kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-05 15:37:19 +00:00

Author	SHA1	Message	Date
Charles-Edouard Brétéché	e4bf66e756	feat: remove policy mutation for auto-gen rules (#5123 ) * feat: remove policy mutation code Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * Fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * changelog Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-25 23:43:46 +00:00
Danny Kulchinsky	a3e2a20a23	fix finalizers mutation with patchesJson6902 (#5132 ) * fix finalizers mutation with patchesJson6902 Signed-off-by: Danny Kulchinsky <dkulchinsky@fastly.com>	2022-10-25 12:04:07 +05:30
XDRAGON2002	a3c129f469	[Feature] create command line option to set failurePolicy globally (#4991 ) * add forceFailurePolicyIgnore flag Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * cleanup code Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * add logging Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * resolve merge conflicts Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * fix codegen Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-21 18:13:36 +00:00
yinka	822dbdc011	feat: enable/disable Debug mode which shows entire AdmissionReview payload (#5024 ) * work in progress PR Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * add custom request struct Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * pass debug mode option through constructor and replace logger with klogr Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * make changes Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix linter Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * add another test case Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * removed unused function Signed-off-by: damilola olayinka <holayinkajr@gmail.com> * fix linter Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: damilola olayinka <holayinkajr@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-21 16:17:49 +00:00
Charles-Edouard Brétéché	5d0adadfa7	fix: use correct side effects in validating webhooks (#5080 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-21 16:53:55 +08:00
Charles-Edouard Brétéché	5a496ca212	refactor: simplify variables regex (#5075 ) * feat: add simple conformance tests Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * gh action Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * separate workflow Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix the bug Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix cli test Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * improvements Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * improvements Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fixes Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix: variables regex Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix tests Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-21 11:51:14 +08:00
Prateek Pandey	2078f0dfd2	fix: allow delete of target resource with synchronize false (#5081 ) Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-10-20 19:41:57 +00:00
Prateek Pandey	7735ac3f83	fix: handle resource cleanup when policy is deleted (#5021 ) * fix: handle delete UR when policy is deleted Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> * fix cleanup Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> * use selector to list the update request Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com>	2022-10-20 17:48:27 +00:00
Charles-Edouard Brétéché	0feec9bef5	fix: use correct logger in webhook controller (#5083 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-20 20:54:42 +05:30
Charles-Edouard Brétéché	ad2cbd3b33	feat: add simple conformance tests (#5073 ) * feat: add simple conformance tests Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-20 12:17:33 +00:00
Charles-Edouard Brétéché	e5b9af44e7	fix: make reponse order predictable (#5079 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> make response order predictable	2022-10-20 17:06:46 +05:30
Sandesh More	fa178ebd82	added apiCalls support in kyverno-apply command (#4938 ) Signed-off-by: Sandesh More <sandesh.more@infracloud.io> Signed-off-by: Sandesh More <sandesh.more@infracloud.io>	2022-10-19 16:39:15 +00:00
Charles-Edouard Brétéché	73712f3738	feat: add webhook server logger (#5063 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 13:12:55 +00:00
Charles-Edouard Brétéché	a0bcf7a966	fix: configure idle timeout in server (#5062 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 12:09:04 +00:00
Charles-Edouard Brétéché	6070092b6a	fix: image verification reports missing in admission mode (#5037 ) * fix: image verification reports missing in admission mode Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-19 11:25:47 +00:00
Charles-Edouard Brétéché	eac23af077	fix: detection of kyverno going down (#5055 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-19 10:06:48 +00:00
Charles-Edouard Brétéché	749c1bab3b	fix: do not update reports when they are identical (#5056 ) * fix: do not update reports when they are identical Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix linter Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 09:32:43 +00:00
Charles-Edouard Brétéché	c4b3301ab0	fix: go routines not gracefully shut down in controllers (#5022 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-19 08:54:48 +00:00
Charles-Edouard Brétéché	cdfac95cdb	fix: account for policy/rule deletion in aggregated reports (#5048 ) * fix: account for policy/rule deletion in aggregated reports Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * reduce delay Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-19 08:16:28 +00:00
Charles-Edouard Brétéché	5aec07215f	feat: add image verification support to background scan (#5047 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-18 15:23:02 +00:00
Charles-Edouard Brétéché	5a09a78350	feat: add controller logger helper (#5029 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-18 14:42:43 +00:00
Charles-Edouard Brétéché	e7fac3a57f	fix: lease log message (#5030 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-18 12:46:09 +00:00
Charles-Edouard Brétéché	a15853910b	feat: make shutdown more graceful (#5031 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-18 10:55:33 +00:00
Pratik Shah	632bd99612	Fixed issue-4655: verifyImages is executed before mutate (#4996 ) Signed-off-by: Pratik Shah <pratik@infracloud.io>	2022-10-18 08:38:28 +00:00
Shivansh Yadav	becf73227b	validate patchJSON6902 (#4469 ) * validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * test: validateJSON6902 tests Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> * test: validate patchJSON6902 Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> Signed-off-by: Shivansh-yadav13 <yadavshivansh@gmail.com> Signed-off-by: Shivansh Yadav <yadavshivansh@gmail.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 15:25:03 +00:00
Vyankatesh Kudtarkar	f5748b1e70	remove RBACInfo check (#5015 )	2022-10-17 14:47:06 +00:00
Charles-Edouard Brétéché	cb0410dcf1	fix: policy not denied when kinds set is empty (#5016 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 14:10:42 +00:00
Charles-Edouard Brétéché	6270d40f50	fix: global anchor warning (#4962 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 17:15:57 +05:30
Charles-Edouard Brétéché	a89fbac333	fix: don't process non background policies in background scan (#5008 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 13:01:41 +02:00
Charles-Edouard Brétéché	02e832a771	fix: update policy status (#5006 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 09:28:33 +00:00
Prateek Pandey	2bd6c62b55	fix: use default retry with retryfunc for a conflict (#4973 ) DefaultRetry is the recommended retry for a conflict where multiple clients are making changes to the same resource Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Signed-off-by: prateekpandey14 <prateek.pandey@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 08:18:52 +00:00
Charles-Edouard Brétéché	3ebb6284cc	refactor: add update status helper (#4985 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>	2022-10-17 05:52:54 +00:00
Vyankatesh Kudtarkar	f3e40efcd7	fix principal and role variables are not substituted (#5000 )	2022-10-17 05:16:14 +00:00
Charles-Edouard Brétéché	ea1b64ab08	fix: skip admission in dry run requests (#4994 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Vyankatesh Kudtarkar <vyankateshkd@gmail.com>	2022-10-17 04:01:06 +00:00
Charles-Edouard Brétéché	aedaa412a0	fix: webhooks not registering when using name override (#4992 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-17 01:21:43 +00:00
Charles-Edouard Brétéché	5f6b04ca69	fix: config reloading not working correctly (#4951 ) * fix: config reloading not working correctly Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * nits Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 17:36:46 +00:00
Charles-Edouard Brétéché	1f3c429cd7	fix: missing autogen rules in status (#4971 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 17:02:10 +00:00
Charles-Edouard Brétéché	afe9036347	fix: add user info in admission request logs (#4969 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 16:29:48 +00:00
Charles-Edouard Brétéché	f0703a5c6b	fix: don't produce empty admission reports (#4966 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 15:55:51 +00:00
Charles-Edouard Brétéché	47780bf37f	fix: improve banned types management in reports (#4953 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-14 23:20:30 +08:00
Charles-Edouard Brétéché	e749907302	fix: missing watchers in resource report controller (#4967 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 13:55:50 +00:00
Pratik Shah	caab013a86	Fixed issue-4530: Added separate attestor type for secrets and KMS (#4733 ) Signed-off-by: Pratik Shah <pratik@infracloud.io> Signed-off-by: Vyankatesh <vyankateshkd@gmail.com>	2022-10-14 09:40:46 +00:00
Pratik Shah	8a0083105d	Added support to specify key signature algorithm in verifyImages (#4855 ) Signed-off-by: Pratik Shah <pratik@infracloud.io> Signed-off-by: Pratik Shah <pratik@infracloud.io>	2022-10-14 05:39:57 +00:00
Charles-Edouard Brétéché	16aca2816f	fix: don't report ready until certs are valid (#4934 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-14 04:23:42 +00:00
Charles-Edouard Brétéché	56d90888e0	fix: consider generateName when matching resources (#4945 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-13 16:02:01 +00:00
Charles-Edouard Brétéché	a62a0c1f9f	fix: probes should work in debug mode (#4926 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-13 14:40:35 +00:00
Charles-Edouard Brétéché	9e933e8d21	fix: set operation in context when necessary (#4940 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-13 19:33:49 +05:30
Charles-Edouard Brétéché	ed88e9f8d2	fix: panic when bad variable substitution (#4928 ) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Prateek Pandey <prateek.pandey@nirmata.com>	2022-10-13 10:16:47 +00:00
Charles-Edouard Brétéché	090b68e55d	feat: make cert renewer private and add server name support (#4904 ) * fix: remove unnecessary dependencies from tls package Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * feat: make cert renewer private and add server name support Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * nits Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>	2022-10-13 09:46:05 +00:00
XDRAGON2002	03c41e7746	[Cleanup] Disable PolicySkipped events (#4913 ) * remove skip events Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * update conditions Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * improve conditions Signed-off-by: Anant Vijay <anantvijay3@gmail.com> * remove redundant function Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Signed-off-by: Anant Vijay <anantvijay3@gmail.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>	2022-10-13 08:32:20 +00:00

1 2 3 4 5 ...

2766 commits