kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-10 01:46:55 +00:00

Author	SHA1	Message	Date
Nishanth Reddy	95baeaa4e9	fix: return nil error when trigger resource not found for a subresouces (#11594 ) * fix: return nil error when trigger resource not found for a subresource kind Signed-off-by: Nishanth Reddy <nishanth.reddy@doordash.com> * chore(deps): bump codecov/codecov-action from 4.6.0 to 5.0.0 (#11597) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.6.0 to 5.0.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](`b9fd7d16f6...968872560f`) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump sigs.k8s.io/structured-merge-diff/v4 (#11596) Bumps [sigs.k8s.io/structured-merge-diff/v4](https://github.com/kubernetes-sigs/structured-merge-diff) from 4.4.1 to 4.4.3. - [Release notes](https://github.com/kubernetes-sigs/structured-merge-diff/releases) - [Changelog](https://github.com/kubernetes-sigs/structured-merge-diff/blob/master/RELEASE.md) - [Commits](https://github.com/kubernetes-sigs/structured-merge-diff/compare/v4.4.1...v4.4.3) --- updated-dependencies: - dependency-name: sigs.k8s.io/structured-merge-diff/v4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: use generate name for background scan reports (#11586) Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com> * chore(deps): bump github/codeql-action from 3.27.3 to 3.27.4 (#11598) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.27.3 to 3.27.4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`396bb3e453...ea9e4e3799`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat(ci): test upgrade conformance (#11498) Signed-off-by: Khaled Emara <khaled.emara@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com> * add chainsaw tests * add kubectl-evict to githubpath * add readme --------- Signed-off-by: Nishanth Reddy <nishanth.reddy@doordash.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> Signed-off-by: Khaled Emara <khaled.emara@nirmata.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com> Co-authored-by: Khaled Emara <khaled.emara@nirmata.com>	2024-11-20 15:41:06 +08:00
Charles-Edouard Brétéché	4abdbff74a	chore: use more chainsaw step templates (#11324 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2024-10-07 11:44:33 +00:00
shuting	2d601a0830	feat: allow generate pattern changes (#11202 ) * chore: remove duplicate test steps Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: remove validation checks upon generate policy changes Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: return nil Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: chainsaw tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: restrict rule spec changes except for generate pattern Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: rename tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: unit tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: upadte e2e matrix Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2024-09-24 14:11:14 +00:00
shuting	65782d37f8	chore: add more chainsaw tests for `generate.foreach` (#11140 ) * chore: rename tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-data-sync-update-policy Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-data-sync-update-target Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-clone-sync-update-source Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-clone-sync-update-target Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-clone-list-sync-update-source Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: rename vars in cpol-clone-list-sync-update-source Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-clone-list-sync-update-target Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add test/conformance/chainsaw/generate/foreach/existing/cpol-data-sync-create Signed-off-by: ShutingZhao <shuting@nirmata.com> * tests: add cpol-clone-list-sync-create Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2024-09-18 10:54:33 +00:00
Charles-Edouard Brétéché	5a0ce6bb67	chore: bump chainsaw (#11161 ) * chore: bump chainsaw Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * more template use Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * v0.2.10 Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * go mod Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2024-09-17 09:28:33 +00:00
Charles-Edouard Brétéché	4a836883d9	fix: chainsaw tests (#11034 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2024-09-07 21:48:08 +00:00
Mariam Fahmy	e00596a551	fix: match wildcard names for generateExisting policies (#10945 ) * fix: match wildcard names for generateExisting policies Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * fix chainsaw test Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * chore: add unit tests Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> --------- Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2024-08-29 13:09:30 +00:00
Jim Bugwadia	f06399200c	remove wildcard permissions (#10785 ) * remove wildcard permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update codegen Signed-off-by: Jim Bugwadia <jim@nirmata.com> * codegen Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix background controller perms Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove secrets perm Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix reports-controller role Signed-off-by: Jim Bugwadia <jim@nirmata.com> * add wildcard check and limit generate policy checks based on `synchronize` Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update manifest Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix wildcard check Signed-off-by: Jim Bugwadia <jim@nirmata.com> * update default QPS and burst for better performance and to prevent test failure Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix perms Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix perms Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test permissions Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix merge issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix merge issues Signed-off-by: Jim Bugwadia <jim@nirmata.com> --------- Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2024-08-20 11:55:32 +03:00
shuting	481798c836	refactor: update updaterequest to be created for each policy (#10793 ) * chore: remove v1beta1 updaterequest definitions Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: update UR to map a policy instead a rule; adapt UR mapping changes for admission review Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: update code-gen Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: linter Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: remove unused function Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: add missing files Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: add missing files Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update ur in policy controller Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: update crds Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: adapt ur changes in the background controller Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: linter Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: more linter Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: modify mapping relationship for deletion events Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: remedy missing target for policy application Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: fetching logic for triggers Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: clean up targets upon policy deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update crds Signed-off-by: ShutingZhao <shuting@nirmata.com> * merge main Signed-off-by: ShutingZhao <shuting@nirmata.com> * merge main Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: adds delay before assertion Signed-off-by: ShutingZhao <shuting@nirmata.com> * chore: update docs Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: wrong yaml format Signed-off-by: ShutingZhao <shuting@nirmata.com> * feat: update error handling logic Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix(attempt): enable more debug info Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix(attempt): enable debug log Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix(attempt): enable debug log Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix(attempt): enable debug log Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: makefile to update ur crds Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: generate existing Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: skip empty ur generation Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: update install.yaml Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2024-08-13 17:14:06 +00:00
Mariam Fahmy	60a8384fd4	feat: add tests for different values of generateExisting (#10807 ) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2024-08-08 12:11:20 +00:00
Mariam Fahmy	8d44864a61	feat: add chainsaw tests for generate policies (part 1) (#10551 ) * feat: add chainsaw tests for generate policies (part 1) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * fix chainsaw tests Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * chore: rename deprecated chainsaw tests Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> --------- Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>	2024-08-06 11:48:50 +00:00
shuting	88ae60ea9d	fix: correctly validate patterns for old and new objects (#10310 ) * fix: correctly validate patterns for old and new objects Signed-off-by: ShutingZhao <shuting@nirmata.com> * test: add new scenario to the existing test Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: indention Signed-off-by: ShutingZhao <shuting@nirmata.com> * fix: chainsaw tests Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2024-06-25 14:11:34 +00:00
Husni Alhamdani	cd6988d1e2	fix: reset mutable fields orphandownstream (#10478 ) * fix: reset mutable fields orphandownstream Signed-off-by: Husni Alhamdani <dhanielluis@gmail.com> * fix: reset mutable fields orphandownstream Signed-off-by: Husni Alhamdani <dhanielluis@gmail.com> * fix: reset mutable fields orphandownstream Signed-off-by: Husni Alhamdani <dhanielluis@gmail.com> --------- Signed-off-by: Husni Alhamdani <dhanielluis@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2024-06-25 09:24:35 +00:00
Vishal Choudhary	93eac3f7a4	fix: deferred loader panic when mutate and generate policies are applied (#9935 ) * fix: deferred loader panic when mutate and generate policies are applied Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: tests Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: update policies Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * remove clusterrolebinding Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: copy only json context Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: polctx Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> --------- Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2024-03-29 14:37:15 +01:00
shuting	635f160ae0	feat (generate): add `orphanDownstreamOnPolicyDelete` to preserve downstream on policy deletion (#9579 ) * add chainsaw tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * add .orphanDownstreamOnPolicyDelete Signed-off-by: ShutingZhao <shuting@nirmata.com> * update codegen Signed-off-by: ShutingZhao <shuting@nirmata.com> * update docs Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: ShutingZhao <shuting@nirmata.com>	2024-01-31 13:50:38 +02:00
Charles-Edouard Brétéché	2ceac72f62	chore: convert chainsaw tests to Test resource (#9113 ) * chore: convert chainsaw tests to Test resource Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-12-07 22:38:30 +01:00
Charles-Edouard Brétéché	fd10739919	chore: bump chainsaw (#9071 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-12-04 12:39:10 +00:00
Charles-Edouard Brétéché	78b99def0b	chore: bump chainsaw (#9064 )	2023-12-04 10:48:12 +00:00
Charles-Edouard Brétéché	426525be37	chore: fix chainsaw tests cleanup timeout (#9028 ) * chore: fix chainsaw tests cleanup timeout Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * bump chainsaw Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * grace Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * checks Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * bump chainsaw Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix deletes Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix exceptions Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-11-28 06:32:32 +05:30
Charles-Edouard Brétéché	1a331f1297	chore: fix chainsaw exec timeout issue (#9013 ) * chore: fix chainsaw timeouts issues Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * exec timeout Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * bump chainsaw Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * custom sigstore fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * mutate Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-11-26 23:43:29 +08:00
Charles-Edouard Brétéché	d6933fff4f	chore: all chainsaw tests (#9011 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2023-11-24 11:17:58 +01:00

21 commits