dependabot[bot]
eb6b10b1ff
chore(deps): bump CycloneDX/gh-gomod-generate-sbom from 1.0.0 to 1.1.0 ( #5601 )
...
Bumps [CycloneDX/gh-gomod-generate-sbom](https://github.com/CycloneDX/gh-gomod-generate-sbom ) from 1.0.0 to 1.1.0.
- [Release notes](https://github.com/CycloneDX/gh-gomod-generate-sbom/releases )
- [Commits](c18e41a4e3...d4aee0cf51
2022-12-07 11:05:45 +00:00
dependabot[bot]
b93dff34bb
chore(deps): bump aquasecurity/trivy-action from 0.2.3 to 0.8.0 ( #5584 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.2.3 to 0.8.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.2.3...9ab158e8597f3b310480b9a69402b419bc03dbd5 )
---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
2022-12-06 14:16:13 +00:00
dependabot[bot]
fd1fc7c7fe
chore(deps): bump actions/setup-go from 2.1.5 to 3.4.0 ( #5585 )
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 2.1.5 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](https://github.com/actions/setup-go/compare/v2.1.5...d0a58c1c4d2b25278816e339b944508c875f3613 )
---
updated-dependencies:
- dependency-name: actions/setup-go
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-06 07:49:45 +01:00
dependabot[bot]
8edfc37a9e
chore(deps): bump actions/checkout from 2.4.0 to 3.1.0 ( #5564 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2.4.0 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2.4.0...93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-05 09:43:16 +01:00
dependabot[bot]
70f9aebf0a
chore(deps): bump actions/cache from 3.0.8 to 3.0.11 ( #5565 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.0.8 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](fd5de65bc8...9b0c1fce7a
2022-12-05 08:58:10 +01:00
dependabot[bot]
40ef481f78
chore(deps): bump actions/upload-artifact from 3.1.0 to 3.1.1 ( #5535 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.0...83fd05a356d7e2593de66fc9913b3002723633cb )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-02 10:19:44 +00:00
dependabot[bot]
1baa59d2b2
chore(deps): bump sigstore/cosign-installer from 2.8.0 to 2.8.1 ( #5533 )
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](7cc35d7fdb...9becc61764
2022-12-02 10:47:04 +01:00
Charles-Edouard Brétéché
987489d800
chore: stop using set-output in gh actions ( #5500 )
...
* chore: stop using set-output in gh actions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add quotes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* add quotes
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-11-30 11:53:30 +00:00
Chip Zoller
987e6d1cf6
Fix incorrect step ID reference ( #5388 )
...
- remove unnecessary test files
- fix incorrect step ID reference
Signed-off-by: Chip Zoller <chipzoller@gmail.com>
2022-11-17 18:48:01 +05:30
Zahid Khan
1fef873762
feature: SLSA Level 3 provenance generation for Kyverno images: kyverno init, kyverno and kyvernopre ( #4268 )
...
Signed-off-by: zurrehma <zahid.chashma@gmail.com>
Signed-off-by: zurrehma <zahid.chashma@gmail.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2022-10-28 14:19:15 +00:00
Batuhan Apaydın
38a15a948f
chore: add COSIGN_REPOSITORY env to ko-publish-dev step ( #4922 )
2022-10-13 10:55:39 +00:00
Batuhan Apaydın
f45584bfd6
chore: signing helm releases ( #4801 )
...
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-10-12 20:14:44 +00:00
Charles-Edouard Brétéché
332a5aa01f
chore: enable overriding images repo ( #4694 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-27 17:47:59 +00:00
Charles-Edouard Brétéché
e8839a3ff7
chore: bump minimum go version ( #4677 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-25 10:11:28 +00:00
Batuhan Apaydın
e35da69c92
chore: publish sbom result to a different repositry from an image ( #4665 )
...
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
2022-09-21 22:06:34 -05:00
Batuhan Apaydın
ff7ed78b09
chore: add kocache ( #4482 )
...
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-09 09:00:25 +00:00
Charles-Edouard Brétéché
b65d9fc5c6
chore: bump cache action and improve paths ( #4485 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-01 17:41:48 +00:00
Charles-Edouard Brétéché
b8e2d69693
fix: release workflow ( #4483 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-09-01 16:19:19 +00:00
Charles-Edouard Brétéché
fc79ca96a2
refactor: clearly separate makefile ko targets for build and publish ( #4450 )
...
* refactor: clearly separate makefile ko targets for build and publish
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* fixes
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-30 17:30:28 +02:00
Charles-Edouard Brétéché
2b495c7ef3
chore: fix workflows related to ko recent changes ( #4438 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>
2022-08-30 12:59:08 +08:00
Charles-Edouard Brétéché
c35e73e39c
fix: ko login ( #4425 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-26 16:56:27 +00:00
Charles-Edouard Brétéché
e0da0c996c
fix: ko login ( #4424 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-26 15:54:48 +00:00
Charles-Edouard Brétéché
ce4377a54e
fix: ko login ( #4423 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-26 23:01:50 +08:00
Charles-Edouard Brétéché
5915f37f4d
fix: ko login ( #4422 )
...
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-08-26 14:25:30 +00:00
Charles-Edouard Brétéché
9e49b25484
refactor: makefile build targets ( #4418 )
...
* refactor: makefile
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
* refactor: makefile build targets
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
2022-08-26 15:23:04 +08:00
Jason Hall
6055713dfc
Use ko to build images ( #4366 )
...
This updates Makefile targets to build images using `docker buildx
build` to use `ko build` instead.
End-to-end tests are accomplished by building and loading the image
directly into the KinD cluster via ko.
Also:
- use GitHub Actions token to push to ghcr.io (setup-ko sets this up for us)
- allow forks to push to their forked repo's packages (useful for testing)
Signed-off-by: Jason Hall <jason@chainguard.dev>
Signed-off-by: Jason Hall <jason@chainguard.dev>
2022-08-25 20:32:40 +02:00
Prateek Pandey
34fe6c9058
bump cosign deps version to 1.11.1 ( #4408 )
...
* bump cosign deps version to 1.11.1
to accommodate latest attestation verification fixes
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
* bump github action go version to 1.18
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-08-25 08:24:49 +00:00
shuting
e2b77641cb
bump cosign version to 1.11.0 ( #4398 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2022-08-24 15:24:44 +00:00
Shubham Gupta
f70cd4222f
Update hash of dependencies instead of mutable version ( #3582 )
...
Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>
2022-04-12 10:22:38 +01:00
Prateek Pandey
1b2a3c1085
fix: use github repo env instead of hardcoded repo name ( #3513 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-03-31 17:36:21 +08:00
Prateek Pandey
4846bd0293
fetch tag across all branches instead of current branch ( #3324 )
...
Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>
2022-03-01 11:59:28 -08:00
Naman Lakhwani
fd7addd2fa
add separate step for digest ( #3321 )
...
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-03-01 20:05:14 +05:30
Naman Lakhwani
985e2cc158
adding check for digest and update git command
...
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-03-01 18:36:16 +05:30
Naman Lakhwani
378a1d6b95
Fix workflow using regex in main ( #3306 )
...
* using regex
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* added condition
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-02-25 08:48:11 +00:00
skuethe
bf662b1ed4
fix: add support for other platforms before executing docker buildx ( #3296 )
2022-02-24 11:36:10 +00:00
Naman Lakhwani
a9c9b25bb5
latest will point to main ( #3285 )
...
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2022-02-23 15:30:49 +00:00
Naman Lakhwani
81ab535433
update trivy scanning ( #3284 )
...
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-02-23 10:40:07 +08:00
Mritunjay Kumar Sharma
cdedf11a1c
bumps k8s libraries for k8s v1.23 upgrade for kyverno ( #3043 )
...
* bumps k8s libraries for k8s v1.23 upgrade for kyverno
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* fixes kustomize version
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* updates golang to v1.17 to test fails
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* updates logr package to 1.2.2
Signed-off-by: Mritunjay Sharma <mritunjaysharma394@gmail.com>
* Fixed tests for `pkg/cosign` and `pkg/webhooks/generation`
Signed-off-by: Abhinav Sinha <abhinav@nirmata.com>
* fix go-logr deps version issue
Signed-off-by: prateekpandey14 <prateekpandey14@gmail.com>
* fix kube-openapi commit hash
Signed-off-by: prateekpandey14 <prateekpandey14@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
Co-authored-by: Abhinav Sinha <abhinav@nirmata.com>
Co-authored-by: prateekpandey14 <prateekpandey14@gmail.com>
2022-01-22 20:26:53 +08:00
Naman Lakhwani
73a02a5df3
fixing bildx version ( #3023 )
...
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-01-19 22:14:48 +08:00
Naman Lakhwani
1580837526
refactoring github actions to remove duplication and enhancement for versioned sbom's ( #2979 )
...
* initial commit
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* adding docker-buildx-builder to makefile
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* reverting git describe in makefile
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* uploading sbom for each kyverno image
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* small nits
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
* scanning image before pushing and removed cosign.pub
Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
2022-01-18 15:07:59 -08:00
