yaml
#	test/scenarios/samples/best_practices/scenario_validate_nonRootUser.yaml
 2019-10-15 12:27:22 -07:00
Shuting Zhao
da57501dcd update description format 2019-10-14 16:33:19 -07:00
shivkumar dudhani
d98ba1ab1a remove audit flag, as its default behavior 2019-10-14 14:17:07 -07:00
Shuting Zhao
61808837fb update description 2019-10-14 13:58:47 -07:00
Shuting Zhao
4d2bcef411 remove duplicate 2019-10-14 13:50:00 -07:00
Shuting Zhao
75806146c6 Merge branch 'best_practice_policies' into 337_policy_description 
# Conflicts:
#	samples/README.md
 2019-10-14 13:21:10 -07:00
shivkumar dudhani
4abdec337d documentation updates 2019-10-14 10:47:54 -07:00
Shuting Zhao
46f72cb424 Provide descriptions for policies 2019-10-11 18:57:16 -07:00
Shuting Zhao
38bf4d6055 add 'deny-use-of-host-fs' 2019-10-10 18:42:54 -07:00
Shuting Zhao
24f3b8ac96 disallow automountServiceAccountToken 2019-10-10 12:29:48 -07:00
Shuting Zhao
f1ed0720c4 update default network policy to deny all ingress traffic 2019-10-10 11:08:20 -07:00
Shuting Zhao
7fcc6bbd33 require default namespace resource quota 2019-10-10 10:46:11 -07:00
Shuting Zhao
3087257b46 disallow use of default namespace 2019-10-10 10:34:49 -07:00
Shuting Zhao
012360ae3a allow trusted registries 2019-10-10 10:29:10 -07:00
Shuting Zhao
995efc4e63 Merge branch 'best_practice_policies' of https://github.com/nirmata/kyverno into best_practice_policies 
# Conflicts:
#	samples/README.md
 2019-10-09 23:50:49 -07:00
Shuting Zhao
c51c28bdd2 update readme 2019-10-09 23:46:18 -07:00
shivkumar dudhani
3f33e925f3 handle default and omitempty with condition anchor 2019-10-09 21:07:45 -07:00
Shuting Zhao
48c2c39da7 add samples/best_practices/require_default_network_policy.yaml 2019-10-09 18:52:48 -07:00
Shuting Zhao
4d29b461ff add require_image_tag_not_latest.yaml 2019-10-09 18:35:07 -07:00