mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
2691 commits 16 branches 550 tags 288 MiB
Commit graph

113 commits

Author SHA1 Message Date
Shuting Zhao
51e2b0d978 change severity fields to lower case 2020-11-03 14:08:45 -08:00
Shuting Zhao
153516b0d6 move reportChangeRequest to kyverno.io/v1alpha1 2020-10-30 19:26:53 -07:00
Shuting Zhao
e5c5cb39a0 update summary.* to lower case 2020-10-30 18:01:46 -07:00
Shuting Zhao
ba4b36153d rename apiversion from policy.kubernetes.io to policy.k8s.io 2020-10-30 17:33:20 -07:00
Shuting Zhao
53139db74f - rename reportRequest to reportChangeRequest; -rename clusterReportRequest to clusterReportChangeRequest 2020-10-28 15:36:50 -07:00
Shuting Zhao
63a8d89c8d - update report summary to optional; - generate clusterPolicyReport; - remove reportRequests after merged to report 2020-10-27 18:28:30 -07:00
Shuting Zhao
32d834ea26 - update json tag of report summary; - update definition manifests; - fix dclient creation 2020-10-26 16:08:25 -07:00
Shuting Zhao
954d12c119 update crd clusterReportRequest 2020-10-23 18:28:06 -07:00
Shuting Zhao
2364ff1407 add reportRequest / clusterReportRequest 2020-10-22 16:15:43 -07:00
Shuting Zhao
09e52893c5 Merge branch 'master' into policyreport 2020-10-21 18:03:42 -07:00
Shuting Zhao
e80d7562d8 generate / update policyreport to cluster 2020-10-16 16:26:45 -07:00
Shuting Zhao
c906baa1a7 - update policy report types; - upgrade k8s library; - update code gen 2020-10-15 17:54:58 -07:00
Shuting Zhao
8eb7f13355 add clean up in job controller 2020-10-14 19:00:13 -07:00
Jim Bugwadia
ae0c09a05c remove ContextEntry.path (prototype for API server lookup) 2020-10-14 18:48:23 -07:00
Jim Bugwadia
4ea1126fce remove docs and update README.md 2020-10-14 17:39:45 -07:00
Shuting Zhao
6b5e935e49 Merge branch 'feature/reports-cli' of https://github.com/evalsocket/kyverno into policyreport 
# Conflicts:
#	Makefile
#	cmd/kyverno/main.go
#	go.mod
#	go.sum
#	pkg/client/clientset/versioned/clientset.go
#	pkg/client/clientset/versioned/fake/clientset_generated.go
#	pkg/client/clientset/versioned/fake/register.go
#	pkg/client/clientset/versioned/scheme/register.go
#	pkg/client/informers/externalversions/factory.go
#	pkg/client/informers/externalversions/generic.go
#	pkg/client/listers/kyverno/v1/expansion_generated.go
#	pkg/policy/common.go
#	pkg/policy/controller.go
#	pkg/policy/existing.go
#	pkg/policyviolation/builder.go
#	pkg/policyviolation/generator.go
#	pkg/webhooks/server.go
#	pkg/webhooks/validate_audit.go
#	pkg/webhooks/validation.go
 2020-10-12 18:30:37 -07:00
Shuting Zhao
cdc5190c56 update nirmata/kyverno to kyverno/kyverno 2020-10-07 11:12:31 -07:00
evalsocket
2874b9d677 More changes 2020-10-05 10:38:58 -07:00
Mohan B E
bd406f5bb8
added conversion of overlay to patch strategic merge (#1138) 
* added conversion of overlay to patch strategic merge and modified unittest for the same

* updated best practice policy
 2020-09-22 16:19:09 -07:00
Mohan B E
51ac382c6c
Feature/configmaps var 724 (#1118) 
* added configmap data substitution for foreground mutate and validate

* added configmap data substitution for foreground mutate and validate fmt

* added configmap lookup for background

* added comments to resource cache

* added configmap data lookup in preConditions

* added parse strings in In operator and configmap lookup docs

* added configmap lookup docs

* modified configmap lookup docs
 2020-09-22 14:11:49 -07:00
evalsocket
d0369cae35 resource aggrigation added 2020-09-17 09:20:46 -07:00
evalsocket
6a0a5132b5 resolve conflict 2020-09-11 05:16:31 -07:00
evalsocket
a45cb75502 job deletation logic added 2020-09-11 05:11:40 -07:00
NoSkillGirl
b1a2ab398b fixed duplicate name 2020-09-09 20:17:20 +05:30
Yuvraj
251521a77a policy report added 2020-08-26 18:50:38 +05:30
Yuvraj
875f9716e8 policy report crd added 2020-08-26 00:03:39 +05:30
Mohan B E
f60deecdce
Feature/namespaced policy 280 (#1058) 
* namespaced policy crd and cache

* modified main.go

* removed kyverno

* implemented policy violation generator for namespaced policy on audit

* modified cache

* added validation for cluster resource types

* install.yaml

* install.yaml

* removed namespaces from crd and refactored code

* modified NamespacePolicy to Policy

* added ClusterRole aggregate for policies

* modified clusterrole
 2020-08-19 09:07:23 -07:00
Pooja Singh
5a68653749
Supporting annotations in match/exclude (#1045) 
* Supporting annotations in match/exclude filters

* updated readme

* small fix
 2020-08-17 17:12:27 -07:00
Mohan B E
a14828246d
Feature/api version 852 (#1028) 
* apiVersion support for generate

* added apiVersion to crds
 2020-08-07 09:47:33 +05:30
shuting
39de46fe39
983 kustomize support (#1026) 
* prototype - strategic merge patch

* add end to end test

* add engine strategic merge patch support

* set webhook reinvocationPolicy to IfNeeded

* refactor engine mutate code

* support JMESPath in strategic merge patch

* implement patchesJson6902

* update doc

* resolve pr comments
 2020-08-05 09:11:23 -07:00
Pooja Singh
7195b20e90
Feature/print mutated policy (#1014) 
* added printing mutation policy

* added mutated method in common

* improved yaml print

* updated readme

* small fix

* small fix
 2020-07-29 09:11:58 -07:00
Mohan BE
9b033fd755 added +optional for optional fields 2020-07-23 18:09:34 +05:30
Mohan BE
d41eb93e66 simplified comments 2020-07-22 12:44:06 +05:30
Mohan BE
df33504c0f added prefixes to comments 2020-07-22 12:33:12 +05:30
Mohan BE
f3dc56a7f8 added commentsto types.go 2020-07-22 09:34:56 +05:30
Mohan BE
fcfe89ac8b modified types.go comments 2020-07-22 09:26:39 +05:30
Mohan BE
3e1cef790a added field type specification to types 2020-07-21 11:33:51 +05:30
Mohan BE
2525ce3423 added one line comment to types and added API docs link to README.md 2020-07-20 22:29:20 +05:30
Yuvraj
4535f43283
Added Synchronize flag in Generate Request (#980) 
* fix Synchronize flag issue
 2020-07-14 02:12:11 +05:30
NoSkillGirl
f0fab9499e temp 2020-07-11 17:56:14 +05:30
shuting
7ffeb6efca
skip generate violation on pre-exist pod (#952) 2020-06-25 09:52:54 -07:00
Yuvraj
01724d63cf
Synchronize data for generated resources (#933) 
* Generate request added fro update resource

* synchronize flag added

* documentation added for keeping resource synchronized

Signed-off-by: Yuvraj <yuvraj.yad001@gmail.com>
 2020-06-23 07:19:43 +05:30
Jim Bugwadia
838d02c475
Bugfix/659 support wildcards for namespaces (#871) 
* - support wildcards for namespaces

* do not annotate resource, unless policy is an autogen policy

* close HTTP body

* improve messages

* remove policy store

Policy store was not fully implemented and simply provided a way
to list all polices and get a policy by name, which can be done via
standard client-go interfaces.

We need to revisit and design a better PolicyStore that provides fast
lookups for matching policies based on names, namespaces, etc.

* handle wildcard namespaces in background processing

* fix unit tests 1) remove platform dependent path usage 2) remove policy store

* add test case for mutate with wildcard namespaces
 2020-05-26 10:36:56 -07:00
shravan
f08f7e22c7 744 supporting Equals and NotEquals as operater types 2020-05-06 22:43:17 +05:30
shravan
6b1498b770 744 fixing policy validation and removing allRequests field 2020-05-06 19:46:32 +05:30
shravan
f839f27b41 Merge branch 'master' into 744_deny_requests 2020-04-27 15:12:35 +05:30
shravan
93fa54bf79 744 deny all requests 2020-04-18 18:26:09 +05:30
shravan
4cb44bce09 744 save commit 2020-04-14 19:06:48 +05:30
shravan
61918d9826 808_prototype 2020-04-12 18:58:55 +05:30
shravan
2451756651 744 tested prototype 2020-04-10 23:24:54 +05:30