1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00
Commit graph

911 commits

Author SHA1 Message Date
dependabot[bot]
fbf195e273
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ()
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.12 to 3.0.13.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases)
- [Commits](0901cf7b71...b8f9a25a51)

---
updated-dependencies:
- dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-30 07:32:03 +00:00
dependabot[bot]
211030e900
chore(deps): bump actions/checkout from 4.1.7 to 4.2.0 ()
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](692973e3d9...d632683dd7)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-26 07:36:19 +00:00
dependabot[bot]
93cbf90769
chore(deps): bump github/codeql-action from 3.26.8 to 3.26.9 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.8 to 3.26.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](294a9d9291...461ef6c76d)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-25 14:06:26 +00:00
dependabot[bot]
0f28d4e003
chore(deps): bump sigstore/scaffolding from 0.7.9 to 0.7.11 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.9 to 0.7.11.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](8a33f8e915...3c79cb2714)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-25 07:20:48 +00:00
dependabot[bot]
47235f07e4
chore(deps): bump github/codeql-action from 3.26.7 to 3.26.8 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.7 to 3.26.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](8214744c54...294a9d9291)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-20 10:46:53 +00:00
Charles-Edouard Brétéché
5a0ce6bb67
chore: bump chainsaw ()
* chore: bump chainsaw

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* more template use

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* v0.2.10

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* go mod

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-17 09:28:33 +00:00
Charles-Edouard Brétéché
0b2a3d3648
feat: add helm upgrade tests ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-17 08:44:54 +00:00
Charles-Edouard Brétéché
d7d3efab3b
chore: update dependabot gomod config ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-17 12:25:44 +05:30
dependabot[bot]
9c406b9af8
chore(deps): bump github/codeql-action from 3.26.6 to 3.26.7 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.6 to 3.26.7.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](4dd16135b6...8214744c54)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-16 07:17:56 +00:00
Pradeep Lakshmi Narasimha
ea9028fe94
fix: Updated Go version to v1.23.1 to address CVE-2024-34156 ()
Signed-off-by: Pradeep Lakshmi Narasimha <pradeep.vaishnav4@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-09-13 19:36:31 +08:00
Charles-Edouard Brétéché
fb0db0a79e
fix: go releaser config ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-13 07:51:51 +05:30
Charles-Edouard Brétéché
2d5b6dae45
chore: add dependabot groups for k8s and otel ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-12 13:31:28 +00:00
Vishal Choudhary
ea19244876
fix: expect base64 string in raw tuf root ()
* fix: expect base64 string in raw tuf root

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: add tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: rename kyverno yaml file

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-09-12 12:34:52 +00:00
Vishal Choudhary
71f29d011c
fix: make webhook cleanup setup optional and add cleanup ci test ()
* fix: make webhook cleanup setup optional and add cleanup ci test

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: add logging

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: add validating webhook count check

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-09-11 08:38:45 +02:00
Charles-Edouard Brétéché
a6b32bcca5
chore: reduce jobs run on push ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-10 14:52:09 +00:00
dependabot[bot]
ac6f4c1263
chore(deps): bump sigstore/scaffolding from 0.7.8 to 0.7.9 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.8 to 0.7.9.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](16ae89aa23...8a33f8e915)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-10 06:52:31 +00:00
Charles-Edouard Brétéché
16d59407d1
chore: verify chainsaw with cosign ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-09 12:08:41 +00:00
Charles-Edouard Brétéché
c5dcfd8880
chore: add missing versions in actions refs ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-09 11:42:21 +00:00
Charles-Edouard Brétéché
8e14e1e7c7
chore: fix trivy action version ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-09 09:11:09 +00:00
dependabot[bot]
46b32bd443
chore(deps): bump kyverno/action-install-chainsaw ()
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw) from 0.2.8 to 0.2.9.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases)
- [Commits](82d8e74703...b2f61a8d04)

---
updated-dependencies:
- dependency-name: kyverno/action-install-chainsaw
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-07 22:21:47 +00:00
dependabot[bot]
e3fc2a76e9
chore(deps): bump kyverno/action-install-chainsaw from 0.2.8 to 0.2.9 ()
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw) from 0.2.8 to 0.2.9.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases)
- [Commits](82d8e74703...b2f61a8d04)

---
updated-dependencies:
- dependency-name: kyverno/action-install-chainsaw
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-07 11:53:40 +00:00
dependabot[bot]
e740da96ef
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ()
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.11 to 3.0.12.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases)
- [Commits](3c16e895bb...0901cf7b71)

---
updated-dependencies:
- dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-07 11:17:33 +00:00
shuting
28caebf6f0
fix: attempt to fix the trivy scan ()
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-09-05 08:12:15 +00:00
Charles-Edouard Brétéché
0a861f3e47
chore: refactor conformance workflow ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-04 13:57:14 +00:00
Pradeep Lakshmi Narasimha
416b7d2f8b
fix: Honour generateSuccessEvents config for generating success events () ()
Signed-off-by: Pradeep Lakshmi Narasimha <pradeep.vaishnav4@gmail.com>
2024-09-04 10:25:34 +00:00
Charles-Edouard Brétéché
2270498ef6
chore: disable fail-fast in conformance ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-03 16:20:34 +00:00
dependabot[bot]
38e96a4b6b
chore(deps): bump CycloneDX/gh-gomod-generate-sbom ()
Bumps [CycloneDX/gh-gomod-generate-sbom](https://github.com/cyclonedx/gh-gomod-generate-sbom) from 1.1.0 to 2.0.0.
- [Release notes](https://github.com/cyclonedx/gh-gomod-generate-sbom/releases)
- [Commits](d4aee0cf51...efc74245d6)

---
updated-dependencies:
- dependency-name: CycloneDX/gh-gomod-generate-sbom
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 11:52:58 +00:00
dependabot[bot]
d6f74cf713
chore(deps): bump actions/setup-go in /.github/actions/setup-build-env ()
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.5.0 to 5.0.2.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](6edd4406fa...0a12ed9d6a)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 09:04:11 +00:00
dependabot[bot]
972e81cd3a
chore(deps): bump actions/cache in /.github/actions/setup-caches ()
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.2 to 4.0.2.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](4723a57e26...0c45773b62)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-03 07:07:04 +00:00
dependabot[bot]
ce3d6d0c3b
chore(deps): bump sigstore/scaffolding from 0.7.7 to 0.7.8 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.7 to 0.7.8.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](fd2699d622...16ae89aa23)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 22:58:06 +00:00
Charles-Edouard Brétéché
96965eb229
chore: more e2e matrix based jobs ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 22:24:55 +00:00
dependabot[bot]
24b5e6ddde
chore(deps): bump actions/setup-python from 5.1.1 to 5.2.0 ()
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 5.1.1 to 5.2.0.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](39cd14951b...f677139bbe)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 21:55:51 +00:00
Charles-Edouard Brétéché
ebf61e3e10
chore: update upload/download artifact actions ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 21:01:25 +00:00
Charles-Edouard Brétéché
3dceb71442
chore: remove deprecated option in install-helm action ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 20:23:13 +00:00
dependabot[bot]
322dce6e76
chore(deps): bump adRise/update-pr-branch from 0.9.0 to 0.9.1 ()
Bumps [adRise/update-pr-branch](https://github.com/adrise/update-pr-branch) from 0.9.0 to 0.9.1.
- [Release notes](https://github.com/adrise/update-pr-branch/releases)
- [Commits](f6b919383e...3576c22e28)

---
updated-dependencies:
- dependency-name: adRise/update-pr-branch
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 19:51:32 +00:00
Charles-Edouard Brétéché
d219766f12
feat: add chainsaw matrix script ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 19:01:50 +00:00
Charles-Edouard Brétéché
61c4a3e7b7
chore: split conformance jobs per folder ()
* chore: simplify e2e matrix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* chore: use dynamic matrix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* chore: split conformance jobs per folder

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 17:55:55 +00:00
dependabot[bot]
e4afa3a125
chore(deps): bump jlumbroso/free-disk-space ()
Bumps [jlumbroso/free-disk-space](https://github.com/jlumbroso/free-disk-space) from 1.2.0 to 1.3.1.
- [Release notes](https://github.com/jlumbroso/free-disk-space/releases)
- [Commits](76866dbe54...54081f1387)

---
updated-dependencies:
- dependency-name: jlumbroso/free-disk-space
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 17:21:03 +00:00
dependabot[bot]
0438a65c0c
chore(deps): bump jlumbroso/free-disk-space ()
Bumps [jlumbroso/free-disk-space](https://github.com/jlumbroso/free-disk-space) from 1.2.0 to 1.3.1.
- [Release notes](https://github.com/jlumbroso/free-disk-space/releases)
- [Commits](76866dbe54...54081f1387)

---
updated-dependencies:
- dependency-name: jlumbroso/free-disk-space
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 16:55:57 +00:00
Charles-Edouard Brétéché
de3aa98015
fix: configure dependabot to work with composite actions ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 16:10:12 +00:00
Charles-Edouard Brétéché
f89eca87da
chore: use dynamic matrix ()
* chore: simplify e2e matrix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* chore: use dynamic matrix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 21:06:02 +05:30
Charles-Edouard Brétéché
43e5910472
chore: simplify e2e matrix ()
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-09-02 14:27:10 +00:00
dependabot[bot]
b5870864b8
chore(deps): bump cbrgm/cleanup-stale-branches-action ()
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action) from 1.1.20 to 1.1.21.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases)
- [Commits](3a038290b5...07d311426e)

---
updated-dependencies:
- dependency-name: cbrgm/cleanup-stale-branches-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 08:07:12 +00:00
Jim Bugwadia
f699250246
update K8s compatibility test versions ()
* update K8s compatibility test versions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix versions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* update sigstore scaffolding versions

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

---------

Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2024-08-31 01:22:56 +00:00
dependabot[bot]
14c7883a18
chore(deps): bump github/codeql-action from 3.26.5 to 3.26.6 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.5 to 3.26.6.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2c779ab0d0...4dd16135b6)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-30 17:23:54 +00:00
Mariam Fahmy
bde90340a6
chore: remove v1alpha1 of VAPs and use v1beta1 ()
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-08-29 15:31:25 +00:00
dependabot[bot]
dd519a75ca
chore(deps): bump adRise/update-pr-branch from 0.8.1 to 0.9.0 ()
Bumps [adRise/update-pr-branch](https://github.com/adrise/update-pr-branch) from 0.8.1 to 0.9.0.
- [Release notes](https://github.com/adrise/update-pr-branch/releases)
- [Commits](5d273948c5...f6b919383e)

---
updated-dependencies:
- dependency-name: adRise/update-pr-branch
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-29 08:16:48 +00:00
Charles-Edouard Brétéché
f87fa52cb7
feat: bump to k8s 1.31 ()
* feat: bump to k8s 1.31

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* tidy

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* mod

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix otel

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix otel schema

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* update linter

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* feat: fix image verification tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* linter issues

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* cel change

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-08-28 17:09:58 +00:00
Harshita Sao
838ea5b931
fix: fixed the pinned dependencies issue ()
Signed-off-by: harshitasao <harshitasao@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-08-28 13:15:02 +00:00
dependabot[bot]
754310a143
chore(deps): bump sonarsource/sonarcloud-github-action ()
Bumps [sonarsource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action) from 2.3.0 to 3.0.0.
- [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases)
- [Commits](e44258b109...eb21172326)

---
updated-dependencies:
- dependency-name: sonarsource/sonarcloud-github-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-27 08:52:19 +00:00
dependabot[bot]
3314f269be
chore(deps): bump github/codeql-action from 3.26.2 to 3.26.5 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.2 to 3.26.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](429e197704...2c779ab0d0)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 21:56:10 +00:00
dependabot[bot]
411918c730
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ()
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.10 to 3.0.11.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases)
- [Commits](b88cd0aad2...3c16e895bb)

---
updated-dependencies:
- dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 13:13:03 +00:00
dependabot[bot]
07f7f2abae
chore(deps): bump sigstore/scaffolding from 0.7.5 to 0.7.7 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.5 to 0.7.7.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](634364a897...fd2699d622)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 08:41:04 +00:00
shuting
bd71af3291
feat: support foreach for generate.data ()
* chore: refactor

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: add foreach for generate.daya to api

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: refactor generator

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: linter

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update rule validation

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update rule validation -2

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: support foreach.data

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: policy validation

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: context variables

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add a chainsaw test

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: sync on policy deletion

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: enable new chainsaw tests in CI

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update code-gen

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: validate targets scope for ns-policies

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: add missing files

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: remove unreasonable test

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update docs

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update install.yaml

Signed-off-by: ShutingZhao <shuting@nirmata.com>

---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-08-19 06:55:19 +00:00
dependabot[bot]
90be7c40fa
chore(deps): bump github/codeql-action from 3.26.1 to 3.26.2 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.1 to 3.26.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](29d86d22a3...429e197704)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-15 07:30:34 +00:00
dependabot[bot]
9dd646bb56
chore(deps): bump github/codeql-action from 3.26.0 to 3.26.1 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.0 to 3.26.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](eb055d739a...29d86d22a3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-14 07:50:01 +00:00
shuting
481798c836
refactor: update updaterequest to be created for each policy ()
* chore: remove v1beta1 updaterequest definitions

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update UR to map a policy instead a rule; adapt UR mapping changes for admission review

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update code-gen

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: linter

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: remove unused function

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: add missing files

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: add missing files

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update ur in policy controller

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update crds

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: adapt ur changes in the background controller

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: linter

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: more linter

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: modify mapping relationship for deletion events

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: remedy missing target for policy application

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: fetching logic for triggers

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: clean up targets upon policy deletion

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update crds

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* merge main

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* merge main

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: adds delay before assertion

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* chore: update docs

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: wrong yaml format

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* feat: update error handling logic

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix(attempt): enable more debug info

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix(attempt): enable debug log

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix(attempt): enable debug log

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix(attempt): enable debug log

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: makefile to update ur crds

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: generate existing

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: skip empty ur generation

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* fix: update install.yaml

Signed-off-by: ShutingZhao <shuting@nirmata.com>

---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-08-13 17:14:06 +00:00
dependabot[bot]
6e73e8514b
chore(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0 ()
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.5.0 to 3.6.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](59acb6260d...4959ce089c)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-09 17:12:12 +08:00
dependabot[bot]
6447a3e9f9
chore(deps): bump fossas/fossa-action from 1.3.3 to 1.4.0 ()
Bumps [fossas/fossa-action](https://github.com/fossas/fossa-action) from 1.3.3 to 1.4.0.
- [Release notes](https://github.com/fossas/fossa-action/releases)
- [Commits](47ef11b1e1...09bcf127dc)

---
updated-dependencies:
- dependency-name: fossas/fossa-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-08-08 06:46:35 +00:00
dependabot[bot]
4342c36c09
chore(deps): bump github/codeql-action from 3.25.15 to 3.26.0 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.15 to 3.26.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](afb54ba388...eb055d739a)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-07 11:12:29 +00:00
Charles-Edouard Brétéché
fc694bc24c
feat: add kyverno json support to validation rule ()
* feat: add kyverno json support to validation rule

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* v2beta1

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* validation

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* engine handler

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* bindings

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* context functions

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* better bindings

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-08-02 08:24:30 +00:00
dependabot[bot]
5c04256a4a
chore(deps): bump cbrgm/cleanup-stale-branches-action ()
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action) from 1.1.19 to 1.1.20.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases)
- [Commits](03d7d18e1a...3a038290b5)

---
updated-dependencies:
- dependency-name: cbrgm/cleanup-stale-branches-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-02 07:33:39 +00:00
Charles-Edouard Brétéché
e004d8ae8d
chore: bump chainsaw ()
* chore: bump chainsaw

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* bump

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* v0.2.8-beta.1

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* v0.2.8-beta.2

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* beta 3

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* cli

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-07-31 15:50:20 +00:00
Lavish Pal
7efb8a7c65
Move Nancy scan to a periodic job ()
Signed-off-by: Lavish pal <lvishpal408@gmail.com>
2024-07-31 08:32:29 +00:00
dependabot[bot]
74e17cc629
chore(deps): bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 ()
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 6.0.1 to 6.1.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](a4f60bb28d...aaa42aa062)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-30 16:45:14 +08:00
dependabot[bot]
7232d8e57e
chore(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 ()
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.3 to 2.4.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](dc50aa9510...62b2cac7ed)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-29 16:18:20 +00:00
dependabot[bot]
6aba51564d
chore(deps): bump github/codeql-action from 3.25.14 to 3.25.15 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.14 to 3.25.15.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5cf07d8b70...afb54ba388)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-29 15:20:44 +00:00
dependabot[bot]
7c730aee6f
chore(deps): bump sigstore/scaffolding from 0.7.4 to 0.7.5 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.4 to 0.7.5.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](26f31cb72c...634364a897)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-29 15:50:53 +08:00
dependabot[bot]
8dadebb2ea
chore(deps): bump github/codeql-action from 3.25.13 to 3.25.14 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.13 to 3.25.14.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2d790406f5...5cf07d8b70)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-26 16:20:37 +08:00
dependabot[bot]
db45329cd6
chore(deps): bump docker/login-action from 3.2.0 to 3.3.0 ()
Bumps [docker/login-action](https://github.com/docker/login-action) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](0d4c9c5ea7...9780b0c442)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-23 10:10:59 +00:00
dependabot[bot]
af8d4f9260
chore(deps): bump github/codeql-action from 3.25.12 to 3.25.13 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.12 to 3.25.13.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](4fa2a79536...2d790406f5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-22 07:14:22 +00:00
shuting
0abaa4106c
add 1.12.6 ()
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-07-19 13:06:31 +00:00
dependabot[bot]
c977844b39
chore(deps): bump github/codeql-action from 3.25.11 to 3.25.12 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.11 to 3.25.12.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](b611370bb5...4fa2a79536)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-17 14:43:22 +00:00
dependabot[bot]
01bcbbce47
chore(deps): bump cbrgm/cleanup-stale-branches-action ()
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action) from 1.1.18 to 1.1.19.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases)
- [Commits](d0f8b6440d...03d7d18e1a)

---
updated-dependencies:
- dependency-name: cbrgm/cleanup-stale-branches-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-17 12:09:03 +00:00
dependabot[bot]
484e9aab3e
chore(deps): bump aquasecurity/trivy-action from 0.23.0 to 0.24.0 ()
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.23.0 to 0.24.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](7c2007bcb5...6e7b7d1fd3)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-12 08:42:47 +00:00
dependabot[bot]
3fbb5923fa
chore(deps): bump sigstore/scaffolding from 0.7.3 to 0.7.4 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.3 to 0.7.4.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](bfc40f4d3a...26f31cb72c)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-12 05:33:53 +00:00
dependabot[bot]
5ca0db58b6
chore(deps): bump actions/setup-python from 5.1.0 to 5.1.1 ()
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 5.1.0 to 5.1.1.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](82c7e631bb...39cd14951b)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-11 09:13:41 +00:00
dependabot[bot]
d068cd471f
chore(deps): bump cbrgm/cleanup-stale-branches-action ()
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action) from 1.1.17 to 1.1.18.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases)
- [Commits](6a9aa7a9b0...d0f8b6440d)

---
updated-dependencies:
- dependency-name: cbrgm/cleanup-stale-branches-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-08 18:45:31 +08:00
dependabot[bot]
d5d9d9c17a
chore(deps): bump sigstore/scaffolding from 0.7.2 to 0.7.3 ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 0.7.2 to 0.7.3.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](fb8d1817d2...bfc40f4d3a)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-04 07:19:58 +00:00
dependabot[bot]
c51bf9716f
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ()
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.9 to 3.0.10.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases)
- [Commits](74606c3045...b88cd0aad2)

---
updated-dependencies:
- dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-07-03 08:49:20 +00:00
dependabot[bot]
3c771fba23
chore(deps): bump github/codeql-action from 3.25.10 to 3.25.11 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.10 to 3.25.11.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](23acc5c183...b611370bb5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-01 09:32:26 +00:00
shuting
3df3515705
feat: add 1.12.4 to issue templates ()
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-06-27 12:11:08 +00:00
shuting
a70532a5e9
chore: bump Go 1.22.4 ()
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-06-25 10:20:27 +00:00
dependabot[bot]
122b3a36cf
chore(deps): bump kyverno/action-install-chainsaw from 0.2.4 to 0.2.5 ()
Bumps [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw) from 0.2.4 to 0.2.5.
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases)
- [Commits](dd64b5d7b2...573a9c636f)

---
updated-dependencies:
- dependency-name: kyverno/action-install-chainsaw
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-25 07:33:37 +00:00
dependabot[bot]
6e92066ac7
chore(deps): bump cbrgm/cleanup-stale-branches-action ()
Bumps [cbrgm/cleanup-stale-branches-action](https://github.com/cbrgm/cleanup-stale-branches-action) from 1.1.16 to 1.1.17.
- [Release notes](https://github.com/cbrgm/cleanup-stale-branches-action/releases)
- [Commits](af96333d4b...6a9aa7a9b0)

---
updated-dependencies:
- dependency-name: cbrgm/cleanup-stale-branches-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-24 07:50:43 +00:00
dependabot[bot]
9a8462fb10
chore(deps): bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 ()
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.22.0 to 0.23.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](595be6a0f6...7c2007bcb5)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-18 15:28:43 +00:00
dependabot[bot]
c37fd3cf05
chore(deps): bump sigstore/scaffolding ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 4b66cdb2995323792bda5c1e497a553c8165b908 to fb8d1817d2571303daf88f49d3a23daeb7474e84.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](4b66cdb299...fb8d1817d2)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-18 11:34:46 +00:00
dependabot[bot]
fdf1f3d115
chore(deps): bump codecov/codecov-action from 4.4.1 to 4.5.0 ()
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.4.1 to 4.5.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](125fc84a9a...e28ff129e5)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-18 06:12:21 +00:00
dependabot[bot]
49d44072ba
chore(deps): bump sigstore/scaffolding ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from d9197cb16e744297de67cfeef8a8e247d31206c4 to 4b66cdb2995323792bda5c1e497a553c8165b908.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](d9197cb16e...4b66cdb299)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-17 19:58:02 +00:00
dependabot[bot]
27a777db36
chore(deps): bump sonarsource/sonarcloud-github-action ()
Bumps [sonarsource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases)
- [Commits](4006f663ec...e44258b109)

---
updated-dependencies:
- dependency-name: sonarsource/sonarcloud-github-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-17 16:24:27 +00:00
dependabot[bot]
6265da462f
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ()
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.7 to 3.0.9.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases)
- [Commits](76d1d8e0b0...74606c3045)

---
updated-dependencies:
- dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-17 07:32:44 +00:00
Vishal Choudhary
94f0ec3e2c
feat: add workflow to cleanup stale branches ()
* feat: add workflow to cleanup stale branches

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: testing

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: more testing

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: add sha

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: remove debug

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-06-16 05:24:24 +00:00
Vishal Choudhary
c305fbc070
feat: add custom sigstore conformance tests ()
* feat: add custom sigstore conformance tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: debug

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: debug

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: debug

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: debug

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: add custom sigstore values back

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: remove debug

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-06-14 13:53:06 +00:00
dependabot[bot]
2a28778586
chore(deps): bump github/codeql-action from 3.25.9 to 3.25.10 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.9 to 3.25.10.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](530d4feaa9...23acc5c183)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-14 09:00:31 +00:00
dependabot[bot]
26cb829e65
chore(deps): bump actions/checkout from 4.1.6 to 4.1.7 ()
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.6 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](a5ac7e51b4...692973e3d9)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-13 22:40:59 +00:00
Vishal Choudhary
3a4ec7c400
fix: fetch all branches (max 100) in report on vulnerability workflow () 2024-06-13 15:09:06 +00:00
dependabot[bot]
90a195b645
chore(deps): bump github/codeql-action from 3.25.8 to 3.25.9 ()
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.8 to 3.25.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2e230e8fe0...530d4feaa9)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-13 07:58:09 +00:00
shuting
8bf39942cb
chore: temporarily remove sigstore tests to unblock PRs ()
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-06-13 07:13:27 +00:00
dependabot[bot]
6813fc0149
chore(deps): bump imjasonh/setup-crane from 0.3 to 0.4 ()
Bumps [imjasonh/setup-crane](https://github.com/imjasonh/setup-crane) from 0.3 to 0.4.
- [Release notes](https://github.com/imjasonh/setup-crane/releases)
- [Commits](00c9e93efa...31b88efe9d)

---
updated-dependencies:
- dependency-name: imjasonh/setup-crane
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-12 09:49:46 +00:00
dependabot[bot]
91d628bd72
chore(deps): bump sigstore/scaffolding ()
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from a7cba019075a061dc5e6dd4910cc5b0006302f3e to 19922c022ce4d4d5511e0adcd56df6eb2f41b8a6.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](a7cba01907...19922c022c)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-11 06:54:17 +00:00