mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-04-15 00:36:28 +00:00
Code Activity
kyverno/pkg/imageverification/imageverifierfunctions/utils.go
Vishal Choudhary f68706cab2
feat: add cel library for image verification (#12233) 
* feat: concurrently add images to context

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* feat: add cel library for image verification

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: add tests

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: ci

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: type conv

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

* fix: linter

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>

---------

Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com>
Co-authored-by: shuting <shuting@nirmata.com>
2025-02-26 00:56:17 +00:00

61 lines
1.3 KiB
Go
Raw Blame History

package imageverifierfunctions
import (
"github.com/kyverno/kyverno/api/policies.kyverno.io/v1alpha1"
"github.com/kyverno/kyverno/pkg/imageverification/imagedataloader"
)
func attestorMap(ivpol *v1alpha1.ImageVerificationPolicy) map[string]v1alpha1.Attestor {
if ivpol == nil {
return nil
}
return arrToMap(ivpol.Spec.Attestors)
}
func attestationMap(ivpol *v1alpha1.ImageVerificationPolicy) map[string]v1alpha1.Attestation {
if ivpol == nil {
return nil
}
return arrToMap(ivpol.Spec.Attestations)
}
type ARR_TYPE interface {
GetKey() string
}
func arrToMap[T ARR_TYPE](arr []T) map[string]T {
m := make(map[string]T)
for _, v := range arr {
m[v.GetKey()] = v
}
return m
}
func getRemoteOptsFromPolicy(creds *v1alpha1.Credentials) []imagedataloader.Option {
if creds == nil {
return nil
}
opts := make([]imagedataloader.Option, 0)
if creds.AllowInsecureRegistry {
opts = append(opts, imagedataloader.WithInsecure(creds.AllowInsecureRegistry))
}
if len(creds.Providers) != 0 {
providers := make([]string, 0, len(creds.Providers))
for _, v := range creds.Providers {
providers = append(providers, string(v))
}
opts = append(opts, imagedataloader.WithCredentialProviders(providers...))
}
if len(creds.Secrets) != 0 {
opts = append(opts, imagedataloader.WithPullSecret(creds.Secrets))
}
return opts
}
View git blame Copy permalink