github/polaris
1
0
Fork 0
mirror of https://github.com/FairwindsOps/polaris.git synced 2026-05-09 18:56:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
954 Commits 28 Branches 117 Tags
ef4b6ece30738c1a95fdfd4e2f248477d68abf79
Commit Graph

954 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Robert Brennan
ef4b6ece30 Update triage.yml 2022-08-09 10:32:34 -04:00
Robert Brennan
34152609a8 Update triage.yml 2022-08-09 10:27:00 -04:00
Robert Brennan
0879f2a040 Update triage.yml 2022-08-09 10:22:17 -04:00
Robert Brennan
a2123293f7 Update triage.yml 2022-08-09 10:19:42 -04:00
Robert Brennan
a5acc96001 Update triage.yml 2022-08-09 10:17:22 -04:00
Robert Brennan
e2e7918d36 Update triage.yml 2022-08-09 10:10:22 -04:00
Robert Brennan
ad7b4f6aee Update triage.yml 2022-08-09 10:03:27 -04:00
Robert Brennan
581d06c194 Update triage.yml 2022-08-09 10:02:25 -04:00
Robert Brennan
729e7a9482 Update triage.yml 2022-08-09 10:01:01 -04:00
Robert Brennan
a63756a158 Update triage.yml 2022-08-09 09:58:15 -04:00
Robert Brennan
affab91d92 Update triage.yml 2022-08-09 09:55:28 -04:00
Robert Brennan
ccd707f230 Update triage.yml 2022-08-09 09:53:17 -04:00
Robert Brennan
68064da185 Update triage.yml 2022-08-09 09:52:46 -04:00
Robert Brennan
e4758dbc44 Update triage.yml 2022-08-09 09:50:20 -04:00
Robert Brennan
09209c9a7b Update triage.yml 2022-08-09 09:48:45 -04:00
Robert Brennan
8a7e691a8e Update triage.yml 2022-08-09 09:39:34 -04:00
Robert Brennan
3440296557 Update triage.yml 2022-08-09 09:37:04 -04:00
Robert Brennan
511157e010 Update triage.yml 2022-08-09 09:36:15 -04:00
Robert Brennan
195b9a8860 Update triage.yml 2022-08-09 09:35:41 -04:00
Robert Brennan
93b251d5c0 Update triage.yml 2022-08-09 09:33:40 -04:00
Robert Brennan
af840db564 Update triage.yml 2022-08-09 09:32:30 -04:00
Robert Brennan
909bc5e86b Update triage.yml 2022-08-09 09:29:33 -04:00
Robert Brennan
3cdaf143a4 Update triage.yml 2022-08-09 09:27:50 -04:00
Robert Brennan
693dbc5b25 Update triage.yml 2022-08-09 09:03:02 -04:00
Robert Brennan
b77672bde8 Update triage.yml 2022-08-08 18:14:48 -04:00
Robert Brennan
bf96f1dc89 Update triage.yml 2022-08-08 18:07:50 -04:00
Robert Brennan
40c6c569e0 Update triage.yml 2022-08-08 16:05:11 -04:00
Robert Brennan
fe014ac2bf Update triage.yml 2022-08-08 16:04:18 -04:00
Robert Brennan
5f87baaa56 Update triage.yml 2022-08-08 16:01:53 -04:00
Robert Brennan
35e7896553 Update triage.yml 2022-08-08 15:55:39 -04:00
Robert Brennan
1d7d3433c1 Update triage.yml 2022-08-08 15:51:21 -04:00
Robert Brennan
3a421412bb Create triage.yml 2022-08-08 15:43:45 -04:00
ivanfetch-fw
206322271c FWI-2509: Add sensitiveContainerEnvVar and sensitiveConfigMapContent checks (#817) 
* Add sensitiveContainerEnvVar and sensitiveConfigMapContent checks

* Update full example configfile
 2022-08-05 11:58:57 -04:00
ivanfetch-fw
e5b9236268 FWI-2476: Add missingNetworkPolicy, automountServiceAccountToken, and linuxHardening checks (#816) 
* Add missingNetworkPolicy, automountServiceAccountToken, and linuxHardening checks
 2022-08-05 09:44:18 -06:00
ivanfetch-fw
c3b57bf6c7 target: container also populates .Polaris.PodSpec|PodTemplate + a new .Polaris.Container representing the currently checked container, GetPodTemplate serializes data to work around a DeepCopy bug with type int (#812) 2022-07-29 07:45:56 -06:00
Igor Beliakov
652b65b3c2 fix: properly remove emojis in pretty format with no color (#765) 
Signed-off-by: Igor Beliakov <demtis.register@gmail.com>

Co-authored-by: Robert Brennan <accounts@rbren.io>
 2022-07-28 15:39:17 -04:00
dependabot[bot]
41030320bb Bump github.com/stretchr/testify from 1.7.1 to 1.8.0 (#786) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.1 to 1.8.0.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.1...v1.8.0)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-28 15:30:09 -04:00
dependabot[bot]
76c42c4799 Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 (#813) 
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.4.0...v1.5.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-28 15:29:58 -04:00
dependabot[bot]
65add73e70 Bump k8s.io/api from 0.24.1 to 0.24.3 (#808) 
Bumps [k8s.io/api](https://github.com/kubernetes/api) from 0.24.1 to 0.24.3.
- [Release notes](https://github.com/kubernetes/api/releases)
- [Commits](https://github.com/kubernetes/api/compare/v0.24.1...v0.24.3)

---
updated-dependencies:
- dependency-name: k8s.io/api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Barnabas Makonda <6409210+makoscafee@users.noreply.github.com>
 2022-07-28 15:21:50 -04:00
Igor Beliakov
a0000e1919 Suppress empty results when --only-show-failed-tests is passed (#811) 
* Suppress empty results when --only-show-failed-tests is passed

Signed-off-by: Igor Beliakov <demtis.register@gmail.com>

* Fix remaining typo

Signed-off-by: Igor Beliakov <demtis.register@gmail.com>

Co-authored-by: Robert Brennan <accounts@rbren.io>
 2022-07-26 09:31:08 -04:00
dependabot[bot]
f9e2603b16 Bump alpine from 3.16.0 to 3.16.1 (#810) 
Bumps alpine from 3.16.0 to 3.16.1.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-07-25 17:21:08 +03:00
ivanfetch-fw
50d789fd42 Fix resourceKindMap.addResource() to not assume every Kind has an APIGroup (#805) 
This was causing the `ResourceProvider.Resources` map to essentially
loose resources with no APIGroup, such as ServiceAccounts.
 2022-07-15 13:53:41 -06:00
ivanfetch-fw
25ab600eef Update docs to reflect target: PodTemplate RE: PR #801 (#804) 
* Update docs to reflect `target: PodTemplate` and the template being available via the `Polaris.PodTemplate` variable RE: PR #801

* Fix typo

Co-authored-by: Robert Brennan <accounts@rbren.io>

Co-authored-by: Robert Brennan <accounts@rbren.io>
 2022-07-14 13:50:41 -06:00
ivanfetch-fw
be45519a22 Add target PodTemplate which exposes the full Pod (not only the spec) (#801) 
* Add `target PodTemplate` which exposes the full Pod (not only the spec)

* Fix PotTemplate in conjunction with how pod-schema-checks are handled

* Add test for GO template `Polaris` sub-keys, help `NewGenericResourceFromPod` to set `PodTemplate` in more cases

* Clarify PldTemplate logic for `IsActionable()`
 2022-07-14 12:51:24 -06:00
ivanfetch-fw
ccaa384cd0 expose Polaris.PodSpec for PodSpec targeted checks (#793) 
* Add a template `Polaris` variable, expose `Polaris.PodSpec` for checks of `target: PodSpec`.

Polaris checks that are `target: PodSpec` have reflected the original
resource (such as a pod-controller) in the Go template, instead of
reflecting the pod `spec` field. This update makes the PodSpec available
in a new template variable `Polaris.PodSpec`.
 2022-07-12 08:04:17 -06:00
Robert Brennan
1c09ce9e09 update changelog and docs (#800) 
* update changelog and docs

* add 7.0.1

* fix version
7.0.1 		2022-07-11 14:12:50 -04:00
Robert Brennan
fec00893b1 Update fairwinds-insights.yaml (#799) 2022-07-11 14:06:58 -04:00
Robert Brennan
acadebe9fd add docs for mutation (#792) 
* add docs for mutation

* Update infrastructure-as-code.md
7.0.0 		2022-07-11 13:25:15 -04:00
Robert Brennan
a2ec025230 Add more mutations, fix mutation tests (#790) 
* add more mutations

* fix tests

* add more test cases

* Update insecureCapabilities.yaml

* Update dangerousCapabilities.yaml

* fix tests

* fix tests
 2022-07-11 13:22:14 -04:00
Robert Brennan
08682075c6 Enable pullPolicyNotAlways (#795) 
* add more mutations

* fix tests

* add more test cases

* Update insecureCapabilities.yaml

* Update dangerousCapabilities.yaml

* fix tests

* fix tests

* add pullPolicyNotAlways as default mutation
 2022-07-11 13:20:17 -04:00