Charles-Edouard Brétéché
c335670065
chore: add missing context unit test ( #9213 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-19 15:54:48 +00:00
Charles-Edouard Brétéché
584f841c1e
refactor: make CLI store non static ( #9200 )
...
* refactor: make CLI store non static
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* registry access
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* apply
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* tests
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-19 22:45:53 +08:00
dependabot[bot]
2967b67d0d
chore(deps): bump google.golang.org/grpc from 1.60.0 to 1.60.1 ( #9203 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.60.0 to 1.60.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.60.0...v1.60.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-19 13:36:07 +00:00
Pushkar Mishra
a3b358b78a
Extended the Trivy scan for N-2 Kyverno versions ( #8903 )
...
* closes #8840
Signed-off-by: Pushkar Mishra <pushkarmishra029@gmail.com>
* fixed
Signed-off-by: Pushkar Mishra <pushkarmishra029@gmail.com>
* fix
Signed-off-by: Pushkar Mishra <pushkarmishra029@gmail.com>
---------
Signed-off-by: Pushkar Mishra <pushkarmishra029@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-12-19 13:01:40 +00:00
dependabot[bot]
818ee8b32d
chore(deps): bump kyverno/action-install-chainsaw from 0.1.0 to 0.1.1 ( #9205 )
...
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw ) from 0.1.0 to 0.1.1.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases )
- [Commits](6ab03ccb2c...d12e54dd35
2023-12-19 11:42:25 +00:00
Mariam Fahmy
8e0a7aa204
feat: promote policy exceptions to v2 ( #9208 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-19 10:43:39 +00:00
dependabot[bot]
c395fcd9e2
chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 ( #9201 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-19 08:26:57 +00:00
shuting
7282ecca9f
fix: add skipBackgoundRequests to configure loop protection option ( #9157 )
...
* fix typo
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add new attribute skipBackgroundRequests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* move to per rule config
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* check flag
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* clean up
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* update docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix logger
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add retryCount to ur.status
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* add chainsaw tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-12-19 06:25:12 +00:00
Charles-Edouard Brétéché
8a7c2f0332
chore: bump a couple of deps ( #9198 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-19 02:52:23 +00:00
kanha gupta
cdc68a629a
support for Add Variable unit test ( #9124 )
...
Signed-off-by: Kanha gupta <kanhag4163@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-19 00:14:17 +00:00
dependabot[bot]
6bcc1dccaa
chore(deps): bump github.com/aptible/supercronic from 0.2.28 to 0.2.29 ( #9181 )
...
Bumps [github.com/aptible/supercronic](https://github.com/aptible/supercronic ) from 0.2.28 to 0.2.29.
- [Release notes](https://github.com/aptible/supercronic/releases )
- [Commits](https://github.com/aptible/supercronic/compare/v0.2.28...v0.2.29 )
---
updated-dependencies:
- dependency-name: github.com/aptible/supercronic
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 21:24:10 +00:00
Charles-Edouard Brétéché
05fcb43982
chore: add cli update test ( #9192 )
...
* chore: add cli update test
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-18 20:47:27 +00:00
dependabot[bot]
b5d383aba4
chore(deps): bump fluxcd/flux2 from 2.2.0 to 2.2.1 ( #9184 )
...
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 2.2.0 to 2.2.1.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](53ad742e2d...9b3958825a
2023-12-18 20:18:19 +00:00
Charles-Edouard Brétéché
f8de6810fa
fix: enable additional report printers by default ( #9194 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-18 17:38:41 +00:00
dependabot[bot]
ea05b2286d
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ( #9183 )
...
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](b1b635d242...ba37328d4e
2023-12-18 17:00:50 +00:00
Mariam Fahmy
e22cd9818f
fix: deprecate spec.schemaValidation ( #9189 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-18 16:32:11 +00:00
Charles-Edouard Brétéché
3f865d2038
fix: deep copy resource in cli when operation is update ( #9191 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-18 15:31:19 +00:00
Charles-Edouard Brétéché
e68bca6563
chore: fix conformance tests ( #9187 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-18 14:12:57 +01:00
Mariam Fahmy
68a1258899
fix: limit the trigger name to a maximum of 63 characters for mutate existing rules ( #9162 )
...
* fix: limit the trigger name to a maximum of 63 characters for mutate existing rules
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix chainsaw test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-18 09:23:40 +00:00
Anushka Mittal
8439ff085a
remove unnecessary if condition ( #9180 )
...
Signed-off-by: anushkamittal2001 <anushka@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2023-12-18 09:21:50 +00:00
dependabot[bot]
9372ac01ee
chore(deps): bump sigstore/scaffolding from 0.6.12 to 0.6.13 ( #9182 )
...
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding ) from 0.6.12 to 0.6.13.
- [Release notes](https://github.com/sigstore/scaffolding/releases )
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md )
- [Commits](9e5583eaf4...a6e9b1a7a4
2023-12-18 07:16:51 +00:00
Vishal Choudhary
c5298cdf85
chore: use sigstore/cosign 2.2.2 on main ( #9179 )
...
* chore: use official cosign on main
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* cleanup: remove redundant if check
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* cleanup: extra require statement
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2023-12-18 06:41:26 +00:00
Aakarsh MJ
0036da9c04
fix: updates make codegen-deepcopy back to make codegen-deepcopy-all flag in makefile ( #7766 ) ( #9175 )
...
Signed-off-by: Aakarsh MJ <mj.akarsh@gmail.com>
2023-12-17 19:01:47 +01:00
Jim Bugwadia
f4f34419d9
improve messages ( #9168 )
...
* improve messages
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* fix typo
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2023-12-16 10:50:08 +02:00
Mariam Fahmy
dd055e54b7
chore: move a mutateExisting chainsaw test under its directory ( #9165 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-15 15:14:00 +00:00
Mariam Fahmy
eab6b4eceb
fix: updaterequests stuck in pending/fail infinite loop ( #9119 )
...
* fix: updaterequests stuck in pending/fail infinite loop
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: prevent creating URs upon DELETE unless it is specified
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix chainsaw test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-15 16:42:10 +02:00
shuting
7eb9347ced
fix logger level ( #9163 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2023-12-15 09:51:24 +00:00
Mariam Fahmy
788a7a318c
fix: add tolerations and affinity to the post-upgrate hook ( #9156 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-15 08:12:53 +00:00
Mariam Fahmy
566ecac6ef
chore: add 1.29 to all test grids and remove 1.25 ( #9161 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-15 07:37:47 +00:00
Charles-Edouard Brétéché
74251362bd
chore: add 1.29 to the test grid ( #9158 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-14 22:59:48 +01:00
Charles-Edouard Brétéché
4564e1de8f
fix: chainsaw test ( #9148 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-12-13 09:24:00 +00:00
dependabot[bot]
a67d05399e
chore(deps): bump fluxcd/flux2 from 2.1.2 to 2.2.0 ( #9146 )
...
Bumps [fluxcd/flux2](https://github.com/fluxcd/flux2 ) from 2.1.2 to 2.2.0.
- [Release notes](https://github.com/fluxcd/flux2/releases )
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml )
- [Commits](a18d4f3450...53ad742e2d
2023-12-13 07:38:18 +00:00
Charles-Edouard Brétéché
4baf1330f8
chore: use new chainsaw github action ( #9143 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-13 15:05:17 +08:00
Charles-Edouard Brétéché
3458969ea6
chore: bump chainsaw ( #9140 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-12 12:21:42 +00:00
Vishal Choudhary
1f4181645b
fix: allow changes to preexisting resource in violation of a policy in Enforce ( #9027 )
...
* fix: allow changes to preexisting resource in violation of a policy in Enforce
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: missing error check
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* nit: cleanup
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: update old policy context
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: preconditions always retured true
internal.CheckPreconditions always returned true when v.anyAllConditions, it should be populated with rule.RawAnyAllConditions when newValidator() is used to create a validator
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: fix chainsaw test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: nit
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* debug
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: update test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: add namespace
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add test for bad to good conversion
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add test step
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-12-12 09:17:53 +00:00
dependabot[bot]
5cda6bf7d7
chore(deps): bump sigstore/cosign-installer from 3.2.0 to 3.3.0 ( #9138 )
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](1fc5bd396d...9614fae9e5
2023-12-12 08:10:01 +00:00
dependabot[bot]
c8ef29a2e3
chore(deps): bump google.golang.org/grpc from 1.59.0 to 1.60.0 ( #9137 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.59.0 to 1.60.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.59.0...v1.60.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-12 15:36:41 +08:00
siddhikhapare
060aa7fc05
Update helm docs ( #9057 )
...
* Update helm docs
Signed-off-by: siddhikhapare <siddhikhapare77@gmail.com>
* changes added
Signed-off-by: siddhikhapare <siddhikhapare77@gmail.com>
* policy file updated
Signed-off-by: siddhikhapare <siddhikhapare77@gmail.com>
---------
Signed-off-by: siddhikhapare <siddhikhapare77@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2023-12-11 17:38:26 +00:00
Mariam Fahmy
d6b3056c73
chore: add myself to the maintainers list ( #9130 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-11 09:09:53 -08:00
Charles-Edouard Brétéché
574db24c40
chore: use test regex in chainsaw ( #9123 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2023-12-11 14:46:07 +01:00
dependabot[bot]
b91727eb22
chore(deps): bump aquasecurity/trivy-action from 0.15.0 to 0.16.0 ( #9129 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.15.0 to 0.16.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](22d2755f77...91713af97d
2023-12-11 10:53:00 +00:00
dependabot[bot]
c83afe08ad
chore(deps): bump github.com/go-git/go-git/v5 from 5.10.1 to 5.11.0 ( #9127 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.10.1 to 5.11.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.10.1...v5.11.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-11 10:18:39 +00:00
dependabot[bot]
f2dec602f0
chore(deps): bump kyverno/chainsaw from 0.0.8 to 0.0.9 ( #9128 )
...
Bumps [kyverno/chainsaw](https://github.com/kyverno/chainsaw ) from 0.0.8 to 0.0.9.
- [Release notes](https://github.com/kyverno/chainsaw/releases )
- [Changelog](https://github.com/kyverno/chainsaw/blob/main/.goreleaser.yaml )
- [Commits](5d6585b843...7885ebe21b
2023-12-11 10:32:22 +01:00
Vishal Choudhary
726f93e97c
feat: add myself (vishal-chdhry) to maintainers list ( #9125 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2023-12-10 12:58:13 +00:00
Charles-Edouard Brétéché
33c59963d8
chore: bump chainsaw ( #9120 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-08 13:37:27 +00:00
dependabot[bot]
26b2ff9c0a
chore(deps): bump sigs.k8s.io/kustomize/api from 0.15.0 to 0.16.0 ( #9117 )
...
Bumps [sigs.k8s.io/kustomize/api](https://github.com/kubernetes-sigs/kustomize ) from 0.15.0 to 0.16.0.
- [Release notes](https://github.com/kubernetes-sigs/kustomize/releases )
- [Commits](https://github.com/kubernetes-sigs/kustomize/compare/api/v0.15.0...api/v0.16.0 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/kustomize/api
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-08 08:59:04 +00:00
dependabot[bot]
76a7730af7
chore(deps): bump sigs.k8s.io/kustomize/kyaml from 0.15.0 to 0.16.0 ( #9118 )
...
Bumps [sigs.k8s.io/kustomize/kyaml](https://github.com/kubernetes-sigs/kustomize ) from 0.15.0 to 0.16.0.
- [Release notes](https://github.com/kubernetes-sigs/kustomize/releases )
- [Commits](https://github.com/kubernetes-sigs/kustomize/compare/api/v0.15.0...api/v0.16.0 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/kustomize/kyaml
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-08 07:41:21 +00:00
Charles-Edouard Brétéché
b9b4b3e484
chore: bump chainsaw ( #9114 )
...
* chore: bump chainsaw
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* remove sleeps
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-08 01:14:23 +02:00
Charles-Edouard Brétéché
2ceac72f62
chore: convert chainsaw tests to Test resource ( #9113 )
...
* chore: convert chainsaw tests to Test resource
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2023-12-07 22:38:30 +01:00
dependabot[bot]
0b59933a82
chore(deps): bump actions/setup-python from 4.8.0 to 5.0.0 ( #9104 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4.8.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](b64ffcaf5b...0a5c615913
2023-12-07 20:10:52 +00:00
