kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00

Author	SHA1	Message	Date
shuting	c769c24391	release v1.5.3 (#2926 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-01-07 15:07:55 +08:00
shuting	3c48fd9c81	release v1.5.3-rc1 (#2919 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-01-06 18:35:36 +08:00
shuting	c876298c5d	release v1.5.2 (#2815 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2021-12-10 04:02:34 +00:00
ShutingZhao	ad3603b652	release v1.5.2-rc5 Signed-off-by: ShutingZhao <shuting@nirmata.com>	2021-12-09 16:22:01 +08:00
ShutingZhao	83ef767f39	tag v1.5.2-rc4 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-12-07 18:59:52 +08:00
Vyankatesh Kudtarkar	30eed7a798	cherry pick #2776 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-12-07 18:59:52 +08:00
shuting	4d01f3ed96	Release 1.5.2-rc3 (#2785 ) * switched to default serve mux (#2592) Signed-off-by: Siddharth Lal <siddharthlal25@gmail.com> * publish image on new tags Signed-off-by: ShutingZhao <shutting06@gmail.com> * release v1.5.2-rc3 Signed-off-by: ShutingZhao <shutting06@gmail.com> Co-authored-by: Siddharth Lal <siddharthlal25@gmail.com>	2021-12-03 14:28:20 +05:30
shuting	dc2bc73598	release v1.5.2-rc2 (#2770 ) Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-11-30 08:16:25 +00:00
Vyankatesh Kudtarkar	be4d0cf31c	fix hardcoded clusterrole name issue (#2728 )	2021-11-16 19:29:07 +08:00
ShutingZhao	54cb50bc9d	release v1.5.2-rc1 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-11-16 10:35:35 +08:00
ShutingZhao	b5e17ee05f	tag v1.5.1 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-25 21:50:54 -07:00
ShutingZhao	3714c9a933	tag v1.5.0 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-20 12:10:34 -07:00
ShutingZhao	d3d9464da1	tag v1.5.0-rc4 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-19 10:40:24 -07:00
ShutingZhao	5df903e34e	tag v1.5.0-rc3 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-18 15:59:47 -07:00
ShutingZhao	857842b79d	release 1.5.0-rc2	2021-10-15 10:14:04 -07:00
Vyankatesh Kudtarkar	17956bfd19	support list foreach (#2522 ) * support list foreach * fix testcase for each * fix mutate issue * Fix mutate patch issue * fix yaml * fix e2e test foreach validate list * code indentation * fix comments * delete unwanted files Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-14 00:21:40 -07:00
ShutingZhao	5c3f219197	update release/install.yaml	2021-10-07 18:39:45 -07:00
ShutingZhao	eddd258a40	release v1.5.0-rc1 Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-07 16:04:08 -07:00
shuting	9dc2c2b4bf	Bugfixes - handle verifyImage rules for webhooks configurations (#2501 ) * dynamic webhooks for verifyImages rule Signed-off-by: ShutingZhao <shutting06@gmail.com> * add namespace env to the initContainer Signed-off-by: ShutingZhao <shutting06@gmail.com> * add debug log Signed-off-by: ShutingZhao <shutting06@gmail.com> * update operator schema validation tag Signed-off-by: ShutingZhao <shutting06@gmail.com> * set policy to ready if auto-update-webhook disabled Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-07 13:50:30 -07:00
Kumar Mallikarjuna	f67f847901	Namespace env variable for initContainer (#2499 ) Signed-off-by: Kumar Mallikarjuna <kumarmallikarjuna1@gmail.com>	2021-10-07 10:58:31 -07:00
Vyankatesh Kudtarkar	176f139f26	Fix autogen issue for Foreach mutate policy	2021-10-07 16:12:34 +05:30
Jim Bugwadia	0bb35aa302	merge main Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-10-06 10:51:43 -07:00
Anushka Mittal	3914c513a8	Changing flag names for consistency (#2467 ) * changing flag names for consistency Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * changes for backward compatibility Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * updated the CHANGELOG.md Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>	2021-10-06 10:32:48 -07:00
Jim Bugwadia	7c57ac24e6	update CRDs Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-10-06 00:58:45 -07:00
shuting	b10947b975	Dynamic webhooks (#2425 ) * support k8s 1.22, update admissionregistration.k8s.io/v1beta1 to admissionregistration.k8s.io/v1 Signed-off-by: ShutingZhao <shutting06@gmail.com> * - add failurePolicy to policy spec; - fix typo Signed-off-by: ShutingZhao <shutting06@gmail.com> * - add schema validation for failurePolicy; - add a printer column Signed-off-by: ShutingZhao <shutting06@gmail.com> * set default failure policy to fail if not defined Signed-off-by: ShutingZhao <shutting06@gmail.com> * resolve conflicts Signed-off-by: ShutingZhao <shutting06@gmail.com> * fix missing type for printerColumn Signed-off-by: ShutingZhao <shutting06@gmail.com> * refactor policy controller Signed-off-by: ShutingZhao <shutting06@gmail.com> * add webhook config manager Signed-off-by: ShutingZhao <shutting06@gmail.com> * - build webhook objects per policy update; - add fail webhook to default webhook configurations Signed-off-by: ShutingZhao <shutting06@gmail.com> * fix panic on policy update Signed-off-by: ShutingZhao <shutting06@gmail.com> * build default webhook: match empty if autoUpdateWebhooks is enabled, otherwise match all Signed-off-by: ShutingZhao <shutting06@gmail.com> * - set default webhook configs rule to empty; - handle policy deletion Signed-off-by: ShutingZhao <shutting06@gmail.com> * reset webhook config if policies with a specific failurePolicy are cleaned up Signed-off-by: ShutingZhao <shutting06@gmail.com> * handle wildcard pocliy Signed-off-by: ShutingZhao <shutting06@gmail.com> * update default webhook timeout to 10s Signed-off-by: ShutingZhao <shutting06@gmail.com> * cleanups Signed-off-by: ShutingZhao <shutting06@gmail.com> * added webhook informer to re-create it immediately if missing Signed-off-by: ShutingZhao <shutting06@gmail.com> * update tag webhookTimeoutSeconds description Signed-off-by: ShutingZhao <shutting06@gmail.com> * fix e2e tests Signed-off-by: ShutingZhao <shutting06@gmail.com> * fix linter issue Signed-off-by: ShutingZhao <shutting06@gmail.com> * correct metric endpoint Signed-off-by: ShutingZhao <shutting06@gmail.com> * add pol.generate.kind to webhooks Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-10-05 00:15:09 -07:00
Kumar Mallikarjuna	aba2e58f09	Added PodDisruptionBudget in kustomize & helm (Rebased) (#2463 ) * added pdb in helm & kustomize Signed-off-by: Christopher Haar <chhaar30@googlemail.com> * added pdb in helm & kustomize Signed-off-by: Christopher Haar <chhaar30@googlemail.com> * changed for comments Signed-off-by: Christopher Haar <chhaar30@googlemail.com> * Updating minAvailable Signed-off-by: Kumar Mallikarjuna <kumarmallikarjuna1@gmail.com> * Removed redundant lines Signed-off-by: Kumar Mallikarjuna <kumarmallikarjuna1@gmail.com> * Updated README Signed-off-by: Kumar Mallikarjuna <kumarmallikarjuna1@gmail.com> * Updated README Signed-off-by: Kumar Mallikarjuna <kumarmallikarjuna1@gmail.com> Co-authored-by: Christopher Haar <christopher@DKBs-MBP.localdomain> Co-authored-by: Christopher Haar <chhaar30@googlemail.com>	2021-10-04 22:39:24 -07:00
Kumar Mallikarjuna	b7c8368569	Adding deprecation warning for any and all (Rebased) (#2466 ) * added deprecation warning for any and all Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * Updated schemas Signed-off-by: Kumar Mallikarjuna <kumarmallikarjuna1@gmail.com> Co-authored-by: RinkiyaKeDad <arshsharma461@gmail.com>	2021-10-04 11:57:39 -07:00
Jim Bugwadia	705e029ff0	Merge pull request #2443 from JimBugwadia/feature/foreach_validate Feature/foreach validate	2021-10-04 00:05:36 -07:00
Jim Bugwadia	8b7d404ea2	generate CRDs and validate handling of skip/error Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-10-02 18:29:25 -07:00
Pooja Singh	c32002837d	supporting request object for generate policies (#2455 ) * supporting request object for generate policies Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * updated naming for operation Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * run make kustomize-crd Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-10-01 11:39:29 -07:00
shuting	af944b9cd5	Add new fields `webhookTimeoutSeconds` and `failurePolicy` to the policy Spec (#2456 ) * add tag WebhookTimeoutSeconds to policy spec Signed-off-by: ShutingZhao <shutting06@gmail.com> * add spec.failurePolicy Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-09-29 20:53:34 -07:00
Anushka Mittal	dc6694029c	Update anti-affinity to the soft limit (#2441 )	2021-09-28 14:00:49 -07:00
ShutingZhao	ee10ab66b0	update policy.status subresource Signed-off-by: ShutingZhao <shutting06@gmail.com>	2021-09-23 16:13:27 -07:00
Sachin	7bb8d956d8	remove not consistent kyverno ConfigMap name (#2418 ) Signed-off-by: slayer321 <sachin.maurya7666@gmail.com>	2021-09-21 20:48:48 +05:30
Arsh Sharma	42d4948537	adding pod anti-affinity to Kyverno (#1985 ) * added for deployment.yaml Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * added for helm Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * to be tested Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * removed not needed ends Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * made changes to pass the test Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * removed hard from values.yaml Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * added condition to disable pod-affinity Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * changed with to if condition Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * small fix for trailing spaces Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> * small fix Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com> Co-authored-by: NoSkillGirl <singhpooja240393@gmail.com>	2021-09-20 15:52:46 +05:30
Jim Bugwadia	23af42dc92	allow alternate image repositories (#2393 ) * allow alternate image repositories Signed-off-by: Jim Bugwadia <jim@nirmata.com> * generate CRD YAMLs Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2021-09-16 16:11:38 -07:00
Shuting Zhao	ec050241fc	release v1.4.3 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-09-16 11:56:52 -07:00
Shuting Zhao	0660db94bd	release v1.4.3-rc2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-09-14 20:35:58 -07:00
Shuting Zhao	b3e529f817	release v1.4.3-rc1	2021-09-13 14:44:24 -07:00
Yashvardhan Kukreja	5fcd9b83d9	added: support for metrics configuration, periodic metrics cleanup and selective namespace whitelisting and blacklisting for metrics (#2288 ) Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>	2021-09-10 14:39:12 -07:00
Shuting Zhao	fd7e4735d7	add v1alpha1 CRDs schema back	2021-09-09 17:13:16 -07:00
Vyankatesh Kudtarkar	12530619ce	allowing users to skip policy validation when mutating resources (#2365 ) * allowing users to skip policy validation when mutating resources * fix unit test issue * fix comment	2021-09-07 22:12:44 -07:00
James Callahan	95786f5033	Cleanup kustomizations (#2274 ) - Remove dead newName specification - Un-hardcode namespace from resources - Create 'bundle' kustomization that keeps namespace hardcoding This should be used (as a base) to generate static manifests - Turn 'release' directory into kustomization that is only place with version numbers Signed-off-by: James Callahan <jamescallahan@bitgo.com>	2021-09-01 18:53:28 -07:00
Frank Jogeleit	c522343c03	Update PolicyReport CRDs to wgpolicyk8s.io/v1alpha2 (#1825 )	2021-08-21 10:35:17 -07:00
Vineeth Reddy	c7dbbe4924	updated kyverno deployment strategy (#2006 ) * updated kyverno deployment strategy Signed-off-by: vineethvanga18 <reddy.8@iitj.ac.in> * update helm chart Signed-off-by: vineethvanga18 <reddy.8@iitj.ac.in> * minor changes Signed-off-by: vineethvanga18 <reddy.8@iitj.ac.in> * make updatestrategy configurable Signed-off-by: vineethvanga18 <reddy.8@iitj.ac.in>	2021-08-18 15:49:35 +05:30
Shuting Zhao	fb6e0f18ea	release v1.4.2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-08-11 12:48:37 -07:00
Shuting Zhao	7d9c06da81	tag 1.4.2-rc4 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-08-10 17:41:22 -07:00
Shuting Zhao	a53613ffe2	release v1.4.2-rc3 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-07-30 14:04:36 -07:00
Shuting Zhao	5dd8bc3b30	release v1.4.2-rc2 Signed-off-by: Shuting Zhao <shutting06@gmail.com>	2021-07-28 13:27:52 -07:00
Arsh Sharma	97eaa7e854	adding any/all under match and exclude blocks (#2130 ) * intial commit Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * update types Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * updated all type Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * extract to single struct Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * updated match resource description function Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * minor test working Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * match resources test is working Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * exclude resources test is working Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * changed double negetive in logic Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * yamls updated and added validation and cache loops Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * match exclude working but need to fix matchExcludeConflict function Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * restored doMatchAndExcludeConflict function Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * rewrote the matchExcludeConflictFunction Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * finalizing completed till utils_test.go Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * ready for review complete Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * update yamls Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * one more merge conflict solved Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * regenerates YAMLs Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * possible fix for failing tests Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * removed duplicate any/all logic and added a test, (rest refacotring is in progress) Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * cache test is working Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * improved cache test and it is working Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * added check for mutate and generate policies too Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * cleaned doesResourceMatchConditionBlock logic but validation still has code from attempt to combine the all block Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * reverted validate.go to older logic Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * removed commented code Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com> * removed extra comments Signed-off-by: RinkiyaKeDad <arshsharma461@gmail.com>	2021-07-28 12:59:53 -07:00

1 2 3 4 5 ...

388 commits