mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00
Code Activity
7741 commits 15 branches 540 tags 276 MiB
Commit graph

7741 commits

This branch
This branch
All branches
Author SHA1 Message Date
dependabot[bot]
e4afa3a125
chore(deps): bump jlumbroso/free-disk-space (#10981) 
Bumps [jlumbroso/free-disk-space](https://github.com/jlumbroso/free-disk-space) from 1.2.0 to 1.3.1.
- [Release notes](https://github.com/jlumbroso/free-disk-space/releases)
- [Commits](76866dbe54...54081f1387)

---
updated-dependencies:
- dependency-name: jlumbroso/free-disk-space
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-02 17:21:03 +00:00
dependabot[bot]
0438a65c0c
chore(deps): bump jlumbroso/free-disk-space (#10982) 
Bumps [jlumbroso/free-disk-space](https://github.com/jlumbroso/free-disk-space) from 1.2.0 to 1.3.1.
- [Release notes](https://github.com/jlumbroso/free-disk-space/releases)
- [Commits](76866dbe54...54081f1387)

---
updated-dependencies:
- dependency-name: jlumbroso/free-disk-space
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-02 16:55:57 +00:00
Charles-Edouard Brétéché
de3aa98015
fix: configure dependabot to work with composite actions (#10975) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-09-02 16:10:12 +00:00
Charles-Edouard Brétéché
f89eca87da
chore: use dynamic matrix (#10973) 
* chore: simplify e2e matrix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* chore: use dynamic matrix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-09-02 21:06:02 +05:30
Charles-Edouard Brétéché
43e5910472
chore: simplify e2e matrix (#10972) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-09-02 14:27:10 +00:00
dependabot[bot]
b5870864b8
chore(deps): bump cbrgm/cleanup-stale-branches-action (#10969) 
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action) from 1.1.20 to 1.1.21.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases)
- [Commits](3a038290b5...07d311426e)

---
updated-dependencies:
- dependency-name: cbrgm/cleanup-stale-branches-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-02 08:07:12 +00:00
Jim Bugwadia
f699250246
update K8s compatibility test versions (#10956) 
* update K8s compatibility test versions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix versions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update sigstore scaffolding versions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

---------

Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-31 01:22:56 +00:00
dependabot[bot]
14c7883a18
chore(deps): bump github/codeql-action from 3.26.5 to 3.26.6 (#10961) 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.5 to 3.26.6.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2c779ab0d0...4dd16135b6)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-30 17:23:54 +00:00
Anushka Mittal
eb72b04d2c
change metrics default to stable defaults (#10459) 
* change metrics default to stable defaults

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* make codegen-helm-all

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* make codegen-manifest-all

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* fix: chart testing lint error

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

---------

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
 2024-08-30 11:10:07 +00:00
Rizul Gupta
02ffe4131c
add image name in all logs (#10837) 
* add image name in all logs

Signed-off-by: Rizul Gupta <mail2rizul@gmail.com>

* make lint tests pass

Signed-off-by: Rizul Gupta <mail2rizul@gmail.com>

---------

Signed-off-by: Rizul Gupta <mail2rizul@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-30 09:22:44 +00:00
dependabot[bot]
3211c2f611
chore(deps): bump github.com/Masterminds/sprig/v3 from 3.2.3 to 3.3.0 (#10958) 
Bumps [github.com/Masterminds/sprig/v3](https://github.com/Masterminds/sprig) from 3.2.3 to 3.3.0.
- [Release notes](https://github.com/Masterminds/sprig/releases)
- [Changelog](https://github.com/Masterminds/sprig/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Masterminds/sprig/compare/v3.2.3...v3.3.0)

---
updated-dependencies:
- dependency-name: github.com/Masterminds/sprig/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-30 08:13:41 +00:00
Anushka Mittal
b76bb77e46
Deferred loading for image info in policy context (#10787) 
* fix: add deferred loading for image info in policy context

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* chore: move logic to context.go

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* chore: add unit test

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* fix: cleanup code

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* fix: unit test

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

* fix: unit test

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>

---------

Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-30 05:35:26 +00:00
asr2003
8f418a90fc
fix: variable substitution error handling in policy validation (#10936) 
* fix variable substitution error handling in policy validation and add tests

Signed-off-by: Ambati Sahithi <162500856+asr2003@users.noreply.github.com>

* cleanup

Signed-off-by: Ambati Sahithi <162500856+asr2003@users.noreply.github.com>

* fix variable substitution error handling in policy validation and add tests

Signed-off-by: Ambati Sahithi <162500856+asr2003@users.noreply.github.com>

* cleanup

Signed-off-by: Ambati Sahithi <162500856+asr2003@users.noreply.github.com>

* add review comment

Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: asr2003 <162500856+asr2003@users.noreply.github.com>

* Update pkg/validation/policy/validate.go

The rule and policy will be appended to the top level message, so no need to repeat here.

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fmt

Signed-off-by: Ambati Sahithi <162500856+asr2003@users.noreply.github.com>

* Update pkg/validation/policy/validate.go

update for unit tests

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

---------

Signed-off-by: Ambati Sahithi <162500856+asr2003@users.noreply.github.com>
Signed-off-by: asr2003 <162500856+asr2003@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-29 23:49:45 +00:00
dependabot[bot]
f6962f631b
chore(deps): bump github.com/onsi/gomega from 1.34.1 to 1.34.2 (#10948) 
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.34.1 to 1.34.2.
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/gomega/compare/v1.34.1...v1.34.2)

---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-29 21:16:18 +00:00
dependabot[bot]
6276d699a7
chore(deps): bump google.golang.org/grpc from 1.65.0 to 1.66.0 (#10949) 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.65.0 to 1.66.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.65.0...v1.66.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-29 19:57:07 +00:00
Mariam Fahmy
bde90340a6
chore: remove v1alpha1 of VAPs and use v1beta1 (#10955) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-29 15:31:25 +00:00
Mariam Fahmy
e00596a551
fix: match wildcard names for generateExisting policies (#10945) 
* fix: match wildcard names for generateExisting policies

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix chainsaw test

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* chore: add unit tests

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

---------

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-29 13:09:30 +00:00
shuting
2cd462570a
feat: foreach support for clone (#10888) 
* chore: add chainsaw tests for foreach clone

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: update webhooks for foreach generate

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: rename generatePattern

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: chainsaw tests for generateExisting

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add missing files

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add chainsaw tests for foreach clone, sync=true

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: linter issues

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add chainsaw test foreach clonelist, sync=true, delete source

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: sync deletion for cloneList

Signed-off-by: ShutingZhao <shuting@nirmata.com>

---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2024-08-29 11:59:22 +00:00
Charles Uneze
d733ea3bb0
make kubeconfig optional (#10922) 
Signed-off-by: Charles Uneze <charlesniklaus@gmail.com>
 2024-08-29 09:40:11 +00:00
dependabot[bot]
dd519a75ca
chore(deps): bump adRise/update-pr-branch from 0.8.1 to 0.9.0 (#10950) 
Bumps [adRise/update-pr-branch](https://github.com/adrise/update-pr-branch) from 0.8.1 to 0.9.0.
- [Release notes](https://github.com/adrise/update-pr-branch/releases)
- [Commits](5d273948c5...f6b919383e)

---
updated-dependencies:
- dependency-name: adRise/update-pr-branch
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-29 08:16:48 +00:00
Sean Liao
d0b4800785
explicit protocol selection with appProtocol (#10864) 
* explicit protocol selection with appProtocol

Signed-off-by: Sean Liao <sean+git@liao.dev>

* explicit protocol selection with appProtocol

Signed-off-by: Sean Liao <sean+git@liao.dev>

---------

Signed-off-by: Sean Liao <sean+git@liao.dev>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-28 23:37:43 +00:00
Mariam Fahmy
00c81048aa
chore: add --reportsServiceAccountName in launch.json (#10943) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-28 20:49:10 +00:00
Charles-Edouard Brétéché
f87fa52cb7
feat: bump to k8s 1.31 (#10938) 
* feat: bump to k8s 1.31

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* tidy

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* mod

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix otel

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix otel schema

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* update linter

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* feat: fix image verification tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* linter issues

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* cel change

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
 2024-08-28 17:09:58 +00:00
Liang Deng
90b3101423
adding @YTGhost to codeowners (#10944) 
Signed-off-by: Liang Deng <283304489@qq.com>
 2024-08-28 14:50:28 +00:00
Harshita Sao
838ea5b931
fix: fixed the pinned dependencies issue (#10910) 
Signed-off-by: harshitasao <harshitasao@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-28 13:15:02 +00:00
dependabot[bot]
12a515cc0d
chore(deps): bump github.com/notaryproject/notation-go (#10939) 
Bumps [github.com/notaryproject/notation-go](https://github.com/notaryproject/notation-go) from 1.2.0-rc.1 to 1.2.0.
- [Release notes](https://github.com/notaryproject/notation-go/releases)
- [Commits](https://github.com/notaryproject/notation-go/compare/v1.2.0-rc.1...v1.2.0)

---
updated-dependencies:
- dependency-name: github.com/notaryproject/notation-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-28 07:27:53 +00:00
Charles-Edouard Brétéché
ad4f0ab038
feat: bump controller gen package (#10927) 
* feat: bump controller gen package

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix chainsaw test

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* bump annotation

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-28 14:23:19 +08:00
Mariam Fahmy
2140a0239b
chore: rename validationFailureAction to failureAction under the rule (#10893) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-27 20:07:57 +00:00
dependabot[bot]
ee5fdcad47
chore(deps): bump github.com/notaryproject/notation-core-go (#10932) 
Bumps [github.com/notaryproject/notation-core-go](https://github.com/notaryproject/notation-core-go) from 1.1.0-rc.1 to 1.1.0.
- [Release notes](https://github.com/notaryproject/notation-core-go/releases)
- [Commits](https://github.com/notaryproject/notation-core-go/compare/v1.1.0-rc.1...v1.1.0)

---
updated-dependencies:
- dependency-name: github.com/notaryproject/notation-core-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-27 13:21:04 +00:00
dependabot[bot]
754310a143
chore(deps): bump sonarsource/sonarcloud-github-action (#10900) 
Bumps [sonarsource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action) from 2.3.0 to 3.0.0.
- [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases)
- [Commits](e44258b109...eb21172326)

---
updated-dependencies:
- dependency-name: sonarsource/sonarcloud-github-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-27 08:52:19 +00:00
Charles-Edouard Brétéché
896294176b
fix: update docs generation (#10926) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-27 00:31:30 +00:00
Charles-Edouard Brétéché
e636809c76
chore: improve our crds generator code (#10925) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-26 23:32:19 +00:00
dependabot[bot]
3314f269be
chore(deps): bump github/codeql-action from 3.26.2 to 3.26.5 (#10920) 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.2 to 3.26.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](429e197704...2c779ab0d0)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-26 21:56:10 +00:00
dependabot[bot]
411918c730
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions (#10918) 
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.10 to 3.0.11.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases)
- [Commits](b88cd0aad2...3c16e895bb)

---
updated-dependencies:
- dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-26 13:13:03 +00:00
dependabot[bot]
07f7f2abae
chore(deps): bump sigstore/scaffolding from 0.7.5 to 0.7.7 (#10919) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.5 to 0.7.7.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](634364a897...fd2699d622)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-26 08:41:04 +00:00
Chip Zoller
b24c17e285
move Chip Zoller to emeritus (#10882) 
* move to emeritus

Signed-off-by: chipzoller <chipzoller@gmail.com>

* remove from codeowners

Signed-off-by: chipzoller <chipzoller@gmail.com>

* fix error, remove treydock

Signed-off-by: chipzoller <chipzoller@gmail.com>

---------

Signed-off-by: chipzoller <chipzoller@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-22 20:33:37 +00:00
Khaled Emara
aceb7d5068
feat(gctx): retry logic (#10796) 
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
 2024-08-21 19:32:58 +00:00
Vishal Choudhary
4287f8cc29
feat: regexp support for sigstore bundle (#10901) 
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
 2024-08-21 15:34:04 +00:00
Vishal Choudhary
39e5808e66
chore: bump notary version to 1.2.0-rc-1 (#10891) 
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-20 13:34:44 +00:00
Jim Bugwadia
f06399200c
remove wildcard permissions (#10785) 
* remove wildcard permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update codegen

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* codegen

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix tests

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix background controller perms

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* remove secrets perm

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update tests

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update tests

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix reports-controller role

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* add wildcard check and limit generate policy checks based on `synchronize`

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update manifest

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix wildcard check

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update default QPS and burst for better performance and to prevent test failure

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix perms

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix perms

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix test permissions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix merge issues

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix merge issues

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

---------

Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-20 11:55:32 +03:00
Vishal Choudhary
0c2a88638b
fix: properly use useCache field in image verification policies (#10709) 
* fix: properly use useCache field in image verification policies

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: add test

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: revert client changes

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-19 14:26:07 +00:00
dependabot[bot]
4d5d487e1d
chore(deps): bump ubuntu from 2e863c4 to 8a37d68 in /.devcontainer (#10885) 
Bumps ubuntu from `2e863c4` to `8a37d68`.

---
updated-dependencies:
- dependency-name: ubuntu
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-19 11:29:41 +00:00
shuting
bd71af3291
feat: support foreach for generate.data (#10875) 
* chore: refactor

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: add foreach for generate.daya to api

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: refactor generator

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: linter

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update rule validation

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update rule validation -2

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: support foreach.data

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: policy validation

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: context variables

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add a chainsaw test

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: sync on policy deletion

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: enable new chainsaw tests in CI

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update code-gen

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: validate targets scope for ns-policies

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add missing files

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: remove unreasonable test

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update docs

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update install.yaml

Signed-off-by: ShutingZhao <shuting@nirmata.com>

---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
 2024-08-19 06:55:19 +00:00
Jim Bugwadia
c96f224e8e
reduce recursions for nested var substutution (#10877) 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-18 17:40:27 +08:00
Khaled Emara
a5915a310b
chore(log): add caller (#10874) 
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
 2024-08-16 14:08:55 +00:00
Vishal Choudhary
06ffd1c961
feat: add support for sigstore bundle verification (#10567) 
* feat: add support for sigstore bundle verification

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: missed change

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: ci

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: another linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: add size check in layer

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2024-08-16 11:36:48 +00:00
Vishal Choudhary
f69ffe12ec
feat: add full regexp support to cosign (#10815) 
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
 2024-08-16 07:03:59 +00:00
Garry O'Donnell
5a60836279
feat: add updateRequestThreshold config option to kyverno helm chart (#10739) 
Signed-off-by: Garry O'Donnell <garry.o'donnell@diamond.ac.uk>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-15 15:40:57 +00:00
Jim Bugwadia
3c63152f18
update message (#10862) 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2024-08-15 14:42:29 +00:00
Khaled Emara
40ba712987
fix(log): set zerolog level to logr level (#10867) 
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2024-08-15 13:49:50 +00:00