Rokibul Hasan
5573e5cded
Fix panic in background controller when updating Generate rule ( #11835 )
...
Signed-off-by: Rokibul Hasan <mdrokibulhasan@appscode.com>
2025-01-03 08:45:06 +00:00
dependabot[bot]
25032e363f
chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/azure ( #11791 )
...
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore ) from 1.8.9 to 1.8.11.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.9...v1.8.11 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-30 13:45:42 +00:00
shuting
1743f71a9a
chore: bump x/net 0/33/0 ( #11825 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-12-30 08:59:27 +00:00
shuting
9e9110e91a
chore: bump python to 3.13.1 ( #11800 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-12-20 12:43:06 +00:00
Vishal Choudhary
53eba82a7a
fix: cleanup unwanted files ( #11803 )
2024-12-20 12:00:30 +00:00
dependabot[bot]
7dfbd4a031
chore(deps): bump helm/kind-action from 1.10.0 to 1.11.0 ( #11774 )
...
Bumps [helm/kind-action](https://github.com/helm/kind-action ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/helm/kind-action/releases )
- [Commits](0025e74a8c...ae94020eaf
2024-12-20 10:26:37 +00:00
Vishal Choudhary
f51a49fcaf
fix: update chainsaw test apply timeout to 30s ( #11794 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-12-20 09:59:42 +00:00
dependabot[bot]
aea9014e6b
chore(deps): bump helm/kind-action in /.github/actions/run-tests ( #11775 )
...
Bumps [helm/kind-action](https://github.com/helm/kind-action ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/helm/kind-action/releases )
- [Commits](0025e74a8c...ae94020eaf
2024-12-20 09:31:14 +00:00
Vishal Choudhary
58ac348f3d
fix: copy all the fields of public keys when splitting ( #11770 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-12-20 08:28:17 +00:00
abhashsolanki18
0ca2eab0d0
fix: [Helm] mergeOverwrite overwrites nested objects #11536 ( #11584 )
...
Signed-off-by: abhashsolanki18 <abhashsolanki18@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-12-20 04:51:11 +00:00
Ammar Yasser
739e6a21c4
Mutate existing CLI support ( #11453 )
...
* feat: Add flags for target resources and add fake client initialization
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Add fake discovery client and cluster bool in the policy processor
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Use the full mutation engine policy response in the engine response
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Extract mutated targets from the policy responses and print them out
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Add TargetResources field in the cli test schema
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Generate CLI crds
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: modify checkResult to take an arbitrary actual resource and resource name
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: change getAndCompareResource to take a resource name and cascade it to GetResourceFromPath
Signed-off-by: aerosouund <aerosound161@gmail.com>
* test: Create a simple test to test mutate existing in the CLI
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Allow GetResourceFromPath to select a resource with a name from a multi resource yaml
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Modify the runTest command to return the TestResponse type
- Create a fake client, load the target resources in it and use it in the PolicyProcessor.
- Create the TestResponse which contains Trigger and Target fields, each is a map of gvk/name to the responses corresponding to that resource.
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Rewrite output.go to use the TestResponse type
- Check for both target and trigger
- Create logic for appending the resource array in case no resources are passed
- Move row creation logic into a separate method to avoid code duplication
- Extract the proper target resource based on rule type
- Create a function to extract mutated target from the engine response
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Move tests to the correct folder
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Use apiVersion/Kind/Name as the key in the test responses
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Use the apiVersion/Kind/name key schema in checking results and fix invalid resource name checking for generate policies
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Use better variable names for rows
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Account for Generate resources being an array
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Use generated resource name in checking the results and printing output
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Uncomment checks printing
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Remove bug in engine response creation
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Move the generate logic into an else block
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Fix namespace fetching bug in cel validator
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Use pointer to int in the test counter
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Remove redundant method
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Skip resources not being found in the manifests
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Create another field in the engine to denote if this is a cluster engine or an offline engine
Simply checking for the client being nil is no longer enough because for cli operations the client will be a fake client
A pointer to bool is chosen because callers who don't necessarily know what to pass should be able to pass nil
Signed-off-by: ammar <ammar.yasser@vodafone.com>
* fix: Add extra argument in fake client initiation
Signed-off-by: ammar <ammar.yasser@vodafone.com>
* fix: add extra argument in fuzz test
Signed-off-by: ammar <ammar.yasser@vodafone.com>
* fix: Add extra arg
Signed-off-by: ammar <ammar.yasser@vodafone.com>
* fix: Handle resources specified as ns/name as this schema will be deprecated in favor of apiVersion/Kind/Name
Signed-off-by: ammar <ammar.yasser@vodafone.com>
* fix: Fix linter complaints
Signed-off-by: ammar <ammar.yasser@vodafone.com>
* fix: Use comma separation as array separators as kubernetes names don't support commas
To avoid undefined array length on splitting on /
using commas will result in a fixed length since all resources will have an apiVersion, kind, namespace and name
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Change resource array type to an array of any instead of array of string
To support the use of a string or a TestResourceSpec
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Expect the resource array to be an array of string or array of TestResourceSpec
Assert that an array element is either of these types and match the resources in both cases according to the element type
Expect that the key in responses is now separated by commas instead of slashes
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Expect that the resource array is now of type array of any and modify tests that use it
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Skip response check if the policy name isnt whats in the result
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Match the name if its specified as ns/name
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Fix linter complaint
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Run codegen
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Create CLI CRDs
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Run codegen
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Fix linter complaints
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Cleanup invalid code used in FixTest to adapt it to the schema changes
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Check if resource is nil before extracting
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: use the loadResources method to open targets in a directory
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Account for target resources with the same name but different namespaces
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Add CLI test for mutate existing with the same name
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Infer resource name and namespace from the actual resource and account for resources with the same name and namespace but different kinds
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: remove extra line
Signed-off-by: aerosouund <aerosound161@gmail.com>
* feat: Add printing mutate existing resources to the output or to a file
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Minor fixes
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: fix linter complaint
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: codegen
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Revert result back to error
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Use io discard to not print resources in the test command
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Update vague comments and remove outdated ones
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Integrate mutate existing changes with diff generation
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Move resource key generation into a function
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Add a mutate existing test that fails
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: fix linter complaint
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Remove redundant comment
Signed-off-by: aerosouund <aerosound161@gmail.com>
* refactor: Fix array of any assignment in cli test
Signed-off-by: aerosouund <aerosound161@gmail.com>
* fix: Dont check duplicate strings for field that is an array of any
Signed-off-by: aerosouund <aerosound161@gmail.com>
* bug: Fix appending to the wrong array
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: run fix tests
Signed-off-by: aerosouund <aerosound161@gmail.com>
* chore: Run fix tests
Signed-off-by: aerosouund <aerosound161@gmail.com>
---------
Signed-off-by: aerosouund <aerosound161@gmail.com>
Signed-off-by: ammar <ammar.yasser@vodafone.com>
Signed-off-by: Ammar Yasser <aerosound161@gmail.com>
Co-authored-by: ammar <ammar.yasser@vodafone.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-12-19 07:42:54 +00:00
Liang Deng
e9704e7d8f
fix: exemption error caused by convertChecks function ( #11780 )
...
Signed-off-by: Liang Deng <ytdengliang@gmail.com>
2024-12-18 13:46:18 +00:00
dependabot[bot]
0427035612
chore(deps): bump actions/upload-artifact from 4.4.3 to 4.5.0 ( #11783 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...6f51ac03b9
2024-12-18 11:00:14 +00:00
dependabot[bot]
809b3d3796
chore(deps): bump actions/upload-artifact ( #11784 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](b4b15b8c7c...6f51ac03b9
2024-12-18 10:07:05 +00:00
shuting
bbbc436697
fix: remove extra line in configmsp ( #11762 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-12-17 07:29:16 +00:00
Vishal Choudhary
9eb8fa2de4
fix: pin ubuntu version to 22.04 in custom sigstore conformance tests ( #11772 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-12-17 06:27:26 +00:00
Mohd Kamaal
e771896541
distributed labels in group, version, and resource so it doesn't exceed ( #11620 )
...
* change label to hash if exceed 63 limit char
Signed-off-by: Mohd Kamaal <mohdkamaal2019@gmail.com>
* Distribute GVR labels into 'group', 'version', and 'resource' to avoid exceeding character limits
Signed-off-by: Mohd Kamaal <mohdkamaal2019@gmail.com>
---------
Signed-off-by: Mohd Kamaal <mohdkamaal2019@gmail.com>
Co-authored-by: Kamaal <kamaal@macs-MacBook-Air.local>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-12-16 10:36:34 +05:30
dependabot[bot]
3b6f4bdc2c
chore(deps): bump github/codeql-action from 3.27.7 to 3.27.9 ( #11757 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.7 to 3.27.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](babb554ede...df409f7d92
2024-12-13 08:45:36 +00:00
dependabot[bot]
7e81344c57
chore(deps): bump google.golang.org/grpc from 1.68.1 to 1.69.0 ( #11761 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.68.1 to 1.69.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.68.1...v1.69.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-13 08:02:39 +00:00
dependabot[bot]
1b341270ac
chore(deps): bump the otel group across 1 directory with 10 updates ( #11759 )
...
Bumps the otel group with 5 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib ) | `0.57.0` | `0.58.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc](https://github.com/open-telemetry/opentelemetry-go ) | `1.32.0` | `1.33.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlptrace](https://github.com/open-telemetry/opentelemetry-go ) | `1.32.0` | `1.33.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go ) | `1.32.0` | `1.33.0` |
| [go.opentelemetry.io/otel/exporters/prometheus](https://github.com/open-telemetry/opentelemetry-go ) | `0.54.0` | `0.55.0` |
Updates `go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp` from 0.57.0 to 0.58.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.57.0...zpages/v0.58.0 )
Updates `go.opentelemetry.io/otel` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/exporters/prometheus` from 0.54.0 to 0.55.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/exporters/prometheus/v0.54.0...exporters/prometheus/v0.55.0 )
Updates `go.opentelemetry.io/otel/metric` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/sdk` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/sdk/metric` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
Updates `go.opentelemetry.io/otel/trace` from 1.32.0 to 1.33.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.32.0...v1.33.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/exporters/prometheus
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/metric
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/sdk
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/sdk/metric
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
- dependency-name: go.opentelemetry.io/otel/trace
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: otel
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-13 07:37:29 +00:00
shuting
37d6936902
fix: revert default background scan interval to 1h ( #11754 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-12-12 11:22:10 +00:00
dependabot[bot]
734a622f0b
chore(deps): bump github/codeql-action from 3.27.6 to 3.27.7 ( #11741 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.6 to 3.27.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](aa57810251...babb554ede
2024-12-12 09:49:45 +00:00
Darshan Poudel
88c55c2b9d
fix/duplicate-test-entries-deduplication ( #11709 )
...
Signed-off-by: Darshan808 <pranishpoudel10@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-12-12 08:54:24 +00:00
dependabot[bot]
9b4a8982b9
chore(deps): bump sigs.k8s.io/structured-merge-diff/v4 ( #11751 )
...
Bumps [sigs.k8s.io/structured-merge-diff/v4](https://github.com/kubernetes-sigs/structured-merge-diff ) from 4.4.3 to 4.5.0.
- [Release notes](https://github.com/kubernetes-sigs/structured-merge-diff/releases )
- [Changelog](https://github.com/kubernetes-sigs/structured-merge-diff/blob/master/RELEASE.md )
- [Commits](https://github.com/kubernetes-sigs/structured-merge-diff/compare/v4.4.3...v4.5.0 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/structured-merge-diff/v4
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-12-12 07:56:02 +00:00
dependabot[bot]
4b820557fc
chore(deps): bump golang.org/x/crypto from 0.30.0 to 0.31.0 ( #11749 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.30.0 to 0.31.0.
- [Commits](https://github.com/golang/crypto/compare/v0.30.0...v0.31.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-12 15:13:02 +08:00
dependabot[bot]
b475861663
chore(deps): bump the kubernetes group across 2 directories with 7 updates ( #11743 )
...
Bumps the kubernetes group with 4 updates in the / directory: [k8s.io/api](https://github.com/kubernetes/api ), [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ), [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) and [k8s.io/kube-aggregator](https://github.com/kubernetes/kube-aggregator ).
Bumps the kubernetes group with 1 update in the /hack/controller-gen directory: [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ).
Updates `k8s.io/api` from 0.31.3 to 0.31.4
- [Commits](https://github.com/kubernetes/api/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/apiextensions-apiserver` from 0.31.3 to 0.31.4
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/apimachinery` from 0.31.3 to 0.31.4
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/apiserver` from 0.31.3 to 0.31.4
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/cli-runtime` from 0.31.3 to 0.31.4
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/client-go` from 0.31.3 to 0.31.4
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/kube-aggregator` from 0.31.3 to 0.31.4
- [Commits](https://github.com/kubernetes/kube-aggregator/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/apiextensions-apiserver` from 0.31.3 to 0.31.4
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.31.3...v0.31.4 )
Updates `k8s.io/apimachinery` from 0.31.3 to 0.31.4
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.31.3...v0.31.4 )
---
updated-dependencies:
- dependency-name: k8s.io/api
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/apiextensions-apiserver
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/apimachinery
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/apiserver
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/cli-runtime
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/client-go
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/kube-aggregator
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/apiextensions-apiserver
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: kubernetes
- dependency-name: k8s.io/apimachinery
dependency-type: indirect
update-type: version-update:semver-patch
dependency-group: kubernetes
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-12 06:36:35 +00:00
dependabot[bot]
54f0c96cce
chore(deps): bump actions/setup-go in /.github/actions/setup-build-env ( #11742 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.1.0 to 5.2.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](41dfa10bad...3041bf56c9
2024-12-12 05:56:29 +00:00
dependabot[bot]
20dac4e474
chore(deps): bump github.com/aquilax/truncate from 1.0.0 to 1.0.1 ( #11744 )
...
Bumps [github.com/aquilax/truncate](https://github.com/aquilax/truncate ) from 1.0.0 to 1.0.1.
- [Release notes](https://github.com/aquilax/truncate/releases )
- [Commits](https://github.com/aquilax/truncate/compare/v1.0.0...v1.0.1 )
---
updated-dependencies:
- dependency-name: github.com/aquilax/truncate
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-11 15:54:30 +00:00
dependabot[bot]
83e274c0cc
chore(deps): bump sonarsource/sonarcloud-github-action ( #11725 )
...
Bumps [sonarsource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action ) from 3.1.0 to 4.0.0.
- [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases )
- [Commits](383f7e52ea...02ef91109b
2024-12-11 08:20:43 +00:00
dependabot[bot]
8323f6fc74
chore(deps): bump github.com/cyphar/filepath-securejoin ( #11731 )
...
Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin ) from 0.3.4 to 0.3.5.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases )
- [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md )
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.3.4...v0.3.5 )
---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-10 13:54:19 +00:00
dependabot[bot]
b446bbd446
chore(deps): bump github.com/onsi/gomega from 1.36.0 to 1.36.1 ( #11735 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.36.0 to 1.36.1.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.36.0...v1.36.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-10 08:07:49 +00:00
dependabot[bot]
51dcbbe120
chore(deps): bump github.com/fluxcd/pkg/oci from 0.41.1 to 0.42.0 ( #11732 )
...
Bumps [github.com/fluxcd/pkg/oci](https://github.com/fluxcd/pkg ) from 0.41.1 to 0.42.0.
- [Commits](https://github.com/fluxcd/pkg/compare/oci/v0.41.1...oci/v0.42.0 )
---
updated-dependencies:
- dependency-name: github.com/fluxcd/pkg/oci
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-10 06:53:48 +00:00
dependabot[bot]
bff3996859
chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.30.0 ( #11712 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.29.0 to 0.30.0.
- [Commits](https://github.com/golang/crypto/compare/v0.29.0...v0.30.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-06 14:43:08 +00:00
dependabot[bot]
24c6bad024
chore(deps): bump actions/cache in /.github/actions/setup-caches ( #11727 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.1.2 to 4.2.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](6849a64899...1bd1e32a3b
2024-12-06 13:24:52 +00:00
dependabot[bot]
1a073acc40
chore(deps): bump google.golang.org/grpc from 1.68.0 to 1.68.1 ( #11711 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.68.0 to 1.68.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.68.0...v1.68.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-06 08:53:00 +00:00
dependabot[bot]
9adc35b56c
chore(deps): bump codecov/codecov-action from 5.0.7 to 5.1.1 ( #11726 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.7 to 5.1.1.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](015f24e681...7f8b4b4bde
2024-12-06 16:26:28 +08:00
dependabot[bot]
7fb2f76437
chore(deps): bump kyverno/action-install-chainsaw ( #11716 )
...
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw ) from 0.2.11 to 0.2.12.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases )
- [Commits](d311eacde7...f2b47b97dc
2024-12-05 13:39:29 +00:00
dependabot[bot]
d31a1181e8
chore(deps): bump github/codeql-action from 3.27.5 to 3.27.6 ( #11706 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.5 to 3.27.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f09c1c0a94...aa57810251
2024-12-05 09:49:52 +00:00
dependabot[bot]
f565016f5f
chore(deps): bump kyverno/action-install-chainsaw from 0.2.11 to 0.2.12 ( #11715 )
...
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw ) from 0.2.11 to 0.2.12.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases )
- [Commits](d311eacde7...f2b47b97dc
2024-12-05 09:26:00 +00:00
Vishal Choudhary
69b2124358
fix(readme): add changelog for spec.validate[*].allowExistingViolations field in kyverno chart ( #11714 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-12-05 08:58:47 +00:00
shuting
74e0b5d26c
fix: add metrics-server Helm repo ( #11717 )
...
* fix: add metrics-server Helm repo
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update metrcis-server Helm repo
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: update metrcis-server Helm repo
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-12-05 08:34:24 +00:00
Vishal Choudhary
174534b518
fix: properly verify precondition in old object validation ( #11644 )
...
* fix: properly verify precondition in old object validation
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: assert bug
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: properly update the values
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-12-04 06:32:12 +00:00
Tomas Aschan
8746a8ffbb
feat: Show textual diff when generate test fails ( #11674 )
...
* feat: Show textual diff when generate test fails
Signed-off-by: Tomas Aschan <tomasl@spotify.com>
* Tweak verbosity level for diff output
Signed-off-by: Tomas Aschan <tomasl@spotify.com>
* Display a rich diff of the expected and actual resources with --detailed-results
Signed-off-by: Tomas Aschan <tomasl@spotify.com>
---------
Signed-off-by: Tomas Aschan <tomasl@spotify.com>
2024-12-04 06:09:19 +00:00
dependabot[bot]
7223d44327
chore(deps): bump sigs.k8s.io/controller-runtime from 0.19.2 to 0.19.3 ( #11698 )
...
Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime ) from 0.19.2 to 0.19.3.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases )
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md )
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.19.2...v0.19.3 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-03 08:14:12 +00:00
dependabot[bot]
ae59763ea6
chore(deps): bump ubuntu from 278628f to 80dd3c3 in /.devcontainer ( #11697 )
...
Bumps ubuntu from `278628f` to `80dd3c3`.
---
updated-dependencies:
- dependency-name: ubuntu
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-03 07:56:42 +00:00
Vishal Choudhary
ec658b7abf
fix: api call chainsaw tests ( #11682 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-12-02 15:46:37 +00:00
Yann ILAS
d215ce5344
Fix(doc): correct invalid links in documentation ( #11681 )
...
* Fix doc: s|kustomize/patchesjson6902|kustomize/kustomization/patchesjson6902|
Signed-off-by: Yann ILAS <yann.ilas@gmail.com>
* Fix doc: s|kustomize/patchesstrategicmerge|kustomize/kustomization/patchesstrategicmerge|
Signed-off-by: Yann ILAS <yann.ilas@gmail.com>
---------
Signed-off-by: Yann ILAS <yann.ilas@gmail.com>
2024-12-02 13:31:33 +00:00
Mariam Fahmy
f36d5410ea
fix: check the patchedResources in kyverno-test ( #11686 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-12-02 12:59:12 +00:00
dependabot[bot]
e3a86bc286
chore(deps): bump cbrgm/cleanup-stale-branches-action ( #11691 )
...
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action ) from 1.1.23 to 1.1.24.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases )
- [Commits](5b358866e6...7e6763a2d1
2024-12-02 10:38:22 +00:00
Matthias Weilinger
bb3e7d9ddc
add allowExistingViolations option in policy chart ( #11656 )
...
Until now it was not possible to set the allowExistingViolations for predefined policies in the policies chart. By default it should be set to , identical to how it is set up in the CRDs. Not only does this now allow users to set the config according to their needs, but this also solves a problem with ArgoCD. As the CRDs set it to true, but the template does not specifically declare the field, ArgoCD falls into a constant sync loop of trying to remove the field.
Signed-off-by: ProbstenHias <matthias.weilinger@gmx.de>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-12-02 09:20:26 +05:30
