mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00
Code Activity
6722 commits 15 branches 540 tags 276 MiB
Commit graph

92 commits

Author SHA1 Message Date
Mariam Fahmy
fee67e8bc8
chore: run generate VAP test suite using chainsaw (#8958) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-11-20 18:26:37 +01:00
Charles-Edouard Brétéché
4171d556eb
chore: bump chainsaw (#8967) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-11-20 11:49:52 +00:00
dependabot[bot]
71dca154a7
chore(deps): bump sigstore/scaffolding (#8964) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 126e381beb1580df23067f9f49854293d04895ee to b0c456efaf2843a1c4acea01aa9a8fee503412c0.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](126e381beb...b0c456efaf)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-20 09:46:08 +00:00
Charles-Edouard Brétéché
4dbd71459a
chore: run range operators test with chainsaw (#8956) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-11-20 06:41:19 +00:00
Mariam Fahmy
569b50c069
chore: run rbac testsuite using chainsaw (#8950) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-11-19 23:53:48 +00:00
Mariam Fahmy
fc841c0417
chore: run background-only tests with chainsaw (#8943) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-11-19 01:30:42 +00:00
Charles-Edouard Brétéché
dcea5b084d
chore: install chainsaw with gh action (#8948) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-11-18 23:20:46 +00:00
dependabot[bot]
b06ebaf946
chore(deps): bump sigstore/scaffolding (#8935) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 55c9f48de0c1c77f08b1d14a8c340195599982f6 to 126e381beb1580df23067f9f49854293d04895ee.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](55c9f48de0...126e381beb)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-17 09:56:30 +00:00
dependabot[bot]
5fb362128b
chore(deps): bump sigstore/scaffolding (#8900) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 46eb35c1c415d976c7f9d3ee4c936e65c35e8e3e to 55c9f48de0c1c77f08b1d14a8c340195599982f6.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](46eb35c1c4...55c9f48de0)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-11-15 09:34:46 +00:00
shuting
5bd3faca97
chore (deps): bump a couple of deps (#8867) 
* bump github.com/distribution/distribution from 2.8.2+incompatible to 2.8.3+incompatible

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* bump sigs.k8s.io/kubectl-validate from 0.0.1 to 0.0.2

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* bump aquasecurity/trivy-action from 0.13.1 to 0.14.0

Signed-off-by: ShutingZhao <shuting@nirmata.com>

* bump sigstore/scaffolding from 838c26c783a08cf497dfff29d95ca90c6eeba3df to 46eb35c1c415d976c7f9d3ee4c936e65c35e8e3e

Signed-off-by: ShutingZhao <shuting@nirmata.com>

---------

Signed-off-by: ShutingZhao <shuting@nirmata.com>
 2023-11-09 16:25:15 +05:30
dependabot[bot]
12806bb0c7
chore(deps): bump sigstore/cosign-installer from 3.1.2 to 3.2.0 (#8850) 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.1.2 to 3.2.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](11086d2504...1fc5bd396d)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-08 14:06:21 +00:00
dependabot[bot]
41329c5bf6
chore(deps): bump sigstore/scaffolding (#8834) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 9eb31e2f96b290a7c13ef653767c60dd4bc1f481 to 838c26c783a08cf497dfff29d95ca90c6eeba3df.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](9eb31e2f96...838c26c783)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-06 12:51:37 +00:00
Charles-Edouard Brétéché
af14780f5c
chore: run tests with chainsaw (#8762) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-10-27 16:33:58 +00:00
dependabot[bot]
9b83fc3b00
chore(deps): bump sigstore/scaffolding (#8743) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from ef44f1a1b8bb27040426d3e0538236df2c3deaa7 to 9eb31e2f96b290a7c13ef653767c60dd4bc1f481.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](ef44f1a1b8...9eb31e2f96)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jim Bugwadia <jim@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jim Bugwadia <jim@nirmata.com>
 2023-10-27 04:03:24 +00:00
dependabot[bot]
8ddad67d33
chore(deps): bump sigstore/scaffolding (#8730) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from d120ad89e1f5c9d4a0bbd92959c6874be2a2131d to ef44f1a1b8bb27040426d3e0538236df2c3deaa7.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](d120ad89e1...ef44f1a1b8)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: shuting <shuting@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-10-25 16:03:29 +00:00
dependabot[bot]
865d6e56ad
chore(deps): bump actions/checkout from 4.1.0 to 4.1.1 (#8680) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8ade135a41...b4ffde65f4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-25 04:29:31 +00:00
Vishal Choudhary
53eab3d777
fix: use correct k8s version in custom sigstore tuf kuttl test (#8707) 
Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
 2023-10-20 10:30:02 +00:00
dependabot[bot]
18ab8c0aeb
chore(deps): bump sigstore/scaffolding (#8669) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 61f0091875fe5ec9cc90ef95adf7463146f38773 to d120ad89e1f5c9d4a0bbd92959c6874be2a2131d.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](61f0091875...d120ad89e1)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-19 09:09:02 +00:00
dependabot[bot]
ccbd1f0332
chore(deps): bump sigstore/scaffolding (#8628) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from d21c412f3c2f95421413f43741c2e62c19241dfe to 61f0091875fe5ec9cc90ef95adf7463146f38773.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](d21c412f3c...61f0091875)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-17 08:46:23 +00:00
Charles-Edouard Brétéché
20655f5af4
fix: cache error in gh workflows (#8518) 
* fix: cache error in gh workflows

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* setup caches

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-09-27 08:24:27 +00:00
dependabot[bot]
45a45b6c46
chore(deps): bump sigstore/scaffolding (#8522) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from d5eada0a29719b385d26831ead049f188bbfd824 to d21c412f3c2f95421413f43741c2e62c19241dfe.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](d5eada0a29...d21c412f3c)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-25 08:50:44 +00:00
dependabot[bot]
313c5df2bb
chore(deps): bump actions/checkout from 4.0.0 to 4.1.0 (#8523) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](3df4ab11eb...8ade135a41)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-25 07:39:53 +00:00
dependabot[bot]
a043325237
chore(deps): bump sigstore/scaffolding (#8505) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from b52f64ebe86d2d081b753d7d8549e0b668dcabb7 to d5eada0a29719b385d26831ead049f188bbfd824.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](b52f64ebe8...d5eada0a29)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-22 07:30:38 +00:00
Charles-Edouard Brétéché
69441c6d0f
chore: add a required job to simplify branch protection (#8464) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-09-20 11:19:35 +00:00
Charles-Edouard Brétéché
4f0e378a34
fix: custom-sigstore conformance job (#8459) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-09-20 09:12:02 +00:00
dependabot[bot]
12d61720b5
chore(deps): bump sigstore/scaffolding (#8448) 
Bumps [sigstore/scaffolding](https://github.com/sigstore/scaffolding) from 9fb4937ae18ed8456d725e99cb2871d309673022 to b52f64ebe86d2d081b753d7d8549e0b668dcabb7.
- [Release notes](https://github.com/sigstore/scaffolding/releases)
- [Changelog](https://github.com/sigstore/scaffolding/blob/main/release.md)
- [Commits](9fb4937ae1...b52f64ebe8)

---
updated-dependencies:
- dependency-name: sigstore/scaffolding
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-19 07:29:27 +00:00
Vishal Choudhary
e2469415b7
feat: add support for custom sigstore using TUF (#8385) 
* feat; add support for custom sigstore using TUF

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: add kuttl test

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: add commit hash

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: add kyverno.yaml

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update kyverno deployment

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update ordering

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update deployment

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update create image step

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: remove wait step

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: install crane

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: set sha on install crane

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: add cosign installer

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update custom deployment

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: helm chart linting

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update Chart.yaml

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* fix: helm values liniting error

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: remove step

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: kind-deploy-kyverno

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: create configmap in kyverno namespace

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update policy

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: create kyverno ns

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: use envfrom

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* fix: indentation

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update tuf root

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: add sigstore volume

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: nit

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: remove tuf root

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: use default tuf instead :(

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update Create kind cluster

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: remove root

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update impl

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: nit

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: use custom test

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: remove force

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: cosign initialize

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: add yes flag

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* update manifest

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: move tuf to features

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: update comments

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* chore: helmchart generate

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: trailing white space

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: remove old fields

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* feat: decouple env config map from tuf

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* change the way we pass flags

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix: re add envConfigMap

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>

* fix env vars

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* remove envConfigMap

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-09-18 13:16:08 +00:00
Charles-Edouard Brétéché
cc34e01d43
chore: compress cli test files by default (#8345) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-09-12 08:08:17 +00:00
Charles-Edouard Brétéché
103ef137a3
chore: validate test files are up to date (#8342) 
* chore: validate test files are up to date

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* makefile

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* codegen

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-09-12 12:53:37 +08:00
dependabot[bot]
2cc0f9ddd4
chore(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 (#8303) 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](0b7f8abb15...a8a3f3ad30)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-07 10:05:24 +00:00
Mariam Fahmy
29bb18d633
chore: remove validating admission policy support from v1.26 (#8294) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-09-07 07:50:56 +00:00
Mariam Fahmy
bbd137db24
feat: add kuttl tests for validating admission policy backgroundscan reports (#8292) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-09-07 02:22:12 +00:00
Mariam Fahmy
c6e7ec2172
fix: add generate VAPs test suite to v1.28 (#8287) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-09-06 20:28:21 +08:00
dependabot[bot]
7a3a3194eb
chore(deps): bump actions/checkout from 3.6.0 to 4.0.0 (#8262) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](f43a0e5ff2...3df4ab11eb)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
 2023-09-05 09:27:02 +00:00
Charles-Edouard Brétéché
cea61db1d9
chore: build cli only once for conformance tests (#8210) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-09-01 10:21:35 +00:00
dependabot[bot]
ef952146f7
chore(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#8204) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.5.3...f43a0e5ff2bd294095638e18286ca9a3d1956744)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-01 09:21:45 +02:00
Charles-Edouard Brétéché
f3ad487bf7
chore: monitor helm secret size (#8195) 
* chore: monitor helm secret size

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* below case

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* Update .github/workflows/conformance.yaml

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* Update .github/workflows/conformance.yaml

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* Update .github/workflows/conformance.yaml

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* Update .github/workflows/conformance.yaml

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-31 13:19:23 +00:00
Mariam Fahmy
c583b64120
feat: generate validating admission policies and their bindings from Kyverno policies (#7840) 
* feat: generate validating admission policies and their bindings from Kyverno policies

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: add generate VAPs feature flag

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix: use container flags instead of feature flags

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix: limit VAP generation to cluster policies

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: add policy checks for generating VAPs

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* chore: rename package

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: translate match/exclude resources in Kyverno policies to their alternatives in validating admission policies

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: add vap info in kyverno policy status

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix: delete the translation of

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: add kuttl tests

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: add generateValidatingAdmissionPolicy feature flag in the helm chart

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* chore: update codegen

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* feat: add validating admission policy kuttl tests in the workflow

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix: check K8s server version

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix lint issue

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* fix: remove the kind config of VAPs

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

---------

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
 2023-08-31 10:25:21 +00:00
Charles-Edouard Brétéché
7de8503e87
chore: increase setup-build-env timeout (#8187) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-30 20:44:51 +00:00
Charles-Edouard Brétéché
f9cd20be91
fix: build cli in conformance tests (#8143) 
* fix: build cli in conformance tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-29 09:58:27 +00:00
Charles-Edouard Brétéché
147e3197c4
chore: add a timeout to setup-build-env action (#8153) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-29 08:39:43 +00:00
dependabot[bot]
2fefc825ed
chore(deps): bump kyverno/action-install-cli from 0.1.0 to 0.2.0 (#8133) 
Bumps [kyverno/action-install-cli](https://github.com/kyverno/action-install-cli) from 0.1.0 to 0.2.0.
- [Release notes](https://github.com/kyverno/action-install-cli/releases)
- [Commits](a3d781ac3f...fcee92fca5)

---
updated-dependencies:
- dependency-name: kyverno/action-install-cli
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-28 07:35:53 +00:00
dependabot[bot]
410c02b36f
chore(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#8119) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](c85c95e3d7...f43a0e5ff2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-08-25 07:17:21 +00:00
Alok N
cf5ec3df58
feat: use kyverno/action-install-cli action for conformance workflow (#8072) 
* feat: use kyverno/action-install-cli for conformance workflow

* Update .github/workflows/conformance.yaml

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-21 22:26:37 +02:00
Charles-Edouard Brétéché
ce4beb0e92
feat: support wildcard in subjects statements (#8068) 
* feat: support wildcard in subjects statements

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* sa tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* more tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* more tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-20 20:46:42 -04:00
Charles-Edouard Brétéché
1abf2cb51a
chore: remove tests for k8s v1.24 (#8043) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-17 12:05:35 +08:00
Charles-Edouard Brétéché
ce34f8e2a6
chore: add k8s 1.28 testing (#8036) 
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-16 08:49:45 +00:00
Ved Ratan
9f2cc6c99c
feat: add ttl controller (#7821) 
* added the ttl controller

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fixed label and vars

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* added logger

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* applied fixes

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* removed comments

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* more lint fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* applied changes

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* minor fixes

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix logger, separate parse logic

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* added tests

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* added kuttl tests, validation utilities

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* commented code

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* renamed tests

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix test

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* created log.go

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix log.go

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* added README.md refactor code

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* added validation webhook

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* label-validation fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* added flag, updated verbs

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* updated verbs

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* updated helm chart

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* test fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* linter

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* imporoved webhook validation

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* linter fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* lint fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* fix codegen

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* webhook names and path constants

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* constant label

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix label selector

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl test fix

Signed-off-by: Ved Ratan <vedratan8@gmail.com>

* helm docs

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix controller logger

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix: manager logger

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix failure policy

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl tests

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* move kuttl tests in separate job

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* remove rbac steps

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* remove configmaps from core cluster role

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix logger

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* rename flag

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* kuttl

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix error

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix linter

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

---------

Signed-off-by: Ved Ratan <vedratan8@gmail.com>
Signed-off-by: Ved Ratan <82467006+VedRatan@users.noreply.github.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
 2023-08-02 16:47:40 +02:00
Vishal Choudhary
c38a014468
test: add tests for ghcr private repository (#7791) 2023-07-31 11:12:24 +00:00
Pradyot Ranjan
e1d10aab2c
Adding other folder's subfolders to workflows/conformance.yaml's tests array (#7927) 
Signed-off-by: Pradyot Ranjan <99216956+pradyotRanjan@users.noreply.github.com>
Co-authored-by: Pradyot Ranjan <99216956+pradyotRanjan@users.noreply.github.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Chip Zoller <chipzoller@gmail.com>
 2023-07-31 10:05:23 +02:00