kubescape

mirror of https://github.com/kubescape/kubescape.git synced 2026-02-14 18:09:55 +00:00

Author	SHA1	Message	Date
Matthias Bertschy	31552b6171	upgrading github.com/docker/buildx to v0.22.0 Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-03-20 13:35:30 +01:00
Matthias Bertschy	f13ded61bf	Bump github.com/containerd/containerd to 1.7.27 Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-03-20 13:05:17 +01:00
dependabot[bot]	2b28911db0	Bump github.com/go-jose/go-jose/v3 from 3.0.3 to 3.0.4 Bumps [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose) from 3.0.3 to 3.0.4. - [Release notes](https://github.com/go-jose/go-jose/releases) - [Changelog](https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md) - [Commits](https://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.4) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-03-04 09:28:14 +01:00
Amir Malka	667e5e8258	fix score calculation for framework with all controls in status irrelevant (#1802 ) Signed-off-by: Amir Malka <amirm@armosec.io>	2025-03-03 15:20:14 +02:00
dependabot[bot]	2458f2ceb9	Bump github.com/go-jose/go-jose/v4 from 4.0.2 to 4.0.5 Bumps [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) from 4.0.2 to 4.0.5. - [Release notes](https://github.com/go-jose/go-jose/releases) - [Changelog](https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md) - [Commits](https://github.com/go-jose/go-jose/compare/v4.0.2...v4.0.5) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2025-02-25 07:58:42 +01:00
Amir Malka	f57948ad97	deprecate control name in exception policies (#1795 ) * deprecate control name in posture exception policies Signed-off-by: Amir Malka <amirm@armosec.io> * deprecate control name in posture exception policies Signed-off-by: Amir Malka <amirm@armosec.io> * deprecate control name in posture exception policies Signed-off-by: Amir Malka <amirm@armosec.io> * deprecate control name in posture exception policies Signed-off-by: Amir Malka <amirm@armosec.io> --------- Signed-off-by: Amir Malka <amirm@armosec.io>	2025-02-20 10:27:27 +02:00
Matthias Bertschy	ae37fdc295	fix go tidy Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-02-14 16:19:42 +01:00
Ruslan Semagin	fe7dad4560	Refactor: propagate context from main to avoid redundant context creation - Introduced a single context in main() to handle interrupt signals (os.Interrupt, syscall.SIGTERM). - Removed repetitive context creation in the program by reusing the propagated context. - Improved code readability and maintainability by centralizing context management. - Ensured consistent handling of graceful shutdown across the program. Signed-off-by: Ruslan Semagin <pixel.365.24@gmail.com>	2025-02-11 19:52:48 +03:00
Matthias Bertschy	815c87b532	implement reviews from DW Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-02-07 12:16:35 +01:00
Sanskarzz	82120f9d31	added support for exception rules Signed-off-by: Sanskarzz <sanskar.gur@gmail.com>	2025-02-07 12:15:56 +01:00
Fernando-hub527	13cf34bffd	refactor: update Maroto version to v2 Signed-off-by: Fernando-hub527 <fernandocoelhosaraivanando@gmail.com>	2025-02-05 21:31:22 -03:00
Matthias Bertschy	e16c4cc9b4	fix go.mod for httphandler Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-01-16 15:20:58 +01:00
Amir Malka	d966b0acbc	update opa-utils Signed-off-by: Amir Malka <amirm@armosec.io>	2025-01-09 16:35:53 +02:00
Amir Malka	14ffe35437	add trigger by indication in posture report Signed-off-by: Amir Malka <amirm@armosec.io>	2025-01-09 16:13:29 +02:00
Matthias Bertschy	70a9380966	fix go imports Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-01-09 12:14:56 +01:00
Matthias Bertschy	f706d126f5	fix error in log about failed resource update Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-01-09 11:52:34 +01:00
Matthias Bertschy	600f19406e	enable offline mode with env KS_OFFLINE Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-01-09 10:33:19 +01:00
Matthias Bertschy	5e0b25b04a	update go-git Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2025-01-09 09:42:36 +01:00
Matthias Bertschy	1ed1bb11f2	bump vulnerable deps Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-12-20 16:31:50 +01:00
dependabot[bot]	d6030a9c03	Bump golang.org/x/crypto from 0.27.0 to 0.31.0 in /httphandler Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.27.0 to 0.31.0. - [Commits](https://github.com/golang/crypto/compare/v0.27.0...v0.31.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-12-13 14:18:38 +00:00
Ben	4f3ef49f99	Implementing capability to print out the "print" statements of the rego Signed-off-by: Ben <ben@armosec.io>	2024-11-20 00:10:18 +02:00
Matthias Bertschy	5b9c6491de	fix mod tidy Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-11-18 10:34:28 +01:00
Matthias Bertschy	90c359533f	override docker/docker upgrade Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-11-12 14:46:29 +01:00
dependabot[bot]	c4935671fe	Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 in /httphandler Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.5.0 to 4.5.1. - [Release notes](https://github.com/golang-jwt/jwt/releases) - [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md) - [Commits](https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1) --- updated-dependencies: - dependency-name: github.com/golang-jwt/jwt/v4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-11-12 10:32:57 +00:00
dependabot[bot]	12c6f34fe7	Bump github.com/containers/common from 0.59.0 to 0.60.4 in /httphandler Bumps [github.com/containers/common](https://github.com/containers/common) from 0.59.0 to 0.60.4. - [Release notes](https://github.com/containers/common/releases) - [Commits](https://github.com/containers/common/compare/v0.59.0...v0.60.4) --- updated-dependencies: - dependency-name: github.com/containers/common dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-10-03 05:21:42 +00:00
Matthias Bertschy	f64d5a03af	bump opa and go-logger Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-09-30 17:40:38 +02:00
Matthias Bertschy	b7c91c238d	force grpc Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-09-04 21:57:00 +02:00
dependabot[bot]	729efcb8c3	Bump github.com/docker/docker in /httphandler Bumps [github.com/docker/docker](https://github.com/docker/docker) from 26.1.4+incompatible to 26.1.5+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](https://github.com/docker/docker/compare/v26.1.4...v26.1.5) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-08-21 10:24:57 +00:00
dependabot[bot]	eea4cc0b49	Bump github.com/docker/docker in /httphandler Bumps [github.com/docker/docker](https://github.com/docker/docker) from 26.1.0+incompatible to 26.1.4+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](https://github.com/docker/docker/compare/v26.1.0...v26.1.4) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-08-06 19:43:32 +00:00
ttimonen	7507f58306	refactor(handler) Simplify the scan http handler concurrency. In particular, Replace scanResponseChan struct with a reply channel in req. This removes one chokepoint with tracking a map of channel with a mutex wrapping by not sharing data across different requests and makes it easier to reason about the correctness of the behavior. Other changes are mostly cosmetic to group your operations related to the primitives you are operating on, reducing the average lifetime of a local variable (matters mostly for humans; compilers are very good at this nowadays). Also this is net benefical by reducing LOCs by 45. Signed-off-by: ttimonen <toni.timonen@iki.fi>	2024-07-07 22:44:35 +00:00
ttimonen	48ad56a2ef	Implement unit-test for scan handler. It plays wtih channels and goroutines, so having it behave correctly is not completely trivial and test worthy. Signed-off-by: ttimonen <toni.timonen@iki.fi>	2024-07-07 22:40:58 +00:00
Matthias Bertschy	2d77ea7b62	use pager.EachListItem to filter parented resources Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-07-03 16:41:12 +02:00
dependabot[bot]	0688e3620b	Bump github.com/gorilla/schema from 1.2.0 to 1.4.1 in /httphandler Bumps [github.com/gorilla/schema](https://github.com/gorilla/schema) from 1.2.0 to 1.4.1. - [Release notes](https://github.com/gorilla/schema/releases) - [Commits](https://github.com/gorilla/schema/compare/v1.2.0...v1.4.1) --- updated-dependencies: - dependency-name: github.com/gorilla/schema dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2024-07-02 07:38:23 +00:00
dependabot[bot]	d6dc8f219c	Bump github.com/hashicorp/go-retryablehttp in /httphandler Bumps [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp) from 0.7.5 to 0.7.7. - [Changelog](https://github.com/hashicorp/go-retryablehttp/blob/main/CHANGELOG.md) - [Commits](https://github.com/hashicorp/go-retryablehttp/compare/v0.7.5...v0.7.7) --- updated-dependencies: - dependency-name: github.com/hashicorp/go-retryablehttp dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-25 07:46:08 +00:00
dependabot[bot]	51a9707d24	Bump go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace](https://github.com/open-telemetry/opentelemetry-go-contrib) from 0.40.0 to 0.44.0. - [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.40.0...zpages/v0.44.0) --- updated-dependencies: - dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-25 06:02:15 +00:00
Anubhav Gupta	2bbedc99dd	Merge branch 'master' of ssh://github.com/kubescape/kubescape into copa-grype	2024-06-22 08:59:18 +05:30
dependabot[bot]	a7127c0b27	Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity in /httphandler Bumps [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) from 1.5.1 to 1.6.0. - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md) - [Commits](https://github.com/Azure/azure-sdk-for-go/compare/sdk/internal/v1.5.1...sdk/azcore/v1.6.0) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-17 11:06:59 +00:00
dependabot[bot]	137fe81701	Bump github.com/aquasecurity/trivy from 0.44.1 to 0.51.2 in /httphandler Bumps [github.com/aquasecurity/trivy](https://github.com/aquasecurity/trivy) from 0.44.1 to 0.51.2. - [Release notes](https://github.com/aquasecurity/trivy/releases) - [Changelog](https://github.com/aquasecurity/trivy/blob/main/goreleaser.yml) - [Commits](https://github.com/aquasecurity/trivy/compare/v0.44.1...v0.51.2) --- updated-dependencies: - dependency-name: github.com/aquasecurity/trivy dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-04 21:16:10 +00:00
Matthias Bertschy	f293606f81	Merge pull request #1682 from slashben/vap-helper-features Adding two helper functions for VAP and CEL admission library	2024-06-04 23:12:05 +02:00
Matthias Bertschy	d6d2315ad0	fixes for vap helper Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-06-04 13:41:00 +02:00
David Wertenteil	0ee98351c0	fix scanning unsupported clouds Signed-off-by: David Wertenteil <dwertent@armosec.io>	2024-05-26 15:45:19 +03:00
Anubhav Gupta	160709eabf	Merge branch 'master' of ssh://github.com/kubescape/kubescape into copa-grype	2024-05-17 13:37:25 +05:30
David Wertenteil	da6faa3df0	Merge pull request #1680 from kubescape/fix/repo-scanning Fix scanning repo	2024-05-07 09:16:20 +03:00
David Wertenteil	3cbd2c458d	fix scanning repo Signed-off-by: David Wertenteil <dwertent@armosec.io>	2024-05-06 16:22:38 +03:00
dependabot[bot]	834623762d	Bump github.com/sigstore/cosign/v2 from 2.2.3 to 2.2.4 in /httphandler Bumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.2.3 to 2.2.4. - [Release notes](https://github.com/sigstore/cosign/releases) - [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md) - [Commits](https://github.com/sigstore/cosign/compare/v2.2.3...v2.2.4) --- updated-dependencies: - dependency-name: github.com/sigstore/cosign/v2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-06 05:40:44 +00:00
Matthias Bertschy	4b5c2dfed4	fix go.mod for httphandler Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-04-30 09:57:29 +02:00
David Wertenteil	2f208c0866	Merge pull request #1668 from kubescape/bump bump opa-utils	2024-04-30 08:43:19 +03:00
Matthias Bertschy	9521cf1974	bump syft version Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-04-29 14:00:18 +02:00
Matthias Bertschy	8ec56976c5	bump opa-utils Signed-off-by: Matthias Bertschy <matthias.bertschy@gmail.com>	2024-04-25 18:48:40 +02:00
Anubhav Gupta	6ee6a78a75	Merge branch 'master' of https://github.com/kubescape/kubescape into copa-grype	2024-04-09 21:37:46 +05:30

1 2 3 4 5 ...

355 Commits