cert-manager

Author	SHA1	Message	Date
Ashley Davis	f7937c7372	Use explicit debian version for base images Fixes #6478 Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-11-14 14:30:45 +00:00
Richard Wall	80896bce36	Update documentation of the Kyverno policies Kustomization file Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-31 15:44:10 +00:00
Richard Wall	c8640908e7	Apply Kyverno policies to E2E test namespaces too By using ClusterPolicy with exlusion rules for the namespaces of non-compliant E2E test tools. Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-31 14:11:41 +00:00
jetstack-bot	dd3fe1fe02	Merge pull request #6453 from wallrj/read-only-root-filesystem Enable readOnlyRootFilesystem by default	2023-10-31 11:27:20 +01:00
Richard Wall	9dfb7c3ecf	Enable readOnlyRootFilesystem policy in Kyverno Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-27 16:03:17 +01:00
Richard Wall	c3a8144da8	Update the Kyverno policy file Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-27 15:58:11 +01:00
Richard Wall	2264de13f3	Use latest version of the bestpractice Helm values Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-27 14:33:47 +01:00
Richard Wall	1329c71f27	Add a dedicated rule for kindest node And explain why Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-26 16:00:18 +01:00
Richard Wall	c08e34cab1	./hack/latest-kind-images.sh Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-26 14:43:11 +01:00
Richard Wall	4d2a227794	Remove the multi-arch variant Because it was also broken and was being supplied with digests of single-architecture images rather than multi-arch manifests Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-24 14:52:10 +01:00
Richard Wall	c34bddace7	Update ingress-nginx image checksums Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-24 14:19:30 +01:00
Richard Wall	5db745b103	Fix the digest check for single-arch images Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-24 13:52:50 +01:00
Richard Wall	ecada9c30f	Upgrade ingress NGINX Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-24 13:16:13 +01:00
Richard Wall	a1164b9c4f	Use sample-external-issuer v0.4.0 Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-24 11:16:35 +01:00
Tim Ramlot	aab50ac20d	fix the 'make update-licenses' command on macos Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-10-19 09:16:27 +02:00
Ashley Davis	45545ec39f	bump base images to latest Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-10-12 10:29:24 +01:00
Ashley Davis	ad3bc2c66a	bump go to latest version to address CVE-2023-39325 Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-10-12 10:27:16 +01:00
jetstack-bot	c6ff0136d2	Merge pull request #6396 from SgtCoDFish/bumpbase bump base images	2023-10-06 19:05:08 +02:00
Ashley Davis	1eb4d6bf10	bump base images prompted by https://github.com/cert-manager/cert-manager/issues/4033 Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-10-06 15:10:30 +01:00
Richard Wall	108291dc30	Update make/e2e-setup.mk Co-authored-by: Josh Soref <2119212+jsoref@users.noreply.github.com> Signed-off-by: Richard Wall <wallrj@users.noreply.github.com>	2023-10-06 10:40:34 +01:00
Richard Wall	b8eda230bc	Use OpenShift Vault Helm chart settings Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-05 15:28:46 +01:00
Richard Wall	4497ad5103	MAKELEVEL was a bad choice which prevents me running the e2e.test binary from my OLM Makefile Signed-off-by: Richard Wall <richard.wall@venafi.com>	2023-10-05 15:28:46 +01:00
Tim Ramlot	ef3bd7d3b2	upgrade all dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-28 12:07:27 +02:00
Tim Ramlot	8b690c5195	upgrade go from 1.20.7 to 1.20.8 Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-26 14:56:24 +02:00
Tim Ramlot	9749f1253d	upgrade dependencies Co-authored-by: Paul Merrison <paul@tetrate.io> Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-09-12 11:38:10 +02:00
Tim Ramlot	4c2e19174a	fix the makefile self-documentation for learn-sha-tools Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-25 11:16:26 +02:00
Tim Ramlot	8bc621dd9c	upgrade KUBEBUILDER_TOOLS Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-24 22:35:58 +02:00
Tim Ramlot	75afb4f08c	downgrade go version Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-24 19:54:29 +02:00
Tim Ramlot	29e834dedd	downgrade pebble Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-24 19:54:29 +02:00
Tim Ramlot	3fc1f8a580	upgrade all dependencies Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-24 19:54:25 +02:00
Tim Ramlot	9d2d1cd6ef	add openapi definitions to acme API server Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-08-23 14:12:51 +02:00
Ashley Davis	4dae329c37	fix kubebuilder shas Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-08-09 11:12:15 +01:00
Tim Ramlot	106d49f44b	upgrade kind images Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-07-24 10:14:51 +02:00
Luca Comellini	3ff638b6f3	Bump k8s.io dependencies Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-07-20 10:35:20 -07:00
Ashley Davis	5ca59ddf2d	bump go to latest patch release Signed-off-by: Ashley Davis <ashley.davis@venafi.com>	2023-07-17 12:54:18 +01:00
Cody W. Eilar	daf5b8f763	Honor KIND_CLUSTER_NAME for e2e-setup & clean - Prior to this commit, regardless what was put for KIND_CLUSTER_NAME, the name of the cluster was always "kind". Furthermore, when running make clean, only clusters named "kind" were cleaned up. With a few minor fixes, this commit solves the problem so that kind clusters with different names can be used when running tests. Co-authored-by: Tim Ramlot <42113979+inteon@users.noreply.github.com> Signed-off-by: Cody Eilar <cody@codyeilar.com>	2023-06-27 09:35:07 -06:00
Richard Wall	7ee4c0b1e1	Use the correct path in the the example command Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2023-06-27 12:49:13 +01:00
Richard Wall	cc0782b917	Reduce binary size by stripping dwarf tables and symbol tables Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2023-06-27 12:47:08 +01:00
Richard Wall	87b3e321c8	Disable CGO when compiling an e2e.test binary Signed-off-by: Richard Wall <richard.wall@jetstack.io>	2023-06-27 12:46:31 +01:00
Ashley Davis	f30cd9228c	bump base images with make update-base-images see #4033 Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2023-06-02 14:31:38 +01:00
irbekrm	acf07419f5	Fix a bug in helm chart where webhook had controller feature gates passed This will break anyone who relied on featureGates field to pass feature gates to webhook- they will need to use the new webhook.featureGates field Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-23 12:44:31 +01:00
Luca Comellini	bf6bbb19de	Bump k8s.io dependencies Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-05-18 21:55:47 -07:00
irbekrm	f2b97a5dd3	Bumps kubebuilder SHAs As the kubebuilder tools for 1.27.1 have been repushed Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-18 10:19:42 +01:00
jetstack-bot	022292832f	Merge pull request #6032 from inteon/fix_acme_bugs Fix small bugs and make small improvements in ACME code	2023-05-12 15:19:41 +01:00
Tim Ramlot	2ba39e9ebc	allow importing the ctl cmd package Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-05-12 14:13:04 +02:00
Ashley Davis	ab8c4c957f	update cmrel version to enable new module validation flags Signed-off-by: Ashley Davis <ashley.davis@jetstack.io>	2023-05-10 15:25:13 +01:00
irbekrm	ee022d42b3	Update kubebuilder tools SHAs Signed-off-by: irbekrm <irbekrm@gmail.com>	2023-05-10 10:26:21 +01:00
Tim Ramlot	7d0178f27d	fix small bugs and make small improvements Signed-off-by: Tim Ramlot <42113979+inteon@users.noreply.github.com>	2023-05-09 15:22:21 +02:00
Luca Comellini	1bfc131e6a	Bump sigs.k8s.io/controller-tools to v0.12.0 Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-05-05 16:32:25 +01:00
Luca Comellini	a57c4abb14	Bump k8s.io dependencies Signed-off-by: Luca Comellini <luca.com@gmail.com>	2023-05-05 16:32:25 +01:00

1 2 3 4 5 ...

350 Commits