mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-05 15:37:19 +00:00
Code Activity
5220 commits 16 branches 550 tags 287 MiB
Commit graph

2950 commits

Author SHA1 Message Date
gcp-cherry-pick-bot[bot]
f463f7ba31
fix imageRef matching (#5956) (#5957) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-10 19:02:15 +08:00
shuting
05c2ebcf58
cherry-pick #5950 (#5955) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-10 05:43:13 +00:00
shuting
9ec18195b8
Cherry-pick #5941 (#5952) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2023-01-09 18:57:48 +01:00
Charles-Edouard Brétéché
6349b51cf5
Added a time_add() filter to add duration and absolute time (#5817) (#5946) 
* time_add

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* output is RFC3339 only now

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* added note to timeadd

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* added time_convert

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* removed blank string timezone

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* renamed to time_parse

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-09 15:01:51 +00:00
gcp-cherry-pick-bot[bot]
7bb4d3db0a
fix: missing user info matching (#5931) (#5934) 
* fix: missing user info matching

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* todo

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* todo

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-08 22:06:26 +00:00
gcp-cherry-pick-bot[bot]
5553d798fe
restrict cjs by PSS restricted checks (#5904) (#5922) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-06 15:38:01 +00:00
gcp-cherry-pick-bot[bot]
f3fefbc39b
fix: Configure webhook to add ephemeralcontainers for policies matching on Pod (#5886) (#5919) 
Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>

Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>

Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Co-authored-by: Vyom Yadav <73882557+Vyom-Yadav@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-06 15:04:20 +00:00
gcp-cherry-pick-bot[bot]
fb0a76cf65
set resourceVersion before update (#5906) (#5916) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-06 13:47:22 +00:00
gcp-cherry-pick-bot[bot]
917069834a
feat: add violation details to report.results.properties for PSa policies (#5908) (#5912) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-06 12:28:55 +01:00
gcp-cherry-pick-bot[bot]
54f45709e1
Adds JMESPath filter for returning cron expression for absolute time (#5814) (#5905) 
* time_to_cron

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* tests

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* Update pkg/engine/jmespath/functions.go

Signed-off-by: shuting <shutting06@gmail.com>

* fix linter

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Signed-off-by: shuting <shutting06@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shutting06@gmail.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Signed-off-by: shuting <shutting06@gmail.com>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: shuting <shutting06@gmail.com>
 2023-01-06 08:05:05 +00:00
gcp-cherry-pick-bot[bot]
87f8b490aa
fix cleanup var 'target.*' (#5888) (#5895) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-05 15:53:54 +00:00
Charles-Edouard Brétéché
e844fdc98c
refactor: improve background scan reconciliation (#5871) (#5882) 
* fix: force background scan recomputation

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* refactor: improve background scan reconciliation

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* enqueue

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* enqueue resources

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-05 16:59:39 +08:00
gcp-cherry-pick-bot[bot]
56df7239ad
fix: Add subresources support to policy exceptions (#5839) (#5880) 
Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>

Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>

Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Co-authored-by: Vyom Yadav <73882557+Vyom-Yadav@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-05 07:01:04 +00:00
gcp-cherry-pick-bot[bot]
77b2b1c940
fix validation checks for foreach and nested foreach (#5875) (#5877) 
Signed-off-by: Jim Bugwadia <jim@nirmata.com>

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2023-01-05 06:02:09 +00:00
gcp-cherry-pick-bot[bot]
ea17aca606
fix: force background scan recomputation (#5865) (#5868) 
* fix: force background scan recomputation

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix delay

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: kyverno-bot <104836976+kyverno-bot@users.noreply.github.com>
 2023-01-04 21:50:12 +00:00
Charles-Edouard Brétéché
12c66421ae
fix: background scan events (#5807) (#5874) 
* fix: background scan events

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* remove old code

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* remove old code

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix config

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* cleanup

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* cleanup

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* events

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-01-04 22:10:32 +01:00
shuting
3dcfd5c4ba
feat: cleanup enhancements-1 (cherry-pick #5796) (#5867) 
* feat: cleanup enhancements-1 (#5796)

* update fields description

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* update cleanup controller clusterrole name

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* - add variables validations to support "request." and "images."; - update debug log level to 4

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* add missing files

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* cherry-pick #5796

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2023-01-04 12:52:31 +00:00
gcp-cherry-pick-bot[bot]
167d9a2aac
fix mutate targets variable (#5862) (#5866) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-01-04 12:13:00 +00:00
Charles-Edouard Brétéché
1480d0060c
chore: move ConvertToUnstructured from engine utils to kube utils (#5847) (#5863) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-01-04 09:07:24 +00:00
gcp-cherry-pick-bot[bot]
b0ded1aa17
feat: improve background scan reports enqueue logic (#5810) (#5853) 
* feat: improve background scan reports enqueue logic

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* delay

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* delay

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* aggregation delay

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl timeout

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* delay

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl timeout

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-03 15:47:53 +00:00
gcp-cherry-pick-bot[bot]
6eaf4e013f
refactor: move utils into sub packages (#5828) (#5845) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-03 10:14:17 +00:00
gcp-cherry-pick-bot[bot]
f10463060d
chore: add a couple unit tests (#5834) (#5842) 
* chore: add LabelSelectorContainsWildcard unit tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* tombstone tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* ConvertToUnstructured tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-03 09:33:48 +00:00
gcp-cherry-pick-bot[bot]
a9d7ada888
Adds JMESPath filter for returning current time (#5813) (#5831) 
* time_current

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* name change

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* added note

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2023-01-02 15:11:52 +00:00
gcp-cherry-pick-bot[bot]
32a755f989
Adds notes to functions (#5824) (#5826) 
* added notes

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* changes stated in chart.yaml

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

* undo

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>

Signed-off-by: Vishal Choudhary <contactvishaltech@gmail.com>
Co-authored-by: Vishal Choudhary <contactvishaltech@gmail.com>
 2023-01-02 08:35:54 +00:00
gcp-cherry-pick-bot[bot]
8eca0d9658
fix: error handling in last scan time parsing (#5808) (#5809) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2022-12-29 16:20:36 +00:00
gcp-cherry-pick-bot[bot]
512ae5f52b
fix arguments passed to DeepEqual (#5801) (#5806) 
Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>

Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>

Signed-off-by: Vyom-Yadav <jackhammervyom@gmail.com>
Co-authored-by: Vyom Yadav <73882557+Vyom-Yadav@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2022-12-29 16:45:02 +01:00
gcp-cherry-pick-bot[bot]
02dcf127ed
refactor: policy controller package (#5747) (#5803) 
* refactor: remove a couple of old util funcs

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* refactor: policy controller package

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* refactor

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
 2022-12-29 11:23:46 +00:00
shuting
d416a19e88
fix delete policy (#5776) (#5790) 
Signed-off-by: cleverhu <shouping.hu@daocloud.io>

Signed-off-by: cleverhu <shouping.hu@daocloud.io>
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: cleverhu <shouping.hu@daocloud.io>
Signed-off-by: ShutingZhao <shuting@nirmata.com>
Co-authored-by: cleverhu <shouping.hu@daocloud.io>
 2022-12-27 08:28:09 -05:00
Charles-Edouard Brétéché
94abfaf13e
refactor: move util funcs in sub packages (#5754) 
* refactor: move util func in sub packages

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* Update pkg/utils/kube/crd.go

Signed-off-by: shuting <shutting06@gmail.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: shuting <shutting06@gmail.com>
Co-authored-by: shuting <shutting06@gmail.com>
 2022-12-22 06:39:54 +00:00
Charles-Edouard Brétéché
3c997d88a8
refactor: cleanup controller validating webhook (#5756) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-22 06:13:32 +00:00
Charles-Edouard Brétéché
0f5a0d492f
test: add unit test for GetResourceName util (#5752) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-22 05:50:39 +00:00
Charles-Edouard Brétéché
3cce75ae0f
refactor: auth package and add full unit test coverage (#5749) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-22 13:24:37 +08:00
Charles-Edouard Brétéché
3975323362
chore: bump deps including k8s ones (#5751) 
* chore: bump deps including k8s ones

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix linter

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-21 22:33:51 +00:00
Charles-Edouard Brétéché
ad19108d34
refactor: remove common package (#5750) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-21 20:30:45 +00:00
Charles-Edouard Brétéché
59dd95b888
refactor: use typed client in auth (#5743) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-21 17:12:26 +00:00
Charles-Edouard Brétéché
d6e8efb7f2
refactor: remove a couple of old util funcs (#5746) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-21 17:44:02 +01:00
Santosh Kaluskar
646064f3f5
Allows {{image}} var to be used in policies (#5122) 
Signed-off-by: Santosh Kaluskar <dtshbl@gmail.com>

Signed-off-by: Santosh Kaluskar <dtshbl@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2022-12-21 07:37:29 +00:00
Eileen
baa41bcf79
feat: add exception logic (#5712) 
Signed-off-by: Eileen Yu <eileenylj@gmail.com>

Signed-off-by: Eileen Yu <eileenylj@gmail.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2022-12-21 04:35:26 +00:00
Charles-Edouard Brétéché
e211c3c959
feat: force background scan regularly (#5727) 
* feat: force background scan regularly

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* changelog

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-20 16:42:08 +01:00
shuting
004e0feefa
add rule type pkg/metrics/parsers.go (#5729) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2022-12-20 14:43:21 +00:00
Charles-Edouard Brétéché
54b7b65cfe
feat: propagate psa checks results (#5719) 
* feat: propagate psa checks results

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* add to report

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2022-12-20 05:57:23 +00:00
Charles-Edouard Brétéché
41fd4fb252
refactor: supress usage of kustomize in build (#5691) 
* refactor: supress usage of kustomize in build (part 1)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* e2e

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* e2e

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* e2e

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* clean

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* labels

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* simplify templating flags

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-19 16:26:07 +01:00
Jim Bugwadia
14d82cbf6d
Require predicate type (#5713) 
* fix digest and verify logic

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* allow attestations with no attestors

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* require predicateType

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* fix typo

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2022-12-19 10:15:07 +00:00
shuting
b5625f340c
fix logger panic (#5715) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2022-12-19 09:40:17 +00:00
Charles-Edouard Brétéché
dacb465e10
fix: interface conversion panic (#5708) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2022-12-16 18:43:02 +01:00
shuting
4679766879
fix missing assignment (#5710) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2022-12-16 15:58:30 +00:00
shuting
810b1335b6
initialize configmap resolver in background components (#5705) 
Signed-off-by: ShutingZhao <shuting@nirmata.com>

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2022-12-16 10:26:48 +00:00
Eileen
e0f0fdf242
feat: Implement PolicyException (#5680) 
* feat: Handle Exception

Signed-off-by: Eileen Yu <eileenylj@gmail.com>

* fixes

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Eileen Yu <eileenylj@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2022-12-16 09:13:14 +00:00
Jim Bugwadia
85bb5f32be
fix digest and verify logic (#5703) 
* fix digest and verify logic

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

* allow attestations with no attestors

Signed-off-by: Jim Bugwadia <jim@nirmata.com>

Signed-off-by: Jim Bugwadia <jim@nirmata.com>
 2022-12-16 08:44:49 +00:00
Charles-Edouard Brétéché
a34bbaa586
fix: block policy admission if kyverno is down (#5677) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2022-12-16 07:05:06 +00:00