kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00

Author	SHA1	Message	Date
Charles-Edouard Brétéché	a0bcf7a966	fix: configure idle timeout in server (#5062 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 12:09:04 +00:00
Charles-Edouard Brétéché	6070092b6a	fix: image verification reports missing in admission mode (#5037 ) * fix: image verification reports missing in admission mode Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-19 11:25:47 +00:00
Charles-Edouard Brétéché	eac23af077	fix: detection of kyverno going down (#5055 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-19 10:06:48 +00:00
Charles-Edouard Brétéché	749c1bab3b	fix: do not update reports when they are identical (#5056 ) * fix: do not update reports when they are identical Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix linter Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 09:32:43 +00:00
Charles-Edouard Brétéché	c4b3301ab0	fix: go routines not gracefully shut down in controllers (#5022 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-19 08:54:48 +00:00
Charles-Edouard Brétéché	cdfac95cdb	fix: account for policy/rule deletion in aggregated reports (#5048 ) * fix: account for policy/rule deletion in aggregated reports Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * reduce delay Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 08:16:28 +00:00
Charles-Edouard Brétéché	5aec07215f	feat: add image verification support to background scan (#5047 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-18 15:23:02 +00:00
Charles-Edouard Brétéché	5a09a78350	feat: add controller logger helper (#5029 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-18 14:42:43 +00:00
Charles-Edouard Brétéché	e7fac3a57f	fix: lease log message (#5030 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-18 12:46:09 +00:00
Charles-Edouard Brétéché	a15853910b	feat: make shutdown more graceful (#5031 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-18 10:55:33 +00:00
Pratik Shah	632bd99612	Fixed issue-4655: verifyImages is executed before mutate (#4996 ) Signed-off-by: Pratik Shah <pratik@infracloud.io>	2022-10-18 08:38:28 +00:00
Shivansh Yadav	becf73227b	validate patchJSON6902 (#4469 ) * validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * test: validateJSON6902 tests Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * test: validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> Signed-off-by: Shivansh Yadav <yadavshivansh@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 15:25:03 +00:00
Vyankatesh Kudtarkar	f5748b1e70	remove RBACInfo check (#5015 )	2022-10-17 14:47:06 +00:00
Charles-Edouard Brétéché	cb0410dcf1	fix: policy not denied when kinds set is empty (#5016 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 14:10:42 +00:00
Charles-Edouard Brétéché	6270d40f50	fix: global anchor warning (#4962 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 17:15:57 +05:30
Charles-Edouard Brétéché	a89fbac333	fix: don't process non background policies in background scan (#5008 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 13:01:41 +02:00
Charles-Edouard Brétéché	02e832a771	fix: update policy status (#5006 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 09:28:33 +00:00
Prateek Pandey	2bd6c62b55	fix: use default retry with retryfunc for a conflict (#4973 ) DefaultRetry is the recommended retry for a conflict where multiple clients are making changes to the same resource Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 08:18:52 +00:00
Charles-Edouard Brétéché	3ebb6284cc	refactor: add update status helper (#4985 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 05:52:54 +00:00
Vyankatesh Kudtarkar	f3e40efcd7	fix principal and role variables are not substituted (#5000 )	2022-10-17 05:16:14 +00:00
Charles-Edouard Brétéché	ea1b64ab08	fix: skip admission in dry run requests (#4994 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-17 04:01:06 +00:00
Charles-Edouard Brétéché	aedaa412a0	fix: webhooks not registering when using name override (#4992 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 01:21:43 +00:00
Charles-Edouard Brétéché	5f6b04ca69	fix: config reloading not working correctly (#4951 ) * fix: config reloading not working correctly Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * nits Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 17:36:46 +00:00
Charles-Edouard Brétéché	1f3c429cd7	fix: missing autogen rules in status (#4971 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 17:02:10 +00:00
Charles-Edouard Brétéché	afe9036347	fix: add user info in admission request logs (#4969 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 16:29:48 +00:00
Charles-Edouard Brétéché	f0703a5c6b	fix: don't produce empty admission reports (#4966 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 15:55:51 +00:00
Charles-Edouard Brétéché	47780bf37f	fix: improve banned types management in reports (#4953 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-14 23:20:30 +08:00
Charles-Edouard Brétéché	e749907302	fix: missing watchers in resource report controller (#4967 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 13:55:50 +00:00
Pratik Shah	caab013a86	Fixed issue-4530: Added separate attestor type for secrets and KMS (#4733 ) Signed-off-by: Pratik Shah <pratik@infracloud.io> Signed-off-by: Vyankatesh <vyankateshkd@gmail.com>	2022-10-14 09:40:46 +00:00
Pratik Shah	8a0083105d	Added support to specify key signature algorithm in verifyImages (#4855 ) Signed-off-by: Pratik Shah <pratik@infracloud.io> Signed-off-by: Pratik Shah <pratik@infracloud.io>	2022-10-14 05:39:57 +00:00
Charles-Edouard Brétéché	16aca2816f	fix: don't report ready until certs are valid (#4934 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 04:23:42 +00:00
Charles-Edouard Brétéché	56d90888e0	fix: consider generateName when matching resources (#4945 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-13 16:02:01 +00:00
Charles-Edouard Brétéché	a62a0c1f9f	fix: probes should work in debug mode (#4926 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-13 14:40:35 +00:00
Charles-Edouard Brétéché	9e933e8d21	fix: set operation in context when necessary (#4940 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-13 19:33:49 +05:30
Charles-Edouard Brétéché	ed88e9f8d2	fix: panic when bad variable substitution (#4928 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-13 10:16:47 +00:00
Charles-Edouard Brétéché	090b68e55d	feat: make cert renewer private and add server name support (#4904 ) * fix: remove unnecessary dependencies from tls package Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * feat: make cert renewer private and add server name support Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * nits Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-13 09:46:05 +00:00
XDRAGON2002	03c41e7746	[Cleanup] Disable PolicySkipped events (#4913 ) * remove skip events Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * update conditions Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * improve conditions Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * remove redundant function Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-13 08:32:20 +00:00
Sandesh More	17ba925490	add filter for validation policies when ValidationFailureActionOverrides is used (#4809 ) Signed-off-by: Sandesh More <sandesh.more@infracloud.io> Signed-off-by: Sandesh More <sandesh.more@infracloud.io>	2022-10-13 07:59:10 +00:00
Charles-Edouard Brétéché	25963aba60	fix: openapi controller discovery (#4912 ) * refactor: openapi controller part 2 Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rename Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rename 2 Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * move controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * move controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix: openapi controller discovery Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 12:23:47 -07:00
Charles-Edouard Brétéché	b3021f5a57	refactor: openapi controller part 2 (#4910 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 22:24:16 +05:30
Charles-Edouard Brétéché	7cef1c00d9	fix: clean background scan reports (#4908 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 21:13:33 +05:30
Charles-Edouard Brétéché	de67a507cd	refactor: openapi controller part 1 (#4901 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-12 11:38:48 +00:00
Charles-Edouard Brétéché	d25dccbd9c	fix: remove unnecessary dependencies from tls package (#4903 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 09:36:26 +00:00
Charles-Edouard Brétéché	8e15982448	fix: reduce webhook controller logs (#4897 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 10:39:27 +02:00
Charles-Edouard Brétéché	4aed9359cb	refactor: manage webhooks with webhook controller (#4846 ) * refactor: add config support to webhook controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: add client config to webhook controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * migrate verify webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * v1 Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: move policy webhooks management in webhook controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * policy validating webhook config Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * watch policies Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * refactor: migrate resource webhook management in webhook controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * mutating webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * auto update Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * auto update and wildcard policies Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * policy readiness Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix: can't use v1 admission Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * reduce reconcile Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * watchdog Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * health check Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * runtime utils Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * runtime utils Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * watchdog check Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * remove delete from mutating webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-12 06:52:42 +00:00
Charles-Edouard Brétéché	7d897016e9	fix: auto gen enabled when using names (#4863 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-12 06:09:02 +00:00
Charles-Edouard Brétéché	465f9d204b	fix: non watchable resources in report controller (#4888 ) * fix: non watchable resources in report controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix events Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-12 13:36:24 +08:00
Charles-Edouard Brétéché	f7db09fcc2	fix: background scan labels (#4865 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-11 19:54:22 +00:00
Prateek Pandey	23ab7390a3	fix: hardening policy validation for generate cloneList (#4881 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-10-11 23:35:07 +05:30
Batuhan Apaydın	2860775dc3	feature: use cert extension oid as key (#4854 ) Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com> Co-authored-by: Furkan Türkal <furkan.turkal@trendyol.com> Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com> Co-authored-by: Furkan Türkal <furkan.turkal@trendyol.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-10 12:39:09 -07:00
Charles-Edouard Brétéché	c74209f6c5	fix: replace AbsPath with RequestURI to support query params (#4849 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-08 15:22:51 +02:00
Charles-Edouard Brétéché	83b7f919aa	refactor: make cert manager a real controller (#4792 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-07 19:51:37 +05:30
Charles-Edouard Brétéché	7bfcf7d7e2	refactor: add config support to webhook controller (#4838 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-07 11:32:38 +00:00
Charles-Edouard Brétéché	ebe86473fc	feat: use a dedicated policy metrics controller (#4818 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-07 10:53:54 +00:00
Charles-Edouard Brétéché	7849fbbc8a	refactor: leader controllers management (#4832 ) * refactor: leader controllers management Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * rename Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix start Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix deps Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * remove dead code Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-07 07:38:38 +00:00
Jim Bugwadia	106880c8d0	fix extension checks (#4836 ) * fix extension checks Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test Signed-off-by: Jim Bugwadia <jim@nirmata.com> Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-06 13:08:34 -07:00
yinka	e38f9a79a8	fix: call depth in logging package and global logger support for call depth (#4834 ) * upgrade controller-runtime dependency Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * reset global logger in logging package Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * add description to globallogger Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * push only relevant changes Signed-off-by: damilola olayinka <holayinkajr@gmail.com> Signed-off-by: damilola olayinka <holayinkajr@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-06 19:37:10 +00:00
Charles-Edouard Brétéché	1509fa6251	refactor: non leader controllers management (#4831 )	2022-10-06 18:38:35 +08:00
Charles-Edouard Brétéché	74172f2079	refactor: make tls cert func not depending on cert controller (#4820 ) * refactor: make tls cert func not depending on cert controller Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fmt Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * clean Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-06 08:43:43 +00:00
Charles-Edouard Brétéché	13ce3f55ed	fix: use new client in tls package (#4746 ) * fix: use new client in tls package Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix import Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-06 08:11:59 +00:00
Charles-Edouard Brétéché	1c337bdf44	fix: debug mode (#4785 ) * fix: debug mode Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-06 15:41:05 +08:00
ansalamdaniel	27de93a3d2	fix: add policy validation for ValidationFailureActionOverride field (#4784 ) Signed-off-by: ansalamdaniel <ansalam.daniel@infracloud.io>	2022-10-06 06:16:12 +00:00
ShutingZhao	d3a18d0c83	Bump k8s libraries to v0.25.2 Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-10-06 03:50:39 +08:00
Charles-Edouard Brétéché	f7dde0ab96	chore: use concurrent map v2 (generics) (#4803 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-06 00:35:09 +08:00
Charles-Edouard Brétéché	144afb6f0f	refactor: split main into sub func (#4810 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-05 10:58:35 +00:00
Charles-Edouard Brétéché	3941754a92	feat: add context support to leader election (#4811 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-05 10:19:50 +00:00
Charles-Edouard Brétéché	433c5bfd77	feat: add context funcs to logging package (#4812 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-05 17:37:52 +08:00
shuting	e75b57e635	skip succeed rules when building the blocked return message (#4804 ) Signed-off-by: ShutingZhao <shuting@nirmata.com> Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-10-04 10:34:37 +00:00
Pradeep Lakshmi Narasimha	4e1c1e6785	fix: subject and issuer validation when attestations are present (#4786 ) Signed-off-by: praddy26 <pradeep.vaishnav4@gmail.com> Signed-off-by: praddy26 <pradeep.vaishnav4@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-04 18:03:56 +08:00
Charles-Edouard Brétéché	f079bfb25f	fix: remove error prone debug field (#4794 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-04 13:21:03 +05:30
Charles-Edouard Brétéché	1f41c2b84a	fix: logger panic (#4793 ) * fix: logger panic Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * makefile Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 15:42:52 +00:00
Charles-Edouard Brétéché	59f11f08b3	fix: remove explicit wait for cache sync (#4791 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 14:44:41 +00:00
Charles-Edouard Brétéché	278dbba316	fix: new cert manager controller never returns error (#4789 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 13:48:34 +00:00
Charles-Edouard Brétéché	3971376814	refactor: introduce webhook controller (#4749 ) * refactor: introduce webhook controller Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix linter issues Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix linter Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix imports Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * merge main Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * merge main Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix linter Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 11:23:02 +00:00
Charles-Edouard Brétéché	7213abec36	fix: remove reference to controller runtime log (#4779 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 12:55:39 +02:00
Charles-Edouard Brétéché	209bab2059	refactor: more context less chans (#4764 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 09:19:01 +00:00
Vishal Choudhary	44763cf61b	Fix: Typo in x509_decode JMESPath function's note (#4773 ) * changed 'json' to 'an object' * changed 'json' to 'an object' sign: Vishal Choudhary <contactvishaltech@gmail.com> * changed 'json' to 'an object' * changed 'json' to 'an object' sign: Vishal Choudhary <contactvishaltech@gmail.com> Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-03 08:26:19 +00:00
Charles-Edouard Brétéché	25cf8d6c1e	fix: add workers to the controller interface (#4776 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-03 07:55:59 +00:00
yinka	688b4fb8e3	add package logger in files (#4766 ) * add package logger in files Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * add package logger to initContainer and other files Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * helm docs Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * helm default values Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * release notes Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: damilola olayinka <holayinkajr@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-02 19:45:03 +00:00
Charles-Edouard Brétéché	ac8f4ba59c	refactor: make server owner of the cleanup chan (#4765 ) * refactor: make server owner of the cleanup chan Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * gofumpt Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-30 16:13:29 +02:00
Charles-Edouard Brétéché	9aca37fe9f	refactor: use context in openapi controller (#4760 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-30 11:56:47 +00:00
Charles-Edouard Brétéché	287eb84d07	refactor: use context in controllers instead of chan (#4761 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-30 16:54:47 +05:30
Charles-Edouard Brétéché	c42851a37a	refactor: use context in dynamic client instead of chan (#4756 ) * refactor: use context in dynamic client instead of chan Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-30 10:12:21 +02:00
Eng Zer Jun	f40a3bc8f5	refactor: move from io/ioutil to io and os packages (#4752 ) The io/ioutil package has been deprecated as of Go 1.16 [1]. This commit replaces the existing io/ioutil functions with their new definitions in io and os packages. Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>	2022-09-30 12:55:19 +05:30
Charles-Edouard Brétéché	8784f95cc7	refactor: split main in a couple of funcs and use local loggers (#4754 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-30 08:13:13 +02:00
yinka	528bcbad6b	add and use package level logger (#4750 ) * add and use package level logger Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * small fixes Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * fix comments Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * add Info and Error functions Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * small fixes Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * move function calls Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * replace init function Signed-off-by: damilola olayinka <holayinkajr@gmail.com> Signed-off-by: damilola olayinka <holayinkajr@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-29 19:43:20 +00:00
Charles-Edouard Brétéché	7fa796e24a	fix: watch error in resource controller (#4751 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-29 23:39:34 +05:30
Charles-Edouard Brétéché	5a3532da91	chore: use constant in cert manager controller (#4747 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-29 17:50:19 +02:00
Charles-Edouard Brétéché	205bb28b52	feat: add typed client support and metrics wrapper (#4724 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-29 17:12:50 +05:30
shuting	1d83e86c12	Add PSa policy validations (#4735 ) * Validate PSa control names Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add validation checks for the PSa rule Signed-off-by: ShutingZhao <shuting@nirmata.com> Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-29 12:03:13 +08:00
Abhinav Sinha	a1182859ad	Added `x509_decode` JMESPath function (#4664 ) * Added `x509_decode` JMESPath function Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Use `crypto/x509` stdlib Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Return result as `map[string]interface{}` Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Made minor fixes Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Fixed error with unmarshalling decoded certificate Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Added e2e test for decoding X.509 certs Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Reverted to using `smallstep/zcrypto` for X.509 Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Minor fix Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Addressed reviews Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> * Removed redundant dependency on `pkg/errors` Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> Signed-off-by: Abhinav Sinha <abhinav@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-09-28 18:15:39 +00:00
Prateek Pandey	38c252952d	feat: add matchlabel selector support with multiple clone (#4713 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-09-28 17:44:38 +02:00
Charles-Edouard Brétéché	e0ab72bb9a	feat: reports v2 implementation (#4608 ) This PR refactors the reports generation code. It removes RCR and CRCR crds and replaces them with AdmissionReport, ClusterAdmissionReport, BackgroundScanReport and ClusterBackgroundScanReport crds. The new reports system is based on 4 controllers: Admission reports controller is responsible for cleaning up admission reports and attaching admission reports to their corresponding resource in case of a creation Background scan reports controller is responsible for creating background scan reports when a resource and/or policy changes Aggregation controller takes care of aggregation per resource reports into higher level reports (per namespace) Resources controller is responsible for watching reports that need background scan reports I added two new flags to disable admission reports and/or background scan reports, the whole reporting system can be disabled if something goes wrong. I also added a flag to split reports in chunks to avoid creating too large resources. Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Co-authored-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-09-28 17:15:16 +05:30
shuting	34c6920129	Support PSa integration by `controlName` only (#4710 ) * Remove "restrictedField" and "values" from podSecurity.exclude Signed-off-by: ShutingZhao <shuting@nirmata.com> * Remove commented code Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add unit tests for restricted_runAsNonRoot Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add baseline unit tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add unit tests for restricted controls Signed-off-by: ShutingZhao <shuting@nirmata.com> * Removes PSa tests at the engine level Signed-off-by: ShutingZhao <shuting@nirmata.com> * - Update API docs; - Add unit tests for wildcard images Signed-off-by: ShutingZhao <shuting@nirmata.com> * Remove autogen conversion for PSa policies Signed-off-by: ShutingZhao <shuting@nirmata.com> * copy pod with DeepCopy() Signed-off-by: ShutingZhao <shuting@nirmata.com> Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-28 10:03:53 +00:00
Charles-Edouard Brétéché	56c74272bb	chore: update client code generator (#4711 ) * chore: update client code generator Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix inconsistency on my mac Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-28 09:31:06 +00:00
Charles-Edouard Brétéché	073ff38cc9	fix: change key used in test (#4718 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-27 17:18:14 +00:00
Charles-Edouard Brétéché	160259d954	fix: missing client wrapper (#4703 ) * fix: missing client wrapper Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * v1beta1 Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * v1alpha2 Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * policy report Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-26 16:54:29 +00:00
Charles-Edouard Brétéché	481a09823f	refactor: use pod name as leader id (#4680 ) * refactor: use pod name as leader id Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix manifests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * makefile Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * leader client Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-26 16:25:27 +00:00
Charles-Edouard Brétéché	665e513c5e	fix: split webhook handlers per failure policy (#4650 ) * fix: split webhook handlers per failure policy Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix handlers Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * rolling update Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * better error message Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-09-26 15:55:46 +00:00
Charles-Edouard Brétéché	8741c34081	fix: shutdown controllers workers gracefully (#4681 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-09-26 15:24:57 +00:00
Pradeep Lakshmi Narasimha	e305aea95c	fix: namespaced policy targets namespace validation and scoping them to the policy's namespace (#4671 ) Signed-off-by: praddy26 <pradeep.vaishnav4@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-26 14:54:13 +00:00
Charles-Edouard Brétéché	79bff1c19c	refactor: replace signal package by signal.NotifyContext (#4691 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-09-26 14:24:32 +00:00
Charles-Edouard Brétéché	6a8085522a	fix: jmespath random error handling (#4697 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-26 13:33:52 +00:00
Prateek Pandey	9cc1e6b2b3	fix: handle auth permission for cloneList validation (#4684 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-09-26 13:23:00 +05:30
Charles-Edouard Brétéché	4d7e1281de	fix: namespaced policy not validated in engine (#4653 ) * fix: namespaced policy not validated in engine Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix test Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-26 12:47:37 +08:00
Vyankatesh Kudtarkar	23269b7f5c	Fix issue for wildcard versions (#4670 ) * Fix wildcard issue Co-Authored-By: vyankd <51167361+vyankd@users.noreply.github.com> * Delete res.yaml Co-Authored-By: vyankd <51167361+vyankd@users.noreply.github.com> Co-authored-by: vyankd <51167361+vyankd@users.noreply.github.com>	2022-09-23 22:04:39 +08:00
Sandesh More	01b1ece704	added kubeconfig and context flag to kyverno apply (#4524 ) Signed-off-by: Sandesh More <sandesh.more@infracloud.io>	2022-09-20 19:05:18 +05:30
Charles-Edouard Brétéché	328fdc8b3d	feat: add feature flag to disable background scan (#4638 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-19 12:00:36 +00:00
Charles-Edouard Brétéché	6eea7c45f7	feat: add explicit key support to controller utils (#4628 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-19 11:25:03 +00:00
Prateek Pandey	71404df826	refactor: update log based on the policy types (#4646 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-19 10:56:55 +00:00
Charles-Edouard Brétéché	42a2df56c1	refactor: add a couple of constants in api (#4640 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-19 09:11:12 +00:00
Charles-Edouard Brétéché	b9baae9746	fix: incorrect namespace in report controller (#4637 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-19 07:33:34 +00:00
Charles-Edouard Brétéché	316640c72b	fix: remove RCR from mutation webhook (#4636 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-19 09:04:50 +02:00
Charles-Edouard Brétéché	d256735399	feat: add controller utils tools (#4639 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-18 10:12:29 +01:00
Anurag	cadf577e4b	enhance jmespath random-filter (#4591 ) Signed-off-by: Anurag <contact.anurag7@gmail.com> Signed-off-by: Anurag <contact.anurag7@gmail.com>	2022-09-14 06:27:32 +00:00
Charles-Edouard Brétéché	e516fb868e	fix: lock in policy report mapper (#4601 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-13 16:30:14 +08:00
Charles-Edouard Brétéché	da5312c177	refactor: simplify RCR creator queue (#4578 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-12 14:48:27 +00:00
Charles-Edouard Brétéché	7c74e40b86	refactor: info in policyreport package (#4598 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-09-12 09:00:56 +00:00
Vyankatesh Kudtarkar	c7bcd5fadf	Fix multiple crd slowness issue (#4275 ) Signed-off-by: Vyankatesh vyankateshkd@gmail.com * fix multiple crd issue	2022-09-12 16:14:28 +08:00
Jim Bugwadia	ed6d9b9624	enable autogen for validate.podsecurity with no exclude (#4594 ) Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2022-09-12 12:33:35 +05:30
Charles-Edouard Brétéché	bc4bf5ee27	chore: switch to github.com/IGLOU-EU/go-wildcard (#4563 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-09-10 17:30:13 +00:00
Jim Bugwadia	c2b4a9434b	allow PSa validation with no exceptions (#4558 ) Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-10 16:58:10 +00:00
Charles-Edouard Brétéché	6a0fff7c9f	fix: split policy report flag (#4576 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-09-10 15:29:48 +00:00
Charles-Edouard Brétéché	f4fe017ede	chore: add toggle package unit tests (#4577 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-10 13:00:20 +00:00
Charles-Edouard Brétéché	d558c12470	refactor: move generation handler out of webhooks package (#4570 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-09 19:49:38 +05:30
Charles-Edouard Brétéché	10638362dc	refactor: move image verification handler out of webhooks package (#4569 ) * refactor: move mutation handler out of webhooks package Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * refactor: move image verification handler out of webhooks package Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-09 15:05:57 +02:00
Charles-Edouard Brétéché	20b8697ad8	refactor: move mutation handler out of webhooks package (#4567 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-09 12:48:29 +02:00
Charles-Edouard Brétéché	3e5af370a5	refactor: move validation audit out of webhooks package (#4562 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-09 09:27:07 +00:00
Charles-Edouard Brétéché	e900815dc0	refactor: move validation handler out of webhooks package (#4556 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-09 07:52:38 +00:00
Charles-Edouard Brétéché	3e5645dd32	refactor: make webhook metrics helpers static (#4554 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-09 07:11:16 +03:00
Charles-Edouard Brétéché	16c2d880c8	refactor: move webhook events utils in utils package (#4545 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 18:10:27 +02:00
Charles-Edouard Brétéché	3b556abe63	chore: add unit test for updating ur status (#4541 ) * fix: defer ur update until validation passes Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * chore: add unit test for updating ur status Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 21:59:51 +08:00
Charles-Edouard Brétéché	8fb0a9e8c7	fix: defer ur update until validation passes (#4540 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 12:53:08 +00:00
Charles-Edouard Brétéché	ed31fb0326	refactor: introduce ur updater (#4535 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 20:07:18 +08:00
Vyankatesh Kudtarkar	aa6abd99f2	Support V2beta1 Version (#4514 ) introduce new version V2beta1 which remove deprecated CRD types from version v1. Signed-off-by: Vyankatesh <vyankateshkd@gmail.com>	2022-09-08 11:19:16 +00:00
Charles-Edouard Brétéché	f0fa50b27e	refactor: webhook block and unit tests (#4531 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 08:36:31 +00:00
Charles-Edouard Brétéché	f791717aad	refactor: webhook propagate start time along handlers (#4529 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 07:34:55 +00:00
Charles-Edouard Brétéché	8e33532b38	refactor: webhook exclusion and unit tests (#4528 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-08 06:19:18 +00:00
Prateek Pandey	1cacd0173d	feat: allow cloning multiple resource from a namespace (#4384 )	2022-09-08 04:47:09 +00:00
Anurag	560cec329e	add random filter (#4527 ) * add random filter Signed-off-by: Anurag <contact.anurag7@gmail.com> * update go.mod file Signed-off-by: Anurag <contact.anurag7@gmail.com> * update go.sum Signed-off-by: ShutingZhao <shuting@nirmata.com> * linter fix Signed-off-by: ShutingZhao <shuting@nirmata.com> Signed-off-by: Anurag <contact.anurag7@gmail.com> Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: ShutingZhao <shuting@nirmata.com>	2022-09-07 16:22:30 +00:00
Charles-Edouard Brétéché	c8bbb5bead	refactor: utils for warnings and unit tests (#4523 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-07 14:01:42 +00:00
Charles-Edouard Brétéché	f0622a8a3b	refactor: use generics in client wrappers (#4525 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-07 20:56:38 +08:00
Charles-Edouard Brétéché	2c86416900	refactor: add auth interface and unit tests (#4518 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-07 06:54:34 +00:00
Charles-Edouard Brétéché	a95d61b9d7	refactor: client wrappers (#4519 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-07 12:01:43 +08:00
Charles-Edouard Brétéché	317a3ae0bf	feat: add kyverno managed resources protection (#4414 ) * feat: add kyverno managed resources protection Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * add toggle Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-06 15:43:04 +00:00
Charles-Edouard Brétéché	1947dafed6	fix: load policy and add tests (#4515 ) * fix: load policy and add tests Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * fix callers Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-09-06 15:16:44 +00:00
Charles-Edouard Brétéché	a278123464	chore: add unit tests for pkg/utils/json (#4516 ) Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-06 14:18:48 +01:00
Charles-Edouard Brétéché	103ba4b947	chore: add unit tests for pkg/utils/yaml (#4512 ) * chore: add unit tests for pkg/utils/yaml Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * testify Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-09-06 08:31:30 +00:00
Charles-Edouard Brétéché	429fe175bf	chore: add unit tests for pkg/utils/wildcard (#4510 ) * chore: add unit tests for pkg/utils/wildcard Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * testify Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-06 08:02:41 +00:00
Charles-Edouard Brétéché	870462cc6d	chore: add unit tests for pkg/utils/os (#4509 ) * chore: add unit tests for pkg/utils/os Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> * review Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-09-06 07:19:29 +00:00

1 2 3 4 5 ...

2853 commits