github/polaris
1
0
Fork 0
mirror of https://github.com/FairwindsOps/polaris.git synced 2026-05-15 21:57:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,005 Commits 28 Branches 117 Tags
c8394bf9d7700d90ed67dfd9d56bf1a8cbb36721
Commit Graph

1005 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
John Slivka
c8394bf9d7 fix: conditional expressions should be at very top of additionalSchemaStrings (#1025) 8.5.4 2024-01-03 14:17:04 -06:00
Robert Brennan
0b765df04d Update alpine to 3.19 (#1022) 2023-12-18 11:16:47 -05:00
John Slivka
3e96c582f0 FWI-5385 Add quiet flag to polaris audit CLI command to suppress 'upload to Insights' prompt (#1017) 
* add quiet flag to polaris audit CLI command to suppress 'upload to Insights' prompt
* add docs for polaris audit --quiet option
* add additional detail about polaris audit --quiet flag
8.5.3 		2023-12-06 15:44:53 -06:00
Terraform User
391b802d4d Managed by Terraform 2023-11-02 15:47:51 -04:00
jdesouza
f295dd0fb5 Using controller-utils to get workloads (#1012) 
* Using controller-utils to get workloads

* Code cleanup
8.5.2 		2023-11-01 15:59:46 -03:00
Robert Brennan
97687761a7 Fix numerical resource ranges (#991) 
* fix numerical resource numbers

* add resource range tests
8.5.1 		2023-09-05 11:15:45 -06:00
Robert Brennan
c856874564 Update topologySpreadConstraint.yaml (#971) 
* Update topologySpreadConstraint.yaml

* Update topologySpreadConstraint.yaml

* fix test

* add passing test

---------

Co-authored-by: Andrew Suderman <andy@fairwinds.com>
 2023-08-28 08:49:08 -06:00
Takumi Sue
09525d01a1 Add helm-skip-tests flag (#986) 
* Add helm-skip-tests flag

close #985

* Update cli doc
8.5.0 		2023-08-25 08:39:27 -06:00
Vitor Rodrigo Vezani
10e82cf0ae update CLI documentation (#967) 2023-08-03 10:21:49 -04:00
dependabot[bot]
a5144c45b2 Bump k8s.io/apimachinery from 0.27.3 to 0.27.4 (#977) 
Bumps [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) from 0.27.3 to 0.27.4.
- [Commits](https://github.com/kubernetes/apimachinery/compare/v0.27.3...v0.27.4)

---
updated-dependencies:
- dependency-name: k8s.io/apimachinery
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-07-24 15:47:59 -04:00
Takumi Sue
9be34236cb feat: handle multiple values files (#974) 2023-07-24 14:26:58 -04:00
Andrew Suderman
e7eb079921 change kubernetes.io/ label from name to instance (#973) 
* Fix #972 change label from name to instance

* Fix tests

* more references

* fix check

* Fix example config
8.4.0 		2023-07-13 11:33:15 -06:00
Robert Brennan
d55cd4bdf8 Add insights prompt (#968) 
* add insights prompt

* switch to stderr

* adjust message

* adjust message
8.3.0 		2023-06-29 12:07:26 -04:00
dependabot[bot]
75997f0e93 Bump github.com/AlecAivazis/survey/v2 from 2.3.6 to 2.3.7 (#961) 
Bumps [github.com/AlecAivazis/survey/v2](https://github.com/AlecAivazis/survey) from 2.3.6 to 2.3.7.
- [Release notes](https://github.com/AlecAivazis/survey/releases)
- [Commits](https://github.com/AlecAivazis/survey/compare/v2.3.6...v2.3.7)

---
updated-dependencies:
- dependency-name: github.com/AlecAivazis/survey/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Grace Gude <44000341+mggude@users.noreply.github.com>
 2023-06-29 09:22:11 -06:00
John Slivka
b0d86cdcd2 Add option to filter audit results by severity level (#969) 2023-06-28 08:38:47 -05:00
dependabot[bot]
5595de4ef9 Bump k8s.io/client-go from 0.27.2 to 0.27.3 (#960) 
Bumps [k8s.io/client-go](https://github.com/kubernetes/client-go) from 0.27.2 to 0.27.3.
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kubernetes/client-go/compare/v0.27.2...v0.27.3)

---
updated-dependencies:
- dependency-name: k8s.io/client-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Grace Gude <44000341+mggude@users.noreply.github.com>
 2023-06-27 11:46:13 -04:00
Robert Brennan
4ca4c8f0f5 Fix nil pointer issue with webhook (#966) 
* update

* update go mod

* tidy

* revert go mod

* fix port

* move pod test case

* downgrade controller-runtime

* revert updates

* fix nil pointer

* add logs

* fix var

* remove test requirement

* fix decoder

* fix mutate

* fix test case

* fix logs

* fmt

* fix owned pods in mutate

* fix test

* add logs

* add mutations to tests

* convert to json for patch

* fix up tests

* remove nil check

* fix logs

* add logs

* add env vars to webhook tests
8.2.4 		2023-06-22 13:22:19 -04:00
Vitor Rodrigo Vezani
4b1d6635e0 add test for required fields on builtin checks (#965) 8.2.3 2023-06-21 12:25:44 -04:00
Vitor Rodrigo Vezani
0a26f3f578 FWI-4307 - fix checks category (#964) 
* fix checks category

* add changelog
 2023-06-21 12:08:49 -04:00
Robert Brennan
85a439653d fix cert dir arg (#958) 8.2.2 2023-06-14 10:51:21 -04:00
dependabot[bot]
ba63e6691a Bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3 (#957) 
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) from 1.9.2 to 1.9.3.
- [Release notes](https://github.com/sirupsen/logrus/releases)
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.2...v1.9.3)

---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-06-12 15:43:59 -06:00
Vitor Rodrigo Vezani
07747d76f2 tweak net listener to localhost - removing unwanted popup (#955) 8.2.1 2023-06-09 16:01:59 -03:00
Vitor Rodrigo Vezani
b876d301c8 redirect user to cluster action-items instead of cluster overview (#956) 2023-06-09 15:55:13 -03:00
Robert Brennan
8bfed75498 Minor fixes for NSA checks (#952) 
* fix rbac checks

* fix sensitive env var check

* add test case

* fix service account check

* fix comment

---------

Co-authored-by: Andrew Suderman <andy@fairwinds.com>
8.2.0 		2023-06-09 12:35:36 -06:00
Vitor Rodrigo Vezani
52a5aa8f74 improve cluster-name flag description (#954) 8.1.0 2023-06-09 08:41:52 -06:00
Vitor Rodrigo Vezani
8e3cf1ddd9 FWI-4190 - Upload polaris results to Fairwinds Insights support (#948) 
* add login flow

* add logout functionality

* improve code

* implement token and status print

* implement status command

* add user to login

* improve server port management

* improve login flow

* fix login flow

* make insights URL for login configurable

* remove comments

* fix logrus directive usage

* add upload-insights command

* remove unnecessary usage of pointer

* error when using upload-insights and audit-path simultaneously

* upload-insights support

* set priority to reports

* adds report verification

* fix logging to meet expected results

* renaming variable name

* improve results printing

* improve variable naming

* remove TODO

* Update checks severities (#950)

* change all ignore checks to warning

* promoting checks initially warning that should be danger.

* fixing docs and examples

* adds changelog

* fix changelog version

* improve general error message

* update workloads to be able grab its version

* print URL on stdout on browser error

* use os.WriteFile instead of low-level API

* renaming fn params

* add insights client

* validating token on auth status

* minor fix

* only query for re-auth if token is still valid

* update some dependencies in go and CI (#951)

* update some dependencies

* update testing requirements

* Fix cert-manager

* lots of deprecated versions

* attempts

* review suggestions

* avoid nil pointer

* fix fixtures

* fix test

---------

Co-authored-by: Robert Brennan <contact@rbren.io>

* update changelog

---------

Co-authored-by: Andrew Suderman <andy@fairwinds.com>
Co-authored-by: Robert Brennan <contact@rbren.io>
 2023-06-06 13:51:42 -03:00
Andrew Suderman
f1bbe9236b update some dependencies in go and CI (#951) 
* update some dependencies

* update testing requirements

* Fix cert-manager

* lots of deprecated versions

* attempts

* review suggestions

* avoid nil pointer

* fix fixtures

* fix test

---------

Co-authored-by: Robert Brennan <contact@rbren.io>
 2023-06-06 12:01:20 -04:00
Vitor Rodrigo Vezani
65c5ff59ca Update checks severities (#950) 
* change all ignore checks to warning

* promoting checks initially warning that should be danger.

* fixing docs and examples

* adds changelog

* fix changelog version
8.0.0 		2023-05-31 17:41:18 -03:00
Andrew Suderman
166b39b695 move to latest alpine (#944) 7.4.2 2023-05-16 16:24:13 -06:00
Stevie
ef4ea66d49 Update checks documentation (#936) 
* Update docs with new checks; make sure both config-full has all config.yml checks

* Update doc on mutating webhooks

---------

Co-authored-by: Robert Brennan <accounts@rbren.io>
 2023-05-16 16:31:43 -04:00
Terraform User
b472f34266 Managed by Terraform 2023-04-06 06:54:22 -06:00
Robert Brennan
1ddd2d985a Update documentation from template (#935) 7.4.1 2023-03-31 10:43:46 -04:00
Robert Brennan
727c6fa2c3 Update documentation from template (#934) 2023-03-31 10:24:11 -04:00
Robert Brennan
f531103fa0 Update documentation from template (#926) 7.4.0 2023-03-14 11:25:31 -06:00
Pål-Magnus Slåtto
d909dfd00b chore(ci): Upgrade Github CI/CD to non-deprecated actions (#933) 2023-03-13 10:29:02 -04:00
fsl
6abfbb3570 Update package-lock.json (#923) 
Signed-off-by: fengshunli <1171313930@qq.com>
 2023-02-21 09:24:09 -05:00
fsl
b75db7fc5b Bump golang.org/x/net from 0.6.0 to 0.7.0 (#922) 
Signed-off-by: fengshunli <1171313930@qq.com>
 2023-02-21 08:50:39 -05:00
fsl
501744a65f Skip https certificate verification (#920) 
Signed-off-by: fengshunli <1171313930@qq.com>
 2023-02-17 15:10:28 -05:00
Andrew Suderman
9a678b46e2 update alpine (#918) 7.3.2 2023-02-09 12:13:23 -07:00
Robert Brennan
80c433478b update go modules (#917) 
* update go modules

* revert jsonschema

* fix quay token

* remove insights
7.3.1 		2023-02-09 11:20:51 -05:00
Joseph Richardson
498ccf2215 Fix #908 by generating release name (#909) 2023-02-03 12:31:32 -05:00
Robert Brennan
bf065f9b54 Update dangerousCapabilities.yaml (#866) 2023-01-05 10:24:21 -07:00
Stevie
2d28ea551a sc/rd 71 add plg link (#896) 
* Add persistentpostrun to root cmd and postrun to version cmd

* Change PLG link

* Add PLG link to dashboard

* <strong> the link

Co-authored-by: Andrew Suderman <andy@suderman.dev>
7.3.0 		2023-01-05 09:33:45 -05:00
Robert Brennan
71b0e00288 Update documentation from template (#899) 
Co-authored-by: Andrew Suderman <andy@suderman.dev>
 2023-01-04 14:17:54 -07:00
Andrew Suderman
a1b63ac417 Fix #547 - add a check for topologySpreadConstraint (#879) 2023-01-04 14:05:23 -07:00
Robert Brennan
8af4363672 update dependencies (#898) 7.2.1 2023-01-04 10:10:09 -05:00
dependabot[bot]
c2d1b1cc4a Bump alpine from 3.16 to 3.17 (#885) 
Bumps alpine from 3.16 to 3.17.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-12-13 08:50:35 -05:00
dependabot[bot]
81755e32ec Bump github.com/spf13/cobra from 1.6.0 to 1.6.1 (#870) 
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.6.0 to 1.6.1.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.6.0...v1.6.1)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-11-17 14:56:41 -07:00
dependabot[bot]
531322c6b3 Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 (#869) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.0 to 1.8.1.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.0...v1.8.1)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Andrew Suderman <andrew@sudermanjr.com>
 2022-11-17 13:36:02 -07:00
Terraform User
e3f3254fe6 Managed by Terraform 2022-11-17 10:55:07 -07:00