Charles-Edouard Brétéché
07cf2c120b
chore: add setup-build-env gh action ( #5892 )
...
* chore: use gh composite actions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* failure
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* failure
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* failure
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* failure
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* wait ready
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* restart
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* chore: add setup-build-env gh action
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix clone
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* unshallow
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cache
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2023-01-05 16:52:52 +01:00
dependabot[bot]
aca6b47eff
chore(deps): bump actions/cache from 3.2.1 to 3.2.2 ( #5795 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](c1a5de879e...4723a57e26
2022-12-28 06:45:49 +00:00
dependabot[bot]
fd9a327b8e
chore(deps): bump actions/cache from 3.2.0 to 3.2.1 ( #5781 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](c17f4bf466...c1a5de879e
2022-12-26 21:44:03 +00:00
dependabot[bot]
08cea5557b
chore(deps): bump fluxcd/flux2 from 0.38.1 to 0.38.2 ( #5772 )
...
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 0.38.1 to 0.38.2.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](12e065cc43...f58b82fb4e
2022-12-24 00:29:43 +01:00
dependabot[bot]
2f0997ba19
chore(deps): bump fluxcd/flux2 from 0.37.0 to 0.38.1 ( #5759 )
...
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 0.37.0 to 0.38.1.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](8674f31874...12e065cc43
2022-12-22 07:36:52 +00:00
dependabot[bot]
4d3a5deb23
chore(deps): bump actions/cache from 3.0.11 to 3.2.0 ( #5758 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.11 to 3.2.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](9b0c1fce7a...c17f4bf466
2022-12-22 07:10:42 +00:00
Charles-Edouard Brétéché
9d312d740c
chore: build cleanup controller image ( #5737 )
...
* chore: build cleanup controller image
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* image
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* release
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* reuse
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2022-12-21 12:07:59 +00:00
shuting
4e29ebca86
generate SLSA provenance on releases ( #5735 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-12-21 11:13:21 +00:00
shuting
d6c0ea01e3
bump Go 1.19.4 ( #5728 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-12-20 14:51:55 +01:00
Charles-Edouard Brétéché
41fd4fb252
refactor: supress usage of kustomize in build ( #5691 )
...
* refactor: supress usage of kustomize in build (part 1)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* e2e
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* e2e
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* e2e
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* clean
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* labels
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* simplify templating flags
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2022-12-19 16:26:07 +01:00
dependabot[bot]
0550166193
chore(deps): bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 ( #5683 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 3.2.0 to 4.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](b508e2e3ef...8f67e590f2
2022-12-14 18:32:21 +00:00
dependabot[bot]
a4825ce760
chore(deps): bump actions/setup-go from 3.4.0 to 3.5.0 ( #5684 )
...
* chore(deps): bump actions/setup-go from 3.4.0 to 3.5.0
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](d0a58c1c4d...6edd4406fa
2022-12-14 08:47:55 +00:00
dependabot[bot]
c2167f34de
chore(deps): bump actions/checkout from 3.1.0 to 3.2.0 ( #5666 )
...
* chore(deps): bump actions/checkout from 3.1.0 to 3.2.0
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-13 14:01:51 +00:00
Charles-Edouard Brétéché
f69c1809d1
chore: bump flux action ( #5578 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
2022-12-06 14:50:34 +00:00
dependabot[bot]
0920c1afd2
chore(deps): bump rajatjindal/krew-release-bot from 0.0.38 to 0.0.43 ( #5588 )
...
Bumps [rajatjindal/krew-release-bot](https://github.com/rajatjindal/krew-release-bot ) from 0.0.38 to 0.0.43.
- [Release notes](https://github.com/rajatjindal/krew-release-bot/releases )
- [Changelog](https://github.com/rajatjindal/krew-release-bot/blob/master/.goreleaser.yml )
- [Commits](3320c0b546...92da038bbf
2022-12-06 08:49:38 +00:00
dependabot[bot]
fd1fc7c7fe
chore(deps): bump actions/setup-go from 2.1.5 to 3.4.0 ( #5585 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 2.1.5 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v2.1.5...d0a58c1c4d2b25278816e339b944508c875f3613 )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-06 07:49:45 +01:00
dependabot[bot]
e68be2c786
chore(deps): bump goreleaser/goreleaser-action from 2.8.0 to 3.2.0 ( #5572 )
...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action ) from 2.8.0 to 3.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases )
- [Commits](5df302e5e9...b508e2e3ef
2022-12-05 16:57:48 +00:00
dependabot[bot]
8edfc37a9e
chore(deps): bump actions/checkout from 2.4.0 to 3.1.0 ( #5564 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2.4.0 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2.4.0...93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-05 09:43:16 +01:00
dependabot[bot]
70f9aebf0a
chore(deps): bump actions/cache from 3.0.8 to 3.0.11 ( #5565 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.8 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](fd5de65bc8...9b0c1fce7a
2022-12-05 08:58:10 +01:00
dependabot[bot]
1baa59d2b2
chore(deps): bump sigstore/cosign-installer from 2.8.0 to 2.8.1 ( #5533 )
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](7cc35d7fdb...9becc61764
2022-12-02 10:47:04 +01:00
Charles-Edouard Brétéché
987489d800
chore: stop using set-output in gh actions ( #5500 )
...
* chore: stop using set-output in gh actions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add quotes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add quotes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-11-30 11:53:30 +00:00
Stefan Prodan
7812626e61
ci: Fix install manifests publishing with Flux ( #5110 )
...
- use the correct version to tag artifacts
- add only the generated install.yaml to the artifact contents
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-10-21 12:29:55 +00:00
Stefan Prodan
96f0523d5a
ci: Use the Docker login action for GHCR auth ( #5091 )
...
Use the `docker/login-action` action and the default `GITHUB_TOKEN` for setting up the GHCR credentials for Flux and Cosign to be able to push OCI artifacts to ` ghcr.io/kyverno/manifests/kyverno`.
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-10-20 18:23:27 +00:00
shuting
4741241054
fix env ( #5046 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-10-18 13:45:29 +00:00
shuting
994d207eb6
fix: Attempt to fix the CI failure, extract CI job push-sign-install-manifest ( #5035 )
...
* extract CI job push-sign-install-manifest
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix indent
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update env
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-10-18 09:31:31 +00:00
Batuhan Apaydın
29a26e54f7
chore: Push and sign install manifests to GHCR ( #4895 )
...
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Co-authored-by: Stefan Prodan <@stefanprodan>
Co-authored-by: Charles-Edouard Brétéché <@eddycharly>
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
2022-10-14 12:48:32 +00:00
Charles-Edouard Brétéché
7e0884ca36
fix: publish yaml manifests in release instead of repo ( #4738 )
...
* fix: publish yaml manifests in release instead of repo
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* ignore
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* pin actions
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* messages
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix helm gen crds
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* chart app version
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* makefile
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-10-03 15:12:43 +00:00
Charles-Edouard Brétéché
e8839a3ff7
chore: bump minimum go version ( #4677 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-25 10:11:28 +00:00
Charles-Edouard Brétéché
b65d9fc5c6
chore: bump cache action and improve paths ( #4485 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-01 17:41:48 +00:00
Charles-Edouard Brétéché
8ddc72d792
refactor: clearly separate makefile docker targets for build and publish ( #4454 )
...
* refactor: clearly separate makefile ko targets for build and publish
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: clearly separate makefile docker targets for build and publish
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-31 12:22:46 +08:00
Charles-Edouard Brétéché
fc79ca96a2
refactor: clearly separate makefile ko targets for build and publish ( #4450 )
...
* refactor: clearly separate makefile ko targets for build and publish
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-30 17:30:28 +02:00
Charles-Edouard Brétéché
c35e73e39c
fix: ko login ( #4425 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-26 16:56:27 +00:00
Jason Hall
6055713dfc
Use ko to build images ( #4366 )
...
This updates Makefile targets to build images using `docker buildx
build` to use `ko build` instead.
End-to-end tests are accomplished by building and loading the image
directly into the KinD cluster via ko.
Also:
- use GitHub Actions token to push to ghcr.io (setup-ko sets this up for us)
- allow forks to push to their forked repo's packages (useful for testing)
Signed-off-by: Jason Hall <jason@chainguard.dev>
Signed-off-by: Jason Hall <jason@chainguard.dev>
2022-08-25 20:32:40 +02:00
Prateek Pandey
34fe6c9058
bump cosign deps version to 1.11.1 ( #4408 )
...
* bump cosign deps version to 1.11.1
to accommodate latest attestation verification fixes
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* bump github action go version to 1.18
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-08-25 08:24:49 +00:00
Charles-Edouard Brétéché
3d9417a58a
chore: add workflow to ensure github actions are pinned to a commit SHA ( #4390 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-23 22:02:13 +02:00
Naman Lakhwani
af98c00724
arranging permissions ( #3293 )
...
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-02-25 08:11:22 +00:00
shuting
c479b41d34
update workflow configurations to fix CI failure ( #3060 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-01-24 04:39:15 +00:00
Mritunjay Kumar Sharma
cdedf11a1c
bumps k8s libraries for k8s v1.23 upgrade for kyverno ( #3043 )
...
* bumps k8s libraries for k8s v1.23 upgrade for kyverno
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* fixes kustomize version
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* updates golang to v1.17 to test fails
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* updates logr package to 1.2.2
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* Fixed tests for `pkg/cosign` and `pkg/webhooks/generation`
Signed-off-by: Abhinav Sinha <abhinav@nirmata.com>
* fix go-logr deps version issue
Signed-off-by: prateekpandey14 <prateekpandey14@gmail.com>
* fix kube-openapi commit hash
Signed-off-by: prateekpandey14 <prateekpandey14@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
Co-authored-by: Abhinav Sinha <abhinav@nirmata.com>
Co-authored-by: prateekpandey14 <prateekpandey14@gmail.com>
2022-01-22 20:26:53 +08:00
Naman Lakhwani
1580837526
refactoring github actions to remove duplication and enhancement for versioned sbom's ( #2979 )
...
* initial commit
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* adding docker-buildx-builder to makefile
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* reverting git describe in makefile
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* uploading sbom for each kyverno image
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* small nits
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* scanning image before pushing and removed cosign.pub
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-01-18 15:07:59 -08:00
Roee Landesman
3e524b5586
Add github token permissions to improve ossf scorecard ( #2992 )
...
* Fix autogen issue with cronjob generator and foreach pod generator (#2989 )
Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>
Signed-off-by: Roee Landesman <roee.landesman@gmail.com>
* Add baseline read-all permissions
Signed-off-by: Roee Landesman <roee.landesman@gmail.com>
* remove extra read-all
Signed-off-by: Roee Landesman <roee.landesman@gmail.com>
* Add arm64 goarch to go releaser (#2991 )
Signed-off-by: Roee Landesman <roee.landesman@gmail.com>
Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>
2022-01-15 17:14:22 -08:00
Shubham Palriwala
1257388b97
feat: pin dependencies in gh actions ( #2952 )
...
Signed-off-by: ShubhamPalriwala <spalriwalau@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2022-01-13 05:23:05 +00:00
Naman Lakhwani
8350aadc58
Fix: CI job to release images ( #2929 )
...
* making required changes in images workflow
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
* making required changes in release workflow
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
2022-01-10 14:10:44 +00:00
Naman Lakhwani
f330886af7
fixing cosign command ( #2915 )
...
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
2022-01-05 13:02:17 -08:00
Naman Lakhwani
d126280184
keyless signing kyverno images with digest ( #2896 )
...
* signing with digest
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
* keyless signing
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
* adding annotations
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
* keyless image signing with digest in release workflow
Signed-off-by: Namanl2001 <namanlakhwani@gmail.com>
2022-01-04 08:08:28 -08:00
Shubham Palriwala
ea3529f2d0
Trivy now scans local images ( #2744 )
...
* fix: trivy now scans entire container
Signed-off-by: ShubhamPalriwala <spalriwalau@gmail.com>
* update github.com/docker/cli package for vulnerabilities
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix go.mod vulnerabilities
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2021-11-22 20:57:51 +08:00
Vinod Anandan
a07274f234
Update gh-gomod-generate-sbom
...
Signed-off-by: Vinod Anandan <vinod@owasp.org>
2021-10-23 14:41:05 +01:00
ShubhamPalriwala
5417b9d3c1
feat: shift sigs and sbom
...
Signed-off-by: ShubhamPalriwala <spalriwalau@gmail.com>
2021-10-13 21:34:04 +05:30
Jim Bugwadia
8437582622
Merge branch 'main' into sign-and-generate-sbom
2021-10-05 14:49:06 -07:00
ShubhamPalriwala
92ca609c7c
ci: scan kyverno-image on each build
...
Signed-off-by: ShubhamPalriwala <spalriwalau@gmail.com>
2021-10-05 16:38:55 +05:30
ShubhamPalriwala
187f054809
feat: add SBOM using cosign
...
Signed-off-by: ShubhamPalriwala <spalriwalau@gmail.com>
2021-09-27 15:26:11 +05:30
