fluxcd
/
source-controller
mirror of https://github.com/fluxcd/source-controller.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,306 Commits 28 Branches 272 Tags 16 MiB
Commit Graph

2306 Commits

Author SHA1 Message Date
Sanskar Jaiswal fcaf86e7eb
docs: add docs for cosign identity matching 
Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-10-31 08:04:34 -07:00
Sanskar Jaiswal d855805b8f
cosign: allow identity matching for keyless verification 
Add `.spec.verify.matchOIDCIdentity` to OCIRepository and HelmChart.
It allows specifying regular expressions to match against the subject and
issuer of the certificate related to the artifact signature. Its used
only if the artifact was signed using Cosign keyless signing.

Signed-off-by: Sanskar Jaiswal <jaiswalsanskar078@gmail.com>
 2023-10-31 08:04:34 -07:00
Max Jonas Werner 8c63fba06b
Merge pull request #1272 from fluxcd/dependabot/github_actions/ci-266d728e8a 
build(deps): bump the ci group with 2 updates
 2023-10-30 08:58:33 +01:00
dependabot[bot] 6be8ac9a5b
build(deps): bump the ci group with 2 updates 
Bumps the ci group with 2 updates: [korthout/backport-action](https://github.com/korthout/backport-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `korthout/backport-action` from 1.4.0 to 2.0.0
- [Release notes](https://github.com/korthout/backport-action/releases)
- [Commits](bd68141f07...408fae11ed)

Updates `github/codeql-action` from 2.22.4 to 2.22.5
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](49abf0ba24...74483a38d3)

---
updated-dependencies:
- dependency-name: korthout/backport-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-30 02:38:11 +00:00
Hidde Beydals 19345b3789
Merge pull request #1269 from fluxcd/dependabot/go_modules/google.golang.org/grpc-1.57.1 
build(deps): bump google.golang.org/grpc from 1.57.0 to 1.57.1
 2023-10-26 00:14:16 +02:00
dependabot[bot] 20730e0719
build(deps): bump google.golang.org/grpc from 1.57.0 to 1.57.1 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.57.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.57.0...v1.57.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-25 21:24:54 +00:00
Max Jonas Werner c664afe632
Merge pull request #1266 from fluxcd/dependabot/github_actions/ci-ff180a8d58 
build(deps): bump the ci group with 2 updates
 2023-10-23 09:06:20 +02:00
dependabot[bot] b135c09d25
build(deps): bump the ci group with 2 updates 
Bumps the ci group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 4.1.0 to 4.1.1
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](8ade135a41...b4ffde65f4)

Updates `github/codeql-action` from 2.22.3 to 2.22.4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](0116bc2df5...49abf0ba24)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-23 02:10:22 +00:00
Stefan Prodan f2a1814aea
Merge pull request #1228 from fluxcd/bucket-prefix 
bucket: Add prefix filtering capability
 2023-10-17 15:24:11 +03:00
Stefan Prodan 674c287dbd
Bucket: add prefix support for GCP 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-10-17 15:10:33 +03:00
Stefan Prodan 6d4e654522
Document Bucket prefix field 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-10-17 14:36:16 +03:00
Stefan Prodan b655149786
bucket: Add prefix filtering capability 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-10-17 14:13:04 +03:00
Hidde Beydals 3073c2c261
Merge pull request #1265 from fluxcd/dependabot/github_actions/ci-24b5ea99f0 
build(deps): bump the ci group with 1 update
 2023-10-16 10:18:09 +02:00
dependabot[bot] 27ca7a8b98
build(deps): bump the ci group with 1 update 
Bumps the ci group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).

- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](2cb752a87e...0116bc2df5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 02:59:51 +00:00
Hidde Beydals 1b7a8e118a
Merge pull request #1260 from fluxcd/dependabot/go_modules/api/golang.org/x/net-0.17.0 
build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 in /api
 2023-10-12 09:11:52 +02:00
dependabot[bot] 5b642b12ac
build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 in /api 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.10.0 to 0.17.0.
- [Commits](https://github.com/golang/net/compare/v0.10.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-12 06:51:46 +00:00
Hidde Beydals a522e44768
Merge pull request #1261 from fluxcd/dependabot/go_modules/golang.org/x/net-0.17.0 
build(deps): bump golang.org/x/net from 0.15.0 to 0.17.0
 2023-10-12 08:51:16 +02:00
dependabot[bot] 1dba5fb860
build(deps): bump golang.org/x/net from 0.15.0 to 0.17.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.15.0 to 0.17.0.
- [Commits](https://github.com/golang/net/compare/v0.15.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 23:14:27 +00:00
Max Jonas Werner 8ea2bb0ade
Merge pull request #1259 from fluxcd/pick-changelog-v1.1.2 
Add changelog entry for v1.1.2
 2023-10-11 16:09:36 +02:00
Max Jonas Werner 34f398586c
Add changelog entry for v1.1.2 
Signed-off-by: Max Jonas Werner <mail@makk.es>
(cherry picked from commit 01f4ebb1b5)
 2023-10-11 15:48:24 +02:00
Hidde Beydals fe1173f996
Merge pull request #1257 from fluxcd/tidy-nits 
Address miscellaneous issues throughout code base
 2023-10-11 11:21:12 +02:00
Hidde Beydals 09772bd092
misc: set TLS certificate files perms to `0o600` 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:56 +02:00
Hidde Beydals 04612b539b
misc: fix hypothetical implicit memory aliasing 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:56 +02:00
Hidde Beydals b0d94ce6d0
misc: do not capitalize err string and fix wording 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:56 +02:00
Hidde Beydals aba98008ac
misc: remove redundant nil check 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:55 +02:00
Hidde Beydals a70b3f37c0
misc: remove unused code 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:55 +02:00
Hidde Beydals cdb43f1999
misc: add test case for invalid tag signature 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:55 +02:00
Hidde Beydals 20230811e4
misc: address duplicate imports 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:54 +02:00
Hidde Beydals a74eb57811
misc: `math/rand.Read()` has been deprecated 
See: https://pkg.go.dev/math/rand@go1.20#Read

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-11 11:03:54 +02:00
Hidde Beydals d9dbd1bdb7
misc: `rand.Seed` deprecation 
See: https://pkg.go.dev/math/rand@go1.20#Seed

Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-10 09:40:44 +02:00
Hidde Beydals 0a27f6ac90
misc: `iotuil` deprecation 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-10 09:40:43 +02:00
Hidde Beydals d56d0a7ad7
misc: address `k8s.io/utils/pointer` deprecation 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-10 09:40:37 +02:00
Hidde Beydals 3a0c27926e
misc: simplify by directly returning bool 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-09 15:11:09 +02:00
Hidde Beydals 691d925add
misc: ensure return errs are captured 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-09 15:11:09 +02:00
Hidde Beydals 0288645875
misc: properly handle f.Close() defer 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-09 15:10:49 +02:00
Hidde Beydals 8d1c755dd1
misc: remove unnecessary use of fmt.Sprintf 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-09 15:00:10 +02:00
Hidde Beydals 25400d8810
misc: remove redundant return statements 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-09 15:00:04 +02:00
Hidde Beydals 354a8e8dbf
misc: use `Err` prefix for errors 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-10-09 14:59:58 +02:00
Max Jonas Werner 3cf4fdfaa8
Merge pull request #1254 from fluxcd/dependabot/github_actions/ci-438070d785 
build(deps): bump the ci group with 1 update
 2023-10-09 09:53:13 +02:00
dependabot[bot] 9d64b462b1
build(deps): bump the ci group with 1 update 
Bumps the ci group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).

- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](6a28655e3d...2cb752a87e)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-09 02:58:42 +00:00
Stefan Prodan ff39d21d3f
Merge pull request #1246 from fluxcd/oci-skip-symlinks 
oci: Skip symlinks found in upstream artifacts
 2023-10-02 08:41:59 +03:00
Stefan Prodan cdb412e7af
oci: Skip symlinks found in upstream artifacts 
Do not error out when upstream artifacts contain symlinks in the content layer, instead skip all symlinks during decompression.

Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-09-29 13:27:19 +03:00
Stefan Prodan 837d8077ec
Update `pkg/tar` and `pkg/oci` 
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
 2023-09-29 13:20:52 +03:00
Stefan Prodan 33dd859f72
Merge pull request #1244 from errordeveloper/switch-crane-v1-remote 
Switch from `crane` package to `remote`
 2023-09-29 12:51:19 +03:00
Ilya Dmitrichenko a5ec631cd3
Switch from `crane` package to `remote` 
`crane` package is the highest level of abstraction that GGCR provides,
it's easy to use, however it doesn't give user much control.
This change moves `OCIRepository` controller logic to a lower-level
`remote` package and makes handling of references more explicit with
`name.Repository`, `name.Digest` and `name.Tag`.
It also simplifies options builder, as there is no need to have separate
sets of options for cosign and crane.

Signed-off-by: Ilya Dmitrichenko <errordeveloper@gmail.com>
 2023-09-29 10:17:49 +01:00
Max Jonas Werner 53ee3a3db0
Merge pull request #1241 from fluxcd/dependabot/github_actions/ci-240705649c 
build(deps): bump the ci group with 2 updates
 2023-09-25 17:22:28 +02:00
dependabot[bot] 093abc1dfb
build(deps): bump the ci group with 2 updates 
Bumps the ci group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 4.0.0 to 4.1.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](3df4ab11eb...8ade135a41)

Updates `github/codeql-action` from 2.21.7 to 2.21.8
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](04daf014b5...6a28655e3d)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-25 02:24:42 +00:00
Hidde Beydals 801fb52e35
Merge pull request #1238 from fluxcd/pick-changelog-v1.1.1 
Add changelog entry for v1.1.1
 2023-09-18 16:01:22 +02:00
Hidde Beydals 809eaae9b1
Add changelog entry for v1.1.1 
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
 2023-09-18 15:53:57 +02:00
Stefan Prodan 2c0df15b69
Merge pull request #1234 from fluxcd/dependabot/github_actions/ci-c0c365b2b0 
build(deps): bump the ci group with 7 updates
 2023-09-18 09:31:20 +03:00