D N Siva Sathyaseelan
|
cc966bf7af
|
feat:support default value into apiCall context variables (#10594)
* initial changes
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
* test changes
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
* logical changes
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
* added Check for default in transformAndStore
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
* codegen applied
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
* considered an edge case
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
* fix: remove error when jsondata and default is nil
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* codegen done
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
---------
Signed-off-by: sivasathyaseeelan <dnsiva.sathyaseelan.chy21@iitbhu.ac.in>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-09-05 13:57:44 +08:00 |
|
Vishal Choudhary
|
95f54a1cb6
|
feat: enable custom data in policy reports using properties (#10933)
* feat: enable custom data in policy reports using properties
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: dont throw error in variable substitution for properties
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-09-03 17:36:07 +00:00 |
|
Rizul Gupta
|
02ffe4131c
|
add image name in all logs (#10837)
* add image name in all logs
Signed-off-by: Rizul Gupta <mail2rizul@gmail.com>
* make lint tests pass
Signed-off-by: Rizul Gupta <mail2rizul@gmail.com>
---------
Signed-off-by: Rizul Gupta <mail2rizul@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
|
2024-08-30 09:22:44 +00:00 |
|
Anushka Mittal
|
b76bb77e46
|
Deferred loading for image info in policy context (#10787)
* fix: add deferred loading for image info in policy context
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
* chore: move logic to context.go
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
* chore: add unit test
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
* fix: cleanup code
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
* fix: unit test
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
* fix: unit test
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
---------
Signed-off-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
|
2024-08-30 05:35:26 +00:00 |
|
Mariam Fahmy
|
bde90340a6
|
chore: remove v1alpha1 of VAPs and use v1beta1 (#10955)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-08-29 15:31:25 +00:00 |
|
Charles-Edouard Brétéché
|
f87fa52cb7
|
feat: bump to k8s 1.31 (#10938)
* feat: bump to k8s 1.31
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* tidy
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* mod
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix otel
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix otel schema
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* update linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* feat: fix image verification tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* linter issues
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* cel change
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-08-28 17:09:58 +00:00 |
|
Mariam Fahmy
|
2140a0239b
|
chore: rename validationFailureAction to failureAction under the rule (#10893)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
|
2024-08-27 20:07:57 +00:00 |
|
Vishal Choudhary
|
0c2a88638b
|
fix: properly use useCache field in image verification policies (#10709)
* fix: properly use useCache field in image verification policies
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: add test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: revert client changes
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-08-19 14:26:07 +00:00 |
|
shuting
|
bd71af3291
|
feat: support foreach for generate.data (#10875)
* chore: refactor
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: add foreach for generate.daya to api
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: refactor generator
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update rule validation
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: update rule validation -2
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: support foreach.data
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: policy validation
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: context variables
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add a chainsaw test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: sync on policy deletion
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: enable new chainsaw tests in CI
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update code-gen
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: validate targets scope for ns-policies
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add missing files
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: remove unreasonable test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update docs
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update install.yaml
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-08-19 06:55:19 +00:00 |
|
Jim Bugwadia
|
c96f224e8e
|
reduce recursions for nested var substutution (#10877)
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
|
2024-08-18 17:40:27 +08:00 |
|
Vishal Choudhary
|
06ffd1c961
|
feat: add support for sigstore bundle verification (#10567)
* feat: add support for sigstore bundle verification
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: missed change
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: ci
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: another linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: add size check in layer
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-08-16 11:36:48 +00:00 |
|
Vishal Choudhary
|
f69ffe12ec
|
feat: add full regexp support to cosign (#10815)
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-08-16 07:03:59 +00:00 |
|
Khaled Emara
|
65a43d2059
|
feat(mutate): minimize unmarshals (#10702)
* feat(mutate): minimize unmarshals
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(mutate): test type assertion
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(codegen): remove unused import
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
|
2024-08-09 11:12:20 +00:00 |
|
Mariam Fahmy
|
4d1f040e49
|
fix: add the resource name to the SubjectAccessReview (#10221)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-08-07 12:46:44 +00:00 |
|
Mariam Fahmy
|
c796bb765c
|
fix: return policies with either audit or enforce rules from the cache (#10667)
* fix: return policies with either audit or enforce rules from the cache
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: introduce validationFailureAction under verifyImage rules
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add chainsaw tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-08-06 18:24:28 +00:00 |
|
Khaled Emara
|
c0cf6c5bf1
|
feat(json): unmarshal at decode time (#10700)
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-08-05 15:46:50 +03:00 |
|
Mariam Fahmy
|
9d28116eb4
|
fix: allow exceptions to match Pod/ephemeralcontainers by default (#10778)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-08-02 12:47:09 +00:00 |
|
Charles-Edouard Brétéché
|
fc694bc24c
|
feat: add kyverno json support to validation rule (#10763)
* feat: add kyverno json support to validation rule
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* v2beta1
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* validation
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* engine handler
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* bindings
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* context functions
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* better bindings
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-08-02 08:24:30 +00:00 |
|
Khaled Emara
|
d173752041
|
feat(json): unmarshal once per policy (#10701)
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-07-30 10:52:41 +00:00 |
|
Khaled Emara
|
c2646f7a9d
|
feat(json): reduce reliance on DocumentToUntyped() (#10724)
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-07-29 11:57:20 +00:00 |
|
Ammar Yasser
|
f618717f75
|
fix: Check for the client being nil before applying a mutation (#10726)
Signed-off-by: aerosouund <aerosound161@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-07-26 10:49:51 +00:00 |
|
Mariam Fahmy
|
716611b7ea
|
fix: return all the exceptions that match the incoming resource (#10722)
* fix: return all the exceptions that match the incoming resource
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: modify log messages
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-07-25 17:36:19 +00:00 |
|
Korada Vishal
|
ca17cb2c6f
|
Improved test covergae for forceMutate (#10103)
Signed-off-by: Vishal K <korada.vishal.phe22@itbhu.ac.in>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-07-24 10:43:07 +00:00 |
|
Khaled Emara
|
aafc4fe97e
|
fix(json-ctx): overwrite element each iteration (#10615)
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
|
2024-07-05 15:06:48 +00:00 |
|
Mariam Fahmy
|
ad6ee93e3b
|
fix: CEL policies aren't applied to deleted resources (#10611)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-07-04 22:16:36 +05:30 |
|
Mariam Fahmy
|
68df5af40e
|
fix rule type for mutate and generate rules (#10554)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-06-28 16:40:56 +00:00 |
|
Mariam Fahmy
|
ff88c4c39a
|
feat: migrate validationFailureAction and validationFailureActionOverrides (#10528)
* feat: migrate validationFailureAction and validationFailureActionOverrides under validate rule
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* feat: add unit tests
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-06-26 09:13:02 +02:00 |
|
Mariam Fahmy
|
94d9bbe73f
|
chore: use v2 clients for policy exceptions (#10530)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-06-24 16:36:55 +00:00 |
|
Charles-Edouard Brétéché
|
b36a2ecdcc
|
feat: bump update request api version (#10508)
* feat: bump update request api version
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* use v2
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix linter
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-06-20 09:44:43 +00:00 |
|
Mariam Fahmy
|
88d1063647
|
chore: use mutateExistingOnPolicyUpdate under mutate rule in chainsaw tests (#10507)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-06-19 18:16:46 +02:00 |
|
Vishal Choudhary
|
334594c128
|
feat: add support for cosign experimental OCI 1.1 signatures (#10228)
* feat: add support for cosign experimental OCI 1.1 signatures
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: remove unrelated changes
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: requested changes
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-06-18 23:03:53 +00:00 |
|
shuting
|
5260b4f7bc
|
chore: bump k8s libs to 0.30 (#10285)
* chore: bump k8s libs to 0.30
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: update crds
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: bump kubectl-validate
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix panic
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: fix linter
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: bump k8s
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix sum
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* codegen
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix: indent
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: bump deps
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-06-04 15:09:44 +08:00 |
|
Mariam Fahmy
|
c46cb06d95
|
fix: remove unused parameters (#10330)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-05-29 23:29:24 +00:00 |
|
Vishal Choudhary
|
47adea6f1c
|
feat: add support for background scanning of existing resource in image verification (#10287)
* feat: add support for background scanning of existing resource in image verification
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: change rule response type to image verify
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* chore: fix nilptr reference
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-05-24 09:41:04 +00:00 |
|
Khaled Emara
|
ed4eb9666a
|
fix(anchor): skip anchors don't have priority (#10206)
* fix(anchor): give priority to skip anchors
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(anchor): conditional anchor with a failing sibling
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(anchor): conditional anchor mixed with other results
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(anchor): successful anchor with a skip anchor
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-05-22 09:04:14 +00:00 |
|
Mariam Fahmy
|
57b2c5fe4f
|
fix: add a copy method to the policy context (#10236)
* fix: add a copy method to the policy context
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: add a CLI test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* chore: remove mutate changes
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-05-21 15:29:09 +00:00 |
|
shuting
|
fb9c66f455
|
feat(perf): add new linter prealloc to enforce slice declarations best practice (#10250)
* feat(perf): add new linter prealloc to enforce slice declarations best practice
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(linter): prealloac slices
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
|
2024-05-20 14:46:35 +05:30 |
|
Vishal Choudhary
|
3af0e461f0
|
fix: deepcopy patched resource in foreach mutate (#10252)
* fix: deepcopy patched resource to avoid indirect reversal of its elements
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: copy elements while reversing
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: copy resources inside foreach
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* add test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
* add test
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
|
2024-05-20 14:45:21 +08:00 |
|
Khaled Emara
|
21602a1e1f
|
fix(polex): multiple polexes with conditions (#9994)
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-05-06 10:28:39 +00:00 |
|
Vishal Choudhary
|
c403a498a3
|
fix: add error check in jmespath type conversion in context variables (#10152)
* fix: add error check in jmespath type conversion in context variables
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix(lint): new line in tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: properly update path variable
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: remove log statemet
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
|
2024-05-01 04:30:34 +00:00 |
|
Khaled Emara
|
c9d821ee72
|
fix: shared policy context needs to be copied (#10139)
* fix: shared policy context needs to be copied
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(e2e): concurrent PSS execution
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* test(e2e): wait for pss policies to be ready
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-04-30 14:05:33 +00:00 |
|
Mariam Fahmy
|
798950f72c
|
fix: return skip when celPreconditions/matchConditions aren't met (#9940)
* fix: return skip when cel preconditions aren't met
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix test
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: return skip when matchConditions in VAPs aren't met
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-04-22 13:49:25 +00:00 |
|
Shubham Singh
|
dbc12ac2be
|
[Bug] Enabling many-to-one comparisons for AnyNotIn operator (#9462)
* added cases for int, float
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
* added bool as well
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
* added tests
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
* some more tests
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
* go fmt
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
* fixed the failing test cases
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
---------
Signed-off-by: Shubham Singh <shubhammahar1306@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-04-22 12:12:08 +00:00 |
|
Mariam Fahmy
|
ea64529e63
|
fix: evaluate namespaceObject for Kyverno policies in the CLI (#9977)
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
|
2024-04-19 10:55:41 +00:00 |
|
shuting
|
3e7a7ac244
|
fix: policy status reconciliation (#10032)
* fix: get latest policy object before updating status
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: remove debug code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
|
2024-04-12 07:08:15 +00:00 |
|
shuting
|
6416d8600e
|
chore: bump to go 1.22.2 (#10001)
Signed-off-by: ShutingZhao <shuting@nirmata.com>
|
2024-04-08 09:30:05 +00:00 |
|
Khaled Emara
|
c9055ac2ff
|
fix(autogen): only generate rule for request kind (#9984)
* fix(autogen): only generate rule for request kind
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* feat(autogen): use jsoniter instead of std for json
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(atogen): use sets instead of manipulating strings
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(autogen): formatting linter
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(autogen): backwards compatability
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* revert(autogen): old behavior
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix: builds error
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
|
2024-04-04 08:09:30 +00:00 |
|
Charles-Edouard Brétéché
|
c241cfce44
|
fix: polex matching code (#9955)
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
|
2024-04-03 18:56:48 +00:00 |
|
Vishal Choudhary
|
83f2846572
|
feat: add TSA cert chain support in cosign (#9961)
* feat: add TSA cert chain support in cosign
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add chainsaw test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add unit test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: unit tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
|
2024-03-30 20:50:07 +00:00 |
|
Vishal Choudhary
|
93eac3f7a4
|
fix: deferred loader panic when mutate and generate policies are applied (#9935)
* fix: deferred loader panic when mutate and generate policies are applied
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: update policies
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* remove clusterrolebinding
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: copy only json context
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: polctx
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
|
2024-03-29 14:37:15 +01:00 |
|