kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-31 03:45:17 +00:00

History

Gurmannat Sohal 6902a2b092 Unit tests for Pod Security Admission Integrations (#8585 ) * feat: enable field-restricted exclusions using the psa Signed-off-by: Liang Deng <283304489@qq.com> * fix ci error Signed-off-by: Liang Deng <283304489@qq.com> * fix ci error Signed-off-by: Liang Deng <283304489@qq.com> * initial unit tests * Add all remaining unit tests Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * fine grain unit tests by adding fields and values * add detailed pod level exclusion and related tests * add tests for init & ephemeral containers * add kuttl tests for the new advanced support * add kuttl tests for the new advanced support * add readme for kuttl tests * add replacement in go.mod * resolving CI errors Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * fix ci errors Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * fix ci errors Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * updating pod-security-admissio Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * resolving null pointer panic Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * resolved conformance error Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * chainsaw Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * chainsaw Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * remove duplication Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * fix linting Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * remove over computation Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * added field checks, pss skip condition Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * correcting chainsaw tests Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * merge branch 'main' into unit-tests Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> * fix builds Signed-off-by: ShutingZhao <shuting@nirmata.com> --------- Signed-off-by: Liang Deng <283304489@qq.com> Signed-off-by: Gurmannat Sohal <iamgurmannatsohal@gmail.com> Signed-off-by: shuting <shuting@nirmata.com> Signed-off-by: Gurmannat Sohal <95538438+itsgurmannatsohal@users.noreply.github.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: ShutingZhao <shuting@nirmata.com> Co-authored-by: Liang Deng <283304489@qq.com> Co-authored-by: shuting <shuting@nirmata.com> Co-authored-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com>		2023-12-26 22:28:08 +08:00
..
adapters	chore: use sigstore/cosign 2.2.2 on main (#9179 )	2023-12-18 06:41:26 +00:00
anchor	fix: update KeysAreMissing() to ignore negations in resource (#8953 )	2023-11-22 09:06:40 +00:00
api	fix: set v2beta1 of exceptions the storage version (#9254 )	2023-12-22 10:13:58 +00:00
apicall	fix: use http.MaxBytesReader instead of content length for API Calls (#9265 )	2023-12-22 17:05:52 +00:00
context	bug: making `images` consistent with `image` (#9147 )	2023-12-22 11:15:50 +00:00
factories	feat: add checks for max response size in API Call (#8957 )	2023-11-21 10:01:51 +00:00
handlers	Unit tests for Pod Security Admission Integrations (#8585 )	2023-12-26 22:28:08 +08:00
internal	chore: move utils/wildcard in ext (#8772 )	2023-10-29 23:59:53 +00:00
jmespath	create interpreter once and reuse across searches (#8299 )	2023-11-30 16:59:11 +01:00
jsonutils	optimize JSON context processing using in-memory maps (#8322 )	2023-12-04 07:35:36 +00:00
mutate	refactor: mutate checks (#9255 )	2023-12-22 15:07:17 +02:00
operator	fix: change inrange operator regexs (#5962 )	2023-01-16 16:23:36 +01:00
pattern	chore: move utils/wildcard in ext (#8772 )	2023-10-29 23:59:53 +00:00
policycontext	fix: allow changes to preexisting resource in violation of a policy in Enforce (#9027 )	2023-12-12 09:17:53 +00:00
resources	refactor: introduce engine handler (#6680 )	2023-03-24 16:24:00 +00:00
utils	fix: set v2beta1 of exceptions the storage version (#9254 )	2023-12-22 10:13:58 +00:00
validate	update k8s.gcr.io to registry.k8s.io (#6340 )	2023-02-20 13:40:12 +00:00
variables	optimize JSON context processing using in-memory maps (#8322 )	2023-12-04 07:35:36 +00:00
wildcards	chore: move utils/wildcard in ext (#8772 )	2023-10-29 23:59:53 +00:00
attestation_test.go	Conditions message (#7113 )	2023-05-08 15:34:23 +08:00
background.go	refactor: mutate checks (#9255 )	2023-12-22 15:07:17 +02:00
engine.go	feat: compute policy exceptions as a part of the rule execution (#8713 )	2023-11-13 15:43:25 +00:00
exceptions.go	fix: set v2beta1 of exceptions the storage version (#9254 )	2023-12-22 10:13:58 +00:00
forceMutate.go	refactor: remove json patches from engine response (#7449 )	2023-06-07 17:45:11 +08:00
forceMutate_test.go	refactor: introduce jmespath interface (#6882 )	2023-04-13 11:29:40 +00:00
fuzz_test.go	Refactor fuzzing utils and add 3 fuzzers (#8555 )	2023-10-05 16:33:26 +00:00
generation.go	refactor: don't process context/preconditions in invokeHandler (#6751 )	2023-04-03 12:57:48 +08:00
image_verify.go	feat: add basic structure for image verify cache (#7890 )	2023-08-06 21:54:52 +02:00
image_verify_test.go	feat: improve assertion and error messages (#8489 )	2023-09-21 12:39:54 +00:00
metrics.go	Add an abstraction interface for Kyverno policies and validating admission policies (#8016 )	2023-08-15 12:41:43 -07:00
mutation.go	refactor: mutate checks (#9255 )	2023-12-22 15:07:17 +02:00
mutation_test.go	feat: add basic structure for image verify cache (#7890 )	2023-08-06 21:54:52 +02:00
policy_context.go	refactor: hide json context from caller (#7139 )	2023-05-12 14:14:48 +00:00
validation.go	feat: support cel expression in validate rules (#7070 )	2023-05-31 14:30:55 -07:00
validation_test.go	optimize JSON context processing using in-memory maps (#8322 )	2023-12-04 07:35:36 +00:00