Charles-Edouard Brétéché
86fa32af7f
feat: add context entry openapi validation ( #10993 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-03 16:51:28 +00:00
Charles-Edouard Brétéché
fb90636776
feat: add rule openapi validation ( #10990 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-03 15:20:37 +00:00
Mariam Fahmy
bde90340a6
chore: remove v1alpha1 of VAPs and use v1beta1 ( #10955 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-08-29 15:31:25 +00:00
Charles-Edouard Brétéché
f87fa52cb7
feat: bump to k8s 1.31 ( #10938 )
...
* feat: bump to k8s 1.31
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* tidy
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* mod
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix otel
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix otel schema
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: fix image verification tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* linter issues
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cel change
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-08-28 17:09:58 +00:00
Charles-Edouard Brétéché
ad4f0ab038
feat: bump controller gen package ( #10927 )
...
* feat: bump controller gen package
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix chainsaw test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* bump annotation
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-08-28 14:23:19 +08:00
Mariam Fahmy
2140a0239b
chore: rename validationFailureAction to failureAction under the rule ( #10893 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2024-08-27 20:07:57 +00:00
Jim Bugwadia
f06399200c
remove wildcard permissions ( #10785 )
...
* remove wildcard permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update codegen
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* codegen
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix background controller perms
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove secrets perm
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix reports-controller role
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add wildcard check and limit generate policy checks based on `synchronize`
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update manifest
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix wildcard check
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update default QPS and burst for better performance and to prevent test failure
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix perms
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix perms
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test permissions
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix merge issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix merge issues
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-08-20 11:55:32 +03:00
shuting
bd71af3291
feat: support foreach for generate.data ( #10875 )
...
* chore: refactor
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: add foreach for generate.daya to api
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: refactor generator
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update rule validation
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update rule validation -2
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: support foreach.data
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: policy validation
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: context variables
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add a chainsaw test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: sync on policy deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: enable new chainsaw tests in CI
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update code-gen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: validate targets scope for ns-policies
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: remove unreasonable test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update install.yaml
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-08-19 06:55:19 +00:00
Vishal Choudhary
06ffd1c961
feat: add support for sigstore bundle verification ( #10567 )
...
* feat: add support for sigstore bundle verification
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: missed change
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: ci
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: another linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: add size check in layer
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-08-16 11:36:48 +00:00
Vishal Choudhary
f69ffe12ec
feat: add full regexp support to cosign ( #10815 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-08-16 07:03:59 +00:00
shuting
481798c836
refactor: update updaterequest to be created for each policy ( #10793 )
...
* chore: remove v1beta1 updaterequest definitions
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update UR to map a policy instead a rule; adapt UR mapping changes for admission review
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update code-gen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: remove unused function
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update ur in policy controller
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update crds
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: adapt ur changes in the background controller
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: more linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: modify mapping relationship for deletion events
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: remedy missing target for policy application
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: fetching logic for triggers
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: clean up targets upon policy deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update crds
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* merge main
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* merge main
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: adds delay before assertion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: wrong yaml format
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update error handling logic
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(attempt): enable more debug info
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(attempt): enable debug log
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(attempt): enable debug log
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(attempt): enable debug log
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: makefile to update ur crds
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: generate existing
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: skip empty ur generation
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update install.yaml
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-08-13 17:14:06 +00:00
Mariam Fahmy
c796bb765c
fix: return policies with either audit or enforce rules from the cache ( #10667 )
...
* fix: return policies with either audit or enforce rules from the cache
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: introduce validationFailureAction under verifyImage rules
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add chainsaw tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-08-06 18:24:28 +00:00
Khaled Emara
c0cf6c5bf1
feat(json): unmarshal at decode time ( #10700 )
...
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-08-05 15:46:50 +03:00
Frank Jogeleit
cfef8a089a
init controller-gen support for oneOf and not ( #10776 )
...
Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-08-02 22:19:35 +00:00
Charles-Edouard Brétéché
fc694bc24c
feat: add kyverno json support to validation rule ( #10763 )
...
* feat: add kyverno json support to validation rule
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* v2beta1
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* validation
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* engine handler
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* bindings
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* context functions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* better bindings
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-08-02 08:24:30 +00:00
Mariam Fahmy
6d732d28c7
fix: get ns labels before creating a policy context ( #10773 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-08-02 05:14:36 +03:00
Mariam Fahmy
734f1df059
fix: check the resource namespace ( #10738 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-07-26 21:45:54 +08:00
Mariam Fahmy
716611b7ea
fix: return all the exceptions that match the incoming resource ( #10722 )
...
* fix: return all the exceptions that match the incoming resource
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: modify log messages
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-07-25 17:36:19 +00:00
Mariam Fahmy
ff88c4c39a
feat: migrate validationFailureAction and validationFailureActionOverrides ( #10528 )
...
* feat: migrate validationFailureAction and validationFailureActionOverrides under validate rule
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add unit tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-26 09:13:02 +02:00
Mariam Fahmy
94d9bbe73f
chore: use v2 clients for policy exceptions ( #10530 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-24 16:36:55 +00:00
Mariam Fahmy
b7bf894fe9
chore: use v2 for exceptions in chainsaw tests ( #10529 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-24 11:54:57 +00:00
Mariam Fahmy
abe2a2310b
feat: migrate webhookTimeoutSeconds and failurePolicy ( #10515 )
...
* feat: migrate webhookTimeoutSeconds and failurePolicy
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix lint issue
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-20 13:04:37 +00:00
Charles-Edouard Brétéché
b36a2ecdcc
feat: bump update request api version ( #10508 )
...
* feat: bump update request api version
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* use v2
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-06-20 09:44:43 +00:00
Mariam Fahmy
9285006f7a
feat: add mutateExistingOnPolicyUpdate field under the mutate rule ( #10461 )
...
* fix
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add mutateExistingOnPolicyUpdate field under the mutate rule
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-19 09:29:19 +00:00
Vishal Choudhary
334594c128
feat: add support for cosign experimental OCI 1.1 signatures ( #10228 )
...
* feat: add support for cosign experimental OCI 1.1 signatures
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: remove unrelated changes
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: requested changes
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-06-18 23:03:53 +00:00
Charles-Edouard Brétéché
7f57b9618a
feat: cleanup v2alpha1 kyverno api ( #10457 )
...
* feat: cleanup v2alpha1 kyverno api
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: webhook
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-06-14 09:39:36 +00:00
Mariam Fahmy
846439b13e
feat: add generateExisting field under the generate rule ( #10441 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-13 13:41:46 +00:00
Marc Brugger
be06bff665
support inline exceptions in cli apply ( #10133 )
...
* support inline exceptions in cli apply
Signed-off-by: bakito <github@bakito.ch>
* rename flag
Signed-off-by: bakito <github@bakito.ch>
* Update cmd/cli/kubectl-kyverno/commands/apply/command.go
Co-authored-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Signed-off-by: Marc Brugger <github@bakito.ch>
* Update docs/user/cli/commands/kyverno_apply.md
Co-authored-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Signed-off-by: Marc Brugger <github@bakito.ch>
* Restore missed sections from merge
Signed-off-by: Marc Brugger <github@bakito.ch>
---------
Signed-off-by: bakito <github@bakito.ch>
Signed-off-by: Marc Brugger <github@bakito.ch>
Co-authored-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-06-06 06:33:28 +00:00
Mariam Fahmy
c391fba64c
fix: get ns labels in the cluster mode when using the CLI ( #10348 )
...
* fix: get ns labels in the cluster mode when using the CLI
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: fix chainsaw test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* Update .vscode/launch.json
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-06-04 10:44:44 +00:00
shuting
5260b4f7bc
chore: bump k8s libs to 0.30 ( #10285 )
...
* chore: bump k8s libs to 0.30
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update crds
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: bump kubectl-validate
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix panic
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: bump k8s
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix sum
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: indent
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: bump deps
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-06-04 15:09:44 +08:00
Mariam Fahmy
aa59bbc947
fix: remove unused parameters ( #10327 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-05-29 13:40:41 +00:00
Vishal Choudhary
386f969f45
chore: bump tools and add kubernetes v1.30 to conformance ( #10300 )
...
* chore: bump tools and add kubernetes v1.30 to conformance
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* chore: codegen and version fixes
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-05-24 07:37:49 +00:00
Anushka Mittal
68304e4b19
chore: make contrinue-on-fail flag available outside package ( #10293 )
...
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
2024-05-23 08:16:33 +00:00
Jim Bugwadia
6d48a185d1
Fix cli load policies from fs ( #10270 )
...
* skip invalid policy files
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix file-system policy loader
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* propagate policy schema error
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2024-05-21 15:17:49 +08:00
shuting
fb9c66f455
feat(perf): add new linter prealloc to enforce slice declarations best practice ( #10250 )
...
* feat(perf): add new linter prealloc to enforce slice declarations best practice
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(linter): prealloac slices
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-05-20 14:46:35 +05:30
Anushka Mittal
63ab92417c
[Bug] [CLI] Level parameter of the apply and test commands does not work ( #10216 )
...
* added verbosity level
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
* added else statement to handle the error
Signed-off-by: GitHub <noreply@github.com>
* fix: verbosity in cli
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
---------
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
2024-05-15 13:57:17 +00:00
Charles-Edouard Brétéché
ecce1632f2
feat: make cli results count public ( #10177 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-05-07 08:58:09 +00:00
Lanting Chiang
f91bf6529d
allow kyverno apply command to continue on failure ( #10036 )
...
* allow kyverno apply to continue on failure
Signed-off-by: lanting.chiang <lanting.chiang@robinhood.com>
* allow kyverno apply to continue on failure
Signed-off-by: lanting.chiang <lanting.chiang@robinhood.com>
---------
Signed-off-by: lanting.chiang <lanting.chiang@robinhood.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-05-06 09:00:54 +00:00
shuting
0257f060bf
chore(deps): bump k8s.io/apimachinery from 0.29.4 to 0.30.0 ( #10087 )
...
* chore: bump apimachinary 0.30.0
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update crds
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-04-24 11:37:59 +05:30
Khaled Emara
c9055ac2ff
fix(autogen): only generate rule for request kind ( #9984 )
...
* fix(autogen): only generate rule for request kind
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* feat(autogen): use jsoniter instead of std for json
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(atogen): use sets instead of manipulating strings
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(autogen): formatting linter
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(autogen): backwards compatability
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* revert(autogen): old behavior
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix: builds error
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
2024-04-04 08:09:30 +00:00
Anushka Mittal
66a2c7283b
chore: changes to use latest kyverno-json apis ( #9980 )
...
* changes to use latest kyverno-json apis
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
* codegen diffs
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
---------
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-02 14:35:26 +00:00
Vishal Choudhary
83f2846572
feat: add TSA cert chain support in cosign ( #9961 )
...
* feat: add TSA cert chain support in cosign
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add chainsaw test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add unit test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: unit tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2024-03-30 20:50:07 +00:00
Vishal Choudhary
1a1954002f
fix: add rekor opts to cosign certificate verification and make rekor url optional ( #9957 )
...
* fix: add rekor opts to cosign certificate verification and make rekor url optional
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-03-28 18:17:24 -07:00
Vishal Choudhary
baa9eb2fd3
chore: bump controller gen to 0.14.0 ( #9953 )
...
* chore: update controller-gen version and cmd
controller gen throws an error when multiple instances of the same generator 'crd' in this case is specified. See: kubernetes-sigs/controller-tools#829
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* chore: generate code
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-03-28 09:33:17 +01:00
Charles-Edouard Brétéché
4438b24b69
refactor: exception selector interface ( #9907 )
...
* refactor: exception selector interface
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-03-28 08:03:01 +00:00
Khaled Emara
bd6eff61cb
chore(gctx): document schema better ( #9923 )
...
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
2024-03-20 19:34:40 +00:00
Khaled Emara
429e84be10
fix(globalcontext): panics and validation ( #9903 )
2024-03-14 16:12:39 +00:00
Jim Bugwadia
befcd73ea1
add control names and images to PSS results ( #9869 )
...
* add control names and images to PSS results
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove init
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix tets
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update chainsaw tests
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add unit test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-03-11 09:32:05 +00:00
Suruchi Kumari
26df05d8c1
[Bug] [CLI] PSS report does not show properties with control details ( #9785 )
...
* add properties in pss report
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove tests
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix lint
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore: move chainsaw config at the root of the repo (#9768 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump svenstaro/upload-release-action from 2.7.0 to 2.9.0 (#9767 )
Bumps [svenstaro/upload-release-action](https://github.com/svenstaro/upload-release-action ) from 2.7.0 to 2.9.0.
- [Release notes](https://github.com/svenstaro/upload-release-action/releases )
- [Changelog](https://github.com/svenstaro/upload-release-action/blob/master/CHANGELOG.md )
- [Commits](1beeb572c1...04733e069f#9791 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: remove unnecessary validation check for podSecurity rule (#9790 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update versions (#9783 )
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore: add tests for exceptions in the CLI (#9781 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump go.opentelemetry.io/otel/sdk/metric (#9799 )
Bumps [go.opentelemetry.io/otel/sdk/metric](https://github.com/open-telemetry/opentelemetry-go ) from 1.23.1 to 1.24.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.23.1...v1.24.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/sdk/metric
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc (#9797 )
Bumps [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc](https://github.com/open-telemetry/opentelemetry-go ) from 1.23.1 to 1.24.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.23.1...v1.24.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump codecov/codecov-action from 4.0.1 to 4.0.2 (#9794 )
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.0.1 to 4.0.2.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](e0b68c6749...0cfda1dd0a#9796 )
Bumps [go.opentelemetry.io/otel/exporters/prometheus](https://github.com/open-telemetry/opentelemetry-go ) from 0.45.2 to 0.46.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/example/prometheus/v0.45.2...example/prometheus/v0.46.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/prometheus
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace (#9795 )
Bumps [go.opentelemetry.io/otel/exporters/otlp/otlptrace](https://github.com/open-telemetry/opentelemetry-go ) from 1.23.1 to 1.24.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.23.1...v1.24.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* changes
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc (#9798 )
Bumps [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go ) from 1.23.1 to 1.24.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.23.1...v1.24.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump codecov/codecov-action from 4.0.2 to 4.1.0 (#9811 )
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.0.2 to 4.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](0cfda1dd0a...54bcd8715e#9809 )
Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib ) from 0.48.0 to 0.49.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.48.0...zpages/v0.49.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump golang.org/x/crypto from 0.19.0 to 0.20.0 (#9810 )
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.19.0 to 0.20.0.
- [Commits](https://github.com/golang/crypto/compare/v0.19.0...v0.20.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix lint
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix(globalcontext): old WaitGroup not stopping (#9813 )
* fix(globalcontext): old waitgroup not stopping
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(globalcontext): add AGE
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* feat(globalcontext): add lastRefreshTime
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(globalcontext): unhandled intormer run exception
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(globalcontext): comment wording
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(globalcontext): codegen
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(globalcontext): linter
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add empty declaration of properties
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add changes
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: add podSecurity validation checks for exceptions (#9817 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump github.com/sigstore/sigstore from 1.8.1 to 1.8.2 (#9825 )
Bumps [github.com/sigstore/sigstore](https://github.com/sigstore/sigstore ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/hashivault (#9821 )
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/hashivault](https://github.com/sigstore/sigstore ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/hashivault
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/azure (#9823 )
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump kyverno/action-install-chainsaw from 0.1.6 to 0.1.7 (#9832 )
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw ) from 0.1.6 to 0.1.7.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases )
- [Commits](204730d723...3bf0752f44#9831 )
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.17.0 to 0.18.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](84384bd6e7...062f259268#9830 )
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* [Bug] [CLI] Restore warn-exit-code functionality for apply command (#9828 )
* Restore warn-exite-code functionality for apply command
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Nove error handling
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Uncomment println statement
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Fixing linting
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Adding conformance tets for cli apply command with warn-exit-code
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Update path to kubectl-kyverno binary
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Add prepare-cli as needed dependency
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* feat: install kubectl-kyverno in standard conformance tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update chainsaw config
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: move CLI chainsaw tests to a separate action
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: CLI path
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: name
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: add chainsaw flag '--no-cluster'
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: CLI name
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: Matt Veitas <mveitas@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: shuting <shuting@nirmata.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws (#9822 )
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/aws](https://github.com/sigstore/sigstore ) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.1...v1.8.2 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/aws
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove comment and shift line 91
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* modify test
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* added rseperate function for adding properties in result
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix test
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add test for pss report
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* remove comments
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: remove duplicate chainsaw tests for PSA (#9835 )
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* modify policy
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* modify policy in test_dta
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* docs: Add new adopter to ADOPTERS.md (#9841 )
Signed-off-by: Younsung Lee <cysl@kakao.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: use gcr crane opts while fetching image descriptors (#9838 )
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: add missing unit tests for podSecurity.hostpathVolume check (#9845 )
* fix: add missing unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update pinned lib
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: uncomment code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix: release CRDs manifests (#9849 )
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* chore(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (#9842 )
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify ) from 1.8.4 to 1.9.0.
- [Release notes](https://github.com/stretchr/testify/releases )
- [Commits](https://github.com/stretchr/testify/compare/v1.8.4...v1.9.0 )
---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix name access for policy types
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* modify pkg report
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* modify name
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add bindings
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* Revert "add bindings"
This reverts commit c616c11d9bb4dd0554104025fcfb9cf9e25dc02d.
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* revert add bindings
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update chainsaw
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* update name
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* Revert "update name"
This reverts commit 84de45b4ce1c5f94d8cbd0a66e893c7907f4a600.
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* simplify results
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: GitHub <noreply@github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Suruchi Kumari <suruchikumarimfp4@gmail.com>
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Signed-off-by: Matt Veitas <mveitas@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: shuting <shuting@nirmata.com>
Signed-off-by: Younsung Lee <cysl@kakao.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Matt Veitas <mveitas@gmail.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Younsung Lee <cysl@kakao.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-03-07 13:54:00 -08:00
Matt Veitas
5ef7581c5c
[Bug] [CLI] Restore warn-exit-code functionality for apply command ( #9828 )
...
* Restore warn-exite-code functionality for apply command
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Nove error handling
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Uncomment println statement
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Fixing linting
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Adding conformance tets for cli apply command with warn-exit-code
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Update path to kubectl-kyverno binary
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* Add prepare-cli as needed dependency
Signed-off-by: Matt Veitas <mveitas@gmail.com>
* feat: install kubectl-kyverno in standard conformance tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update chainsaw config
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: move CLI chainsaw tests to a separate action
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: CLI path
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: name
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: add chainsaw flag '--no-cluster'
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: CLI name
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: Matt Veitas <mveitas@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: shuting <shuting@nirmata.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
2024-02-29 13:08:21 +00:00
