mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00
Code Activity
kyverno/pkg
History
Vishal Choudhary 221c559247
feat: cosign verifier for new image verifier crd (#12196) 
* feat: cosign verifier for new image verifier crd

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/gcp (#12170)

Bumps [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore) from 1.8.12 to 1.8.14.
- [Release notes](https://github.com/sigstore/sigstore/releases)
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.12...v1.8.14)

---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>

* feat: add MutatingPolicies CRD (#12150)

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>

* README: fix markdown syntax (#12176)

Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
Co-authored-by: shuting <shuting@nirmata.com>

* chore(deps): bump sigs.k8s.io/controller-runtime from 0.20.1 to 0.20.2 (#12180)

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.20.1 to 0.20.2.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.20.1...v0.20.2)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore: cel policies nits (#12184)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* use serviceAccountName instead of deprecated serviceAccount (#12158)

Signed-off-by: Francesco Ilario <filario@redhat.com>
Co-authored-by: shuting <shuting@nirmata.com>

* chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/azure (#12179)

Bumps [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore) from 1.8.12 to 1.8.14.
- [Release notes](https://github.com/sigstore/sigstore/releases)
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.12...v1.8.14)

---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* chore(deps): bump github.com/awslabs/amazon-ecr-credential-helper/ecr-login (#12178)

Bumps [github.com/awslabs/amazon-ecr-credential-helper/ecr-login](https://github.com/awslabs/amazon-ecr-credential-helper) from 0.0.0-20241227172826-c97b94eac159 to 0.9.1.
- [Release notes](https://github.com/awslabs/amazon-ecr-credential-helper/releases)
- [Changelog](https://github.com/awslabs/amazon-ecr-credential-helper/blob/main/CHANGELOG.md)
- [Commits](https://github.com/awslabs/amazon-ecr-credential-helper/commits/v0.9.1)

---
updated-dependencies:
- dependency-name: github.com/awslabs/amazon-ecr-credential-helper/ecr-login
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* feat: add notary verifier with tsa support (#12160)

* feat: add notary repository

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: add notary verifier

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: more tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: more tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: ci

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: update types

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>

* fix: codegen (#12195)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* feat(gctx): add jmespath caching through projections (#11833)

feat(gctx): move ready check to runtime

Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>

* fix: publish codecov reports (#12197)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* chore: format conformance.yaml workflow file (#12194)

Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* fix: add result count for VPs in the CLI (#12193)

Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>

* feat: implement functions

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com>
Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Signed-off-by: Francesco Ilario <filario@redhat.com>
Signed-off-by: Khaled Emara <khaled.emara@nirmata.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: shuting <shuting@nirmata.com>
Co-authored-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
Co-authored-by: Koichi Shiraishi <zchee.io@gmail.com>
Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>
Co-authored-by: Francesco Ilario <filario@redhat.com>
Co-authored-by: Khaled Emara <khaled.emara@nirmata.com>
2025-02-21 09:03:53 +08:00
..
admissionpolicy feat: implement background scan (#12101) 2025-02-06 05:49:41 +02:00
auth structuring log (#12111) 2025-02-13 15:02:02 +00:00
autogen feat: use v1 of ValidatingAdmissionPolicies (#12050) 2025-01-31 14:21:43 +00:00
background structuring log (#12111) 2025-02-13 15:02:02 +00:00
breaker Reports controller circuit breaker (#11329) 2024-10-11 07:34:41 +00:00
cel Validating policy audit annotations (#12115) 2025-02-19 13:10:01 +00:00
client feat(gctx): add jmespath caching through projections (#11833) 2025-02-18 15:51:14 +00:00
clients feat: add MutatingPolicies CRD (#12150) 2025-02-17 12:02:04 +00:00
config structuring log (#12111) 2025-02-13 15:02:02 +00:00
controllers feat: support celexceptions in the CLI apply command (#12182) 2025-02-19 08:38:44 +00:00
cosign fix: Allow images to be pulled from insecure registry when allowInsecureRegistry flag is set to true (#10934) (#11243) 2024-10-07 15:29:12 +00:00
engine feat: support celexceptions in the CLI apply command (#12182) 2025-02-19 08:38:44 +00:00
event structuring log (#12111) 2025-02-13 15:02:02 +00:00
exceptions chore: use v2 clients for policy exceptions (#10530) 2024-06-24 16:36:55 +00:00
globalcontext feat(gctx): add jmespath caching through projections (#11833) 2025-02-18 15:51:14 +00:00
imagedataloader feat: cosign verifier for new image verifier crd (#12196) 2025-02-21 09:03:53 +08:00
images fix: Allow images to be pulled from insecure registry when allowInsecureRegistry flag is set to true (#10934) (#11243) 2024-10-07 15:29:12 +00:00
imageverifiers feat: cosign verifier for new image verifier crd (#12196) 2025-02-21 09:03:53 +08:00
imageverifycache fix: properly use useCache field in image verification policies (#10709) 2024-08-19 14:26:07 +00:00
informers feat: delete webhook configurations after kyverno is uninstalled (#10782) 2024-09-04 10:59:59 +00:00
leaderelection structuring log (#12111) 2025-02-13 15:02:02 +00:00
logging chore(log): add caller (#10874) 2024-08-16 14:08:55 +00:00
metrics chore: pin go.opentelemetry.io/otel/semconv/v1.24.0 (#11256) 2024-09-27 16:39:55 +05:30
notary feat: add notary verifier with tsa support (#12160) 2025-02-18 07:23:39 +00:00
policy structuring log (#12111) 2025-02-13 15:02:02 +00:00
policycache structuring log (#12111) 2025-02-13 15:02:02 +00:00
profiling structuring log (#12111) 2025-02-13 15:02:02 +00:00
pss fix: concurrent map read and map write when applying a validate.podSecurity rule (#11012) 2024-09-04 17:05:10 +00:00
registryclient feat: create image data loader (#12036) 2025-02-03 13:42:40 +00:00
tls fix: Certificate Renewer Does Not Remove Old CA Certificate From Secret (#12073) 2025-02-13 14:25:42 +00:00
toggle toggle for autogen version (#11535) 2024-11-08 11:12:24 +00:00
tracing chore: pin go.opentelemetry.io/otel/semconv/v1.24.0 (#11256) 2024-09-27 16:39:55 +05:30
userinfo refactor: reduce userinfos deps and add unit tests (#6524) 2023-03-10 09:09:19 +00:00
utils feat: configure admission and background flag for ValidatingPolicies (#12153) 2025-02-13 17:24:45 +00:00
validation feat(gctx): add jmespath caching through projections (#11833) 2025-02-18 15:51:14 +00:00
version structuring log (#12111) 2025-02-13 15:02:02 +00:00
webhooks Validating policy audit annotations (#12115) 2025-02-19 13:10:01 +00:00