dependabot[bot]
db7a72f950
chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace ( #10072 )
...
Bumps [go.opentelemetry.io/otel/exporters/otlp/otlptrace](https://github.com/open-telemetry/opentelemetry-go ) from 1.24.0 to 1.25.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.24.0...v1.25.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-19 17:43:30 +08:00
Mariam Fahmy
815f4bb09d
fix: remove unused parameters ( #10007 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-04-18 10:30:35 +00:00
André Bauer
693010563f
[kyverno helm chart] make webhook pod annotations configurable ( #9875 )
...
* make webhook pod annotations configurable
Signed-off-by: André Bauer <andre.bauer@staffbase.com>
* run make codegen-helm-all
Signed-off-by: André Bauer <andre.bauer@staffbase.com>
---------
Signed-off-by: André Bauer <andre.bauer@staffbase.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-04-18 09:31:29 +00:00
dependabot[bot]
31905ebee6
chore(deps): bump google.golang.org/grpc from 1.63.0 to 1.63.2 ( #10054 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.63.0 to 1.63.2.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.63.0...v1.63.2 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-18 07:57:46 +00:00
Jim Bugwadia
874f284844
remove broken badges, fix links, add new ( #10064 )
...
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
2024-04-18 07:06:52 +00:00
Mariam Fahmy
f98d7d86b3
refactor: add a function to check if VAPs are registered in the API server ( #10014 )
...
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-04-17 10:01:00 +00:00
Vishal Choudhary
3db5bdfad8
fix: add mutex to mock policy context builder ( #10057 )
...
It is possible that two different threads call the build function at the same time causing one append to be lost, this PR adds a mutex to avoid this
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-17 09:13:19 +00:00
dependabot[bot]
bec5c24660
chore(deps): bump k8s.io/cli-runtime from 0.29.3 to 0.29.4 ( #10055 )
...
Bumps [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) from 0.29.3 to 0.29.4.
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.29.3...v0.29.4 )
---
updated-dependencies:
- dependency-name: k8s.io/cli-runtime
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-17 08:35:36 +00:00
Khaled Emara
fb40aa5f38
feat(audit): use a worker pool for Audit policies ( #10048 )
...
* enhancement: split validation logic for enforce and audit policies to return admission response earlier
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: add missing file
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: linter issues
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: unit tests
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: get latest policy object before updating status
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: remove debug code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: compare before updates
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: initial reconcile
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: updates
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat(audit): use a worker pool for Audit policies
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix: unit test
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix(attempt): spin up go routine
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* feat: add flags maxAuditWorkers, maxAuditCapacity
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: enable debug log on failure
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: wait group panic
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* load-tests: add stess tests configurations
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* load-tests: disable admissionreports
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: build policy contexts syncronously
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: only run generate and mutate existing go routines when policies are present
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: mutate and verify tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: return early if no audit policy
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* fix: run handlegenerate and mutate existing in all cases
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: only test bgapplies in generate test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: defer wait in tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* enhancement: process validate enforce in a go routine
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-17 15:46:18 +08:00
dependabot[bot]
90d1440d82
chore(deps): bump azure/setup-helm from 4.1.0 to 4.2.0 ( #10053 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md )
- [Commits](b7246b12e7...fe7b79cd5e
2024-04-16 09:54:59 +00:00
dependabot[bot]
8c2e58fe61
chore(deps): bump codecov/codecov-action from 4.2.0 to 4.3.0 ( #10030 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](7afa10ed9b...84508663e9
2024-04-16 09:22:43 +00:00
dependabot[bot]
f735943c69
chore(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 ( #10040 )
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](e1523de757...59acb6260d
2024-04-16 08:41:29 +00:00
dependabot[bot]
e8cc9908da
chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc ( #10041 )
...
Bumps [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc](https://github.com/open-telemetry/opentelemetry-go ) from 1.24.0 to 1.25.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.24.0...v1.25.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-16 07:43:28 +00:00
dependabot[bot]
1998367a5b
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp ( #10042 )
...
Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib ) from 0.49.0 to 0.50.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.49.0...zpages/v0.50.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-16 07:02:34 +00:00
dependabot[bot]
73492ad87d
chore(deps): bump azure/setup-helm from 3.5 to 4 ( #10045 )
...
Bumps [azure/setup-helm](https://github.com/azure/setup-helm ) from 3.5 to 4.
- [Release notes](https://github.com/azure/setup-helm/releases )
- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md )
- [Commits](5119fcb908...b7246b12e7
2024-04-16 14:24:20 +08:00
shuting
3e7a7ac244
fix: policy status reconciliation ( #10032 )
...
* fix: get latest policy object before updating status
Signed-off-by: ShutingZhao <shuting@nirmata.com>
* chore: remove debug code
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-04-12 07:08:15 +00:00
Vishal Choudhary
7c83ca189c
chore: bump cosign to v2.2.4 ( #10000 )
...
Cosign v2.2.4 has fixes for two advisories for denial of service vulnerabilities - GHSA-95pr-fxf5-86gv and GHSA-88jx-383q-w4qc. This PR bumps to the latest version.
The upstream version of cosign uses prometheus/common version v0.51.1.
There was a breaking change in v0.48.0 of prometheus/common and k8s.io/component-base@v1.29.3 uses a lower version (v0.44.0) which is not compatible with v0.51.1.
To fix this, I have created a new tag in our folk of cosign v2.2.4-deps-fix. Which takes the latest cosign v.2.2.4 and adds a commit to downgrade prometheus common to v0.47.0. Here is the commit history: kyverno/cosign@v2.2.4-deps-fix (commits)
We have to use this folk until k8s.io/component-base releases a new version with the bump to a newer version of prometheus/common.
2024-04-11 04:46:23 +00:00
dependabot[bot]
91dcbc9fe3
chore(deps): bump go.opentelemetry.io/otel/sdk from 1.24.0 to 1.25.0 ( #10028 )
...
Bumps [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go ) from 1.24.0 to 1.25.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases )
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md )
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.24.0...v1.25.0 )
---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/sdk
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-10 08:12:12 +00:00
Mariam Fahmy
39da5bd927
fix: re-use the maxQueuedEvents ( #10024 )
...
* fix: re-use the maxQueuedEvents
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* fix: use the apierrors.IsNotFound instead of checking a specfic error msg
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-04-10 15:41:22 +08:00
dependabot[bot]
87dffbe5be
chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/azure ( #10011 )
...
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore ) from 1.8.2 to 1.8.3.
- [Release notes](https://github.com/sigstore/sigstore/releases )
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.2...v1.8.3 )
---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-09 19:31:25 +08:00
dependabot[bot]
2503e000f3
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions ( #10019 )
...
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](ba37328d4e...19ebcb0bab
2024-04-09 15:41:47 +08:00
dependabot[bot]
f63392b866
chore(deps): bump codecov/codecov-action from 4.1.1 to 4.2.0 ( #9995 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.1.1 to 4.2.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](c16abc29c9...7afa10ed9b
2024-04-08 11:10:16 +00:00
shuting
6416d8600e
chore: bump to go 1.22.2 ( #10001 )
...
Signed-off-by: ShutingZhao <shuting@nirmata.com>
2024-04-08 09:30:05 +00:00
dependabot[bot]
3ebd7d222c
chore(deps): bump golang.org/x/crypto from 0.21.0 to 0.22.0 ( #10010 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.21.0 to 0.22.0.
- [Commits](https://github.com/golang/crypto/compare/v0.21.0...v0.22.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-08 08:46:15 +00:00
dependabot[bot]
1647b809c7
chore(deps): bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 ( #10003 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.11.0 to 5.12.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.11.0...v5.12.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-07 09:09:03 +00:00
dependabot[bot]
a401113bb3
chore(deps): bump sigs.k8s.io/kustomize/kyaml from 0.16.0 to 0.17.0 ( #10005 )
...
Bumps [sigs.k8s.io/kustomize/kyaml](https://github.com/kubernetes-sigs/kustomize ) from 0.16.0 to 0.17.0.
- [Release notes](https://github.com/kubernetes-sigs/kustomize/releases )
- [Commits](https://github.com/kubernetes-sigs/kustomize/compare/api/v0.16.0...api/v0.17.0 )
---
updated-dependencies:
- dependency-name: sigs.k8s.io/kustomize/kyaml
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-07 16:16:41 +08:00
dependabot[bot]
6d48d93e75
chore(deps): bump k8s.io/cli-runtime from 0.29.2 to 0.29.3 ( #9962 )
...
Bumps [k8s.io/cli-runtime](https://github.com/kubernetes/cli-runtime ) from 0.29.2 to 0.29.3.
- [Commits](https://github.com/kubernetes/cli-runtime/compare/v0.29.2...v0.29.3 )
---
updated-dependencies:
- dependency-name: k8s.io/cli-runtime
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-04 12:01:42 +00:00
dependabot[bot]
5ee6b4e593
chore(deps): bump github.com/distribution/reference from 0.5.0 to 0.6.0 ( #9963 )
...
Bumps [github.com/distribution/reference](https://github.com/distribution/reference ) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/distribution/reference/releases )
- [Commits](https://github.com/distribution/reference/compare/v0.5.0...v0.6.0 )
---
updated-dependencies:
- dependency-name: github.com/distribution/reference
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-04 10:29:10 +00:00
Khaled Emara
c9055ac2ff
fix(autogen): only generate rule for request kind ( #9984 )
...
* fix(autogen): only generate rule for request kind
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* feat(autogen): use jsoniter instead of std for json
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* chore(atogen): use sets instead of manipulating strings
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(autogen): formatting linter
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix(autogen): backwards compatability
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* revert(autogen): old behavior
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
* fix: builds error
Signed-off-by: ShutingZhao <shuting@nirmata.com>
---------
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: ShutingZhao <shuting@nirmata.com>
2024-04-04 08:09:30 +00:00
Charles-Edouard Brétéché
c241cfce44
fix: polex matching code ( #9955 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-04-03 18:56:48 +00:00
Chip Zoller
7bf4033c6e
add 1.12 ( #9988 )
...
Signed-off-by: chipzoller <chipzoller@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-03 13:32:39 +00:00
dependabot[bot]
ad4f5467bf
chore(deps): bump k8s.io/apiextensions-apiserver from 0.29.2 to 0.29.3 ( #9964 )
...
Bumps [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver ) from 0.29.2 to 0.29.3.
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases )
- [Commits](https://github.com/kubernetes/apiextensions-apiserver/compare/v0.29.2...v0.29.3 )
---
updated-dependencies:
- dependency-name: k8s.io/apiextensions-apiserver
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-03 08:32:02 +00:00
Vishal Choudhary
99b54a9f52
fix: dependabot prs will not be checked for milestone ( #9985 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-03 05:58:44 +00:00
imdmahajankanika
32b6ca6500
Update ADOPTERS.md ( #9986 )
...
Signed-off-by: imdmahajankanika <48632517+imdmahajankanika@users.noreply.github.com>
2024-04-02 22:46:21 +00:00
Anushka Mittal
66a2c7283b
chore: changes to use latest kyverno-json apis ( #9980 )
...
* changes to use latest kyverno-json apis
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
* codegen diffs
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
---------
Signed-off-by: Anushka Mittal <anushka@nirmata.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-02 14:35:26 +00:00
imdmahajankanika
4dda166dfe
Update ADOPTERS.md ( #9982 )
...
Signed-off-by: imdmahajankanika <48632517+imdmahajankanika@users.noreply.github.com>
2024-04-02 13:50:29 +00:00
Vishal Choudhary
5f9b8ce381
fix: add if check to workflow ( #9976 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-04-02 15:58:43 +05:30
Vishal Choudhary
83f2846572
feat: add TSA cert chain support in cosign ( #9961 )
...
* feat: add TSA cert chain support in cosign
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add chainsaw test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* feat: add unit test
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: unit tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
2024-03-30 20:50:07 +00:00
Mariam Fahmy
b67141154f
chore: add a job to check the PR milestone is set ( #9966 )
...
* chore: add a job to check the PR milestone is set
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
* Update .github/workflows/check-milestone.yaml
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
* Update .github/workflows/check-milestone.yaml
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
* Update .github/workflows/check-milestone.yaml
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
* fix: remove the release branch from the milestone check
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
---------
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Mariam Fahmy <mariamfahmy66@gmail.com>
Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-03-30 09:42:15 +00:00
Vishal Choudhary
912364293c
fix: cosign ctlog unit tests ( #9970 )
...
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-03-29 16:49:11 +00:00
Vishal Choudhary
93eac3f7a4
fix: deferred loader panic when mutate and generate policies are applied ( #9935 )
...
* fix: deferred loader panic when mutate and generate policies are applied
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: tests
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: update policies
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* remove clusterrolebinding
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: copy only json context
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: polctx
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-03-29 14:37:15 +01:00
Vishal Choudhary
1a1954002f
fix: add rekor opts to cosign certificate verification and make rekor url optional ( #9957 )
...
* fix: add rekor opts to cosign certificate verification and make rekor url optional
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* fix: linter
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
2024-03-28 18:17:24 -07:00
rdark
0655f9c59d
Make ports configurable for background-controller & reports-controller ( #9939 )
...
Signed-off-by: Richard Clark <richard@rvvup.com>
Co-authored-by: Richard Clark <richard@rvvup.com>
2024-03-28 15:05:19 +00:00
dependabot[bot]
6344b85954
chore(deps): bump github.com/google/go-containerregistry ( #9912 )
...
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry ) from 0.19.0 to 0.19.1.
- [Release notes](https://github.com/google/go-containerregistry/releases )
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml )
- [Commits](https://github.com/google/go-containerregistry/compare/v0.19.0...v0.19.1 )
---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 13:04:21 +00:00
dependabot[bot]
f3d4e41cff
chore(deps): bump k8s.io/kube-aggregator from 0.29.2 to 0.29.3 ( #9918 )
...
Bumps [k8s.io/kube-aggregator](https://github.com/kubernetes/kube-aggregator ) from 0.29.2 to 0.29.3.
- [Commits](https://github.com/kubernetes/kube-aggregator/compare/v0.29.2...v0.29.3 )
---
updated-dependencies:
- dependency-name: k8s.io/kube-aggregator
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 13:14:00 +01:00
dependabot[bot]
03649f955b
chore(deps): bump k8s.io/apiserver from 0.29.2 to 0.29.3 ( #9951 )
...
Bumps [k8s.io/apiserver](https://github.com/kubernetes/apiserver ) from 0.29.2 to 0.29.3.
- [Commits](https://github.com/kubernetes/apiserver/compare/v0.29.2...v0.29.3 )
---
updated-dependencies:
- dependency-name: k8s.io/apiserver
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-28 10:20:24 +00:00
Charles-Edouard Brétéché
76bd67739a
fix: polex mem footprint ( #9954 )
...
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-03-28 09:31:40 +00:00
Vishal Choudhary
baa9eb2fd3
chore: bump controller gen to 0.14.0 ( #9953 )
...
* chore: update controller-gen version and cmd
controller gen throws an error when multiple instances of the same generator 'crd' in this case is specified. See: kubernetes-sigs/controller-tools#829
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
* chore: generate code
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
---------
Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
2024-03-28 09:33:17 +01:00
Charles-Edouard Brétéché
4438b24b69
refactor: exception selector interface ( #9907 )
...
* refactor: exception selector interface
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
* fix
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
---------
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2024-03-28 08:03:01 +00:00
dependabot[bot]
7e85e17fd1
chore(deps): bump aquasecurity/trivy-action from 0.18.0 to 0.19.0 ( #9952 )
...
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ) from 0.18.0 to 0.19.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases )
- [Commits](062f259268...d710430a67
2024-03-28 08:32:26 +01:00
