mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 07:57:07 +00:00
Code Activity
4346 commits 20 branches 550 tags 288 MiB
Commit graph

10 commits

Author SHA1 Message Date
shuting
8a9a98d8b5
Add handler to UR.status (#3791) 
* - Add "handler" to "ur.status"
- Mark / Unmark handler upon UR reconciliation

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* Add field onPolicyUpdate

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* Update API docs

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* Add delay in generate e2e tests

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* Remove duplicate logic for cleaning up the cloned resource

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2022-05-05 16:26:27 +05:30
Charles-Edouard Brétéché
2b6549fd5b
chore: remove config flags (#3786) 
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2022-05-03 17:52:10 +00:00
Jim Bugwadia
9834feea74
update image pull policy for YAML install which uses :latest (#3565) 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2022-04-07 21:31:14 +00:00
Charles-Edouard Brétéché
20069c13c3
feat: stop mutating rules (#3410) 
* feat: stop adding autogen annotation

Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

* feat: stop mutating rules

Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

* feat: stop mutating rules

Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

* fix: use toggle

Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

* fix: review comments

Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

Co-authored-by: shuting <shuting@nirmata.com>
 2022-03-28 22:01:27 +08:00
Naman Lakhwani
126742ad57
adding emptyDir vol for keyless signing (#3366) 
* adding emptyDir vol

Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>

* adding env TUF_ROOT

Signed-off-by: Naman Lakhwani <namanlakhwani@gmail.com>
 2022-03-10 08:09:22 +00:00
Ryan White
c13aeca7fa
Modify capabilities for compatibility with Pod Security (#3274) 
Kyverno manifests are incompatible with the restricted Pod Security
Standards included with Kubernetes 1.22 and 1.23 because the Pod
Security admission controller looks for "ALL" in securityContext.capabilities.drop,
but does not accept "all".

1b741f89aa/policy/check_capabilities_restricted.go (L88)

Signed-off-by: Ryan White <ryan@alzabo.io>
 2022-02-22 08:14:17 +00:00
Abhinav Sinha
11311a15df
Filter kyverno resources instead of entire kyverno namespace (#3170) 
Signed-off-by: Abhinav Sinha <abhinav@nirmata.com>
 2022-02-04 00:38:47 +00:00
Abhinav Sinha
7ceba594b2
Corrected the value of INIT_CONFIG env in deployment (#2927) 
Signed-off-by: Abhinav Sinha <zeborg3@gmail.com>

Co-authored-by: shuting <shutting06@gmail.com>
 2022-01-07 10:52:34 +00:00
shuting
4a027f3bd7
Increase Kyverno memory request and limit (#2862) 
* bump memory request and limit

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* remove quotes

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2021-12-20 23:11:28 -08:00
Jose Armesto
831a9826d1
Restructure project to follow standards (#2632) 
Signed-off-by: Jose Armesto <github@armesto.net>
 2021-10-29 18:13:20 +02:00