Merge pull request #84 from stefanprodan/release-4.0.4

Release v4.0.4
2026-04-08 03:56:52 +00:00 · 2020-06-12 13:46:58 +03:00 · 2020-06-12 13:40:07 +03:00 · 2020-06-12 13:33:31 +03:00 · 2020-06-12 13:00:54 +03:00 · 2020-06-06 13:31:28 +03:00
13 changed files with 48 additions and 10 deletions
--- a/.github/workflows/cve-scan.yml
+++ b/.github/workflows/cve-scan.yml
@@ -0,0 +1,23 @@
+name: cve-scan
+
+on:
+  push:
+    branches:
+      - 'master'
+
+jobs:
+  trivy:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+      - name: Build image
+        id: build
+        run: |
+          IMAGE=test/podinfo:${GITHUB_SHA}
+          docker build -t ${IMAGE} .
+          echo "::set-output name=image::$IMAGE"
+      - name: Scan image
+        uses: docker://docker.io/aquasec/trivy:latest
+        with:
+          args: --cache-dir /var/lib/trivy --no-progress --exit-code 1 --severity MEDIUM,HIGH,CRITICAL ${{ steps.build.outputs.image }}
--- a/README.md
+++ b/README.md
@@ -2,7 +2,7 @@

 [![e2e](https://github.com/stefanprodan/podinfo/workflows/e2e/badge.svg)](https://github.com/stefanprodan/podinfo/blob/master/.github/workflows/e2e.yml)
 [![test](https://github.com/stefanprodan/podinfo/workflows/test/badge.svg)](https://github.com/stefanprodan/podinfo/blob/master/.github/workflows/test.yml)
-[![release](https://github.com/stefanprodan/podinfo/workflows/release/badge.svg)](https://github.com/stefanprodan/podinfo/blob/master/.github/workflows/release.yml)
+[![cve-scan](https://github.com/stefanprodan/podinfo/workflows/cve-scan/badge.svg)](https://github.com/stefanprodan/podinfo/blob/master/.github/workflows/cve-scan.yml)
 [![Go Report Card](https://goreportcard.com/badge/github.com/stefanprodan/podinfo)](https://goreportcard.com/report/github.com/stefanprodan/podinfo)
 [![Docker Pulls](https://img.shields.io/docker/pulls/stefanprodan/podinfo)](https://hub.docker.com/r/stefanprodan/podinfo)

@@ -24,6 +24,7 @@ Specifications:
 * End-to-End testing with Kubernetes Kind and Helm
 * Kustomize testing with GitHub Actions and Open Policy Agent
 * Multi-arch container image with Docker buildx and Github Actions
+* CVE scanning with trivy

 Web API:

--- a/charts/podinfo/Chart.yaml
+++ b/charts/podinfo/Chart.yaml
@@ -1,6 +1,6 @@
 apiVersion: v1
-version: 4.0.1
-appVersion: 4.0.1
+version: 4.0.4
+appVersion: 4.0.4
 name: podinfo
 engine: gotpl
 description: Podinfo Helm chart for Kubernetes
--- a/charts/podinfo/README.md
+++ b/charts/podinfo/README.md
@@ -80,6 +80,7 @@ Parameter | Default | Description
 `nodeSelector` | `{}` | Node labels for pod assignment
 `tolerations` | `[]` | List of node taints to tolerate
 `affinity` | `None` | Node/pod affinities
+`podAnnotations` | `{}` | Pod annotations

 Specify each parameter using the `--set key=value[,key=value]` argument to `helm install`. For example,

@@ -88,6 +89,13 @@ $ helm install my-release podinfo/podinfo \
  --set=serviceMonitor.enabled=true,serviceMonitor.interval=5s
 ```

+To add custom annotations you need to escape the annotation key string:
+
+```console
+$ helm upgrade -i my-release podinfo/podinfo \
+--set podAnnotations."appmesh\.k8s\.aws\/preview"=enabled
+```
+
 Alternatively, a YAML file that specifies the values for the above parameters can be provided while installing the chart. For example,

 ```console
--- a/charts/podinfo/templates/deployment.yaml
+++ b/charts/podinfo/templates/deployment.yaml
@@ -25,6 +25,9 @@ spec:
      annotations:
        prometheus.io/scrape: "true"
        prometheus.io/port: "{{ .Values.service.httpPort }}"
+        {{- range $key, $value := .Values.podAnnotations }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
    spec:
      terminationGracePeriodSeconds: 30
      {{- if .Values.serviceAccount.enabled }}
--- a/charts/podinfo/values.yaml
+++ b/charts/podinfo/values.yaml
@@ -24,7 +24,7 @@ h2c:

 image:
  repository: stefanprodan/podinfo
-  tag: 4.0.1
+  tag: 4.0.4
  pullPolicy: IfNotPresent

 service:
@@ -88,3 +88,4 @@ tolerations: []

 affinity: {}

+podAnnotations: {}
--- a/deploy/bases/backend/deployment.yaml
+++ b/deploy/bases/backend/deployment.yaml
@@ -23,7 +23,7 @@ spec:
    spec:
      containers:
      - name: backend
-        image: stefanprodan/podinfo:4.0.1
+        image: stefanprodan/podinfo:4.0.4
        imagePullPolicy: IfNotPresent
        ports:
        - name: http
--- a/deploy/bases/frontend/deployment.yaml
+++ b/deploy/bases/frontend/deployment.yaml
@@ -23,7 +23,7 @@ spec:
    spec:
      containers:
      - name: frontend
-        image: stefanprodan/podinfo:4.0.1
+        image: stefanprodan/podinfo:4.0.4
        imagePullPolicy: IfNotPresent
        ports:
        - name: http
--- a/deploy/webapp/backend/deployment.yaml
+++ b/deploy/webapp/backend/deployment.yaml
@@ -25,7 +25,7 @@ spec:
      serviceAccountName: webapp
      containers:
      - name: backend
-        image: stefanprodan/podinfo:4.0.1
+        image: stefanprodan/podinfo:4.0.4
        imagePullPolicy: IfNotPresent
        ports:
        - name: http
--- a/deploy/webapp/frontend/deployment.yaml
+++ b/deploy/webapp/frontend/deployment.yaml
@@ -25,7 +25,7 @@ spec:
      serviceAccountName: webapp
      containers:
      - name: frontend
-        image: stefanprodan/podinfo:4.0.1
+        image: stefanprodan/podinfo:4.0.4
        imagePullPolicy: IfNotPresent
        ports:
        - name: http
--- a/kustomize/deployment.yaml
+++ b/kustomize/deployment.yaml
@@ -23,7 +23,7 @@ spec:
    spec:
      containers:
      - name: podinfod
-        image: stefanprodan/podinfo:4.0.1
+        image: stefanprodan/podinfo:4.0.4
        imagePullPolicy: IfNotPresent
        ports:
        - name: http
--- a/pkg/grpc/server.go
+++ b/pkg/grpc/server.go
@@ -8,6 +8,7 @@ import (
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/health"
 	"google.golang.org/grpc/health/grpc_health_v1"
+	"google.golang.org/grpc/reflection"
 )

 type Server struct {
@@ -37,6 +38,7 @@ func (s *Server) ListenAndServe() {

 	srv := grpc.NewServer()
 	server := health.NewServer()
+	reflection.Register(srv)
 	grpc_health_v1.RegisterHealthServer(srv, server)
 	server.SetServingStatus(s.config.ServiceName, grpc_health_v1.HealthCheckResponse_SERVING)

--- a/pkg/version/version.go
+++ b/pkg/version/version.go
@@ -1,4 +1,4 @@
 package version

-var VERSION = "4.0.1"
+var VERSION = "4.0.4"
 var REVISION = "unknown"
Author	SHA1	Message	Date
Stefan Prodan	b98a9dcc1a	Merge pull request #84 from stefanprodan/release-4.0.4 Release v4.0.4	2020-06-12 13:46:58 +03:00
stefanprodan	8860e57362	Release v4.0.4	2020-06-12 13:40:07 +03:00
Stefan Prodan	f1ecea6b53	Merge pull request #83 from stefanprodan/pod-annotations Add pod annotations to chart options	2020-06-12 13:33:31 +03:00
stefanprodan	ebc6493990	Add pod annotations to chart options	2020-06-12 13:00:54 +03:00
Stefan Prodan	a2f9216fe4	Merge pull request #82 from stefanprodan/release-4.0.3 Release v4.0.3	2020-06-06 13:31:28 +03:00
stefanprodan	27436ed538	Release v4.0.3	2020-06-06 09:55:21 +03:00
Stefan Prodan	c103a50423	Merge pull request #81 from alaa/master Enable gRPC reflection protocol	2020-06-06 09:01:24 +03:00
Alaa Qutaish	5ac16f0f98	Enable gRPC reflection protocol	2020-06-05 17:16:29 +02:00
Stefan Prodan	b4138fdb4d	Merge pull request #80 from stefanprodan/release-4.0.2 Release v4.0.2	2020-05-29 13:50:31 +03:00
stefanprodan	a2e6fd0ef1	Release v4.0.2	2020-05-29 13:24:11 +03:00
Stefan Prodan	c2aaf7a962	Merge pull request #79 from stefanprodan/cve-scan Add CVE scanning with trivy	2020-05-29 12:46:07 +03:00
stefanprodan	a066ff5385	Add CVE scanning with trivy	2020-05-29 12:39:55 +03:00