kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-10 09:56:55 +00:00

Author	SHA1	Message	Date
gsweene2	af51ceb4ff	Add JMESPath Function `items` (#3777 ) Co-authored-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-05-04 10:33:24 +00:00
Vyankatesh Kudtarkar	fca068d0f6	Fix Cli test for image verification (#3760 ) * fix Cli test for image verification	2022-05-04 04:11:59 +00:00
Sambhav Kothari	0a5f004047	Allow non-object type elements for foreach rules (#3763 ) Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-05-02 16:39:37 +00:00
Jim Bugwadia	3cb620499e	Remove YAML multiline support in CM values (#3721 ) * remove YAML multiline support in CM values Signed-off-by: Jim Bugwadia <jim@nirmata.com> * remove unused code Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix test Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-05-02 08:57:35 +01:00
Sambhav Kothari	655e2a74d7	Add tests for required checks for image verify (#3755 )	2022-05-01 18:00:44 -07:00
Sambhav Kothari	8342d86a9e	Retry policy creation to avoid flaky CRD readiness (#3752 ) Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-05-01 22:42:14 +00:00
Sambhav Kothari	dd0f6baa7d	Enable tests in makefile (#3699 )	2022-05-01 14:20:22 -07:00
shuting	a4815f77c4	Convert GenerateRequest to UpdateRequest for backward compatibility (#3730 ) - Remove GenerateRequest Informer - Rename GenerateRequest to UpdateRequest in logs and vars - Fix initContainer leader election - Convert GenerateRequest to UpdateRequest in initContainer - Remove unused methods - Add printer column ruleType to UR Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-29 16:35:49 +05:30
shuting	e248308cb3	Create UR for both mutate and generate policies (#3717 ) * remove mutateExisting field Signed-off-by: ShutingZhao <shuting@nirmata.com> * update policy controller to create UR for generate Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove debug log Signed-off-by: ShutingZhao <shuting@nirmata.com> * - Update api docs - Ignore e2e tests cleanup failure Signed-off-by: ShutingZhao <shuting@nirmata.com> * Add back index to helm template Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-29 11:01:02 +05:30
shuting	b740e84f06	add e2e tests for mutate existing policies (#3703 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>	2022-04-27 21:44:52 +02:00
Jim Bugwadia	ab5171cee5	Verify digest (#3679 ) * add verifyDigest to check all tags are converted to digests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * add required to check for image verification annotation Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * generate CRD Signed-off-by: Jim Bugwadia <jim@nirmata.com> * adding imageverify true/false patch Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * patch addition logic Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * image verify CLI tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fixes and unit tests Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix digest mutate Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make codegen Signed-off-by: Jim Bugwadia <jim@nirmata.com> * fix policy cache Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: anushkamittal20 <anumittal4641@gmail.com>	2022-04-27 15:09:52 +00:00
Sambhav Kothari	9d13e89697	Enable verifyImages and CLI registry tests (#3684 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-04-27 17:29:54 +08:00
shuting	d5f6167e56	Fix flaky e2e tests for generate policies (#3681 ) * fix flaky generate e2e tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * enable validate, verifyimage e2e tests Signed-off-by: ShutingZhao <shuting@nirmata.com> * set policy names different within a single test Signed-off-by: ShutingZhao <shuting@nirmata.com> * do not delete cloned resource when sync generate policy is deleted Signed-off-by: ShutingZhao <shuting@nirmata.com> * replace grLister by urLister Signed-off-by: ShutingZhao <shuting@nirmata.com> * re-queue pending URs only to fix clone policy deletion Signed-off-by: ShutingZhao <shuting@nirmata.com> * remove duplicate import Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-04-26 19:18:24 +00:00
Sambhav Kothari	25badfe4fb	Fix regression in wildcard matches in In/AnyIn operators (#3686 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-04-26 18:03:05 +00:00
Vyankatesh Kudtarkar	79be6379b2	fix test cli CI failures from main (#3682 )	2022-04-26 20:00:46 +08:00
Vyankatesh Kudtarkar	56c90fd087	Support context variables when using foreach CLI (#3637 ) * Support context variables when using foreach CLI * add testcases	2022-04-25 16:36:31 +00:00
Ioannis Bouloumpasis	a205bc3e2e	fix: webhooks are not configured correctly (#3660 ) * Fix webhook rules equality when internal is empty The current implementation of the 'webhookRulesEqual' didn't check for the corner case were both the internal representation and the API have length of one, but the internal representation has 1 rule with no selectors. In this case the 'webhookRulesEqual' should return false, as the 2 configurations are not the same. Signed-off-by: Ioannis Bouloumpasis <buluba@arrikto.com> * Fix tests Add a small time delay when checking if a Policy is ready in tests to ensure that the Policy is actually ready. Signed-off-by: Ioannis Bouloumpasis <buluba@arrikto.com>	2022-04-25 15:19:39 +00:00
Sambhav Kothari	44b5bf0b57	Allow definition of inline variables in context (#3658 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-04-25 19:06:07 +08:00
Sambhav Kothari	ec4e4ba452	Add support for custom image extractors (#3596 ) Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>	2022-04-14 09:08:30 -07:00
Tathagata Paul	10cf0f2344	add support for roles, cluster roles and subjects (#3188 ) * add support for roles, cluster roles and subjects in kyverno cli Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com> Co-authored-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-04-12 04:00:49 +00:00
Vyankatesh Kudtarkar	e268be9e88	support for deprecated API's (#3439 ) * support for deprecated API's * add testcase * update condition * fix logic	2022-03-22 18:25:35 +00:00
Aidan Delaney	4ec3b36f7f	Remove support for test.yaml (#3442 ) kyverno-test.yaml is now the only supported test file name Signed-off-by: Aidan Delaney <adelaney21@bloomberg.net>	2022-03-22 14:09:08 +05:30
Sambhav Kothari	6498425937	Add a registry flag to allow direct access to container registries in the CLI (#3396 ) * Add a registry flag to allow direct access to container registries in the CLI Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-03-16 09:56:47 +05:30
Vyankatesh Kudtarkar	68093cd44c	Cli Apply command support Dir as resources (#3391 ) * apply command support dir as resources * fix issue	2022-03-15 16:00:59 +08:00
vivek kumar sahu	c456b541af	e2e test for mutate global anchor Policy (#2574 ) * Added e2e test for mutate-global-anchor-policy Signed-off-by: vivek kumar sahu <vivekkumarsahu650@gmail.com> * Updated config.go for mutate globar anchor policy Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> * Added resources for mutate global anchor policy Signed-off-by: viveksahu26 <vivekkumarsahu650@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-03-14 09:15:06 +00:00
Vyankatesh Kudtarkar	148a892277	Fix any_all wildcard issue (#3352 )	2022-03-08 12:59:33 +00:00
Sambhav Kothari	e9e96e7b1c	Run E2E tests on all supported k8s versions (#3256 )	2022-02-23 15:52:08 +00:00
Vyankatesh Kudtarkar	e8bf16a00b	Fix label mutation while updating the secret (#3273 ) * Fix label mutation while updating the secret * Update util.go * fix converter issue * code indentation	2022-02-22 19:49:03 +08:00
Vyankatesh Kudtarkar	04e5f50cde	fix mutate wildcard issue (#3193 ) Co-authored-by: shuting <shuting@nirmata.com>	2022-02-18 10:32:10 +00:00
Vyankatesh Kudtarkar	0a5aad39cf	Fix foreach validations precondition issue (#3228 ) * fix foreach validations precondition issue * added test-cases	2022-02-18 09:11:41 +00:00
Tathagata Paul	b91ff5a7f2	Bug fix: negation of string kernel version caused Cluster Policy to fail (#3229 ) * fixed bug where negation of kernel version caused cpolr to fail Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> * small fix in function validateString Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> * Added necessary tests Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> Added one more test Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> * Add more tests and added a policy to the test folder Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> * added policy for test cli Signed-off-by: Tathagata Paul <tathagatapaul7@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-02-17 09:33:30 +05:30
Afzal Ansari	fc658da1e3	Added e2e test for JSON patch mutate policy (#2966 ) * Adds e2e test for JSON patch mutate policy Signed-off-by: afzal442 <afzal442@gmail.com> * modifies the config to use the optimal version of that policy Signed-off-by: afzal442 <afzal442@gmail.com> * Fixes the lint issuue Signed-off-by: afzal442 <afzal442@gmail.com> * modifies test to pass Signed-off-by: afzal442 <afzal442@gmail.com> * adds changes to resources Signed-off-by: afzal442 <afzal442@gmail.com> Co-authored-by: shuting <shutting06@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-02-10 05:18:26 +00:00
vivek kumar sahu	0293368504	fixing bug to handle two different types of rules (#2954 ) * fixing bug for the info variable Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-02-09 10:33:54 +00:00
Vyankatesh Kudtarkar	b3f702ba8d	test-cases for wildcard match label selector (#3165 )	2022-02-04 03:45:40 +00:00
Vyankatesh Kudtarkar	373f421b07	Fix panic for provides a set to the key of a precondition and deny condition (#3162 )	2022-02-03 14:46:58 +00:00
Sambhav Kothari	98284114f5	Relax rule context validation to follow JMESPath grammar (#3129 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-01-31 18:23:59 +00:00
Sambhav Kothari	2b1e7189b1	Fix variable substitution when curly braces are used in jmespath (#3133 ) * Fix variable substitution when inline jmespath objects are defined Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> * Add additional test cases which use brackets Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-01-31 17:11:19 +00:00
Jim Bugwadia	06e93fec46	apply patches cumulatively (#3083 ) * apply patches cumulatively Signed-off-by: Jim Bugwadia <jim@nirmata.com> * handle skipped rules Signed-off-by: Jim Bugwadia <jim@nirmata.com> * add test files Signed-off-by: Jim Bugwadia <jim@nirmata.com>	2022-01-25 09:00:18 +00:00
treydock	cd4650eb5a	Fix CLI test/apply when any/all use namespaceSelector (#3050 ) * Fix CLI test/apply when any/all use namespaceSelector Fixes #3047 Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu> * gofmt fix Signed-off-by: Trey Dockendorf <tdockendorf@osc.edu> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-01-25 08:06:17 +00:00
Jim Bugwadia	bb06901119	fix mutate preprocessing for anchors (#3052 ) * fix mutate preprocessing for anchors Signed-off-by: Jim Bugwadia <jim@nirmata.com> * make fmt Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: shuting <shutting06@gmail.com>	2022-01-23 13:54:22 +00:00
Anushka Mittal	df4d7ae26c	Broken exclude any all (#2990 ) * added check for any/all Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * minor corrections Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * corrected return check for rbac info Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> * added cli test Signed-off-by: anushkamittal20 <anumittal4641@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-01-20 08:29:16 +00:00
Liu Shaohui	25722366f0	Fix: namespace quota policy failed to be applied for two resources named ResourceQuota with different APIVersions (#2612 ) Signed-off-by: Shaohui Liu <liushaohui@xiaomi.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-01-20 12:48:52 +05:30
Vyankatesh Kudtarkar	c2de92d8c6	Support mutation of variables in validate.deny (#2947 ) * Support mutation of variables in validate.deny * remove comment * fix e2e test	2022-01-18 10:53:30 +00:00
Sambhav Kothari	f5e00ee034	Add a parse_yaml function (#2999 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: shuting <shutting06@gmail.com>	2022-01-17 13:41:08 +00:00
Sambhav Kothari	1af9e48b0d	Add image data to validate image configs (#2946 ) * Add image data to validate image configs Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> * Add tests for image context Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> * Add e2e test cases for image size policy Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-01-17 04:06:44 +00:00
Sambhav Kothari	f42092208f	Fix variable substitution for foreach preconditions (#2993 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-01-16 05:33:34 +00:00
Sambhav Kothari	0c11af2d9a	Fix autogen issue with cronjob generator and foreach pod generator (#2989 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-01-15 12:28:28 -08:00
Tathagata Paul	1f3e625b99	Renamed test.yaml to kyverno-test.yaml (#2898 ) Signed-off-by: 4molybdenum2 <tathagatapaul7@gmail.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com>	2022-01-14 08:45:59 +00:00
Sambhav Kothari	baf4fa335b	Remove spurious prints and fix line endings (#2963 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-01-11 14:15:26 +00:00
Sambhav Kothari	6b9798f76f	Add parse_json function the decode json strings (#2941 ) Signed-off-by: Sambhav Kothari <sambhavs.email@gmail.com>	2022-01-10 13:42:02 -08:00

... 11 12 13 14 15 ...

898 commits