mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-09 17:37:12 +00:00
Code Activity
3188 commits 16 branches 550 tags 292 MiB
Commit graph

117 commits

Author SHA1 Message Date
Vyankatesh Kudtarkar
057ec4e690
Fix : 1657 (Update variable paths when auto generate the controller rules) and 1615 ( kyverno apply pipe through to kubectl) (#1735) 
* Fix 1657and 1615

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* fix build issue

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* remove logs

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-03-26 11:03:45 -07:00
Pooja Singh
861cec36c0
fixed issue (#1707) 
Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-16 12:57:31 -07:00
Yashvardhan Kukreja
bc1e28dbd6
fix: overwrite the output file when repetedly executing kyverno apply command (#1701) 
Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>
 2021-03-11 16:30:37 -08:00
Pooja Singh
af4b85d3a8
Kyverno CLI - Namespace Selector (#1669) 
* added struct for namespace selector

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* added logic for namespace selector

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* added test case

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* improved code

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
 2021-03-09 12:45:45 -08:00
Vyankatesh Kudtarkar
164885d087
Update Kyverno test command (#1608) 
* fix link (#1566)

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* update icon in chart.yaml

Signed-off-by: Shuting Zhao <shutting06@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* Adding default policies for restricted mode and adding notes to helm install (#1556)

* Adding default policies for restricted mode, taking validationFailureAction from values.yaml and adding notes on helm install

Signed-off-by: Raj Das <mail.rajdas@gmail.com>

* Adding emoji

Signed-off-by: Raj Das <mail.rajdas@gmail.com>

* Update NOTES.txt

* minor fix

Signed-off-by: Raj Das <mail.rajdas@gmail.com>

* adding to readme

Signed-off-by: Raj Das <mail.rajdas@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* update links and formatting in PR template (#1573)

* update links and formatting in PR template

Signed-off-by: Chip Zoller <chipzoller@gmail.com>

* update policy submission request template

Signed-off-by: Chip Zoller <chipzoller@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* fix: restricting empty value to pass through the validation checks (#1574)

Signed-off-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* Actually fix contributor link in PR template (#1575)

* update links and formatting in PR template

Signed-off-by: Chip Zoller <chipzoller@gmail.com>

* update policy submission request template

Signed-off-by: Chip Zoller <chipzoller@gmail.com>

* actually fix contrib guidelines

Signed-off-by: Chip Zoller <chipzoller@gmail.com>

* actually fix contrib guidelines

Signed-off-by: Chip Zoller <chipzoller@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* code improvement (#1567)

* code improvement

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* added if conditions

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>

* fixed unit test cases

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* feat(operators): support subset checking for in and notin (#1555)

* feat(operators): support subset checking for in and notin

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>

* feat(operators): fixed NotIn function

Signed-off-by: Arsh Sharma <arshsharma461@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* panic fix (#1601)

Signed-off-by: NoSkillGirl <singhpooja240393@gmail.com>
Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* update kyverno cli test cmd

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* code indentation

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

* change  help text

Signed-off-by: vyankatesh <vyankatesh@neualto.com>

Co-authored-by: Dekel <dekelb@users.noreply.github.com>
Co-authored-by: Shuting Zhao <shutting06@gmail.com>
Co-authored-by: Raj Babu Das <mail.rajdas@gmail.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
Co-authored-by: Yashvardhan Kukreja <yash.kukreja.98@gmail.com>
Co-authored-by: Pooja Singh <36136335+NoSkillGirl@users.noreply.github.com>
Co-authored-by: Arsh Sharma <56963264+RinkiyaKeDad@users.noreply.github.com>
Co-authored-by: vyankatesh <vyankatesh@neualto.com>
 2021-02-17 11:30:41 -08:00
shuting
2f2d6c2e38
Upgrade client libraries to 0.20.2 (#1547) 
* upgrade clients to 0.20.2

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* remove debug log

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* fix unit tests

Signed-off-by: Shuting Zhao <shutting06@gmail.com>

* fix e2e test

Signed-off-by: Shuting Zhao <shutting06@gmail.com>
 2021-02-07 20:26:56 -08:00
vyankatesh_neualto
ce9ab9ef69 adding kyverno test command with git support 
Signed-off-by: vyankatesh_neualto <vyankatesh@neualto.com>
 2021-02-02 18:45:38 +05:30
shuting
52d091c5a3
Improve / clean up code (#1444) 
* Remove lock embedded in CRD controller, use concurrent map to store shcemas

* delete rcr info from data store

* skip policy validation on status update

* - remove status check in policy mutation; - fix test

* Remove fqdncn flag

* add flag profiling port

* skip policy mutation & validation on status update

* sync policy status every minute

* update log messages
 2021-01-06 16:32:02 -08:00
Jim Bugwadia
e2f10c6f83 update validation logic 2020-12-23 15:10:07 -08:00
NoSkillGirl
77a7ce3708 refactoring apply 2020-12-20 01:21:31 +05:30
NoSkillGirl
f7056fc14a error message updated 2020-12-11 13:18:27 +05:30
NoSkillGirl
1097a0d5f5 added pipe for passing policy in apply 2020-12-10 16:07:56 +05:30
Jim Bugwadia
6afd2e6f3a
ignore non-policy files in CLI and improve validation messages (#1362) 
* improve validation message

* improve error behaviors

* fix tests

* fix tests
 2020-12-07 11:26:04 -08:00
Jim Bugwadia
a64915128b Revert "ignore non-policy files while loading" 
This reverts commit c766512485.
 2020-12-06 11:12:54 -08:00
Jim Bugwadia
c766512485 ignore non-policy files while loading 2020-12-06 10:57:20 -08:00
Jim Bugwadia
2344b2c305
1319 fix throttling (#1341) 
* fix policy status and generate controller issues

* shorten ACTION column name

* update logs

Co-authored-by: Shuting Zhao <shutting06@gmail.com>
 2020-11-30 11:22:20 -08:00
NoSkillGirl
48118de5bb small fix 2020-11-26 10:54:02 +05:30
NoSkillGirl
3a29f3af48 added log level 2020-11-26 10:34:22 +05:30
NoSkillGirl
58bc3c7ec3 small fix 2020-11-20 12:40:45 +05:30
NoSkillGirl
98fd08e6ad added rule for skipped policy in policy report 2020-11-20 12:27:02 +05:30
NoSkillGirl
59f9709189 added log 2020-11-19 15:56:14 +05:30
NoSkillGirl
3571260a9e added skipped policy in policy report 2020-11-19 15:03:15 +05:30
NoSkillGirl
5ae1a7aed2 fixed skipping resources 2020-11-19 11:52:31 +05:30
NoSkillGirl
9a9cd55b7b SanitizedError fix 2020-11-18 15:02:14 +05:30
NoSkillGirl
5794889752 Merge branch 'main' into policyreport_cli 2020-11-18 14:43:30 +05:30
NoSkillGirl
efe4f6abe1 fixed no matching resources message 2020-11-18 11:34:56 +05:30
NoSkillGirl
85d47e16e7 fixed skipping resources 2020-11-18 11:08:24 +05:30
Shuting Zhao
b9fb926ddb fixes for golint ./... 2020-11-17 13:07:30 -08:00
Shuting Zhao
e985ee4031 correct misspelled words 2020-11-17 12:01:01 -08:00
Shuting Zhao
2ff9d03b3f - set tag optional in generaterequest; - fix generate controller error log 2020-11-13 17:44:34 -08:00
NoSkillGirl
d468368ec2 log level added 2020-11-13 14:51:28 +05:30
NoSkillGirl
7eac551b5e passing only validate response to policy report 2020-11-13 13:40:28 +05:30
NoSkillGirl
aaa2b96b35 added pass resources in policy report 2020-11-13 00:48:40 +05:30
NoSkillGirl
a7a5c07f84 fixed - apply policy on deployment 2020-11-11 17:10:38 +05:30
NoSkillGirl
489f070a41 seperated logic for resources from cluster 2020-11-11 15:27:55 +05:30
NoSkillGirl
ca31568e2d fixed comments 2020-11-11 11:57:23 +05:30
NoSkillGirl
7fbe422ef6 corrected merge code 2020-11-10 16:31:39 +05:30
NoSkillGirl
acc34fbf0a Merge commit 2020-11-10 10:49:29 +05:30
NoSkillGirl
ba5d3a0b7a CLI handling - applying policy with annotations on pod 2020-11-10 10:05:07 +05:30
shuting
5e07ecc5f3
Add Policy Report (#1229) 
* add report in cli

* policy report crd added

* policy report added

* configmap added

* added jobs

* added jobs

* bug fixed

* added logic for cli

* common function added

* sub command added for policy report

* subcommand added for report

* common package changed

* configmap added

* added logic for kyverno cli

* added logic for jobs

* added logic for jobs

* added logic for jobs

* added logic for cli

* buf fix

* cli changes

* count bug fix

* docs added for command

* go fmt

* refactor codebase

* remove policy controller for policyreport

* policy report removed

* bug fixes

* bug fixes

* added job trigger if needed

* job deletation logic added

* build failed fix

* fixed e2e test

* remove hard coded variables

* packages adde

* improvment added in jobs sheduler

* policy report yaml added

* cronjob added

* small fixes

* remove background sync

* documentation added for report command

* remove extra log

* small improvement

* tested policy report

* revert hardcoded changes

* changes for demo

* demo changes

* resource aggrigation added

* More changes

* More changes

* - resolve PR comments; - refactor jobs controller

* set rbac for jobs

* add clean up in job controller

* add short names

* remove application scope for policyreport

* move job controller to policyreport

* add report logic in command apply

* - update policy report types;  - upgrade k8s library; - update code gen

* temporarily comment out code to pass CI build

* generate / update policyreport to cluster

* add unit test for CLI report

* add test for apply - generate policy report

* fix unit test

* - remove job controller; - remove in-memory configmap; - clean up kustomize manifest

* remove dependency

* add reportRequest / clusterReportRequest

* clean up policy report

* generate report request

* update crd clusterReportRequest

* - update json tag of report summary; - update definition manifests; -  fix dclient creation

* aggregate reportRequest into policy report

* fix unit tests

* - update report summary to optional; - generate clusterPolicyReport; - remove reportRequests after merged to report

* remove

* generate reportRequest in kyverno namespace

* update resource filter in helm chart

* - rename reportRequest to reportChangeRequest; -rename clusterReportRequest to clusterReportChangeRequest

* generate policy report in background scan

* skip generating report change request if there's entry results

* fix results entry removal when policy / rule gets deleted

* rename apiversion from policy.kubernetes.io to policy.k8s.io

* update summary.* to lower case

* move reportChangeRequest to kyverno.io/v1alpha1

* remove policy report flag

* fix report update

* clean up policy violation CRD

* remove violation CRD from manifest

* clean up policy violation code - remove pvGenerator

* change severity fields to lower case

* update import library

* set report category

Co-authored-by: Yuvraj <yuvraj.yad001@gmail.com>
Co-authored-by: Yuvraj <10830562+evalsocket@users.noreply.github.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2020-11-09 11:26:12 -08:00
NoSkillGirl
0a7be578ea removing scheme dependencies 2020-11-05 23:14:58 +05:30
NoSkillGirl
cd5609fd58 added validation - resource not found in cluster 2020-11-04 14:03:39 +05:30
NoSkillGirl
2b979fec4d removed logic - policy in cluster 2020-11-04 14:03:39 +05:30
NoSkillGirl
1ccde5412e removing individual policyreports 2020-11-04 14:03:39 +05:30
NoSkillGirl
e4e703f2b5 combining cli reports 2020-11-04 14:03:39 +05:30
NoSkillGirl
d8c90fe3dd validation - policy(in cluster) resource(outside) 2020-11-04 14:03:38 +05:30
NoSkillGirl
1279026a07 integrated policy report 2020-11-04 14:03:38 +05:30
NoSkillGirl
c56840ef3b fixed skip policy 2020-11-04 14:03:38 +05:30
NoSkillGirl
2799cf7d52 fixed no_kind error 2020-11-04 14:03:38 +05:30
NoSkillGirl
6e7ae8ec13 namespace changes 2020-11-04 14:03:38 +05:30