mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 07:57:07 +00:00
Code Activity
3116 commits 20 branches 550 tags 288 MiB
Commit graph

3116 commits

This branch
This branch
All branches
Author SHA1 Message Date
Jim Bugwadia
6dff9e0ab9 merge and resolve conflicts 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2021-03-25 16:43:12 -07:00
shuting
c08843ef77
Add Images info to variables context (#1725) 
* - remove supportMutateValidate; - refactor new context in the webhook

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* add ImageInfo to variables context

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* revert unexpected changes

Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-23 10:34:03 -07:00
Jim Bugwadia
f9be2651ad
Merge pull request #1729 from realshuting/1670_generate_concurrently 
make the number of generate workers configurable
 2021-03-23 08:26:19 -07:00
Jim Bugwadia
9b90b215fe
Merge pull request #1728 from realshuting/fix-variable-subtitution-in-context.apiCall.jmesPath 
fixes variable substitution in context.apiCall.jmesPath
 2021-03-23 08:25:12 -07:00
Shuting Zhao
669f01e9d2 add flag to kyverno's manifest 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-22 19:19:12 -07:00
Shuting Zhao
c3360b7389 make the number of generate workers configurable 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-22 19:14:06 -07:00
Shuting Zhao
d650d2b609 fixes variable substitution in context.apiCall.jmesPath 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-22 12:15:29 -07:00
Pooja Singh
bcc19971eb
skip GRs for spec being same in old and updated policy (#1723) 
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-19 15:33:52 -07:00
Pooja Singh
4128410207
Enhancement/existence anchor - should loop all the items in the array (#1719) 
* updated validating policy code

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* changed existance logic to loop all the items in array

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* updated comments and error messages

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-19 15:18:26 -07:00
Max Goncharenko
3373a79f26
Bug Fix: #1585 issue; validate on DELETE the oldResource (#1710) 
* fix #1585 issue; validate on DELETE the oldResource

Signed-off-by: Max Goncharenko <kacejot@fex.net>

* apply PR edits for #1585 issue fix; add test with nested var

Signed-off-by: Max Goncharenko <kacejot@fex.net>
 2021-03-19 14:43:26 -07:00
Jim Bugwadia
802e6c2507
Merge pull request #1721 from realshuting/webhook_ha 
Fix variable substitution in NumericOperatorHandler
 2021-03-18 14:09:02 -07:00
Shuting Zhao
7502e5da98 fix variable substitution in NumericOperatorHandler 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-18 13:40:14 -07:00
shuting
9a99cc3a33
fix Namespace scope (#1718) 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-17 10:28:44 -07:00
Vyankatesh Kudtarkar
04dc3ddfe3
Remove sample Dir and Remove testcases from test_runner (#1686) 
* remove sample Dir and remove testcases form test_runner

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* change git URL for test

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* fix fmt issue

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* remove unused policy and test yamls

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* fix yaml path issue

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-03-16 14:35:32 -07:00
Adam Kosmin
60653eb620
support envVars with sane default (#1715) 
Co-authored-by: windowsrefund <mtf8>
 2021-03-16 14:11:04 -07:00
Jim Bugwadia
ee54b8bff3
Merge pull request #1716 from jsnider-mtu/change-isNotIn 
Change isNotIn
 2021-03-16 13:43:24 -07:00
Pooja Singh
861cec36c0
fixed issue (#1707) 
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-16 12:57:31 -07:00
Joshua Snider
6699bfab8c Fix tests 
Signed-off-by: Joshua Snider <jsnider@mtu.edu>
 2021-03-16 15:00:42 -04:00
shuting
c816cf3d69
Add certificate renewer in webhook registration controller (#1692) 
* load TLS pair from existing secret, if applicable

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* remove Kyverno managed secrets during shutdown

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* - add certificate renewer; - re-structure certificate package

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* commit un-saved file

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* eliminate throttling requests while registering webhook configs

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* disable webhook monitor (in old pod) during rolling update

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* remove webhook cleanup logic from init container

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* update PR template

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* update link to the website repo

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* update repo name

Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-16 11:31:04 -07:00
Joshua Snider
9377f70840 Change isNotIn 
Signed-off-by: Joshua Snider <jsnider@mtu.edu>
 2021-03-16 14:26:41 -04:00
Jim Bugwadia
ff4fb41bdf
Merge pull request #1680 from jsnider-mtu/bug/groupVersion-in-api-path 
Bug Fix #1679; Set Version to Group/Version for /apis/* URLs
 2021-03-16 08:43:44 -07:00
Max Goncharenko
24c4f06ecd Fix #1506; Resolve path reference in entire rule instead of just pattern/overlay 
Signed-off-by: Max Goncharenko <kacejot@fex.net>
 2021-03-16 13:45:40 +02:00
Max Goncharenko
db49046e26
fix #1465: raise log level to error; add failed rules (#1709) 
Signed-off-by: Max Goncharenko <kacejot@fex.net>
 2021-03-15 15:34:21 -07:00
Arsh Sharma
1dfcef1cc8
fix: changed logic for In and NotIn for sets (#1704) 
Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>
 2021-03-15 12:59:24 -07:00
shuting
70d90ffb06
- remove preProcessJSONPatches; - update local Dockerfile (#1703) 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-15 10:29:46 -07:00
Yashvardhan Kukreja
bc1e28dbd6
fix: overwrite the output file when repetedly executing kyverno apply command (#1701) 
Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>
 2021-03-11 16:30:37 -08:00
Vyankatesh Kudtarkar
274287617a
fix git branch issue in test command (#1697) 
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-03-11 11:46:36 -08:00
Pooja Singh
22f9eb0ac5
Merge pull request #1694 from NoSkillGirl/bug/1693_namespaceSelector_cli 
Policy without namespace selector gives error in Kyverno CLI - "pass the namespace labels"
 2021-03-12 00:39:25 +05:30
Raj Babu Das
08643773c3
removing go.sum from github workflow and adding unused pkg check (#1698) 
Signed-off-by: rajdas98 <mail.rajdas@gmail.com>
 2021-03-11 10:14:46 -08:00
Jim Bugwadia
f5c2c30909
Merge pull request #1696 from kyverno/add_starchart_readme 
Update README.md
 2021-03-11 07:13:40 -08:00
Jim Bugwadia
0ce59cb806 Update README.md 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2021-03-10 22:51:12 -08:00
NoSkillGirl
9caa926225 code improvement 
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-11 10:31:53 +05:30
shuting
c8a41d83f7
Update Dockerfile; remove securityContext runAsUser (#1695) 
* - run Kyverno with specific uid; - remove "runAsUser" from deployment manifest

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* add LD_FLAGS when push Kyverno images

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* start Kyverno with UID 10001

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* update initContainer and CLI Dockerfiles

Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-10 14:47:09 -08:00
NoSkillGirl
247c876d25 added condition for policy with namespace selector 
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-11 00:24:21 +05:30
Jim Bugwadia
bb361df696
Merge pull request #1597 from yashvardhan-kukreja/issue-1242/multiline-yaml-string-support 
feat: added functionality for delimiting multi-line block by newline characters
 2021-03-10 09:58:38 -08:00
Pooja Singh
af4b85d3a8
Kyverno CLI - Namespace Selector (#1669) 
* added struct for namespace selector

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* added logic for namespace selector

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* added test case

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* improved code

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-09 12:45:45 -08:00
Pooja Singh
4f3798862a
added condition for slash in cli (#1667) 
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-09 12:03:21 -08:00
Joshua Snider
b0fd2403e8 Add unit test 
Signed-off-by: Joshua Snider <jsnider@mtu.edu>
 2021-03-08 22:56:14 -05:00
Jim Bugwadia
16a61978c9
add issue configuration 2021-03-07 14:31:18 -08:00
Jim Bugwadia
0e9d3c8456
Delete scenario-to-support.md 2021-03-07 14:24:23 -08:00
Jim Bugwadia
94970c7632 Update issue templates 2021-03-07 13:45:27 -08:00
Joshua Snider
23149738df Set Version to Group/Version for /apis/* URLs 
Signed-off-by: Joshua Snider <jsnider@mtu.edu>
 2021-03-06 00:22:12 -05:00
Jim Bugwadia
0a7f3e091b
Merge pull request #1678 from jsnider-mtu/bug/1668 
Bug Fix #1668; Fix API path
 2021-03-05 11:28:31 -08:00
jsnider-mtu
81b147e279 Replace spaces with tabs 
Signed-off-by: jsnider-mtu <jsnider@mtu.edu>
 2021-03-05 14:13:00 -05:00
jsnider-mtu
b86342c097 Fix API path 
Signed-off-by: jsnider-mtu <jsnider@mtu.edu>
 2021-03-05 14:05:12 -05:00
Shuting Zhao
592394df02 release v1.3.4 2021-03-05 10:56:02 -08:00
Vyankatesh Kudtarkar
9e831ec959
Bug Fix: Extends match / exclude to use apiGroup and apiVersion (#1218) (#1656) 
* Extends match / exclude to use apiGroup and apiVersion

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* fix gvk issue

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-03-04 16:45:52 -08:00
Vyankatesh Kudtarkar
adb381705f
Fix: test command should return a status code for failure / success (#1655) 
* Fix: test command should return a status code for failure / success

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* add exit code for status sucess and fail

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-03-04 16:09:18 -08:00
Shuting Zhao
edbd7bf222 release v1.3.4-rc1 
Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-03-03 12:00:31 -08:00
Vyankatesh Kudtarkar
4a8c52c5f1
fix null issue (#1665) 
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-03-03 11:27:58 -08:00