d82666efaf
Publish SBOM and sign release artifacts
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-01-21 17:11:42 +02:00
4016fbf5a5
Merge pull request #313 from aryan9600/aryan9600/security-context
...
drop capabilities, enable seccomp and enforce runAsNonRoot
2022-01-20 08:52:11 +02:00
65e72c142a
drop capabilities, enable seccomp and enforce runAsNonRoot
...
Further restricts the SecurityContext that the controller runs under, by enabling the default seccomp profile and dropping all linux capabilities.
This was set at container-level to ensure backwards compatibility with use cases in which sidecars are injected into the source-controller pod
without setting less restrictive settings.
Add a uid and gid for the container to enforce runAsNonRoot and ensure
the use of non root users.
BREAKING CHANGES:
1) The use of new seccomp API requires Kubernetes 1.19.
2) the controller container is now executed under 65534:65534 (userid:groupid).
This change may break deployments that hard-coded the user name 'controller' in their PodSecurityPolicy.
Signed-off-by: Sanskar Jaiswal <sanskar.jaiswal@weave.works>
Co-authored-by: Paulo Gomes <paulo.gomes@weave.works>
2022-01-20 06:36:44 +00:00
d49181a7c4
Merge pull request #310 from pjbgf/fuzz-ci
2022-01-14 17:24:06 +01:00
3972c921ca
Replace cifuzz with custom smoke test
...
The official git actions goes through all fluxcd repos, which in
time will be extremely long and painful to run on each PR.
This smoke test will ensure the fuzzer correctness until a new
action is in place to run the process as advised by oss-fuzz.
Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
2022-01-13 16:27:56 +00:00
79767e271f
Merge pull request #309 from yiannistri/dev-docs
...
Update development documentation
2022-01-13 12:21:24 +02:00
879846243d
Update dev docs
...
Signed-off-by: Yiannis <yiannis.triantafyllopoulos@gmail.com>
2022-01-12 23:02:50 +00:00
046775780f
Merge pull request #307 from aryan9600/aryan9600/setup-testenv
...
Fix makefile envtest and controller-gen usage
2022-01-12 16:48:49 +02:00
a0aa2c12f3
Merge pull request #308 from fluxcd/gitea-docs
...
Add documentation for gitea
2022-01-12 16:48:31 +02:00
a8a868e3f5
Add docs for gitea
...
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2022-01-12 14:44:29 +01:00
60496db536
fix makefile envtest and controller-gen usage
...
Refactor logic to install helper tools into one function in th
Makefile. Add support for envtest to help install tools like kubectl,
etcd which helps users run tests more conveniently.
Signed-off-by: Sanskar Jaiswal <sanskar.jaiswal@weave.works>
2022-01-12 18:51:59 +05:30
2a728b0d4b
Merge pull request #306 from pjbgf/fuzz
...
Add fuzz testing for notifiers
2022-01-12 13:06:43 +02:00
4f111d289f
Add fuzz testing for notifiers
...
Signed-off-by: Paulo Gomes <paulo.gomes@weave.works>
2022-01-12 10:26:07 +00:00
0ece498d9e
Merge pull request #304 from fluxcd/release-v0.20.1
...
Release v0.20.1
2022-01-11 16:16:21 +02:00
0a0a0345b5
Release v0.20.1
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-01-11 16:03:29 +02:00
1035a1f1ef
Merge pull request #298 from Alan01252/feature/alertmanager
...
Add timestamp as label for alertmanager
2022-01-11 15:57:15 +02:00
0a4960607c
Merge pull request #303 from fluxcd/fix-api-meta
...
Downgrade fluxcd/pkg/apis/meta to v0.10.2
2022-01-11 15:33:48 +02:00
16a517adc9
Downgrade fluxcd/pkg/apis/meta to v0.10.2
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-01-11 15:02:41 +02:00
b728c6cb6a
Merge pull request #302 from fluxcd/release-v0.20.0
...
Release v0.20.0
2022-01-11 14:02:16 +02:00
e767d7a976
Release v0.20.0
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-01-11 13:49:20 +02:00
68f0adc83d
Merge pull request #301 from fluxcd/updates-deps
...
Update dependencies (fix CVE-2021-43565)
2022-01-11 13:43:25 +02:00
6ffaef2a41
Update dependencies (fix CVE-2021-43565)
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2022-01-11 13:21:26 +02:00
34a7f40068
Merge pull request #300 from fluxcd/telegram-update-docs
...
Update docs for telegram
2022-01-11 10:50:46 +02:00
5b6b2b6e1f
Update docs for telegram
...
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2022-01-10 13:46:34 +01:00
be0f5ea1e0
Merge pull request #297 from fluxcd/dockerfile-updates
...
Update Dockerfile xx base and bump alpine to 3.15
2022-01-05 11:57:01 +02:00
5a21f69f06
Add timestamp as label for alertmanager
...
Without the timestamp there is not enough entropy in the hash for
alertmanager to recongise that this is a new alert for some cases.
Adding the timestamp ensures that a new hash for the alert is created
each time and therefore no updates get missed.
Signed-off-by: Alan Hollis <me@alanhollis.com>
2022-01-05 09:46:40 +00:00
b4316aaf3c
Update Dockerfile xx base and bump alpine to 3.15
...
Signed-off-by: Aurel Canciu <aurelcanciu@gmail.com>
2021-12-16 14:24:32 +01:00
9f65cf1a1e
Merge pull request #279 from fluxcd/go-v1.17
...
Update Go to v1.17
2021-12-16 09:22:01 +02:00
6963766d47
Update flux pkg components
...
Updating to the latest versions of the flux pkg components and a small
adjustment due to
a26ceb22f0
2021-12-15 23:14:08 +01:00
ae2bdbae0b
Update Go to v1.17
...
Signed-off-by: Aurel Canciu <aurelcanciu@gmail.com>
2021-12-15 18:39:43 +01:00
339acfd97e
Merge pull request #294 from SomtochiAma/refacotor-tests
...
Refactor tests
2021-12-03 15:23:59 +02:00
55e1517f48
Refactor tests
...
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2021-12-03 12:47:39 +01:00
e41e3f89fb
Merge pull request #293 from fluxcd/spec-slack-app
2021-11-24 15:45:31 +01:00
b097b806f4
spec: improve wording around Slack App integration
...
Signed-off-by: Hidde Beydals <hiddeco@users.noreply.github.com>
2021-11-24 15:22:21 +01:00
41da818290
Merge pull request #290 from fluxcd/release-v0.19.0
2021-11-23 16:32:07 +01:00
41d984db8b
Release v0.19.0
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-11-23 16:18:10 +01:00
f9b13efd3c
Merge pull request #289 from fluxcd/controller-runtime-v0.10.2
...
Update controller-runtime to v0.10.2
2021-11-22 14:36:53 +02:00
a54ad114b7
Update controller-runtime to v0.10.2
...
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
2021-11-22 14:04:23 +02:00
12c8c87d93
Merge pull request #282 from fluxcd/reconcilers-dev
...
Use conditions helper in reconciler (kstatus compat)
2021-11-22 11:14:12 +02:00
8395bc2a5f
Remove double string from Receiver ready condition
...
Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-11-18 13:26:56 +01:00
af4c858e3f
Merge pull request #287 from SomtochiAma/alertmanager
...
Fix nil dereference err in AlertManager
2021-11-18 10:45:17 +02:00
7ae543fa65
Fix nil dereference err
...
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2021-11-18 08:05:35 +01:00
754dae43ca
Merge pull request #285 from vespian/prozlach/bump_alpine
...
Update Alpine to v3.14
2021-11-16 14:08:36 +01:00
d9432beaf0
Update Alpine to v3.14
...
Signed-off-by: Pawel Rozlach <vespian@users.noreply.github.com>
2021-11-16 13:35:57 +01:00
7f66d3983b
Bump observed generation only once
...
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2021-11-08 23:23:07 +01:00
19a0daa906
Use conditions helper in reconciler
...
Co-authored-by: Piaras Hoban <piaras@weave.works>
Co-authored-by: Hidde Beydals <hiddeco@users.noreply.github.com>
Co-authored-by: souleb <bah.soule@gmail.com>
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2021-11-01 14:20:12 +01:00
d394e04bbb
Merge pull request #280 from SomtochiAma/webex-cert
...
Use x509 certificate for Webex
2021-11-01 11:35:08 +02:00
f99958c50c
Merge pull request #277 from aweris/drop_ioutil
...
chore: Drop deprecated io/ioutil
2021-10-29 11:48:33 +02:00
98803f093a
User cert for webex
...
Signed-off-by: Somtochi Onyekwere <somtochionyekwere@gmail.com>
2021-10-28 06:47:04 +01:00
4e96e0d34d
Merge pull request #245 from dmitriishaburov/slack-app-support
...
Add support for Slack app
2021-10-27 13:45:50 +03:00
Stefan Prodan